[00:35] New bug: #959262 in python-novaclient (main) "[Errno 13] Permission denied: '/var/www/.novaclient'" [Undecided,Confirmed] https://launchpad.net/bugs/959262 [00:36] hallyn: around? [00:37] Sigh. So I backported xtables-addons from natty to lucid, so I would have a DKMSized version. This installed PERFECTLY on the local test machine. [00:37] I send my boy out to the airgapped prison, and it's reporting "I need kernel sources", despite not needing them here (only the headers) [00:38] With any luck he is now sneakernetting the dkms build output & similar diagnostics to somewhere that can get to me. [00:40] hmm? [00:40] why didn't you send him the compiled package? [00:44] Patrickdk: too easy ;) [00:44] Uh, because when the kernel gets a minor update, the .kos will need to be recompiled [00:45] e.g. 2.6.32-33 to 2.6.32-34 [00:45] dkms always builds though so I don't think this is a "just send him the binary" issue [00:45] I did send him the xtables-addons-dkms .deb, of course [00:45] ya, dkms is nice for auto-upgrades [00:45] That was the whole point of using dkms instead of m-a [00:45] but I build my dkms on a build machine, and push them out [00:45] Patrickdk: I suppose I would've done that if I had anticipated this not working [00:46] 33 to 34? you living life like 3 months ago? [00:46] we are on -40 :) [00:46] Patrickdk: whatever, I made thhose numebrs up [00:47] * Patrickdk is pissed at his isp [00:47] their providers provider is broken [00:47] and they *dunno* how to work around the issue [00:47] yay for 1000ms latency [00:59] adam_g: half [01:01] at least your site is on the internet [01:01] stupid airgap [01:02] hallyn: do you know of any circumstances where libvirt would take the liberty of setting a domain to 'paused'? [01:02] (thinking) [01:03] i don't. it'd be neat if it did that based on host load :) [01:03] seems to be related to load, but trying to determine if its libvirt or nova thats pausing [01:03] interesting [01:03] i haven't heard of such a thing [01:03] ok, ill look closer at nova in that case, thanks [01:04] i'd look at nova [01:04] yeah [01:04] np - ttyl [01:04] night [01:11] New bug: #965836 in openssh (main) "`ssh-add -x` does not prevent key use" [Undecided,New] https://launchpad.net/bugs/965836 [01:57] Since my installation of nginx is no longer tasked with listening on a port below 1024, how do I set it so it never is root when it starts up? [02:01] How is it started presently? sysvinit or upstart? [02:10] Question regarding my network.. I just did a hardware refresh and upgraded to 11.10 Server. While copying on my gigabit network, the network transfer will stop for periods of time and then start back up. Using sshfs, the cpu will go down to 0 for ~10 or 20s and then the transfer resumes. Any ideas? [02:10] aarossig: you... aren't the guy who wants me to configure his UPS, are you? [02:10] am I? [02:11] Dunno, his name was Andrew Rossi [02:11] of Designer Networks [02:11] twb: I don't think so, I am capable of configuring my own UPS (as well as those of my clients) [02:11] ah, no I don't own a business [02:11] OK, no worries :-) [02:11] :P [02:11] so do you happen to have any suggestions for my situation? [02:12] Well I would definitely encourage you to go 12.04 not 11.10, since 12.04 is LTS [02:12] this happpens on both sshfs and samba, but with samba it is much more catastrophic and the transfer actually itimes out [02:12] twb: yeah, I plan to do a dist upgrade to it [02:12] Not sure about your issue; could be I/O or something [02:13] moral of the story.. I can't wait anymore. I've been putting up with old packages and ppas with 10.04 for far too long [02:13] dump ps auxf to a file every second or so and diff them around the time an issue occurs, looking for D state procs, or watch "iostat 5" [02:13] thanks, i'll look into it [02:13] if you're copying with e.g. scp, it could be the buffering when it actually hits the disk [02:14] I believe it is something IO related, I am running 8 hard drives and some are on the PCI/PCI-e busses. [02:14] so e.g. you do "scp example.com:foo.img ." and it will block when it runs out of buffer writing to the local disk [02:14] yeah, that sounds accurate. I will try [02:14] aarossig: 8 HDDs in what array, RAID6? [02:14] it is actually several RAID1 arrays [02:14] one for root, one for home, and then several for data [02:15] Track down which ones have the data in question, watch their iostats [02:15] okay, thanks for the suggestions [02:15] i'll give it a shot [02:15] Also look at the flush stuff in /proc see if its interval corresponds to your blocking interval [02:15] e.g. if your ext4 filesystem is set to flush every five minutes and you see issues every five minute [02:16] the frequency is much higher, but I see your point [02:19] twb: yeah, iostat shows fairly constant writing [02:19] you're probably right about the caching, it might be filling up the caches and then flushes them to the disk, rinses and repeats. [02:19] I hear there is also iotop; I haven't tried it [02:19] i was using iotop [02:20] iostat is more device lebel [02:20] level* [02:20] The other thing to read up on is "write amplification" [02:20] iotop is process level [02:22] boot setup temperature dropped from 76 C to 36 C after installing a new Corsair A50 fan, how would I go about monitoring remotely? === michaelh1 is now known as michaelh1|away === michaelh1|away is now known as michaelh1 [02:23] tarvid: how are you measuring it now? [02:23] the setup screen reports tempereature [02:23] BIOS [02:24] OK [02:24] The raw data is in /sys somewhere; there is a package that tries to understand how to interpret it... [02:24] Can't remember the name [02:25] /proc/acpi/... on some boxes, not this one [02:25] lm-sensors [02:26] installed but hard disk is the only it reports [02:26] You probably have to rice it up [02:26] IME it's a pain and usually not worth the hassle [02:27] This box was a gift from the local library - free as in free cats [02:27] because the library doesn't serve beer. [02:27] I hope they don't serve cats either [02:27] alas [02:27] they have one [02:28] twb: I ended up here https://bugs.launchpad.net/ubuntu/+source/linux/+bug/427210, rather interesting stuff. Thanks for the general direction pointing. [02:28] Launchpad bug 427210 in linux "CFQ may not be the right choice of i/o scheduler for the most common desktop systems" [Medium,Invalid] [02:28] !lm-sensors [02:28] To access CPU temperature sensors and detect fan speeds, install the lm-sensors package. See https://help.ubuntu.com/community/SensorInstallHowto for installation and usage instructions. [02:28] aarossig: you have a server, CFQ is probably best for your case IIRC, but feel free to experiment [02:29] deadline seems to have improved it slightly, the network transfer seems to be more continuous [02:29] I will be doing some more debugging [02:29] aarossig: at least in my case, the problem wasn't the scheduler, it was that I was doing so damn much I/O. Which was mostly due to RRDs (collectd) plus a lot of write amplification. [02:29] I fixed it by telling collectd to STFU and buffer an hour of writes and flush them all at once, instead of trying to do random-access writes into the RRDs every ten seconds [02:30] It was interesting to see how badly it raped the system, though -- e.g. dpkg would issue an fsync for every file (or dir, depending on version) and bring the whole system crashing down. [02:31] lol [02:31] very good, these are good starting points for me to google form [02:31] Incidentally, if you are into BDSM you can look at libeatmydata [02:32] Which is an LD_PRELOAD wrapper that discards all attempts by the app to explicitly flush data. [02:34] Patrickdk: fyi, the problem at the prison was he just had the wrong header package installed [02:38] I am quite proud of my little server. I can boot up from cold 8 drives and the voltage only falls from 12.2 to 11.9V. Quite pleased. [02:46] !dns [02:46] To set up a Domain Name Service see the !serverguide - https://help.ubuntu.com/10.04/serverguide/C/dns.html [02:58] where do I setup my isp's nameservers [02:58] !nameservers [02:59] !nameserver [02:59] !name server [03:00] uswed to be resolv.conf but that gets overwritten [03:01] tarvid: resolvconf package [03:01] IIUC if you remove that symlink you can just make it an ordinary file and it won't fuck with it [03:01] tarvid: If you're using DHCP, then you might set up the nameservers in the DHCP server. [03:02] static assignment [03:02] remove network-manager if you have it, then disable resolvconf, then set resolv.conf manually [03:02] or if you want quick and dirty, set resolv.conf then chattr +i [03:04] thanks, that seems like the hard way, does Ubuntu havge a reason? [03:04] well, this stuff exists to make networking on desktops and laptops easy [03:04] why it gets thrown in on servers too, I have no clue [03:04] caused me plenty of trouble before [03:06] avahi with two nics gets things wrong half the time [03:13] qman__: resolvconf is hard dep in precise (and 11.10?) so would need to disable rather than remove... oh, you said that [03:19] cfd /etc/root [03:25] so how am I supposed to set up static name servers in 12.04? [03:26] tarvid: you learn to use resolvconf, or you bypass it [03:26] When I grumped about the same thing recently, I was told 14:01 IIUC if you remove that symlink you can just make it an ordinary file and it won't fuck with it [03:27] I looked at thye man page, it is inscrutable [03:27] dns-nameservers 68.105.28.16, 68.105.29.16 [03:27] dns-search ls.net [03:27] [03:28] chattr: Operation not supported while reading flags on resolv.conf [03:39] by adding nameservers to /etc/network/interfaces I now have nameservers in roslv.conf but dns does not work [03:52] tarvid: is /etc/resolv.conf a symlink? [03:53] Define "does not work" [03:54] $ dig PTR 8.8.8.8.in-addr.arpa @8.8.8.8 +short ==> google-public-dns-a.google.com. [03:56] can't get out, can ping peers but nothing beyond the gateway [03:57] tarvid: so you did "mtr 8.8.8.8" and got nothing? [03:57] nothing [03:57] Then your network is fucked; nothing to do with DNS [03:58] you are correct [04:23] giving up for the night, thanks for the help [04:33] Hmm, any gotchas in online growing of an XFS filesystem? [04:39] Too late, I did it anyway [04:40] lol [04:55] twb: Any fun suprises? :) [04:57] Not yet [04:58] But $stupid_customer has no barriers, it's an 8-disk array w/hardware raid and then LVM on top, and the ENTIRE PV is allocated [04:58] So the "solution" to give them another 6TB of storage, was to put in another 8 disks in a second array, and pvcreate /dev/sdb and vgextend vg1 /dev/sdb and then fill /home over the entire second PV as well [04:58] "whee" [04:58] Also this is lenny [04:59] Ah [05:11] hi all [05:12] Daviey: :) [06:09] twb: I've done a lot of online growing of XFS partitions in exactly the manner you described. Works fine [06:09] twb: and when i did it, it was kernel 2.6.18 (old ass redhat) [06:19] why i dont see if labels in 'ip a'? i assigned few additional ips under labels/aliases [09:01] morning o/ [09:10] New bug: #966038 in keystone (universe) "Downloadable user OpenStack credential files (settings... OpenStack) doesn't work" [Undecided,New] https://launchpad.net/bugs/966038 [09:10] New bug: #966039 in net-snmp (main) "netsnmp_assert 1 == new_val->high failed int64.c:419 netsnmp_c64_check32_and_update()" [Undecided,New] https://launchpad.net/bugs/966039 [09:13] hi, good morning [09:13] i have a question about dbconfig [09:13] is there any way to skip database creation? i only want to create postgres user, but no database [09:14] jamespage: SpamapS would you have a look at https://wiki.ubuntu.com/JorgeSalamero/PerPackageDeveloperApplication and maybe support my application? [10:00] Hi, I got some problems with formatting my (hardware)RAID disk [10:00] I get the error it is in use while it is not mounted [10:02] Any idea what I can do to "release" this disk for mkfs? [10:13] jamespage: Question, I've seen a package I'd like to create for Ubuntu (and maintain) which would possibly land in Universe (or multiverse), due to this the restrictions of the freeze for precise do not exactly apply, right? [10:17] lynxman, they still apply - i.e. you will need a FFe IMHO - but if its a new package they I think the release team would ack that [10:17] bencer, on my list [10:17] jamespage: ok thanks! [10:18] btw, i've already sent some blueprints on things we want to work now [10:18] jamespage: its a mysql load balancer (ala pgbouncer), I reckon pretty useful for ops people [10:19] https://blueprints.launchpad.net/~zentyal [10:21] has any one ever seen 'rt6_redirect: source isn't a valid nexthop for redirect target' in syslog? I can only seem to find references to the kernel source where the message is and other people asking the same question. I have no way of working out which node is causing this. [10:29] hi, just another question about dbconfig: i need to create an user, but this user needs to have rights to create database. Currently the user created by dbconfig cannot do it, how can i do it? [10:37] please, any help with dbconfig? [10:47] please, any one can help with dbconfig? [10:56] New bug: #966115 in nova (main) "nova-api{,-os-compute,-ec2,-os-volume} relationship" [Undecided,New] https://launchpad.net/bugs/966115 [10:57] yolanda: Why would the user need to create the database? === gustav- is now known as beerbro [10:57] hi soren, because openerp works like that... [10:57] yolanda: dbconfig is supposed to have created it ahead of time. [10:58] there is a "manage databases" screen, that allows to create new databases, so the user needs to have createdb permissions [10:58] yolanda: And it gets upset if the db is already there? [10:58] well, we don't use that db that is created by dbconfig, if we could just skip the db creation will be fine. But the main problem is that the openerpuser must be able to create new db [10:59] the way that openerp works, it allows to create different databases for different companies for example [10:59] we cannot mess with it, it's how openerp is built [10:59] Oh. [11:00] I'm not sure dbconfig will let you do that. Giving admin creds to an app sounds like a recipe for disaster. [11:00] soren, not admin rights, only createdb [11:00] i'm trying to use install-dbadmin files to add an "alter user openerp createdb", am i right? [11:01] yolanda: For postgres? No idea. [11:01] it's a mandatory condition to run openerp... [11:01] * soren is a MySQL sort of person [11:01] soren, the alter has right syntax, no advice for that :) ... but for the place to put it [11:02] Then yes. [11:02] At least, that's what the docs say. I've never used that functionality. [11:02] soren, could you please take a quick look at this for me and see if it rings a bell? http://ubuntuforums.org/showthread.php?t=1947743 [11:02] ok, will try [11:02] yolanda: Hola! [11:02] How goes it? [11:03] bad... [11:03] O_O [11:03] Daviey, currently having some problems with user permissions [11:03] Daviey: by bad she means she's having troubles with dbconfig and setting up the openerp database :) [11:03] * lynxman helps sometimes as a cultural translator from Spanish to English [11:03] yolanda: just run everything as root? [11:03] (not being serious) [11:04] Daviey, i will be happy just embedding a doc in the package and telling the users to do all by themselves :) [11:04] iclebyte: No idea. I'm remarkably lost when it comes to ipv6. [11:04] soren, as am I! no problem, thanks for looking. [11:05] the problem i have, is that opnerp user is created by dbconfig, but doesn't have permissions to create new databases, which is completely mandatory for openerp [11:05] i'm thinking in use install-dbadmin scripts, and paste some alteruser there [11:07] yolanda: GRANT access? [11:07] Daviey "ALTER USER openerp CREATEDB" [11:07] this is the clue [11:07] Ah no [11:07] how can i do it? [11:09] yolanda: I think you need to add GRANT CREATE [11:09] Daviey, only need that openerp user can create new dbs [11:09] so doing that in install-dbadmin is right? [11:11] yolanda: So, you don't want the package to create the database, or create the schema ? [11:11] no, only the user [11:12] if it creates an empty db, it isn't a big problem, but the user will have to do it by the UI [11:12] yolanda: In this case, there is actually little benefit to using dbconfig :( [11:12] Daviey, to configure the user [11:12] that's the only thing [11:13] yolanda: You are going to hate me for this, but if you want the database to be managed by the app.. I wouldn't use dbconfig. [11:13] especially as you only care about pg [11:13] New bug: #507007 in asterisk (universe) "make dahdi a suggests or recommends" [Undecided,Confirmed] https://launchpad.net/bugs/507007 [11:13] well, what i need is just to create that openerp user, and modify config file with that settings. Obviously can be done in rules, as it was done before [11:14] do you think that is better? [11:15] i mean, in postinst, but with shell, sorry [11:15] # Register "openerp" as a postgres superuser [11:15] su - postgres -c "createuser -s openerp" 2> /dev/null || true [11:15] that is the old way [11:17] yolanda: if that is ALL you want to do for database handling at package level, i think i'd probably stick with that. I'd probably put a debconf question of medium, asking if i should do it or not. [11:17] You must hate me now :) [11:17] Daviey, i put you in my blacklist :) [11:18] i've learned a new thing, that's good [11:20] yolanda: sorry! When i suggested dbconfig, it was when i thought you'd be handling the database at packaging level [11:21] you don't care about the database at that stage, it seems [11:21] i'm suhc an ass. [11:21] Daviey, doesn't matter [11:21] i've learned an useful thing, and fighted with packaging a bit, that is good [11:22] i will do some modifications to that, because we need random password for that user, and modify config file, but this can be done by script [11:22] yolanda: You can generate a random password if wanted. [11:23] i know [11:23] i was doing it [11:23] with dbconfig :) [11:24] heh [11:26] jamespage: Do we care to have: jsvc, libcommons-daemon-java and tomcat6-user in main? [11:27] Daviey, any specific reason you ask that question? [11:27] jamespage: i removed them from the CD, and want to know if i should do anything to keep them in main [11:29] Daviey, I don't think they really need to be in main TBH [11:30] esp tomcat6-user [11:30] its source package still will be BTW [11:30] tomcat6 [11:30] assume you did not take tomcat6 off the ISO? [11:31] jamespage: no, tomcat is still on the cd [11:31] Daviey, great [11:31] just not -user [11:31] jamespage: happy for -user to drop to universe? [11:31] Daviey, good with me - I can't see why jsvc, libcommons-daemon-java where in main anyway? maybe euca? [11:32] maybe [11:32] hrmf - seems my server is booting, but after kernel bootup, jumping to initramfs [11:32] any idea how to remedy that? [11:32] RoyK: try the prior kernel? [11:32] grub config looks good, and it must be, otherwise it shouldn't be booting kernel [11:49] i want to set up a apache with php. I normally used mod-php5, but since ubuntu 11.x there are dependency issuses with apache worker and mod-php5. how is the recommended way of using php with apache? suphp? cgi/fastCGI? mod_php5? Thanks for your opinions. [11:49] derknecht: there shouldn't be dependency issues [11:49] problem with mod_php5 is that prefork worker is needed [11:50] derknecht: apache/php modules are pretty strongly tested each release [11:54] how stable is suphp? find the user/group setting attractive [11:57] never used suphp [11:57] never really even researched it [12:00] derknecht: I've used apache2-mpm-itk when i want apache running as a user/group === smb` is now known as smb [12:23] Daviey: itk looks very promising, thanks a lot [12:23] does that work for php and html with the same user? i mean is both affected when i assign a user/group in a vhost? === koolhead17|away is now known as koolhead17 [12:29] derknecht: yes [12:31] is there a way to create & control upstart jobs as a regular system user? [12:31] I keep getting the dbus error message whenever I use start/stop as anyone else but root [12:31] ideally, each app has will have its own regular user, it will create upstart jobs as that user and it will be able to start/stop them, no admin privileges required [12:32] jodh: ^^ [12:32] macnix: you can create jobs as regular users but this feature is not enabled in Ubuntu by default. See http://upstart.ubuntu.com/cookbook/#user-job [12:33] macnix: and presumably this is the dbus error you get: http://upstart.ubuntu.com/cookbook/#strange-error-when-running-start-stop-restart-or-initctl-emit [12:34] thanks jodh [12:34] Daviey: np [12:35] jodh: that's very useful ! I didn't know you could do that [12:36] thank you [12:36] ikonia: np. [12:37] there is a restriction on user jobs currently: they do not have their output logged. That feature is essentially complete but won't be available in Precise. [12:38] hi all [12:46] New bug: #966184 in nis (universe) "package nis 3.17-31ubuntu0.10.04.2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/966184 [13:02] good morning === bladernr_afk is now known as bladernr_ [13:16] zul: morning [13:28] jodh: yes, that's the error [13:28] jodh: my LTS is running upstart 0.6.5 [13:28] is it safe to force an upgrade to 1.3? [13:29] Hi [13:29] macnix: no [13:30] macnix: well, you can do it, but you'd need to recompile a few packages your self including nih and dbus. [13:30] should I go with Ubuntu 10.10 or 11.04 and 32 or 64 bit on a 4GHz 4GB RAM VPS? [13:30] 11.04 32 Bit [13:30] jodh: don't really want to open that can of worms [13:31] k, thanks. [13:31] 10.04 :-P [13:31] jodh: can I accomplish my goal in a different way? [13:31] macnix: quite - I wouldn't recommend it. [13:31] cant do 10.04 :( [13:31] its not in the options. [13:31] :-( [13:31] :-( [13:31] :-P [13:32] jodh: I mean, others must have tackled this [13:32] system user per app with upstart jobs, without sudo privileges, can't be THAT difficult, surely [13:32] macnix: you could play elaborate tricks with sudo+initctl+user directories below /etc/init/, but again, I really wouldn't recommend it. What types of jobs do you want your users to be able to create? When do you want these jobs to start? [13:34] macnix: I really don't know I'm afraid. But what is the user case here? You can run system jobs as a different user if required. [13:35] jodh: this is what I'm doing now 1.1 - 1.3 https://github.com/gerhard/deliver/tree/master/strategies [13:36] jodh: that requires anyone who deploys to have sudo privileges, so that upstart jobs can be created properly, and the app start via sudo start [13:37] jodh: so we have developers which have sudo privileges just because they can't deploy new versions of an app without it. [13:38] macnix: I don't understand - why does all this need to run through upstart and need root privs? Can't this app server run on non-priv ports? [13:39] jodh: yes, it can, but how do you re-generate new upstart files for that app (new services get added, old ones removed) without sudo privileges? [13:40] jodh: it's not the ports, it's writing those upstart files in /etc/init & starting/stopping the service which requires sudo [13:41] Why do you need to regenerate new upstart jobs? Why not have 1 central (root) job that uses "instance" and can somehow "look" for other instances of this app-server thing in non-priv users home directories? [13:42] jodh: how would that work? I know the instance job, but not sure how it could "look" for other jobs part of this app [13:43] let me give you a live example [13:43] macnix: look here: http://upstart.ubuntu.com/cookbook/#instance [13:44] macnix: that first example is looking for instances of some service in /var/lib/queues. Tweak to suit. [13:46] jodh: tweaking away. will let you know how it goes. cheers! [13:46] macnix: np. good luck. [14:26] Daviey: hey [14:28] Daviey: https://bugs.launchpad.net/ubuntu/+source/vde2/+bug/776818/comments/13 I'd missed that comment. I don't know how to answer that :) [14:29] Launchpad bug 776818 in vde2 "[MIR] vde2" [Undecided,Confirmed] [14:32] Daviey: specifically wrt bug 776650 [14:32] Launchpad bug 776650 in qemu-kvm "Build qemu-kvm with native VDE support" [Medium,Confirmed] https://launchpad.net/bugs/776650 [14:32] shoudl this be added to today's mtg agenda? [14:32] I'll add it [14:37] can I build a views search form that would work by just adding /search argument to the end of a taxonomy term url? [14:37] so like this: mysite.com/taxonomy/term/search [14:38] wiherek: Are you sure you're in the right channel for your question, this is #ubuntu-server [14:38] lol [14:38] thought it was drupal [14:38] sry :D [14:38] tis okay ;) [14:41] New bug: #966269 in rabbitmq-server (main) "Starting rabbitmq-server on installer stalls installation" [Undecided,New] https://launchpad.net/bugs/966269 [14:45] smoser: in cloud images, I can sudo without specifying a password, but the sudo configuration does not look like it's changed and the password is just disabled by prefixing a "!". When I do this in a netinst, I still need a sudo password (or NOPASSWD adding to /etc/sudoers). Any hints as to how the cloud images manage to work this way? I want to do the same in a netinst. [14:45] sudoers.d [14:46] $ sudo cat /etc/sudoers.d/90-cloudimg-ubuntu [14:46] # ubuntu user is default user in cloud-images. [14:46] # It needs passwordless sudo functionality. [14:46] ubuntu ALL=(ALL) NOPASSWD:ALL [14:46] passwords are overrated [14:46] #includedir /etc/sudoers.d [14:47] and there I was thinking that the "includedir" directive was commented out, so I didn't examine sudoers.d. [14:47] thanks :) [14:50] stgraber: do you have a minute? [14:51] stgraber: let's say that user namespaces came with a limitation: you have to map userids in container to userids on host a priori (prior to starting container at least). How bad is that in your opinion? [14:52] so for instance, installing mysql without planning in advance could cause setuid(mysql) to fail until you stop the container, reconfigure, and restart [14:52] (of course if you just map everything in container from 0..500 and 1000..1100 you might be pretty safe) [14:53] hallyn: sounds pretty bad as your regular user won't be able to create users on the host [14:53] well in any case the mapping will need to be created on the host, so that part i'm not sure is a problem [14:54] basically, i think you'd find a way to say host ids 50000-55000 are usable by hallyn, for whatever [14:54] then uid 0 in my container maps to 50000 on host, etc [14:54] the part that worries me is that the mapping may not be dynamically changeable [14:55] it may become so, depending on performance impact [14:57] stgraber: I'm going to cc you on my next email regarding this [14:59] hallyn: hmm, right, thinking some more, if we assign 5k uids per container it should be fine for most cases [14:59] hallyn: that's as long as they don't use LDAP or any other large user directory [15:00] right, but the q is is it reasonable to assume the container can predict the contaienr uids needed, so they can map them [15:00] let's move to email :) thx === hazmat is now known as kapilt [15:03] how do I make it do an automatic security update each night? [15:03] by "it" I mean a clean ubuntu server distro [15:46] antihero: do you want an ISO each night, or do you want to just download and install upgraded packages every night? [15:57] roaksoax: ping [16:02] smoser: regardign kvm perf regression, feb 20 I uploaded a pkg based on upstream git head to ubuntu-virt ppa, might be worth trying with that [16:02] (i'm waitnig for lucid vm to finish building) [16:03] hallyn, well, you can remove variables (specifically variables i dont care about) by using the cloud images [16:04] drat. yeah === Lcawte|Away is now known as Lcawte [16:07] lynxman: pong [16:10] roaksoax: I'm having some issues deploying precise with orchestra (sitting on an oneiric machine), I'd like to pick your brain for some mins whenever its okay for you :) [16:10] lynxman: sure, [16:11] lynxman: sure, what are your issues [16:11] roaksoax: It looks like when importing the isos if the profile already exists it won't be updated, I'm having an issue with precise where it complains about different kernel versions between the archive and the pxe boot [16:12] lynxman: cobbler-ubuntu-import -u precise-i386 [16:12] roaksoax: let me try [16:14] roaksoax: yeah did that already, facing the same issue :/ [16:15] lynxman: is cobbler-ubuntu-import updating the ISO? [16:15] New bug: #966351 in nis (universe) "package nis 3.17-31ubuntu0.10.04.2 failed to install/upgrade: le sous-processus script post-installation installé a retourné une erreur de sortie d'état 1" [Undecided,New] https://launchpad.net/bugs/966351 [16:18] roaksoax: http://pastebin.ubuntu.com/902393/ [16:18] roaksoax: it says "skipping import", that's the issue, I'd pretty much like to force it :) === jvdz_ is now known as jvdz [16:19] lynxman: cobbler-ubuntu-import -U [16:20] roaksoax: no -U option on the oneiric version [16:20] lynxman: ah then you need to remove the prefoile and import one [16:20] roaksoax: cool! will do that then :) [16:20]