JohnADoes anybody have a recommendation as to a DMS? Most docs would be scanned document images. we want to move a large collection of client records online and provide some sort of search capability. Linux based a must. Webdav compatibility/capability would be desirable. Remote access also a must.02:17
=== leo-nel is now known as leonel
uvirtbotNew bug: #986011 in clamav (main) "Package amavisd-new" [Undecided,New] https://launchpad.net/bugs/98601104:20
=== jtv1 is now known as jtv
dog545does anyone know any good weather terminal apps?06:24
dog545I am new to using irc, is there a rule i missed?06:26
dog545is anyone around?06:31
uvirtbotNew bug: #986034 in samba (main) "package winbind 2:3.6.3-2ubuntu2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/98603407:15
blendedbychriswhat's that mean?07:16
blendedbychristrying to create a csr07:16
=== almaisan-away is now known as al-maisan
linociscohi all08:28
linociscoanyone here?08:28
linociscoanyone from germany?08:28
=== al-maisan is now known as almaisan-away
linociscowhat divided east and west germany? how to call that poland area?08:31
_rubengo do your homework yourself08:33
twbPretty sure a wall divided the08:43
twbPretty sure a wall divided them08:43
koolhead17twb, :P08:44
twbblendedbychris: IME gnutls program is MUCH easier to use than openssl's08:44
blendedbychrismeh i dont know what it was but it works now08:46
twbblendedbychris: it has args like this: certtool --generate-privkey --outfile /etc/ssl/private/fred.pem08:52
twbblendedbychris: whereas in ssl that is some bullshit like ssl rsa gen > foo.pem; <plus something to remove the private key>08:52
blendedbychriswait what?08:53
blendedbychrisremove the private key?08:53
blendedbychrisan pem should have a private key included08:53
twbremove the passphrase08:54
twbI'm a bit drunk08:54
blendedbychrisyou don't have to remove the passphrase?08:54
twbcerttool doesn't add a passphrase unless you tell it to08:54
blendedbychrisneither does openssl...08:54
twbWell none of the docs I could find seemed to know that08:54
twbcerttool was straightforward and obvious for the four or five typical workflows that I actually care about08:55
twbAnd they were spelled out at length in info08:55
blendedbychrisopenssl genrsa -out /etc/csync2_ssl_key.pem 2048 just craps out a key afaik08:55
blendedbychrisshould be called .key08:56
twbif you say so08:56
blendedbychris(just ran it08:56
twbThe extension is irrelevant08:56
blendedbychriswell ya…08:56
blendedbychriswhen i see pem i always think a key  + a public but i'm probably mistaken08:56
blendedbychrisif you do genrsa des -out … it will try to encrpyt it with a passphrase08:57
blendedbychris-des rather08:57
twbpem is just the format08:58
twblike uuencode or base 6408:58
twbgpg --export --armour fred@example.net is also PEM format afaik09:00
blendedbychrisi always see folk doing -des3 -out … and then rerunning it through the thing to remove the passphrase09:00
twbYeah it is stupid cargo-cult shit09:00
twbBut you look at the list of subcommands and it's a bit overwhelming because there's no ordering09:00
twbBut whatever, I've made my salespitch09:03
blendedbychrisheh i actually don't understand enough about the crap to consider your option viable… i just fumble my way through09:04
blendedbychrisand forget it about every 365 days09:04
twbI strongly recommend reading the gnutls info page09:04
twbhttp://paste.debian.net/163926/ also here are my notes on SSL/x509 theory09:06
twb"info gnutls | less" if you don't like the default info reader09:06
twbI should probably rewrite those notes, since I understand x509 a little better now09:09
andrewhiggsHello everyone.09:19
uvirtbotNew bug: #986085 in mysql-5.1 (main) "package mysql-server-5.1 5.1.61-0ubuntu0.11.04.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 100" [Undecided,New] https://launchpad.net/bugs/98608509:21
andrewhiggsAnyone here using tomcat?09:23
ubottuA high percentage of the first questions asked in this channel start with "Does anyone/anybody..." Why not ask your next question (the real one) and find out? See also !details, !gq, and !poll.09:27
andrewhiggsMy apologies.09:30
twbNo problem09:32
andrewhiggsI am struggling to get tomcat (6.0.35) to work well on an Ubuntu Server currently testing on 12.04 but got same result on 11.04 and 11.10). The same application is running on a hosted solution with much better performance. I notice that the CPU does not appear to be being used (top shows %us to range between 5 and 15%) as much as the hosted solution (top show %us to be between 80 and 90%). How do I go about trouble shooting why the cpu is not being us09:34
twbNFI, sorry09:36
andrewhiggsThanks twb ;)09:37
andrewhiggsHow can I get Ubuntu to allow certain processes to use more resources than others? In this case I need tomcat and its database connections to be allowed more processing power.10:36
Jeeves_man nice10:38
Jeeves_But that's really just prioritizing10:39
andrewhiggsThanks Jeeves_. I tried that but the %us still does not go above 15%. It usually hovers around 10%.10:40
patdk-lapandrewhiggs, and you have idle% >0?10:41
andrewhiggsYip. That is normally around 80 - 90%.10:42
patdk-lapthen the program is to blame10:42
patdk-lapit's has the option of using more, but isn't10:42
patdk-lapor you have more than one cpu, and it's single threaded10:42
andrewhiggsBut the program run properly on another system?10:42
andrewhiggsIf I have a processor with two cores and one is being used by the tomcat process almost fully would top show %us as 50%?10:47
patdk-lapassuming two cores and no hyperthreading10:51
andrewhiggsI have not done anything with hyperthreading. Would this be something likely to be set by default?10:52
patdk-lapdepends on if your cpu support it, but normally enabled if it does10:52
patdk-lapjust cat /proc/cpuinfo to see how many cpu's it sees10:52
patdk-lapprocessor: xx10:53
andrewhiggsIt does see both. Both are running at 2.4Ghz.10:53
Jeeves_andrewhiggs: You can press '1' in top to see all cpus individually10:54
Jeeves_Also, look at iowaiy10:54
Jeeves_if that's high10:54
Jeeves_Your processes are just waiting for your disks10:54
andrewhiggs%wa is usually quite low. I have only seen it spike once or twice.10:55
andrewhiggsSorry. :-)10:55
andrewhiggsIf I press 1 as suggested I see that both processors seem to be being used roughly half half.10:57
andrewhiggsCpu0 is usually just a few percentage points above cpu1. Which I would think is normal.10:58
_rubenperhaps it just doesn't have any more work to do :)11:02
andrewhiggsBut the tomcat application runs very slowly. The %us on another server is 80 - 90%. :-)11:03
patdk-lapnothing is worse than locking issues11:05
andrewhiggsHow do you think I can try to trouble shhot why this process is not using more resources than it does?11:56
Madkisshi there!12:02
MadkissWhats the default iscsi target in Ubuntu 12.04?12:02
MadkissI understand it is tgt?12:03
=== lionel__ is now known as lionel
ryehello, i have recently updated to the latest packages (on 18th of april), before that I was running for quite a long time with the packages of 2 weeks old. Now my test vms with windows7 are extremely slow w/o the changes to the underlying hardware.12:22
=== matsubara-afk is now known as matsubara
ryeno dmesg messages, no syslog messages to pinpoint what's happening. I see elevated disk usage at times but it does not look like it was too different earlier12:24
koolhead17Madkiss, hey12:25
Madkisshello koolhead1712:37
koolhead17Madkiss, trying to figure out what am doing wrong to get vnc running and other distro instances tested12:40
jca1981hi does anyone know an easy distribution to set up a small ftp server with web interface?12:42
ubottuFTP clients: Nautilus (Places -> Connect to server), gFTP, FileZilla (for !GNOME); Konqueror, Kasablanca, KFTPGrabber (for !KDE); FireFTP (for Firefox); ftp, lftp (for !cli) - See also !FTPd12:43
ubottuFTP servers: ftpd, proftpd, pure-ftpd, twoftpd, vsftpd, MuddleFTPd, wzdftpd - Graphical front-ends: PureAdmin, GProftpd (for GNOME), KcmPureftpd (for !KDE) - See also !FTP12:44
uvirtbotNew bug: #986159 in squid3 (main) "squid3 open file descriptors limit is set incorrectly" [Undecided,New] https://launchpad.net/bugs/98615912:46
=== almaisan-away is now known as al-maisan
=== al-maisan is now known as almaisan-away
=== almaisan-away is now known as al-maisan
=== al-maisan is now known as almaisan-away
uvirtbotNew bug: #975450 in txlongpoll "bind all services not required by the nodes to the loopback interface or add ingress firewall rules for these services" [Undecided,Confirmed] https://launchpad.net/bugs/97545014:16
rbasakAny comments on the impact of bug 986159? The default number of file descriptors is 1024, is it? Would this bug cause issues in production?14:24
uvirtbotLaunchpad bug 986159 in squid3 "squid3 open file descriptors limit is set incorrectly" [Undecided,New] https://launchpad.net/bugs/98615914:24
rbasakhallyn: ^^, can I get your opinion on this? Is this important for precise? Everyone else is at ODS it seem!14:28
hallynopentack devel conf14:30
hallynrbasak: ah, the bug makes sense.14:30
hallynrbasak: i'd say, dput the fix and ask on #ubuntu-release what they think14:30
rbasakhallyn: I can't upload14:31
hallyncause I have no idea (a) how important squid is to us or (b) how important the fd limit is to squid14:31
rbasakyeah that's what I'm thinking, too14:31
hallynoh.  not sure i can either come to think of it :)14:31
rbasakI can ask in #ubuntu-release though14:31
hallyni'll go peek in too14:31
rbasakLooks like squid got demoted to universe in precise14:32
hallynrbasak: actually the ulimit part may be important14:34
rbasakah it's squid3 and that is in main14:34
hallyneh i guess not :)14:34
hallynrbasak: well, tbh, i think that bug would be fine to SRU14:36
hallynrbasak: it's not something that prevents it from rnning out of the box14:36
thebwtover ldap authentication, is there a way to keep a workstation user with root access from 'su'ing into any other user account and bypassing authentication?14:42
rbasakthebwt: no. Root access is root access. Root can bypass anything.14:42
rbasakthebwt: note that root on one system isn't necessarily root on another, though.14:43
thebwtright, the issue is that a user could then su to other users and manipulate their home directories14:44
thebwtnot so much root access14:44
rbasakDon't give the user root then.14:44
thebwtwhat about a machine booted into single user mode?14:44
rbasakOr put the home directories on a different machine14:44
thebwtthey are mounted over nfs14:44
rbasakNFS trusts what the machine claims in general.14:45
rbasakThe latest NFS stuff might fix that though, but I'm not up to date with it.14:45
thebwtso then on an ldap authentication with nfs mounts for the home dir. A standard machine booted in 'single' mode can create a massive breach in the network? That seems a bit silly, surely other people have run into the problem before.14:50
dorkanyone experienced w/ mdadm/software raid and has had arrays assemble with strange hardware addresses like md127 and have it in auto-read-only?15:01
=== Lcawte|Away is now known as Lcawte
=== almaisan-away is now known as al-maisan
=== xnavor_ is now known as xnavor
uvirtbotNew bug: #986314 in squid3 (main) "squid3 missing pie and bind-now hardening options" [Undecided,New] https://launchpad.net/bugs/98631417:56
=== koolhead11|away is now known as koolhead11
=== fenris is now known as Guest89753
=== Guest89753 is now known as ejat
ZenMasterHi. :)18:19
MrWobzHello I have a problem, hdparm -tT displays BOTH drives as running reaaaally slow, Ive switched raid controllers and now I dont know what to do18:21
ZenMasterI need local name resolution, so that my users can connect to corporate intranet site.18:21
ZenMasterdnsmasq the way to go?18:21
koolhead11Daviey, are you really around? :P18:33
=== matsubara is now known as matsubara-lunch
=== al-maisan is now known as almaisan-away
MrWobzHello I have a problem, hdparm -tT displays BOTH drives as running reaaaally slow, Ive switched raid controllers and now I dont know what to do, Its 3.0.0-12-server #20-Ubuntu SMP, I dont have the problem with 10.X though19:07
PiciMrWobz: You may want to try asking in ##linux as well, since I've noticed you're not getting (m)any answers here.19:08
MrWobzroger, its just I dont know whats different in terms of hdd management kernel level from 11.x and 10.x19:09
PiciMrWobz: 11.10 was the first release to use linux 3.0, prior releases were 2.619:11
MrWobzIt could mean in 3.0 a driver was dropped somewhere19:14
PiciIts possible, but I'd be surprised if it wasn't noticed.19:18
=== matsubara-lunch is now known as matsubara
raubvogelOn op-panel, where are the passwords for voicemail defined? Are they the ones in /etc/asterisk/voicemail.conf?19:43
Piciraubvogel: You may want to ask in #asterisk19:53
=== cloakable_ is now known as cloakable
uvirtbotNew bug: #986385 in lxc (universe) "lxc.mount.entry fails into mnt/subdir" [Medium,Confirmed] https://launchpad.net/bugs/98638521:16
^MikeI created a directory in /var/run to hold some sockets and pidfiles for several daemons. After rebooting, the directory is gone - why?22:25
maxbBecause /var/run is a tmpfs; a ramdisk22:38
SpamapS^Mike: its guaranteed to be *empty* at boot time :)22:52
uvirtbotSpamapS: Error: "Mike:" is not a valid command.22:52
* ^Mike patpat uvirtbot22:55
^MikeSpamapS: thanks, I'll have my scripts create the directory if it doesn't exist then :\22:56
pacsmanHello, asking for who to choose between ubuntu-server or debian 623:02
^Mikepardon? O.o23:07
pacsmanjveu installer un OS sur un server proliant, ki serait le mieu, ubuntu-server ou debian 623:09
^Mikeit's fairly likely that the people in here are going to prefer ubuntu :)23:12
pacsmanjust askin :P23:13
SpamapSpacsman: ubuntu server has versions too. :)23:14
SpamapSpacsman: maybe people like ubuntu 10.04 > debian 6 > ubuntu 8.0423:14
pacsmank ty23:18
=== Lcawte is now known as Lcawte|Away

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!