/srv/irclogs.ubuntu.com/2012/04/23/#ubuntu-server.txt

=== kees_ is now known as kees
uvirtbotNew bug: #987051 in samba (main) "advice" [Undecided,Invalid] https://launchpad.net/bugs/98705100:41
=== AntORG_ is now known as AntORG
=== statik_ is now known as statik
JoeCoderHello.  I'd like to share / via samba.  This is a virtual machine used for development only, and I want the host os to have complete read/write access to the drive.03:10
JoeCoderhowever, chmod -R 777 / would cause things to break, since some processes require their files to have certain permissions.03:11
twbYou don't need to chmod -R to export a directory tree via samba, and you almost certainly don't want to export / in any case.03:12
JoeCoderI do want to export /.  I realise this is atypical.03:12
JoeCoderI'm developing software to run on an ubuntu server.  all of my development environment is on windows and tied to it for other reasons.03:13
twbA safer way to arrange this would probably be to use SFTP with passphraseless SSH keys, with the host OS sshing in as root if superuser write access is necessary.03:13
JoeCoderI don't have a good way to mount sftp as a drive on windows.03:13
twbWindows will make that harder, but AIUI it can still be done with filezilla or something03:14
twbIf this is development code, syncing between hosts should almost certainly be done with a VCS, e.g. git or svn.03:14
twb(code as opposed to a configuration management, or word processor documents or something.)03:15
JoeCoderI use mercurial for code storage, but I don't want to have to commit for every small change I want to test.  I also have config file changes spread throughout the filesystem.03:15
seekwillJoeCoder: Why do you want to have full control via SMB?03:15
twbYou could make tiny commits in a dev branch and then squash them into coherent logical commits when they are working.  But hg may make this tedious and painful.03:16
JoeCoderyeah03:16
seekwillWinSCP?03:16
twbAs for configuration management, this might best be done with puppet or cfengine or such.03:16
twbBroadly, instead of making changes directly, you write a version-controlled config file which is under VCS and is applied by the configuration manager.03:17
JoeCoderI have a shell script that can does this already03:17
JoeCoderbut for development I just need to fiddle with things.03:17
twbAlso, if you are developing software for an Ubuntu server, you should consider packaging it formally (i.e. as a .deb), which has some deployment implications (both bonus and malus).03:17
JoeCoderit's somewhat of a shared hosting package.  I'll be the only user.03:18
JoeCoderthe only *direct user.03:18
twbIt can still be useful to package in-house stuff formally, but often less so.03:18
JoeCoderand with such, there's code being deployed across multiple user accounts, since apache runs each hosted site as a separate user.03:18
JoeCoderI have eclipse, photoshop, and half a dozen other tools running on windows.  not that I prefer windows, but I need it for other work.  And I don't want to have to setup my development environment twice on two different os's.03:19
twbWell, you're pretty fucked there, since Windows won't have the same UIDs03:19
JoeCoderUIDs?03:19
twbusers03:19
JoeCoderI don't see how that limits me?03:20
JoeCoderso far I've developed this thing and ftp'd my code up to a rackspaces server for testing.  but that's getting tedious.03:20
=== Tm_K is now known as Tm_T
JoeCoderso I had hoped to smb share a local ubuntu server vm with eclipse running on windows with multiple projects directly in the ubuntu server filesystem.03:21
twbYou said you want to blat files owned by different users, on the remote host (the ubuntu server).  This means you'd either need to have your upload infrastructure auth as different users for each bit, or have a munger script to fix things.03:21
twbIf eclipse can only talk SMB and not SSH/scp/SFTP, it's pretty crap.03:21
JoeCoderI don't know if it can talk any of those.  smb is handled a layer below by windows.03:22
twbDunno.  Emacs can use the OS's mountpoints, but it can also speak both SMB and SSH directly i.e. in userspace, to access remote files.  I assume Eclipse can do the same.03:23
JoeCoderif there's a way to smb share /, and make newly created files via smb inherit the permissions of the parent folder, I'm pretty srue it will all work.03:23
JoeCoderwhen I tried emacs, it couldnt' handle php and html code in the same file.  #emacs didn't have any solutions.03:23
twbPOSIX DACs don't work that way.03:23
twbNew files in a setgid dir will by default have the same group as the dir, but that's all you can do.03:24
JoeCodertwb:  eclipse isn't an operating system :)03:24
twbYou MIGHT be able to have samba export, say, /srv/www/alice and /srv/www/bob directly and have *samba* squash permissions and usage to thei respective users.03:25
twbBut I doubt you can or should do what you are asking for, for / as a whole03:25
JoeCodertwb:  that might work.03:25
JoeCoderthis is only a share between a guest vm and a host os, so I don't see any dangers in sharing /.  Whether it can be done is sitll an issue.03:26
twbYou could also investigate non-DAC access control (i.e. LSMs, NFSv4/SMB2 ACLs), but that's almost certainly a lot of hassle and probably not going to help.03:26
JoeCoderthis solution was actually suggested by users in #virtualbox03:26
JoeCoderwhat's DAC?03:26
twbdiscretionary access control03:26
twbi.e. rwxrwxrwx03:26
JoeCoderah, ok03:26
twbhttps://en.wikipedia.org/wiki/Discretionary_access_control03:27
JoeCoderif I share /home/alice, and /home/bob, I'll still have to make them 777.03:27
twbWhy?03:27
JoeCodermaybe I'm wrong?03:27
JoeCoderin my current share of /, I can only browse, but not read or write.03:27
JoeCoderI had assumed 777 was required.03:28
twbIf someone says you need to chmod -R 777, you should shoot them in the head03:28
twbBecause they are a fucking cowboy.03:28
JoeCodernobody has said that.03:28
JoeCoderand I certainly don't want to do that.03:28
JoeCoderas I said in the beginning, certain processes will only work with certain permissions on their config files.03:29
twbThen set those permissions.03:29
JoeCoderthey're already set.  I'm explaining why 777 is a terrible idea.03:29
JoeCodermoreso, in my testing of sharing /media/share, i can only write to it if it's 777.  755 prevents me from writing via samba.03:31
JoeCoderthis problem will prevent even the home/alice, home/bob solution.03:31
twbThat is because you are logging in as the wrong user03:32
twbPerhaps this would be a good time for you to pastebin your smb.conf03:32
JoeCoderI wonder how I can control that.03:32
qman__by logging in as a user that has permission03:34
JoeCoderit's the default smb.conf from 12.04 with this added at the bottom:  https://gist.github.com/1bc9a5d1390e0c4adc4a03:34
JoeCoderwhen I first connected via windows, I typed Guest as the username.03:34
JoeCoderlater, I created a Guest user in ubuntu and added that user to the root group03:34
JoeCoderbut that didn't make a difference.03:35
twbPastebin the whole file.  ICBF downloading the 12.04 samba source to find out what its default config file looks like.03:37
twbAdding a user to group 0 won't give it superuser privileges.  It must be user 0.03:37
JoeCoderhttps://gist.github.com/1bc9a5d1390e0c4adc4a03:37
JoeCoderI forgot that I had also changed the workgroup name to match the rest of my network, on line 3803:38
JoeCoderI'm working on logging on as the root user via windows.  I have to figure out a way to make windows let me re-enter the crednetials.03:40
qman__JoeCoder, in vista/7, credentials manager, in XP it's more hidden, "rundll32.exe keymgr.dll, KRShowKeyMgr"03:42
JoeCoderimpressive knowledge03:43
JoeCoderbut the list is empty.  I recently deleted it via net use, and also in the saved network credentials in control panel.03:44
qman__my day job is a sysadmin for about 50 people running windows SBS, I run into it all the time03:44
qman__ok, if it's not in there you need to log off and back on again03:44
JoeCoderof my windows account?03:44
qman__yes03:44
JoeCoderbrb03:44
JoeCoderthat allowed me to re-enter my credentials.  But even when connecting via root, I don't have write access.03:46
twbqman__: you poor bastard03:46
JoeCoderin case you're wondering, I have no heartfelt feelings for windows and would migrate completely to linux, if I didn't need it for other tasks.03:47
JoeCoderwe do windows software development at my day job, heavily tied to visual studio and the windows libraries.03:48
twbShrug.03:48
qman__not sure what user samba runs as, might be an issue there03:49
qman__or it might be some safety thing preventing root from being root03:50
qman__because normally such a thing is a very bad idea03:50
twbIt probably acts like sshd where the master proc runs as root and it drops privs in subprocs03:50
twbNope, all procs run as root as at 8.0403:50
JoeCoderI've read that samba runs as root.03:51
JoeCoderthanks for the help so far, everyone.03:53
qman__I guess next steps would be to see if it's really a permission problem or a root safety, or maybe it's a multi filesystem block, or a setting on the samba share03:56
JoeCoderI'm reading the smb.conf docs now03:56
JoeCoderthey're unfortunately long.03:56
qman__yes, lots of options03:56
qman__SMB is pretty complex03:56
qman__and samba's got lots of auth methods and stuff to convert the permissions03:57
twbSMB is a clusterfuck.  SMB2 looks a lot nicer, but the client side support isn't available in Linux yet AFAIK.03:57
twbRemember SMB was designed before IP had won!03:58
qman__yeah, all that netbios garbage and then you've got the leftovers from windows 9x03:58
qman__even just getting rid of the pre-NT stuff would help immensely03:58
twbqman__: um, NT defaults to using NetBIOS in preference to DNS up until about 6.0 or 6.103:59
qman__yeah03:59
twbAnd kerberized CIFS isn't mandatory even now03:59
qman__and people wonder why windows networking is so buggy and unreliable04:00
twbNTLM should be shit-canned as well, since we're wishing04:00
twbqman__: it's unreliable because it's stolen from BSD ;-)04:00
qman__true enough, a very old version of BSD04:00
JoeCodersolved all my problems04:34
JoeCoderI added these flags to smb.conf:04:34
JoeCoderadmin users = %U inherit permissions = yesinherit owner = yes04:34
JoeCodererr, with line returns and spaces, that is.04:34
JoeCoderthe first makes the currently connected user have root access to everything.04:34
JoeCoderI also had to set the sgid flag on the directories I'll be working in, so that newly created files will inherit the same group04:35
twbIf you have your heart set on doing this in samba, you should probably discuss it with #samba, who will understand the intricacies better than us04:43
=== flepied_ is now known as flepied
=== smb` is now known as smb
=== andol_ is now known as andol
=== android is now known as jussi
koolhead17hi all09:50
brainysmurfhi, i am running a server for a school with 1000 students. Is there a distinct advantage to making virtual users instead of system users?11:01
rbasakbrainysmurf: virtual users have less admin overhead, since you don't need to manage disk quotas and other resources as much, and there's less scope for users to do something they shouldn't be able to. But it depends entirely on what services your server actually needs to provide its users.11:07
rbasak(you'll still want disk quotas if you're providing a file server, for example)11:08
brainysmurfrbasak: If say a student's login could change due to passport name changes or something, do system users have a way of doing this easily?11:10
brainysmurfer, to admin have an easy way to change it for them11:11
brainysmurfAlso, the server should have an ldap service11:13
rbasakbrainysmurf: I'd say that login name changes are best avoided completely. There may be many services that key on the username instead of the uid. Config files probably key on usernames rather than uids. If absolutely necessary, I've dealt with these requests in the past by creating an entirely new user and migrating necessary items across to avoid unexpected issues. With virtual users, the issues are usually much easier to enumerate.11:13
rbasakbrainysmurf: you can of course change the full name associated with a username easily.11:13
ruben23guys you tried setting up mysql serevr on ubuntu serevr and i cant find samples config fiels like --> my-huge.cnf and my medium-cnf11:13
ruben23any idea..?11:14
brainysmurfthat's really helpful thanks rbasak11:14
rbasakno problem!11:19
Patrickdkruben23, those files are extreemly dated11:19
ruben23 Patrickdk:what you mean dated..?11:20
chmacI recently deployed a handful of servers on 11.10 and now I want to upgrade to 12.04 when it goes final. Any advice on whether `apt-get dist-upgrade` is a better option than re-installing from scratch?11:22
chmacI have only remote access to the machines, and I'm not sure how quickly the hosts will release the 12.04 image, so a fresh install might present some challenges.11:23
brainysmurfPatrickdk 'dated' means old, out of use11:24
rbasakchmac: you should use "do-release-upgrade" rather than "apt-get dist-upgrade". If there's anything that stops dist-upgrade from just working, do-release-upgrade is where that knowledge goes.11:28
chmacrbasak: Ok, great, this'll be my first upgrade after 4/5 years of using Ubuntu, I've alwasy re-installed before, thanks for the advice.11:29
rbasakchmac: as for your actual question, I'm not sure what the best answer for you would be. It's a trade-off. Both approaches should work. But they have different failure modes. There's no substitute for testing before doing any kind of update on production servers.11:29
chmacrbasak: Right, we have 3 identical servers and I'll upgrade the non-production box first, fail over to it, upgrade production and fail back.11:30
rbasakchmac: that sounds like a good plan11:30
chmacrbasak: I'm already running mysql from a PPA, so I'm guessing that switching from the ppa version to precise's 5.5 should be fairly seamless.11:31
chmacrbasak: I think that's the major area for potential breakage, hopefully it goes smoothly.11:31
rbasakchmac: you might be interested in reading https://lists.ubuntu.com/archives/ubuntu-server/2012-February/006073.html and https://lists.ubuntu.com/archives/ubuntu-server/2012-February/006129.html11:34
chmacrbasak: Reading now, thanks11:35
afuentesim going to upgrade my jaunty server to lucid... im not even in the latest jaunty so im going to upgrade first to latest jaunty and then to the latest lucid. Is it advisable to reboot (i watched the upgraded and it includes a new kernel) after upgrading to latest jaunty and before upgrading to lucid?11:36
rbasakafuentes: yes, and I think the supported path is jaunty->karmic->lucid rather than jumping a release. But I'm not sure.11:38
afuenteswell, i plan to just do dist-upgraded... i tested in a similar test machine and it worked fine :)11:38
afuentesi basically only have lvm and kvm in that machine11:39
chmacrbasak: Interesting reading, thanks for the links.11:41
rbasakchmac: no problem11:41
chmacI'd be happy to see percona-server replace mysql as the "default" database.If it were included in the official repos that would give me a great deal more confidence than having to figure out what's required to get it directly from percona, etc.11:42
maedoxHi all, I booted a 12.04 server in EC2, and even though there's no NOPASSWD statements in /etc/sudoers I'm not asked for a password when sudo -i. Anyone know how it's configured?11:42
rbasakmaedox: /etc/sudoers.d/90-cloudimg-ubuntu11:43
maedoxoh god, I just found that myself11:43
maedoxlol11:43
maedoxthanks :D11:43
rbasakchmac: I *think* percona or mariadb is the direction it's headed, since oracle make it difficult to cherry pick security fixes which has been the way debian and ubuntu have always worked in order to maximise stability. Looks like neither percona and mariadb are available in precise though - I presume they missed the release for time reasons. There will probably be a session and decision made at UDS-Q on this.11:45
maedoxIf I keep upgrading 12.04 beta will it go into release mode, as in lose the (development branch) tag, or is that a release upgrade?11:45
rbasakmaedox: I'm not sure but I presume so. I can't think of any other way it would happen.11:46
maedoxrbasak: Hope so. Can't remember what has happened in the past though. I guess we'll see soon enough.11:47
chmacrbasak: Sounds like Ubuntu made a big commitment to support mysql-5.5 in Precise for 5 years, which gives me comfort. I'll probably stick with it for now, but if percona had been a drop in replacement from the repos, boom, I'd have switched.11:54
chmacrbasak: Do you know if Maria is a drop-in replacement? I noticed a different version number, wasn't sure if it was moving in a new direction rather than following mysql.11:54
rbasakchmac: "MariaDB 5.3, in release-candidate now, is 100% backward compatible with MySQL 5.1.". I don't know any more. Sticking with mysql-5.5 for now makes complete sense. The unfortunate position though is that security updates may affect stability, since the security team may have to blindly take releases from upstream rather than being able to see the corresponding upstream commits.11:57
rbasakchmac: I don't know that there's any other option though.11:58
chmacrbasak: I might put an hour or two into investigating percona-server. If it's a drop in replacement, could be an option, although I dare say that means I'm dependent on percona release updates rather than ubuntu.11:58
=== jdstrand_ is now known as jdstrand
=== alaing is now known as funkymonk
zulgood morning12:42
koolhead17evening zul :)12:58
chmacafternoon13:00
memoryleakWhen I use apt-add-repository to add a new repository, where does it writes the repository to? I want to undo that, can't find in /etc/apt/source.list13:03
=== jcastro_ is now known as jcastro
koolhead17adam_g, let me know your around. will need your helping hand in getting vnc viewer via horizon up and running. :(13:20
phaidroshi, I have troubles with openssl, trying to setup my own CA and deploy a simple *.tld wildcard cert for my local TLD. Creating CA and importing the CA certificate into the browser works nice.13:22
phaidroscreating, signing and deploying the *.tld certificate does well, too.13:22
phaidrosbut, firefox as well as chromium complain about a domain name mismatch between the cert stating *.tld and the actual site being something like phpmyadmin.tld ..13:23
henkjanmemoryleak: /etc/apt/sources.list.d13:57
memoryleakhenkjan: thanks, I've found it allready13:57
=== Lcawte|Away is now known as Lcawte
brainysmurfCan email users be defined by an ldap on the same server?14:47
resnowithout having kvm extensions whats the next best virtualizer i can use?15:11
zulDaviey: can you review quantum please?15:11
zulDaviey: nm thanks though15:14
hallynresno: depending on what you need to do, might look into lxc, openvz, linux-vserver15:24
resnohallyn: do you suggestion against something like proxmox?15:25
resnoi know it runs openvz inside of it15:26
* koolhead17 thinks its not so lucky day :(15:41
hallynjjohansen: bug 987371   :(15:44
uvirtbot`Launchpad bug 987371 in lxc "unconfined containers are not starting" [Undecided,New] https://launchpad.net/bugs/98737115:44
hallynjjohansen: it sounds like aa_change_profile() wants /etc/apparmor.d/unconfined to exist?  This used to work, i'm quite sure...15:54
hallynsounds like i get to add a test to the suite when this is fixed15:54
jjohansenhallyn: :(15:59
jjohansenhallyn: wait can you try with16:01
jjohansenhttp://people.canonical.com/~jj/linux-image-3.2.0-23-generic_3.2.0-23.36~aa_amd64.deb16:01
jjohansenjdstrand: so you are aware ^16:01
sanguisdexwhere can I read up in Turing off password authentication for ssh connections16:02
hallynjjohansen: i'm testing on cloud image :(16:03
jdstrandjjohansen: I am not aware of this16:03
hallynjjohansen: trying to get a machine up where i can test, but the installer is not cooperating16:03
jjohansenjdstrand: just making you aware16:03
jjohansenhallyn: ah, hrmmm16:05
hallynjjohansen: (but bookmarked, will try it)16:06
hallynI assume it should be easy enough to whip up a program and test profile to reproduce16:07
hallynif the lxc way is too much overhead16:07
jjohansenhallyn: if its what I think it is, we already have a couple tests for it, but it came to late for the kernel16:09
jjohansenand is scheduled with a couple of other fixes for the next one16:10
hallynjjohansen: ok, that'd be good, thanks.  i'll mark it as affecting kernel, and if your .deb fixes it i'll mark it fix committed16:12
hallynwas about to add the same comment to the bug as you did :)  thanks16:13
=== dendro-afk is now known as dendrobates
=== matsubara is now known as matsubara-lunch
=== dendrobates is now known as dendro-afk
* koolhead17 wonders why we don`t have swift config files after installing it from repo.17:32
erichammondI just got dropped from #ubuntu-cloud and got an alert that it now requires an invitation.18:16
Picierichammond: it forwards here now, and since you're already here....18:17
PiciJust a quirk of the ircd.18:18
erichammondPici: Ah, thanks.18:19
hallynjjohansen: that kernel does seem to fix it18:22
jjohansenhallyn: okay thanks for the confirmation18:22
=== matsubara-lunch is now known as matsubara
Laiceanyone here used ISPConfig?18:50
=== dendro-afk is now known as dendrobates
resnoour server infrastrucutre needs to move, and i need a bit of help knowing what hardware to pick out... if anyone could help19:11
=== hggdh_ is now known as hggdh
=== Muska_ is now known as Muska
=== Timothy is now known as Taftse
resnoRoyK: ping?19:35
=== pangolin is now known as quantal
=== dendrobates is now known as dendro-afk
=== quantal is now known as pangolin
=== bemu_ is now known as bemu
grendal-primegrrrr20:10
grendal-primepostfix20:10
grendal-primei just need to be able to send mail from this server via another smtp server on the network20:11
lamont`lots of choices there20:11
grendal-primelamont`, ya but i have to use postfix20:13
lamont`grendal-prime: I have personal reasons to applaud that decision20:14
grendal-primeok20:15
grendal-primeso what is the simplest config to foward anything going out to another smtp server20:15
el_seanolamont`: postfix dev :D20:38
=== lamont` is now known as lamont
=== dendro-afk is now known as dendrobates
=== blendedbychris2 is now known as BlendedByChris
Aisoni'm going to hate ubuntu server :)  since 11.10 networking sucks completly. Eg. a simple network setup with bonding and vlan that worked for years suddenly stopped. After a reboot, all my machines are lost and I have to got to the console and manually setup bonding with ifenslave and vlans21:42
rbasakAison: sorry to hear about that. If you can work out steps to reproduce, please do file a bug and we can look into it. I couldn't call a network setup involving bonding and vlans "simple" though!21:44
Aisonthat's my network/interfaces file. maybe there were some slight changes required, no idea21:46
Aisonhttp://pastebin.com/MN5Pi86V21:46
Aisonafter rebood, bond0 is up, but eth0 and eth1 not, so no real device is enslaved by bond021:47
Aisonsomehow eth0 and eth1 are not started21:47
Aisonso I have to login into the console and do  ifconfig eth0 up   and eth1 up21:48
Aisonthen ifenslave bond0 .....21:48
rbasakAison: looks like there's documentation on this in /usr/share/doc/ifenslave-2.6/README.Debian.gz. You need bond-master and bond-primary lines in /etc/network/interfaces against eth0 and eth1.21:55
robbiewzul: do we need a blueprint for this -> https://blueprints.launchpad.net/ubuntu/+spec/servercloud-q-openstack-stable21:56
robbiewseems like it's business as usual...maintaining the stuff we ship21:56
robbiewarosales: do you know if jamespage wanted a session for this or just a blueprint to track work items -> https://blueprints.launchpad.net/ubuntu/+spec/servercloud-q-tomcat721:58
* arosales looking21:59
arosalesrobbiew: looks to just track, doesn't look like it needs a lot of discussion22:00
arosalesrobbiew: ah, whiteboard, "no session needed" :-)22:01
robbiewah..damn it22:01
robbiewthanks22:01
arosalesrobbiew: np, thanks for taking a look at the proposed blueprints22:02
rbasakDaviey: please see backscroll for Aison's upgrade breaking bonding and making the system unreachable. Looks like it's a required documented change in /etc/network/interfaces, and I think it'll hit Lucid->Precise upgraders too. Something for the release notes, perhaps?22:09
* Daviey lookies22:10
rbasakDaviey: http://bazaar.launchpad.net/~ubuntu-branches/ubuntu/precise/ifenslave-2.6/precise/view/head:/debian/README.Debian#L39 for the documentation on this.22:12
Davieyrobbiew: I think, as we aren't planning to do traditional SRU's for openstack.. grab the latest stable tree and upload, we could do with a session.. along with SRU team, to formalise what we need to do for testing and process.22:12
robbiewah22:12
Davieyrobbiew: That being said, i suspect a 30 min session would be ideal.22:12
robbiew30min?22:13
robbiewmaybe add to the openstack next steps session22:13
Davieyrobbiew: yeah, i think they could sit together well.22:13
Davieyrobbiew: i'll make sure pitti and SpamapS are aware of their requested attendance for the start/trailing 30 mins.22:14
Aisonrbasak, thx, going to try that22:14
adam_gpersonally i think we need at  least a whole hour dedicated to the openstack SRU stuff. we really have a lot to cover among each other on the server team + others outisde22:14
Davieyadam_g: depends how fast we talk :).. but yes, you are probably right.22:15
Davieywe can also work out what extended manual/human vs automated validation we need.22:15
adam_gDaviey: how and what we decide wrt to supporting multiple versions of openstack has a big impact on other things like general openstack next steps and CI next steps22:16
Aisonrbasak, nice one, just found something related in ubuntu forums: http://ubuntuforums.org/showthread.php?t=187606122:18
Davieyadam_g: not sure, will know more shortly :)22:18
DavieyAison: Hey, did you open a bug?22:18
AisonDaviey, no, maybe it's not a bug. I guess 11.10 requires some changes in the config files22:19
rbasakAison: if upgrading breaks bonding to the point where the server fails to bring up network interfaces, I'd say that it's a bug.22:20
Aisonrbasak, well, it's not the upgrade to 11.10. After upgrade to 11.10 it continued to work. But some weeks ago it suddenly stopped22:21
Aisonmaybe some later upgrade breaked it22:21
=== Lcawte is now known as Lcawte|Away
rbasakAison: ah. In that case it may be the race condition that the documentation refers to.22:23
DavieyAison: can you throw what you know on a bug, it would really benefit trackability.22:26
Aisonit's working now, it was really a change in the config file22:28
DavieyAison: yeah, as rbasak points out.. we probably want to release note the fact that it's less than joyful.22:28
DavieyBut currently, i don't fully grok the issue.. So i'll read it via a bug, in the morning? :)22:29
AisonDaviey, the only bug I can see is, that the documentation is missing ;) or I was too stupid to find the right documentation22:31
Aisonbut if I follow README.Debian.gz  then everything is clear22:32
DavieyAison: right, but i'd like to warn users before upgrading if config isn't safely handled on upgrade.22:32
Aisonok, I understand22:32
RamJettGood afternoon. I have a question on a problem with boot up with 12.04 .. pretty sure it is a RAID detection race condition. Anyone want to take it on?22:33
AisonDaviey, i'm going to file a bug report. but all I can file is my old configuration and the new one that was required to work with 11.1022:35
DavieyAison: sounds good to me, for the lazy can you provide the readme?22:35
Aisonyes22:35
=== matsubara is now known as matsubara-afk
DavieyAison: thanjs22:36
RamJettAnyone ?22:39
Aisonhmm, there's already a similar bug report for 12.0422:41
Aisonhttps://bugs.launchpad.net/ubuntu/+source/ifenslave-2.6/+bug/97421822:41
uvirtbot`Launchpad bug 974218 in ifenslave-2.6 "Ifenslave-2.6 problem in ubuntu 12;04 precise" [Undecided,Confirmed]22:41
Aisonso in fact it's a problem of the ifenslave package upgrade22:42
ThiagoCMCHi! I just start Ubuntu MAAS (with maas-dhcp / maas import isos / etc), added my first node Okay... The node boots up using PXE smoothly BUT, what is the user login of my newly added node?!!? Or the root password?!22:51
ThiagoCMCSecond question: Can I use MAAS to deploy a Ubuntu Server to a server's harddisk (instead of using diskless servers)?!22:53
ThiagoCMCAlso, how to join #ubuntu-cloud channel?22:54
EvilResistancei dont think you can22:55
EvilResistance#ubuntu-cloud redirects here22:55
EvilResistanceso...22:55
EvilResistancethat means that channel is empty22:55
EvilResistance:P22:55
EvilResistance(or secured)22:55
ThiagoCMCok23:18
ThiagoCMCEvilResistance, do you know what is the default login of a Ubuntu MAAS node?23:19
ThiagoCMCIt is all installed here but, I can't login into my fresh nodes... lol23:19
ThiagoCMCSounds newbie but... I need some help here...23:19
ThiagoCMC^^23:19
uvirtbot`ThiagoCMC: Error: "^" is not a valid command.23:19
EvilResistancedon't assume i know what you mean :P23:19
* EvilResistance doesnt use MAAS, whatever that is\23:19
ThiagoCMCUbuntu 12.04 - MAAS...23:19
* EvilResistance may know a lot about how IRC works, but not everything about Ubuntu Server deployments23:20
ThiagoCMCok23:20
ThiagoCMCno problem23:20
EvilResistanceusually i'm quiet in here until i have a question that I ask :p023:20
ThiagoCMC:-P23:20
EvilResistancebut today i've had too much coffee :P23:20
ThiagoCMCMe too!23:20
ThiagoCMCLOL23:20
ThiagoCMCWhere can I talk about Ubuntu MaaS / Cloud deployments?23:22
RamJettSo I'm guessing no one is here. I'm thinking my RAID boot problem should be a easy one. I'm just not expert on Ubuntu yet .. been using Gentoo for way to long.23:23
EvilResistance!patience23:25
ubottuDon't feel ignored and repeat your question quickly; if nobody knows your answer, nobody will answer you. While you wait, try searching https://help.ubuntu.com or http://ubuntuforums.org or http://askubuntu.com/23:25
EvilResistanceeveryone here needs patience :P23:25
EvilResistanceThiagoCMC:  this'd be the place, but this channel isnt as active as #ubuntu is.  you jsut need patience :)23:28
Aisonnew question to samba smb.conf23:38
Aisonin one share i've got23:38
Aisonread list = someuser23:38
Aisonwrite list = someuser23:38
Aisonwhy can all other users also connect to this share?!?23:39
ThiagoCMCEvilResistance, Okay! Sorry!!  ^^23:40
EvilResistanceno need to apologize :)23:40
ThiagoCMC :)23:42
cwillu_at_workAison, read list/write list doesn't give an exclusive list of who's allowed to connect23:42
cwillu_at_workAison, read list limits the listed users, write list unlimits the listed users23:43
cwillu_at_workand at no point have you restricted all users23:43
cwillu_at_work(and write list = aison will override read list = aison)23:44
=== dendrobates is now known as dendro-afk
=== AntORG_ is now known as AntORG
Aisoncwillu_at_work, when I connect to the share, where a user is neither in read nor in write list23:58
Aisoncwillu_at_work, why can this user then read the files?23:58
cwillu_at_workbecause you didn't say he couldn't23:58
cwillu_at_work"read list" means "users on this list can only read"23:59
cwillu_at_workit doesn't mean "only the users on this list can read"23:59
Aisoncwillu_at_work, hmm, how do I exclude all user but one?23:59
cwillu_at_workdo you see the difference?23:59
Aisonyes23:59
Aisonhow can I exclude all users by default and allow just some of them to read/write from the cifs/samba share23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!