/srv/irclogs.ubuntu.com/2012/05/04/#ubuntu-server.txt

fosterdv	@thomas What mail daemon are you using?	00:00
pedahzur	Anyone here work on the Ubuntu Virtualization PPA? Just went to install a VM on an Ubuntu 10.04 host, and got an error saying 'virt-install: error: no such option: --initrd-inject' Went to https://launchpad.net/~ubuntu-virt/+archive/ppa Added the PPA. Trying to update, I get this error from apt: qemu-common: Depends: vgabios (>= 0.6c-2ubuntu2) but 0.6c-2ubuntu1 is to be installed. Also, it looks like the packages are old:	00:00
pedahzur	virtinst is at version 0.500 from a year ago. The CentOS 6.2 box I'm on has a virtinst package of 0.600.	00:00
thomas	fosterdv, I'm assuming you mean sendmail. I'm a bit green just trying to do some leg work for my engineer	00:00
fosterdv	Yeah, :)	00:01
fosterdv	Are you using mbox or maildir?	00:01
fosterdv	mbox = mailboxes show up as a single file...	00:01
fosterdv	maildir = each email is a file to itself	00:02
thomas	fosterdv, Sorry for the delay ribs finished :) Had to have some family time there. Anyways, I belive mailboxes show up as a single file.	00:30
EduFrazao	Hi all	00:32
thomas	o/	00:32
jkyle	setting up rsyslog server on ubuntu. the server is receiving remote logs, but outputting them to /var/log/rsyslog instead of my specified /var/log/remote.log	00:33
jkyle	here's the conf snippet: https://gist.github.com/2590703	00:33
EduFrazao	im new on ubuntu. I need to install the libreadline5-dev, but I cant found it with apt-cache search. I have only libreadline5, libreadline6 and libreadline6-dev. I need to add another repos on apt-get? Im using Ubuntuserver 11.10	00:34
thomas	jkyle, I did this before using some sort of 'finger' and doing something with the /etc/mail dir.	00:37
jkyle	wut	00:38
jkyle	should be able to do it all in rsyslog	00:38
ruben23	hi guys any help regarding running a particualr script, what shoudl be done-------> http://sites.google.com/site/kjalleda/mysqlreplicationconsistency	00:42
thomas	I can't find the rsyslog lol	00:44
=== thomas is now known as thomasu
pedahzur	EduFrazao: What version? libreadline5-dev was only available in hardy through natty.	01:01
EduFrazao	pedahzur, yes... On 11.10 it is deprecated... but it is needed by vmware vcap....	01:02
EduFrazao	I think that I will need to downgrade my virtual machine...	01:02
EduFrazao	=/	01:02
pedahzur	EduFrazao: Are you locked in to VMWare? Could you use KVM?	01:04
EduFrazao	pedahzur, im using cloud-foundry =/	01:04
pedahzur	EduFrazao: Ah. They should have support for recent Ubuntu versions.	01:04
EduFrazao	from vcap user manual: Note that the recommended version is Ubuntu Server 10.04-2 LTS.	01:04
EduFrazao	=/	01:06
jkyle	yay, got it	01:12
wiherek	is the ssl private key bound to the machine that created it?	01:16
jkyle	wiherek: no	01:18
thomasu	anyone know the ls command which list list all the mail files by size and date last modified?	01:25
fosterdv	thomas, did you ever figure it out?	01:25
fosterdv	I also stepped away for lunch, sorry about the delay.	01:26
bazhang	http://manpages.ubuntu.com/manpages/precise/man1/ls.1.html thomasu	01:26
thomasu	Well, I figured out that I use dovecot for email and I have each email file in my /var/spool/mail directory. From there if I can ls it in a way to show date last modified I'd be set :P	01:27
fosterdv	I didn't know that reflects logins.... well, that's cool :P	01:27
fosterdv	I was trying to figure out how to do it myself, it's been a while since I checked for things like that... but, if you save your maillogs, future reference... when you're going through your users, you could also attempt using grep -r 'username' in the maillog, and look for anything showing the last time they accessed the account.	01:29
fosterdv	or at least attempted... :P	01:29
thomasu	yeah this is a pain but i'm close :)	01:31
fosterdv	Nice, :D	01:31
fosterdv	Mail is always a pain in my experience..	01:31
Patrickdk	mail just takes time	01:32
fosterdv	That it does.	01:32
=== matsubara is now known as matsubara-afk
tohuw	When invoking ftp from the CLI, how can I get all files in a given folder?	02:42
fosterdv	ls ?	02:44
tohuw	I mean get, as in the command. In other words, I need to download all files, and I don't have access to the parent.	02:44
qman__	mget	02:44
tohuw	qman__: thank you.	02:45
qman__	mget *, specifically	02:45
twb	http://mywiki.wooledge.org/FtpMustDie	02:45
qman__	or any other wildcard	02:45
tohuw	twb: I hate ftp with bleeding daggers, but this isn't my server, or even my project. I'm merely stepping in to provide a few solutions, then exiting stage left.	02:47
twb	Fair enough	02:51
Datz	Could someone tell me what these dependency problems are about when trying to install php5: http://pastebin.com/eq8cpUq1 I have gnome-session-fallback installed as well.	02:52
tohuw	qman__: Why, when I mget -i *, does it still ask me about every file?	02:57
twb	Probably because the basic ftp client is crap -- you might get better behaviour with lftp or something	02:58
twb	Or better would be rsync, scp, &c of course	02:59
qman__	yeah, I don't know	02:59
qman__	sftp's works better	02:59
tohuw	ugh. I may just tell the vendor I'm not providing the solution to the client until they give me ssh access.	02:59
tohuw	Seriously, ftp? Even the IIS teams I work with treat me better than this. :(	03:00
twb	tohuw: +1	03:00
slide	Im getting a cp: reading 'file': Input/output error but running fsck on the drive shows no errors	03:00
twb	I'm about to email a customer saying "upgrade your switch so it supposed key-based SSH"	03:00
qman__	sounds like a good plan to me	03:00
slide	is there something more i can run to check it?	03:01
twb	slide: did you check dmesg, system logs, smart self-test?	03:01
tohuw	Hah... mget refused to download directories because they aren't regular files.	03:01
tohuw	My path is clear.	03:01
twb	tohuw: usually you need a client that can walk the tree a la -r	03:01
qman__	slide, you can use dmesg or smartctl to find out if it's a hardware error or a filesystem one	03:02
slide	twb, yes, i am getting an error in the syslog, gist.github.com/776739c3c680a9bbc2c5	03:02
qman__	looks like the drive is dead	03:03
qman__	grab what you can and hope you have a backup	03:03
slide	hrm	03:03
slide	its just that one file	03:03
qman__	means that section of the disk is what's bad	03:03
qman__	but it's only going to get worse	03:04
qman__	ddrescue may be able to save some of it, but that's just gambling	03:04
slide	is there a tool that will actually tell me what areas are bad etc?	03:05
twb	slide: your drive is dead/dying; make sure your backups are up to date, and then schedule a replacement ASAP	03:05
slide	k	03:05
qman__	the error told you	03:05
twb	slide: what that's saying is there are so many bad areas already, there are no spare areas left to allocate replacements from	03:05
qman__	modern drives manage themselves, they decide where to store data on the actual disk and they automatically handle a certain amount of bad sectors	03:06
qman__	when you start getting unreadable files, it's beyond that point	03:06
slide	wow its been run for 14000 hours	03:07
tohuw	Night all. Datz, If it's an option on that host, backup, purge apache (or at least apache-mpm* and apache-php) and any php- packages, install php5, see how it feels about that. Otherwise, figure out how to resolve the conflicts your installed apache-mpm packages are causing: dpkg -L name_of_package.	03:08
qman__	slide, that's actually not very good, one of the disks in this machine is at 46319 hours	03:08
twb	I bet it's a green drive	03:16
Datz	thanks tohuw	03:18
qman__	could be anything, my newly rebuilt file server, less than a year old, already lost three drives and a fourth will come soon, already has an offline uncorrectable sector	03:21
qman__	fortunately this time around they didn't all go at once	03:21
qman__	so I could RMA and replace	03:21
qman__	and those are samsung hd103sj	03:22
twb	See I buy whitebox junk so I don't have those problems ;-P	03:24
slide	nah i dont think its a green drive	03:25
slide	Seagate Barracuda LP	03:25
twb	qman__: we used to explicitly request disks from different batches, and/or different manufacturers, to try to avoid them all dying at the same time	03:26
twb	I don't think we bother anymore	03:26
slide	ok backing up now	03:33
slide	luckily had a drive with just about the exact amount of space free heh	03:33
twb	You should consider using md raid in future	03:33
slide	im poor	03:33
grendal-prime	ok got about 100 or so servers at this point...some physical..mostly vm's	03:35
twb	how much is your data worth?	03:35
twb	How much is your TIME worth to try to recover it from a dead rive?	03:35
grendal-prime	we want aaa type of server..nis...	03:35
grendal-prime	im thinking nis..seems simple..	03:36
twb	nis is dead	03:36
grendal-prime	isnt there something that works directly with pam though	03:36
slide	no im so poor i can barely afford food sooo extra hds arent really viable ha	03:36
twb	You should not use nis on any untrusted network, because it allows ANYONE on the network to see ALL your passwords	03:36
grendal-prime	slide where are you	03:36
slide	louisiana	03:36
grendal-prime	what kind of drives do you need	03:36
twb	grendal-prime: you should look at LDAP, which is the only actively maintained solution.	03:36
twb	grendal-prime: to do it properly you should be using kerberos, but that's a huge pain so at least use LDAP.	03:37
slide	i dont NEED drives, ive got a few hundred gigs left, hopefully i can save up before they fully fill up	03:37
grendal-prime	i have a pile if drives	03:38
twb	I dunno about .us but in .vic.au there are recycling shops that take three-year-old machines and refurbish them with linux, and sell them too poor people for like $10	03:38
grendal-prime	twb i do something similar	03:38
grendal-prime	in my spare time..	03:38
grendal-prime	which i dont have much of now	03:39
grendal-prime	but i charge more like 100 or so	03:39
grendal-prime	and people bring me their hardware	03:39
twb	http://bytebackaustralia.com.au/	03:39
twb	I think that's the site	03:39
grendal-prime	slide you want me to send you some hd's	03:39
twb	Maybe they just throw them away and there's a different mob, I'm not sure	03:40
slide	hrm tempting heh but no thanks :)	03:41
slide	thank you though	03:41
seoaqua	has anyone used boa webserver? the server is not running,with no errorlogs	03:47
twb	I think I used it for about three minutes	03:47
seoaqua	has anyone used boa webserver? the server is not running,with no errorlogs	03:50
grendal-prime	i got an adaptec filer sitting here	03:54
grendal-prime	ok so ldap server...	03:55
grendal-prime	slapd?	03:55
grendal-prime	that filer by the way is a noisy fkr	03:55
grendal-prime	and heavy, prolly cost 100 bucks to ship to florida from cali	03:56
twb	grendal-prime: yes, you will need to do some reading	03:58
footvilla	is there some sort of application i think i heard of it that u can installed on your ubuntu server	03:58
twb	grendal-prime: unfortunately most of the LDAP documentation is written by cargo-culters who don't know what they're doing	03:58
footvilla	and external monitor like cpu usage, hd space and system health?	03:58
twb	footvilla: there are many. collectd is what I use.	03:58
twb	footvilla: nagios and munin are also worth investigating	03:59
grendal-prime	footvilla, there are hundreds of things for that	04:00
grendal-prime	htop is probaly the easyest quickest most usefull	04:00
twb	grendal-prime: ah, he said "external" which threw me off	04:01
grendal-prime	but its curses based you log into the server and watch it	04:01
grendal-prime	your probaly right...nagios though..man that thing scares people off like crabs.	04:02
footvilla	nagios free?	04:02
grendal-prime	we monitor all our ubuntu servers ..and i dont know why they never fail	04:02
grendal-prime	nagios free ya..	04:03
grendal-prime	so is zabbix	04:03
grendal-prime	you need alerting?	04:03
twb	zabbix is PHP though IIRC	04:04
grendal-prime	php rocks	04:04
twb	http://me.veekun.com/blog/2012/04/09/php-a-fractal-of-bad-design/	04:04
Datz	tohuw: purged apache2, installed php5 without problem, then installed apache2 without problem; everything works.. Don't know what the problem was before. Might have purged some dep for a package I have installed and broken something I will find out about later. :)	04:04
grendal-prime	anyone tells you other wise they are high	04:04
footvilla	well running a webserver	04:05
footvilla	alerting would be nice	04:05
twb	footvilla: performance monitoring or availability monitoring?	04:05
footvilla	also would like to see if the webserver gets overloaded or howmany people browsing the website	04:05
footvilla	a little of both twb	04:05
grendal-prime	id recommend ntop	04:06
grendal-prime	network throughput and from where	04:06
grendal-prime	easy setup web graphs..we use it alot	04:06
footvilla	something simple that i can remotely log in	04:07
footvilla	mem usage / network usage / cpu usage etc	04:07
grendal-prime	it will give you very good statistics on nework traffic	04:07
=== jkyle_ is now known as jkyle
grendal-prime	footvilla, if you want to quickly see whats happening..very directly monitor..htop is the thang	04:08
grendal-prime	apt-get install htop	04:08
grendal-prime	then ssh into the box and type htop	04:08
grendal-prime	see what it gives you..that may be exactly what you want..you want something that logs tracks and charts stuff..you will need to look into something else	04:09
grendal-prime	orion..zabbix, nagios..	04:10
footvilla	yea logs tracks and charts	04:10
grendal-prime	much more setup usually	04:10
footvilla	but also i could log into w/ username	04:10
footvilla	gui interface	04:10
grendal-prime	i would recomend you do the htop thing anyway..you can highlight processes and kill them	04:11
grendal-prime	and see live..each proc how much is being used...what is top and you can scroll through all the processes with your arrow keys	04:11
footvilla	yea installed htop	04:12
grendal-prime	and run strace on any processs and see the actual data that is being processed by the kernel directly	04:12
grendal-prime	and it runs from you smart phone as well.	04:12
grendal-prime	anything that ssh's in	04:13
grendal-prime	that thing has saved me a lot of hassle	04:13
footvilla	nice! thanks grendal	04:13
grendal-prime	np	04:14
grendal-prime	its the first thing i install on all the linux boxes	04:14
grendal-prime	in fact...heheh if its not installed...i know i prolly didnt build the box	04:15
grendal-prime	twb, soo im looking at the webmin module for ldap. looks pretty straight forward. (the management and sups at my regular gig love that thing)	04:16
twb	Do not use webmin.	04:16
grendal-prime	you are just full of way to practical bummer type responces	04:17
twb	Specifically regarding the webmin ldap users & groups modules, note that it requires full root bind privileges, and only speaks RFC 2307/bis -- which is manageable apart from password expiry.	04:17
grendal-prime	unfortunatly, there is something we do that has become amazingly simple with that tool. to the point where it was required on most of the servers	04:18
twb	RFC 2307 relies on the client to enforce locked/expired/needs-reset passwords, so anyone that has root on their own box can simply ignore them.	04:18
twb	grendal-prime: we used to use webmin, too, for the same reason. We fixed that by taking our webmin custom modules and just running them under a thin hand-written shim instead of under webmin.	04:19
grendal-prime	we only use it on isolated networks though	04:19
grendal-prime	also its one of those things were very few people have access to the admin of the tool..most have access to one module	04:19
grendal-prime	we are security audedted regularly by an outside source..we pass all the time..you just have to lock that bitch down..	04:21
grendal-prime	but i digress	04:21
grendal-prime	soo you dont like the way that it works with ldap though	04:22
grendal-prime	this is getting irratating	04:25
grendal-prime	we got an emp that is leaving.	04:25
grendal-prime	we have to change 100 or so admin passwords..	04:25
grendal-prime	and that blows..and ..we may wind up with 100 more servers.	04:26
grendal-prime	i want to get this nailed down now.	04:26
grendal-prime	was thinking about radius as well	04:27
grendal-prime	but that seems somewhat complicated	04:28
Knightwise	morning everyone	04:35
Knightwise	hey pehden	04:37
Knightwise	does anyone have an idea how to change the default port on Owncloud away from port 80 ?	04:37
andol	Knightwise: A quick look at ownclouds suggests it just being PHP running from Apache, etc? Shouldn't it just be to change the Apache port config then?	04:41
Knightwise	yeah , but i opened up the apache config in webmin and it doesnt show owncloud as a seperate virtual host.	04:43
twb	14:25 <grendal-prime> we have to change 100 or so admin passwords..	04:49
twb	grendal-prime: key-based auth	04:49
twb	With monkeysphere they can be revoked; alternatively you can cheat and use the ssh blacklist patches (but they're Ubuntu/Debian-specific)	04:50
grendal-prime	ya its not that simple though	04:53
twb	grendal-prime: not in your current setup, no	05:06
twb	But here, when someone leaves, I add their SSH key to the blacklist .deb and it's automatically installed on all hosts by the unattended-upgrades package	05:06
twb	When I get around to adding my PPA to my customer's machines, they'll get it, too	05:06
twb	Of course, that won't stop a malicious staffer from adding back-doors in advance.	05:07
grendal-prime	ya	05:07
grendal-prime	on a side note ...did you know that margaritas at this hour (even in california) is something that is frowned upon?	05:08
grendal-prime	and...there is no more wine	05:08
grendal-prime	im going to sleep	05:08
grendal-prime	i have to. because of this bezar social glitch	05:09
grendal-prime	night all	05:09
fosterdv	twb, are you still around?	05:27
twb	fosterdv: what do you want	05:28
fosterdv	I was wondering if you know anything about installing ProFTPD on Ubuntu Server 11.04, and why it might be hanging during installation?	05:29
adam_g	roaksoax: if you get a min, would you be able to push the debdiff attached at https://bugs.launchpad.net/ubuntu/+source/openldap/+bug/990742 against openldap into -proposed?	05:29
uvirtbot	Launchpad bug 990742 in cyrus-sasl2 "slapd fails to upgrade: requires libsasl2-2 (>= 2.1.24) installed" [Undecided,Fix committed]	05:29
twb	12:45 <twb> http://mywiki.wooledge.org/FtpMustDie	05:30
twb	fosterdv: last time I ran ftpd it was vsftpd	05:30
fosterdv	Ah, okay... thanks anyways.	05:32
=== Lcawte\|Away is now known as Lcawte
ruben23	hi guys any helphow to make this run on my ubuntu-server do i need some additonal component to do this..? ---> http://sites.google.com/site/kjalleda/mysqlreplicationconsistency	06:26
sht3	hi everyone. this is more of a generic linux question but here it goes.. I have a server with a large mdadm raid array used for a file server and the os (ubuntu) running off of a single SSD. what i notice when the server is under any load is that commands will hang when I run them. commands like df, who, ps.. pretty much anything. I thought it would be related to disk IO but the OS SSD is not used by the file server so this doesn'	06:36
=== koolhead11\|afk is now known as koolhead17
sht3	i can literally run "time who" like 20 times, and 8/10 times its < 0.1 real, sometimes up to 6 seconds though.	06:37
Knightwise	anyone have any experience with Mumble server ?	06:45
ttx	adam_g: the value would be have an environment that you can evolve	06:56
ttx	adam_g: devstack is a start and an end to itself, it uses specific branches and installs in non-LHS compliant places	06:57
ttx	I'd very much prefer if the devs (at least those running Ubuntu) would use Juju to bootstrap an all-in-one locally, which would use proper Ubuntu packages... and could potentially be made to evolve into a multi-node setup by adding new nodes and relations	06:58
ttx	It sounds like a worthwhile target to encourage devs to run Juju & proper Ubuntu packages, as that's where the mindset starts	06:59
=== almaisan-away is now known as al-maisan
=== smb` is now known as smb
ttx	adam_g: so I think it warrants its own session. Something like "Promote OpenStack charm as a dev/tester bootstrap environment"	07:34
koolhead17	ttx, +1	07:35
=== dendrobates is now known as dendro-afk
=== dendro-afk is now known as dendrobates
viegasfh	hello everyone	07:47
viegasfh	I have just installed Ubuntu Server 12.04LTS and I have noticed that it takes longer to boot than 10.04LTS	07:48
viegasfh	is there a way to get disable the logging that shows in the screen at startup?	07:48
viegasfh	I have already tried to search on google but only found how to disable sound on startup	07:50
viegasfh	can someone help me with this?	07:50
twb	viegasfh: what kind of logging	07:53
=== koolhead17 is now known as koolhead17\|afk
viegasfh	when you boot you get the screen where you can pick either normal boot or the safe mode	07:59
twb	viegasfh: on a server install?	08:00
viegasfh	after that all the dmesg logs show up on the screen	08:00
viegasfh	I want it to go straigth to the login screen, and skip this one	08:00
viegasfh	yes, server install	08:00
viegasfh	ok with the desktop	08:00
viegasfh	don't get that on the desktop	08:00
twb	viegasfh: if you're getting that, there is something wrong	08:00
viegasfh	and never noticed that on 10.04	08:00
viegasfh	I am running it on vmware	08:01
_ruben	and you cant skip it, as what you see is realtime	08:01
viegasfh	well, not really skip, but stop it from showing on screen	08:01
viegasfh	I can always go to the logs and see what went wrong	08:01
viegasfh	I checked the logs and the system seems to be running ok	08:03
viegasfh	it is just that it has been a long, long time since I noticed all the logs on screen, in similar fashion to CentOS or Red Hat	08:03
viegasfh	or FreeBSD	08:03
lynxman	morning o/	08:52
=== koolhead17\|afk is now known as koolhead17
cultavix	good morning	09:04
twb	I guess if you remove "splash" from grub options but keep "quiet" it will not output much	09:05
twb	I remove both so that I actually see useful bootup messages	09:05
Jeeves_	root@otrs:~# lsb_release -a	09:09
Jeeves_	No LSB modules are available.	09:09
Jeeves_	Distributor ID:Ubuntu	09:09
Jeeves_	Description:Ubuntu 10.04.4 LTS	09:09
Jeeves_	Release:10.04	09:09
Jeeves_	Codename:lucid	09:09
Jeeves_	root@otrs:~# do-release-upgrade	09:09
Jeeves_	Checking for a new ubuntu release	09:09
Jeeves_	No new release found	09:09
Jeeves_	That's odd	09:09
xnox	Jeeves_: lts->lts upgrades start with 12.04.1 (NB!)	09:10
Jeeves_	wtf?	09:10
* xnox it's always been like this.		09:10
Jeeves_	Ehm, not that I know off.	09:11
Jeeves_	But ok.	09:11
xnox	lts->lts upgrades need testing & ironing upgrade bugs out.	09:11
twb	xnox: oh is that why	09:11
twb	I didn't realize that was official policy, I thought it was just me being sensible	09:11
Jeeves_	xnox: I thought that was why we had beta's and stuff	09:11
twb	Jeeves_: .0 releases are always bullshit	09:12
* xnox and 0day SRU & updates....		09:12
twb	I don't mean in ubuntu, i mean in anything	09:12
ttx	Daviey, zul, adam_g: thread for you @ https://lists.launchpad.net/openstack/msg11152.html	09:52
=== al-maisan is now known as almaisan-away
=== daker__ is now known as daker
=== Ursinha is now known as Guest7047
=== Ursinha_ is now known as Guest96131
=== Ursinha__ is now known as Ursula
=== Ursula is now known as Ursinha
=== Ursinha is now known as Guest69236
=== chris_ is now known as Guest47687
spajderix	hi	11:58
=== Guest47687 is now known as yeats
spajderix	I broke my OS, and now I'm desperatly trying to fix this, to make long story short I made it to the point where apt-get install -f wants to fix a lot of packages but after retrieving them I get: E: Couldn't configure pre-depend libc6 for findutils, probably a dependency cycle. Anybody knows how to fix this?	12:00
=== Ursula is now known as Ursinha
=== matsubara-afk is now known as matsubara
zul	good morning	12:58
Sandbag	evening	12:59
Sandbag	Can any one in here recomend an irc server daemon for ubuntu server?	13:07
Sandbag	I read that ircd-hybrid is no longer updated	13:07
zul	jamespage: https://bugs.launchpad.net/openstack-ubuntu-testing/+bug/994572	13:09
uvirtbot	Launchpad bug 994572 in openstack-ubuntu-testing "Builds failing" [Undecided,New]	13:09
jamespage	zul: not done that yet	13:10
jamespage	need to switch to maas first - sorry	13:10
zul	jamespage: yeah just filed a bug to nag you	13:10
mardraum	Sandbag: the one you know best man. since you are interested in hybrid, which was popular on efnet, maybe you want to look at ratbox.	13:10
Sandbag	Thanks mardum - thats the one I was lead to. Here goes nothing...	13:13
Sandbag	*mardraum even ;)	13:15
=== almaisan-away is now known as al-maisan
=== JanC_ is now known as JanC
=== kirkland` is now known as kirkland
xpistos	Hello all. I can't find the .torrent for Ubuntu Server 12.04. Can anyone put me in the right direction?	13:59
hallyn	SpamapS: were you going to look at bug 988394 (upstart job woes)	14:00
uvirtbot	Launchpad bug 988394 in autofs5 "Reboot hangs because /etc/rc6.d/S40umountfs chokes on non-existent mounts" [High,New] https://launchpad.net/bugs/988394	14:00
xpistos	oh wait	14:00
xpistos	I think I found it - http://releases.ubuntu.com/precise/ubuntu-12.04-server-i386.iso.torrent	14:00
xpistos	sorry	14:00
SpamapS	hallyn: looking now	14:29
SpamapS	hallyn: looks like slangasek commented. I think he's right. the stop on should be 'stop on deconfiguring-networking'	14:36
=== al-maisan is now known as almaisan-away
zul	hallyn: starting the libvirt merge now	15:29
hallyn	zul: cool	15:32
ttx	adam_g: around ?	15:56
hallyn	kirkland: around?	15:59
claude2	if i have a running process referencing a symlink, then change what that link points to, does anyone know what the still-running proceses sees?	16:00
hallyn	kirkland: fwiw, for q i'm about to merge debian's seabios. previously we always had our own. but since we'll merge debian's qemu-kvm too (hopefully)...	16:00
hallyn	well, maybe i should wait until after the uds session	16:00
hallyn	all right you've convinced me, i'll wait :)	16:00
hallyn	claude2: if by 'referencing a symlink' you mean it has opened the file it points to, then it won't see a change	16:02
hallyn	the open file is to the target inode	16:02
claude2	awesome. thanks hallyn	16:03
=== matsubara is now known as matsubara-lunch
JamesB	Howdy... I've used aptitude to add the apparmor package, but aa-status still says apparmor module is not loaded	16:19
JamesB	This is with 12.04	16:19
JamesB	Any idea why this might be?	16:19
=== funkyHat_ is now known as funkyHat
hallyn	JamesB: shouldn't even have needed to add apparmor package.... how did you install the system?	16:21
JamesB	It's just a standard Linode install	16:23
JamesB	Do you think they screwed it up somehow, then?	16:23
hallyn	Dunno - what does 'grep -i apparmor /boot/config*' show?	16:25
hallyn	and what is in /proc/cmdline	16:25
JamesB	root=/dev/xvda xencons=tty console=tty1 console=hvc0 nosep nodevfs ramdisk_size=32768 ip_conntrack.hashsize=8192 nf_conntrack.hashsize=8192 ro devtmpfs.mount=1	16:26
JamesB	and there is no directory /boot/config	16:26
JamesB	lsb_release -a shows 12.04... however oddly uname -a shows kernel 3.0.18	16:27
JamesB	whereas Wikipedia suggests it should have kernel 3.2.14... very strange really	16:28
hallyn	Yeah I'm guessing the xen kernel there doesn't have apparmor enabled	16:28
hallyn	mount \| grep security ?	16:29
hallyn	then look under that directory. (hopefully it's /sys/kernel/security)	16:29
hallyn	if it doesn't have 'apparmor' then the kernel doesn't have it	16:29
hallyn	ask linode if they can enable it i guess...	16:30
JamesB	mount lists nothing	16:33
JamesB	How very annoying. Rackspace didn't have these screwy kernel problems. Teach me to try saving $5 :P	16:34
jkyle	how can I get the dependencies for a .deb?	16:50
gary_poster	jkyle, look at apt-cache	16:51
jkyle	for a .deb file?	16:52
gary_poster	hm, of a .deb, jkyle; may or may not work, but worth a check	16:52
gary_poster	yeah prob not sorry	16:52
jkyle	:)	16:52
jkyle	yeah, it searches for a package with name "foo.deb"	16:53
Tzunamii	dpkg -I file.deb	16:54
oal	I upgraded my server to 12.04 but it no longer connects to the internet after a reboot. Any ideas?	16:54
resno	oal: does it have an ip/ nic is active and working?	16:54
resno	can you ping it?	16:54
oal	resno: nope	16:55
resno	if its disappeared, can you login on the phyiscial machine?	16:55
oal	resno: yes, I have logged in to the physical machine, ifconfig tells me it has no ip	16:56
resno	do you know which eth is your connection on?	16:56
oal	I'm not a command line ninja, so maybe this is just a one liner to get it fixed	16:56
oal	resno: eth0?	16:56
resno	ifconfig eth0 up	16:56
resno	i think that should do it	16:57
oal	resno: no difference, I'm afraid	16:57
resno	how did it respond?	16:58
=== Ursinha is now known as Guest78578
oal	No errors or anything, it just ran the command	16:58
Tzunamii	Sounds like a driver issue	16:58
resno	and so it begins... :(	16:58
Tzunamii	jkyle: Did you get my response earlier?	16:58
oal	resno: This is a hp laptop (yes, a laptop, but I use it because it gives me an hour extra before it suddenly cuts off).	16:59
oal	... in case of a power outage	17:00
gary_poster	hallyn, we had an unusual lxc-start-ephemeral issue today: dhcp leases file didn't exist. We already wait up to 30 seconds for it to exist. Should we just up the timeout, or would something like lxcip help, or would you be suspicious of something else? If it helps, the pertinent bit in the script is http://pastebin.ubuntu.com/967318/ . The last "if" in the excerpt was false.	17:00
oal	I'll try to reboot it and see if it magically fixes itself	17:01
oal	Wow, it did...	17:03
resno	oal: cool	17:08
stgraber	jjohansen: hey there. Are you aware that the kernel currently in quantal gives stacktraces when starting an LXC container (seems to be related to apparmor/audit), /etc/init.d/apparmor reload is also very slow and complains about the network rules	17:11
stgraber	jjohansen: (I know it's very very early in the quantal cycle and I shouldn't be expecting things to be stable/working at this point ;))	17:11
stgraber	I guess I'll just install Precise's kernel for now	17:11
jjohansen	stgraber: nope I haven't poked at quantal at all	17:11
jjohansen	stgraber: but thanks for the heads up, that means something upstream is probably broken	17:12
* jjohansen hasn't checked that recently either		17:12
stgraber	jjohansen: ok, let me pastebin my dmesg, maybe you'll see something obviously broken in there :)	17:12
stgraber	jjohansen: http://paste.ubuntu.com/967351	17:13
jjohansen	sigh, yeah audit. eparis pushed out a patch changing lsm audit that affected apparmor and /me never got a chance to look at/check it :(	17:14
stgraber	jjohansen: http://paste.ubuntu.com/967358/ is what apparmor reload gives me on quantal :)	17:16
jjohansen	stgraber: yeah it seems the kt dropped a patch when it failed to apply	17:17
* jjohansen will kick them for not pinging /me to fix it		17:18
stgraber	ok :)	17:18
=== matsubara-lunch is now known as matsubara
Gallomimia	can someone explain to me how to get an apache install going? i don't even know what to enter into apt tools to see if it's installed :/	17:23
jpds	Gallomimia: sudo apt-get install apache2	17:24
Gallomimia	ahhhhh twooooo	17:25
Gallomimia	thanks	17:25
Pinkamena_D	i am running ubuntu server for about half a year now and recently this has been happening maybe a day or so of server uptime : May 4 11:51:57 xseries kernel: [174049.008015] INFO: rcu_bh_state detected stalls on CPUs/tasks: { 7} (detected by 6, t=4653300 jiffies)	17:26
Pinkamena_D	anyone know how to fix?	17:26
Gallomimia	what release of ubuntu server is running?	17:27
Pinkamena_D	the one before the most recent 11.something	17:27
Pinkamena_D	i know thats not helpful uhh	17:27
Gallomimia	no it is. it only came out 1 week ago	17:27
Gallomimia	some people like to wait more than 1 week before upgrading	17:27
Pinkamena_D	11.10 generic	17:28
Gallomimia	the more adoption a product has, the bigger upswing there is between tested bugs and found bugs upon release (as in, by users instead of testers)	17:28
Pinkamena_D	anyways that error shows up every 15 minutes or so, and i cant do anything on the server. Background htings like the web server and ftp server keep working, but if i type any commands they do nothing. i have to reboot it	17:29
hallyn	gary_poster: i think using lxc-ip would be best	17:29
zul	hallyn: merging libvirt is not fun	17:29
Pinkamena_D	i can paste the whole syslog is that would help	17:30
hallyn	zul: i know :) did you look at my old 0.9.9 merge for a start?	17:30
hallyn	i assume you're doing 0.9.11 now or somesuch	17:30
zul	hallyn: no i just went straight to 0.9.11	17:30
hallyn	ok	17:30
zul	hallyn: 32 lines for chanelog entry so far	17:31
hallyn	zul: do you see any bits there that we can push back to debian?	17:31
zul	one or two patches so far	17:31
hallyn	why do we use libvirtd for group when debian continues to use libvirt, for instance?	17:32
gary_poster	hallyn, that's what I thought. We can make a version of lxc-start-ephemeral that does this. That won't help Precise though, right? Not sure if a fix for this kind of problem would even be considered SRU material, and if so, I's guess that a solution that added an entirely new script would not be an easy sell.	17:32
hallyn	i think it greatly improves a bug in lxc-start-ephemeral to use lxc-ip for it, and therefore we may be able to get lxc-ip in as part of that fix	17:33
hallyn	stgraber: ^ what od you think?	17:33
stgraber	hallyn: reading backscroll	17:33
Gallomimia	does this have anything to do with it? https://bugs.launchpad.net/ubuntu/+source/linux/+bug/855684	17:34
uvirtbot	Launchpad bug 855684 in linux "The machine locks up hard on heavy load [SATA errors]" [Undecided,Invalid]	17:34
Gallomimia	Pinkamena_D: seems this bug is related and possibly means it's a kernel bug	17:36
stgraber	hallyn: not sure what's the qestion/problem here. AFAIK lxc-start-ephemeral doesn't currently provide you with the IP address, so I don't see how you'd justify adding lxc-ip through an SRU	17:37
stgraber	unless I'm missing something here	17:37
Pinkamena_D	so, is thewir anything i can do	17:37
Pinkamena_D	that does look like almost the same bug	17:38
Pinkamena_D	i assums the 0 is replaced with a 7 in mine because thats the cpu core that is stalled?	17:38
gary_poster	stgraber, it needs to get an ip address, so it can ssh into the container, in the absence of lxc-attach. it currently gets the ip address with a dhcp lease parsing hack. using lxcip, we hope, would be less hacky and more robust.	17:40
Gallomimia	Pinkamena_D: find more. perhaps someone who knows more about the cpu stall bug will pipe up in here	17:41
gary_poster	(you are correct that it does not provide the user with the IP address; it is a consumer of the IP address)	17:42
stgraber	gary_poster: right, but looking at the dhcp lease file isn't something the lxc package does at the moment, it's something you're doing. So you should be carrying lxcip if you want to have it reliable, I don't see a reason for us to SRU it in the lxc package	17:42
stgraber	we certainly want that fixed in 12.10 though and hopefully we'll have an official python module then	17:42
Gallomimia	Pinkamena_D: compare your kernel version to the versions discussed in that bug. i think it's ubuntu cause google got searched. but make sure. there seems to be a fix present	17:42
stgraber	and can then backport 12.10's LXC to 12.04	17:42
gary_poster	stgraber, lxc-start-ephemeral is in ubuntu's lxc; is the distinction you are making that it is not upstream?	17:43
stgraber	gary_poster: no, the distinction I'm making is that lxc-start-ephemeral doesn't deal with IP addresses at all, so the fact that looking at the dhcpd lease file isn't reliable isn't an LXC bug	17:45
stgraber	adding lxcip to lxc post-release would be adding a new feature, not fixing a bug	17:45
hallyn	stgraber: i'd argue that ssh'ing into the container is a core part of lxc-start-ephemeral. when that doesn't work it's broken/worthless	17:47
gary_poster	right, that's kind of where I was about to go	17:47
stgraber	hallyn: IIRC lxc-start-ephemeral gives you the container name and the matching lxc-console call, not it's IP and ssh command	17:48
hallyn	stgraber: it does also do that, but it's main purpose was to be able to run a command in a ephemeral container as in 'lxc-start-ephemeral <args> -- dosomething'	17:50
hallyn	still i certainly agree adding a new program is not to be taking lightly :)	17:51
hallyn	gary_poster: any ideas on why the leases file wasn't created?	17:51
stgraber	hallyn: oh, now that I actually looked at lxc-start-ephemeral code, what you two are saying makes sense :)	17:51
gary_poster	:-)	17:51
stgraber	hallyn: so yeah, adding lxcip instead of messing with the lease in	17:51
stgraber	lxc-start-ephemeral sounds good	17:51
hallyn	sru time might of course still disagree :) but it's definately the less hacky fix	17:52
stgraber	yeah, and I know some people will be happy to have lxcip in 12.04 ;)	17:53
stgraber	highvoltage: ^ :)	17:53
rockets	Psi-Jack, are you here :-D	17:53
Psi-Jack	barely	17:53
rockets	lol	17:53
gary_poster	hallyn, the only thing I could figure was that the (EC2) machine was under heavy load (seven other lxcs initializing and running things inside them) and 30 seconds was not enough. I've gotten two of those failures today so I'm trying to simply bump the timeout up to 60 to test that hypothesis.	17:53
Gallomimia	Pinkamena_D: did you find out what kernel your server is running?	17:55
gary_poster	hallyn, stgraber: fixing with lxcip: cool, we can make a first stab at it if that helps. I'll file a bug now.	17:55
Pinkamena_D	how do you find that out	17:57
Gallomimia	hm. i'm not too sure. i'm a bit of a noob.	17:58
=== Ursinha- is now known as Ursinha
Pinkamena_D	me too	17:58
Pinkamena_D	;)	17:58
=== Ursinha is now known as Guest84854
Pinkamena_D	be back in a little bit...	17:59
Gallomimia	alright let's be noob together. go find out how in some manuals. i think a related command is called uname	17:59
bazhang	uname -r	17:59
=== Guest84854 is now known as Ursula
Gallomimia	ty bazhang	17:59
=== Ursula is now known as Ursinha
Gallomimia	amazing. i completely couldn't remember uname until you caused me to think about it Pinkamena_D.	18:01
highvoltage	stgraber: hehe	18:03
highvoltage	(indeed)	18:03
=== qhartman_ is now known as qhartman
RamJett	How do I make sure all the dependencies, like network, database, etc. are running before a service starts. I'm having a problem with glance-registry loading before the network dev and database is up. So I then have to go in and manually start after a reboot	18:13
=== dendrobates is now known as dendro-afk
Patrickdk	just edit the upstart script in /etc/init to make sure it depends on networking and database	18:15
Patrickdk	I did that for postfix, to depend on dovecot being up, works so much better now	18:15
Patrickdk	since postfix won't start if dovecot auth file doesn't exist	18:15
RamJett	Where do I get documentation on the /etc/init/*.conf syntax. I've messed with it, but something isn't right.	18:16
=== dendro-afk is now known as dendrobates
RamJett	I changed "start on (local-filesystems and net-device-up IFACE!=eth2)" it was "start on (local-filesystems and net-device-up IFACE!=lo)" .. I still have the problem	18:18
RamJett	It also has "respawn" set. Which seems to work for glance-api .. but not glance-registry	18:20
=== glebihan_ is now known as glebihan
JamesB	Is there any way with AppArmor to determine what file a DENIED dac_override capability is for?	18:35
adam_g	RamJett: what version of glance are you using? that was fixed upstream to retry database connection on startup, to avoid what you are seeing	18:48
Aison	after upgrade to precise, I get this error when I try to start mysql server	18:48
Aison	init: mysql pre-start process (7861) terminated with status 1	18:48
Aison	no idea what's up	18:48
RamJett	adam_g: glance 2012.1 . It's what is latest LTS 12.04 . I will see what the upstream looks like	18:51
adam_g	RamJett: its the same. what does /var/log/glance/glance-registry.log show during its failed startup?	18:51
RamJett	adam_g: Not sure right now on exact error, but something about not being able to bind, syslog log says "init: glance-registry main process (1435) terminated with status 1" ..rep 11ist times "glance-registry respawning too fast, stopped"	18:55
RamJett	glance-registry error .. Error configuring registry database with supplied sql_connection ... (OperationalError) could not connect to server: Connection refused"	18:57
RamJett	adam_g: biggest difference than most I think. I'm running with postgresql instead of mysql that most online docs use	18:59
=== alamar_ is now known as alamar
=== mahmoh1 is now known as mahmoh
adam_g	RamJett: hmm, yeah, the workaround to get glance started up with database retries is mysql-specific. can you file a bug? we should get get that fixed for postres too	19:08
thomasu	anyone familiar with dovecot here?	19:08
=== gustav- is now known as beerbro
RamJett	So I put a 3 second sleep in there so the respawn won't fail because of respawn too fast. But I will see about filing a bug for it. I imagine all the openstack processes are complaining on startup	20:11
RamJett	adam_g: Do you know where the mysql specific bug got filed? So I can do in the same place.	20:14
adam_g	RamJett: https://review.openstack.org/#/c/5938/	20:48
RamJett	thank	20:48
adam_g	RamJett: the fix is outside of packaging/upstart and in the actual glance-registry itself	20:48
adam_g	Daviey: around?	20:50
=== Arc_ is now known as a5m0
stgraber	hallyn: hmm, I'm sure I saw someone mention this in the past, but why exactly isn't "lxc.aa_profile = unconfined" working in 12.04?	22:15
hallyn	uh, it is. should be.	22:15
hallyn	not for lxc-execute	22:16
hallyn	oh no, that is the only one that does work for lxc-execute :)	22:16
stgraber	root@castiana:~# sudo lxc-start -n ubucloud-precise	22:16
stgraber	lxc-start: No such file or directory - failed to change apparmor profile to unconfined	22:16
hallyn	oh, right,	22:16
stgraber	(noticed that when trying the examples from my upcoming blog post ;))	22:16
hallyn	i think jjohansen was pushing a fix	22:16
hallyn	jjohansen: ^	22:16
stgraber	I'm talking about LXC nesting, but for cgroup-lite to work, I need to move to unconfined (easier than writing a custom profile for it)	22:17
jjohansen	stgraber, hallyn: yep its one of the fixes that is coming	22:17
stgraber	jjohansen: cool, I'll work around it for now by linking an apparmor profile that's working with nesting then.	22:18
hallyn	stgraber: jjohansen: ppa:serge-hallyn/userns-natty shoudl soon have a new quantal kernel with eric's userns patches ready for testing, btw	22:21
hallyn	jjohansen: what's the approx eta on the unconfined fixes/	22:21
jjohansen	hallyn: hrmm, let me pester kt	22:22
jjohansen	hallyn: well it will depend on the timing of the next kernel upload, I expect next week to mess things up a little	22:26
hallyn	ok, thanks. (i just ahd figured it would've happened this past week)	22:27
=== Lcawte is now known as Lcawte\|Away
stgraber	hallyn: still working on my apparmor profile for nested containers, I think we should include it in the lxc package for quantal once it's done, so people have an example of an alternate profile	22:38
hallyn	stgraber: sounds great	22:45
RamJett	Does anyone know a good Fiber 1000base NIC that works with Ubuntu? It needs to be Multi Mode	23:07
Patrickdk	ramjett, pretty much any?	23:12
Patrickdk	just get an intel one :)	23:12
RamJett	Nice. I've always used ImageStream routers in the past if I needed them with fiber, but the company I'm working with now needs me to get it from Dell. Dell just told me .. the do not know any 1000base fiber .. let us know a part number and we'll see if they are one of our vendor. They did mention Intel being one	23:15
=== dendrobates is now known as dendro-afk
=== dendro-afk is now known as dendrobates
stgraber	hallyn: http://www.stgraber.org/2012/05/04/lxc-in-ubuntu-12-04-lts/ <-- will be appearing on Planet Ubuntu in a few minutes	23:49

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!