[00:04] argh, how do I actually connect to the VNC console on a KVM guest? [00:04] I'd rather SSH in but don't know how to figure out its IP === Aaton is now known as Aaton_off === bitmonk_ is now known as bitmonk === n0ts_off is now known as n0ts === bitmonk_ is now known as bitmonk === n0ts is now known as n0ts_off === n0ts_off is now known as n0ts [01:10] goodness gracious. figured out how to get the VMs bridged so I could SSH in, but that was way underdocumented. I should somehow contribute when I have time... [01:13] SpamapS: good idea, thanks. === jhulten_ is now known as jhulten [02:11] New bug: #1031568 in bacula (main) "package bacula-director-mysql 5.0.3-0ubuntu2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1. Also, the database it needed could not be created." [Undecided,New] https://launchpad.net/bugs/1031568 [02:48] okay let me get this straight [02:49] a dns server basically takes an IP, and attaches a name to it, such as www.name.com, to which it then arranges the names in a type of heirarchy [02:49] such as www.name.com/foo [02:50] you look like you are confusing DNS and HTTP [02:51] I am just looking at my installation here === cpg is now known as cpg|away [02:51] and I am trying to learn about the different types of servers that I can install [02:51] to which I want to set up dummies in which I can learn from [02:51] mardraum: No. He's not. [02:52] ScottK: how is "/foo" related to DNS [02:54] so a dns then is basically taking addresses, and attaching naming schemes which are/can be heirarchical. [02:54] Except he's right to an extent. [02:54] mardraum: foo is the name of a sup page in the site. Just chose the name foo :P [02:55] DNS will figure the IP address associated with example.com or www.example.com. [02:55] Within a sing host, it doesn't help you. [02:55] akiva: yes, which is HTTP, not DNS [02:55] mardraum: It could be multiple protocols. [02:55] heh [02:55] For a web server it's http, but for an ftp server it's ftp. [02:56] The path within the host is not tied to a specific protocol. [02:56] Would I ever use a DNS server practically speaking? [02:56] it's not DNS though, is it ScottK ? === cpg|away is now known as cpg [02:56] I think that's what we are trying to establish. [02:56] No, it's not. [02:56] DNS get's you an IP/hostname pairing that's it. [02:56] okay, interesting [02:57] Everything after that is related to the file hierarchy of the host. [02:57] but http, ftp, dns, these are all "Name Servers"? [02:57] DNS gets you more than simple IP/hostname pairing, what about MX records, TXT records, etc [02:57] They are all protocols. [02:57] Sure, but in this context. [02:59] protocols, each one with distinct advantages, etc [03:10] does debian use less mem than ubuntu? [03:11] server that is [03:12] not if you install the same packages, by any measurable amount [03:12] what do you consider measurable [03:12] 10MB [03:12] ok [03:12] memory use depends on what software you install [03:13] you can choose to install less stuff with different install options [03:13] like JeOS or minimal, though minimal is more difficult to get working [03:14] am asking because i'm running it on a VPS [03:14] so memory is a bottleneck [03:14] the only notable difference here is that debian, when you choose to not install the GUI, installs less packages than the regular ubuntu server install [03:15] they only affect "memory" while they are running, are you actually concerned with disk space? [03:19] Setting APT::Install-Recommends off helps quite a bit with the bloat [03:26] But, you're on your own if something doesn't work the way you expect. The system's designed for those to be on unless you know what you're doing. [03:28] I aways remove apache2 immediately heh [03:29] thanks [03:29] I didn't think apache2 was installed by default [03:30] well for VPS's it seems to be [03:30] at least ones i've tried [03:30] That's your VPS's provider doing that. [03:30] It's not part of the Ubuntu Server default install. [03:31] that's weird that'd add software then make an imagine, since is for openvz [03:31] xen, or what have you [03:31] I only use openvz atm though [03:31] image rather [03:31] it's not weird, since 99% of people who don't know what they are doing will want LAMP [03:32] provider is simply cutting down on support calls [03:32] good point :) [03:33] though mysql and phpmyadmin not installed by default, from ones i've seen [03:33] I get unmanaged vps's though [03:33] php, not phpmyadmin [03:34] yeah that either, have to apt-get it [03:34] I guess they are going with a more secure default then, not the kitchen sink, good for them [03:35] yeah I love budget vps's, get nice servers for few bucks a month that gives me far far more control and flexibility than shared hosting, can remove/install distros in few seconds too, I usually pick ubuntu though [03:36] easiest, but I keep hearing people recommend debian for servers === n0ts is now known as n0ts_off [03:49] Debian and Ubuntu have very different release processes. [03:49] debian like turtle, ubuntu like rabbit? :) [03:49] If you need non-ancient software in a release, Debian may not be for you. [03:49] Sort of. [03:49] Ubuntu releases every 6 months. [03:49] i'm using version [03:49] Debian releases when they believe it's ready. [03:50] 11.04 currently [03:50] You may want to consider upgrading. [03:50] does the new 12 use a lot of memory? [03:50] It's not much different than 11.04, but to get to 12.04, you need to upgrade to 11.10 and then 12.04. [03:50] Direct upgrades from 11.04 aren't supported. [03:51] well there's a template for to, so I could switch over, it'd be fresh install anyway [03:51] just don't want to use a bunch of new memory for the latest version when it's not necessary === fenris is now known as Guest72521 [03:56] the important reason here is 12.04 is LTS and supported for 5 years, while 11.04 isn't, and is already over year through its support [03:57] who supports it [03:58] Canonical [03:58] the important part of support being patches and this channel [04:00] my host has two images [04:00] ubuntu-12.04-x86 326MBs and ubuntu-12.04-x86q1-July over 500mbs? [04:00] weird the latter is so much larger trying to figure out why [04:01] i'm sure patches are good practice but linux seems pretty secure [04:02] only downside i've personally seen, in terms of myself for older ubuntu is repo isn't the best [04:03] has older software, I'm aware 11.04 has almost released its end of cycle for support though [04:07] Patches won't make it bigger. [04:15] ola pessoal [04:16] to com um problema [04:16] no servidor === fenris_ is now known as Guest72079 === n0ts_off is now known as n0ts [04:26] New bug: #1006770 in backuppc (main) "package backuppc 3.2.1-2ubuntu1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Low,Expired] https://launchpad.net/bugs/1006770 [04:27] New bug: #993660 in samba (main) "package samba-common 2:3.5.8~dfsg-1ubuntu2.4 failed to install/upgrade: unable to open '/etc/dhcp3/dhclient-enter-hooks.d/samba.dpkg-new': Too many levels of symbolic links" [Undecided,Expired] https://launchpad.net/bugs/993660 [04:27] New bug: #995315 in samba (main) "package samba 2:3.6.3-2ubuntu2.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 128" [Low,Expired] https://launchpad.net/bugs/995315 [04:27] New bug: #1006829 in samba (main) "package samba 2:3.6.3-2ubuntu2.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Low,Expired] https://launchpad.net/bugs/1006829 [05:11] just installed debian looks to be using 2 more megabytes then the ubuntu install [05:11] dang was hoping for the opposite, removed all default services I don't need === cpg is now known as cpg|away [06:36] is it wise to encrypt a server? [06:46] akiva: What do you mean? [06:47] seekwill: I am trying to setup a business, and I have established 5 types of systems I am going to be using [06:47] and of these 5 types, I am trying to determine which types I should bother with encryptions, [06:47] particularly the lvm, and the disk [06:48] given that a server does not tend to get stolen, and it might be bothersome if it needs rebooting right away, I am thinking I will not encrypt my server types of computers [06:48] You can never have too much security, but there are other things I worry about before disk encryption [06:48] such as? [06:48] Network and physical security [06:49] Network is something I have yet to get too yet. [06:49] So, what are these five types? [06:50] Server, Administrators, Executives, Departments, and Terminals [06:50] The server is obviously going to be tucked away on its rack, doing its thing. [06:51] Admins are the only users who have read write access to the servers, [06:51] Are you the business owner, the IT manager, or? [06:52] IT manager [06:52] Might as well say business owner though, given circumstances [06:52] I got a simple spreadsheet. explains it all [06:52] If you are the business owner, I would highly suggest outsourcing this so you can focus on your core business [06:53] No, I don't believe in doing that type of thing [06:53] or rather, I do not enjoy it. [06:53] The question you're asking seems to be at a much higher architectural level, which doesn't always work well over IRC [06:54] What does IRC have to do with it? [06:54] I could be jumping to conclusions too early, but that's just the feeling I get [06:54] Anyways~ [06:56] speaking from previous experience, I do want any higher up to have their disks encrypted. [06:56] For example, I disagree with your statement that disk encryption on your servers is unnecessary as you don't generally reboot servers outside a maintenance window [06:56] I have witnessed laptops and desktops being stolen before. [06:57] ... or just don't store that data on those machines :/ [06:57] seekwill: I don't understand the logic behind that [06:57] Yes, I am looking into the cloud too [06:58] ubuntu one I figure should suffice [06:58] Google Docs... maybe, but I am not entirely sold on that yet. [06:59] Don't understand the logic behind what? [07:00] disk encrypting a server thats always running? [07:00] and that is highly unlikely to be stolen? [07:00] Umm ok [07:00] Is your server stored in a commercial data center with 24/7 security? How sensitive is the data you're storing? [07:01] But like I said, these are not really the conversations that go well over IRC, in my opinion [07:01] seekwill: Very sensitive. It would be stored locally. [07:01] If you are worried about data being stolen, I would never consider using Ubuntu One or Google Docs [07:02] I have a much higher confidence with commercial data centers than my own office [07:02] No, not google docs [07:02] with ubuntu one, I don't really know. Its purpose would only be to back up certain emails and local documents [07:03] akiva: Have you ever heard the statement "Security is a process, not a product" ? [07:03] SpamapS++ [07:03] seekwill: I used to work in security and surveillance, so I tend to have... [07:03] no [07:03] :/ [07:03] SpamapS: I think that is a fair statement. [07:03] Ok, well you'll understand this if you worked in surveillance [07:04] If surveillance was about products.. people wouldn't be needed. [07:04] likewise w/ security [07:04] you can automate *a lot* [07:04] but you still have to go through the process of planning and evaluating [07:05] SpamapS: Agreed, such is why I am trying to create standards [07:05] There are lots of security standards out there [07:05] Even certifications! [07:05] akiva: indeed, its good to start with a process which gets you going and mitigates your risk early on... [07:05] :) [07:05] seekwill: Certs can go fly a kite :P [07:05] Ok :) [07:06] SpamapS: I am focussing on long term scalability, and setting password standards that will be highly secure without giving you a headache [07:06] akiva: anyway, encrypting your server isn't really the question to ask [07:06] Its "what am I risking if I let security be at 0" [07:07] contrary to popular belief, "@# find a dollar value for that.. [07:07] spend an appropriate percentage of that dollar amount protecting it [07:07] How did you guess my password?!?!? :( [07:07] SpamapS: well, I am specifically talking about lvm and disk encryption [07:08] SpamapS: These types of encryptions if I am not so naive, are important when physical theft is involved [07:08] seekwill: ha ha ha [07:08] akiva: great. What assets would be at risk without whole-disk encryption? How much are they worth? How much will encryption cost? answer those, and you'll have your answer. [07:09] But you get the answer "for now". Things change [07:09] well, how does one physically steal a server rack locked in its own air conditioned room? [07:09] So because you can't do it, means no one else can? [07:10] Honestly, sysadmins and engineers suck at security planning (I say that as a sysadmin/engineer). You need an insurance agent to really get things right. [07:10] as to encryption, here is one thing I do not know [07:10] akiva: how is not important.. [07:10] akiva: why. answer that first. [07:10] If its worth $1,000,000 .. they can spend $100,000 on equipment / man power / planning and still profit from the theft. [07:11] for a server, where performance is important, does an encrypted file system need more cpu power etc? [07:11] [07:11] lol [07:11] akiva: yes it will use a few more cycles to encrypt/decrypt data [07:11] SpamapS: Perhaps you are more optomistic about those in the workforce than I am. [07:12] SpamapS: That was my supposition, though I was not entirely sure. [07:13] The other thing you have to ask yourself is what are you guarding against? [07:13] ScottK: Good question. But one step at a time right now [07:14] Without knowing the answer to that question, you can't answer the encryption question. [07:14] To me, you look at risk factors once you've assesed the value of your assets. Its hard to know how likely things are without numbers. [07:14] lvm encryption and disk encryption, given that physical theft risk is near nil, that such would not be neccessary [07:15] that is not to say that some other type of encryptian would not be important. [07:15] given the assumption that this server will not be stolen [07:15] "physical theft risk is near nil" .. this sounds like WAG method of assessment [07:15] SpamapS: What is Wag? [07:16] And trust me. [07:16] Wild Ass Guessing [07:16] I know someone who has an encrypted VM and has to go to the data center every time the VM is restarted to enter a passphrase because he wants to ensure the data center operators don't have access to it. [07:16] Like I said, I have experience in this particular regard [07:16] ScottK: It will be held locally [07:16] ScottK: but yes, in that case [07:16] that would be very advisable. [07:17] akiva: as do many here.. many whom you're subtly ignoring, I suspect because you want to play with encryption. [07:17] I've seen many people talk themselves into security "solutions" [07:17] SpamapS: If I wanted to play with encryption, then I would not question it. [07:18] my customers, back when I was doing spam filters and basic intrusion detection systems, often talked themselves into buying an IDS even before I had assessed their risk.. because the web interface was cool [07:18] akiva: also you can measure how much encryption drains the performance [07:18] SpamapS: Indeed, that is exactly what I am doing. What is my purpose here however? To see if there is any oversight. does disk encryptian protect against any non physical attempts at data theft? [07:18] I don't know [07:19] install w/ and w/o it.. measure the metrics that matter to your business. === smb` is now known as smb [07:20] SpamapS: Yes, that will be tricky. I will need to do it anyways, but that will be depending on performance forecasts [07:20] akiva: if you leave the volumes encrypted most of the time, and only use the physical console to decrypt.. you can mitigate a remote attack [07:21] but you'd still be vulnerable to root exploits while the volumes are decrypted. [07:21] right [07:22] and even if they're encrypted and the box is rooted.. [07:22] if you don't notice before decrypting.. you're still vulnerable because now they have keyboard logged the passphrase [07:22] SpamapS: but I am just asking about disk and lvm encryptian [07:22] that is all right now [07:22] Its primarily a mitigation strategy for physical access violations. [07:23] * SpamapS reboots into quantal w/ fingers crossed [07:24] assuming I only have to worry about remote attacks, a disk encryptian and an lvm encryptian are not going to help mitigate attacks. Is this correct? [07:32] hi guys, from http://kernel.ubuntu.com/~kernel-ppa/mainline/ i need a kernel > 3.4, can i use the quantal release also if i'm running precise? [07:37] alex88: I believe there is a PPA with the backport [07:39] SpamapS: Have you used landscape? [07:41] * alex88 searchs [07:42] how pricey is Landscape? [07:42] seems pretty reasonable to me [07:42] 33 a year I think for webhosting [07:42] local hosting is about 100 per year [07:43] the number of Ubuntu Server boxes I manage is increasing and I understand that Landscape can centrally manage them [07:44] wait, its more [07:44] I am thinking of something else apparently [07:44] waint [07:44] wait*, I think I am thinking of openerp [07:44] Wanting to impliment this too :) [07:45] akiva: feisar mailing the markting folks via there canonical website will be more helpful [07:45] the place is more developer oriented :P [07:45] akiva: I have been looking at OpenERP for a small business that needs a new finance package [07:46] koolhead11: yeah, thanks [07:46] Daviey: so i seriously feel am missing something with LXC or it has some bugs [07:46] feisar: ugh, mail [07:46] thanks though, it probably is correct [07:47] sadly my vps provider, most their images for distros are broken [07:47] feisar: I am looking to set up a warehouse, and need something that will be able to deal with idependent product serials etc [07:47] one after another, tried latest ubuntu, one didn't load other used like 30mbs of ram I think and couldn't ssh in [07:48] taipres: what's the hardware? [07:48] taipres: oh sorry, just seen the above [07:49] I knew 12.x used lot more mem, was hoping wasn't as much as I saw at least for 1 build [07:49] so i'll hold off on that === tommygu_ is now known as Guest80214 [08:16] Daviey: any particular reason rabbitmq-server was synced for quantal rather than merged? [08:17] morning o/ [08:17] morning lynxman [08:18] jamespage: mr Page :) [08:18] can anyone give me an idea about what else I can do to help debug 1014350 [08:19] bug 1014350 [08:19] Launchpad bug 1014350 in linux "WARNING: at /build/buildd/linux-3.2.0/net/core/dev.c:1960 skb_gso_segment+0x341/0x3b0()" [Medium,Confirmed] https://launchpad.net/bugs/1014350 [08:27] mardraum, I think you've already done loads [08:28] jamespage: MAAS, LS and the DM were happy that the ubuntu changes had been adopted [08:28] jamespage: see the merge bug [08:28] Daviey, OK - I'm going to drop the mcollective delta as well then as it depends on stuff that no longer exists [08:29] jamespage: thanks for looking, I'll be patient :D [08:30] mardraum, the kernel team have a pretty good triage process and your right in it... === railsraider_ is now known as railsraider [08:52] Hi, I have KVM running on 11.10 server with a 12.04 guest. I set up prerouting and forwarding on the host to make port 25 on the guest available to the outside. Post is open remotely, but not reaching the guest. A similar forward to another VM on port 22 is working. What could I be missing? [08:53] Rule: -A PREROUTING -p tcp -m tcp -d 78.46.74.45 --dport 25 -j DNAT --to-destination 192.168.122.13 [08:53] -A FORWARD -p tcp -d 78.46.74.45 --dport 25 -j ACCEPT [08:53] .45 is public [09:02] Is there any GUI to completely control iptable rules? [09:05] !fwbuilder [09:05] stupid bot [09:05] http://www.iptables.info/en/iptables-gui.html [09:05] first hit on google ;) [09:07] zul: let me know when you around [09:08] hi jamespage [09:08] hey koolhead11 [09:08] how are things jamespage [09:08] +1 [09:08] and you [09:08] ? [09:08] am awesomer [09:08] e [09:08] need some help from Zul to get LXC working in essex [09:09] RoyK: that's not a GUI, because it requires me to understand the syntax of iptables. [09:09] jamespage: i wonder who shot those kareoke videos and where are they [09:09] RoyK: I am sure a GUI could be designed which doesn't require that. [09:09] the UDS one [09:09] :P [09:10] fasta: well, it's the best I could find - learning iptables syntax isn't that hard, after all [09:10] RoyK: +1 [09:10] RoyK: it's also silly that one even needs to learn a syntax, because it only creates a dependency on Linux. [09:10] fasta: if you need something simple, try pfSense - it's based on FreeBSD, not iptables, but it's simple and easy to use [09:10] RoyK: it's basically a kind of vendor lockin. [09:10] fasta: http://www.shorewall.net/ might help [09:10] fasta: it's *NEVER* silly to learn anything [09:11] RoyK: so, you mean: install a virtual machine? [09:11] fasta: either learn how things work, or use something fancy [09:11] * RoyK likes to learn how things work [09:11] RoyK: I like to learn how things of importance work. [09:11] fasta: but fancy GUIs isn't really an ubuntu server issue [09:12] most people in here uses the commandline to do things the proper way [09:12] RoyK: yes, it is, because I haven't seen one. [09:12] RoyK: I will decide what is proper. [09:12] I haven't seen God, is that an ubuntu server issue, then? [09:12] !ufw [09:12] Ubuntu, like any other Linux distribution, has firewall capabilities built-in. The firewall is managed using the 'ufw' command - see https://help.ubuntu.com/community/UFW | An alternative to ufw is the 'iptables' command - See https://help.ubuntu.com/community/IptablesHowTo | GUI frontends such as Gufw (GNOME) and Guarddog (KDE from Lucid onwards) also exist. [09:13] RoyK: server configuration, of which iptables is a part, is a nm ubuntu server problem. [09:13] fasta: that's the proper ubuntu firewall [09:13] RoyK: that's not a serious solution. [09:13] then use iptables [09:13] case closed [09:13] RoyK: because I wanted to have full control over iptables. [09:13] then learn it [09:13] RoyK: you apparently don't get it. [09:13] I do, you don't [09:13] RoyK: you said that fancy GUIs aren't a problem on Ubuntu server. [09:13] you don't get full control over *anything* by trusting a fancy GUI [09:13] RoyK: sure you can. [09:14] RoyK: you can read the source code for the fancy GUI. [09:14] if that GUI is written well, and proper, and doesn't have too much bugs, yes [09:14] RoyK: which happens to be what I am looking for. [09:14] but it'll take a long time, and most people give up and use iptables instead [09:14] RoyK: what you are saying is that there is no fancy GUI on Ubuntu server. [09:14] RoyK: and that those that are there are bug ridden. [09:15] fasta: so, please, either google for a fancy iptables gui, or *learn* *iptables* [09:15] RoyK: and thus that Ubuntu server does have a problem. [09:15] * RoyK ignores fasta [09:15] RoyK: lol [09:15] RoyK: you shouldn't start an argument with me. [09:15] RoyK: because, of course I Googled. [09:15] RoyK: you just are so ignorant that you think one google query solves all problems. [09:16] Why you would think that is beyond me. [09:16] * RoyK reminds himself of the phrase "Never argue with an idiot, they drag you down to their level and beat you with experience bumper sticker" [09:16] RoyK: you are just projecting ignorance. [09:18] RoyK: judging by your credentials, you are -- by far -- the idiot here. [09:18] RoyK: I advice you to consider who your talking to before you even consider to call someone an idiot. [09:18] oh look, this guy again [09:18] new nick! === mcclurmc_away is now known as mcclurmc [09:19] I wish IRC responses were tagged with the CV immediately. [09:20] Then at least I could automatically ignore those responses. [09:20] * mardraum popcorn [09:20] fasta, you are being rude when you received help. RoyK was more patient with you than I would be [09:21] nocturn: I am sorry; I received _no_ help. [09:21] nocturn: RoyK only wasted my time. [09:21] nocturn: I have been patient with him. [09:21] nocturn: not the other way around. [09:21] nocturn: comprendo? [09:21] He gave you the answer, just not the one you wanted to hear. [09:21] nocturn: no, he gave me _an_ answer. [09:21] nocturn: initially a wrong one. [09:21] fasta: 42 [09:22] that's the right answer [09:22] you're welcome [09:22] nocturn: good book [09:22] nocturn: most people who say it, didn't read it. [09:22] I read it allright, listened to the radio show too, didn't like the movie though [09:23] nocturn: same with the exception of the radio show. [09:25] nocturn++ [09:26] RoyK-=9e10; [09:26] +1 [09:26] I like [09:26] I hate [09:36] New bug: #1031680 in nagios-plugins (main) "check_apt always report 0 critical updates" [Undecided,New] https://launchpad.net/bugs/1031680 [09:45] sometimes those trolls come by... === Lcawte|Away is now known as Lcawte === n0ts is now known as n0ts_off === railsraider_ is now known as railsraider [11:42] Been trying some stuff, but no progress. I cannot foward port 25 on a VM guest to port25 on the VM host using iptables. Yet the same rules for port 22 on another VM do the trick... [11:44] something is already listening on port 25 on the host , and nothing was listening on port 22 ? === Garbee_ is now known as Garbee [11:47] morning [11:49] melmoth: No, I checked [11:49] nothing is listening on either port on the host. And the guest respond on those ports from the host (using netcat) [12:10] lo all. Running into trouble using nut (network ups tools). Anyone knows how to cancel all timers? Doc says to remove files, but pipe is used instead of files... [12:26] I needed to SNAT it too! [12:26] fixed === dendro-afk is now known as dendrobates [13:05] smoser: nova package has the persistent volume support now. [13:07] Is it absolutely painless to install python3 via apt-get on lucid LTS? [13:17] adac: It is, but it's python3.1, so there's a limit to how painless using it will be. [13:17] It also won't interfere with any python stuff. [13:18] ScottK, oh ok so it never becomes the system python [13:18] hey guys, hopin sum1 can guide me in the right direction>> [13:18] Dear lord no. [13:18] configuring multiple VirtualHosts, enabled the new site entry but what seems to be happening is its ignoring the previous virtual host entry and applying the rootdirectory to all hosts over port 80. i.e. domain1.com >> /var/www/domain1/ domain2.com >> /var/www/domain1/ [13:18] has anybody had a similar problem or heard of a resolution? === dendrobates is now known as dendro-afk [13:20] ScottK, hehehe [13:21] ScottK, is there also 2.7 that can be installed? [13:21] Not for 10.04. [13:21] 12.04 has python3.2 and python2.7. [13:22] If you want 2.7 for something, it's really easier just to upgrade. [13:22] ok you can start a chroot.... but that would be ugly [13:23] if no other resolutions come up, it might have to b that [13:24] There are PPAs with python2.7, which, if you only need the standard library and no extensions might work if you can find one run by someone you can trust (anyone can get a PPA, so don't assume it's any different than downloading from some random site on the net). [13:25] ScottK, kk thank you so much! [13:26] New bug: #1030519 in perl (main) "/proc/self/exe is not necessarily correct on overlayfs" [Undecided,New] https://launchpad.net/bugs/1030519 [13:28] ScottK, what would be the sytem python version on 12.04? [13:29] python2.7. === dendro-afk is now known as dendrobates [14:00] zul, awake? [14:01] koolhead17: yep [14:02] zul, have you tried LXC with essex [14:02] koolhead17: yep [14:04] zul, and what all pkgs am supposed to install [14:04] koolhead17: the usual packages and libcgroup1-lite [14:04] because i installed some pkg i think python-nova-lxc [14:05]