[00:00] :) [00:01] gn8 [00:01] MrTorque: 'night :) === chilicuil is now known as chilicuil_away [02:25] sarnold: could you help me understand this crypt(3) [02:25] oh woops, he's probably gone by now [02:26] but if someone else could help me understand please; is the man page saying that salt is automatically used? [02:26] I guess there's not a method for just char *crypt(const char *key) so it requires a salt [02:28] myhrlin: the way I interpret the manpages is that: you should supply salt, which must be a two-character string from [a-zA-Z0-9./] [02:28] ah ok [02:29] then my next question is where do I do that? hehe. I'm trying to modify pam so that passwords are hashed with a salt [02:29] I've also got pam_unix opened up === cpg is now known as cpg|away [03:07] What software would you guys use for a NAS? Unraid? or Ubuntu Server? [03:11] I'm leaning toward Ubuntu, because that is what I am comfortable with atm. & I don't see the server edition use much RAM or CPU time. My only worry, is scaling the processor with the # of drives and software RAID 5 or 6. I'm not sure how to predict the hardware requirements. [03:24] myhrlin: you supply the salt; if you install the manpages-posix-dev package, you can see an example program via 'man 3posix crypt' [03:25] (I strongly recommend installing the posix and posix-dev manpages, having The Standard at your fingertips is awesome.) [03:32] sarnold: ok, so I have that installed and I see the program, but now I'm understanding that to add a salt goes beyond making a modifcation in /etc/pam.d/common-password and /etc/login.defs [03:33] myhrlin: if you're developing your own PAM module, you get to do what you wish, really.. ;) [03:34] exactly what I didn't expect to have to do, but I wont complain, at least I get that option :) [03:34] myhrlin: what's your end goal, anyhow? :) [03:35] oh just adding the salt is what I want to achieve [03:35] if it's to find out how pam works, this is one awesome way to do it, but there may be easier ways to do what you're aiming for if you just want something to work. :) [03:35] at one point I thought to do both blowfish and sha512 hashing but that would be overkill I guess [03:35] plus a salt ^ [03:35] myhrlin: .. and require _both_ hashes to log in? [03:36] I mean to apply both hashes to the password, not to have a two hashes of the password [03:37] so do a sha512 on the password, then blowfish with salt [03:39] myhrlin: take a look at your /etc/shadow file; you'll probably notice entries like this: sarnold:$6$HMjuZ0yq$Q.... [03:40] myhrlin: that HMjuZ0yq there is the salt [03:40] myhrlin: and the '6' asks for sha-512 [03:41] oh [03:41] so it's actually in there [03:41] myhrlin: yeah [03:42] I guess I can live with that :) [03:42] if you want to fiddle with something, the /etc/login.defs SHA_CRYPT_MIN_ROUNDS value is probably the one to change; maybe you want to raise that to 10000 or more, to try to make guessing passwords that much harder [03:44] sarnold: sure, I might just do that instead. I'll play a bit with john and see how it fares on what I have right now though === n0ts_off is now known as n0ts [03:46] myhrlin: woo. :) === n0ts is now known as n0ts_off === cpg|away is now known as cpg === cpg is now known as cpg|away [12:45] Hi, why does default 12.04 ubuntu 64bit kernel keeps big reserved space [12:45] My ubuntu VM has [12:45] Memory: 298196k/5767168k available (6561k kernel code, 448k absent, 5468524k reserved, 6642k data, 924k init) [12:45] my CentOS VM has [12:45] Memory: 2001680k/2097152k available (5085k kernel code, 388k absent, 95084k reserved, 7228k data, 1244k init) === acidflash_ is now known as acidflash === chilicuil_away is now known as chilicui === chilicui is now known as chilicuil === schmidtm_ is now known as schmidtm [15:38] Hi! I'm trying to setup a server for my company. The following things is what I want: Own place for user files, and a group file server. DHCP server, VPN server to access the files from all around. What packages do i need? [15:40] And ofcourse a webpage that can only be access through vpn(intranet page), but i think LAMP takes care of that with a CMS system [15:44] selje, isc-dhcp-server, apache2, openvpn, samba [15:44] Thank you Seveas [15:45] is there any gui for openvpn server manager? [15:45] on a server you don't want a gui :) [15:52] * FauxFaux would suggest considering sftp over vpn+samba for file access, if it's intermittent and not home-drive style access. [15:55] Seveas: I want a gui :-) [15:55] selje: You don't want a GUI on a server. [15:56] it's much easier when i don't know all the commands...and much easier to configure [15:56] selje: Then, you'll never have a proper understanding of what's going on. [15:56] selje: And when things break... [15:57] hmmm jpds: this is going to be a hard night i understand [15:57] selje: We all were beginners at some point. [15:57] yeah jpds :-) [15:59] selje: If you would like a systems management GUI, then there's http://www.ubuntu.com/business/landscape === yofel_ is now known as yofel [16:52] hi! I need some help with installing ubuntu server 12.10 [16:53] I'm coming to the part of partitioning my system, and last time i tried to install it, it came up as guided, but now i have to choose. When I choose and install, i just get up an error [16:53] what is the right way to do? I'm using a server with 2 RAID discs.. [17:21] nobody have any idea about partitioning the system? === Gallomimia_ is now known as Gallomimia [17:50] New bug: #1082699 in samba (main) "cannot copy to samba share" [Undecided,New] https://launchpad.net/bugs/1082699 === illuminatis^^ is now known as illuminatis [17:54] selje: Please give actual information about the problem instead of saying "an error". [17:54] FauxFaux: I got a boot message...not sure what it said, but i wouldn't boot [17:55] Knowing what the problem is is an important stage of the diagnosis process. [17:55] yeah FauxFaux.. But I think the whole problem is that i don't understand the manual partitioning system [17:56] and then the boot process fail [17:58] I can't help you if you don't give actual error messages instead of saying "it failed", maybe someone else can mindread. [17:58] ok.. Thanks for your time FauxFaux [18:06] how to reinstall some package to get that package repair [18:26] New bug: #1082707 in php5 (main) "package php5-common 5.4.6-1ubuntu1.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 2" [Undecided,New] https://launchpad.net/bugs/1082707 [18:48] hi [18:50] hi === jiboumans_ is now known as jiboumans === n000 is now known as koolhead17 [20:26] Any virtualization guru around? === cpg|away is now known as cpg [21:58] anyone have a good tutorial for setting up my vpn server? [21:59] openvpn? [22:00] yes [22:00] Have you looked at https://help.ubuntu.com/community/OpenVPN [22:01] Or how about https://help.ubuntu.com/12.04/serverguide/openvpn.html [22:02] Thanks TJ, sorry, my bad [22:03] I use openvpn routed tun UDP with TLS auth [22:07] * cwillu huggles openvpn === Jack_ is now known as Guest95624 === cpg is now known as cpg|away [23:21] Could a "nf_conntrack: table full, dropping packet." error being spammed in my syslog be a sign of a DDoS? The server dropped from the internet when it happened aswell === cpg|away is now known as cpg === stijnaway is now known as stijndg [23:53] * stijndg is away (Stijn is out BNC logging messages) === stijndg is now known as stijnaway === stijnaway is now known as stijndg