=== andol is now known as Guest13386 === Guest13386 is now known as andol === andol is now known as Guest37689 === Guest37689 is now known as andol [00:24] hi all.. [00:25] i've got a windows2003 virtual running within kvm. I have enabled remote desktop within the virtual machine. How do I now access this remote desktop when connecting from outside my linux box? [00:26] i tried rdp over an ssh tunnel, but am unable to get a connection to the internal vm === Jon__ is now known as JonEdney [01:31] I know this is a little off topic, but how do I point my ubuntu 12.10 lamp apache to a website on my hard drive? I did the etc/hosts, or maybe someone knows a good link [01:32] i've already done the etc/hosts part [01:35] dunno what /etc/hosts has to do with it at all [01:35] you need to do something in /etc/apache/sites-enabled/ [01:35] oh so I can type dev.mywebsite.com in the browser [01:35] ah ok [01:36] i will check etc/apache/sites-enabled [01:37] hmm there is no apache folder in etc [01:37] I had this problem with a tutorial i found too [01:48] guideX: do you want to resolve dev.mywebsite.com locally, right ? [01:48] so, if you go to dev.mywebsite.com , will show your local lamp server [01:49] right ? [01:50] yes [01:51] I think I have that part working, but how do I setup the site too? [01:51] how do I tell apache where my site is [01:51] where do you have it ? [01:52] in wich directory ? [01:52] hmm 1 sec.. [01:52] let me find the patrgh [01:52] apache by default looks at /var/www [01:53] I have it in /home/ubuntu/dev [01:53] and then a folder off of that [01:53] then just copy your folder to /var/www [01:53] oh [01:53] so only one at a time? I was hopeing to dev others from this server [01:54] oh [01:54] was hopeing I could do like dev.whatev.com and dev.whatev2.com etc [01:54] pointing to different folders [01:54] and point those to diff folds? [01:54] yeah [01:54] oh, then take a look at this [01:55] http://httpd.apache.org/docs/2.2/vhosts/name-based.html [01:55] cool thanks [01:55] That will explain (even better than me) how set up what do you want [01:55] i'm checking it out now, thx [01:57] yw [01:59] ah so just make new files in sites-available eh [02:01] guideX, yes.. then just symlink them into sites-enabled as you need them or just use a2enmod (which does pretty much the same thing for you) [02:02] err.. a2ensite [02:02] in a gui? [02:02] I would much perfer that heh [02:02] I will check that out [02:02] nah, its not a gui.. after you make the conf in sites-available you need to enable it [02:03] ah ok [02:03] the process is really just: (i) make symlink in sites-enabled (ii) reload apache conf [02:04] hmm ok [02:17] heh I don't think it worked [02:17] but I learned a lot more, thanks i'll keep trying [02:21] hi [02:21] do i need to re-compile a module with change from 3.5-0.22 to 23? [02:22] hi [02:22] i hope no because i don't know to compile the module with another knerl [02:27] is there some way to troubleshoot when it's not working [02:28] when I put my virtual host in the url the page doesn't come up [02:29] is there a tool that does this for you? [02:29] for noobs like me? [02:30] like iis manager... [02:51] when I run 'service apache2 reload' i get these errors, do you know what to do? www.nomorepasting.com/getpaste.php?pasteid=39093 [02:58] guideX, did you run: sudo service apache2 reload ? or did you run it without sudo? [02:58] after sudo it's better, but not perfect.. I still get the namevirtual host error.. [02:58] is there something wrong with my sites-available file? www.nomorepasting.com/getpaste.php?pasteid=39094 [03:00] I still go to the "It works!" page when visiting dev.testsite.com [03:00] not my test page [03:04] any ideas? [03:05] guideX, change to [03:05] ok [03:05] try that, otherwise you need to /join #apache and ask there :) [03:06] i'm there [03:06] also, just try sudo service apache2 restart [03:06] just to be sure there are no issues with simply reloading the confs. (there really shouldn;t be any issue with just reloading) [03:07] omg it worked [03:07] thanks! [03:07] I see my test page [03:08] http://httpd.apache.org/docs/2.2/mod/core.html#virtualhost if you read that page, it says: ... Addr can be: * the ip addr of vhost, * fqdn (not recommended), * the character '*', which is used only in combination with 'NameVirtualHost *' to match all IP addrs, or * the string _default_ [03:09] oh i see [03:10] and the first example actually uses *:80, http://httpd.apache.org/docs/2.2/vhosts/examples.html [03:10] even though it actually has NameVirtualHost *:80 [03:16] guideX, theres something called webmin, it provides a web interface for system management. not sure how good its apache conf integration is [03:16] hmm I will give it a shot, it might be quicker for me.. I'm more used to iis7 which has a ui you can deal with instead of these commands which for me are intimidating atm [03:20] sure will be intimidating now, but trust me editing the conf file (and having this insanely good documentation) provides much more flexibility (+power) :) [03:33] does zend pages require an install? [03:33] or just lamp + mysql will do [03:56] anyone here done ldap based layered autofs mounts? === J2EE is now known as w0rmie [04:14] help help help please [04:14] i have a a lamp install and i idid it at xampp for linux... and when i started it i found that i had a webserver running already so istopped that an dhtne it said ihad a webserver with ssl running already so i followed the steps at the ubuntu website and now ican start it [04:14] but i cant get localhost/xampp === ggg is now known as w0rmie === ggg is now known as w0rmie === ggg is now known as w0rmie === ggg is now known as w0rmie === VD is now known as Guest33415 === ggg is now known as w0rmie === ggg is now known as w0rmie === ggg is now known as w0rmie [05:29] any weigh-ins on best method to mount a folder from a remote machine over a LAN (encryption not necessary). [05:32] sshfs is the simplest, since you probably already have ssh installed [05:33] other common options are nfs and cifs/samba [05:33] awesome, thanks for the suggestions [05:34] please help [05:34] i finally got lampp / xampp re running on my comp [05:34] but they have anew security concept that is ruining my day [05:35] i googled it and followed a couple tuts and restarted /opt/lamp/lamp [05:35] but still no access [05:35] its gotta be local [05:35] i am local [05:35] that's not a supported configuration [05:35] what one am i supposed to use [05:35] you should use the ubuntu server guide on LAMP to set up your web server [05:36] i juwt want to right code here.. im getting frustraited [05:36] start over using the server guide, not the xampp setup [05:36] okay... i know this is ubuntu and i should command line the shit out of everything but ihave everything im doing already i just need my server im sorry .. your aamazing and awesome for helping [05:36] is this going to be quic [05:37] yes [05:37] it takes about 15 minutes [05:37] thomedy, it's a server. Not likely to be "quic" [05:37] okay thank you.. i can do 15 as long as i can see an end in site [05:37] you install from disc as normal, then at the end, you check the box next to LAMP [05:37] SpinningWheels: autofs [05:37] drop your files in /var/www [05:37] that's all there is to it [05:38] wait i cant reinstall my ubuuntu... is that what your recommending?... am i being difficult... this was working 3 hours ago but i was tryi ng to set up mail and i have never done this im not so good at the admin stuff yet because my work doesn't cal for it all that much [05:38] do i have to reinstall ubuntu to do this [05:39] yes, I am recommending you reinstall ubuntu, because you've installed third party software manually, which can (and probably has) break the built in software [05:39] how to depmod for a other kernel e.g instead 3.5.22 3.5.33 if running 3.5.22 [05:39] okay while i realize that what your recommending is absolutely right... thats just not an option for me.. so if that means your unwilling to help..‎ i understand and i still think your great [05:39] autofs doesnt sound like what i need, but that does sound very useful. :P [05:40] i have to install a driver into 23 [06:37] i've got 8 different verions in my /boot, do i get rid of them by deleting them or is there some process that i need to use? [06:38] SpinningWheels, I'm assuming you mean old kernels. you can delete, but best practice is to keep at least ONE old version in case an upgraded kernel breaks your system [06:39] yes, and okay. thx === mysteriousdaren is now known as mysteriousdarren === Nigel_ is now known as G === ggg is now known as w0rmie === ggg is now known as w0rmie === ggg is now known as w0rmie [08:35] any one use ksplice? === smb` is now known as smb === railsraider_ is now known as railsraider [10:34] hi, i tried to install mongodb package on raring, but service isn't starting, and doesn't write any logs, do you know if package is working ok in raring? [11:46] I have a small computer technicians lab. I want to install a server to serve as a VM Machines and file sharing [11:46] anyone can point me to a good step-by-step guide? [11:50] PenguinCSC, https://help.ubuntu.com/community/KVM/ for the vm part [11:51] PenguinCSC, for file sharing, it depends what you need. Easy option are nfs ,apache or ftp. === th0mz_ is now known as th0mz [12:53] Hello everyone! Does nyone know if its possible to make rar arhcive on ubuntu server? [12:54] I got Sample.mp3 that i want to make to Sample.r1 Sample.r2 and so on, like a scene released is packed [13:02] D0minat0r: 7z supports rar [13:03] Something on my machine is sending emails, `/var/log/mail.log` shows about 1 attempt per minute, how can I investigate? === gary_poster|away is now known as gary_poster [13:06] sandstrom: can you pastebin some logs? [13:07] RoyK: yes [13:08] RoyK: http://pastie.org/private/cfamt4poa1mil8m3gjblg [13:09] hm... dunno, sorry [13:09] RoyK: there is a sendmail process started every minute, can I run some commmand that shows what script/process initiates sendmail? [13:10] check cron [13:12] RoyK: It's not a cron job [13:13] sandstrom, what does the logs says ? you should have a sender adress there. [13:13] dunno, then - I don't use that MTA [13:13] as well as a recipient [13:13] melmoth: doesn't look like sSMTP even logs that [13:13] * RoyK sticks to postfix [13:14] ahh, ssmtp. this will not help :) [13:14] I tried disabling the cron scripts under `crontab -e` and it keeps trying to send. But perhaps I shouldn't rule out cron entirely, it could be the cron job of some other user too. [13:15] can you send mail with ssmtp ? [13:15] may be it s doing this for each and every mail ? [13:16] and may be the error message that should be bounced got trap in an infinite loop this way or something ? [13:16] I just got this `www-data 29488 0.0 0.1 32648 1960 ? S Apr02 0:00 /usr/sbin/sendmail -i -FCronDaemon -oem www-data` off ps aux [13:16] looks like a web application is trying to send mail (www-data) [13:16] i wonder what the -F option is for [13:18] sandstrom: check /etc/cron* [13:19] or perhaps try to stop cron for a few minutes [13:29] I've shut down the webserver, that didn't make any difference. I've also checked /etc/chron* and found nothing [13:29] (there are a few cron scripts, but nothing that would explain this)_ [13:30] did you try to stop cron? [13:30] I'll try [13:33] Stopping cron seems to shut it down [13:33] then there's a cron job running every minute :P [13:33] cron is configured under /etc/cron* and /var/spool/cron/crontabs/ [13:39] <_ruben> probably a crontab for user www-data .. got some devs who tend to put stuff there as well .. annoying as fuck [13:40] _ruben: No need for swearing. [13:41] <_ruben> heh .. got me confused there a bit .. somehow i read that as "no need for answering" .. guess i need me some glasses :) [13:42] _ruben: RoyK I think you are right, I'll investigate further [13:42] hehe, no. Please answer allthe questions you like [13:43] <_ruben> ;) [13:43] some of the ones you don't like also, just keep it clean :) [13:48] _ruben and RoyK Thanks, it was indeed a crontab for www-data, it's squelched now. Your help is much appreciated! [13:53] <_ruben> good :) [14:03] Daviey: im going to re-upload python-pecan with a fixed debian/copyright this ftbfs for ceilometer is starting to bug me [14:04] Anyone knows any good video splitter for ubuntu server? [14:04] zul: there is a new dep that yolanda is working on aswell [14:04] Daviey: w3m? [14:05] hah, no [14:05] it's in her PPA.. maybe she needs sponsorhsip? [14:05] is the the one i reviewed on friday? [14:05] talk of the devil [14:07] i reboot a minute and i loose all the fun :) [14:07] zul, yes, the python-wsme dep [14:07] yolanda: cool which ppa is it in? [14:07] zul, it's only the source in my launchpad branch [14:08] yolanda: heh url please im kind of lazy this morning :) [14:08] https://code.launchpad.net/~yolanda.robla/+junk/python-wsme [14:13] cool thanks ill get it uploaded today [14:34] great === slank_away is now known as slank [14:51] Anyone here who are familiar with configuring ldap server/clients? I have some problem with shared sudo authentication [15:20] Hey there. I am here to see if there is a way to report abuse and get information about a user of try.cloud.ubuntu.com who connected to my IRC network and compromised some NickServ passwords. [15:21] We have dates and times of the attack, as well as IP and Hostmask. Who can we contact for an abuse report? [15:24] this is normally why there is an abuse address for ip addresses [15:25] The user was using a try ubuntu cloud account. The abuse contact was AWS. [15:26] ah, it's hosted in ec2 [15:26] AWS provided no help, saying they don't control the IP in question. [15:27] Does canonical have an address I can contact for people spawning these free trial servers and committing abuse against our IRC network? We have banned access from them, but this user needs to be delt with. [15:30] Is there any abuse address for the service? [15:41] therianthrope: you might be able to use the feedback form === matsubara is now known as matsubara-lunch [15:44] therianthrope: I beleive #freenode is a good place to start [15:44] this has nothing to do with freenode. [15:45] This user abused -my- IRC network, from -your- service. [15:45] oh [15:45] *your* network [15:45] * therianthrope nods. [15:45] from Canonicals service [15:45] usually abuse@isp.tld [15:45] not "our" [15:48] hi, I was wondering how to interpret {a} in linux-headers-3.2.0-34{a}. I see that when I do aptitude install linux-headers-3.2.0-34. When I was removing other kernels, aptitude sweeped 3.2.0-34 as well and showed it as linux-headers-3.2.0-34{u}. What do {a} and {u} mean? [16:37] Hello. I'm setting up a KVM machine with vmbuilder but I get a problem [16:38] I run vmbuilder and it creates the qcow2 files, but it doesn't define a domain. I can't see it in virsh list --all [16:39] The command I run is something like: sudo vmbuilder kvm ubuntu --suite precise --flavour virtual --arch i386 -o --ip 192.168.42.180 --hostname davide --part vmbuilder.partition --user davide --name davide --pass pass [16:39] I don't even know where to start debugging this. I see no error logs === matsubara-lunch is now known as matsubara [17:19] Ok, this is the output from vmbuilder: http://paste.ubuntu.com/1609761/ [17:59] jamespage: ping https://code.launchpad.net/~zulcss/keystone/keystone-ftbfs/+merge/146482 [18:38] hi guys how do i install ldap dependency..? or development..? [18:39] anyone have idea [18:51] Daviey: jamespage i'd like to put together the next round of openstack SRUs today. was it decided whether we want new ubuntu bug tasks for upstream bugs? re-reading discussion in #Ubuntu-release last week, seems like it can still go either way [18:53] hi guys how to install ldap dependency with ubuntu server 12.04 LTS [19:12] anyone with knowledge on Tandberg tape backups ? TS400 ? [19:14] adam_g: ping https://code.launchpad.net/~zulcss/keystone/keystone-ftbfs/+merge/146482 [19:18] jck77: isn't that lto-2? [19:19] roaksoax: hey! [19:19] roaksoax: could I get you to take a look at, and consider sponsoring, http://people.canonical.com/~serge/spice-tests.debdiff ? [19:20] RoyK: yes [19:20] I thing I just figured out [19:20] roaksoax: this could be the last step in getting spice MIRd so we can watch beautiful video from qemu from main [19:20] zul: thought i approved ? [19:20] think* [19:20] jck77: what backup software? [19:21] adam_g: ah ok i didnt see it [19:22] bat [19:23] but I can't see the tape on the GUI [19:23] bat? [19:24] bacula [19:24] try #bacula [19:25] thx [19:30] adam_g, new ubuntu bug tasks are not required. [19:31] * jamespage looks at bug bug 1069597 [19:31] Launchpad bug 1069597 in juju "juju, zookeeper, and disk usage" [High,Confirmed] https://launchpad.net/bugs/1069597 [19:32] jamespage: i know they are not required, but do we want them? im looking at the new stable nova release, there are 0 bugs with ubuntu tasks. [19:33] (assuming we tag anything we open v-done) [19:33] adam_g, no - under the terms of the MRE they are not required :-) [19:33] it sufficient to generate the changelog and reference the bugs but not actually close them [19:34] adam_g, if that makes any sort of sense [19:36] smoser: Hey.. If i wanted to run cloud-init on first boot from a d-i install, with a preseeded config (nocloud).. [what work do you think would be involved? [19:37] you'd have to buy me a beer. [19:37] are you asking how you woudl write the 'nocloud' datasource ? [19:37] smoser: no.. I'm asking for a d-i preseed to JFDI ;) [19:38] so you want to input a blob of cloud-config to d-i ? [19:38] smoser: I wonder how well cloud-init works with a d-i install [19:39] smoser: No, i want to pre-declare during d-i some code to run on first boot. With cloud-init being the harness [19:39] jamespage: by that you mean, continue to include bot parsable bug references in the changelog? [19:40] smoser: ie, run cloud-init on first boot, with a pre-provided datasource. [19:40] right. so this is essentially a combination of how maas interacts with cloud-init [19:40] smoser: yeah! [19:40] and how i was invoking the fast path installer [19:42] adam_g: yes - so if a end-user wants to check the openstack project bug report out thats fine [19:42] so (LP: XXXXXX) rather than (LP: #XXXXXX) which would also generate a Closes [19:43] adam_g: I think most ubuntu based terminals will understand how to link to that :-) [19:44] jamespage: still unclear to me, sorry. we want bugs /w no ubuntu task to use the (LP: XXXXXX) format and those /w ubuntu tasks to use the (LP: #XXXXXXX) ? [19:45] adam_g: If there is already a ubuntu bug task then give it a proper closes statement, if there isn't a ubuntu bug task... then use the fake format [19:45] adam_g: Ie, don't open tasks purely for SRU procure - creating noise [19:46] adam_g: "Nova fails to properly initiate iptables on centos" wouldn't require a ubuntu task. [19:46] jamespage: That is your understanding, right? [19:47] adam_g: As we already poll LP with the tooling we wrote, it shouldn't be that complicated, right? [19:47] Daviey, it can work. and we can/should make the nocloud datasource be selectable all from config. === matsubara is now known as matsubara-afk [19:48] smoser: do you have capacity to write a quick standalone preseed demoing this? [19:48] adam_g, Daviey: yes that is my understanding [19:49] Daviey, i can. give me a minute to finish up what i was working on [19:49] Anyone know how to increase the number of written leases on a dhcpd server? [19:49] smoser: thanks :D [19:51] Daviey: right, its a tiny change. my concern is whether or not a proposed SRU with *no* related ubuntu bug tasks actually shows up on the SRU radar (except the meta-bug, if we still do that?) [19:52] I think my dhcpd server is not sending out more addresses b/c of a limitation the dhcp.leases file has [19:53] dhcpd: Wrote 200 leases to leases file. [19:53] the range is much higher [19:53] but it always writes only 200 leases on this file [20:02] jck77: bacula is a great backup system, but is has a rather steep learning curve [20:03] I think we are still doing the metabug, jamespage ^ ? [20:08] RoyK: I can see [20:08] a lot of doc to read [20:09] jck77: yes, or ask on #bacula - specific questions are usually answered quickly [20:14] i have a new nice template here: http://serverteam.ysoft.biz/ - comments, proposals? i will only accept the nice ones :) [20:18] yolanda, sadly, that hurts my eyes [20:18] what patdk-wk said [20:20] roaksoax: uh, on second thought, please DISREGARD my request about spice [21:00] I thought perhaps someone in here may know... If I have some old telco stuff someone wants to pick up for free, is there a good channel to announce that in on freenode? [21:01] eg: Norstar ( Meridian) NT5B20 wallmount with DR5 module.. Bayly OMNIflex 19" rackmount with T1 Quad card 051539, one PairGain HRU-402 HDSL endpoint card in single card enclosure box, one ADC H2TU-R-402 HDSL endpoint card in double card enclosure box. [21:40] Buenas, sucede lo siguiente: Ando en la configuracion de una VPN utilizando openVPN sobre ubuntu 12.04, no es la version server pero ya esta adapatado y tiene un server funcionando sobre el. Para la configuracion de la VPN he seguido el siguiente manual (http://www.deigher.com/2012/07/instalar-openvpn-en-ubuntu-12-04-lts/), todo marcha bien, tanto el server como los clientes los he configurado y me generan la interfaz tun0, a la hora de llevar a c [21:41] Correcion: he intentado solucionarlo pero sigo .... (Si he intentado) [22:00] jaimevg123: try #ubuntu-es ? [22:03] sarnold, I tried that, no one gives me solution [22:04] really, I need to fix this. If I have to speak in another language I'll try [22:04] jaimevg123: can you restate the problem in english? (your english is better than my spanish :) [22:04] mmm ok wait [22:12] I set up a VPN with OpenVPN. I follow the current system configuration of a server, given by the official documentation canonical, (https://help.ubuntu.com/11.10/serverguide/openvpn.html), I set the keys for the server and one client. When you reboot after changing openvpn server.conf and client.conf files generated tun0 interface. I try to initialize openvpn with the following in the terminal: openvpn server.conf and get the following: http://pas [22:12] jaimevg123: you were cut off at "get the following: http://pas" [22:13] mmmm [22:13] the following http://paste.ubuntu.com/1610433/ . I tried to resolve it, but I could not. If anyone has any comments, ideas, or possible solution thank you very much [22:15] when I try to make the connection between the server and the client, the client is trying to make the connections infinitely. Both are under Ubuntu 12.04 [22:17] jaimevg123: rather than "openvpn server.conf" -- try /etc/init.d/openvpn restart [22:18] I did that before openvpn server.conf [22:21] jaimevg123: why are you running "openvpn server.conf" by hand? you should let the initscript do everything for you.. [22:23] If you're right, but I have not been able to establish the connection and I'm trying everything. [22:24] jaimevg123: "TCP/UDP: Socket bind failed on local address [undef]: Address already in use" [22:24] jaimevg123: that says to me that the program is already running -- and trying to run another copy of it has failed [22:25] jaimevg123: I recommend, /etc/init.d/openvpn restart -- then try to connect with a client -- then look in the openvpn server logs for errors [22:25] ok y try [22:25] I try [22:29] sarnold, look http://paste.ubuntu.com/1610574/ [22:31] but still can not make the connection between the server and the client. [22:31] jaimevg123: have you tried connecting a client yet? [22:31] jaimevg123: does the client provide any good logs? or an error message? [22:34] tun0 interface generates me, but I have not looked at the syslog [22:35] i followed this wiki page https://help.ubuntu.com/community/PostfixBasicSetupHowto and can now send and receive email from the command line (but haven't figured out how to specify which of my domains to use on the From when using the "mail" command) or receive over imap to my phone, but i can't send from my phone through my server [22:35] netstat only shows unix sockets for smtpd, not any tcp sockets [22:35] how do i fix postfix to let me send email with my imap'ified phone? [22:49] maco: postfix is just an smpt server, it's not an imap server [22:49] ikonia: courier-imap is doing the imap side of things [22:50] .. but not being able to send is still postfix's fault :) [22:50] my attempt at sending from phone through postfix went belly-up [22:50] I may have missunderstood, what's the issue [22:50] phone autodetected 587 as the port [22:50] maco: what do you get, failed connection, a bounce etc [22:51] phone says "cannot connect to server (cannot connect to host)" [22:51] hallyn: i figured out the cause of that kernel-oops with qemu-nbd its a race in openstack [22:52] maco: is postfix listening ? [22:52] mmm nope apparently not. how do i make it listen then? [22:53] maco: in the config file is it set to listen on the default port 25 ? [22:54] ikonia: would that be main.cf or master.cf? [22:54] ooh good question, I'd guess master.cf but I'd have to check [22:54] i dont see anything about ports in either of them [22:54] maco: lets do an easy test, "telnet localhost 25" [22:55] ikonia: i did do that one yesterday and had it work, as i was going through the wiki page [22:55] maco: is it working now ? [22:55] yup [22:55] cool, so there is an smtp daemon listening [22:55] maco: so set your mail client to send via port 25 [22:55] what happens [22:56] ikonia: cannot connect to server. (no valid authentication mechanism found) [22:56] that's with "authentication" set to "automatic" [22:57] anything else says "authentication not enabled" if i try it [22:57] have you set up any auth [22:57] (just scanning the wiki for what you've done) [22:57] beyond setting a unix password? [23:01] maco: just reading won't be a second [23:02] maco: as I'm reading that guide, the only auth I see setup is the ip range locking [23:02] maco: looks like it's only going to respond to "mynetworks" in that example [23:02] main: have you set the internal network range correctly [23:04] ikonia: i left it at the default. it didnt make sense to me to set it to include all the internal ips in rackspace... [23:04] maco: that's valid [23:05] maco: so that config is only going to repond/relay mail from anything in "mynetworks" [23:05] maco: so you'd need to open it up, but then setup a user/auth system to stop it being relayed [23:05] through [23:06] to avoid having one of those open relays that scared me into not setting this up two years ago when i got the domain? [23:06] maco: ok, so there are two things here (apologies if I'm underestimating your mail awareness) [23:06] there is getting mail - and sending mail [23:07] my mail awareness is "open relays are how your server gets blacklisted as a spammer" [23:07] the domain is good for "getting" mail, and for acting as a relay, eg: I'll only relay mail for that domain [23:07] however in terms of acting as a sender authentication method on the public internet, a domain won't really work (in your setup) [23:07] zul: what was it? [23:08] maco: basically what you've got there (from reading that config) [23:08] hallyn: nova was destroying the container while its still running [23:08] maco: is anyone can connect to your mail server to send mail to it....which is good, but only the people in mynetwork can connect to it to realy/send mail out of it [23:08] ikonia: i just mean i wouldve liked to have user@mydomain a while ago but shied away from it because id heard how easy it is to accidentally make an open relay and i didnt want to get in trouble [23:08] ahhh [23:08] so actually doing rm -rf of the rootfs contents whiel it was running? [23:09] zul: but really libvirt-lxc should be asked to create the container without the rootfs being in the namespace on the host... [23:09] sorry, thought you where suggesting using your domain as an auth model [23:09] zul: you have a fix then? [23:09] hallyn: agreed...i need to think about it [23:10] hallyn: probably umount the rootfs but not kill the qemu-nbd [23:10] zul: oh nova kills the qemu-nbd? [23:10] yeah [23:11] hallyn: it umounts then disconnect the qemu-nbd soo still thinking [23:11] zul: there's no simple way to have nova not delete the container while it's running? :) [23:11] hallyn: yeah [23:12] it only affects qemu-nbd not lvm though [23:13] zul: right, without the qemunbd process, the container gets hung (i assume) not able to read from disk. with lvm, you have pins to keep things from unreasonably going away [23:14] hallyn: exactly === gary_poster is now known as gary_poster|away === gary_poster|away is now known as gary_poster