[00:00] <histo> scalability-junk: I know I have servers now
[00:02] <scalability-junk> histo: cool
[00:04] <histo> just none with vmx
[00:04] <histo> Anyone know if the mail server taskel pulls the mail-stack-delivery meta package?
[00:51] <histo> interesting samba4 is failing to install from repo
[00:51] <histo> !info samba4
[00:53] <histo> anyone mind confirming a bug on 12.04?
[00:53]  * Patrickdk is looking
[00:53] <Patrickdk> don't see any
[00:53] <histo> Patrickdk: if you install samba4 it bombs
[00:53] <histo> Patrickdk: package won't install errors about smb.conf
[00:54] <Patrickdk> I don't have a system I'm willing to pollute with samba4 right now
[00:55] <histo> ahh
[00:55] <histo> I just built a vm and installed 12.04.2 server updated and trying to install samba4 errors
[00:55] <histo> ERROR: Invalid smb.conf
[01:02] <histo> How has no one filed a bug against the package.
[01:04] <mardraum> http://www.abc.net.au/news/2013-03-22/cyprus-becoming-cash-only-economy/4588214
[01:05] <mardraum> er sorry, paste error
[01:24] <hallyn> sarnold: scalability-junk: iiuc you want to be able to preseed a virt-install install?  if so the key there is to manipulate the iso ahead of time to add the preseed file
[01:25] <hallyn> you can look at lp:ubuntu-qa-tools vm-tools/vm-new for an example
[01:26] <scalability-junk> hallyn: yeah I wanted to do something like with the vmbuilder -> no setup -> boot.sh sort of thing
[01:27] <scalability-junk> I dislike the preseed file so (worked with it and it's just bad) :D
[01:27] <hallyn> heh
[01:27] <hallyn> yeah it doesn't usually treat me too well
[01:28] <scalability-junk> syntax is nothing to like
[01:28] <scalability-junk> but back to virt-install is there a way to not go through the install, but have a ready vm ? like with vmbuilder?
[01:28] <scalability-junk> or is that only possible with a premade .img which is used then?
[01:28] <hallyn> no the install is how it works
[01:29] <hallyn> would cloud images be useful to you?
[01:29] <hallyn> you can wget them, qemu-nbd+mount to modify them as needed, then clone themwhen you need...
[01:30] <scalability-junk> yeah but working on implementing openstack on a few boxes anyway, but being able to do it with other tools should be great
[01:30] <scalability-junk> hallyn: mh kk for now it works and "never change a running system" :D
[01:30] <hallyn> mh kk?
[01:30] <scalability-junk> ok
[01:33] <hallyn> no - what is mh kk?
[01:51] <scalability-junk> hayllin: mhh = thinking. kk = ok
[01:53] <hallyn> ok thx :)
[01:54] <histo> !info samba4 precise
[01:54] <histo> !info samba4 raring
[01:55] <histo> hrm...
[01:55] <histo> Going to try quantal next then see if bug is still present there.
[04:48] <blkperl> !info collectd raring
[04:48] <blkperl> oow this bot is cool
[04:49] <blkperl> !info ganeti raring
[04:49] <blkperl> !info ganeti precise
[04:49] <blkperl> !info ganeti2 precise
[04:49] <blkperl> !info ganeti2 raring
[05:04] <histo> blkperl: yes it does all sorts of neat things
[05:04] <histo> !find ganeti
[05:05] <histo> !search botabuse | blkperl
[05:05] <histo> !botsnack
[05:28] <Alysum> hi - how does canonical landscape manage conflicts with configs during an apt-get upgrade ?
[05:39] <histo> I would assume it would leave the modified config present. You would probably have to ask canonical though
[05:40] <sarnold> heh, he left four minutes ago..
[06:00] <NaGeL> Sup
[08:30] <Daviey> Mornin'
[08:41] <soren> Daviey: Indeed.
[08:44] <zetheroo> I am getting "X11 connection rejected because of wrong authentication."
[08:44] <zetheroo> when trying to run virt-manager
[08:44] <zetheroo> how can I fix this?
[09:05] <caribou> people, I'm back at investigating Bug #1066845
[09:05] <caribou> it's marked as fixed in Raring, but I still see novnc being a Suggest: rather than a Depends: on Raring. Am I missing something ?
[09:12] <jamespage> rbasak, thanks for testing that
[09:12] <jamespage> caribou, lemme take a look
[09:12] <rbasak> morning jamespage!
[09:12] <rbasak> No problem
[09:14] <rbasak> jamespage: could you please mark bug 1156223 as release critical? I don't want to forget about it. Getting some dupes.
[09:16] <jamespage> rbasak, I raised a raring task - it will appear on the bug tracking report now
[09:16] <rbasak> thanks!
[09:19] <jamespage> caribou, hmm- no I see it as suggests still as well
[09:19] <caribou> jamespage: ok, then I'm not crazy.
[09:19] <jamespage> caribou, the problem is that neither websockify or novnc are in main
[09:20] <jamespage> caribou, so if we switch to recommends they have to be promoted
[09:20] <caribou> jamespage: oh, I see I didn't think about that
[09:20] <caribou> jamespage: one workaround is to use --install-suggests
[09:21] <jamespage> caribou, yeah
[09:21] <caribou> jamespage: ok, I'll see what I can do, thanks for checking
[09:21] <jamespage> its less than ideal - the package should just work when installed
[09:21] <jamespage> caribou, I don't think we can fix this for released versions of ubuntu
[09:22] <caribou> jamespage: and I guess it's a bit too late to MIR novnc now
[09:22] <jamespage> caribou, I was just looking at that
[09:35] <jamespage> yolanda, I'm looking that that raring/openstack/juju bootstrap issue again
[09:36] <jamespage> it would appear that none of the runcmd section of the cloud-config actually gets run.
[09:40] <jamespage> yolanda, hmm - but if I delete all of the instance data in /var/lib/cloud/instances/* and reboot, it does the right things
[09:40] <jamespage> how odd
[09:43] <jpds> jamespage: I thought bits of the cloud-archive depended on universe packages?
[09:44] <caribou> jamespage: are all the openstack dependancies need to be in main ?
[09:44] <jamespage> jpds, not that I am aware of
[09:44] <sanderj_> Do anyone know what's the benefit of having raid 60 compeard to raid 55 ?
[09:44] <jamespage> caribou, for any of the current core openstack projects, yes
[09:45] <jamespage> caribou, actually ignore me
[09:45] <yolanda> jamespage, quite strange
[09:45] <yolanda> does it happen with all raring images?
[09:45] <jamespage> caribou, nova-novncproxy is in universe so there is no reason those suggests can be promoted to depends
[09:45] <caribou> jamespage: How could I ever ;-)
[09:46] <jamespage> lemme do that now
[09:49] <caribou> jamespage: good, that'll fix Bug #1076442 as well
[09:53] <thyrant> Hey, I need a solution where my server handles user files. The students have laptops available which they use to login and they recive files and folders related to the user. When they logout it is saved to the server. What is this called?
[09:55] <jamespage> yolanda, if you would be so kind - https://code.launchpad.net/~james-page/nova/fixup-novncproxy-depends/+merge/154894
[09:57] <jamespage> jpds, I stand corrected
[09:57] <jamespage> jpds, some universe packages are in the cloud-archive
[09:57] <jamespage> but we maintain the same rules about main->universe depends
[09:57] <jamespage> i.e. anything from universe in the CA won't get the same level of security support as stuff in main for example
[10:03] <caribou> jamespage: thanks for that. Do you want me to do the SRU for Precise ?
[10:03] <jamespage> caribou, that would be helpful - yes please
[10:03] <jamespage> hey pcarrier!
[10:03] <caribou> jamespage: ok, will do
[10:04] <caribou> jamespage: my only question is how SRU to the U.C.A are handled ? same as for regular packages ?
[10:04] <jamespage> caribou, just do the one in quantal - we have a process that detects updates for the uca and lets us know
[10:04] <jamespage> its largely automated
[10:05] <caribou> jamespage: ok
[10:05] <caribou> jamespage: pls, can you add a Quantal task on the bug, I don't have the rights for that
[10:06] <jamespage> caribou, already has one!
[10:06] <caribou> jamespage: ah, sorry didn't check
[10:10] <caribou> jamespage: I'm puzzled; which branch should I use for the Quantal SRU ?
[10:10] <caribou> jamespage: lp:~openstack-ubuntu-testing/nova/quantal-folsom-proposed ?
[10:10] <jamespage> caribou, oh-gods - there is an out-of-date SRU inflight
[10:10] <jamespage> caribou, we need to get that rejected
[10:11] <jamespage> it got superceeded by an security sru
[10:11] <jamespage> caribou, lemme think
[10:11] <caribou> jamespage: k
[10:11] <jamespage> (we might be trying to get the 2012.2.3 release in again)
[10:29] <Daviey> jamespage: which one?
[10:29] <jamespage> Daviey, which one is out-of-date?
[10:29] <Daviey> yes
[10:29] <Daviey> ie, what needs to be removed?
[10:29] <jamespage> nova 2012.2.3
[10:30] <Daviey> from precise?
[10:30] <jamespage> lemme check then all - I think we will re-cut across the board with the security patches included
[10:30] <Daviey> err, quantal
[10:30] <jamespage> Daviey, yes - quantal
[10:30] <Daviey> ta
[10:33] <Daviey> jamespage: good catch, it is > security version
[10:34] <jamespage> Daviey, lemme check what else is impacted
[10:37] <jamespage> Daviey, nova glance keystone definately - just checking cinder
[10:38] <jamespage> Daviey, yeah - cinder as well
[10:41] <Daviey> ugh
[10:41] <jamespage> Daviey, if they could all be rejected/removed much appreciated
[10:41] <jamespage> Daviey, that said I can probably re-cut them with the security fixes added quite quickly
[10:44] <Daviey> jamespage: horizon and quantum are OK?
[10:44] <jamespage> Daviey, yeah - they have not been security fixed
[10:47] <Daviey> done
[11:04] <jamespage> Daviey, do you know who did the ubuntu theme for the dashboard? it has a couple of bugs with grizzly
[11:04] <jamespage> bug 1157918
[11:06] <Daviey> jamespage: yes, it was Hugh
[11:07] <Daviey> jamespage: Huw Wilkins, rather
[11:08] <jamespage> Daviey, what's his nick?
[11:08]  * jamespage looks it up
[11:08] <Daviey> jamespage: Aussie, so i would be surprised if he answers now.
[11:09] <airtonix> it's only 8pm here Daviey
[11:09] <Daviey> ah, i thought it was later.  Thanks airtonix
[11:09] <airtonix> actually 9.3pm
[11:09] <Daviey> airtonix: hmm, i am seeing it as 10:07 PM (+1100) ?
[11:10] <airtonix> Daviey: there are three timezones in australia, i'm in +10.30
[11:10] <Daviey> oh
[11:10] <Daviey> *.30 time zones scare me.
[11:12] <jamespage> Daviey, meh -he's not on irc so emailed him instead
[11:12] <Daviey> super
[11:16] <mardraum> airtonix: more than 3
[11:17] <mardraum> actually I guess it's what you call the ones not observing daylight savings
[11:32] <jamespage> smoser, bug 1158724 I seem to be able to reproduce pretty successfully
[11:33] <jamespage> thats on raring only
[11:33] <jamespage> (and it might be the image - its the most recent raring image I could find of yours on canonistack)
[11:33] <jamespage> yolanda, ^^
[11:33] <jamespage> for reference
[11:49] <Techdude1011> Is it possible to disable broadcasts for heartbeat and use only unicast?
[11:50] <jamespage> Daviey, I'm going to update the 2012.2.3 branches with the security fixes and re-upload them to proposed for review
[11:53] <Daviey> jamespage: splendid
[11:53] <jamespage> Daviey, hmm - although I see adam already did something in the ci branches
[11:54] <jamespage> Daviey, but I think for security updates when we have an inflight proposed branch we should keep going with the existing proposed
[11:54] <jamespage> rather than cut a new 2012.2.3+stableXXX release
[11:58] <Daviey> jamespage: hmm, it's just as easy to cut a new release?
[11:59] <Daviey> jamespage: why not go for the latest ?
[12:00] <jamespage> Daviey, well we are either tracking point releases or not
[12:00] <jamespage> I'd rather stick with the point release and include security fixes
[12:01] <jamespage> rather than suck up anything extra; I think this should expedite the SRU process as everything has been seen before
[12:07] <Daviey> jamespage: i've always said that i don't like upstream point releases
[12:07] <Daviey> i much prefer us working to our own scheudle
[12:07] <jamespage> Daviey, well I don't think this actually makes that much difference
[12:07] <jamespage> Daviey, we should just rebase what's already in-flight with security fixes, not start afresh
[12:08] <Daviey> jamespage: yeah, do what you think is best
[12:08] <Daviey> personally, i prefer getting the latest we can, always
[12:08] <jamespage> Daviey, whats inflight might actually be a +stable
[12:08] <Daviey> yeah, so we an drop distro patches earlier
[12:11] <jamespage> Daviey, OK - lemme work this out and we can move forwards
[12:15] <Daviey> jamespage: but do what you think to be best.
[12:19] <zul> morning
[12:28] <smoser> jamespage, duped
[12:28] <smoser> and i'll get a newer image up there that will fix that.
[12:29] <smoser> jodh, ^ any love you could give to bug 1103881 would be greatly appreciated.
[12:38] <jamespage> smoser, ah-ha!
[12:38] <jamespage> good - at least its something we are aware of
[12:38] <smoser> jamespage, so 2 things, i disabled cloud-init invoking initctl-reload
[12:38] <smoser> (bug 1124384)
[12:39] <smoser> you would have hit that if you were adding upstart jobs.
[12:39] <smoser> but you cant avoid the upstart upgrade (without blocking it)
[12:43] <zul> yolanda/jamespage: https://code.launchpad.net/~zulcss/cinder/cinder-rtslib-remove/+merge/154937
[12:59] <jamespage> zul, oh great
[12:59] <jamespage> licensing right?
[13:00] <zul> jamespage:  yeah it got removed uptsream
[13:13] <zul> jamespage:  before i start this you didnt upload keystone rc1 this morning did you?
[13:13] <jamespage> zul, nope - leaving it for you :-)
[13:13] <zul> jamespage:  thats what I thought
[13:13] <zul> jamespage:  you are so kind ;)
[13:14] <jamespage> zul, adam_g: do you guys ever look at the branches that get created from the lab - nova/raring-grizzly for example?
[13:14] <zul> ....like a swarm of bees
[13:14] <jamespage> just wondering whether we should dump them
[13:14] <zul> jamespage:  i do when there is conflicts in the debian/changelog
[13:14] <jamespage> zul, yeah - they are just a pita imho
[13:15] <zul> jamespage:  i wont tear up if they go away
[13:15] <zul> it would make things easier to navigate
[13:28] <remote> morning
[13:37] <zul> yolanda/adam_g: https://code.launchpad.net/~zulcss/keystone/rc1/+merge/154951
[13:43] <yolanda> jamespage, what's best branch for rabbit charm? i'm having problems of timeouts with rabbitmq and nova-compute
[13:44] <jamespage> zul, do those re-syncs makes sense to you? I'm really just fixing up the version history in the lab branches with what I'm about to upload to quantal-proposed
[13:44] <zul> jamespage:  it does
[13:44] <jamespage> yolanda, ~openstack-charmers/charms/precise/rabbitmq-server/ha-support
[13:45] <jamespage> timeouts probably don't have much todo with the charm tbh
[13:46] <yolanda> they happen only for nova-rabbit relationships
[13:46] <yolanda> maybe incorrect password?
[13:49] <jamespage> Daviey, I've uploaded re-based keystone, glance, cinder and nova to quantal-proposed
[13:53] <jamespage> zul, pls could you ack the other 3 as well - ta
[13:53] <zul> which other three?
[13:54] <jamespage> zul, https://code.launchpad.net/~openstack-ubuntu-testing/+activereviews
[13:54] <yolanda> i think i'll bootstrap again
[13:54] <jamespage> the 3 resync MP's at the bottom of the list
[13:55] <zul> jamespage:  done
[13:55] <jamespage> zul, ta
[13:58] <zul> jamespage: http://people.canonical.com/~chucks/ca/
[14:02] <jamespage> zul, +1
[14:02] <zul> jamespage: thx
[14:19] <zul> jamespage:  do you want the CA to bake over the weekend and then we can push it out on monday?
[14:19] <jamespage> zul, sounds good
[14:19] <jamespage> I'll run some testing against staging this afternoon
[14:19] <jamespage> zul, actually that reminds me I need to upload libvirt
[14:19] <zul> jamespage: heh
[14:21] <jamespage> zul, its testing just fine in the trunk testing PPA
[14:22] <jamespage> zul, so I think we should go for it
[14:22] <jamespage> zul, any chance that glance fix will land today? I'd like to have all RC's in for testing
[14:22] <zul> jamespage:  sounds good to me
[14:31] <kantlivelong> anyonek now why 12.04.2 doesnt have raid config?
[14:31] <jamespage> zul, http://people.canonical.com/~jamespage/ca-updates/ libvirt update
[14:31] <holstein> !raid
[14:31] <holstein> kantlivelong: ^
[14:32] <holstein> kantlivelong: it should be possible
[14:32] <zul> jamespage: +1
[14:32] <jamespage> zul, any chance you could sign and upload that one for me - 22MB orig.tar.gz really chokes my connection
[14:33] <zul> sure
[14:33] <jamespage> zul, ta
[14:33] <kantlivelong> holstein: ive done it before.. it just doesnt list it..
[14:45] <zul> jamespage:  time to move....done
[15:05] <yolanda> jamespage, i'm deploying again with latest version of charms, and i receive that error on nova-cloud-controller: 2013-03-22 16:05:01,805 unit:nova-cloud-controller/0: hook.output INFO: /var/lib/juju/units/nova-cloud-controller-0/charm/hooks/lib/nova/nova-common: line 16: .: /var/lib/juju/units/nova-cloud-controller-0/charm/hooks/lib/nova/: is a directory
[15:07] <yolanda> i'm using that branch: lp:~openstack-charmers/charms/precise/nova-cloud-controller/ha-support
[15:12] <rsthelord> guys i downloaded the ubuntu server 12.04 lts version and used the universal usb installer to boot from pendrive but now i am getting "load error from cd-rom"
[15:13] <rsthelord> what to do ?/
[15:15] <holstein> http://askubuntu.com/questions/203052/installing-ubuntu-server-in-a-usb
[15:15] <holstein> http://askubuntu.com/questions/127398/usb-drive-install-of-ubuntu-12-04-server-fails-cant-find-components-from-cd-r
[15:19] <jamespage> yolanda, deployer configuration please
[15:20] <yolanda>         "nova-cloud-controller": {
[15:20] <yolanda>             "branch": "lp:~openstack-charmers/charms/precise/nova-cloud-controller/ha-support",
[15:20] <yolanda>             "options": {
[15:20] <yolanda>                 "instance-type": "m1.small",
[15:20] <yolanda>                 "openstack-origin": "ppa:ubuntu-cloud-archive/grizzly-staging"
[15:20] <yolanda>             }
[15:20] <yolanda>         },
[15:20] <RoyK> !pastebin
[15:22] <roaksoax> !pastebin | yolanda
[15:23] <yolanda> ok, it was an small bit so i did it fast, sorry
[15:43] <rsthelord> holstein: i am still unable to install it
[15:44] <holstein> rsthelord: and you cant use a CD?
[15:44] <holstein> !mininal
[15:45] <holstein> !minimal | rsthelord this is another option
[15:45] <jamespage> yolanda, I'm trying a grizzly staging deploy now
[15:46] <jamespage> yolanda, "openstack-origin": "cloud:precise-grizzly/staging"
[15:46] <jamespage> should work as well I think
[15:47] <rsthelord> this minimal option is ubuntu server ?
[15:48] <rsthelord> i just want to kill myself
[15:48] <holstein> rsthelord: ?
[15:49] <holstein> rsthelord: its just an install.. can you not use a CD?
[15:49] <holstein> rsthelord: what are you using to make the stick?
[15:49] <holstein> rsthelord: you can install *any* ubuntu version that you can, and convert to ubuntu server
[15:50] <jamespage> zul, can you fixup glance in raring for the time being so we can drop it into the CA?
[15:50] <zul> with that patch?
[15:51] <jamespage> zul, I'd go with the test removal patch thats being proposed for master
[15:51] <zul> jamespage:  ack
[15:51] <yolanda> jamespage, that origin i set is not good?
[15:51] <rsthelord> holstein: i just used the cd to burn the iso but it didnt work out. and i am using universal usb installer
[15:51] <jamespage> yolanda, no - that should work as well as it has the keyword grizzly in it
[15:51] <rsthelord> wait holstein: i am going to burn another one
[15:52] <yolanda> jamespage, but problem seemsd to be in the charm anyway
[15:52] <yolanda> i'll change that origins, but i think that this is not the problem
[15:52] <holstein> rsthelord: try unetbootin.. or dd copy... or eleborate about your issues with the CD.. or take the hard drive to another machine aind install
[15:52] <jamespage> yolanda, no - the charm uses the source to determine which version of openstack is being used
[15:52] <yolanda> oh
[15:52] <yolanda> ok, i'll change it
[15:55] <george1> hello
[15:56] <george1> addi?
[15:58] <rsthelord> holstein: i think i found my mistake in cd burning, i was burning it on a 700 mb disk where i should have used a DVD
[15:59] <zul> jamespage: https://code.launchpad.net/~zulcss/glance/glance-testsuite/+merge/154998
[15:59] <george1> anybody?
[16:00] <holstein> !ask | george1
[16:01] <george1> !patience
[16:01] <jamespage> yolanda, can you make sure that you have up-to-date charm
[16:01] <george1> how do i as a question?
[16:01] <jamespage> yolanda, the code looks ok to me - it does a grep for the codename in the ppa uri
[16:01] <george1> did i print that !ask | george! ?
[16:02] <jamespage> zul, +1
[16:03] <jamespage> george1, just ask it
[16:04] <george1> what is the meaning of the "!" mark in front of ask and of patience?
[16:04] <jamespage> george1, it instructs ubottu to do something
[16:04] <george1> where do i learn about ubottu?
[16:09] <zul> jamespage:  http://people.canonical.com/~chucks/ca/
[16:10] <jamespage> zul, type in changelog and you need a bit more change history than that as 0ubuntu1 has not been uploaded
[16:10] <jamespage> type/typo
[16:10] <jamespage> lol
[16:11] <george1> apparently, from its source ... :-)
[16:12] <zul> jamespage:  k just a sec
[16:12] <Guest66849> hello.  I would like to ass a few SSH users to my ubuntu server.  best practice advice please?
[16:13] <zul> jamespage:  how about now
[16:14] <LargePrime> hello.  I would like to add a few SSH users to my ubuntu server.  best practice advice please?
[16:14] <LargePrime> sorry for typo
[16:15] <jamespage> zul, can I be a real PITA - its actuall a new upstream release for the CA
[16:16] <george1> LargePrime: check /home/* permissions
[16:16] <zul> jamespage:  grr
[16:17] <zul> jamespage:  annnnnnd now
[16:17] <jamespage> zul, +1
[16:17] <jamespage> I'm assuming it has built OK in raring right?
[16:17] <jamespage> zul ^^
[16:18] <zul> jamespage:  yep
[16:18] <LargePrime> george1:  I am looking for a way to generate the /home .ssh dir and set permissions or several users at a time
[16:18] <LargePrime> george1:  I am looking for a way to generate the /home .ssh dir and set permissions for several users at a time
[16:18] <LargePrime> sorry
[16:19] <LargePrime> also adding the SSH keys to the authorized keys would be cool too
[16:20] <george1> that comes from the client
[16:20] <zul> jamespage: yep
[16:20] <jamespage> LargePrime, check out ssh-import-id
[16:20] <jamespage> might help
[16:20] <RoyK> LargePrime: make it in /etc/skel ?
[16:20] <jamespage> (well so long as SSH public keys are stored in launchpad - but I think you can make it use an arbitary host)
[16:21] <LargePrime> george1: I assume a admin can generate keys an send to clients
[16:21] <LargePrime> RoyK:  jamespage  checking that out.  i am a noob at this
[16:21] <jamespage> LargePrime, users should generate their own keys
[16:21] <RoyK> LargePrime: everyone starts out as noobs ;)
[16:23] <george1> jamespage: probably you can send users a script doing that, but I'm a beginner, too
[16:23] <RoyK> george1: better tell the users how to do it - that way they may even learn something ;)
[16:23] <LargePrime> james, why should users generate thier own keys?
[16:24] <RoyK> LargePrime: because you normally want to set a password on that key
[16:24] <LargePrime> besides altruistic learning?
[16:24] <RoyK> (or some might want to do that)
[16:25] <george1> LargePrime: sorry, last message was for you not for jamespage. because it is a security issue. private key should be private, and how can you keep it private if you generate it on other systems and then you send it to the user over some network?
[16:26] <LargePrime> i imagine we should assume other secured networks/systems can exist.
[16:27] <george1> LargePrime: come on, they should generate their keys just as they should choose their passords
[16:28] <LargePrime> ok, i defer to you.  Also it seems no good tool to do it my way.
[16:28] <george1> !factoid
[16:28] <LargePrime> What groups, if any does the user need to be
[16:28] <gdeeble> Hey, anyone familiar with Ser2net?
[16:28] <george1> !ubottu
[16:30] <george1> LargePrime: as I said, I'm a beginner, but I would useradd a user and then i would check itd default groups, and if they need more then i would add them
[16:30] <jamespage> zul, 24 mins to build glance - thats better than 25 hours
[16:31] <george1> !ubottu help
[16:32] <LargePrime> One of my desires was to eliminate assword logins
[16:32] <LargePrime> password* sorry
[16:32] <LargePrime> and just bulk create keys and set them up
[16:32] <LargePrime> but that seems rather diicult
[16:33] <LargePrime> difficult*
[16:33] <george1> LargePrime: for that you let them login with a password, then they generate the key and copy its public part to the server, and then you modify the sshd_config to block password usage
[16:34] <george1> LargePrime: if you create a large number of keys you need to put them into those systems somehow, so either a connection or going there physically. connection is already done with password from client to server
[16:34] <george1> !ubottu help commands
[16:35] <LargePrime> george1: yes.  understood.  but that seems rather manual and I would need to turn it of and on as i add users and as they get around to doing the taks
[16:35] <yolanda> jamespage, i have up-to-date charms, i pulled them today
[16:36] <george1> LargePrime: it should be possible to turn off passwd login for each user as they generate their keys
[16:36] <LargePrime> george1:  with some sort o script?
[16:36] <yolanda> i'm testing with the origin you told me
[16:36] <george1> LargePrime: maybe from that script ..., using local configs
[16:36] <jamespage> yolanda, hmm - I just deployed using that origin and it worked fine
[16:36] <jamespage> odd
[16:37] <george1> !help
[16:37] <LargePrime> george1: like (on logout) if authorized keys exists (re config ssh config)
[16:37] <sarnold> george1: http://ubottu.com/devel/wiki/Plugins
[16:37] <george1> !es
[16:39] <george1> LargePrime: or even from the client, in the same script, modify its user .ssh settings, if that is possible. could be less secure? :-?
[16:40] <yolanda> i'm trying again
[16:41] <george1> very well, i found out alone how does ubottu work. now, the big question, maybe i don't have to answer it alone, too: can i contribute to some ubuntu server utility, provided that i know C++ and i am running another linux distribution but i may also run ubuntu server text mode only on a 500MHz 225MB RAM system? can you please suggest such an application or at least tell me where to look?
[16:41] <LargePrime> I dont have a good handle on the security model.  I assume local configs might not be user configable?  But either way there exists no tool for doing this i guess
[16:44] <george1> LargePrime: i can't find any way to config passwd usage per user
[16:44] <george1> LargePrime: this is bad
[16:46] <LargePrime> george1: maybe there is an irc channel for ubuntu server questions like this.

[16:47] <gdeeble> Anyone know if using Serial 2 Network is it possible to push the host serial port to the client via telnet using Ser2net?
[16:48] <LargePrime> george1: did you look at this http://www.chrisjohnston.org/ubuntu/ssh-import-id-saves-time-and-hastle
[16:48] <george1> LargePrime: man ssh_config speask about ~/.ssh/config and there you can set this. however, it is not clear if the file lives on the client or on the server
[16:49] <LargePrime> that older and those files DNE by default
[16:50] <george1> LargePrime: yes, it looks great
[16:50] <LargePrime> george1: those DNE by default.  they are generated by any of the SSH tools
[16:50] <LargePrime> sorry my fingers have been drinking
[16:50] <george1> LargePrime: of course, all users still need to generate their keys and post them (the public part) on launchpad
[16:50] <george1> LargePrime: ha?
[16:51] <sarnold> george1: ~/.ssh/config is a client-side configuration file
[16:51] <LargePrime> also in the sever home dir
[16:52] <LargePrime> it cant be client side.  it controls how the server responds?  sarnold ?
[16:53] <yolanda> jamespage, i'm testing, same problem
[16:53] <sarnold> LargePrime: eh? how?
[16:53] <yolanda> let me check if i have latest revisions, maybe there is some cache?
[16:53] <george1> sarnold: yes, it is absurd to deny passwd login with a config on the server side. so, LargePrime, write a script that works on the client side and blocks passwd login there. of course, clients can change that if they want. otherwise, you can only block them all from using passwords
[16:54] <george1> !es | george
[16:54] <sarnold> george1: what? that's the whole point of the PasswordAuthentication sshd configuration variable.
[16:55] <george1> everybody: so, can you help me with any suggestion about any program that i could help develop in text mode on a weak system for ubuntu server?
[16:55] <yolanda> jamespage, in deployer directory i have revision 240, but it tries to publish revision 240
[16:55] <yolanda> how can i remove that caching?
[16:55] <yolanda> it tries to publish revision 212, sorry
[16:55] <george1> sarnold: that one block all users from using passwd's, i believe. am i wrong?
[16:55] <LargePrime> sarnold: george1  why is it absurd to control who can and cannot have password login server side?
[16:56] <LargePrime> it seems we have at least one use case?
[16:56] <george1> LargePrime: because when ssh reads that file it is already connected
[16:56] <sarnold> george1: if you use a "Match" block you can apply it to certain groups or users or whatever.
[16:58] <george1> sarnold: yes, thank you for that! LargePrime you can block individual users from logging in with a root script that verifies that a user has generated his key and then it ads it to sshd_config
[16:59] <jamespage> yolanda, hmm
[16:59] <LargePrime> george1:  can this be an application you wish to create?
[16:59] <yolanda> i see a -u option in deployer
[16:59] <jamespage> yolanda, deployer -S scrubs zookeeper of charms
[16:59] <george1> everybody: very well, it appears that i have no chance for an advice here for a program in C++ to which I could contribute
[17:00] <jamespage> I always do a -S -D -T when tearing down
[17:00] <george1> LargePrime: that would be a script in bash
[17:00] <jamespage> george1, sorry - other than c++ do you have any specific areas of interest
[17:00] <sarnold> george1: there's just not that many C++ programs with a non-graphical but graphical interface....
[17:00] <sarnold> george1: iirc, apt is done in C++...
[17:01] <jamespage> and ceph, mongodb
[17:01] <george1> jamespage: i know many, but nothing special. please tell me what is in demand right now, first two or three choices
[17:02] <george1> sarnold: so there are C++ programs WITH graphical interfaces? i may upgrade my system for Ubuntu, if that is the case
[17:02] <jamespage> george1, well; specifically in Ubuntu not much tbh - if you want to do something C++ related I would recommend getting involved in a specific project thats written in C++
[17:02] <gazoombo> utlemming: Hi, I'm trying to track down info about the tools used to build the Vagrant boxes released with the cloud images.
[17:03] <gazoombo> utlemming: I tried first in #ubuntu-virt and soren directed me here.
[17:03] <george1> jamespage: so I should go upstream, right? what language are you using now to program?
[17:03] <koolhead17> hi all
[17:03] <sarnold> george1: iirc, nearly the entirety of the KDE stack is programmed in C++
[17:03] <utlemming> gazoombo: tools?
[17:03] <jamespage> george1, as a distro developer not just one
[17:03] <gazoombo> utlemming: yes, what does the release process look like for those boxes?
[17:03] <george1> sarnold: so there is demand in programming graphic support in C++? it makes sense, for efficiency
[17:04] <jamespage> george1, I touch Java, C, C++, Python, Go but only really from a bugfixing perspective
[17:04] <jamespage> (actually Go is streching that a bit)
[17:04] <george1> jamespage: but you need ALL of them, is that the problem?
[17:04] <gazoombo> utlemming: I found vmbuilder, but it looks like that only targets xen kvm vmw6 and vmserver as hypervisors
[17:04] <sarnold> george1: yeah, C++ feels like a reasonable sweet spot there, C-levels of efficiency are _possible_ but some nice high-level abstractions can come for free.
[17:05] <utlemming> gazoombo: well, they are still in beta, so those are dailies only.
[17:05] <utlemming> gazoombo: I'm OTP at the moment...can I pick this up in a bit?
[17:05] <gazoombo> utlemming: whereas the Vagrant boxes run on virtualbox
[17:05] <gazoombo> utlemming: no problem
[17:07] <george1> jamespage: Python i only browsed, but it looks friendly. java i read, it looks like c++, only i hated the class library documentation. maybe now i understand it better
[17:07] <george1> jamespage: never head of Go
[17:07] <jamespage> newish language
[17:08] <LargePrime> any suggestions o a server load measuring tool?
[17:08] <LargePrime> load management really
[17:09] <sarnold> LargePrime: like 'vmstat 1' and 'top'? or .. like collectd or mrtg or nagios or .. ?
[17:10] <LargePrime> sarnold:  pretend I am a noob
[17:10] <sarnold> LargePrime: hehe, okay, go run 'vmstat 1' in a terminal and look at the block input and output, swap input and output, rates.. those are pretty useful :)
[17:11] <LargePrime> the server told me it is at load 4.  never seen it over 1.5
[17:14] <LargePrime> it still at 4
[17:14] <LargePrime> sarnold:  how can i tell what is using the server?
[17:14] <sarnold> LargePrime: that might not mean much. 'top' or 'htop' will make it easy to see the processes running and which ones have the CPU occupied
[17:15] <LargePrime> how can i tell if i am getting ddosed?
[17:16] <sarnold> LargePrime: depends on the type of dos, stpuid packet floods would show up in ifconfig as huge packet rates
[17:17] <sarnold> LargePrime: some dos attacks induce huge computing problems in servers, those are harder to spot..
[17:18] <LargePrime> assuming stupid.  how i ifconfig?  with ifconfig?
[17:18] <zul> jamespage:  yay!
[17:18] <sarnold> LargePrime: just type 'ifconfig' at a prompt, wait a little bit, run 'ifconfig' again, and check the difference in packet counts
[17:19] <LargePrime> ok
[17:19] <LargePrime> I think i found with top
[17:19] <LargePrime> it was a jaa pocess running crazy
[17:19] <LargePrime> java*
[17:20] <LargePrime> thanks sarnold
[17:21] <sarnold> LargePrime: hehe, yeah, that sounds like java. *sigh* :)
[17:23] <george1> well, thank you all for the info
[18:07] <sw> hi is there a command to list all apache VirtualHosts running on a server?
[18:08] <sarnold> sw: "running" might be hard, if you have parts of your configuration disabled.. but grep -ri virtualhost /etc/apache* might get you close
[18:17] <sw> sarnold: $ apache2ctl -S seemed to do it
[18:18] <sarnold> sw: nice :) thanks!
[20:19] <sauce> what are packages that begin with "unity" i.e. unity-webapps-newsblur
[20:20] <Pici> sauce: unity is the default desktop environment
[20:21] <sauce> oh i get it.. that's what they call it
[20:21] <sauce> so unity-* packages integrate with the desktop, got it
[20:21] <Pici> Yeah, not really relevant for server stuff.
[20:37] <Darkstar1> Hello people. I need to persist DNS servers on my machine. editing the resolv.conf doesn't work as it's wiped after restart. How can I persist the search and DNS details?
[20:40] <genii-around> Darkstar1: Use a post-up command in /etc/network/interfaces file to echo the dns info to the resolv.conf, or else keep a copy in another file and cp it to resolv.conf from rc.local
[20:41] <Darkstar1> genii-around: cheers
[20:42] <Darkstar1> genii-around: post-up is a part of a set of tools?
[20:44] <sauce> Darkstar1: http://manpages.ubuntu.com/manpages/lucid/man5/interfaces.5.html
[20:44] <genii-around> Darkstar1: man interfaces   gives you some examples.
[20:44]  * genii-around slides sauce a coffee and cookie
[20:47]  * sauce wink
[23:39] <ispivey> Anyone know how to invoke cloud-init with a userdata file after boot, from the shell?  Or is that not possible?