[00:03] <shauno> halvors1: if all you need is for devices on 'subnet 2' to be able to reach the internet, forwarding & maquerading is all you need
[00:12] <halvors1> shauno: I don't want Masquerading, i just want forwarding, i have a NAT box on the other subnet that is the gateway to the internet...
[00:13] <shauno> what kinda box?  because if you can't teach it new routes (eg, a domestic router), masquerading is going to solve most your issues before you hit them
[00:16] <shauno> ideally, you'd just need to set forwarding on the server, and then set a route on your gateway that your server is the next hop for 'subnet 2'
[00:17] <sarnold> oh that sounds easier than telling all the clients in subnet 1 about the route..
[00:17] <sarnold> it does limit the speeds between subnet 1 and 2 to however fast the router will go.. but for simple things that ought to be easier.
[00:18] <shauno> right.  that way subnet 1 keeps using the gateway as they already do, and the gateway forwards to the server when needed
[00:19] <shauno> the alternatives are either setting a new route on every client on subnet 1, or just using the server as the gateway for both subnets, enabling forwarding, and then use the existing gateway as the default gateway on the server, and only the server
[00:26] <shauno> I have to head to bed, but that's going to be the trick.  figure out the topology first, and then you know exactly what roles you need from the server.  this narrows "how do I .." into much more google-sized chunks
[00:30] <bjrohan> I am VERY new to Ubuntu-server, somewhat new to Ubuntu. When setting up 13.04 I set up LVM and encryption. When I boot, it asks for my passphrase. When I first logged in to my account it gave me an ID of some kind to keep in a safe place. My question. When I add a user account can it have it's own encryption?
[00:31] <sarnold> bjrohan: did you set up home directory encryption or full-disk encryption?
[00:32] <bjrohan> Yes?
[00:32] <bjrohan> Is it possible to do both, if so I did
[00:32] <sarnold> hehe, it probably is possible to do both, though I would expect performance to be poor :)
[00:33] <bjrohan> On Boot I am asked for my passphrase before it gets too far along, I imagine that is the full disk
[00:33] <sarnold> as I understand the full-disk encryption, you'll share that password with the other users; the home directory password (and thus key) will be unique to each user though. So all users wil be able to see e.g. /tmp without trouble, but can't easily see each other's data
[00:33] <sarnold> yes
[00:34] <bjrohan> That makes sense, and what I was looking to do
[00:34] <bjrohan> How does setting up a new user work as far as creating a key?
[00:35] <bjrohan> Just as normal?
[00:36] <sarnold> bjrohan: aha, "sudo adduser --encrypt-home", from https://help.ubuntu.com/community/EncryptedHome
[00:40] <bjrohan> From that page is where I run awry. If I as an Admin (perhaps I will just do it to see) create a new user, when does the new user choose between the 3 options. I had to do that for myself upon the setup
[00:41] <sarnold> bjrohan: the user wouldn't have the choice -- adding --encrypt-home to the adduser command makes the choice for them, #3 :)
[00:41] <sarnold> it's good to be the king
[00:41] <bjrohan> Okay
[00:41] <bjrohan> yes, yes it is
[00:41] <bjrohan> Thank you very much
[00:42] <bjrohan> know anything about x2go?
[00:44] <sarnold> bjrohan: I think you're the first to mention it to me :)
[00:44] <bjrohan> based on nomachine
[00:45] <bjrohan> allows for a darn good RDP use
[00:45] <sarnold> cool :)
[00:46] <bjrohan> I had a machine (old P4) running x2go server on lubunutu (desktop), and I was able to get it to work flawlessy when I logged in. I installed it on this i3 machine as a server, and when I log in from the client I get no taskbar. I can run all the commands (KDE right click run command)
[00:46] <bjrohan> I am trying to figure out why there is no taskbar in Unity or KDE
[00:50] <bjrohan> sarnold: Okey Dokey, created a new user with the encrypted home. It asks me for a password. I am assuming that the user can change it, and at that time it will generate a new passphrase?
[01:07] <sarnold> bjrohan: yes; as I understand it, there's some complicated pam mechanism behind the scenes that uses the old password to decrypt the key and re-encrypts it with the new password when the user hcnages passwords
[01:09] <bjrohan> Thanks again
[01:10] <sarnold> bjrohan: .. oh yes, the consequence of which means if you use root's powers to change a user's password, then .. something complicated happens.
[01:12] <bjrohan> I would imagine. I created a dummy user that I want to delete. I am now trying to recreate that same user, can't do, says passphrase already exists. I can only imagine the horror if a root changes the password
[01:12] <sarnold> bjrohan: it'd be worth being familiar with .. I think it's ecryptfs-migrate-home .. before you needed to do these things. :)
[01:21] <airtonix> i am getting this everytime try to tab complete on my 12.10 server : initctl: Unable to connect to system bus: Failed to connect to socket /var/run/dbus/system_bus_socket: No such file or directory
[01:23] <sarnold> airtonix: oof. that's probably a bad situation to try to recover from.
[01:24] <sarnold> airtonix: (if what it is saying is true, you're in a much worse position than just not being able to tab-complete...)
[01:24] <airtonix> sarnold: https://bugs.launchpad.net/ubuntu/+source/upstart/+bug/809043
[01:26] <airtonix> sarnold: i've never even had a directory : /var/run/dbus... like ever.
[01:31] <sarnold> ah, back.
[01:31] <sarnold> I was going to suggest restarting the dbus service. don't do that. that is a horrible idea. :)
[01:31] <sarnold> power-button horrible. :)
[01:31] <bjrohan> sarnold: very noob question. Can a user create a file in their dir that an Admin can only see, but not open / access?
[01:32] <sarnold> bjrohan: not really. encrypting it will help, but if it is ever in plain text on the system, you better pretend that root can read or write it..
[01:33] <bjrohan> sarnold: That is the gist of what I got. As a system Admin, you can really see EVERYTHING then
[01:33] <bjrohan> sarnold: and by see, I don't mean just the fact that a file exists, but you can open it
[01:34] <sarnold> airtonix: /var/run is a symlink to /run on my 13.04 and 12.10 systems... /run is a tmpfs mounted at boot
[01:35] <sarnold> bjrohan: an admin can run e.g. strace -efile -s 100000 -p pid  and more or less just read everything done on the system
[01:36] <bjrohan> sarnold: Gotcha. The only real way a Linux user can secure a doc from the admin is to encrypt the actual doc
[01:37] <sarnold> bjrohan: .. and _never_ decrypt that document on that host.
[01:37] <bjrohan> Tru dat
[01:38] <bjrohan> BTW I have a few Admin for noob books on their way to learn
[01:38] <sarnold> excellent :) I hope they're useful.. have you seen the server guide? it might be useful in the meantime
[01:39] <bjrohan> I have not
[01:39] <bjrohan> Here I suppose: https://help.ubuntu.com/13.04/serverguide/
[01:40] <sarnold> bjrohan: yeah, that's the one :) thanks, my desktop is a bit in a mess, unexpected reboot
[01:41] <bjrohan> sarnold: Is it standard practice to create an account with the name Admin, or like in my case just use my username as an Administrator?
[01:42] <sarnold> bjrohan: most places like to use usernames, so they have some useable logs with sudo to figure out which admin did what if they ever need to..
[01:43] <bjrohan> makes sense!
[01:44] <sarnold> rebooting again :)
[01:46] <airtonix> sarnold: just out of curiosity, why would you say : `sudo service dbus restart`  would be a bad idea ?
[01:48] <sarnold> airtonix: it killed unity, chromium-browser, and networking on my laptop; my attempts to revive it didn't succeed, rebooting was easiest
[01:49] <airtonix> sarnold: this is on a server, not a desktop. just curious, since after i manually created the /var/run/dbus directory it fixed my problems (the socket file didn't exist, but does now)
[01:49] <sarnold> airtonix: wow :) I wouldn't have expected that...
[01:49] <sarnold> airtonix: good work :)
[01:50] <airtonix> sarnold: this all stemmed from some issues with zentyal 3 being unable to restart services
[01:50] <sarnold> airtonix: probably the same underlying problem..
[01:51] <sarnold> something broke dbus, which is used for communicating with init these days
[03:18] <ia0001> does anyone know why flash isnt working on ubuntu 12.04 LTS server 32 bit
[03:40] <SpamapS> ia0001: flash.. on a server?
[03:40] <SpamapS> ia0001: that is.. a horrible idea
[03:41] <ia0001> WHO gives a Fuck
[03:41] <ia0001> Why dont you just listen
[03:42] <IdleOne> !language | ia0001
[03:42] <ia0001> flash is not wrking
[03:42] <ia0001> so what are you saying
[03:43] <ia0001> flash not working on ubuntu 32 bit server is like
[03:43] <ia0001> it doesnt work?
[03:43] <ia0001> or my computer is just too low memory
[03:44] <ia0001> flash just doesnt work on ubuntu server 32 bit
[03:44] <patdk-lap> heh? I just upgraded my 30tb san from disks to flash
[03:44] <patdk-lap> two weeks ago
[03:44] <ia0001> i know flash works fine on normal ubuntu 32 bit 12.04
[03:44] <ia0001> but server?
[03:44] <patdk-lap> ia0001, what is difference of normal ubuntu and server?
[03:45] <ia0001> server flash doesnt work
[03:46] <patdk-lap> dunno what this server flash is
[03:46] <patdk-lap> there is *no difference* between ubuntu server and ubuntu desktop
[03:46] <ia0001> except flash doesnt work?
[03:47] <ia0001> and the icons dont move around
[03:47] <ia0001> what are you taling about?
[03:47] <patdk-lap> icons? ubuntu server doesn't have icons
[03:47] <patdk-lap> this sounds like you horribily broke your install
[04:04] <ia0001> ubuntu desktop
[04:04] <ia0001> i install ubuntu desktop
[04:04] <ia0001> and i cant move the icons around
[04:04] <ia0001> or flash doesnt work
[04:04] <qman__> this channel is for server support; ubuntu desktop support is in #ubuntu
[04:04] <ia0001> I think 32 bit support doesnt work because everything worked fine on 64 bit
[04:04] <ia0001> Im using ubuntu server
[04:05] <ia0001> 32 bit 12.04 LTS
[04:05] <ia0001> flash doesnt work
[04:05] <qman__> that's fine and dandy, but ubuntu-desktop and flash are not server applications
[04:05] <qman__> you've essentially turned it into ubuntu desktop, and should seek support in the desktop section
[04:05] <ia0001> well flash works fine on my ubuntu 32 bit 12.04
[04:05] <ia0001> just not on 12.04 server
[04:06] <SpamapS> qman__: please don't feed the trolls
[05:30] <kingjag> Hey all
[05:30] <kingjag> I need some help
[05:31] <kingjag> i am trying to setup a pptp connection on my server so that i can connect through my server and have ALL traffic route through my dedicated server
[05:31] <kingjag> so that it looks like i am browsing the web right from my server
[05:32] <kingjag> would someone be able to help me
[05:32] <kingjag> i have pptpd installed and i can connect
[05:32] <kingjag> but i cant browse the web via that connection to my server
[05:33] <mardraum> why not just use ssh -D and set the socks proxy in your browser?
[05:34] <kingjag> would that allow the use of a web browser?
[05:34] <mardraum> er, yes.
[05:38] <kingjag> well nope that didnt work
[05:43] <kingjag> ok i think i am missing something
[05:43] <DanaG> Say, why is it that I can't log into my serial console until GDM or lightdm starts?  This is Ubuntu 13.04, but the same was true of 12.10.
[05:44] <DanaG> If I enter my username, then press any letter, it immediately rejects the password I didn't even enter.
[05:44] <DanaG> Or rather, COULDN'T even try to enter.
[05:45] <kingjag> wow this is a dead room
[05:54] <lorddune> Hello, can someone please help me with a problem with Tiger. Specifically, /usr/lib/tiger/systems/Linux/2/deb_checkmd5sums
[05:54] <lorddune> i discovered this process is a security check that runs every night at 1 am, and it is overheating my processor as well as constantly making my hard drive run.
[05:55] <lorddune> can anyone explain why this is happening and suggest a possible solution?
[06:08] <sonofzeus> Hi Anyone onm?
[06:09] <sonofzeus> Hey there
[06:10] <ScottK> !weekend | sonofzeus
[06:12] <sonofzeus> A documentation tells me to paste a file in the root web directory which is often name httpdocs.
[06:12] <sonofzeus> I'm on a desktop edition and what pacakges shall I get for the roor web directury?
[06:12] <sonofzeus> Srry for the typos.
[06:53] <sonofzeus> Anyone on?
[07:18] <NeolNeol> anyone can help?
[07:19] <NeolNeol> anyone can help? how to play .trp files?
[07:22] <sonofzeus> Just checking in to see if anyones on?
[07:23] <olegb> NeolNeol: you could try som of the things suggested in: http://ubuntuforums.org/showthread.php?t=1265005
[07:41] <kingjag> hey ple can you help me?
[09:11] <m0loch> Hi, can someone help me identify why I can no longer connect to an l2tp-ipsec vpn after upgrade to 13.04
[09:14] <m0loch> anyone?
[09:33] <sonofzeus> Anyone on?
[09:34] <sonofzeus> waitin for 4 hours I'd really appreciate any help.
[09:35] <m0loch> I think no
[09:39] <greppy> m0loch: or just no one that can help you with your issue.
[09:39] <sonofzeus> Yeah maybe its bcoz of the weekend.
[09:40] <sonofzeus> yeah thats one thing too.
[10:45] <Lucas_> i want to send an email on my website from random-email@random.com to my gmail address without it being sent to the spam folder. Ideas? using sendmail?
[12:38] <UbuntuCloud> hello need a help on raid 5 ubuntu 12.0.4 server (hosted on microsoft cloud azure)
[12:41] <UbuntuCloud> every time i creating raid 5 with mdadm and fdisk and then format it with the ext4 its all good but after restart system wont boot and since its a hosted cloud server i cannot see the boot error
[12:43] <UbuntuCloud> anyone
[12:50] <patdk-lap> a cloud service that doesn't let you see boot? that is odd
[12:51] <UbuntuCloud> patdk-lap the only way to access cloud server is ssh so the server most be booted to access to ssh
[12:52] <UbuntuCloud> patdk-lap any solution out tuturial on how to create raid 5 ubuntu 12.0.4
[12:52] <UbuntuCloud> our can i do it by installing webmin our Zentyal community edition
[13:06] <UbuntuCloud> any help our step by step.....
[14:37] <Neozonz> dstat
[15:18] <Dulcin> Hi, I just accidentally chowned my /var/ folder recursively, (doh!) and I was able to restore all owner/groups by comparing it to another server, but they're not exactly the same so I'm hoping someone can help me with the 3 remaining files
[15:19] <Dulcin> One is for /var/lib/dovecot one for /var/lib/mdadm
[15:23] <Dulcin> If anyone could tell me the owner/group of those folders and files inside (only 1 file), that would be really great
[15:24] <qman__> drwxr-x--- 2 root      root    4.0K 2013-04-20 22:04 dovecot
[15:25] <lorddune> Hello, can someone please help me with a problem with Tiger. Specifically, /usr/lib/tiger/systems/Linux/2/deb_checkmd5sums
[15:25] <lorddune> i discovered this process is a security check that runs every night at 1 am, and it is overheating my processor as well as constantly making my hard drive run.
[15:25] <qman__> drwxr-xr-x 2 root      root    4.0K 2012-09-03 20:14 mdadm
[15:25] <lorddune> can anyone explain why this is happening and suggest a possible solution?
[15:25] <qman__> -rw-r--r-- 1 root root 56 2012-09-03 20:14 mdadm.conf-generated
[15:26] <Dulcin> qman__, you're the best, and the /var/lib/dovecot/ssl-parameters.dat ?
[15:26] <qman__> root.root 644
[15:27] <qman__> auth.success is root.root 600
[15:27] <Dulcin> That's all I had left, thanks so much!
[15:29] <Dulcin> Now, to learn from my mistakes, can someone explain to me how this works: chown -R root:root /var/www/.* - I want to understand why it changed everything including /var/ and not everything inside /var/www/ which I was hoping for
[15:30] <qman__> you either have some crazy symlinks or you typo'd it
[15:30] <qman__> that should only affect the dotfiles in /var/www
[15:30] <qman__> you can verify by swapping ls instead of chown
[15:31] <qman__> lorddune, I don't know what tiger is but based on the name I assume it's verifying checksums of files on your system, which is CPU heavy
[15:31] <qman__> if your system is overheating you need better cooling or to underclock your processor to deal with it
[15:39] <Dulcin> hmm I must have typo'd it, I can't find any symlinks
[15:40] <Dulcin> though when I ls /var/www/.* it does go back one directory
[15:49] <Dulcin> qman__, I missed one folder: /var/run/dovecot
[15:50] <Dulcin> is that one also owned by root.root ?
[15:50] <Dulcin> including its files?
[16:08] <Dulcin> ill install a new server in virtualbox
[16:10] <RoyK> or use kvm
[16:10] <RoyK> virt-manager etc
[16:14] <momin90909> Hi everyone, I have bought VPS with 256mb RAM with ubuntu, I want to get GUI like LXDE, how can I do it
[16:15] <patdk-lap> sounds like fun, ubuntu requires atleast 512megs ram to run the gui
[16:16] <patdk-lap> but this is ubuntu-server, we don't deal in gui's
[16:16] <momin90909> something like LXDE
[16:16] <momin90909> or even lighter
[16:17] <patdk-lap> installing ubuntu-desktop, will get the normal gui
[16:17] <patdk-lap> did you even bother with the lxde instructions?
[16:17] <patdk-lap> http://wiki.lxde.org/en/Ubuntu
[16:18] <momin90909> yes, i tried them but it says cant open display
[16:33] <RoyK> even windows servers run without a gui these days
[17:04] <tboat> hey all, I am about to upgrade the HDD on my Ubuntu 12.01 server, I am not sure the best way to go about backing up/migrating from one HDD to the other.  Preferably, I would like to move the OS, settings and all, to the new HDD and the files.  Unsure of the best way to do this though.  Any help is much appreciated!
[17:05] <tboat> non gui server BTW
[17:10] <RoyK> tboat: it's 12.04
[17:11] <RoyK> tboat: please pastebin lsb_release -a
[17:11] <RoyK> !pastebin | tboat
[17:11] <tboat> it is 12.04 sorry, late night last night
[17:11] <RoyK> why do you want to upgrade?
[17:11] <RoyK> 13.04 has 9 months support, 12.04 is LTS, 5 years support
[17:11] <tboat> anyway, it seems clonezilla is a good option? I am guessing partition enough space for my backup, create the image, then restore it?
[17:12] <tboat> I'm upgrading HDD, not Ubuntu version
[17:12] <RoyK> oh
[17:12] <RoyK> ic
[17:12] <tboat> going from 750 GB -> 3 TB
[17:12] <RoyK> is it on lvm?
[17:12] <tboat> yes
[17:13] <RoyK> then you can use pvmove to move the data
[17:13] <RoyK> vgextend testvg /dev/vdp
[17:13] <tboat> alright, i will look into pvmove, thank you!
[17:13] <RoyK> then mvmove /old/thing
[17:14] <RoyK> and pvreduce /old/thing
[17:14] <RoyK> make sure /boot is copied
[17:14] <RoyK> and grub is installed
[17:14] <RoyK> usually /boot isn't on lvm
[17:14] <tboat> it isnt, i will make sure to move it
[17:15] <tboat> and on my desktop ubuntu install, broken grub a few times, so im well versed in reinstalling it haha
[17:15] <tboat> thank you very much
[17:21]  * RoyK orders pizza
[17:27] <Shogoot> Hi people. I had my ubuntuserver file server up and go. I recentrly moved the server to another room and now all the sudden i can access my fileserver......  can anyone help em troubleshoot this?
[17:28] <Shogoot> My smb.conf : http://paste.ubuntu.com/5609287/
[17:29] <Shogoot> My stuff is at line 281 to 297    /media/nm is accesible trough putty.....
[17:36] <GeorgeJ> Where could one find a guide to setting up an dual-stack(IPv4/6) router?
[17:58] <Dulcin> does anyone know of a nice (up to date) guide for setting up a /srv/ folder, with sftp permissions and so?
[18:08] <Shogoot>  i dont know if theese rights are correct for a directory i want to share on my network using samba. This is ls -l for my /media/nm directory drwxrwxrwx 12 root root 4096 Apr 13 20:55 nm  wich is to be shred
[18:16] <RoyK> Dulcin: depends what you want to use it for
[18:23] <Dulcin> RoyK, well the problem I have is this: If I chroot a user to /srv/www/ for example, it can not upload files to that directory, only if I had subdirectors that the sftp user owns
[18:23] <RoyK> rssh?
[18:23] <Dulcin> RoyK, but if I change the /srv/www/ owner/group then I can not chroot it
[18:23] <Dulcin> I dont know what rssh is, but this is through sftp
[18:25] <RoyK> rssh is a good way to chroot users for sftp/scp/rsync
[18:26] <RoyK> google it
[18:27] <thelamest> what is the cool kids console e-mail client nowadays?
[18:27] <RoyK> still mutt, I beleive
[18:28] <thelamest> I was wondering because of the release date
[18:28] <thelamest> thanks
[18:29] <RoyK> it's old, but stable
[18:32] <jacobw> It's always been Mutt.
[18:43] <Shogoot> Stranges thing I got 2 win7 machines on this network and a ubuntu server witha  fileserver on it. my old win7 machine i can see all machines on network, but this new win7 i cannot see my fileserver... dafuq? :)
[18:50] <Dulcin> If I add my username group to the www-data user, shouldn't apache have write permission in a 775 folder?
[18:51] <Dulcin> say my username is webmaster, and has a webmaster group. And I add the www-data user to the webmaster group, and all files are 775 webmaster:webmaster
[18:51] <Dulcin> shouldn't that be sufficient for apache2 to access those files?
[18:52] <RoyK> yes
[18:53] <Dulcin> cool thanks
[19:20] <GeorgeJ> Hello folks!
[19:20] <GeorgeJ> Is there any tool one could use, that has a web interface to monitor network information, such as dhcpd leases, traffic(per interface), service status, etc?
[23:06] <kennettAZ> I'm running Ubuntu Server 12.04 I think. But when I try and boot the system I just get a blinking -
[23:07] <kennettAZ> I know that's not much info but that's all I have. Sorry I'm a noob.
[23:11] <kennettAZ> The system was working before I updated.
[23:19] <kennettAZ> Is there a log I need to check or a command I should run?
[23:34] <kennettAZ> I tried booting into recovery mode but nothing.
[23:44] <LargePrime> Is there a toll for FTP ing from one server directly to another?
[23:44] <LargePrime> tool*
[23:46] <kevireilly> LargePrime: ssh
[23:46] <LargePrime> will it go directly between two servers?
[23:46] <LargePrime> kevireilly:
[23:46] <kevireilly> LargePrime: yarp
[23:47] <LargePrime> you got a link or a google for me?
[23:48] <kevireilly> LargePrime: https://help.ubuntu.com/community/SSH/TransferFiles
[23:49] <kevireilly> I'm not sure why "ftp" isn't listed, but that is another option
[23:49] <kevireilly> oh, right, its not ssh related :)
[23:50] <kevireilly> rather, the transfer protocol isn't based on ssh although it is utilized via ssh