[00:00] we release this keylogger to the wild hope it help system admin [00:00] never use it for your desktop it crash the gui [00:00] only for server [00:00] thx sarnold [00:01] btw sarnold couple of month back i saw in ubuntu website the license is 300 buck [00:01] skraito: probably the most useful thing for a hardening script would be /etc/adduser.conf setting DIR_MODE. Old-time Unix admins often wish the mode were 0750 or 0700. [00:01] but i cant find it anymore === markthomas1 is now known as markthomas [00:01] anyway thank you just check back 0x71.org for couple of weeks i start coding it next two week [00:02] see ya guys have a great day [00:04] Ah, okay. So, Aison, now to your question: [00:06] sarnold: are the init-bottom scripts stored in /etc/initramfs-tools? [00:07] markthomas: I see a pile of /usr/share/initramfs-tools/ http://paste.ubuntu.com/5624452/ [00:07] markthomas: (that's an apt-file search command) [00:08] sarnold: let me rephrase: my system has nothing in there at present, so I wasn't sure if they're kept there or if those dirs are for temporary storage only. [00:09] markthomas: ah, good question, don't know that either :( my /etc/.../init-bottom/ is also empty [00:09] Aison: Can you check your filesystem for init-bottom directories in /etc, or apparently in /usr/share, and see if you have any scripts laying around? That's on the system we're troubleshooting. [00:10] markthomas: I'd bet those are for local customizing, and the ones in /usr/share/... are also copied into the initramfs, just not expected to be modified for any reason [00:11] markthomas, ok [00:11] sarnold: that's reasonable. If Aison 's boot was hanging there, I was going to see if any packages had placed anything there that might be having trouble. If we can find it and disable it, we can regenerate initramfs and boot, then fix the problem. [00:12] markthomas: sounds like a good plan [00:12] Only thing I have under /usr/share/initramfs-tools/scripts/init-bottom is related to udev. And the splash screen (plymouth) [00:13] markthomas: mine has udev and plymouth. as i understand plymouth, there's no _need_ for it. udev feels less likely to fail and more important... [00:13] Yeah. I'm not sure how we'll troubleshoot udev with no visibility into the failure. === wedgwood is now known as wedgwood_away [00:15] Aison: I'm going to branch off in pursuit of an undomesticated water foul: are you comfortable doing a pastebin of your /etc/fstab? [00:15] markthomas, the initbottom in etc is empty [00:15] And don't worry if the joke doesn't translate. Neither does "wild goose chase". [00:15] the one in usr have got plymouth and udev files [00:15] Aison: okay. fstab? [00:19] markthomas, http://nopaste.info/667ecbce2c.html [00:21] Were those nfs mounts commented out before? [00:21] markthomas, yes [00:22] that's the first i tried [00:24] somehow update-initramfs hangs [00:24] Wait…update-initramfs hangs? [00:24] yes [00:24] just noticed that [00:25] Are you running that chroot, or in your live environment? [00:25] I chroot [00:26] Okay. And you tried -vvv or some such? [00:28] just running with -vvv [00:28] well, it hangs at Building cpio /boot/initrd.img-3.8.0-19-generic.new initramfs [00:28] Okay. [00:29] ... [00:30] what do I have to mount also before changeroot? [00:30] dev, proc, sys? [00:31] /boot if that is a separate device [00:31] it's not [00:31] I would mount those after chroot. /boot, too [00:31] That being said, I'm a bit stumped. [00:34] well, update-initramfs: Generating /boot/initrd.img-3.8.0-19-generic [00:34] is not working [00:34] the file /boot/initrd.img-3.8.0-19-generic.new is created [00:34] but it remains 0 in size [00:35] Aison: thinking... [00:37] Aison, I didn't see what your parent command is, but if you chroot into an install and want to run update-grub, you have to enxure that you first mounted /proc, /sys, and /dev, and rm /etc/mtab [00:37] ensure* [00:37] markthomas: a few ideas, full filesystem, can't read source files, incorrect calling of cpio _may_ expect input data via stdin?, ... [00:38] sarnold: I think the last one is negative. As for the others... [00:38] sarnold: what's the easiest way to revert to an earlier kernel nowadays? [00:38] markthomas: yeah, it seemed a longshot. but I've waited a long time for a 'grep' command waiting on stdin before... :) [00:38] Once upon a time, all the old kernels hung around indefinitely. [00:38] Good point. Aison, can you rule out the full filesystem? [00:39] markthomas: distro upgrade is an odd situation for that, of course. /lib/cache/apt/..something normally has old packages around that you can dpkg -i [00:39] /var/cache/apt/archives [00:39] sigh [00:39] thanks qman__ :) [00:40] but yeah, lots of things won't work in a chroot if you don't do those things I mentioned [00:41] markthomas, what do you mean? the fs looks fine here [00:42] Aison: df -h shows <100%? [00:42] 13% :) [00:44] Aison: while we're grasping at straws, can you unmount the filesystem and fsck it? It's one thing that the system won't boot, but for it to fail when building the initramfs... [00:44] already done [00:44] Like sarnold said, we have to look for why cpio might fail. [00:45] Aison: nice. And darn. [00:46] thinking... [00:46] I also reinstalled cpio [00:46] markthomas: I wonder what tools you've got to watch cpio try to work; fatrace might be nice if available, but I don't think it is on any disks.. vmstat 1 would show at least disk traffic.. strace shows everything, but might not be the easiest [00:47] sarnold: ugh [00:47] That's all. Just...ugh [00:48] markthomas: yes. ugh. :) [00:48] let me try strace [01:00] argh, im tired [01:00] trying it tomorrow :P [01:00] good luck Aison [01:00] well, there is a solution somehow :P [01:00] Aison: Good luck. My nick is registered, so send me a msg if I'm not around and let me know what happens. [01:01] sure [01:07] Hello, I hope I have a simple question here. I run an ubuntu router with a few different subnets on a small home network. Is it possible to do things like forward all multicast traffic out all LAN ports? I had to split up my network for stability reasons, but I still enjoy things like autodiscovery services (bonjour, etc) which afaik work over multicast. Is something like this possible? [01:11] phunyguy: the warning at the top isn't encouraging, but perhaps .. http://lartc.org/howto/lartc.multicast.html [01:15] sarnold: I did read something else about pimd, but the forum post was 9 years old so I wasn't too optimistic about that one. === Ursinha is now known as Ursinha-afk [01:43] another unrelated question, I keep seeing these in syslog: "kernel: [ 87.187907] br0: received packet on eth1 with own address as source address" [01:43] eth1 is a member of br0 [01:44] should I be worried? [01:44] only if you don't expect that to be happening [01:57] it generally means something is set up wrong, but not necessarily [02:08] qman__: yeah I get that, and everything seems to work, I just don't like the message. [02:08] and I don't like it because I don't /really/ know what it means. [02:10] it means that packets are coming in on eth1 "from" eth1's IP address [02:11] which, depending on how things are wired, means that either you're reflecting your own outbound traffic back at yourself [02:11] or that you have an IP conflict [02:11] or that you're being spoofed [02:14] I was guessing mac, not IP. [02:14] and I found a common theme with google searching.... a wifi AP on that subnet. [02:15] I have a Linksys E1200 on that subnet with dd-wrt on it, with routing disabled, in a pure AP setup [02:15] generally if you have a MAC conflict the switch stops working correctly [02:15] and one end or the other can't get on the network at all [02:15] I am going to try something [02:38] also, not sure how I would be spoofed on eth1.. only a few things on my LAN currently, and it's not coming from WAN side. xD === hggdh_ is now known as hggdh [03:55] hey. i want to upload files to my ubuntu server from windows [03:55] fast and easy. what do you suggest? [04:04] agu10^: sftp is the easiest for me. [04:04] do you access root in your server? [04:05] i would like to edit the filesystem and text config files from windows too [04:05] like it was a network drive [04:06] agu10^: I would usually enable root login for something like that. But some security experts would frown on it, I'm sure. all the more reason to use sftp. :) [04:07] root login? [04:07] how can i see the whole filesystem from windows? [04:17] agu10^: 1) download filezilla 2) login with sftp (uses same transport as ssh). If you want remote FS access as the super user? See https://help.ubuntu.com/community/RootSudo, enable root logins, enable root ssh access, and use filezilla with the root user same as before [04:18] I think we would do more than frown at that. There's a special place in hell for people that do what you're suggesting. [04:18] ;) [04:18] agu10^: there are a lot of methods to do this is a more managed/secure way, but that is the shortest path to get root access to your whole filesystem remotely. Just know that it is a security vulnerabilty. (your root password) [04:18] I say that with love in my heart. [04:20] <3 [04:21] i see [04:21] thanks [04:21] do i have to set up anything server-side to access my sftp from filezilla? [04:22] agu10^: try it with your regular user. It should just work. sftp is just a "fancy" ssh connection. [04:22] oh cool [04:23] there is a problem. in filezilla i can't edit files without downloading and re-uploading [04:23] i want to easily open files as if they were on a network drive [04:24] agu10^, what you're really asking for is 1.) Not a good idea. [04:24] 2.) A lot harder than you seem experienced to handle. (No offense.) [04:24] why would it be hard? [04:24] of course it's probably slow [04:24] but it's only hard if there aren't good tools for it [04:25] Because what you really want is a system-wide samba server setup. [04:25] And there lie dragons. [04:25] i don't think i want any of that :P [04:25] just do this over ssh and it'll be fine [04:26] just i don't want to DOWNLOAD, edit and then UPLOAD [04:26] Well, I know of solutions to psuedo-mount ssh as a local hard drive through fuse. [04:26] i want to drag & drop files, and double click to open, edit, then save [04:26] sshfs and all that. [04:26] But for Windows? I have no idea. I doubt something like that exists. [04:26] okay [04:26] i give up [04:26] yes, there are explorer extensions for that. [04:27] for ssh? [04:28] I cannot login using filezilla [04:28] Are you trying to log in as root? [04:28] i thought i didn't have to setup anything server-side [04:28] agu10^: you would need to get that working first. [04:28] no. as my user which i use through ssh [04:28] Ah, then it should work. [04:29] ... it doesn't :( [04:29] User error. :P [04:29] Are you sure filezilla is set to SFTP? [04:29] (Not FTP with SSL) [04:30] i don't know. i just used quickconnect [04:30] Well you need to check, these things matter. [04:30] Filezilla is a multi-protocol client. [04:31] agu10^: FYI, once you have mastered that, here is a more explorer-ish way to do things: http://www.swish-sftp.org/ -- but get filezilla working first. It's a good tool to master. [04:33] Error: Disconnected: No supported authentication methods available (server sent: publickey) [04:33] Error: Could not connect to server [04:33] how can i login using only my password instead of a key? [04:34] agu10^: how do you normally connect to this server? [04:34] using a public key, with putty [04:34] I see. [04:34] but i just want to use my password instead [04:35] Then you have to change your authentication settings in your sshd on the server. [04:35] Or [04:35] Alternatively.. [04:35] Use WinSCP instead of Filezilla. [04:35] WinSCP can interface with putty's public key thing. It's been so long since I used Windows, so I don't remember the specifics. [04:35] just how do i change auth on my server? [04:35] i don't like putty [04:35] You have to start editing /etc/ssh/sshd_config [04:36] and i don't care about safety [04:36] * Cyrus backs away slowly and disappears into the night. [04:36] agu10^: search that file for "Password" [04:37] how do i search in vim? [04:38] agu10^: / [04:38] /Password [04:38] PasswordAuthentication no [04:38] ? [04:38] yup, change to yes. sudo service ssh restart [04:39] okay great [04:39] Command: open "ubuntu@potentialstudio.com" 22 [04:39] Command: Pass: *********** [04:39] Error: Authentication failed. [04:39] Error: Critical error [04:39] Error: Could not connect to server [04:40] agu10^: did you restart the ssh service? [04:40] yes [04:41] are you sure the user and password are correct? :) [04:41] hmm not sure [04:41] maybe there was no password actually [04:41] should i make a new user? [04:42] you can change the password when logged in as the ubuntu user [04:43] how [04:43] agu10^: sudo passwd ubuntu <- that will change the password for the user ubuntu without prompting for the current one [04:43] i don't know the current password [04:43] i better create a new user i think [04:44] sure, go for it. no harm either way [04:44] the new user will not have sudo access by default, but that is ok. [04:44] useradd: user 'admin' already exists [04:44] ubuntu@domU-12-31-39-10-4A-43:~$ users [04:44] ubuntu [04:44] i want to add the 'admin' user and give it root access. but idk why it exists and is not in the list of users [04:46] agu10^: you used sudo? [04:46] yes [04:47] users only lists 'ubuntu' [04:47] though useradd throws an error... wtf [04:47] agu10^: try a different name, just to test [04:47] useradd: cannot lock /etc/passwd; try again later. [04:48] okay, sudo did it [04:48] for the user 'pepe' [04:48] it's still not listed with the 'users' command :( [04:48] k. even for him, you will need to change the password [04:49] what? the user is not even listed [04:49] agu10^: I *think* users just gives back logged in users (going off memory) [04:49] ok [04:49] users - print the user names of users currently logged in to the current host [04:49] how do i list all users? [04:50] agu10^: cat /etc/passwd is the first step. [04:50] that is long [04:50] good. :) [04:50] cat /etc/passwd |grep pepe [04:50] that's what she said [04:51] okay i deleted pepe. how do i add root access to admin and change its password? [04:52] agu10^: sudo passwd will allow you to change passwords. [04:53] great. :D [04:53] should i give it root rights? [04:54] agu10^: just to test your sftp, you shouldn't need to. [04:55] wow it lists folders [04:55] yes, you should be able to view most everything as a regular user in ubuntu. changing things is typically restricted to just your home folder though. [04:56] dpb1, cool. what if i want to access root files but with a password? [04:58] agu10^: that is where you look at that SudoRoot link I gave you. Basically do a similar process, but with the root user. Read that page, it's a good one. Toward the end is where it talks about how to enable the root user, and why you don't want to do that normally. [04:58] okay, great. [04:59] there is no way to get admin to be that root user? [04:59] agu10^: yes, there are always options (which is why ubuntu is so great), let me give you a link. [05:00] no, it's fine [05:00] i rather login with the root user when i want to do that [05:00] and keep the rest just in the admin folder [05:01] agu10^: that is really the safest way to do things. [05:01] i have a problem [05:02] the uploaded files aren't accessible by apache :S [05:02] i mean, index.html is, but the folders (js/css, etc) are not. [05:02] so it looks like this: http://alvid.com.ar/ [05:03] without styles or images :( [05:03] agu10^: do ls -l , and use paste.ubuntu.com to paste back the results. [05:04] http://paste.ubuntu.com/5624901/ [05:05] agu10^: so, best practice for files in that directory. whenever you upload you want [05:06] agu10^: yikes! [05:06] agu10^: your index.html can be written to by anyone on the server [05:06] agu10^: and your directories can only be read by 'admin' and by 'root'. apache runs as neither admin nor root. it cannot read your other files. [05:07] what sarnold said. :) [05:07] sarnold, great. how do i fix this? should i make index.html be admin's and apache able to read all? [05:07] agu10^: first, chmod 644 index.html. [05:07] don't let that live for any longer. [05:08] ok [05:08] should i do that with all folders in the website? [05:08] i had to make it publically accessible because [05:08] i modify index.html with a php script [05:10] sarnold, how do i make my website work and only be modified by admin and php scripts? [05:10] agu10^: [05:11] sigh, lost internet for a while [05:12] agu10^: are you -sure- you want your website to be modifyable by running php scripts? I've seen far too many people hacked and their website content modified to send viruses or worms to the website users.. [05:12] i made a php script that will modify my website [05:12] so i can do it on a web panel interface [05:12] so... i guess :P [05:13] can i do it so only THAT php script can do it? [05:13] and only some files [05:14] hmm nevermind, i think i only have to let apache read my admin-created files [05:14] and i leave the others public for my php script to modify freely [05:15] sarnold, how do i let apache read my files? [05:15] agu10^: so, your directories need "sudo chmod go+rx " run on them for starters [05:15] what is that? [05:16] agu10^: you've definitely got an odd situation there :) but something like chown -R admin * followed by chmod 755 on all the directories and chmod 644 on all the files [05:16] :S when i upload files they are owned by admin admin. how do i make those accessible by apache so they can be shown online? [05:16] i don't think i need anything else than that for now [05:18] give them the right permissions and it should stick when you upload replacements. just try it. [05:18] i don't want to upload replacements [05:18] i may upload new files aswell [05:18] i need to let apache read ALL new files i upload from filezilla [05:21] there are three sets of permissions, user, group and other. If you upload new files, you will need to make sure permissions are correct. FYI, filezilla will let you set permissions. :) [05:21] ok, which permissions should i set though? [05:21] i'll set them on filezilla, but what exactly? [05:22] it says the folder is 777! [05:22] oh but the children were not [05:22] user = rw, group = r, other = r is a good default. [05:22] for a directory, the execute bit should be set, or the directory will not be browsable. [05:24] This is a good page, FYI: https://help.ubuntu.com/community/FilePermissions [05:24] dpb1, i just want apache to show the website [05:24] dpb1, is apache "other" ? [05:25] do not set your permissions to 666 [05:25] or 777 [05:25] agu10^: because your files are owned by admin and in the admin group, other is how apache will be reading them, yes. [05:25] (stupid off-by-one fingers :) [05:25] ok, should i set other = r and x on folders? [05:25] or just r on folders? [05:25] rx [05:26] 771 or 77x ? [05:26] directories are strange; 'r' lets you see contents, 'x' lets you 'traverse' the directory to see lower directories or open files [05:26] ok [05:26] 755 or 775, depending upon the situation, would be better, yes [05:26] what does x do on files? [05:27] agu10^: also, a more typical setup is to have the group 'www-data' on all your web files. just fyi. [05:27] what's the difference between 775 and 77x ? [05:27] agu10^: the 'x' on files allows you to execute files [05:27] i see [05:27] agu10^: well, 77x doesn't actually exist :) [05:27] oh it says that on filezilla [05:27] o_O [05:27] rather than 771? [05:28] yes [05:28] * sarnold kicks silly filezilla [05:28] hehe [05:28] 774, if i check execute it's 775. if i check again it gets a different symbol and says 77x [05:29] baffling :) [05:29] ya, that has to be a bug. [05:29] okay i set it to 775 then [05:34] This works great! Thanks :D [05:35] i'm now trying to set up a simple mail server. I need to get info@domains.com email addresses. for many different domains. What is easy to set up for this? I installed citadel but it doesn't seem to be easy to handle this. [05:37] agu10^: most people would use postfix or exim as first choices.. [05:37] okay [05:38] how do i uninstall citadel though? [05:38] i hate when i install lots of packages that never work... :(* [05:43] agu10^: it'd be something along the lines of apt-get purge citadel* [05:45] sarnold, thanks [05:46] agu10^: check out the serverguide listed in the /topic, it has good details on setting up mail servers [05:46] bed time :) [05:46] byee [05:48] I would like to install postfix to make info@mydomains.com emails and access them on gmail through imap or pop/smtp. do you think it can be easy to set up many many many user@randomdomain.com email accounts? [07:48] What would cause my NIC to connect at a slower speed then what the specs say? [07:50] All other devices connect fine but one. [08:01] Hey guys, need advice. I am running 8 core xeon server with 8 GB RAM. I want to create 3 VMs on this to host different services. What software is good for that? I am familiar with VirtualBox and it has been working good for me on my desktop. I know how to setup VirtualBox from command line on a remote server. I would like to know from you if VirtualBox is suitable for medium load servers running 24x7 ? WHat is the best when it comes to create VPS on a physic [08:03] libvirt+KVM works well for me. [08:24] Could my OS be keeping my system from connecting to my lan at 1Gbps? The specs say 1 Gb. [08:24] ke7vyv: probably not [08:25] Ben64: Any ideas? [08:25] check chipset to see if any problems exist? [08:25] also, cabling and other devices are important to get the 1gbit link [08:26] Ben64: I'm new to this stuff. How would I check the chipset? [08:26] lspci | grep -i ethernet [08:27] All other devices connect at 1gbit. [08:29] Ben64: I'll give that a try. [08:29] Thanks. [08:30] Oh any ideas on why it would be 100mbit and not 1gbit like it should? [08:31] well some chipsets don't play nicely with linux [08:31] Ben64: I tried ethtool eth0 would that be the same? [08:31] OK [08:31] What does ethtool say? [08:32] It says 100mbit [08:32] That's all I can remember. [08:32] It says a lot more than that, surely? [08:33] It should tell you what the driver supports. [08:33] I'm not near the machine to see what else [08:34] You might want to fix that first. [08:35] What being near it? [08:36] I thought of that but figured I would get some things to try for when I am. [08:38] Well I'll come back when I'm near it. === ak5_ is now known as ak5 [09:28] rbasak, Ben64: lspci | grep -i ethernet 00:04.0 Ethernet controller: Silicon Integrated Systems [SiS] 191 Gigabit Ethernet Adapter (rev 01) [09:32] ke7vyv: please pastebin the ethtool output. [09:32] Heres my ethtool results http://pastebin.com/mMWZwMvv [09:33] Looks like either your driver doesn't support gigabit or your NIC doesn't support gigabit or something between the driver and the NIC isn't configured for gigabit. [09:34] The name of your NIC certainly suggests that it supports gigabit :) [09:35] Well the cable I hooked up to another machine and gigabit worked fine. [09:36] The problem is not the cable. It's between the driver and your NIC. [09:36] (or so ethtool seems to say) [09:36] So on the system itself [09:39] If I transplanted the hdd from another system could that be causing it? [09:47] hi [09:48] i just added a new volume on my card and although the new volume appears on the scsi bus a new block device is not created [09:48] how can i solve this? [09:50] rbasak: Would this apply to me? https://answers.launchpad.net/ubuntu/+source/network-manager/+question/66455 [09:53] hello. what do you suggest for setting up a simple email forwarding server to get custom email addresses? [10:04] I read online to change the MTU to 1492. [10:04] Is that just to connect to the net? [10:24] rbasak: I found this but my kernal version isn't listed. http://www.howtoforge.com/creating-the-sis191-gigabit-ethernet-driver-on-linux-2.6 [10:39] I have a zvol on which a virtual server is installed in lvm. However I need to change the names of the lvm partitions / the lvm group - how should I approach this? [10:39] booting the virtual with a ubuntu server cd is not really helpful as it doesn't provide a "live-cd" -like environment [11:06] I'm following steps on a site and it says to goto kernel.net and download my kernel version. My kernel is 3.5.0-23-generic and it's not listed. What do I do? [11:07] use a "site" specific for your distro and release [11:09] ke7vyv: why do you need the kernel source? [11:10] ke7vyv: if you really need them, apt-get install linux-source [11:10] The page I found that tells how to fix my nic said to download them. [11:12] RoyK: Here is the site http://www.howtoforge.com/creating-the-sis191-gigabit-ethernet-driver-on-linux-2.6 [11:12] ke7vyv: I see - use the apt-get I gave you. you shouldn use the ubuntu kernel, not those from kernel.org [11:13] RoyK: OK I'll try that. [11:13] or [11:14] you may want to try the linux-image-3.8.0-19-generic kernel [11:15] RoyK: I don't see that on kernel.org [11:15] it's an ubuntu package [11:15] apt-get install it [11:15] OK [11:18] It won't let me [11:21] how do i run a command on startup? [11:40]