/srv/irclogs.ubuntu.com/2013/05/03/#ubuntu-server.txt

=== wedgwood is now known as wedgwood_away
arrrghhhhey all.  can I route packets based on the service used?  I have OpenVPN being used, but certain services like apache and ssh I would prefer to not tunnel so I can still access those from the WAN01:00
=== Ursinha is now known as Ursinha-afk
agu10^_How can I disable all iptables rules? If i run iptables -F, when i reboot, the rules are working again! I just want to remove them forever! Or go back to initial iptables configuration.01:29
Chris_W_is there a command to see progress when copying/moving a file?01:32
=== Ursinha-afk is now known as Ursinha
qman__agu10^_, you need to find what script or software is setting them and disable it01:48
agu10^_qman__, how do i do that?01:49
qman__any software which is doing this is something that must have been installed or configured beyond the default01:50
qman__so get a list of everything you've done and determine which one is setting firewall rules01:50
qman__you may also be able to guess based on what the rules are01:50
agu10^_there is no way to find out exactly which one is doing this?01:50
agu10^_i know it was iredmail, but it installed many components01:51
qman__there is no deterministic way to determine it in reverse like that01:51
agu10^_something about a mail spam filter01:51
agu10^_i'd have to monitor which software is writing to my iptables config files01:51
qman__rules can be set with scripts, binary programs, or even libraries01:51
agu10^_yes. can i change the permissions for the config files so that01:52
agu10^_no malware can modify the files?01:52
agu10^_i just want to BLOCK the rules so that nobody modifies them01:53
qman__that is neither the correct way to address the problem nor is it possible in any reasonable fashion01:53
qman__the only way to do such a thing would be to recompile your kernel without netfilter support01:53
agu10^_wow that sucks01:55
agu10^_i think iptables is working properly now01:55
agu10^_how do i know if my script at /etc/rc.local was run or not? how do i see its output?01:59
qman__please don't crosspost01:59
agu10^_oh sorry02:00
qman__rc.local is executed at the end of the boot sequence and unless otherwise directed prints to the console02:00
qman__typically tty102:00
qman__if rc.local does not exit 0, you won't get a login prompt02:01
agu10^_qman__, it exists 002:03
agu10^_i think the problem i have is in rc.local i do: cd mypath; ./mycommand02:03
agu10^_and that is not working. am i not supposed to cd?02:04
qman__well, first of all, you should use an init script instead02:04
qman__but provided that you still want to use rc.local, you can't do it that way02:04
agu10^_i was suggested to use rc.local02:04
qman__it should only call the script and any arguments02:04
agu10^_is an init script better? and how do i do this02:04
qman__the script itself should cd to where it needs to be02:05
agu10^_oh okay02:05
qman__note also that even though rc.local is called at the end of the boot sequence, it may execute before all services start02:05
qman__because the way upstart is designed, it fires off many things at once02:05
agu10^_ohh okay02:05
agu10^_then what should i do? my script starts a node.js web server.02:06
qman__you should make an upstart script which depends on the network and other things you need02:06
qman__if you've got a decent understanding of shell programming, have a look here: http://upstart.ubuntu.com/getting-started.html02:06
qman__otherwise you may want to search for something to fit your purpose02:07
agu10^_there is no upstart found02:08
qman__you can also refer to existing upstart scripts as examples02:08
agu10^_no upstart command02:08
qman__no, there is not02:08
agu10^_then what is the standard way to make scripts run such as apache service?02:08
qman__upstart scripts are stored in /etc/init, and are called by using 'start [servicename]', 'stop [servicename]', etc02:09
agu10^_where does apache make it start itself?02:09
agu10^_"Once you've downloaded and unpacked upstart, you will need to configure the source tree, build and install it. The main question here is deciding whether or not you want to take the plunge and replace sysvinit immediately, or whether you want to test first." Seriously? I just want to start a server script.02:15
qman__again, please don't crosspost02:15
qman__you don't need to install upstart, it's the default init daemon in ubuntu and is already present02:15
qman__you need only to create an upstart init script for your application02:15
qman__which is probably going to be 10 lines, tops02:16
agu10^_qman__, ohh okay, thanks02:18
qman__you will want to skip down to the part about "writing jobs"02:18
qman__and refer to existing scripts in /etc/init as examples02:19
agu10^_qman__, thanks, it works i think02:21
jestillorehi everyone .. can anyone of you help me setting up pxe server in ubuntu lucid lynx ?02:29
jestillorehi everyone .. can anyone of you help me setting up pxe server in ubuntu lucid lynx ?02:30
arrrghhhhey all.  can I route packets based on the service used?  I have OpenVPN being used, but certain services like apache and ssh I would prefer to not tunnel so I can still access those from the WAN02:54
dassoukiwhat's going on here http://pastie.org/775611303:24
qman__you broke your sources03:25
dassoukithis all happened as i was tryin to do a distroupgrade03:26
qman__did you use do-release-upgrade?03:27
dassoukinope03:27
qman__there's the problem03:27
qman__the correct and supported way to upgrade ubuntu releases is the do-release-upgrade tool03:27
qman__if you're lucky it hasn't done much of anything and you can still fix your sources03:29
agu10^_anybody familiar with amazon ec2?03:44
agu10^_Hello. I am running bind and it was working fine, but now I cannot dig my own domains even from the same computer. it times out. what could be wrong?03:58
LargePrimeI have a few virtual web sites I am hosting for friends.  does anyone have good ideas on how to give them FTP-ish access to their sites and still keep my server safe?04:40
LargePrimeThe problem I am having is Root is the owner, group is www-data, and I dont have any more permisions too assign04:41
LargePrimeI am looking at acls04:41
LargePrimei am not sure how editing sudo will work out04:42
kevireillyLargePrime: you can create actual users and then adjust your http entries to point to the document root of for instance /home/username/public_html04:42
kevireillyi want to say the parameter on adduser was -h to create a home directory, but i cant recall04:42
LargePrimeok.  sorry i forgot to say, how does that help me?04:43
LargePrimei forgot to say i am a total noob04:43
kevireillybecause then you can have ftp users that only have access to their subset of files for their site(s)04:43
LargePrimeand i think my fingers hate me04:44
LargePrimeoh, so root wont have to own?04:44
LargePrimehow is that different from makeing a folder in /var/www that they own?04:44
kevireillyI dont believe so. You can add a user and chown user.user files and test it before getting to deep in making that sort of change04:44
kevireillyim not sure you can make for instance their default login directory be /var/www/user but you probably can04:45
kevireillyit is just common to create a user with a home directory and give them a document root in there04:45
LargePrimeIF i can is that not functional equilivant?04:45
kevireillysure, that is just commonly the folder for the default site of the server in its entirety where a user's home directory is stuff particular to a user, which matches your goal it seems04:46
kevireillyanother reason is you want to be able to allow users to have non-public files sometimes such as .htpasswd or other various uploads that shouldn't be available04:46
kevireillyin the /var/www/user scheme that wouldn't be possible04:47
kevireilly*other various files that shouldn't be available04:47
LargePrimeKevin that might work well04:48
LargePrimeis there a guide or something?04:48
LargePrimeor a search tearm04:48
kevireillyone of the methods is the adduser command04:48
kevireillythere was another one but i cant recall it04:48
kevireillyoh, useradd haha ;)04:49
kevireillyLargePrime: this one is decent enough http://www.howtogeek.com/howto/ubuntu/add-a-user-on-ubuntu-server/04:49
kevireillyoh.. adduser and useradd.. thats not confusing at all04:50
LargePrimeI already added users04:50
kevireillywith a home directory?04:50
kevireillyls /home04:50
LargePrimeand i game them ownership of /var/www/userdomain04:50
LargePrimebut this is giving them headaches04:50
LargePrimethen i make them owners of the dirs04:51
LargePrimealso headaches04:51
LargePrimeI finaly had to do 777 to make the headaches go away04:52
kevireillythat is not a good idea04:52
LargePrimei think i know it is not a good idea.  so i come here to say " this not good , right?"04:52
LargePrimebut if i can move them to /home04:53
LargePrimeand chroot or chjail them04:53
LargePrimeif that is what that is called04:53
kevireillyftp is relatively safe outside of what can potentially be uploaded with it, ssh is where it can get sticky04:54
kevireillydo you have home directories for each user?04:54
LargePrimeso i should just make FTP users04:55
LargePrimenope04:55
LargePrimecurrently I am using ssh keya04:55
kevireillyah i see, and then you have them use sftp?04:55
LargePrimeya04:55
LargePrimemostly winscp04:56
kevireillythey essentially have ssh access though04:56
LargePrimeyes04:56
* LargePrime is nervouse04:56
LargePrimeso i was reading about jailing them04:56
LargePrimeto the hom dir04:57
kevireillycreate a test user maybe real quick, like you created the others without a home directory04:57
LargePrimebut i did not know if sites available will reroute to hom dirs04:57
kevireillyand then try -- usermod -d /home/username username04:57
kevireillyyeah im pretty sure it will04:57
ScottKDon't use ftp.  Use sftp or scp instead.  http://mywiki.wooledge.org/FtpMustDie04:58
kevireillyScottK: can use sftp and not allow ssh access at the same time?04:58
ScottKYes.04:59
LargePrimeya you can04:59
kevireillysahweet04:59
LargePrimethere is a settng in .... something04:59
LargePrimeso may plan was to distribute private keys05:00
LargePrimebut sftp is screwing with me05:00
LargePrimewhen it comes to people being able to do stuff on thier servers05:00
LargePrimewhich is prolly me trying to keep root as owner05:02
=== bean__ is now known as bean
=== Ursinha is now known as Ursinha-afk
=== Ursinha-afk is now known as Ursinha
Joel_rehey, I'm unable to figure this out06:57
Joel_repostgresql-9.1 installs and sets up the db with the SQL_ASCII encoding06:57
Joel_redoes anyone know what can fix this06:57
sazawalI have a python script which authenticates me and connects to the internet. When I press Ctrl-C it logs me off successfully. I want to end this script (log off) automatically when I shut down/reboot my computer. How can I do it?07:03
rbasaksazawal: you could add a script to /etc/rc0.d called S01killsazawalsscript which finds and sends your Python script a SIGINT if I understand your question correctly.07:14
rbasak(pressing Ctrl-C is the equivalent of sending SIGINT to the process)07:14
rbasakSee kill, signal(7), pkill, killall07:14
sazawalrbasak, yes that is what I need to do. Sending an interrupt signal to the python script would do it. Let me see the file /etc/rc0.d for a minute07:17
rbasaksazawal: note that if you're running the script in a terminal window in a graphical login session, then the session might kill the terminal window which may kill the Python script with a TERM first, so I'm not sure it'll work in all cases.07:29
=== arrrghhh is now known as arrrghhhAWAY
sazawalrbasak, yes I am running it in terminal window. Let me check if it works07:33
sazawalrbasak, great its working. I used kill -SIGINT <PID>07:35
sazawalnow I must write a script in /etc/rc0.d. So all the scripts in this directory are executed when system is shutdown/rebooted?07:36
rbasakAll the Sxx scripts, in order.07:37
rbasakBut that might happen after your terminal window is killed by your graphical session exiting. You might be able to avoid that by running your terminal window in a screen.07:37
rbasakSpeaking of which, if you're using a terminal window and this is a graphical system, then it's not really an #ubuntu-server problem.07:37
sazawalrbasak, Well my terminal window was not killed when I did kill -SIGINT <PID>. I am using Guake terminal by the way.07:41
=== Ursinha is now known as Ursinha-afk
agu10^^How do I make my second IP address in linux respond to ping?08:28
Joel_re?08:28
Joel_reping it?08:28
agu10^^Joel_re, it doesn't answer08:33
Joel_retraceroute?08:34
Joel_reif its in the same broadcast domain arping08:34
agu10^^how do i set up eth1 after i already have eth0 ?08:35
jamespageagu10^^, you need to add an entry into /etc/network/interfaces08:36
agu10^^jamespage, should i add: auto eth1, iface eth1 inet dhcp ?08:38
agu10^^i already have that for eth008:38
jamespageagu10^^, if you have dhcp running on the network; then yes that should work08:39
jamespageagu10^^, this is helpful - https://help.ubuntu.com/12.04/serverguide/network-configuration.html#ip-addressing08:40
sazawalrbasak, The killscript is working but when I shut down the system, it doesn't. I think the guake terminal is killed before the python script. What to do now?08:53
Fudgehi does anyone know how to get a root prompt up live on an ubuntu server image please?09:03
riz0nI have Ubuntu Server with bind DNS. From my understanding, any time the "db" files for a zone are updated, bind9 has to be restarted. Is this completely neccessary? Is there an easier way to have bind9 automatically reload database files?09:04
rbasaksazawal: try #ubuntu. Not sure how much help you're going to get here as this is a server channel.09:16
rbasakriz0n: bind doesn't need to be restarted; it just has to be told to reload.09:17
sazawalrbasak, ok I will ask the question in #ubuntu channel. Thank you.09:18
riz0nrbasak: so let's say I have "john" on my host who has a domain.. john has created domain.com.db in his home directory and likewise I have included it in the bind configuration files. I do not want john to have sudo access to my host... what would be the appropriate way for john to tell bind to reload09:18
rbasakriz0n: you could give john access to run sudo to reload bind ONLY. But I don't think it's safe to give users access to write their own zone files at will.09:20
riz0nI trust him with his zone, in fact I created the zone file from a template and got it working for him. but his IP may change and he needs to be able to update it in the zone file accordingly so that he doesn't call me to do it.09:21
riz0nso what would i need to do to set up john to be able to reload bind in sudo only09:21
rbasakI don't recall. See the sudoers manpage - I think it has some examples at the bottom09:21
riz0nThanks, as some point maybe john can learn enough linux where I can trust him with full sudo access to my host (as I've known john for many years) but for now he just needs to be able to reload bind.. I'll check it out! Thanks for the info.09:24
rbasakriz0n: security concerns are things like, for example, what if john includes "$INCLUDE /etc/shadow" in his zone file? Then he might be able to read out your root password over DNS, for example. Unlikely because I assume bind doesn't run as root and /etc/shadow won't be valid zone file syntax, but hopefully you can see the kind of area where security holes might exist. It isn't realistically possible to consider every single combination, so the only r09:25
riz0njohn knows I would be at his house with a baseball bat to give him a severe beating since he lives across town09:26
riz0nWhat would be a better way of john being able to manage his dns records on my server?09:26
rbasakriz0n: ah - but if you trust john, then you're OK. Just understand what you're potentially giving him access to. Also, consider that if his access is compromised in some way, then others could use the exploit as a crack to open wider. I've seen that kind of thing happen before - an innocent person had more access that he needed, and that was exploited.09:27
riz0nAbsolutely. john has password which meets complexity requirements.09:28
riz0njohn just has no dns for his domain, and likewise i am assisting him with setting it up. I am hoping its a relationship where riz0n can get some "backup dns" off john's server for the favor :)09:29
rbasakriz0n: if it's just one IP address, then have John store that in a file in some common place that the bind user can read. Then write a script that checks that opens the file, checks that the opened file is one that john owns and is a regular file, and parse out the IP, permitting only the exact form of an IP, and writes out his zone file from a template with that IP replaced, and then reloads bind. Then give john access to sudo run that script as the09:29
rbasakThat's a reasonably secure way to do it. But of course security depends on writing that script securely.09:30
rbasak(and that in itself is a risk; of course running a server is a risk. It's wherever you consider the appropriate trade-off to be)09:30
riz0nyeah, and taking the time to write the actual script too..09:30
riz0nI have no doubts that john would really do anything to compromise the host, being that it really doesn't host anything of any value (it is really more for educational use anyways)09:31
riz0nbut i do understand the security concerns.. i have fingered users i created and discovered they were SSH'ing in ... come to find out they have passwords like "test123" or something simple. The compromised accounts were dealt with accordingly, mostly by deletion. So all passwords must now meet complexity requirements to exist on this host from now on :)09:33
rbasakIf possible, I'd go further and require key only authentication09:33
rbasakI understand that's not always possible. But even Windows clients can use keys.09:33
riz0nWell I use PuTTY09:34
riz0nAnd WinSCP.. that's the only ways I manage the server09:34
rbasakPuTTY does support it. There's Pageant (?) that it integrates with.09:34
riz0nI may have to check into that. It is something I have thought of.. and store said key in a safe place.09:35
riz0nPush comes to shove I always have the console I can login to. :)09:35
rbasakKeys are randomly generated, so they can't really be guessed (if they're big enough). Only compromised. That's still a big step.09:35
rbasakI'm looking forward to *proper* 2-factor auth. Upstream openssh have it in their repo. Not sure if they've released it yet.09:35
riz0nThis Linux server has really been a great learning tool. Especially learning how to maintain apache, write php, and manage a mysql database.. it has been online since 8.04 in 2008 :)09:37
* rbasak should retire his 8.04 server at some point :-/09:37
riz0nI have kept it up to date :)09:37
riz0nI am running latest LTS09:37
riz0nbut yes it really needs retiring09:38
riz0nI've replaced the actual "server" a couple of times with upgraded hardware but kept the same disk... same disk running 24/7 for 5 years... yep time for a replacement09:38
riz0ni'm thinking... AMD 8-core/8-GB w/ 3 500GB SATA RAID5... I get Microsoft R2 through Software Alliance. I really want to dive into virtualizing this Linux server for long-term use09:39
riz0nLet me clarify.. Windows 2008 Datacenter R209:41
riz0nGuess you can say that's one benefit of going to college. :)09:41
mardraumhyper v is free, man09:41
riz0nYeah I know hyperv is free, but there are other plans in place for the R2... want to be able to run both virtually, along with Windows 7 in a virtual machine as a "cloud computer" ... all under one roof09:42
riz0nWe use it in class, and the more I can do / accomplish at home from a "lab component" side of things.. the less I have to travel to campus to use their crap computers :)09:43
riz0nplus 'john' and i are discussing setting up exact configurations, with a VPN tunnel connecting servers together, to allow our web servers to have immediate replication... to test disaster recovery scenarios09:45
riz0nbut it will be a while before we can do the tunnels and stuff... we are waiting for the telco/cable provider to finish their upgrades so we can get Fiber09:47
riz0nwe also have 'jack' in denver... who will also upgrade to the necessary telco line when appropriate, who will also be in on this project.. the plan is to have a data contingency/disaster recovery plan in place where all the servers are replicating all data (so if john updates a file on his web site in his home folder, it automatically goes everywhere) or if jack gets email.. all servers09:55
riz0nhave a copy.. The plan is to be able to simulate an earthquake scenario (or some other major disaster) which would render Server A inoperable, but all other servers are online and can pick up the load. Conceptually it sounds good on paper and we can sit and read about it in class all day long... but unless we can implement it and have it working, concepts are useless.09:55
riz0nThe plan is to have servers purchased at end of September, operational mid-october, ready to demonstrate by end of semester at the end of November. But till then, john and jack have a lot of linux learning to do before they play russian roulette with riz0n's server :P09:57
riz0nWe will be simulating a corporation in production environment, where there will be an Intranet site, on both Windows 2008 and Ubuntu respectively, both interfacing with MS-SQL and MySQL. We also will learn about Exchange, and mail sevices in Linux (which I am already familiar with).. Need to be able to do Remote Desktop Services and allow the "production computers" to run software from10:05
riz0nthe R2 server, mainly Outlook. I think we can get most the software we need to do this project through the Software Alliance and open-source. But we also will be using the resources to serve our personal needs, like hosting personal web pages and each of us having a virtualized Windows 7 desktop environment we can work from. Right now we are just waiting on the financial grants to go in10:05
riz0nthe bank. We're all excited about this project. At least I know I am! I just wish I had the funding to get a head start on having my end of things ready.10:05
Davieyjamespage: Hey, I think we want to keep blueprint assignees as ~ubuntu-server, but set the Drafter as the person on point for the blueprint.. no?12:09
jamespageDaviey, probably  :-)12:11
Davieyjamespage: We used the assignee field as way of tracking all of them previously.12:14
sander^workDo anyone know common rasons  lsyncd have delays when transfering files?12:48
sander^workI read default sync time is 15 seconds, but its taking way longer than that.12:49
jamespageDaviey, I re-jigged that blueprint in terms of ownership13:04
zuljamespage/yolanda: https://code.launchpad.net/~zulcss/swift/saucy-fix/+merge/16235213:30
jamespagezul, lgtm13:39
=== arrrghhhAWAY is now known as arrrghhh
zuljamespage:  thanks13:44
=== wedgwood_away is now known as wedgwood
resnocan someone tell me running ubuntu server 7.10 is bad. bad enough i should build a new server in its place. i just need to hear someone agree with my thoughts.14:24
genii-aroundresno: It's past End-Of-Life and not even a Long Term Support version.14:26
resnogenii-around: my thoughts exactly. it was just handed to me to add to my server, and i shriked when i saw it14:27
jacobwIt's pretty gutsy to still be running 7.10 on a server14:27
resnogutsy is putting it lightly14:27
resnoimo14:27
resnoi was just curious if i was the crazy one14:27
jacobwSee what I did there?14:27
genii-aroundjacobw: You punster you.14:27
jacobw:)14:28
resnoheh14:29
arrrghhhresno, upgrading that box will not be easy.14:29
arrrghhhi would definitely do a clean install14:29
resnoim only doing a clean install14:30
resnothe upgrade path would be not worth the hassle14:30
arrrghhhgood :)14:30
arrrghhhno.  and it would probably break terribly.14:31
resnoi just want people to tell me, i am a sane person14:31
resnofor wanting to blast it away14:31
genii-around!badident > trapni14:32
ubottutrapni, please see my private message14:32
arrrghhhnice there's a quick message for that haha14:32
arrrghhhso anyone around can help with my openvpn issue?  I run openvpn as a client on my server, so I have eth0 and tun0.  Some services, like apache or ssh I would rather not tunnel... Now I assume I will need to do some trickery with route and iptables, but can someone poke me in the right direction?14:33
genii-aroundtrapni: Apologies, I sent the wrong factoid.14:37
genii-around!doublejoin14:37
ubottuYour IRC client is completing NickServ authentication after joining channels, which triggers a fake quit and rejoin to apply your cloak and increases channel noise. Please see https://freenode.net/faq.shtml#nocloakonjoin and use SASL or another method to prevent this.14:37
genii-aroundThe one above was the intended.14:38
jacobwarrrghhh: route only the network the VPN provides through the tunnel14:39
arrrghhhjacobw, yes, I would like to know how to achieve this :)14:40
arrrghhhI'd like to route based on service or port, but I'm not sure this is possible14:41
Nafalloarrrghhh: not without a bunch of fiddling on the console ;-)14:44
Nafallonothing is impossible :-)14:44
jacobwarrrghhh: ip r add default via NOTVPNGATEWAY dev eth0; ip r add 192.168.0.0/24 dev tap014:44
jacobwarrrghhh: Where 192.168.0.0/24 is the network the VPN provides14:49
arrrghhhjacobw, how does this enable me to route based on port/service tho?  Sorry, I'm not sure what to do with your commands.14:51
jacobwarrrghhh: You can't route based on UDP/TCP port because routing is a function of IP, but you can NAT based on port and route from your NAT'd addresses differently to your not NAT'd addresses14:51
arrrghhhah, by marking packets?14:51
arrrghhhI think I was reading about this, I probably need to do some more... still over my head14:52
jacobwarrrghhh: You don't need to MARK, you can handle it all with NAT, but, you could MARK and it might make your rules more readable.14:53
arrrghhhhm.  do you have some stuff you suggest I read to learn more?14:55
jacobwarrrghhh: http://www.karlrupp.net/en/computer/nat_tutorial15:03
arrrghhhsweet, thank you!15:04
YoussefkHello, does anyone of you guys know if the reboot problem in juju has been fixed or not?15:29
rbasakYoussefk: I'm not sure what you're referring to. But if you can't get an answer here, try #juju.15:30
YoussefkWhen you set up an environment using juju, for example wordpress and mysql, when you reboot your system the environment refuses to start again and you have to do everything again15:32
Youssefkokay I'm gonna check #juju15:32
=== arrrghhh is now known as arrrghhhAWAY
=== smb` is now known as smb
HeavenstormI am using wpa_supplicant to establish a wireless connection on bootup. After it boots up it won't connect but all I have to do is enter dhclient wlan0 and it works. Does anyone know how to fix that?15:52
Heavenstorm(entering into the command line)15:52
GrueMasterHeavenstorm: You can probably add a line in /etc/network/interfaces to set wlan0 to auto dhcp.15:53
hallynhow are you starting wpasupplciant?  with a pre-up line in interfaces(5), or an upstart job?15:54
HeavenstormI have done that. I changed it to static to see if that would fix it.15:54
HeavenstormI have a pre-up line script15:54
HeavenstormSo I've tried it both ways15:55
hallynhm.  dunno.  (i do it by hand, ahven't tried with interfaces(5))15:56
hallynmight pastebin your interfaces file, someone might see something15:57
kantlivelongis there a way i can upgrade 10.04 to 12.04?15:58
HeavenstormThanks for your input on this. I'm not sure what interfaces(5) is. Is that the same thing as the /etc/network/interfaces file?15:58
sarnoldkantlivelong: look into do-release-upgrade(8)15:59
Heavenstorm(Or the thing that parses the file)15:59
Heavenstorm?15:59
GrueMasterHeavenstorm: That is the man page for interfaces.  "man interfaces".  Also, google found http://wiki.debian.org/WiFi/HowToUse15:59
kantlivelongsarnold: oh haha i just noticed the LTS option durr15:59
GrueMasterMight help15:59
markthomaskantlivelong: make a good backup first :)  If you use LVM, do an LVM snapshot.16:00
HeavenstormOkay thanks again16:00
kantlivelongmarkthomas: yup :)16:00
HeavenstormHere's a question (being new to linux) I see things like ifup(8), the command "ifup" usually isn't entered with the "(8)". What does that number mean?16:02
sarnoldHeavenstorm: that tells you which manual section contains documentation for that command or file16:02
sarnoldHeavenstorm: man man describes the different sections; 1 for user commands, 8 for admin commands, 2 for system calls, 3 for library calls..16:03
HeavenstormThanks for pointing that out. I'm reading man man now16:04
sarnoldHeavenstorm: you can get different commands or syscalls; check out the difference between 'man 1 reboot' and 'man 2 reboot'16:04
sarnolderr, that'd be man 8 reboot and man 2 reboot   :)16:04
HeavenstormI get it now16:06
=== Ursinha-afk is now known as Ursinha
=== arrrghhhAWAY is now known as arrrghhh
jamespagezul, https://code.launchpad.net/~james-page/cinder/havana-pep8-deps/+merge/16230916:29
zuljamespage:  i dont think we need the -v either16:30
jamespagezul, OK - fixing that now16:32
zulcool16:32
HeavenstormIf I have set my interface (wlan0) to static why would dhclient have any effect on it?16:37
jamespagezul: for some reason alot of git poll processed got stacked in the lab - I killed them and it freed stuff up16:38
zuljamespage:  cool16:38
psivaajamespage: hallyn: The lxc tests on saucy have http://pastebin.ubuntu.com/5629624/ in https://jenkins.qa.ubuntu.com/view/Saucy/view/Smoke%20Testing/job/saucy-server-amd64-smoke-lxc/4/16:40
HeavenstormThank you everyone for your help. It's still mysterious but I have some new ideas now.16:40
psivaajamespage: hallyn: whenever you have time to look at ^16:40
zuljamespage:  +116:41
=== arrrghhh is now known as arrrghhhAWAY
=== arrrghhhAWAY is now known as arrrghhh
lwizardlI have a problem with comcast blocking a smtp server on port 25 on my service. Would swapping the Arris modem/router they gave me with my own bought modem stop that block? since I was reading the Arris modem allows them to block ports on the network17:08
sarnoldlwizardl: no, that does not help.17:10
patdk-wkI have comcast, and they don't block port 2517:13
patdk-wkthe question is, did you sign up for a business class service?17:13
lwizardlpatdk-lap: not yet I still have to wait a few months for my current bs service to expire. then I can get it as business class17:14
hallynpsivaa: looking17:15
hallynpsivaa: oh, so that's not an error in the tests, but the bzr package importer...  i'll need to resolve manually17:21
psivaahallyn: ack, thank you17:21
GrueMasterHas anyone figured out why 12.04.2 server (amd64) boots to tty7 instead of tty1 by default?17:22
arrrghhhGrueMaster, I always ssh to the box... never really noticed.17:26
parallel21GreuMaster: from what I understand 1 through 6 is reserved to text mode.17:28
parallel21GrueMaster: but this look interesting… https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/69565817:29
uvirtbotLaunchpad bug 695658 in grub2 "grub2 configuration has vt.handoff=7 even when X11 is not installed (dup-of: 700686)" [Medium,Triaged]17:29
uvirtbotLaunchpad bug 700686 in grub2 "unreadable black-on-black text with details plugin" [High,Fix released]17:29
GrueMasterparallel21: This doesn't happen in 12.04, but does after updating to 12.04.2 (or installing 12.04.2 from scratch), suggesting a regression.17:37
GrueMasterI really don't have time to be parsing and debugging Ubuntu bugs like this (not that it mattered when that was my job).17:38
Arrickhey all, I am having issues getting vsftpd to allow users to connect (Internal web site) so that they can upload/download data from our 12.04 server... I'm reading the documentaiton here: https://help.ubuntu.com/12.04/serverguide/ftp-server.html#vsftpd-ftp-server-installation however, I cant connect to it for some reason.17:50
noxsServicetag17:53
Arrickhuh?17:54
ArrickIdleOne, good afternoon.17:54
hallynpsivaa: I think it should be fixed, please re-try the test when you get a chance18:02
psivaahallyn: the lxc tests have now passed, thanks19:13
hallynpsivaa: awesome19:13
psivaa:)19:14
adam_gDaviey, any chance you could take a look at the python-glanceclient package in queue for raring-proposed ?19:34
Davieyadam_g: Potentially19:39
adam_gDaviey, nothing major, just a cherry-picked patch19:39
Davieyadam_g: Are you wanting to upload it to the CA aswell?19:42
adam_gDaviey, after its been SRU'd to raring, yes19:42
phunyguyquick question.... I have a router that is ubuntu server, and there are several subnets attached that can all talk to each other freely.  Is there any (easy) way to get it to bounce multicast packets between networks? It's not a large network, so I am not worried about broadcast traffic becoming an issue.  I have installed pimd, but Others say it "just works", however I cannot get it to work.  Any ideas?19:47
phunyguyI also read something about mangling the broadcast packets to have a ttl of +119:47
phunyguywhich I did, no luck.19:47
adam_gDaviey, thanks19:58
=== Ursinha is now known as Ursinha-afk
=== Ursinha-afk is now known as Ursinha
=== smb` is now known as smb
=== Ursinha is now known as Ursinha-afk
=== Ursinha-afk is now known as Ursinha
HeavenstormI am using ubuntu 12.10LTS and have been able to get my wireless interface up to the point that all I have to do is type in "dhclient" when it's booted. But how can I make it so it works without having to do that?22:15
sarnoldHeavenstorm: 12.04 LTS? Or 12.10? those are different things..22:17
Hitiekmy /boot is full. I'm trying to apt-get remove some of the old linux-image-* packages, but I can't because apt-get complains with "linux-image-server : Depends: linux-image-3.2.0-40-generic but it is not going to be installed". Anyone have a suggestion how I get around this?22:17
HeavenstormYou're right I'm using 12.04.2 LTS22:18
HeavenstormI've been working on this issue for weeks. So far I'm using wpa supplicant and calling it from within the interfaces config22:20
sarnoldHitiek: you could delete a file or two by hand.. just make sure you remove files you intend to remove via apt shortly22:24
HeavenstormIt is called from a pre-up command and calls the wpa config file. The device is associated and the configuration data is there to give it a static ip.22:24
HeavenstormHonestly I don't understand why I need to run dhclient for that reason22:25
HeavenstormDo I need to somehow run dhclient during the bootup sequence or is there some obvious step I could be missing?22:26
genii-aroundHeavenstorm: Maybe you need a post-up command calling the dhclient22:31
HeavenstormProblem with that is ifup won't work until dhclient is running. Will that affect it?22:32
HeavenstormI guess it won't hurt to try22:33
HeavenstormRight now I just tried it with a new pre-up command.22:34
HeavenstormIt worked!22:34
HeavenstormBut the ip address isn't want I set it to.22:34
HeavenstormI will change the order of the config file to declare it after the pre and post-ups and see what happens22:37
HeavenstormDo you know how to make it stop waiting for the network configuration? It always seems to time out and makes bootup a major drag.22:41
sarnoldHeavenstorm: are you confident you ca'nt just poke a hole in your dhcp for a static ip for your server? servers on dhcp are .. odd.22:42
HeavenstormI'm trying to make it a static ip. For whatever reason it won't work unless I run dhclient. It is the wireless side though and it goes to a wireless in-home router connected to the Internet.22:43
riz0nI have my DD-WRT set to give my server a "static IP" through DHCP... works beautifully.22:43
HeavenstormThe wired part is going to another router that will be an access point for my brother's kids with a transparent proxy used for a content filter and monitoring device.22:44
HeavenstormAt least that is my plans for it. Now I'm just trying to get internet into it22:44
HeavenstormI just found out that the order in which things are declared in the config file seems to matter. It's all hosed now cause I switched things up. I hate cut and paste in nano!22:45
riz0nHeavenstorm: use WinSCP and edit the files that way22:46
GrueMasterHeavenstorm: Use vim.  It is easier.22:46
HeavenstormYes, vim, if I only had the patience to learn it.22:46
GrueMasterriz0n: In what universe is editing linux/unix config files on a Windows system easier?22:47
riz0nwell when your linux system has no keyboard, mouse, or monitor attached, they got to be edited somehow :)22:47
HeavenstormGood point but honestly I'd rather learn vim!22:48
GrueMasterssh->vim22:48
patdk-laprsh! :)22:48
sarnoldpatdk-lap :)22:49
patdk-lapoh wait, we are talking about cat22:49
patdk-lapI'm glad I got to toss the server that *required* rsh access last year22:49
sarnoldpatdk-lap: holy cow22:49
sarnoldpatdk-lap: it's been over a decade since I've used a system that even supported rsh.. maybe even 15?22:50
patdk-lapI had never used rsh ever, till that system22:50
patdk-lapI had used telnet and ssh, but never before rsh22:51
patdk-lapI did restrict rsh access to a single ip, but needed to use it to setup user quotas22:51
HeavenstormLater all I think I'm onto something. Thanks for your input.22:54
=== Ursinha is now known as Ursinha-afk

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!