=== classix_ is now known as classix === Aww is now known as [[Aww]] === acrocity_ is now known as acrocity === thumper is now known as thumper-afk === MikaT_ is now known as MikaT === mrmist is now known as mist === thumper-afk is now known as thumper === thumper is now known as thumper-afk [07:46] I'm having some problems sending emails over ssmtp to google apps. All my emails bound with "DNS Error: Domain name not found" and I noticed that the from line reads "Received: from server.aplexpress.co.uk ([80.82.113.124])" [07:47] I have not set up server.aplexpress.co.uk. Any idea where this may have come from and how I configure it? (The computer name is "server" I believe) [07:50] MacroMan: does your ISP force use of a mail proxy server? === Guest30554 is now known as g0tcha === e_t__ is now known as e_t_ [08:30] morning folks! [08:37] Ah, just misconfigured ssmtp. Now all fixed. Sorry to waste anyones time. [08:44] melmoth, merged your ntp/ntpmaster changes - thanks! [08:44] look forward to the python rewrite [08:44] i m on it.. still a but puzzled with how charm helper works.. but i ll get there. [08:44] melmoth, I remember now - I wrote that charm when subordinates first landed as it was something simple to learn with [08:45] it s the first charm that made me understdood what a subordinate was. [08:45] hallyn_: jdstrand: jjohansen: sorry to bother you again, but bug #1197484 is still occurring and largely impacting almost all the saucy server smoke tests. Would greatly help if it gets looked at. thanks [08:45] Launchpad bug 1197484 in isc-dhcp "Connection requests to saucy server VMs from a precise host fail after fresh VM installs" [Undecided,New] https://launchpad.net/bugs/1197484 [09:00] adam_g, merged the hookenv branch - the other two still need a bit of work - see MP's for details. === prassel- is now known as prassel === thumper-afk is now known as thumper [09:28] jodh, is there a nice way to not run a specific command under upstart user sessions? [09:29] jodh, I've fixed a bug in openvswitch trunk in saucy for this (it assuming init == pid 1) [09:29] but I really don't want to have to backport it to 12.04 for SRU's [09:29] I've set up MX records in my bind9 configuration for google apps, but the google test tool is telling me that no mail exchanger has been found. The records are there if I do nslookup on my domain. [09:29] jamespage: can you give more details? not clear on what you're trying to do. [09:29] MacroMan, might just be a propagation delay [09:30] I'm not sure what could be wrong. They've been set since Saturday. [09:30] jodh, OK - openvswitch has its own monitor stuff which ensures its daemons keep running [09:30] Here's a pastie of my nslookup: http://pastie.org/8120520 [09:31] jodh, the test that verify that this all works ensures that the parent processes are set correctly when ovs is started up using this method [09:31] jodh, in trunk they used to check that the top level process was owned by init by detecting that the parent pid of the monitor daemon == 1 [09:31] jodh, I fixed that test with a workaround just to ensure that the daemon parent process was not that of the shell that spawned it [09:32] jodh, but I really don't want to backport that fix for an SRU [09:34] MacroMan: no A record for them [09:35] MacroMan: http://www.intodns.com/aplexpress.co.uk [09:36] mardraum, That tool says I have multiple A records for MX. [09:37] it says a what? [09:37] "It seems that all your MX records have the same IP(s): [09:37] There is no use on having multiple MX records pointing to the same ip." [09:37] Under "Duplicate MA A records" [09:37] MacroMan, can you resolve aspmx.l.google.com.aplexpress.co.uk ? [09:38] mardraum, That's odd. That's not what I've got set in my bind config [09:38] so fix it [09:38] add an A record for all the MX records you have [09:38] Thanks for pointing that out, I hadn't noticed. [09:39] jamespage: going back to the original question, the simplest test to detect if you're running under a Session Init is whether UPSTART_SESSION is set. [09:42] mardraum, Should I point the A record for "aspmx.l.google.com.aplexpress.co.uk" to the IP address of "ASPMX.L.GOOGLE.COM" which is what I have in my zone config? [09:42] to the IP of whatever machine should be receiving mail [09:43] OK thanks. Yes it'll be the IP of the aspmx address. [09:43] google probably have best practice docs about what to do, I don't speak for them [09:48] Just a sec. Should I have a period at the end of the MX record addresses? Is that why it's appending my domain after the MX record address? [09:50] Here is my config: http://pastie.org/8120563 [09:54] yes. [09:54] I don't mean to be rude, but why not go read some docs about bind? [09:56] mardraum, Sorry. I landed myself in some hot water and my company wasn't receiving any email and I needed to get it fixed quickly. Thank you very much for helping me. I've added periods at the end and now email is working. Thank you very, very much. [09:57] you probably could have fixed it a lot sooner by using google search and looking carefully at some example zone config files [09:57] panic and IRC don't go together well [10:08] mardraum, I know. It's working now though and a weight has been lifted. tbh, I'm a web dev that has taken on the task of setting up a new dedicated server, and I'm in a little over my head. [10:27] jodh, any ideas? [10:27] jamespage: my response above no good? [10:28] jodh, I might have dropped at that point in time [10:33] jodh, I can't see your response [10:33] 10:39 jamespage: going back to the original question, the simplest test [10:33] to detect if you're running under a Session Init is whether [10:33] UPSTART_SESSION is set. [10:33] 10:42 mardraum, Should I point t [11:15] Hello, guys! Need help with setting up passwordless ssh to remote server (EC2). I copied public key to the of authorized_keys file. But when connecting it keeps asking prompt for password. The problem is this is a production server and I can't lost connection to it due to my misconfiguration((( Tried almost every tutorial. Followed this trobu [11:15] *troubleshooting guide https://help.ubuntu.com/community/SSH/OpenSSH/Keys [11:15] But without success [11:25] geaden_: ssh -i @ [11:26] mardraum: thanks for reply. My key file is already in ssh-add -l… But I'll try, thanks [11:26] that's the way aws setup for you [11:27] anything else is you create a local keypair and copy the pub file to authorized_keys on the server [11:27] yes, this is default. But it was configured before me, to login by entering password. Now I need to authorise via key [11:28] mardraum: Yes, the problem is it seems my instance doesn't recognise my pub file in authorised keys, and prompt for password after [11:28] "authorized" you have to spell like an american [11:28] mardraum: Yes, sorry [11:28] did you check permissions? [11:29] use ssh -v for some extra info on the client. [11:29] mardraum: my current permissions are -rw------- 1 root root 947 Jul 5 09:12 authorized_keys [11:29] so you are trying to login as root? [11:30] is that permitted in sshd_config? [11:31] Yes PermitRootLogin yes [11:37] mardraum: with ssh -v I see following: https://www.friendpaste.com/tmYy4SMuVRHlKonGxcBUs [11:38] classy, expired cert [11:38] hmmm… on other servers I can connect with that public key [11:39] your paste site I mean. [11:39] agh… yes… Used this long time ago… I'll repaste [11:40] https://dpaste.de/RLO2W/ [11:40] ... ? [11:41] mardraum: what's wrong? [11:45] I havwe no idea [11:46] mardraum: ok. Anyway thanks for your time [11:50] mardraum: I found out and fix the issue. The problem is I wrote wrong pub key in authorized keys. Thanks [11:53] hi [11:53] psivaa: TBH, I'm starting to wonder whether you have hardware troubleson that machine. You've had weird lxc errors too a few weeks ago that I couldn't reproduce. [11:54] iam keep getting that error when trying to restart apache2 on my server please help>>>(/etc/init.d/apache2: 51: .: Can't open /etc/apache2/envvars) [11:54] help please [11:54] (asked one in the bug) [12:00] iam keep getting that error when trying to restart apache2 on my server please help>>>(/etc/init.d/apache2: 51: .: Can't open /etc/apache2/envvars) [12:08] hallyn_: replied to the question in the bug and there could possibly be issues in the host hw but in this instance, the issue is only with server VMs [12:09] our desktop smoke tests work fine and do not see this issue. they also run a number of VMs at a particular time [12:10] How difficult is it for a ubuntu-novice to install/properly configure VirtualBox on my ubuntuhost with guest ubuntu? I want to run basic file sharing/printer sharing/backup on the server and ONLY LAMP-stack on the guest VM. Is it pretty straight forward, or does it need a ton of planning? === psivaa is now known as psivaa-lunch === arrrghhhAWAY is now known as arrrghhh [12:24] psivaa-lunch: the desktop systems probably work around it by running network manager [12:47] Does any one know where the periodic process 'apt-get dist-upgrade' is comming from ? I've installed the server without automatic-updates. Ubuntu 12.04 LTS [12:54] zul, adam_g: http://people.canonical.com/~jamespage/ca/grizzly/ [12:54] jamespage: +1 === Guest64651 is now known as kirkland [13:06] hallyn_: ok, i'll try an install a precise host system to see if i can reproduce, but it would help me if someone is able to findout what that hw issue in the host === psivaa-lunch is now known as psivaa [13:12] hey everyone. I'm working on assembling a NUMA shared-memory HPC system, I'm trying to find documentation on how to properly compile a kernel to facilitate this.. I've found a few things already, but I'd like some more if anyone has any pointers [13:30] free99, there is no such thing as a numa shared-memory system [13:30] it is either shared memory, or it's numa === Malediction_ is now known as Malediction [13:38] psivaa: i'm installing a saucy server on a laptop so i can try to reproduce here. [13:39] hallyn_: ack, thank you [13:45] mysql is shutting down on its own. here is the error log https://gist.github.com/hadifarnoud/0d3366b33872aa7ac8ab any idea why? === Jikan is now known as Jikai [14:18] hadifarnoud, forget how to read? [14:18] InnoDB: mmap(137363456 bytes) failed [14:19] your out of memory === Jikai is now known as Jikan [14:59] smoser: hey ... do you know whats going on with our daily server dashboard? [15:00] asac, link? [15:00] https://jenkins.qa.ubuntu.com/view/ec2%20AMI%20Testing/view/Overview/ [15:00] that is all broken due to test harness failure / breakage [15:00] and clearly needs fixing [15:01] smoser: http://reports.qa.ubuntu.com/smokeng/saucy [15:01] guess thats the same [15:01] can you give me background? === dosaboy_ is now known as dosaboy [15:02] asac, https://jenkins.qa.ubuntu.com/view/ec2%20AMI%20Testing/view/Overview/job/raring-server-ec2-daily/73/ARCH=i386,REGION=us-east-1,STORAGE=ebs,TEST=simple-user-data,label=ubuntu-server-ec2-testing/console [15:03] smoser: so whats the background/reason/current way of thinking? will you fix it? [15:03] or who will? [15:03] i suspect that it is boto change that busted it.... not sure though. [15:04] boto? [15:04] psivaa: I will be looking at it. I still can't reproduce reliably, though once I say the error [15:04] i'll make sure that this is fixed by end of this week. [15:04] and, asac thanks for caring. [15:04] s/say/saw/ [15:07] jamespage, ^ [15:07] i think thi sis just a issue where console output of the instance through boto is now getting 'None' rather than empty string. [15:07] similar to https://bugs.launchpad.net/ubuntu/+source/euca2ools/+bug/1188602 [15:07] Launchpad bug 1188602 in euca2ools "get-console-output on instance fails with 'NoneType' object has no attribute 'replace'" [Low,Confirmed] [15:08] smoser, well that might be a cause for concern but I'm not sure that's what asac is pointing at [15:09] smoser: ok... in case it turns out it was caused by something done outside the server team, i want to know about what happened [15:09] thanks [15:09] jamespage: http://reports.qa.ubuntu.com/smokeng/ [15:10] jdstrand: thanks [15:11] thats the "official smoke test page" that i am looking at... thats the place i am tasked to get people (all !=server) to backout the stuff that caused the regression. unfortunately, server images completely failing started when i was on vacation, so i am just catching up :) [15:11] jamespage: ^^ [15:26] my supermicro server has 2x intel 82576 NICs. when i use them separately, i've no problem with them. when i use them as bond0 in active-backup setup, i get dropped packets (and eventually overruns). This is happening on 3 separate servers. as soon as i detach ethX device from bond0 and the ethX device is set to off, packet loss stops. it doesn't matter which of the two devices i detach. this happens in 12.04 with 3.5 kernel. i have not tes [15:27] smoser: is bug 1182265 fixed in saucy yet? [15:27] Launchpad bug 1182265 in cloud-init "omnibus installation support is broken" [High,Confirmed] https://launchpad.net/bugs/1182265 [15:28] i don't see e1000e loaded, so i suspect it's using igb module. how do i debug this? i've even compiled 3.9.9 kernel and i still get packet loss [15:29] SpamapS, no. but i will have that end of day i hope. [15:29] you're asking wrt SRU arent you. [15:30] smoser: I accepted it, just poking you to make sure you know it needs to be fixed. :) [15:30] SpamapS, thank you. i plan on doing an upload today. [15:31] thats cool. I might even have time to do SRU's again next week :) [15:32] asac, I see hallyn_ has been working on it - hallyn_ : bug 1197484 appears to be generating concern [15:32] Launchpad bug 1197484 in isc-dhcp "Connection requests to saucy server VMs from a precise host fail after fresh VM installs" [High,New] https://launchpad.net/bugs/1197484 [15:45] asac, trying to get myself into a position to help re-pro that issue [15:45] (slow network connection is getting in the way) [15:54] Searching repositories for a pastebin application seems to be yielding little result. Is pnopaste the one currently recommended? [15:59] jamespage: it seems this started on jul 2 [15:59] not sure what happened then [16:11] Anyone know where to tell smbd what network cards signify having a network connection and starting at boot? === baggar11_ is now known as baggar11 [16:12] I have Ubuntu installed as an openvz container, so the network adapter is listed as venet0 instead of eth0 [16:14] nvm, I found it. /etc/init/smbd.conf [16:28] jamespage, zul: https://code.launchpad.net/~yolanda.robla/ubuntu/saucy/openldap/server_banner/+merge/173544 [16:47] hallyn_: jdstrand: I was able to reproduce bug #1197484 on my local raring host. Added a comment in the bug with the log file [16:47] Launchpad bug 1197484 in isc-dhcp "Connection requests to saucy server VMs from a precise host fail after fresh VM installs" [High,New] https://launchpad.net/bugs/1197484 [16:58] hey... [16:58] just thought i'd mention. simplestreams was updated last week in saucy [16:58] now you can do [16:58] http://paste.ubuntu.com/5855907/ [16:59] utlemming, ^ [16:59] that forms the base of quite a reasonable ubuntu-cloudimg-query replacement [17:06] http://paste.ubuntu.com/5855927/ [17:06] prettier [17:20] smoser: you need purdy colors next [18:00] psivaa: grrr, the utah vm seems to be in a loop re-installing itself again and again [18:04] hallyn_: that's new, i have run the tests on raring and precise. === cmagina_away is now known as cmagina [18:17] jjohansen: sarnold: so if /sbin/dhclient has Urx perm to /sbin/dhclient-script, and /sbin/dhclient-script does #!/bin/bash, and we see a perm denied error message for profile=/sbin/dhclient, file=/bin/bash - did we expect after Urx of /sbin/dhclient-script that profile be called 'unconfined' ? [18:17] so it sounds like apparmor simply requires that the interpreter be allowed before a script to which we have Urx which uses that interpreter is allowed [18:17] I assume this is a change in apparmor kernel behavior - a reasonable one imo, [18:17] but it would require updates of profiles [18:19] hallyn_: I -expect- that the dhclient-script would execute as "unconfined", and /bin/bash would be executed without any apparmor intervention [18:20] hallyn_: (well, aa3.0 will make that name configurable, I think -- and it would still be a profile. long story there..) [18:20] hallyn_: but I _think_ psivaa's bug will require some dedicated time from john, everything I've seen looks like it should work fine [18:26] sarnold: ok, thanks. [18:47] adam_g: lp:~andreserl/charms/precise/glance/port ok, upgrade works. I guess i could use the restart_on_change thing and would be in a good state [18:56] SpamapS, ping [19:00] sarnold: for psivaa to become unstuck, we should be able to allow 'r' on /bin/bash though, right? [19:00] this bug seems familiar [19:01] * jdstrand hasn't been able to play with it yet, but will very soon [19:01] jdstrand: yes, but .. if the policy is busted enough that it doesn't work, then adding 'r' on bash doesn't necessarily seem like it'll work then, either. === funkyHat_ is now known as funkyHat [19:23] koolhead17: pong, wassup? [19:24] SpamapS, good thanks. [19:41] if i handed you a vm and said put it on your network, what would check on it before allowing it on your network? [19:42] ie) i received a preowned machine, and have no clue about the enviroment its coming to me from. no idea about running packages or configurations [19:42] Interesting. mod_log_sql makes pnopaste not run === koolhead11|away is now known as koolhead17 [19:46] you''re not giving enough information resno [19:47] lenios: i'm not sure what else to say. [19:47] why would you receive such a thing? [19:47] our previous server maintainer and development staff was outsourced. they are closing down, and i am in charge now. [19:48] multiple people had access, and installed any number of packages etc [19:49] we also had volunteers working on it at one time [19:50] i'd start by getting the list of installed packages and a backup of /etc and /var [19:50] but how comes you don't even know what's supposed to run on it? [19:51] nothing has been documented at all [19:51] and the admins have changed multiple hands [19:52] i know what's supposed to be on them... its the stuff that has crept in over time i fear [19:52] lenios: for example, on of the vms i was handed was running 7.10 [19:53] what's important is what service is supposed to be on it [19:54] you can list packages to get an idea of what should be installed, if no one installed manually in /usr/local, /opt or somewhere else [19:59] you can also run the vm within a internal network, and watch if services are listening on network with netstat -natp [19:59] ok. [19:59] i was told that one of the servers may have a vpn installed on it... [19:59] origins unknown [20:00] so, that'll catch some bits === [[Aww]] is now known as Aww [20:24] psivaa: hey, for bug #1197484, do you have the dhcpd/dnsmasq configuration for the server? [20:24] Launchpad bug 1197484 in isc-dhcp "Connection requests to saucy server VMs from a precise host fail after fresh VM installs" [High,New] https://launchpad.net/bugs/1197484 === Jikan is now known as Jikai [22:10] when I run /etc/init.d/hostname restart, it outputs this suggestion: [22:11] Since the script you are attempting to invoke has been converted to an Upstart job, you may also use the stop(8) and then start(8) utilities e.g. stop hostname ; start hostname. The restart(8) utility is also available. [22:11] but, when I attempt to run those commands I get [22:11] stop hostname => stop: Unknown instance: === jkyle_ is now known as jkyle === jkyle is now known as Guest8371 === Jikai is now known as Jikan [23:01] Hi all - installing Ubuntu Server for the first time right now =] [23:01] I'm really impressed with the installer so far - very easy to use and effective. no bloat. [23:08] Ah crap - looks like it won't boot with UEFI - anyone know how to work with that? [23:09] what does this mean? Warning: 91.207.138.61 giving up on port because retransmission cap hit (10). [23:09] nmap [23:09] never mind got it - had to flip UEFI to non-windows mode in BIOS [23:25] Cetrian: another approach is to use 12.04.2 LTS -- it includes a newer hardware enablement stack, to get UEFI support, newer X drivers, etc.: https://help.ubuntu.com/community/UEFI [23:32] ah no worries - it seemed to work when I selected Non-Windows UEFI [23:34] Cetrian: that's fine, you'll just use the original kernel, X, drivers. nothing wrong with that. :) [23:38] I don't understand the objection? Isn't 13.04 better than 12 in this respect? (Just asking :) ) [23:41] Cetrian: 13.04 will not be supported for the same length of time as 12.04 LTS; most people in here probably prefer the longer support to the newer software [23:42] Cetrian: but of course 13.04 is there if you're alright with a nine-month support window, or want to participate in developing what will eventually become 14.04 LTS :) [23:42] ah gotcha. This is mainly for a home server, so hopefully that won't matter, and I could just upgrade to 14 LTS when it comes out? [23:43] Cetrian: yes, with the caveat that the 'supported' upgrade path would be 13.04 -> 13.10 -> 14.04. (skipping versions generally seems to work, but isn't recommended.) [23:45] Ah, thanks sarnold! [23:46] I am really thrilled with this so far - I feel like a noob again ;) I've been a Windows Server guy for so long, and it really feels good to give the finger to MS and the NSA :) [23:46] I have a server with a GUI serving… nothing yet… but it still feels cool! ;) [23:47] :D [23:47] Full disk encryption, UEFI boot, loving it. Now I just need to decide if I want to keep using FlexRAID, or if I should go with some other software RAID. (Not looking to do hardware RAID at this stage) [23:57] Folks, what's the best location to place secret keys and configuration settings on an ubuntu server for a web application running as www-data to consume? I'm thinking an envdir folder that only root would be able to access when the server starts, but where would I place it? [23:58] akurilin2: /etc might be appropriate, it's supposed to contain configuration.. [23:59] sarnold, perfect, I was thinking /etc as well, just wondering if perhaps there was a folder in it that was meant for these situations