jparkton | anyone know a good server vps with bind, irc, I can host other sites off for about $20/month? | 01:08 |
---|---|---|
jparkton | and have root or at least sudo ? | 01:09 |
jrwren | digital ocean? | 01:25 |
jparkton | maybeh | 01:29 |
=== silverf0x is now known as zz_silverf0x | ||
Beatstreet | what the best place to look to see if I can tell why a sever keeps locking up/going offline? | 02:18 |
genii | Beatstreet: Lots of logs to check in /var/log ... most usually: syslog, faillog, dmesg, kern.log and then the logs for the repective things running on the server are in that dir as well. The usual ones to check would be auth.log, apache error and access logs, mail logs, and so on | 02:24 |
Beatstreet | thanks | 02:24 |
genii | Beatstreet: The most usual reason is brute-force password attempts at ssh, the auth.log will show those.Another is automated probes for known exploits in web pages, those are usually found in the /var/log/apache2/error.log | 02:31 |
Beatstreet | thanks genii | 02:45 |
genii | Beatstreet: You're welcome :) | 02:46 |
Beatstreet | Think I have a hdd going bad but smartmomtools not seeing it but every time the box locks up when it comes back a raid device is resyncing | 02:47 |
genii | Beatstreet: If it's hardware failure, the dmesg is where it will normally show | 02:47 |
Beatstreet | it completes but a few hours later box goes offline | 02:48 |
Beatstreet | ok | 02:48 |
=== freeflying is now known as freeflying_away | ||
joossee | ersi? | 03:58 |
=== freeflying_away is now known as freeflying | ||
babinlonston | Hi All , What is Reverse proxy and what the use of it , in which environment i need it ? and when i need to configure a reverse proxy , How to do it in ubuntu ? | 04:50 |
=== thumper is now known as thumper-afk | ||
=== stooj_ is now known as stooj | ||
BradTN | Can anyone here please help with a Software raid 5 issue? | 06:15 |
BradTN | going on 7 hours in standstill | 06:15 |
=== alex88 is now known as owl | ||
=== owl is now known as alex88 | ||
=== freeflying is now known as freeflying_away | ||
=== freeflying_away is now known as freeflying | ||
=== zz_Gurkenmaster is now known as Gurkenmaster | ||
=== Ursinha_ is now known as Ursinha | ||
=== gary_poster|away is now known as gary_poster | ||
=== zz_silverf0x is now known as silverf0x | ||
=== gfrog_ is now known as gfrog | ||
=== freeflying is now known as freeflying_away | ||
=== matsubara is now known as matsubara-lunch | ||
psivaa | hallyn_: hello :), trusty lxc smoke tests are hanging halfway down the tests. reported bug #1247860 with as much information as i could add | 14:37 |
psivaa | the VM where the tests are running is active at present if you'd like more information | 14:37 |
psivaa | xnox: ^ if you'd like to help :) | 14:37 |
psivaa | https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1247860 | 14:38 |
xnox | hallyn_: stgraber ^^^ lxc smoke-test hangs, see above. | 14:45 |
hallyn_ | yea looking | 14:47 |
hallyn_ | nothing helpful in logs | 14:47 |
hallyn_ | ubuntu-cloudimg-query trusty - confused by argument trusty :( | 14:48 |
hallyn_ | (waiting for a trusty vm to install locally) | 14:59 |
AtuM | I have a really weird problem... while the server boots up I loose VGA signal, connection to the server via ssh is impossible, but the network comes up - it responds to ping. I can only get to the console via the recovery mode.. I have no idea where to start looking - I'm not that used to upstart and Plymouthd | 15:12 |
AtuM | This happened after I mistakenly unplugged the system drive and then restarted the machine.. fsck reports all fs are clean even after forced check. | 15:13 |
joossee | atum; where in the bootprocess do you lose VGA? | 15:29 |
joossee | /when | 15:29 |
AtuM | joossee, I think it's after the fsck completes.. | 15:30 |
joossee | black screen? | 15:30 |
AtuM | joossee, I can't really tell anything more since I see nothing and can't access the server | 15:30 |
AtuM | joossee, "no signal" even | 15:30 |
joossee | atum; i had thisproblem as well but related to a video card not a HDD... hrmmm\ | 15:30 |
joossee | isthe volume in question HW raid ? | 15:31 |
AtuM | joossee, I've tried plugging in a different monitor | 15:31 |
AtuM | joossee, no.. it's not mirrored.. the root fs is on a single ssd drive | 15:32 |
joossee | atum; maybe im misundestanding here (im new)but you get the GRUb selection screen yes? | 15:34 |
AtuM | there's one more fact I've spotted.. when in recovery mode - whatever I select from the menu (other than open shell as root), I get a plymouthd error when trying to cancel whatever is running - since nothing really completes | 15:34 |
AtuM | joossee, yes.. grub shows up.. then a part of boot process also goes well.. then "blank" | 15:35 |
joossee | ... ok this problem isabovemy pay grade... someonemore experienced might offermore... my only suggestion is google "nomodeset" and "quiet splash" in grub. try it and see if you can get to CLI | 15:35 |
AtuM | joossee, I can even go to advanced menu and select recovery mode to get to the console.. but if I select "boot normal" it does the same thing | 15:36 |
AtuM | joossee, thanks! | 15:36 |
wagonboi | I keep getting locked out from my ubuntu box by Fail2ban and denyhosts, but I can't whitelist my IP because it changes about every day. What free DNS service can i set up on my windows machine so that I can set it's address in the whitelist and not be blocked anymore? | 15:37 |
joossee | wagonboi, who or what is assigning the IP? | 15:38 |
wagonboi | joossee, I use my phone and tether my Windows machine to it. My phone's IP resets about every day. When I try to SSH into my ubuntu server, it sometimes blocks my (phone's IP). | 15:38 |
joossee | wagonboi, wow.. whos your cell provider that that actually works well?? | 15:43 |
joossee | wagonboi, you are going to have to disable your whitelisting scenario for this too work i think | 15:43 |
wagonboi | T-Mobile, but they want me to pay for tethering which sucks. I have to use SSH tunneling to hide my desktop's user agent in order to browse the internet | 15:44 |
wagonboi | this is why getting to my ubuntu box is so important :) | 15:45 |
joossee | wagonboi, just switch to android and you can do that for free after rooting | 15:45 |
wagonboi | nope, they check the user agent on internet traffic | 15:45 |
joossee | wagonboi, you mean a webpbrowsers user agent? | 15:45 |
wagonboi | if they detect a windows machine, they intercept the traffic and send you to an upsell page. yes, web browser UA | 15:45 |
joossee | wagonboi, have you tired using firefoxplus the useragent spoofing plugin? | 15:46 |
wagonboi | yes, I use it but I want to watch Amazon Prime videos which is not compatible with user agent spoofing | 15:46 |
joossee | wagonboi, what OS is on the phone? | 15:46 |
joossee | moreto the point:can younot use a VPn to your home network to solve this problem? | 15:48 |
wagonboi | Android | 15:48 |
wagonboi | I want to tunnel traffic on a Per-application basis, not all of my traffic, therefore SSH tunneling is ideal | 15:48 |
joossee | wagonboi, like put tomatoUSB on your rotuer and have it act as a VPN server then use android to connect ot it? | 15:48 |
joossee | oi c | 15:48 |
joossee | hrmmm | 15:49 |
wagonboi | I just need a way to be whitelisted on my ubuntu box, no matter what iP I have | 15:49 |
joossee | suggestion: https://play.google.com/store/apps/details?id=com.dyndns&hl=en | 15:49 |
joossee | can you whitelist based on domains or just IP's? | 15:50 |
joossee | (i thinkassigning A DYNMAIC dns to a cell phone is not gonna work anyways but... | 15:50 |
wagonboi | I just installed NO-IP, I just hope fail2ban works witha DNS hostname | 15:51 |
=== gary_poster is now known as gary_poster|away | ||
=== gary_poster|away is now known as gary_poster | ||
wagonboi | ok I fixed it. I set my NO-IP's account DNS hostname as whitelisted in fail2ban and removed Denyhosts since it kept blocking my IP. Fail2ban already monitors SSH brute force attacks so denyhosts is redundant IMO | 16:09 |
wagonboi | not to mention removing an IP from denyhosts requires editing 5+ files!! http://bitmonger.blogspot.com/2013/01/remove-delete-ip-address-from-denyhosts.html | 16:09 |
joossee | wagonboi, awesome | 16:14 |
=== Ursinha is now known as Ursinha-afk | ||
=== Ursinha-afk is now known as Ursinha | ||
hallyn_ | psivaa: my local run of lp:~serge-hallyn/+junk/lxc-test succeeded on trusty. | 16:33 |
psivaa | hallyn_: as i said in the bug it did to me too, but hangs in the precise vm host | 16:34 |
hallyn_ | i'm on trusty vm on precise host | 16:35 |
hallyn_ | psivaa: oh wait. trusty kernel does not yet have full apparmor support | 16:38 |
hallyn_ | jjohansen: ^ correct? | 16:38 |
hallyn_ | psivaa: in which case, just disable the lxc tests for now | 16:38 |
tyhicks | hallyn_: that's correct | 16:39 |
hallyn_ | tyhicks: thx | 16:39 |
tyhicks | hallyn_: he's in the process of getting a pull request together but I don't see anything on the kernel-team list yet | 16:39 |
hallyn_ | ok. the failure may have nothing to do with that, but some of the tests explicitly tset for apparmor so i just don't see any point running them. | 16:40 |
hallyn_ | marked the bug invalid - thx | 16:40 |
=== matsubara-lunch is now known as matsubara | ||
psivaa | hallyn_: ack, will do | 16:49 |
=== sieb is now known as Sieb | ||
=== Ursinha-afk is now known as Ursinha | ||
=== LargePrime is now known as Guest83422 | ||
psivaa | hallyn_: the tests are disabled now, how do i know when it could get enabled? | 17:09 |
hallyn_ | psivaa: well, technically when you find that /sys/kernel/security/apparmor//features/mount/ exists | 17:12 |
souliaq | Hi, I want to autostart xinit, and after that autostart and sdl game in ubuntu-server, how can I achieve that? | 17:28 |
=== LargePrime is now known as Guest26583 | ||
=== empty is now known as davidbowlby | ||
joossee | man this channel really lacks the jocularity of #ubuntu lol | 18:55 |
jkitchen | loooooool | 18:56 |
npc_ | Hi, i'm not have a lot experince with ubuntu server. How simplest way i can create backup ? | 19:08 |
joossee | npc_, https://help.ubuntu.com/community/BackupYourSystem | 19:09 |
joossee | npc_, start there and comeback as you encounter problems | 19:09 |
npc_ | joossee, i saw this when i googled, but which tool do you recommend ? | 19:11 |
joossee | i recommend raid level 5 | 19:12 |
joossee | but that is hardware | 19:12 |
joossee | so youreon your own! | 19:12 |
sarnold | raid is not backup | 19:12 |
jkitchen | raid is just a way of kicking that MTBF a bit further down the road | 19:13 |
npc_ | we have VPS server, and i need update system, but before update i want create backup | 19:14 |
jkitchen | it depends on what you're trying to back up | 19:15 |
jkitchen | and how much downtime you can absorb | 19:15 |
jkitchen | for simple, you could just use tar and create a tarball of your important files and such | 19:16 |
jkitchen | but if you're looking at a database server and you have a requirement of low or no downtime... it's a different story | 19:16 |
joossee | sarnold, semantics! | 19:17 |
npc_ | for now some downtime is'n big problem :) | 19:17 |
jkitchen | this reminds me I need to submit my talk for SCaLE | 19:18 |
jkitchen | I think my system design philosophy needs to reach a broader audience | 19:18 |
sarnold | joossee: don't get me wrong, raid is a decent thing to do :) but it can't help you against rm -rf / or malicious intrusion or fire. | 19:18 |
jkitchen | in my environment upgrading the OS is a trivial thing. I just change the OS and then reboot the machine | 19:18 |
sarnold | jkitchen: look into kexec you might even be able to avoid reboots | 19:19 |
jkitchen | sarnold: no, the reboot actually wipes/reinstalls the machine | 19:19 |
npc_ | i need backup for LAMP + server configuration | 19:19 |
joossee | sarnold, agreed | 19:19 |
sarnold | jkitchen: ah, pxe booting? | 19:19 |
jkitchen | sarnold: yea | 19:20 |
jkitchen | pxe + foreman + puppet = win. | 19:20 |
jkitchen | I can deploy a new database server by turning it on. | 19:20 |
jkitchen | the next round of servers we deploy will just be fully rack-n-stack by remote hands | 19:20 |
sarnold | jkitchen: you might like to investigate juju and maas :) | 19:20 |
jkitchen | ah. | 19:20 |
jkitchen | perhaps | 19:20 |
jkitchen | I'm doing pretty well with puppet | 19:21 |
sarnold | you can use your puppet recipes in juju charms | 19:21 |
jkitchen | the only real problem I ave right now is bootstrapping the environment | 19:21 |
sarnold | and let juju and maas handle machine provisioning | 19:21 |
jkitchen | some day, perhaps | 19:21 |
jkitchen | one thing at a time | 19:21 |
jkitchen | today I'm trying to tackle this godawful san | 19:22 |
joossee | anyone here using a TPLINK WDN4800 ? | 19:22 |
jkitchen | not I. | 19:23 |
jkitchen | my servers are all wired and my desktops are all macbooks :) | 19:23 |
jkitchen | npc_: so, you're gonna want to back up things in /etc/apache2, for starters | 19:24 |
joossee | bro id love to wire this server but i cant have two 100' cables running thru the kitchen so... if i can get close to 150MBPS over 5ghz ill be very happy | 19:24 |
jkitchen | assuming you're using the standard ubuntu way of doing apache bits | 19:24 |
jkitchen | npc_: then, you'll want to shut down your database and back that up. if it's mysql, it's /var/lib/mysql (right?) | 19:25 |
jkitchen | postgresql is /var/lib/postgresql | 19:25 |
jkitchen | back up any code you have that you can't redeploy | 19:25 |
npc_ | yes apache, mysql | 19:25 |
jkitchen | if you don't have a deploy method for your code, you need to do that as well, but that can be done later. | 19:25 |
jkitchen | my philosophy is the only thing I should need to keep from a server is any databases or files which can't be rebuilt. | 19:26 |
jkitchen | so my /var/lib/postgresql /var/lib/mongo /var/lib/redis and /srv/www/uploads are on separate volumes which get brought in by puppet after the machine boots | 19:26 |
jkitchen | everything else is disposable | 19:26 |
jkitchen | code is deployed from git | 19:26 |
=== thumper-afk is now known as thumper | ||
npc_ | what about this https://help.ubuntu.com/10.04/serverguide/backup-shellscripts.html ? | 19:27 |
jkitchen | npc_: do you have an nfs mount you can put the backups on? | 19:28 |
jkitchen | really you need to identify *what* you need to back up and then it's as simple as making a tar of that and moving it off the server | 19:29 |
jkitchen | don't try to focus on a tool, because really how is not nearly as important as *what* | 19:30 |
npc_ | i just want have current system configuration, if something goes wrong | 19:31 |
jkitchen | npc_: then really the easiest and most reliable way to do that is instead of rebuilding your existing machine, make a new one and migrate to it | 19:32 |
jkitchen | you mentioned VPS, so this should be pretty easy. if you're with bitfolk I know they'll give you a temporary free vps to do exactly that | 19:32 |
jkitchen | other places might not, but really, whatever the cost is should be fine to absorb | 19:32 |
npc_ | we have VPS on mediatemple.net, we can take backup service for 20$/month. I planning think about this later. I thought there is simplest way with terminal create all system backup | 19:36 |
Corey | npc_: Oh, you mean the GoDaddy company? :-) | 19:37 |
Corey | jkitchen: You're everywhere. | 19:37 |
jkitchen | Corey: are you calling me fat? | 19:39 |
Corey | jkitchen: You're the center of my ever expanding universe. It matches your ever expanding waistline. :-) | 19:39 |
jkitchen | <3 | 19:39 |
jkitchen | I'm working on the waistline thing. | 19:39 |
jkitchen | #c25k week 4 starts tonight. | 19:40 |
jkitchen | 16 minutes of intervals :( | 19:40 |
jkitchen | almost double what week 3 had me doing | 19:40 |
jkitchen | npc_: there are plenty of simple ways | 19:42 |
jkitchen | but they may not be the best way | 19:42 |
jkitchen | I really do think you'll be way better off just migrating to a new server rather than trying to rebuild your existing one | 19:42 |
jkitchen | I think that will end in way more pain and time and money expenditure than just having another box for a month | 19:43 |
jkitchen | it'll also allow you to iron out wrinkles before you take the downtime plunge | 19:43 |
jkitchen | there's a reason companies use staging environments | 19:43 |
jkitchen | I'm simply trying to keep you from shooting your foot completely off :) | 19:44 |
=== Ursinha-afk is now known as Ursinha | ||
ses1984 | hi, i have been really confused about interactive/non interactive environment variables all day, been reading and testing things all day and feel like i'm not learning anything | 21:12 |
ses1984 | i'm trying to serve an application with apache mod_wsgi | 21:12 |
ses1984 | the user www-data is the user that's running the apache processes, so i tried to set env vars for that user, to be used in the application | 21:13 |
ses1984 | it wasn't working, and i think the reason for that is that i was setting interactive environment variables, but apache is running non-interactive | 21:13 |
ses1984 | in other words if i'm logged in as www-data at a bash prompt, i see all the env vars that i would expect, but if i try to get that same info through apache, i see a totally different, much smaller list of env vars | 21:14 |
ses1984 | presumably because when apache starts, it's non-interactive, therefore all the env vars i set that only apply to interactive mode will not be set in that context | 21:15 |
ses1984 | so, how can i set env vars so that they are availble to applications served through apache | 21:15 |
=== Gurkenmaster is now known as zz_Gurkenmaster | ||
=== Ursinha-afk is now known as Ursinha | ||
=== rockets is now known as zastern_ | ||
=== zastern_ is now known as zastern | ||
Rory | See, I know the answer. But people have no patience. | 23:13 |
=== Ursinha is now known as Ursinha-afk |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!