=== freeflying_away is now known as freeflying | ||
=== Ursinha-afk is now known as Ursinha | ||
=== Ursinha is now known as Ursinha-afk | ||
michele2 | hi there | 00:39 |
---|---|---|
michele2 | hi there | 00:40 |
sarnold | michele2: hello; note that irc tends to be quiet unless there's something specific to discuss. :) | 00:40 |
=== Ursinha-afk is now known as Ursinha | ||
=== kevireillyy is now known as kevireilly | ||
=== peter is now known as Guest8108 | ||
MavKen | I have installed 13.10 on my vps but others recommend not to use 13.10 on production server... do any of you use this version on production server? | 02:31 |
pmatulis | MavKen: it depends what your needs are | 02:32 |
MavKen | I host about a dozen static sites and a site that uses codeigniter | 02:33 |
MavKen | so far, haven't had any issues. | 02:33 |
pmatulis | MavKen: if 12.04 gives you want you want then use it since it's an LTS and is supported longer (until april 2017). then again, 14.04, the next LTS, is out in 6 months so you might consider installing 13.10 and then do a single release jump to it and stick with it for 5 years | 02:34 |
sarnold | MavKen: probably the most annoying issue is that you'll have to upgrade in eight months or so. | 02:34 |
sarnold | MavKen: you may wish to consider upgrading to 14.04 LTS when it is available and you feel comfortable doing the upgrade, and sticking with that for a few years, to reduce the cost of maintenance / ownership | 02:35 |
MavKen | yeah, since I have mostly static sites, I just zip them up, clean install os then unzip.. planning to install 14.04 once it is available | 02:35 |
wew | I want to ask question how to grep in order to get only the essid and signal level when i issue the iwlist command. | 03:17 |
=== freeflying is now known as freeflying_away | ||
=== freeflying_away is now known as freeflying | ||
wew | I want to ask question how to grep in order to get only the essid and signal level when i issue the iwlist command. | 03:27 |
pmatulis | wew: man grep | 03:28 |
wew | pmatulis: sorry for that question im a beginner in pmatulis at the moment i use this command "iwlist wlan1 scan | grep -e ESSID -e Signal" | 03:30 |
wew | *beginner in ubuntu | 03:30 |
wew | but what i want to get is only the ESSID name and signal level and nothing else | 03:31 |
pmatulis | wew: maybe pastebin the entire output of 'iwlist wlan1 scan' | 03:35 |
pmatulis | !pastebin | 03:35 |
ubottu | For posting multi-line texts into the channel, please use http://paste.ubuntu.com | To post !screenshots use http://imagebin.org/?page=add | !pastebinit to paste directly from command line | Make sure you give us the URL for your paste - see also the channel topic. | 03:35 |
MavKen | where can i edit the script that is used when a new user is created? | 03:40 |
pmatulis | MavKen: you don't want to do that | 03:40 |
MavKen | why? | 03:40 |
pmatulis | MavKen: explain your rationale, you're prolly missing something | 03:41 |
MavKen | in my /etc/skel folder I have public_html and then the twitter bootstrap framework... when I create a new user, I want the username to be inserted into a php file as the "project name" appearing the in title/navbar | 03:42 |
=== freeflying is now known as freeflying_away | ||
pmatulis | MavKen: i feel you're toiling around in the wrong boiler room. sounds like you should be doing this with an external shell script | 03:44 |
MavKen | so i would like config.php created in the process with the following line: <?php $site_title = "<username entered here>"; ?> | 03:44 |
pmatulis | MavKen: editing system utilities is not the way. these changes will conflict if the utility ever gets upgraded. i also feel that you should separate the system-level stuff from application-level stuff | 03:46 |
wew | pmatulis: this is the link http://pastebin.com/p1z7Y4YS | 03:47 |
wew | http://pastebin.com/p1z7Y4YS | 03:47 |
MavKen | ok | 03:48 |
=== freeflying_away is now known as freeflying | ||
=== silverf0x is now known as zz_silverf0x | ||
=== gary_poster is now known as gary_poster|away | ||
wew | hello there can someone help me how to use grep in this problem given . http://pastebin.com/c01UX1B8 | 05:17 |
trupheenix | hello. Are there any kind people here who can help me with postfix and sasl? I keep getting this error: pwcheck_method: auxprop | 05:43 |
trupheenix | auxprop_plugin: sql | 05:43 |
trupheenix | mech_list: PLAIN LOGIN CRAM-MD5 DIGEST-MD5 NTLM | 05:43 |
trupheenix | sql_engine: pgsql | 05:43 |
trupheenix | sql_hostnames: 127.0.0.1, 192.0.2.1 | 05:43 |
trupheenix | sql_user: username | 05:43 |
trupheenix | sql_passwd: secret | 05:43 |
trupheenix | sql_database: dbname | 05:43 |
trupheenix | sql_select: SELECT password FROM users WHERE user = '%u'@'%r' | 05:43 |
trupheenix | oops | 05:43 |
trupheenix | sorr | 05:43 |
trupheenix | y | 05:43 |
trupheenix | I keep getting this error warning: SASL authentication failure: cannot connect to saslauthd server: No such file or directory | 05:43 |
sarnold | trupheenix: is an saslauthd running? can you find what socket file postfix is expecting and see if anything else has that socket open? (lsof or fuser...) | 05:47 |
trupheenix | sarnold, how do i do that? :( | 05:52 |
trupheenix | sarnold, ok i got it. let me try | 05:54 |
sarnold | trupheenix: hrmm, looks like things can be complicated here. Check out these urls for some additional reading: https://help.ubuntu.com/12.04/serverguide/postfix.html#postfix-sasl and https://help.ubuntu.com/community/Postfix#Authentication | 05:55 |
sarnold | (the community guide looks a bit dated, I saw references to 6.06...) | 05:56 |
trupheenix | sarnold, so what are you suggesting? | 05:56 |
trupheenix | sarnold, ok let me figure out what file is postfix looking for | 05:56 |
trupheenix | sarnold, I'm trying to use Cyrus SASL. | 06:03 |
trupheenix | sarnold, but looks like now I will have to use DoveCot. DoveCot on POP3 seems to work OK. | 06:04 |
joossee | can anyone help me get my video card to work? firemv2400 im reading this but it is way above my paygrade: https://bugs.launchpad.net/ubuntu/+source/xserver-xorg-video-ati/+bug/1091380 | 06:06 |
joossee | can i revert to xorg 7.0 in 12.04? | 06:07 |
wew | hello there can someone help me how to use grep in order to get only the signal level and ESSSID when issuing iwlist command ? thanks. | 06:14 |
webdev13 | hi guys , i dont know that much about linux commands and ubuntu | 07:32 |
webdev13 | i'm trying to add new virtualhost , but i have no idea how to do this on apache server | 07:32 |
sarnold | webdev13: I hope this is helpful to you: https://help.ubuntu.com/12.04/serverguide/httpd.html#http-configuration | 07:33 |
webdev13 | sarnold , i already have virtualhost , system admin made it for me | 07:35 |
webdev13 | i want to add new one , i dont know which file i should edit and how to access it ? | 07:35 |
Pupeno | Hello. | 09:54 |
=== freeflying is now known as freeflying_away | ||
=== alex88_ is now known as alex88 | ||
trupheenix | can anyone here help me with dovecot installation? | 11:35 |
trupheenix | my dovecot process doesn't seem to start at all | 11:35 |
trupheenix | any postfix dovecot experts here? | 12:45 |
pmatulis | !ask | trupheenix | 12:47 |
ubottu | trupheenix: Please don't ask to ask a question, simply ask the question (all on ONE line and in the channel, so that others can read and follow it easily). If anyone knows the answer they will most likely reply. :-) See also !patience | 12:47 |
trupheenix | !patience | 12:48 |
ubottu | Don't feel ignored and repeat your question quickly; if nobody knows your answer, nobody will answer you. While you wait, try searching https://help.ubuntu.com/ or http://ubuntuforums.org/ or http://askubuntu.com/ | 12:48 |
trupheenix | ok. So i have set up postfix+dovecot with postgresql as the backend store. I have setup postfix to use sasl authentication via dovecot. I have checked SMTP,POP3 and IMAP logins and they work fine. However now I have issue with mailboxes. Is it compulsory for dovecot to have home directories for each e-mail id? | 12:52 |
=== zz_Gurkenmaster is now known as Gurkenmaster | ||
=== gary_poster|away is now known as gary_poster | ||
=== freeflying_away is now known as freeflying | ||
trupheenix | my postfix installation is not delivering mails to dovecot. Here is my postconf output: https://gist.github.com/anonymous/7318863 Here is my doveconf output: https://gist.github.com/anonymous/7318896 Finally here is my output from tail -f /var/log/mail.* when I send a mail: https://gist.github.com/anonymous/7318945 Can anyone tell me why postfix is not handing over the mails to dovecot and why am I getting a not delivered responder eventhough | 13:31 |
trupheenix | the us | 13:31 |
trupheenix | <trupheenix> er exists on my server? I was able to send mails from this same user but now I cannot receive it. Any help would be appreciated. | 13:31 |
=== empty is now known as davidbowlby | ||
=== Maple__ is now known as Guest7013 | ||
=== deav_ is now known as wl-deav | ||
=== Guest7013 is now known as Mapley | ||
=== Ursinha is now known as Ursinha-afk | ||
jdstrand | adam_g: hey, I think there was a breakdown in the process-- keystone 1:2013.1.4-0ubuntu1 dropped the fix for bug #1202952 that was in the security update for 1:2013.1.3-0ubuntu1.1 | 15:13 |
jdstrand | adam_g: I mentioned that one in irc. I also mentioned another one | 15:14 |
* jdstrand goes to look | 15:14 | |
jdstrand | adam_g: actually, nm-- both patches are in there. the ChangeLog and debian/changelog didn't list one | 15:19 |
=== Ursinha-afk is now known as Ursinha | ||
=== rharper_ is now known as rharper | ||
NaGeL | can someone help me with this problem? | 15:53 |
NaGeL | http://askubuntu.com/questions/371563/port-25-smtp-port-connection-refused | 15:54 |
babinlonston | im using kvm and other Distribution were installed as Guest operating systems there are /dev/sda6 , /dev/sda7 /dev/sda8 /dev/sda9 , there are upto /dev/sda15 available in my PC , i need to create a backup of /dev/sda6 to /dev/sda14 , if there is some issue i need to restore from that /dev/sda14 to /dev/sda6 , how can i Do it guide me to snapshot it ... I'm using LVM for / | 16:06 |
remix_tj | NaGeL: try with netstat -alptn | grep 25 | 16:08 |
remix_tj | you'll see if the mailserver is bound only to localhost | 16:08 |
remix_tj | or to any address | 16:08 |
NaGeL | tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 12775/master | 16:09 |
NaGeL | tcp6 0 0 :::25 :::* LISTEN 12775/master | 16:09 |
NaGeL | thats what i get | 16:09 |
remix_tj | uhm strange | 16:12 |
NaGeL | yes | 16:12 |
remix_tj | and from your machine you cannot do telnet IP_OF_SERVER 25 | 16:13 |
NaGeL | telnet: Unable to connect to remote host: Connection refused | 16:13 |
NaGeL | that is what i get | 16:13 |
ikonia | connection refused is probably being blocked by the auth rules | 16:14 |
ikonia | eg: telnet localhost 25 | 16:15 |
ikonia | try that | 16:15 |
NaGeL | that works | 16:15 |
NaGeL | as the guide says i use dvecot for smtp auth and there is a line like this | 16:15 |
NaGeL | # Disable LOGIN command and all other plaintext authentications unless | 16:15 |
NaGeL | # SSL/TLS is used (LOGINDISABLED capability). Note that if the remote IP | 16:15 |
NaGeL | # matches the local IP (ie. you're connecting from the same computer), the | 16:15 |
NaGeL | # connection is considered secure and plaintext authentication is allowed. | 16:15 |
NaGeL | disable_plaintext_auth = yes | 16:15 |
NaGeL | can this be the problem? | 16:16 |
ikonia | NaGeL: ok, so it looks like it's only accepting connections to localhost/from localhost | 16:16 |
NaGeL | nope.. set it to no, still connection refuised | 16:17 |
ikonia | set what to no | 16:17 |
NaGeL | disable_plaintext_auth = no | 16:18 |
ikonia | you're not getting that far | 16:18 |
NaGeL | in dovecot | 16:18 |
ikonia | dovecot is not your mail server | 16:18 |
NaGeL | but thats what i use for smtp auth. | 16:18 |
ikonia | you have a mail server running on port 25 that is only accepting connections to localhost | 16:18 |
NaGeL | yes, and thats kinda problem. | 16:19 |
ikonia | right, so why are you looking at dovecot or user auth | 16:19 |
NaGeL | dunno.. i have no idea where to look, i'm just trying out things. and as i said i set dovecot's SALS as the smtp auth | 16:20 |
NaGeL | OOOH smtps is working | 16:24 |
NaGeL | cool | 16:24 |
NaGeL | then its better if the stmp is blocked becouse it will work only ina secure connection | 16:25 |
NaGeL | thanks ikonia remix_tj for the help! | 16:26 |
=== zhouqt is now known as gfrog | ||
=== chmurifree is now known as chmuri | ||
jcastro | gaughen, ok I've approved another batch of blueprints | 16:34 |
jcastro | I was thinking of scheduling either today or tomorrow, how do you feel you're getting on with them? Mostly done or still gathering? | 16:34 |
jrwren | NaGeL: who is your ISP? many ISPs (comcast for example) block outgoing port 25 in an effort to reduce spam from bot nets. | 16:37 |
=== cmagina_ is now known as cmagina | ||
=== zhouqt is now known as gfrog | ||
strixUK1 | hi. i have a from-scratch ubuntu 12.04 server installation, and i am scratching my head why it doesn't perform comparably to the machine it's replacing (hostgator-configured, centos 5.9-based thing). | 17:43 |
strixUK1 | example: loading a 230-odd MB SQL dump takes 45 sec on new machine, and 30 sec on old. | 17:44 |
strixUK1 | any pointers as to what sort of tuning i should be looking at? | 17:44 |
strixUK1 | i've already compared active mysql configuration on the new box, and updated those parameters that needed it | 17:44 |
TheLordOfTime | strixUK1: why is a 15 second restore making you scratch your head...? | 17:54 |
TheLordOfTime | 15-seconds-difference * | 17:54 |
strixUK1 | because the machine is unloaded and a 50% extra load time indicates something isn't right | 17:59 |
ikonia | it's not %50 load time | 17:59 |
strixUK1 | it's not the absolute difference that bothers me, but the relative difference | 17:59 |
ikonia | are the machine identical | 17:59 |
ikonia | is it consistantly the same difference | 18:00 |
strixUK1 | yes, consistently the same (plus or minus small variation) | 18:00 |
ikonia | are the machines the same | 18:00 |
strixUK1 | the machines aren't really similar. i'm not really sure what the spec of the old machine is because it's a hostgator dedicated box, and they're not particularly forthcoming about their machine specs. the new machine is a slightly older cpu architecture, but it has more memory. | 18:01 |
ikonia | then why are you comparing them | 18:01 |
ikonia | and why do you think something is wrong | 18:01 |
strixUK1 | the other big differences are that the new box runs in a xen VM, where the old one is running in a qemu VM; and write latencies in the new box are maybe 2-3 times longer than the old machine. | 18:02 |
ikonia | a machine you don't know the spec of is slightly faster with a small import than a totally different machine | 18:02 |
strixUK1 | (if a 230 MB dump is 'small') | 18:02 |
ikonia | it is | 18:02 |
strixUK1 | an sql search-and-replace operation takes about 70 sec on the old box and about 120 sec on the new, but that's very roughly comparable with the difference in sql load | 18:03 |
trupheenix | hello ikonia can you help me with a problem I'm facing in postfix? | 18:03 |
ikonia | trupheenix: no idea. | 18:03 |
ikonia | trupheenix: ask the channel, some good people in here | 18:03 |
TheLordOfTime | strixUK1: if the machines are not identical, then you are comparing apples and oranges | 18:03 |
strixUK1 | if the new machine really is that much lower performance than the old, then there's nothing much i can do about it and will just live with it, but i'd like to ascertain that it isn't anything to do with the tuning or other configuration between the two | 18:03 |
TheLordOfTime | if the hardware is different, it's apples v. oranges. | 18:03 |
ikonia | strixUK1: why don't you forget the old machine, as it's a pointless comparison, and just look at what the new one is doing and see if you can make it better | 18:04 |
strixUK1 | TheLordOfTime: perhaps. i'm not expecting identical performance, or even faster performance on the new box, but a 50% difference seems.. surprising. | 18:04 |
ikonia | strixUK1: why is it surprising, you don't even know the spec of the old machine | 18:04 |
TheLordOfTime | ^ that | 18:04 |
strixUK1 | ikonia: exactly, so my question is is there anything i should be looking at tuning-wise to improve upon? | 18:04 |
ikonia | a machine you don't know the spec of, is faster than a machine you do know the spec of, it's a pointless compariosn | 18:05 |
ikonia | strixUK1: you tune problems, looking for problems will indicate what to tune | 18:05 |
TheLordOfTime | exactly what ikonia said | 18:05 |
strixUK1 | because they're similar classes of machines, and i would not expect such a significant difference in performance, even if the new box is possibly a bit older | 18:05 |
TheLordOfTime | as long as the restore didn't cause any problems there's nothing to fix | 18:05 |
TheLordOfTime | similar "classes" of machines have substantial variance inside their own class too you know | 18:06 |
TheLordOfTime | so unless you're comparing *identical hardware* your comparison is void | 18:06 |
ikonia | strixUK1: focus on the new machine, forget the old one, look for problems, fix problems | 18:06 |
TheLordOfTime | exactly | 18:06 |
TheLordOfTime | unless you're restoring 25MB SQL backup files every day it's not anything to worry about | 18:06 |
strixUK1 | what i do know about the old machine is the processor (Xeon(R) CPU E3-1265L V2 @ 2.50GHz), vs new machine (Xeon(R) CPU X3210 @ 2.13GHz) | 18:06 |
ikonia | strixUK1: you don't know that as they are virtual machines | 18:07 |
TheLordOfTime | ^ | 18:07 |
ikonia | that is the host, not the guest | 18:07 |
strixUK1 | yeah, i just want to make sure that there isn't anything i can/should be doing with the new machine before i make it go live | 18:07 |
strixUK1 | right | 18:07 |
ikonia | strixUK1: yes, there is lots you can do with the new machine, | 18:07 |
ikonia | strixUK1: but you have to work out where the bottlenecks are and see if they are config or limitations | 18:07 |
ikonia | config can be fixed, limitations can't | 18:08 |
strixUK1 | hang on, the guest machines don't change cpu types? (i'm in touch with one of the xen developers and can ask if necessary) | 18:08 |
strixUK1 | right, so that's my question. what should i be looking at in terms of config of the new machine? | 18:08 |
ikonia | strixUK1: forget all that - just focus on making the new machine work as good as it can | 18:08 |
TheLordOfTime | exactly what ikonia said | 18:08 |
ikonia | strixUK1: look where your bottlenecks are that would be the first point | 18:08 |
strixUK1 | alright, how do i go about evaluating that sort of thing? | 18:09 |
ikonia | doing tasks and monitoring resources | 18:09 |
ikonia | seeing what tasks make what resources get utilized, | 18:09 |
ikonia | seeing if resources are maxed out for a period | 18:09 |
ikonia | seeing if that maxing out is causing wait on other resources | 18:09 |
strixUK1 | well, i can tell you that iostat doesn't indicate a lot of activity during this DB load | 18:09 |
ikonia | strixUK1: activity, no, wait ? | 18:10 |
strixUK1 | eg, the device containing / is mostly idle during the load with occasional bursts of 40-60 MB/sec | 18:12 |
strixUK1 | which i presume is because most of the write activity is sticking around in os cache rather than being flushed to disc | 18:12 |
ikonia | strixUK1: is the database on / ? is the backup being read from ? | 18:12 |
ikonia | from / | 18:12 |
strixUK1 | yes and yes | 18:13 |
ikonia | strixUK1: what is the wait time on the device ? | 18:13 |
strixUK1 | not much read activity either, but again i presume the dump is in os cache | 18:13 |
strixUK1 | average await is around 30 ms | 18:14 |
ikonia | ok, so that's almost half a second | 18:14 |
ikonia | do you find that acceptable ? | 18:14 |
strixUK1 | (which, as i said earlier, is rather slower than the old machine, which is about 9 ms) | 18:14 |
strixUK1 | what's half a second? | 18:14 |
ikonia | strixUK1: ok, so why is there wait time, is it because it's waiting on another resource, is it because the disk device is slow, is it because the host the vm is running on is overutilized ? | 18:15 |
patdk-wk | do what? | 18:15 |
patdk-wk | 30ms == 500ms? | 18:15 |
ikonia | oops | 18:15 |
strixUK1 | right | 18:15 |
ikonia | bad maths there | 18:15 |
ikonia | 300ms sorry | 18:15 |
patdk-wk | normal time for a green disk is 15-30ms | 18:15 |
patdk-wk | normal time for a 7200rpm disk is 8-12ms | 18:15 |
ikonia | the green ones I have are faster than that | 18:15 |
patdk-wk | ikonia, only if they are running in non-green mode | 18:16 |
ikonia | patdk-wk: so you mean from "standing start" | 18:16 |
patdk-wk | pretty much | 18:16 |
ikonia | never measured that to be honest | 18:16 |
patdk-wk | just let it idle for 30seconds :) | 18:16 |
patdk-wk | well, it should sleep after 11seconds or so | 18:16 |
patdk-wk | then access something random | 18:16 |
strixUK1 | again, the hardware is not new, and my host noticed that one of the pair (software raid1) was a bit slower than the other. he's at the DC at the moment swapping out the slower one. but the difference wasn't enough to account for 9ms vs 30 ms latency. | 18:17 |
strixUK1 | however, it could well be the speed of disc | 18:17 |
ikonia | raid1 will depend on the slowest disk | 18:17 |
ikonia | so it can delay writes | 18:17 |
patdk-wk | idle with burts sounds like bad spots on the disk | 18:17 |
patdk-wk | is that read or write load? | 18:18 |
patdk-wk | write load shouldn't be affected | 18:18 |
strixUK1 | patdk-wk: or cache flushing | 18:18 |
patdk-wk | if so, you did improper test :) | 18:18 |
=== zz_silverf0x is now known as silverf0x | ||
strixUK1 | this machine has no load to speak of and it has 7 GB of memory, so it seems likely that most activity will be sticking around in cache | 18:19 |
strixUK1 | patdk-wk: i'm not particularly interested in disc performance because there's nothing i can actually do about that. | 18:19 |
ikonia | 7GB of ram.... | 18:19 |
ikonia | that's an odd number | 18:20 |
patdk-wk | oh? | 18:20 |
patdk-wk | so what is the problem that is attempting to be solved then? | 18:20 |
strixUK1 | if this load operation is operating mostly from/to cache, then the difference in performance is accounted for not by disc but by OS config. | 18:20 |
ikonia | strixUK1: the disk performance seems a factor | 18:20 |
strixUK1 | hostgator doubtless tune their machines much better than me, hence why i'm wondering what bits of the OS might be relevant to this sort of activity | 18:20 |
strixUK1 | ikonia: it's a VM, albeit the only VM on the machine, hence the odd number. the physical machine has 8 GB in it. | 18:21 |
strixUK1 | and i have done zero tuning of the base operating system (ubuntu 12.04 server), because i've never had to before. | 18:21 |
ikonia | so it's a 8GB physical machine allocated 8GB to a vm | 18:21 |
ikonia | sorry 7 gb to a vm | 18:21 |
strixUK1 | right. | 18:21 |
ikonia | why would you run that configuration, surly just using the host would be better | 18:21 |
strixUK1 | host's choice, i guess. not completely sure why he wants this running in a VM, but that's what hostgator do, too. (in their case, qemu, not xen) | 18:22 |
ikonia | ok, just seems a bit odd | 18:22 |
strixUK1 | in principle, the VM could be migrated elsewhere for upgrade or whatever, but that doesn't really apply when the disc is local to the machine rather than on a SAN | 18:22 |
patdk-wk | it does, you can migrate the disk and memory at the same time | 18:23 |
patdk-wk | expecially if they do a drbd of the disks between machines | 18:23 |
strixUK1 | yes, in principle, but i gather than migrating disc is a bit hairy ;) | 18:23 |
patdk-wk | dunno :) do it in vmware every day | 18:23 |
strixUK1 | okay, well, that's the answer then i guess | 18:23 |
strixUK1 | malc hasn't said anything about block device replication, so i assume that's not happening. he's a small operation. | 18:24 |
Msi | what is like the top 10 home server usages? | 18:36 |
patdk-wk | ask google? | 18:44 |
genii | Msi: It probably varies according to need. The ones I commonly know of or use: remote access to CCTV systems, centralized file storage and access, SSH jump-off point to machines on the LAN inside the house, small web and email servers if you want to host your own with a static IP, home automation control. | 18:45 |
strixUK1 | and PVR/HTPC | 18:46 |
joossee | ok its officaly: i hate the ubuntu desktop | 19:00 |
joossee | whats a good window manager for hands on server administration? | 19:01 |
joossee | can i install the mint one? | 19:01 |
genii | joossee: The usual convention is to run servers headless and administer them remotely by SSH at commandline, or by a web-based control panel like Zentyal or similar. | 19:05 |
patdk-wk | yuk, web-based control panel? | 19:06 |
joossee | genli .. and I am noblely working towards that goal but in the interim i reallyneed to at least be able to open files as root :) | 19:07 |
sarnold | yeah if you want the yakuza to help you administer your machines :) | 19:07 |
sarnold | joossee: sudo vim /path/to/filename or sudo emacs /path/to/filename ... | 19:07 |
joossee | ok if xorg.conf does not exist i can create it and set params and xorg will use it? | 19:10 |
sarnold | yeah | 19:11 |
joossee | is it still used in 12.04 xorg? still at /etc/x11/xorg.conf ya? | 19:13 |
sarnold | /etc/X11/xorg.conf -- note the X | 19:13 |
joossee | oh crap | 19:15 |
joossee | is there avim quick reference sheet thats good? | 19:15 |
genii | !xorgconf | 19:16 |
ubottu | The /etc/X11/xorg.conf file is deprecated, but sometimes may still be needed to pass values to specific drivers. Generic xorg.conf generation: http://ubottu.com/y/xorgconf - ATI/AMD ( fglrx driver ) specific: http://ubottu.com/y/atiamd - NVidia ( nvidia driver )specific: http://ubottu.com/y/nvidia man xorg.conf for file structure and syntax. | 19:16 |
sarnold | genii: neat :) | 19:16 |
sarnold | joossee: 'i' to enter insert mode, <esc> to return to command mode; :wq<enter> to save and exit, :q!<enter> to quit without saving | 19:17 |
joossee | got it ty | 19:23 |
joossee | man trying to get my video card to dual screen is making me crazy | 19:23 |
sarnold | joossee: oh, you're the guy who pasted that bug link last night "this is above my pay grade"... agreed, that looked like a problem ripe for driving someone crazy. | 19:25 |
genii | joossee: For graphical issues, you're more likely to find help in the regular channels like #ubuntu ( or if Mint, then #linuxmint-help on irc.spotchat.org ) | 19:25 |
joossee | ya i actuallykinda spam both at the same time :) | 19:26 |
joossee | here is more of a server question though: i wanna have a nice cirtualization server, i have 28GB of ram. Do i need a swap file? PS i use volume encryption | 19:28 |
Rory | joossee: You don't necessarily need a swap file/partition but if you have the space for one, there's absolutely no harm | 19:29 |
sarnold | joossee: I like having swap partitions, if some unbacked memory is really unused, the kernel can shove it off to swap and use the memory for something more important. you won't want much swap _traffic_ on your system, but having some swap available is convenient. | 19:30 |
joossee | yes that what i figured | 19:30 |
joossee | i am having some difficulty using encrypted partiions and a swap file on said partiions? | 19:30 |
joossee | can someone explain the relationship between LVM and encrupted partitions? | 19:31 |
sarnold | joossee: note that VMs often require less 'ram' than a physical system would, because the host's block cache will provide for much of the 'caching' needs. | 19:31 |
joossee | interesting | 19:31 |
xnox | joossee: what's confusing between LVM and encrypted partitons? | 19:57 |
xnox | joossee: encrypted volume can provide a single volume (device that one can format as a file-system or swap space). | 19:58 |
xnox | joossee: lvm provides logical volumes, thus one can turn one device into something that can have multiple volumes without repartitioning. | 19:59 |
xnox | joossee: typically one puts lvm VolumeGroup on an encrypted partition - such that despite single partition in the partition table, one has multiple logical volumes for various file systems / mount points / swap. | 19:59 |
joossee | xnox, ty. so procedurally i create the encrypted partition and then a LVM inside of it? | 20:00 |
joossee | and within LVM i can have root fs and swapspace? | 20:01 |
xnox | joossee: yes. Conceptually the correct terms are: hard-drive -> partition -> encrypted LUKS volume -> LVM's Volume Group (VG) -....> multiple LVM's Logical Volumes (LVs) -....-> formated with e.g. ext4, SWAP, etc. | 20:02 |
xnox | joossee: not sure why you need to create it, as that's one of the automatic partitioning recipes options in both server and desktop installer. | 20:03 |
joossee | xnox; multiple physical raid volumes. guided doesnt allow me to include them as /home | 20:03 |
xnox | joossee: a tick box to encrypt whole install, or in server install it's one option down "Use full disk, setup lvm". | 20:03 |
joossee | xnox; in 12.04? | 20:03 |
joossee | didnt see that | 20:04 |
joossee | i will look again next go around\ | 20:04 |
xnox | joossee: enter manual mode, setup raid volumes as you wish, and then go back and partition automatically "Use entire disk, ecrypt + LVM" | 20:04 |
xnox | joossee: so yeah with raid you want it different. | 20:04 |
xnox | joossee: do you want everything encrypted or just /home ? | 20:04 |
joossee | xnox; everything but /boot | 20:05 |
xnox | joossee: well, that's everything =) at the moment /boot is always unencrypted. | 20:05 |
xnox | joossee: are you following Ubuntu Server Guide? | 20:06 |
xnox | joossee: https://help.ubuntu.com/12.04/serverguide/advanced-installation.html covers LVM and RAID. | 20:06 |
xnox | hm. encryption (LUKS) should be added. | 20:06 |
joossee | xnox, no... i have done this a few time for bootsticks and whatnot | 20:06 |
joossee | and im familiar with hardware | 20:07 |
jamescarr | probably better suited here | 20:37 |
jamescarr | W: Failed to fetch http://ppa.launchpad.net/ubuntu-x-swat/r-lts-backport/ubuntu/dists/raring/main/binary-amd64/Packages 404 Not Found | 20:37 |
jamescarr | did it change? | 20:37 |
=== mibofra- is now known as mibofra | ||
joossee | finally got my FireMV 2250 working perfectly. thanks guys | 21:03 |
=== michele2 is now known as ycy | ||
=== Gurkenmaster is now known as zz_Gurkenmaster | ||
Silvio- | Hey guys one of my sites was hit with a vuln: http://www.exploit-db.com/exploits/29290/, i updated my php using apt-get install php5, this brought my update to PHP 5.3.2-1ubuntu4.21 with Suhosin-Patch (cli) (built: Sep 4 2013 19:13:13) | 21:55 |
Patrickdk | Silvio-, and what about it? it was fixed Thu, 03 May 2012 15:42:08 | 22:06 |
Patrickdk | since you didn't update your system for like, half a year, what do you expect? | 22:06 |
Silvio- | how do i know if my current php is protected? | 22:06 |
Patrickdk | http://people.canonical.com/~ubuntu-security/cve/2012/CVE-2012-1823.html | 22:07 |
Patrickdk | learn how to read CVE's | 22:07 |
Patrickdk | fixed in 5.3.2-1ubuntu4.15 | 22:07 |
Silvio- | yea i need too, but if i read that correctly i am patched | 22:07 |
Silvio- | thank you | 22:08 |
=== gary_poster is now known as gary_poster|away | ||
Rory | Silvio-: If your server was compromised, upgrading PHP will only close the door to future compromises, it won't un-hack you | 22:30 |
Silvio- | ya i know it sucks, im trying to figure out what if the php has a backdoor | 22:33 |
sarnold | it need not be in php | 22:33 |
sarnold | your best bet is to take the machine offline and redeploy a replacement | 22:34 |
Rory | That's the only way to be sure, unfortunately | 22:34 |
Silvio- | damn | 22:34 |
Rory | Yeah it's a massive bummer | 22:34 |
sarnold | if you're curious what they've done, it might be worth investigating. just be careful what you do with the hard drive or filesystem images. | 22:35 |
Silvio- | ya im just a dev, our it guy is gone until monday | 22:35 |
sarnold | yikes | 22:35 |
Silvio- | ya i have some understanding but not much, i can see he was posting stuff eventually the server crashed | 22:35 |
Silvio- | thats why i found out the site was down | 22:36 |
Silvio- | that also might mean he wasnt able to do what he wanted so he killed the server? | 22:36 |
Silvio- | or am i being too optimisic | 22:36 |
Rory | Id you're a dev, and there's a systems guy who is supposed to be in charge, I'd recommend letting the systems guy know immediately | 22:37 |
Rory | If* | 22:37 |
Silvio- | i did tell him | 22:37 |
Rory | Was it compromised and posting spam or something? | 22:38 |
Rory | What was the actual nature of the hack? | 22:38 |
Silvio- | basically im trying to secure this as best as i can for when he comes back | 22:38 |
Silvio- | http://www.exploit-db.com/exploits/29290/ | 22:38 |
Silvio- | this is what he used | 22:38 |
=== jamescarr_ is now known as jamescarr | ||
Rory | Yes but what did he do with it? | 22:38 |
Rory | Oh haha we've had that one too | 22:38 |
Silvio- | sucks i dont know what was posted | 22:39 |
Rory | OK let me re-phrase - how do you know you are compromised? | 22:39 |
Trudko | hi guys, I am going to install bunch of stuff regarding Ruby On rails development on my env, thing is I done this few times already, including installation on ubuntu server. What is best way how to automate installation ? I need to install Ruby, apache, mysql, rbevn etc etc | 22:53 |
=== lifeless_ is now known as lifeless | ||
sarnold | Trudko: you have many choices: you can configure preseed files if you're doing multiple installs, you can use juju charms if you want something suitable for 'private cloud' use, or you could use puppet or chef or shell scripts ... | 22:57 |
Trudko | sarnold, what about capistrano? | 23:01 |
sarnold | Trudko: it's quite popular in the rails world, I've never used it myself. does cap make it easy to configure non-rails services? | 23:01 |
Trudko | sarnold, not sure frankly I also heard about it from rails world | 23:01 |
sarnold | Trudko: I ha dthe impression it was more aimed at the gem bundles and database migrations and so forth -- but then I've never _used_ it. sorry. :) | 23:02 |
Trudko | no problem :) | 23:02 |
joossee | is there a trick to getting an adapter into 5ghz modein ununtu 12.04? | 23:07 |
=== freeflying is now known as freeflying_away | ||
=== gary_poster|away is now known as gary_poster | ||
=== gary_poster is now known as gary_poster|away | ||
=== freeflying_away is now known as freeflying |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!