/srv/irclogs.ubuntu.com/2013/11/12/#ubuntu-server.txt

ricepuddinso I've got install issues with ubuntu server. My keyboard works fine in the grub menu and the system boots into the console-based installer... but from then on in the keyboard doesn't work (looks like it's off, as the numlock light goes out immediately as it starts to boot). Does anyone have any ideas on this? The exact same system works fine with a desktop ubuntu install. Keyboard is a standard wired usb.01:19
ricepuddinubuntu 13.10, for reference01:19
ricepuddinany thoughts on how I can get around this? I've found a lot of threads online with similar issue but no joy in terms of a workaround01:20
pmatulisricepuddin: bug #?01:26
ricepuddinno launchpad bug that I found... just some forums threads all around the same theme01:26
pmatulisricepuddin: https://bugs.launchpad.net/ubuntu/+source/debian-installer/+filebug01:28
ricepuddinpmatulis: https://bugs.launchpad.net/ubuntu/+source/debian-installer/+bug/125028001:44
pmatulisricepuddin: nicely done01:48
ricepuddinand now I wait? :/01:48
pmatulisricepuddin: check yo 'box01:49
ricepuddinI see :P01:51
ricepuddinwill try 13.04...01:51
=== TDog_ is now known as TDog
=== TDog_ is now known as TDog
=== gfrog is now known as gfrog_working
babinlonstonHI  all , I'm Using Ubuntu 12.04 Server and now there is many updates installed , and there is many kernel updates too , how can i find the Currently using kernel and , how can i safely remove the old kernels ?03:51
pmatulisbabinlonston: 'uname -r' gives what's running now.  not necessarily the latest installed kernel (you need to reboot to use it)03:53
pmatulisbabinlonston: dpkg -l | grep linux-image-3 | grep '^ii' should give you all kernels installed on precise.  you can remove some of the earlier ones but always keep the latest few around03:56
bradmbabinlonston: an apt-get autoremove should show you what it thinks is removable03:58
=== gfrog_working is now known as gfrog
bradmbabinlonston: but check to make sure you're running the latest before doing that, and its not going to remove what you're running03:58
babinlonstonk03:59
=== freeflying is now known as freeflying_away
babinlonstonwow there are , 5 4 kernels and 3 removed and 2 not including Generic ... Successfully Working after a restart ...04:09
=== freeflying_away is now known as freeflying
Demosthenexso i'm running ubuntu 12.04 and just noticed that between kernel versions linux-image-3.2.0-24-generic-pae and linux-image-3.2.0-31-generic-pae the system reverted to 32 bit mode instead of using a 64 bit kernel. i can't find anything about this, can anyone confirm?04:39
Demosthenexhttp://pastebin.com/HgXX7cbj04:43
babinlonstonCool Created a Document too for removing the kernel.. thanks mates04:43
babinlonstonhttp://www.linuxmental.com/05:08
neil02I am having lots of trouble getting the tftpd-hpa to work ... it installed find ... but it doesn't seem to start... netstat shows nothing, and there is nothing in syslog as to why... can anyone help?06:17
eagles0513875im having issues with samba. I removed apparmor as I had a feeling it was causing issues and now I cannot even connect to the samba share at all is apparmor a must ?08:56
jjohanseneagles0513875: no. how did you remove it?08:57
eagles0513875sudo apt-get purge apparmor08:59
=== tjaalton_ is now known as tjaalton
eagles0513875jjohansen: should i rreinstall it?09:00
jjohanseneagles0513875: okay what is the out put of09:00
jjohansen  cat /sys/module/apparmor/parameters/enabled09:00
jjohansen  cat /sys/kernel/security/apparmor/profiles09:00
eagles0513875output of first is Y09:00
eagles0513875and the 2nd the security folder doesnt exist09:00
eagles0513875so basically it seems like i only got rid of the profiles09:00
jjohanseneagles0513875: well I would recommend it for the added security but it is not required, and at this point adding it back in might make debugging the problem harder09:01
eagles0513875ok reason being is i had some users which are added on the system and with username and password i setup for them they still were not able to connect it wasnt accepting the password09:01
jjohanseneagles0513875: what is the output of09:01
jjohansen  mount | grep securityfs09:01
eagles0513875none on /sys/kernel/security type securityfs (rw)09:02
jjohanseneagles0513875: and did you reboot after removing apparmor09:02
eagles0513875yes and this is up after a cold boot this morning as I didnt leave it online as its not accessible09:02
jjohansenwhat is the output of09:03
jjohansen  ls /sys/kernel/security/09:03
eagles0513875apparmor  evm09:03
eagles0513875apparmor is a directory09:03
jjohanseneagles0513875: and the output of09:04
jjohansen  sudo cat /sys/kernels/security/apparmor/profiles09:04
eagles0513875http://paste.ubuntu.com/6404235/ jjohansen09:05
jjohanseneagles0513875: uh, apparmor is enabled and enforcing some policy09:05
jjohanseneagles0513875: what is the output of09:06
jjohansen  sudo aa-status09:06
eagles0513875i did notice a page in the official docs about needing to load a profile09:06
eagles0513875jjohansen: aa-status command not found09:06
eagles0513875jjohansen: therre is a section here on apparmor https://help.ubuntu.com/12.04/serverguide/samba-fileprint-security.html09:07
eagles0513875jjohansen: i was actually going to use standard ACL's09:08
jjohanseneagles0513875: what is the output of09:08
jjohansen  dpkg -l '*apparmor*'09:08
eagles0513875http://paste.ubuntu.com/6404254/09:09
eagles0513875if i do apt-cache policy apparmor its showing not installed09:09
eagles0513875i can reinstall it no problem09:09
mardraumi guess the question is what did you change in samba to break apparmor?09:09
eagles0513875mardraum: nothing i just got rid of apparmor09:10
eagles0513875jjohansen: http://paste.ubuntu.com/6404262/09:10
jjohanseneagles0513875: so, removing apparmor packages doesn't actually remove it from the system, but it can stop it from enforcing policy. If the apparmor package is missing and you did a clean reboot I don't see how it loaded policy.09:10
eagles0513875i dunno either im an apparmor noob09:10
eagles0513875i can reinstall it no problem09:10
eagles0513875should i do that?09:11
jjohanseneagles0513875: hah got it, the apparmor_parser is in a separate package09:11
eagles0513875ya fragmentation is nice but in some aspects its annoying09:11
jjohanseneagles0513875: hrmm no it isn't never mind09:11
eagles0513875should i just go ahead and reinstall apparmor09:12
mardraumif apparmor isn't the problem, I would use it09:12
eagles0513875thing is i think its a bit overkill for this file server for an office of 309:12
jjohanseneagles0513875: does the file /sbin/apparmor_parser exist?09:12
eagles0513875jjohansen: nope nothing app armor in that directory09:13
eagles0513875im going to reinstall it09:14
eagles0513875this is causing more problems then its worth09:14
jjohanseneagles0513875: I'll let you decided whether you want it. apparmor in Ubuntu is enforcing a targeted policy, that is it only confines applications with profiles defined for them. If you don't want the samba profile you can simply disable that profile by09:14
jjohansen  removing the profile file from /etc/apparmor.d/09:14
jjohansenor09:14
jjohansen  placing a symlink from /etc/apparmor.d/disable/ to the profile in /etc/apparmor.d/09:14
jjohansenthe second option is more package manager friendly09:15
eagles0513875jjohansen: it seems like its rather easy to get samba working with apparmor but i have one question though about it09:15
jjohansento completely disable apparmor, you can remove its packages (I can't explain why policy is loaded), unless are you doing this in a lxc container?09:16
eagles0513875no on physical hardware09:16
eagles0513875bare metal nothing virtual no containers09:16
jjohanseneagles0513875: or you can add09:17
jjohansen  apparmor=009:17
jjohansento the kernel boot parameters list in /etc/default/grub, and then run update-grub09:17
jjohanseneagles0513875: okay, I can't explain why you are seeing policy, it should not have loaded09:17
jjohanseneagles0513875: the apparmor module will still be loaded and functioning even when you remove the packages. So /sys/module/apparmor/parameters/enabled will still report Y. But everything is in an unconfined mode which is just stard unix DAC capabilities09:18
eagles0513875ok09:18
jjohanseneagles0513875: what is your question about it?09:18
eagles0513875https://help.ubuntu.com/12.04/serverguide/samba-fileprint-security.html the section on app armor the 2nd step where do i have to put the path to the share?09:19
jjohanseneagles0513875: okay, so apparmor policy syntax is declarative. The share line can be placed anywhere within the profile.  The profile will a pattern like09:22
jjohansen  /usr/bin/samba {09:22
jjohansen      # rules ...09:22
jjohansen  }09:22
jjohanseneagles0513875: you can add new lines any where in there09:23
eagles0513875jjohansen: what rules would i need to place in there as the documentation doesnt explain much09:23
eagles0513875do you have any reference or site  that i could take a look at09:23
jjohanseneagles0513875: if you added a share at09:24
jjohansen  /srv/samba/share/09:24
jjohansenyou would add the lines09:24
jjohansen  /srv/samba/share/ r,09:24
jjohansen  /srv/samba/share/** rwkix,09:24
LeMikeHello. I want to create a zone that fetches all .dev TLD and forward it "IN A 127.0.0.1". is that possible?09:24
eagles0513875can i add that in the smbd profile09:24
eagles0513875as it says to edit that particular file09:25
eagles0513875jjohansen: ^09:27
jjohansenah yes the instructions aren't very good.09:27
jjohansenedit the file09:27
jjohansen   /etc/apparmor.d/usr.sbin.smbd09:27
jjohansenadd the new policy lines somewhere in the profile block for09:27
jjohansen  /usr/sbin/smbd {09:27
jjohansen  }09:27
eagles0513875ok i did that and just at the end like you did above add rwx09:27
eagles0513875and does it need a , after the permissions09:27
jjohansenso you need09:28
jjohansen  /your/share/location/ r,09:28
jjohansen  /your/share/location/** rwkix,09:28
jjohansen'a' is not needed when 'w' is specified as a permission09:29
eagles0513875what does the 2nd line do?09:30
eagles0513875jjohansen: ^09:32
jjohansenthe first line gives read access to the directory, the second line gives broad permission for data under the directory09:32
jjohansen** is a recursive glob meaning all files and directories under here09:32
jjohansenr - read permission09:32
jjohansenw - write permission09:32
jjohansenk - lock permission09:32
jjohansenix - allow execution from here but, anything run inherits the smbd profile09:32
jjohansenunless you are planning on executing things from the dir, you should be able to leave ix off09:32
eagles0513875jjohansen: how would that work then if i want to execute a file on my pc do i need to leave ix off?09:34
jjohanseneagles0513875: ah no. Let me explain a little more09:34
jjohansenThe profile only applies to the smbd daemon, the ix is being applied to it. So if the daemon tries to execute something from the share that program will run with the same confinement the daemon has.09:36
jjohansenHowever since a targeted policy is being used, the user (you) is running unconfined, and applications run from the share by you will also be unconfined09:36
eagles0513875ahh ok i got it09:37
eagles0513875ok what about other users on the system09:37
eagles0513875as i have it setup in terms of usernames and passwords to use system users09:37
jjohanseneagles0513875: unless you have done something special to setup policy for them, they run unconfined as well09:38
eagles0513875ok one other odd issue im seeing is i cannot connect to the work group but i need to specify the ip address09:38
eagles0513875im guessing that would be the router or something blocking samba09:38
jjohansenprobably09:39
jjohanseneagles0513875: grep DENIED /var/log/syslog09:39
jjohansenwill show up any apparmor based denials09:39
eagles0513875nothing09:40
jjohanseneg.09:40
jjohansen  Nov 11 14:21:17 ortho2 kernel: [84584.313258] type=1400 audit(1384208477.153:123450): apparmor="DENIED" operation="capable" parent=1 profile="/usr/sbin/libvirtd" pid=1322 comm="libvirtd" pid=1322 comm="libvirtd" capability=29  capname="audit_write"09:40
eagles0513875the odd thing is it doesnt seem to resolve by name which the shares fall under workgroup09:40
eagles0513875if i use the ip address it works just fine09:40
jjohanseneagles0513875: hrmm its failing the dns lookup for some reason09:41
eagles0513875probably router is blocking09:41
eagles0513875what port does samba use?09:41
eagles0513875the way the setup is is an adsl modem router then that i connected to a switch as I needed more ports09:42
jjohansenhrmm I don't know09:43
jjohansenI've never setup a samba share :)09:43
eagles0513875ok now i need to figure out why when i use another user besides me it doesnt accept the users credentials09:44
mardraumSMB uses quite a few ports09:45
jjohanseneagles0513875: what is your smb.conf file name resolve order?09:45
eagles0513875jjohansen: mardraum http://paste.ubuntu.com/6404393/09:45
jjohansenhrmmm that looks right, so that knocks that bug out of the running09:46
eagles0513875jjohansen: would i need to use apparmor in conjunction with the ACL09:47
eagles0513875standard access control list?09:47
eagles0513875https://help.ubuntu.com/community/FilePermissionsACLs jjohansen09:47
jjohanseneagles0513875: need no, you can yes. apparmor is hardening the server in case it has a vulnerability and gets attacked, its not setup from what I can see to control the permission of what is being handed to users, that is entirely regular access control list09:48
eagles0513875ok :)09:49
eagles0513875cuz i even added them to the sambashare group thinking that would solve the problem09:49
eagles0513875so basically09:49
eagles0513875if i add the sambashare group with rwx permissions that would be enough09:49
jjohansenyes it should be09:49
eagles0513875ok :)09:51
eagles0513875damn dolphin i wish it woudl ask me on this laptop every time for the username and password09:51
eagles0513875btw jjohansen and mardraum ty for your help09:54
eagles0513875jjohansen: im still getting access denied for these other users and they are part of the sambashare group09:58
eagles0513875bah09:59
=== silo_ is now known as Shogoot
eagles0513875hey pleia210:04
jamespagejdstrand, hey - I've subscribed you to a number of blueprints for UDS next week where I think we need some security enagagement10:08
jamespageplease feel free to delegate that out to whoever is most appropriate from your team10:08
eagles0513875hi jamespage10:11
jamespagehey eagles051387510:11
eagles0513875jamespage: have you done any samba share setups?10:12
jamespageeagles0513875, not for an extremely long time10:12
eagles0513875ok nm then ill head back to google10:12
sacardehi10:15
eagles0513875!hi | sacarde10:15
sacardeI nedd to reconfigure upgrades mode10:18
sacardehttp://digilander.libero.it/sacarde/np/tasksel-ubu.jpg10:18
sacardehow can I reconfigure this?10:18
sacardedpkg-reconfigure ???10:19
eagles0513875any samba experts here :(10:24
eagles0513875hey guys im having an issue with name resolution for the samba server10:31
eagles0513875and for some reason it is not resolving the name workgroup10:32
eagles0513875any ideas10:32
=== freeflying is now known as freeflying_away
eagles0513875jjohansen: figured out why users couldnt login11:08
jamespagezul, hmm - rtslib switch to apache-2.011:39
jamespageguess we can enable that cinder stuff now11:39
=== freeflying_away is now known as freeflying
=== gary_poster|away is now known as gary_poster
=== freeflying is now known as freeflying_away
=== guampa_ is now known as guampa
=== freeflying_away is now known as freeflying
Teduardodoes anyone know how to figure out why the RX dropped packets counter keeps incrementing like 1 or 2 per second on Ubuntu 12.04.3?14:34
Teduardothis is with the interface being in the KB/s range14:35
mardraumTeduardo: bad cable? switch duplex?14:42
Teduardothat should actually show up in errors/collisions i would think, not the queue in the nic14:43
gnuoyjamespage, you mentioned setting the  mtu to 1546 on the interfaces in an openstack deployment, that would just be for the neutron gateway and compute nodes wouldn't it ?15:00
jamespagegnuoy, yup15:00
gnuoythanks15:00
jamespagegnuoy, read this - explains why - http://techbackground.blogspot.co.uk/2013/06/path-mtu-discovery-and-gre.html15:02
gnuoyjamespage, thanks15:02
=== gfrog_ is now known as gfrog
Teduardooh.. 3.0 > increments rx_dropped everytime it sees a network protocol it doesnt understand. yay15:26
arosalesjamespage, on https://wiki.ubuntu.com/BlueprintSpec16:58
arosalesjamespage, what do you think on updating "Goal" to "Deliverable"16:58
arosalesjamespage, or should we just make the description of what a goal is a something than can be delivered, and measurable?16:59
=== racedo` is now known as racedo
joosseeis anyone here familair with virtualization and VM's on ubuntu server?17:24
=== thesheff17_ is now known as thesheff17
pmatulisyep17:39
nguyendhhi17:55
hallyn_zul: http://people.canonical.com/~serge/libvirt-t/ has the additions i need, but i've not yet set up the new round of tests18:00
hallyn_(lunch first)18:00
nguyendhi have Ubuntu 12.04 server running Apache2 , PHP and MYsql. On a monthly basic, the server crashes 3 times (kernel panic on exhausted memory). Linode is not so helpful in debugging the issue. Where should i start debugging the kernel panic issue ?18:01
sarnoldnguyendh: you've got to collect some information just before the badness hits; ps -aux output can be really nice to have, if you can get dmesg output or serial-console dmesg output, or perhaps /proc/slabinfo and /proc/meminfo you might be able to spot a trend that leads to trouble18:20
pmatulisnguyendh: a few things.  ① grep your syslogs for 'OOM' ② install sysstat and learn how to use it ③ install sosreport (info-gathering tool; precise-backports) and invoke it immediately after problem occurs18:27
=== hitsujiTMO_ is now known as hitsujiTMO
sarnoldpmatulis: cool, I've not seen sosreport, looks useful :)18:34
pmatulissarnold: it's cross-platform.  originally from suse i believe.  now championed by canonical support18:35
rostamHI I am using ubuntu 12.04 server, how could I enable serial console? thx19:00
geniirostam: In which type of context would you like to use the serial console? To communicate with an external device directly connected like UPS/switch/modem/etc?  Or to access from another computer with perhaps a nullmodem cable, etc?19:04
rostamgenii: I like to use it as console such that I can see output of the boot process, and be able to debug some of the issuees19:09
geniirostam: So in this instance, you are connecting it to another machine which will then view the output?19:13
=== psivaa is now known as psivaa-afk
rostamgenii, Yes that is what I need to do.19:17
geniirostam: https://help.ubuntu.com/community/SerialConsoleHowto ... older but still relevant. The pertinent parts are where it shows to config for Karmic and editing the /etc/default/grub file (grub2) instead of the menu.lst file (grub1)19:21
hallyn_zul:  one bug i'm hitting19:21
hallyn_https://bugzilla.redhat.com/show_bug.cgi?id=101563619:22
zulgah19:23
zulhallyn: qemu 1.6.1 ?19:23
hallyn_1.6.019:24
zulhallyn_:  got an idea?19:27
hallyn_well i guess we can just explicitly allow that state until upstream patches.  for now i see no fix in libvirt git19:28
zulneither do i19:28
nguyendhthanks for all suggestions.19:28
=== zz_Gurkenmaster is now known as Gurkenmaster
hallyn_zul: but let me know if you object to any of the changes I posted19:39
hallyn_going to build a test fix for the migration setup bug19:40
zulhallyn_:  url?19:40
hallyn_http://people.canonical.com/~serge/libvirt-t/libvirt_1.1.4-0ubuntu1.dsc19:41
zulhallyn_:  im gonig to add esx support in there as well19:44
hallyn_k19:45
rostamgenii, thanks19:46
jarcoHello all. What could be reasons for apache2 going back to /var/www If i have made a vhost to another folder in that folder and have used a2ensite with that domain?19:49
jarcoother vhosts work on this server19:50
jarcoand this is my file that i made for apache http://pastebin.com/HmHM6hFT19:51
geniirostam: You're welcome. Did you manage to get it working yet?19:54
jarcoOk I now found that disabling default will make apache go to the correct folder19:58
jarcobut I dont want to disable default19:58
jarcoOk I now discovered that having a domain name point to your hostname is not a great idea20:00
jarco:)20:00
funny_ha_hai have an ubuntu 10.04 server which usually uses nsswitch.conf ldap for users to login ("compat ldap"). the server is has currently no network connection at all. i am not able to log in locally using the root account or another account i created. i am able to log into the recovery console and i tried a bunch of different pam.d, ldap.conf, nsswitch.conf, security/access.conf things but to no avail. i just can't log in locally. any ideas? i20:06
hallyn_zul: great, now virsh-uriprecedence testcase is unhappy with me20:11
zulhallyn_:  its because of the 9002 patch i bet20:11
pmatulisfunny_ha_ha: a lot of things can be wrong20:13
funny_ha_hanudge me into a direction i didn't mention :)20:13
hallyn_zul: yes...  just trying to figure out the best way to fix the test, and trying to make sure the 9002 patch is doing it right...20:16
zulhallyn_:  i think thats why i asked we needed it in the first place20:17
pmatulisfunny_ha_ha: client nsswitch.conf, client PAM, client NSS, client ldap config, server ldap config20:17
pmatulisfunny_ha_ha: if just one of those is bad, the whole thing collapses20:18
hallyn_zul: but here we go, it looks like /etc/libvirt/libvirt.conf is obsolete in favor of $XDG_CONFIG_DIR/libvirt/libvirt.conf - i.e. per-user config file20:18
zulhallyn_: ack20:19
hallyn_zul: cause setting uri_default in /etc/libvirt/libvirt.con does nto work - too bad as that would let us drop 9002 patch20:19
funny_ha_hapmatulis: well as i said, the ldap server is not available at the moment. and that's fine. i just want to be able to login when the server is not there. all the client confs you mentioned, i already went over at least 4 times :/ i must be missing something20:21
pmatulisfunny_ha_ha: it can get fairly complicated.  and, yes, you can set it up to log in if the server is not around (either have some kind of credential caching or have local accounts, at least for some important users)20:23
hallyn_zul: so those tests have never passed for us (don't in saucy either).  "VIRSH_DEFAULT_CONNECT_URI=test:///default virsh uri" works, while "LIBVIRT_DEFAULT_URI=test:///default virsh uri" does not20:29
zulhallyn_:  skip it then20:29
hallyn_zul: do you still have an install of your original 1.1.4?20:29
zulhallyn_:  i dont20:29
hallyn_i'd be curious to see what you get there for LIBVIRT_DEFAULT_URI=test:///default virsh uri20:29
hallyn_ok20:29
hallyn_i mean, you must get test:///default, or else your build wouldve failed...20:30
hallyn_allr ight then ,proceeding.  <sigh>20:31
joosseeguys is there a good primer on running a ubutnu virtualization server?20:39
pmatulisjoossee: try the ubuntu server guide20:48
joosseeam i understanding this correctly? I can bridge 3 wireless netwrk connections into one superfast connection?20:52
joosseeguys can I mount a bootable USB stick as an image or use with libvirt?21:25
unit3Hey, quick Q. I've got a VM I updated to 13.10, and after the upgrade it's got a new new grey, purple and orange prompt which looks like this: unit3@ds9:~⟫21:50
unit3however, other systems I've upgraded or freshly installed don't have that prompt.21:50
unit3anyone know what package it came from how I can enable it elsewhere?21:50
ersisounds kind of like byobu?21:53
ersiHm, maybe not.21:53
unit3oh, it could be byobu.21:57
unit3I do use it on a bunch of my boxes. just weird that my desktop, which was upgraded, doesn't show the same prompt when I launch byobu.21:57
unit3but I do see byobu code for setting what looks like a similar prompt.21:58
kirklandunit3: yes, that's byobu21:58
kirklandunit3: it only installs that by default, if byobu can determine if you haven't modified some things in your environment21:58
unit3Yeah. it must think I've modified things on the other hosts where it's not showing up. time to dig through the code21:58
kirklandunit3: that said, you can easily enable it by ensuring that you have Byobu >= 5.60 installed, and run byobu-enable-prompt21:59
unit3oh, handy!21:59
kirklandunit3: yep ;-)21:59
unit3yep, that worked! Thanks! :)21:59
unit3Now to steal the prompt code for my non-byobu systems. ;)21:59
ersi^_^22:00
=== Gurkenmaster is now known as zz_Gurkenmaster
=== gary_poster is now known as gary_poster|away
hallyn_zul: so http://people.canonical.com/~serge/fix-uri-precedence-test needs to be added to debian/patches in the package i posted before.  i'll keep working tomorrow, but if you wanted to push it as is i think that'd be sensible22:12
hallyn_zul: (updated http://people.canonical.com/~serge/libvirt-t22:17
* hallyn_ out22:17
HaltingStatewhat is best way to spin up a VPN, install stuff, nuke it, do it again; etc like self hosted EC2?22:21
HaltingStateis there a tutorial for open stack for that?22:21
zulhallyn_:  will do23:00
=== freeflying is now known as freeflying_away
pmatulisHaltingState: yes, look into openstack23:16
=== freeflying_away is now known as freeflying

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!