/srv/irclogs.ubuntu.com/2013/11/30/#ubuntu-server.txt

jrwrenhazmat: i actually pitched removal of a number of packages recently :)00:01
hazmatjrwren, i'm primarily looking at lxc instances (including in cloud-instances), and minimizing seconds on container boot time, its easy to avoid via some container customizerization00:01
hazmatjrwren, fair enough00:01
hazmatits easy to do externally00:01
jrwrenhazmat: do you then git clone something to teh new instance?00:02
hazmatjrwren, git is used internally by juju when deploying charms, but fair enough i'm snapshotting against a base image for the containers, easy enough to add there, out of curiosity what packages were you pitching to remove?00:03
jrwrenoh, a juju thing.00:03
jrwrenwould make sense to have a jujuimg separate from cloudimg IMO00:03
hazmatjrwren, basically i'm creating a base juju image from each series/release cloud image, i can add the extra package there just as easily00:04
hazmatalthough it would be nice if lxc-attach would work with precise and hwe kernels.. ssh normalizes nicely across the containers.00:05
hazmatby base juju image i mean container with  btrfs snapshot for lxc-clone. the default cloud images have nothing in specific support of juju btw.00:09
=== freeflying is now known as freeflying_away
jrwrenright. i know the cloudimg pretty well.00:19
jrwreneverything else you just said, i've no idea what you are talking about :)00:20
=== robbyf_ is now known as RobbyF
mushtaris this the right channel for discussing CloudInit, i.e. https://help.ubuntu.com/community/CloudInit ?00:58
lifelessit's a fine channel01:00
lifelessfor that and many other things01:00
mushtaroh good01:00
mushtaris it possible to get cloud-init to run on my mac?01:01
mushtari want to be able to use write-mime-multipart01:02
mushtarfigured it out. bzr branch lp:cloud-init01:27
=== liam_ is now known as Guest46102
kirklandjamespage: uh oh, what happened?03:38
MarGulHi I have just unstalled ubuntu server 12.04 and I have changed ip address to static (been pinging it from my laptop and I know its connected to my network). Then I installed nginx running the command aptitude install nginx. The version of nginx is 1.5.6. When I then, on my laptop, type in my servers ip address in my webbrowser I get nothing.04:23
MarGulIm following the manual http://arstechnica.com/gadgets/2012/11/how-to-set-up-a-safe-and-secure-web-server/2/04:23
crimsonmanei need to re-do my certs ... i just ran through the steps i used the first time but it failed to change the cert as evidenced by the old data being present and not the new data. i used a different email address to make them stand out.05:11
anepanaliptoshello..05:30
anepanaliptosdont tell me !ask, i know. just being kind.05:30
anepanaliptosok guys.. so this is what i want to do. I dont really understand lvms and the like, but i know what i want..05:30
anepanaliptosmy old machine was a simple 1 disk setup, and while installing ubuntu i chose the guided partitoning and chose luks + lvm05:31
anepanaliptosi want to do the same again, except this time, with two disks. and i want the "2nd disk" to be in teh LVM so i only have to type the key once.05:31
jkitchenbut not raid?05:32
anepanaliptoslvm though seems to create one giant partion, like dynamic disks. i dont want that. i want one "partition" on the 1st disk, and the "other/storage" on the other05:32
anepanaliptoscorrect. but no raid.05:32
jkitchenthey're separate PVs then05:32
jkitchenno way around that05:32
anepanaliptosum05:33
anepanaliptosis there a way the "storage" disk can mount into the first group?05:33
jkitchenyou can mount things wherever you want05:33
anepanaliptos(im at the guided screen if you wanna teamviewer and push the buttons, but i have a feeling you know what i want to do..)05:34
anepanaliptosi dont mind how the "mounting process" happens, as long as.. see the reason why i want them seperate is so that i could possibly transport the second disk and mount it on another computer someplace.05:34
patdk-lapanepanaliptos, why do that at all?05:35
patdk-lapwhy *type the key* multible times?05:35
anepanaliptosi dont want to.05:35
patdk-lapthen don't05:35
anepanaliptosso how would i set it up so i dont have to?05:35
patdk-lapthere are many ways05:36
patdk-lapI personally use a script to fetch the key05:36
patdk-lapthe script asks for the password to decrypt05:37
patdk-lapit then uses that password to get the key05:37
patdk-lapI store the keys in a gpg archive05:37
anepanaliptoswoah too complicated05:37
patdk-lap:)05:37
patdk-lapyou could go lazy05:37
patdk-lapjust save the key onto your first disk05:37
anepanaliptosok what's that route look like?05:37
anepanaliptosaa ok.05:37
patdk-lapand reference that file to unlock the second05:37
patdk-lapif first is locked, can't unlock the second05:38
anepanaliptosok. can that be done "near boot time" ?05:38
patdk-lapnear boot time?05:38
patdk-lapwhat does that mean?05:38
anepanaliptosthat sounds better.05:38
anepanaliptosbefore for example, apache2 starts up05:38
patdk-lapno idea05:38
patdk-lapit happens when disks mount05:38
patdk-lapthat is upto upstart05:38
anepanaliptosperfect.05:38
patdk-lapissues is, anyone that roots your server, has access to the decrypt key05:39
patdk-lapso using a script, while much harder, is safer, by alittle bit05:39
anepanaliptoshmm.05:39
anepanaliptoshmmm.05:39
anepanaliptosi think ill just type it twice.05:40
patdk-lapwhat exactly are you protecting against?05:40
anepanaliptoshow do i setup luks without the volgroup stuff then?05:40
anepanaliptosim trying to protect againt physical theft05:40
patdk-lapthen it doesn't matter05:41
anepanaliptosso when you yank the power, you're done and you need the key again.05:41
patdk-lapwell, those are totally different05:41
lifelessanepanaliptos: oh, so if people are serious about stealing kit they won't yank the power05:41
anepanaliptoslifeless: lol.05:41
patdk-lapthe best way to steal it, is to root it and copy the data while it's up05:41
jkitchenand nobody even knows05:42
patdk-lapthe system is much less protected when it's running05:42
lifelessanepanaliptos: there are stock products that replace the power supply hot05:42
anepanaliptosyeah im just talking about like a dumb theif stealing equipment.05:42
anepanaliptoslook, its my mailserver05:42
patdk-lapthen saving your key for the other disks in /etc, is safe enough05:42
anepanaliptosim trying to "protect" against some "not nice people" accessing.. my mail. if it were to get siezed.05:43
patdk-lapcause it's unlikely they logged in, and rooted your server to get those keys first05:43
anepanaliptosthat kind of thing.05:43
patdk-lapsiezed?05:43
anepanaliptosbut im happy with this solution too05:43
anepanaliptos23:42 < patdk-lap> then saving your key for the other disks in /etc, is safe enough05:43
patdk-lapthat implies people know what they are doing05:43
anepanaliptosnot really. local authoraties arent that smart.05:43
jkitchenthermite trap05:44
jkitchenproblem solved05:44
patdk-lapjkitchen, what triggers it?05:44
patdk-lapnot solved :)05:44
anepanaliptosagain, too technical.05:44
anepanaliptoshow do you guys protect your mail servers?05:45
jkitchenpatdk-lap: "oh shit" button05:45
jkitchen:)05:45
jkitchentie it to your iphone "siri, nuke the drives please"05:45
anepanaliptoswhen i had the first one, with only a physical raid, i felt "safe" with luks05:45
patdk-lappersonally, I have to insert a special usb stick05:45
patdk-lapand type in a password05:45
anepanaliptosok. any things i can "rtfm" to help me setup something similar?05:46
patdk-lapbut, for email05:46
patdk-lapit is much much more likely they tapped your internet connection05:46
anepanaliptoseeh. still pointless. ssl.05:47
patdk-lapwhat ssl?05:47
patdk-lapsmtp doesn't use ssl05:47
anepanaliptosi use webmail.05:47
patdk-lapso your email is safe until you send/receive05:47
anepanaliptosyeah. i understand those rules.05:47
patdk-laptill everyone starts doing dane/tlsa, I don't really get the whole encrypted email thing05:48
patdk-lapif you secured your email, like with s/mime, or pgp05:49
patdk-lapthere would be no need for encryption05:49
patdk-lapthe only thing your somewhat protecting is your email history, from *before* they tapped your connection05:49
anepanaliptosohkay.05:49
anepanaliptosso single disk it is that mounts the others via key.05:50
patdk-lapwell, the simple way is, use your password to unlock your root disk05:50
patdk-lapthen save the keys on your root disk, maybe like /etc/disk.keys/....05:50
patdk-lapand use those files to unlock the other disks05:50
patdk-lapsomeone would have to copy those files first, to unlock the other disks05:51
patdk-lapor have the password to unlock the first disk05:51
patdk-lapthat is the simple way05:51
patdk-lapany other way, gets into messing with initramfs, and that isn't much fun05:51
anepanaliptosyeah. i think that way is best.05:52
patdk-laps/best/acceptable/05:53
anepanaliptosand as far as the whole email thing, there is MX tls05:53
anepanaliptos23:53 < patdk-lap> s/best/acceptable/05:53
anepanaliptos^^ agreed.05:53
patdk-lapsmtp mx tls is mitm05:53
patdk-lapit is full of selfsigned, unsigned, broken, expired, certs05:54
anepanaliptoscorrect. but for "the people who care" that i exange email with, we have exchanged keys.05:54
patdk-lapso you can't enable hard verification05:54
* patdk-lap just has lots of ipsec tunnels05:54
anepanaliptosyeah i dont know if i trust creating an ipsec tunnel with someone.05:56
=== Ursinha is now known as Ursinha-afk
_root_for IP Aliasing: both Ip should have the same MAC address?06:18
jkitchenyou don't need to specify the mac06:20
jkitchenunless you're talking about something different than I'm thinking of :)06:20
=== NomadJim_ is now known as NomadJim
=== freeflying_away is now known as freeflying
_root_I have to add my first IP to my VPS this way http://paste.ubuntu.com/6497998/ and because of that I cant get the eth0:0 to IP alias. could you give me a clue as to what should I do to get eth0:0 working08:35
bluekingsamba seem to be tricky to manage get installed   there are some issues several places09:27
bluekingare there samba install scripts that are up to date ?09:31
nf7How can I get /etc/crontab to run a script as if it is in the same working directory as the script?10:08
jkitchennf7: cd /path/to/dir && /path/to/dir/script10:08
nf7ohhhhh10:08
nf7jkitchen: is this a messy way to do it?10:09
jkitchenthat's the way to do it10:09
nf7jkitchen: awesome, thanks a lot10:10
jkitchenyup10:10
andolnf7: Alt have the script start off by entering the desired working directory, assuming that applies equally well.10:10
nf7andol: it's a Python script, is it possible to do that?10:11
=== wickedpuppy3 is now known as wickedpuppy
jkitchenhttp://docs.python.org/2/library/os.html#os.chdir10:11
nf7thank you!10:12
nf7jkitchen: Is it possible to have os.chdir point to the scripts path (so it will work no matter where I put the script), or do I need to always manually enter the path?10:18
jkitchennf7: http://docs.python.org/2/library/sys.html#sys.argv  http://docs.python.org/2/library/os.path.html#os.path.basename10:28
nf7jkitchen: Thanks a lot. It's really hard for me to read and find my own information using the documentation. Is there some sort of guide on how to utilize the documentation properly? Or do I just need to learn more.10:30
jkitchenI am permalinking you directly to the functions you want10:30
nf7jkitchen: Right, I'm just asking for future reference.10:31
jkitchenoh10:31
jkitchenI just google for the function name10:31
jkitchenor thereabouts10:31
nf7Cause I need to stop bothering people so much about little things.10:31
jkitchenhah, it's fine10:31
nf7Ah ok, how long have you been programming with Python?10:31
jkitchenI don't10:31
jkitchenI've been a professional google user for about 13 years now though10:32
nf7hahah10:32
nf7that's always a good skill10:32
nf7do you program with anything though? or just use Ubuntu server?10:32
jkitchenI am a recovering perl user turned rubyist10:33
jkitchendabbled briefly in python10:33
nf7cool, there's a lot of perl in linux isn't there?10:33
nf7I was fixing a problem with a wifi card's hardware a while back and I ran into a lot of perl scripts10:33
jkitchenthere's a lot of a lot of stuff in linux10:33
nf7right10:34
jkitchenused to be perl was really popular for a lot of stuff though10:34
jkitchenstill is, truth be told10:35
nf7Perl and Python are very similar aren't they?10:35
jkitchenlots of folks like me who can whip up all kinds of shit in perl in no time10:35
jkitchenbut trying to keep up with the new hotness10:35
nf7That's what someone told me anyway.10:35
jkitchenperl python and ruby are like the romance languages10:35
nf7What kind of stuff do you use Ruby for?10:36
jkitchenmy company is a rails shop10:36
jkitchenso... basically everything10:36
nf7Right, I've dabbled very little with Ruby, seemed almost identical to Python up to what I learned.10:36
jkitchenhah10:36
jkitchennot even remotely :)10:36
nf7Cool, so web development?10:36
nf7yeah of course, past a point10:36
jkitchenno, I'm ops10:36
jkitchenI just run the servers10:37
nf7interesting10:37
jkitchenbut I use puppet for managing my servers, and foreman for managing the metal10:37
jkitchenso there's some ruby there10:37
nf7I've been programming for about 3 months right now. Just writing some Reddit bots, having them run on a Ubuntu server on an old netbook that I'm SSH'ing into. It's fun.10:37
jkitchennow that this migration is almost finished (working on it right now, in fact, should be done shortly) I'll be able to get into the code side of things a bit more and start making things suck less10:38
jkitchencool10:38
nf7Well I didn't understand much of that but it sounds interesting.10:38
nf7What OS do you use for programming/personal use?10:38
jkitchenOSX is my daily driver10:39
jkitchenbut really it's just a pretty terminal10:39
jkitchenchrome, iterm, adium, and a music player10:39
jkitchenmy primary operating environment is an ubuntu server with about 2 dozen tmux sessions10:40
nf7Yeah I was using OSX as well but I recently switched back to Windows, I like 8.1 a lot.10:40
jkitchenI can't work on windows10:40
jkitchenlike literally am incapable10:40
nf7Just don't like it or missing some particular program?10:40
jkitchenthere are no terminals for windows10:40
jkitchenputty doesn't qualify.10:40
jkitchenputty is great for what it is, but it's not what I need.10:41
jkitchenplus I really enjoy having a proper unix command line on my daily driver10:41
nf7_Whoops, lost the Wifi there for a moment, back though.10:42
nf7_What did I miss?10:42
jkitchendunno10:42
jkitchenI have one windows machine, and it's been turned off for the last 8 months.10:43
nf7_Well the main reason I switched back to Windows is that I really like 8.1, they've figured out their hotkeys, took some pointers from OSX as well with the spotlight style search and a few other things.10:43
nf7_Plus I really like Thinkpads10:43
jkitchenif I were going to use a thinkpad it would have linux on it.10:43
nf7_Can get around 12 hours of battery with two packs and the docking base is amazing10:43
jkitchenbut there is no finer laptop than the 13" retina macbook pro10:44
nf7_I love coming home and simply snapping it on and having it connect to the speakers, mouse, screen, keyboard, external hd instantly, it's great10:44
nf7_Yeah that's actually what I had as well, great machine10:44
jkitchen"docking base"10:44
jkitchensome proprietary thing10:44
nf7_yes it's lenovo proprietary10:44
jkitchenI have a thunderbolt display10:45
nf7_very similar10:45
nf7_the apple one?10:45
jkitchenyes10:45
nf7_that's one of the nicest screens, crazy expensive though10:45
jkitchenwas free10:45
nf7_I think if I ever bought an OSX machine again I'd get a 13 inch Macbook pro10:45
nf7_the battery on those things is crazy10:45
nf7_macbook air*10:45
jkitcheneverything on this thing is crazy.10:45
jkitchenoh, not the air10:46
jkitchenI am spoiled by retina10:46
nf7_yeah the retina is great10:46
nf7_I love how you can scale the resolutions10:46
nf7_you know what I'm talking about?10:46
jkitchenI only use it at the 1680x1050 effective resolution10:47
nf7_I like it at whatever the default it10:47
nf7_is*10:47
jkitchendunno, I love linux on the desktop, but I also love not having to fuck with my laptop to have it work10:48
ikoniathere is no need for tha language jkitchen10:48
jkitchensorry10:48
ikoniano problem, thank you10:48
jkitchen(didn't realize mac was a dirty word, amirite?)10:49
nf7_haha10:49
jkitchenI kid.10:49
jkitchenI came close to buying a thinkpad or samsung series 9 this time around, but then the mavericks preview came out where they were talking about the battery optimizations they were doing at the OS and hardware levels and stuff10:50
jkitchenmind blown10:50
jkitchensorry but there's just no way linux can compete with that :(10:50
nf7_OSX has crazy good power utilization.10:51
jkitchenthat's the kind of stuff you can do when you are fully vertical10:51
nf7_Windows must be the worst.10:51
nf7_Even so, I get really good battery life on my ThinkPad10:51
jkitchenfor sure10:51
nf7_I've actually removed all Lenovo drivers10:51
nf7_there were a bunch of power management ones, but I notice no difference whatsoever with them off.10:52
jkitchenbut there's always that time when you're sitting there and boom, 90% -> 10% in what feels like minutes because something is chewing up power10:52
nf7_Yeah true10:52
jkitchenhappened on my android phone all the time10:52
jkitchenhappened on my thinkpads in the past10:52
jkitchenI do miss linux on the desktop though.10:52
nf7_I can't stand all the tools and utilities Lenovo puts on their machines (even if they aren't bloatware technically), first thing I did was a fresh install from a Microsoft CD10:52
ikoniais this really anything to do with ubuntu server ?10:53
ikoniaperhaps take it to one of the offtopic channel please ?10:53
jkitchenheh10:53
nf7_I was just heading out anyway, thanks for the help.10:53
jkitchennp, good luck10:54
Gilligan94Hi I have a system without a graphics card and I want to set up ubuntu server on it, what would the best way to do this be?10:54
ikoniaa serial connection10:54
jkitchenGilligan94: network console10:54
Gilligan94so I'll beable to install it over SSH?10:54
jkitchenit really doesn't even have like an onboard vga? weird.10:54
jkitchenGilligan94: yup10:54
Gilligan94yea no VGA this is an AMD system10:55
jkitchendoesn't mean it doesn't have a vga port on board10:55
jkitchenin fact with newer AMDs it seems like it's hardecr to get one WITHOUT an apu than with...10:55
Gilligan94in this case it doesn't have any VGA10:55
jkitchencrazy10:55
Gilligan94I believe this mobo and CPU was aimed at gaming so they just assumed you would use a dedicated GPU10:56
ikoniawhat is the motherboard model10:57
Gilligan94not sure, I dont have it on hand currently10:57
jkitchennot even hdmi?!10:59
* jkitchen is baffled10:59
Gilligan94nope nada10:59
Gilligan94kinda cool IMO keeps the cost down11:00
jkitcheneh11:00
jkitchenby about $211:00
jkitchenanywho OFF TOPIC11:00
jkitchentry the network installer.11:00
Gilligan94every little bit counts >.>11:00
Gilligan94alright thanks11:00
jkitchenor serial console11:01
jkitchenbut I doubt it has a serial port11:01
Gilligan94yea I dont think it does11:01
ikoniaif it's not got any form of vga for "cost saving" they won't have put a serial port on11:01
jkitchenright11:01
Gilligan94any advantage to using 13.10 over 12.04?11:02
jkitchenplenty11:02
ikoniaGilligan94: it really depends on your needs11:02
jkitchengo with 13.10 unless you need LTS11:02
Gilligan94alright11:03
bluekingdoes there exist scripts  up to date for install of samba ?11:51
ikoniablueking: the package manager will manage updates12:01
frojndHi there. I need a little assitance with mx records. I successfully set multuiple A records for server's IP. So when I go to mydomain1.com it  goes there without a problem. It's the same with mydomain2.com Now I'd like to set up MX records for mail server for mydomain1.com. Under free DNS hosting section of my host provider, I set up: Name: mydomain1.com,  Type: MX, Value: IP12:05
frojndWHen I do dig -t mx mydomain1.com I can't see mydqomain1.com under mx...12:06
frojndAm I doing this correctly?12:06
frojndI also tried for google mails and it's rather different then I did: Name: atl1.aspmx.i.google.com, Type: MX, Value: mydomain1.com12:07
ikoniadns changes will take time to go live12:07
frojndSo: do I have to first set A recrod for mail.mydomain1.com and then use this?12:07
ikoniamx records need to be a vali dhost name too12:07
frojndikonia: I've set up yesterday and still not seen.12:08
ikoniais the fqdn of the mx host able to be resolved12:08
frojndikonia: so in theory, if I set first A record: mail.mydomain1.com for server's ip and then use for mx like this: mail.mydomain1.com Type: MX value: mydomain1.com will it work?12:08
ikoniaMX has to be a fqdn, not an ip12:08
frojndaha12:09
frojndwe found a problem12:09
frojndlet me try12:09
frojndIt says changes will be visible in max 4 hours12:11
frojndNevertheless I noticed a few problems with postfix12:12
frojnd postfix/cleanup[1128]: warning: mysql:/etc/postfix/mysql-virtual-alias-maps.cf lookup error for "root@mydomain1.com" this warning each second, which is worring me12:14
frojndlog is already 18MB big12:14
frojndioptop is running like crazy :)12:14
frojndIn that *.maps.cf I have user, password, hosts, dbname and query12:15
frojndAlso in that file, user is not root12:17
=== julian is now known as alamar
=== Ursinha-afk is now known as Ursinha
bluekingikonia:  not that kind I was thinking.. but script to get everything installed12:43
ikoniathe package manager will install everything12:44
leelondoni used ubuntu-s for five years guys13:57
leelondonplease like https://www.facebook.com/DwayneJohnson13:57
leelondonthe rock13:57
frojndOk. I have setup a MX record for mydomain1.com as mail.mydomain1.com and is also seen if I do dig -t mx mydomain1.com15:07
frojndWhat does that error mean for postfix?  Nevertheless I noticed a few problems with postfix15:07
frojnd  postfix/cleanup[1128]: warning: mysql:/etc/postfix/mysql-virtual-alias-maps.cf lookup error15:07
MaddethHey all, anyone know if there is a netatalk channel?15:55
Maddethor anyone able to help bme with some netatalk issues15:56
Maddeths/bme/me/15:56
=== mjohnson15_2 is now known as mjohnson15
submanI've tried adding a second hard drive to my ubuntu server machine but now it won't boot up.  It gets stuck at verifying dmi pool.  Any ideas?16:45
=== mibofra- is now known as mibofra
bitbyteHey guys any one here who can help out with a VPN problem ?18:47
jkitchen?ask18:50
jkitchen??ask18:50
jkitchendon't ask to ask, just ask. if someone can help and is willing, they might just do that18:51
anepanaliptosyes. but i dont know what your problem is.18:53
bitbytesorry got called away from the machine as i typed enter18:56
bitbyteI'm having some problems understanding generating the certificates18:56
jkitchenbitbyte: what sort of vpn are you creating, openvpn?18:56
bitbyteI am following the setup outlined here : http://serverfault.com/questions/212382/how-to-set-up-strongswan-or-openswan-for-pure-ipsec-with-iphone-client18:56
bitbytebut the openssl command I am having trouble finding any details for. Any ideas on some documents to read up more on it18:57
jkitchenthere's always 'man openssl'18:57
bitbyteI am setting up StrongSwan on ubuntu server, I think I have the config right. But when i generate the certs they don't seem to work right18:57
jkitchenbut basically that guy is setting up a CA and such18:58
jkitchenfor my vpn (openvpn) I use the easy-rsa stuff that ships with openvpn18:58
jkitchento manage my ca18:58
bitbyteIf I'm just setting up a home VPN would i need to setup the Certificate Authority ?18:59
jkitchenyes18:59
bitbyteI was looking on ss64 for the openssl command but had no luck18:59
jkitchenif you follow those directions on the page exactly, it should work fine18:59
jkitchenwhat step did you have trouble with?18:59
bitbyteOk I will give it another shot, The issues began when i copied the certs over to my osx test laptop and it did not recognize the certs even when fully important to keychain19:00
bitbyteThe setup I have at the moment is : http://pastebin.com/g2yhYYC019:01
bitbyteIf I understand this correct the leftsubnet 10.10.10.x/24 will be the network the VPN clients are on and 0.0.0.0/24 will accept any inbound IP's19:02
jkitchenI can't speak to that part, sorry19:02
bitbyteand having the interfaces=%default route it should pass it through to the em1 ethernet interface and connect it to my internal 10.10.5.x/24 network19:02
bitbyteThere was one other item i was wondering about which was that when i run the openssl to generate the certs it asks for a password, Can this be taken off ?19:04
bitbyteBecause if I understand it correctly, it will require the password to be entered every time its requested to be used.19:05
anepanaliptosyes you can leave it blank and push enter19:16
bitbyteWhen i pushed enter it seems to exit the creation of the cert19:17
bluekinghello20:29
bluekingI have a question about reboot/init 6      I have an issue with it    tried google for it but found no answer to it, maybe someone here knows  ?   the issue about reboot/init 6 is that it shuts down computer and doesn't restart    are there ways to force  pc/linux restart ? I am running ubuntu server 13.1020:31
zkvvoobHi guys, I'm trying to find out why my Ubuntu 12.04 server with Postfix/Dovecot suddenly stopped receiving emails. Sending works fine. Could someone give me a hand?20:56
zkvvoobPlease?21:01
zkvvoobAnyone?21:12
bluekingI have a question about reboot/init 6      I have an issue with it    tried google for it but found no answer to it, maybe someone here knows  ?   the issue about reboot/init 6 is that it shuts down computer and doesn't restart    are there ways to force  pc/linux restart ? I am running ubuntu server 13.1021:23
sander^homeHow do I decrypt a pgp message?21:53
jkitchenyou need the private key21:54
jkitchenthen you just gpg --decrypt21:54
sander^homejkitchen, do you have a compleate example?22:03
jkitchensander^home: huh?22:04
jkitchengpg --decrypt filename22:04
sander^homejkitchen, ah, ok. And what argument do I spesify the private key, and where do I spesify the message?22:05
jkitchensander^home: you need the private key in your keyring22:05
jkitchenand you can either pipe the message in or specify a filename22:05
jkitchengpg will figure out which private key to use to decrypt the file if you have multiple private keys in your keyring22:06
sander^homejkitchen, how do I import the private key into my keyring?22:07
jkitchensander^home: gpg --import keyfilename22:09
jkitchenor you can pipe the key into --import22:09
sander^homejkitchen, seems like I got an public key..and a message22:16
jkitchensander^home: if you don't have the private key you can't decrypt the message22:17
jkitchenthat's kinda the point22:17
sander^homejkitchen, ok. Thanks alot:)22:24
zkvvoobHi guys, I'm trying to find out why my Ubuntu 12.04 server with Postfix/Dovecot suddenly stopped receiving emails. Sending works fine. Could someone give me a hand?22:27
bluekingnoone had problem with shutdown -r, reboot, init 6  ?22:30
jkitchenzkvvoob: what's in your maillog?22:30
jkitchenalso, what's the domain?22:30
zkvvoobjkitchen: http://paste.ubuntu.com/6501474/22:31
jkitchenDec  1 00:20:02 server sm-mta[7723]: NOQUEUE: SYSERR(root): hash map "access": missing map file /etc/mail/access.db: No such file or directory22:33
jkitchenthat's not postfix, for one22:33
jkitchensm-mta I'm gonna guess is sendmail22:34
zkvvoobjkitchen: but I removed that22:34
zkvvoobsendmail22:34
jkitchenclearly not22:34
zkvvoobwhat do I do then?22:34
jkitchenremove sendmail, install postfix22:34
zkvvooblike I said, already did that: apt-get remove sendmail, apt-get autoremove22:35
jkitchenhow did sendmail get on there to begin with?22:35
zkvvoobI was trying to figure out why the PHP Mail function was not working and tried setting up sendmail; when nothing changed, I removed it22:35
zkvvooband reinstalled Postfix22:35
jkitchenah22:35
jkitchenthat'll do it.22:35
zkvvoobbut maybe I messed something with the config files22:36
jkitchenpostfix ships its own /usr/sbin/sendmail, so you don't need to actually have sendmail installed22:36
jkitchendpkg -l | grep sendmail22:36
zkvvoobjkitchen: http://paste.ubuntu.com/6501494/22:37
jkitchenok, what about postfix22:38
jkitchenalso, perhaps sendmail is still running, check your process list22:38
jkitchenor try telnet localhost 2522:38
zkvvoobjkitchen: http://paste.ubuntu.com/6501495/22:38
jkitchenok, postfix isn't installed either22:38
zkvvoobso, apt-get install postfix again?22:39
jkitchenso between that and the fact that you removed postfix and installed sendmail, that would cause mail to stop working, yes.22:39
jkitchenyea, install postfix22:39
zkvvoobaye, aye22:39
jkitchenbut first check the process list22:39
zkvvoobhow?22:39
jkitchensendmail may still be running22:39
jkitchenps aux | grep sendmail22:39
jkitchenmaybe22:39
jkitchenI don't (won't) use sendmail, so I'm not sure what all processes it uses22:40
zkvvoobroot      4303  0.0  0.0  13548  2208 ?        Ss   Nov30   0:00 sendmail: MTA: accepting connections root      8372  0.0  0.0   4392   808 pts/0    S+   00:40   0:00 grep --color=auto sendmail22:40
jkitchenyea, it's still running. kill it.22:40
zkvvoobagain, how? :(22:40
jkitchenkill 430322:40
jkitchen4303 is the pid of the sendmail process there22:41
zkvvoobright, got it22:41
zkvvoobdone22:41
jkitchen(second column)22:41
zkvvoobnow install postfix?22:41
jkitchenyup22:41
jkitchenand hopefully you didn't apt-get purge it before, it should still have your configu22:41
zkvvoobno, I didn't purge anything22:41
zkvvoobit's installed22:41
zkvvoobnow what?22:41
bluekinganyone knows what option -d means ? in -> "reboot -d -f -i"      looking at file /etc/rc6.d/S90reboot22:41
bluekingman doesn't mention -d option22:42
jkitchenzkvvoob: in theory, postfix is up and running and your mail should be working again22:43
zkvvoobhm, ok, I'll tail the mail log and send a messge22:43
zkvvoobjkitchen: http://paste.ubuntu.com/6501525/22:45
zkvvooband there's no trace of the message in my mailbox22:45
jkitchenDec  1 00:45:01 server postfix/smtpd[9185]: error: unsupported dictionary type: mysql22:45
jkitchenyou may need to install postfix-mysql22:46
jkitchendunno if you were actually using that before or whatnot22:46
zkvvoobjkitchen: nothing - http://paste.ubuntu.com/6501545/22:48
jkitchenyou need to restart postfix after installing the package22:49
zkvvoobdid that22:49
jkitchenok22:49
jkitchenmailq says?22:49
zkvvoobjkitchen: http://paste.ubuntu.com/6501552/22:50
jkitchenzkvvoob: those are bounce messages, you can look at what they say with postcat. postcat -q B6C8C60156622:52
jkitchenthough unless your clock is quite off those are most likely not relevant to this matter22:52
XeronixI'm having trouble installing Ubuntu Server 13.10 - my USB keyboard is not recognized by my computer once I get into the installation steps22:52
XeronixI'm stuck at Select a Language22:52
jkitchenXeronix: replug?22:52
Xeronixjkitchen: I have tried that22:52
zkvvoobjkitchen: no, it's not off, they are old; aparently I've not been receiving message for quite some time, not just today22:52
jkitchenjust a thought :)22:52
jkitchenzkvvoob: I'd bet there's a strong correlation between when you uninstalled postfix and installed sendmail and when your mail stopped working22:53
jkitchenXeronix: do you have any sort of legacy usb support enabled in your bios?22:53
zkvvoobjkitchen: the thing is I never actually uninstalled postfix22:53
Xeronixjkitchen: I do22:53
zkvvoobjkitchen: at least I don't remember22:53
XeronixUnder USB configuration22:54
jkitchenzkvvoob: postfix and sendmail are mutually exclusive22:54
XeronixI have Legacy USB Support enabled22:54
zkvvoobjkitchen: I know that now, yes22:54
jkitchenXeronix: you might disable that22:54
zkvvoobjkitchen: so what could I try now?22:54
XeronixDISABLE it?22:54
jkitchenXeronix: yes, linux has supported usb keyboards for over a decade22:54
jkitchenyou don't need the bios to do that for you anymore22:54
jkitchenzkvvoob: how are you testing your mail?22:55
Xeronixjkitchen: Still no use, it's not working :(22:55
jkitchenXeronix: you rebooted that quickly?22:55
XeronixYep22:55
jkitchenlies.22:55
XeronixUSB install22:55
zkvvoobjkitchen: sending a message from another account, tail -f /var/log/mail.log; checking webmail if anything's arrived22:55
Xeronixit's not a server, so it doesn't have a long POST cycle either22:55
jkitchenzkvvoob: what's the domain?22:55
zkvvoobjkitchen: I already sent you the output of telnet localhost 2522:55
zkvvoobjkitchen: saturn13.eu22:56
zkvvoobor mail.saturn13.eu - for the SMTP22:56
Xeronixjkitchen: Like literally, my keyboard loses power or something22:56
Xeronixhmm22:56
jkitchenXeronix: weird. is it a fancy keyboard or just off the shelf thing22:56
Xeronixdoes Ubuntu have USB3 support built in?22:56
Xeronixjkitchen: Nope, I used it yesterday to install server on another machine22:56
jkitchenweird22:57
jkitchenin theory it shouldn't matter, because of usb hid22:57
jkitchenbut yea.22:57
jkitchenHEH22:57
jkitchenzkvvoob: tail -f your log file22:57
jkitchenyou should have just seen a message from me22:58
jkitchen250 2.0.0 Ok: queued as 58C7D60004022:58
Xeronixjkitchen: shite, just disabled legacy usb and my keyboard no longer works for getting into the bios22:58
zkvvoobjkitchen: I think I did, here http://paste.ubuntu.com/6501595/22:59
jkitchenXeronix: wat22:59
jkitchen:(22:59
zkvvoobjkitchen: but I don't see the actual message in my mailbox22:59
Xeronixgoing to CMOS reset22:59
DRice7hey guys - can anyone help me with my Xorg starting problem? Error found at bottom of: http://paste.ubuntu.com/6501600/23:01
jkitchenzkvvoob: bounce says unknown user bz23:02
zkvvoobjkitchen: that's insane, I'm logged in my webmail with that user23:03
zkvvoobjkitchen: here, I just logged out and then back in23:03
jkitchenzkvvoob: well, most webmail programs are just imap clients23:03
jkitchenso your imap server and postfix are disagreeing23:03
zkvvoobjkitchen: right, so what should I do then?23:03
jkitchenare you doing some virtual users setup or something with postfix?23:04
jkitchen(I'm assuming so since you have mysql involved)23:04
zkvvoobjkitchen: maybe, I'm using ISPCOnfig, maybe it got confused with the postfix situation - should I remove the account and add it again?23:04
jkitchenno23:04
jkitchenpostfix is probably just not looking at it23:04
jkitchenI don't know what ISPConfig is though, is that some sort of third party panel thing?23:05
jkitchenlike cpanel or plesk or such23:05
zkvvoobyes, like cPanel23:05
jkitchenif so, you should probably contact their support23:05
jkitchenoh, it's open source.23:05
jkitchenhrm23:05
zkvvoobso?23:05
jkitchenwell, maybe ask their irc channel then? :)23:05
bluekinghmm23:06
zkvvoob:D23:06
zkvvoobWell, thank you very much for your help jkitchen !23:06
jkitchenI have never used ispconfig so I have no idea how it's configured23:06
jkitchenno problem, good luck23:06
blueking*sighs*23:06
bluekingdebian  and ubuntu are built on same kernel ?23:07
jkitchenblueking: all linux distros are by definition built off of the linux kernel23:08
bluekingjkitchen:  just wonder why I have reboot problem on debian and ubuntu  but not in opensuse23:10
jkitchenthe 'reboot' command isn't part of the kernel23:11
jkitchenwhat problem are you having?23:11
DRice7blueking, it has to do with the acpi drivers23:11
DRice7apt-get install pastebinit23:11
DRice7dmesg | pastebinit23:11
DRice7check the ACPI messages23:11
bluekingjkitchen:  reboot, shutdown -r, init 6    all shuts down pc23:11
jkitchenahh, yes. that's probably ACPI thing.23:12
* jkitchen hands the baton to DRice7 23:12
bluekingok23:12
bluekingDRice7:  what am I looking for ?23:20
bluekingDRice7:   have some acpi warning at line 858 - 86423:23
bluekingjkitchen:   what should I look for about acpi in dmesg ?23:28
bluekinghmm'23:43
bluekingedited grub  put in acpi=off   no change to reboot23:49

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!