[02:27] <rostam> hi
[02:30] <semiosis> rostam: friendly greetings are nice, but if you want to ask a question, go for it!
[02:32] <rostam> I am following some of the official ubuntu website on how to install a grub2 on usb device.
[02:32] <rostam> The command I use is:
[02:32] <rostam> grub-install --target=x86_64-efi --efi-directory=/mnt/ --bootloader-id=grub2 --recheck --debug
[02:33] <rostam> it fails due to bad option:  --target=x86_64-efi .  Not sure why?
[02:34] <semiosis> sorry i can't help with that, but hopefully someone else will be able to
[02:36] <rostam> semiosis, thx
[02:36] <semiosis> yw
[02:53] <Midion__> hmmm as soon as i setup csf and whitelisted the cloudfare ip's for my domain. My site has started loading faster again.
[05:21] <afib> hey all. ive got a a strange problem going on with my ubuntu 12.04 server and was hoping for some insight into how i could track down the problem
[05:23] <afib> i bought a System76 Eland Pedestal, and it seems that data connection flakes out from time to time. im not sure what the source of the problem is or how to identify it
[05:23] <semiosis> afib: wired or wireless?
[05:23] <afib> but for example, if i ping the router, or an address, i don't lose packets. but it just seems to hang sometimes, and remoting in to the server sometimes fails
[05:24] <afib> wired. ive tried plugging both ethernet ports in, and only one. and swapped between the two
[05:24] <afib> ive got it on a static IP on a router running the Tomato Linux Firmware on a WRT54GL
[05:24] <semiosis> the 'dmesg' command might show hardware issues
[05:24] <semiosis> thats all i got
[05:25] <afib> since i do have another server in the office, and they do run the same daemons (SSH, VSFTP, WebMin interface for local etc), in order to differentiate between them i use different ports
[05:25] <afib> hmm okay ill give that a try. i wasnt finding anything in my logs
[05:26] <sarnold> afib: perhaps the port on your switch is flaky; can you pop a laptop onto that port and let it ping all day?
[05:26] <afib> but right now, i logged in via SSH tunnel => VNC... and then it hung, and dropped. but it's fine on the other server. and right now, im having to VNC into the one server, and then into the other in order to even get in
[05:26] <sarnold> afib: try with and without that specific ethernet cable, too, you never know, it might be flaky too
[05:26] <semiosis> i was thinking maybe ethernet cable too
[05:27] <afib> but oddly, SMB doesnt seem to be affected, and im not losing packets as far as i can tell. maybe im not pinging long enough
[05:27] <afib> so LAN seems fine, out to net is not
[05:28] <semiosis> possibly QoS on the router, but i have no idea how to check that
[05:28] <semiosis> not familiar with tomato
[05:28] <sarnold> tomato is slick but pretty basic..
[05:29] <afib> QoS is disabled. it's very similar to dd-wrt
[05:29] <semiosis> my routers run openwrt or openbsd....
[05:29] <afib> yeah, it's generally fine for the office fine. 2 servers, 8 computers mixed PC and Mac
[05:29] <semiosis> thinking about switching from openwrt to dd-wrt
[05:29] <semiosis> but i digress
[05:31] <sarnold> I -do- slightly wonder about bufferbloat. I dunno if I'm just parotting the new hotness or not, but it -might- be bufferbloat..
[05:31] <sarnold> repeat me repeat
[05:31] <sarnold> this looks cool: http://www.bufferbloat.net/projects/cerowrt
[05:32] <afib> hmm yes unfortunately im limited to what this router can handle
[05:32] <afib> since it's basically just a hardware and firmware modified consumer grade deal
[05:33] <sarnold> yeah, I ran tomato for a few years on an oldschool wrt54g
[05:33] <afib> budget does not allow anything more advanced, and really all it handles is the internet traffic since it's only 100mbps and we're a design agency
[05:33] <afib> so the lan traffic is done through apple base station
[05:33] <afib> then the ddns, ip assignments and port addressing is done through the wrt
[05:36] <sarnold> hrm, are both servers downstream of the apple base station?
[05:38] <afib> yes. both are hosting info used for everyone. one is a simple lampp stack web server for proofing sites and keep the git repos and databases in sync, and the other is a file server. both run 12.04. amd both run nearly identical configurations, although hardware is quite different
[05:38] <afib> the pedastal is brand new
[05:39] <afib> but eg, while one might have SSH on 3669, the other would be 3996 or something like that. also the web server runs virtual machines with various OSes and browsers for testing websites
[05:39] <afib> and all of those are remotel vboxes
[05:40] <afib> but that machine reuns fine, and internet on others is fine. its just the one, and its frustrating because it's supposed to be pushing data to the cloud, but it's getting disconnected (even with backup software off and uninstalled)
[05:42] <sarnold> DNS problems can lead to awkward behaviors. it doesn't feel like it'd be your problem, but if switch port and ethernet cable don't get you there..
[05:45] <sarnold> afib: -maybe- there are firmware updates for your nics, check the linux-firmware package or your nic vendor's website..
[06:05] <raj__> how do I override bash settings for all users, i want to override history size in .bashrc for all users...
[06:05] <raj__> if I configure in /etc/bash.bashrc that is overridden by local files. Any way to force global bashrc settings ?
[06:07] <sarnold> raj__: you can patch bash to ignore that setting
[06:07] <sarnold> raj__: what exactly are you trying to achieve?
[06:08] <raj__> sarnold, I want to increase history size for all users & do immediate history saving after each command is executed.. "for all users"
[06:09] <sarnold> raj__: why?
[06:11] <raj__> sarnold: increase history size so that I can keep a long history of everything executed on my server... immediate saving so that..if client gets disconnected..history is saved..
[06:11] <sarnold> raj__: but... why? :) I'm trying to figure out what problem you're trying to solve, there may be something better ..
[06:13] <raj__> long history to keep track of what all has been done on the server.. history can tell everything i have done to server..
[06:17] <sarnold> raj__: i wonder if you could execute 'script' via ssh forced commands; that would be overkill, it'd record output as well as commands..
[06:43] <raj__> could I put a certain file in some VCS like git/subversion/etc only "when" I am  modifying it. So first the put the unmodified version & then the modified version. The desire is to put the file in VCS only when I want, rather than doing initial full directory commits.. possible ?
[06:44] <sarnold> raj__: I've heard good things about etckeeper
[06:45] <raj__> sarnold, but that is only for /etc & it does a initial full directory commit ? why do I do that.. i would only want to keep the files i modify & manually manage rather than autocommits at each install...
[08:30] <jfcastro> hi, I want to install OpenStack Icehouse on Ubuntu
[08:31] <jfcastro> must I use ubuntu 14.04?
[08:32] <jfcastro> in others words, is going to be maintenance Openstack Icehouse in ubuntu 14.04?
[08:33] <jfcastro> thanks in advance :)
[08:41] <lordievader> Good morning.
[08:43] <jfcastro> morning
[08:43] <lordievader> Hey jfcastro, how are you doing?
[08:44] <jfcastro> fine :)
[08:45] <jfcastro> I'm trying to install OpenStack Icehouse on Ubuntu but I have some doubts
[08:45] <jfcastro> I normally use ubuntu-cloud.archives.canonical.com on ubuntu 12.04 but I would like use ubuntu 14.04
[08:46] <jfcastro> and it's no packages in ubuntu-cloud.archives to ubuntu 14.04
[08:46] <jamespage> jfcastro, the cloud archive does have icehouse  for 12.04 -  use the proposed pocket for now - but so does 14.04 which will be supported for 5 years
[08:46] <jamespage> the packages in the main archive are icehouse in 14.04
[08:46] <jamespage> no cloud-archive required
[08:47] <jamespage> (and please raise bugs if you find any :-))
[08:47] <jfcastro> jamespage: good!
[08:48] <jamespage> jfcastro, I was testing all of last week on 14.04 - its general good - ceilometer is broken but that should be fixed next week
[08:48] <jfcastro> jamespage: and these OpenStack packages on 14.04 will be maintenance same as cloud-archive?
[08:48] <jamespage> jfcastro, the openstack packages in 14.04 are the source for the packages for 12.04 in the cloud-archive - so yes!
[08:48] <jfcastro> it sounds fine!
[08:48] <jamespage> jfcastro, http://reqorts.qa.ubuntu.com/reports/ubuntu-server/cloud-archive/icehouse_versions.html
[08:48] <jamespage> to illustrate!
[08:48] <jfcastro> thanks!
[08:48] <jfcastro> I'm going to read :)
[08:49] <jamespage> (that report lies about greenlet and neutron - they are up-to-date)
[08:49] <Tex_Nick> ubuntu 13.10 ... how would i start a VPN service before lightdm ?
[08:50] <jfcastro> jamespage: so, to deploy Icehouse I must to use 14.04?
[08:50] <jfcastro> and openstack package will be maintenance for 5 years
[08:50] <jfcastro> really?
[16:51] <DeltaHeavy> Hey, I have a VPS running Ubuntu 12.04 to mainly serve up my website amongst a few other things. I have netfilter configured as tightly as sanely possible but I was wondering if it would perhaps be best to install VPN software on there, and make services like SSH, and my databases only open on my VPNs interface. Is this a good idea or are there pitfalls?
[18:26] <arrith> DeltaHeavy: well only ssh needs to be open really
[18:26] <arrith> and even then you can lock that down
[18:27] <DeltaHeavy> arrith: I'm a developer so I want to be able to access my DB's from DB clients.
[18:27] <DeltaHeavy> Ended up deciding that it would cause too much inconvinance to be worth while. Just going to continue on the way I'm going I think.
[18:30] <arrith> DeltaHeavy: you can tunnel db connections over ssh
[18:30] <DeltaHeavy> arrith: True, I usually just use SSL though.
[18:32] <arrith> DeltaHeavy: there is a difference between authentication and encryption. ssh does both
[18:33] <arrith> DeltaHeavy: by itself, ssl just does encryption
[18:34] <DeltaHeavy> arrith: Yeah, all the RDBMSs I use though have their own auth.
[18:34] <arrith> DeltaHeavy: larger attack surface. ssh you can lockdown in one place. also knockd
[18:34] <DeltaHeavy> True, I should look into that perhaps
[18:35] <DeltaHeavy> Thanks!