/srv/irclogs.ubuntu.com/2014/04/10/#ubuntu-server.txt

jrwrenam tip:  echo BYOBU_PYTHON=python >> .byoburc   to prevent byobu from running python -c 'import snack' EVERY time it refreshes status line01:14
jrwrenI have a LVM LV snapshot which is not mounted, yet I cannot delete it.01:17
jrwren Logical volume datavg/mirrored-snapshot-monthly contains a filesystem in use.01:17
=== lynxman_ is now known as lynxman
=== eshlox_ is now known as eshlox
=== omfgitsasalmon_ is now known as omfgitsasalmon
=== hachre_ is now known as hachre
=== fhd___ is now known as fhd__
=== BasedGeek is now known as BasedGeek_Sleep
Guest82354hello all!!03:11
dpb1oftc03:28
lazyPowerhttps://bugs.launchpad.net/qemu/+bug/130540204:08
uvirtbotLaunchpad bug 1305402 in qemu "kvm fails to start 'trusty' machines" [Undecided,New]04:08
hallynlazyPower: please stop and restart libvirt-bin, that should fix it (assuming both qemu and libvirt are uptodate)04:19
lazyPowerhallyn: it looks like the machine names were incorrect from what it was expecting. I had some machines that didn't get an updated flag. I updated teh bug with my findings04:19
lazyPowerthey had just 'trusty' as the designation, and it wanted pc-i440fx-trusty04:20
lazyPowernot sure if virt-manager is to blame, or the update...04:20
hallynlazyPower: no, I am to blame - in previous version the machine type was just 'trusty'04:21
hallynlibvirt was udated to handle that, but then that messed people up who were using newer qemu with older libvirt (in ppas)04:22
hallynso we renamed the machine type04:22
lazyPowerah, ok. weird that 2 of my machines had a proper machine type while the rest were just trusty.04:22
hallynprobably depends on when they were created04:22
hallynzul: ^ we may just want to re-introduce the libvirt patch for a bit?04:22
hallynor, release-notes it04:23
lazyPowerwasn't a big deal here. Only 7 VM's to virsh edit here.04:23
lazyPowerbut i can see this being a larger issue at scale for anyone using libvirt with "stale" machines04:24
hallynright04:24
lazyPowerhallyn: thanks for taking a look at the bug though. Hope this helps.04:25
hallynlazyPower: having the bug open shoudl help guide others who run into it, so thanks for that04:25
* hallyn out04:26
=== G is now known as TWWOC
Kiongkuhi wondering anyone experience on working with a personal server in zotac aq01 boxes? or even maybe the newer aq0205:20
sarnoldoh that's cute :)05:21
Kiongku:?05:22
sarnoldaq0205:22
Kiongkuyou just saw it online :P? or you tried it before05:22
sarnoldKiongku: never heard of it before, but the photos and specsheets look nice05:22
Kiongkuhahaha hong kong.. space is premium :)05:23
sarnold:)05:23
=== TheBurgerKing_ is now known as TheBurgerKing
=== SpamapS_ is now known as SpamapS
=== PaulePan1er is now known as PaulePanter
lordievaderGood morning.07:55
=== airtonix_ is now known as airtonix
jamespagezul, want me todo nova rc2?09:23
rbasakrcj, utlemming: bug 1305418 looks critical to me. On Saucy?09:28
uvirtbotLaunchpad bug 1305418 in walinuxagent "Broken SSHD configuration on Ubuntu 13.10 with latest walinuxagent update" [Undecided,New] https://launchpad.net/bugs/130541809:28
jamespagerbasak, morning09:54
jamespagezul, coreycb_: https://code.launchpad.net/~james-page/nova/rc2/+merge/21513010:02
jamespageor infact rbasak10:02
jamespage^^10:02
rbasako/10:03
jamespagerbasak, just a new rc - running the package build including unit tests right now10:04
rbasakjamespage: lgtm, though I'm not sure what exactly to review there!10:05
jamespagerbasak, its really just a formality - I'd normally just push that as a trivial10:05
jamespagerbasak, so long as I have the right bug and don't have any typos +110:06
rbasakI did indeed check the changelog entry very quickly, and followed the bug link :)10:06
jamespagerbasak, excellent10:07
rbasakUh, s/quickly/carefully/ is what I meant. It was also quite quick :)10:07
Voyage I cant see ubuntu as an operating system in ec2 of amazon while i create a volume or instance.?10:22
=== sync0new is now known as sync0pate
hxmhow to add various directories to a webdav <Location> ?11:47
hxmi created a webdav, added a Location added some ln -s files to there12:07
hxmwhen i want to create a directory in that symlink i get an error12:07
hxmi was able to create the directory but not to change the name12:07
hxmim in macos to ubuntu server12:07
zuljamespage/coreycb: i got heat12:28
jamespagezul, ack - I'm working on a fixup for vpn/l3 conflicting12:28
jamespagein neutron12:28
zuljamespage:  cool beans12:29
coreycbzul, anything else left?12:29
zulcoreycb: there is always more ;)12:29
coreycbzul, :)12:30
zulcoreycb: there is a glance rc2 probably still12:31
zuljamespage: it looks like your swift patch got merged12:31
coreycbzul, I'll keep an eye on glance12:33
jamespagezul, \o/12:36
zuljamespage: need to go fix ci packaging now :P12:37
rostamHI I am using 12.04 LTS. The openssl pkg version is 1.0.1. I like to use the later version which is provided by 13.xx . How could I upgrade this pkg? thx12:38
jamespagerostam, why?12:39
rostamjamespage,  It has a better TLS support according to our development team. If this is not the case please let me know. Thx12:40
rbasakrostam: I suggest that you use 13.xx then.12:43
rbasak(13.10 is the only 13.xx that is still supported)12:44
rostamrbasak,  we need to stick with LTS , So is there a site that has backported 13.10 version of openssl to 12.04 LTS ?12:45
patdk-wkrostam, what is the *problem*?12:46
rcjrbasak, Looking at bug #1305418.12:46
uvirtbotLaunchpad bug 1305418 in walinuxagent "Broken SSHD configuration on Ubuntu 13.10 with latest walinuxagent update" [Undecided,New] https://launchpad.net/bugs/130541812:46
rbasakrostam: I'm not aware of one. Are you aware of https://wiki.ubuntu.com/UbuntuBackports? OpenSSL is a pretty core package though, with many reverse dependencies. A backport seems unlikely.12:46
patdk-wkcan't believe there is that much of a difference from 1.0.1 and 1.0.1f12:47
rbasakrostam: why are you sticking with the LTS? I think that the recent openssl vulnerability demonstrates that using an unsupported openssl is far worse than using a non-LTS.12:47
patdk-wkbut with lts in 2 weeks, why really bother?12:47
cfhowlett1 week ...12:47
zulrostam:  or you could wait a week and use the next lts that is out next week12:48
rostamAll, Thank you so much. I got very valuable help here. So I will wait one week for next LTS.12:48
zuljamespage:  https://code.launchpad.net/~zulcss/heat/2014.1.rc2/+merge/21516512:53
jamespagezul, -1 wrong bug12:53
jamespagezul, gah - this l3/vpn thing is awkard; the vpn-agent needs all of the bits from the l3-agent package apart from the upstart config and the binary12:54
jamespagezul, as a minimal change I might move bits into neutron-common (filters and config) and then have the binary and the upstart config in the -agent packages12:55
jamespagehow does that sound?12:55
tiblockHi. I try to config "log2ban" script and i dont like how it works. I want ban IP if it requests more than 40 requests per minute. But log2ban logic is that - 1 minute count requests and then ban. So you can send 100000 requests and will be banned only in 60secs. And that is problem when you have 97000 bots with 3 requests/sec. Anybody have experience with "log2ban"? Maybe i do something12:57
tiblockwrong?12:57
zuljamespage: erp...fixed12:59
zuljamespage:  sounds good to me12:59
bekkstiblock: How about using fail2ban? It will ban clients after three attempts, e.g.13:02
tiblockbekks, as i know fail2ban is about SSH, but log2ban is for HTTP DDoS/flood/bruteforce13:02
bekksah ok13:03
ihrefail2ban just uses regex on logfiles to determine bans/blocks iirc, so it could also help against bruteforce/flood/???/dovecot13:03
tiblockbekks, ihre, yeah, i google and fail2ban may be solution. Thank you.13:04
ihrenote, the default repositories contains a pretty old version of f2b13:06
Voyagehow I can be sure if tomcate is started?13:06
Voyagehow can i be sure that it is running  http://pastie.org/9070315      I dont see it in nmap localhost nor on localhost:808013:07
zuljamespage: heat fixed13:07
jamespagezul, if you use debcommit it will auto-generated --fixes on the bzr commit and then the MP references then directly btw13:09
jamespagezul, +113:09
jamespagezul, oh actually13:09
jamespagebug 129691213:10
uvirtbotLaunchpad bug 1296912 in heat "python-qpid-python package does not exist in precise" [Undecided,New] https://launchpad.net/bugs/129691213:10
jamespagezul ^^13:10
jamespagezul, three of those - just de-duped them all13:12
jamespagezul, can you check it out please? its a UCA issue13:12
patdk-wkheh? fail2ban comes with dovecot rules by default13:13
zuljamespage:  ack13:18
jamespagezul, just working on the upgrade testing for the neutron re-jig13:18
tiblockjust for the record, "fail2ban" will not work. Its good for very fast flood, but yesterday i was attacked by 50 requests/60 sec. Legit users requests static content faster. "log2ban" uses custom function to generate ID of attacker and i can use my own algorithms for detection. For example random hosts "39p6jml1s42lz.com nd02386x93477v.net s30l9m0i4ds.com 6o21b81yy94.com" and "POST /".13:19
tiblockSo i will search guy who have experienge with log2ban.13:19
jtvI suppose they'll always look for a way around effective defences.  I must say fail2ban has done me a lot of good over the years.13:20
zuljamescarr:  looking13:21
patdk-wkwell, blocking via access logs, is very very hard13:25
jamespagezul, coreycb: https://code.launchpad.net/~james-page/neutron/vpn-l3-fixup/+merge/21517813:30
zuljamespage:  +113:33
zuljamespage:  heat fixed as well13:33
jamespagezul, looking13:33
zuljamespage:  why didnt the adt tests pick up on this for heat i wonder13:34
jamespagezul, I think its OK in 14.0413:34
jamespagezul, OK - uploaded neutron - thanks for the review13:36
zuljamespage:  actually its in the requirements.txt so pydist will add it anyways...best remove it for now and then we rethink qpid after trusty is out13:37
jamescarrzul: huh?13:44
jamescarroh13:44
=== Ursinha is now known as Ursinha-afk
jamespagezul, bah - can you ack http://paste.ubuntu.com/7230905/14:00
jamespageotherwise that there vpn agent won't work to well14:00
zuljamespage:  hah ok +114:00
zuljamespage:  mind +1 heat while you are at it14:00
jamespagezul, approved but can you shift the fullstop after the bug reference - being super niggly today14:01
zuljamespage:  sure14:02
=== matsubara_ is now known as matsubara
=== Ursinha-afk is now known as Ursinha
rsmarshallhey all15:08
rsmarshalli'm a bit screwed on a cloud server i have and can't get root access after stupidly deleting the wrong key15:09
rsmarshalland the grub boot line changes don't seem to work15:09
patdk-wkwhat is a cloud server?15:10
rsmarshallwell vm15:10
rsmarshall;)15:10
rsmarshalli have console access but the lost password instructions point to things i can't seem to see15:11
rsmarshalli get the grub menu up, press e and have the boot code, but must not be putting things in the right place15:11
tmwsiyare you pressing ctrl-x or f10 after making the change?15:11
rsmarshallyeah i just get back to the login prompt15:11
tmwsiywhat cloud vendor?15:13
rsmarshallbrightbox15:14
rsmarshalltalking with one of their guys atm15:14
rsmarshallthese things always happen when i'm behind on deadlines lol15:14
tmwsiyyou have to also hold down shift to get into recovery console15:15
tmwsiyI guess you are doing that15:15
rsmarshallyeah did that, it prompted my for a root pass which i don't have15:16
rsmarshallme*15:16
rsmarshallso then tried lost password options which say press e on the boot option and edit that15:16
rsmarshallcan't seem to edit it correctly15:16
tmwsiywell you have to edit the boot line and then somehow get it to continue boot otherwise it will revert to whatever it was before next boot15:18
tmwsiyunless you can run update-grub which if you could do that we would not be here :)15:18
rsmarshallyeah tried changing the boot line where it says ro to rw and adding a shell init, it just got stuck on boot commands then15:19
Geeky_VinHi There, I am struggling to config my ubuntu-server with my wifi can any1 hemp me pls.15:21
tmwsiyI think you can just add single to the end of the boot line and then f1015:21
tmwsiyand manually do the rw remount15:21
rsmarshallyeah added that and ctrl-x and it just went back to login prompt15:21
tmwsiywell i dont have a brightbox account and not sure of their security setups or I would try to help figure it out15:22
=== Corey_ is now known as Corey
Geeky_Vindoes any1 know how to connect the ubuntu-server system with a wifi router, kindly help me.15:24
tmwsiydoes the device show up ?15:25
tmwsiylshw -C network15:25
rbasakGeeky_Vin: there are some examples of how to set up /etc/network/interfaces in /usr/share/doc/wpasupplicant/README.Debian.gz15:26
Geeky_Vin@tmsiy: Thank you for ur response, I can see the device.15:27
Geeky_Vin@rbasak: I tried them with no success, thank you anyway.15:27
tmwsiynot sure about what security protocols you are trying to use but this looks like it mentions a good number: http://ubuntuforums.org/showthread.php?t=57118815:28
Geeky_Vinbut I see *-network DISABLED in the first line, is that suppose to be like that?15:28
tmwsiyyeah that is probably not a good thing :)15:29
Geeky_Vinhow do i enable it?15:29
tmwsiyis there a button on the device to turn it off/on?15:29
tmwsiyor it could not be set to managed in netowrk manager15:30
tmwsiyassuming you are using network manager15:30
tmwsiy/etc/NetworkManager/nm-system-settings.conf should tell you15:30
Geeky_Vinthat conf file seems to be empty15:31
Geeky_Vinwait a sec I did ifconfig wlan0 up15:33
Geeky_Vinnow the nwtwork is enabled15:33
tmwsiyand you can connect to AP?15:34
Geeky_VinI'm sry I'm a newbie to this, how do I chk that?15:35
rsmarshalltmwsiy: which config do i edit to allow password based login until i can readd my key?15:36
rsmarshallhave a login now but only via the cloud terminal15:36
tmwsiyrmarshall: /etc/ssh/sshd_config is the file and PasswordAuthentication yes is the option you want to change15:37
rsmarshalljust did that actually :) and it still says public key is the problem15:38
tmwsiydon't know if you can get there from where you are now though15:38
rsmarshalli also restarted ssh15:38
tmwsiywait if you are able to edit files as root what is the problem?15:38
rsmarshalli'm on the cloud terminal, want to ssh in from my local machine15:39
rsmarshallso need to replace my key but can't past it in there lol15:39
rsmarshalland it's a big long to do manually15:39
ziyourenxiangrsmarshall: ssh -v to see the protocol action15:39
tmwsiyyou should be able to edit whatever keys you need in the files in  /root/.ssh/ right?15:40
tmwsiyGeekyVin: are you logging in to a gui?15:40
rsmarshallyeah but can't paste into the terminal, so was going to log in locally with password and then set it back to the key15:40
Geeky_Vin_I'm logged in to the chat in a GUI15:41
tmwsiyrmarshall: put it on a web server real quick and pull it down with wget and delete15:41
tmwsiyok so what happens when you try and configure wireless with the nm-applet?15:41
rsmarshallah nice idea15:41
Geeky_Vin_Yes, I'm logged into the chat in a windows-7 machine, my server is a ubuntu-server 13.0 version15:43
Geeky_Vin_when I try wpa-supplicant -Dnl80211 -iwlan0 -c./wpa.conf I get wlan0: Failed to initiate AP Scan15:46
rsmarshallsorted it thanks tmwsiy  :)15:48
Geeky_Vin_@tmwsiy: do u hav any idea how shld I process, pls.15:50
rsmarshalltmwsiy: for ftp am i best setting up vsftpd?15:53
bekksrsmarshall: yeah, thats the most easy one.15:53
rsmarshallbekks: just installed it via ansible and when i try vsftpd in terminal it says it's not set as the correct user15:54
funcoland11hello, can anyone tell me why i can't see any packages when i browse to http://us.archive.ubuntu.com/ubuntu/dists/trusty/main/binary-amd64/ ?15:54
funcoland11however, my servers seem to be able to download them just fine via apt-get15:54
bekksrsmarshall: I never used ansible and all my vsftpd instance do work fine.15:54
rsmarshalldo i need to add users to a group?15:54
rsmarshalli have a user setup and vsftp installed15:54
rsmarshallcan't connect to the server with the user i setup15:58
rsmarshallwhen i run vsftp i get 500 OOPS: could not bind listening IPv4 socket16:00
bekksrsmarshall: thats totally different from "the user isnt in a group".16:07
bekksrsmarshall: vsftpd cannot bind to the port configured.16:07
rsmarshallyeah wasn't sure the user was but it seems this is the issue16:07
rsmarshallsorry16:07
rsmarshallyeah not sure how to fix it, is it as there is another service on the port?16:07
rsmarshallmeant to be going home 10 mins ago lol16:08
bekksrsmarshall: The user isnt the issue.16:09
bekksrsmarshall: vsftpd cannot bind to the port configured.16:09
rsmarshallyeah thanks, i am trying to work out how to solve that problem16:09
rsmarshallactually i'd like to change it's port to a none standard one16:09
bekksFind out what is listening on that port.16:10
rsmarshallhow do i do that?16:10
bekkslsof -i16:10
bekkssudo lsof -i actually16:10
bekksAnd unless you are root, you cannot bind to a port < 102516:10
rsmarshallnot sure from that display16:11
rsmarshallvsftpd    2727          root    3u  IPv4  14531      0t0  TCP *:ftp (LISTEN) is listed16:12
bekksSo it is already listening.16:12
bekksRunning as root.16:12
rsmarshalldoes that mean standard ftp port?16:13
tmwsiyGeeky_Vin: try this and let me know where you have issues https://help.ubuntu.com/community/WifiDocs/WirelessTroubleShootingGuide16:13
bekksrsmarshall: Yes.16:13
rsmarshalli can't connect though16:13
rsmarshallappreciate the help bekks , just want to go home now lol16:15
rsmarshalli can as soon as i can connect to this16:15
rsmarshall:)16:15
rsmarshallserver refuses connection16:16
rsmarshallin general, could it be a closed port?16:16
rsmarshallopened port 21 i think, but nothing16:19
bekksrsmarshall: Stop vsftpd, ensure it is stopped, and start it again. Check for errors. Check the firewall is open on both the data and the control port.16:21
rsmarshalli did iptables -A INPUT -p tcp --dport 2116:23
bekkssource port is needed as well.16:24
bekksFor output, though16:24
rsmarshallsudo ufw enable ftp? found something about using ufw16:24
bekksYes.16:24
rsmarshallstill nothing16:24
bekkstry "telnet 127.0.0.1 21" from the server itself, in a new terminal.16:25
rsmarshalli can't connect at all since running that command16:27
tmwsiyif you can get back in I would just do a sudo ufw disable to completely eliminate firewall as an issue16:27
bekksrsmarshall: since running which command?16:28
tmwsiyand then correct your rules if that is the problem :)16:28
rsmarshallif i can get back in tmwsiy16:28
rsmarshallthe ufw command bekks16:28
tmwsiycan you do the console thing like you were before?16:28
rsmarshallnope16:29
tmwsiywell that sucks16:29
rsmarshallnow i can16:29
rsmarshallrebooting now16:30
rsmarshallafter ufw off16:30
rsmarshalli just want to go home lol16:30
rsmarshallok now i can get in16:32
rsmarshallso need to get ftp working still16:32
rsmarshalltmwsiy: many beers will be yours (should we ever meet) if you can fix my ftp woes ;)16:32
tmwsiyhaha: sounds like you need a beer for sure16:34
rsmarshalldamn right lol16:34
rsmarshallother dev is on hol and he normally does all this, i'm still learning more on the server side16:35
rsmarshallall been fine until now, provisioned with ansible and set the rest up, can't get this damn ftp to connect16:35
rsmarshalljust want to go home and have a beer ;)16:35
rsmarshallit's vsftpd16:35
rsmarshallany ideas?16:40
tmwsiywhat happens when you try to connect using the telnet method from localhost with the firewall off and the service started?16:42
rsmarshallTrying 127.0.0.1...16:43
rsmarshallConnected to 127.0.0.1.16:43
rsmarshallEscape character is '^]'.16:43
rsmarshall500 OOPS: vsftpd: both local and anonymous access disabled!16:43
rsmarshallConnection closed by foreign host.16:43
rsmarshallcan't connect at all16:52
rsmarshallmust be some port issue16:52
rsmarshallbut can't work it out16:52
tmwsiy500 OOPS: vsftpd: both local and anonymous access disabled!16:53
tmwsiythat is your answer16:53
rsmarshallyeah but i want to connect externally16:54
tmwsiywell the telnet thing is just to test the port connectivity16:54
tmwsiyyou can try the same thing from a remote host16:54
rsmarshalltrying now with local on16:54
rsmarshalland it's just hanging16:54
rsmarshallTrying 127.0.0.1...16:54
rsmarshallConnected to 127.0.0.1.16:54
rsmarshallEscape character is '^]'.16:54
rsmarshall220 (vsFTPd 2.3.5)16:54
rsmarshallthen stops16:54
tmwsiythat is correct16:54
tmwsiyits working16:55
tmwsiyits waiting for a command16:55
rsmarshall right, but it doesn't tell me much16:55
rsmarshallin the sense i'm not sure what to do enxt16:55
rsmarshallnext16:55
bekksrsmarshall: start a ftp client and try connecting from another machine.16:56
tmwsiyyou can test like this too: wget --user=user --password='myPassword' ftp://yourserver16:56
rsmarshalltried that, refuses connection16:56
tmwsiywell a full path to a file on your server16:57
bekkstelnet ipofyourhost 2116:57
tmwsiybekks: that works16:57
rsmarshallTrying 109.107.38.204...16:57
rsmarshallConnected to cip-109-107-38-204.gb1.brightbox.com.16:57
rsmarshallEscape character is '^]'.16:57
rsmarshallConnection closed by foreign host.16:57
bekksThen it isnt a ftp issue, but most likely a ftp client configuration issue.16:57
rsmarshallok16:58
rsmarshallstill no clue how to fix it :(16:58
bekksthen provide a screenshot of your client connection settings for that host (and omit the IP if it is an internet reachable host)16:59
tmwsiywhat happens when you try the wget method?16:59
rsmarshallseems to work17:01
rsmarshallall i did was install vsftpd, nothing none standard17:01
bekksrsmarshall: "seems to work"? Does it work "yes/no"?17:02
rsmarshallwget does17:02
bekksthen provide a screenshot of your client connection settings for that host (and omit the IP if it is an internet reachable host)17:02
rsmarshallhow do i get those connections?17:02
tmwsiywhat ftp client are you using?17:03
bekksWell, what are you typing into your client to connect to your server?17:03
rsmarshallftp client to connect? filezilla and ftp from command line17:03
bekksThen what are your filezilla connection options?17:03
rsmarshallnormal ftp, user and pass, port17:04
rsmarshallcommand line is just ftp ip17:04
rsmarshallshould then ask for username and password17:04
=== 21WAABD33 is now known as sarnold
bekksrsmarshall: Screenshot.17:04
bekksrsmarshall: I am not going to ask for a 4th time.17:04
rsmarshallhttps://www.dropbox.com/s/wz8s3a8efryqwfl/Screen%20Shot%202014-04-10%20at%2018.07.30.png17:07
rsmarshallah hang on17:07
rsmarshallhttps://www.dropbox.com/s/4u7bw8wp5mczvpz/Screen%20Shot%202014-04-10%20at%2018.08.37.png17:08
bekksrsmarshall: Host "4" is an invalid IP.17:09
rsmarshallyeah i removed the ip17:09
rsmarshalland when taking a screenshot it ended up in there when i mispressed a key17:10
bekksAH :)17:10
rsmarshallon a mac it's command shift 4 lol17:10
rsmarshalli just want to go home lol :(17:10
tmwsiyso what happens with this?17:10
rsmarshallrefuses connection17:10
tmwsiyand this is the machine that you can successfully use wget from?17:11
rsmarshallyeah17:11
tmwsiyweird17:11
bekksrsmarshall: Can you screenshot the other connection options tabs please?17:12
bekksrsmarshall: And can you ensure you are not using any form of proxy in filezilla?17:13
rsmarshalli'm not, thing is command line ftp doesn't work either from my machine to the server17:13
bekksthats why I am talking about filezilla.17:13
tmwsiywget is a commadn line ftp client :)17:14
rsmarshallhttps://www.dropbox.com/s/3ia0h3iewf5oomc/Screen%20Shot%202014-04-10%20at%2018.15.02.png17:15
rsmarshalloh hang on17:15
rsmarshallwget was from the wrong tab lol17:15
rsmarshallthat was on the machine itself17:16
rsmarshalljust tried from a local vm and it won't connect17:16
tmwsiythen something other than the firewall on your machine is blocking it if you have run sudo ufw disable17:16
rsmarshallyeah just not sure what17:17
tmwsiyare you using the brightbox router/firewall service?17:17
rsmarshallnot that i know of17:18
tmwsiyhttp://brightbox.com/docs/guides/cli/firewall/17:18
tmwsiydont know if that is your problem but it seems like something like this to me17:19
tmwsiyeither way I dont think ubuntu is your issue17:19
sync0patedoes anyone know a good way of indexing and searching files on a windows share?17:20
sync0patefrom a ubuntu server17:20
tmwsiysync0pate: locate?17:20
sync0pate?17:20
sync0patehow would you get it to index a share?17:21
RoyKjust mount the share17:21
tmwsiyhttp://www.linfo.org/locate.html17:21
sync0pateand it'd automatically index it?17:21
tmwsiyyep17:21
sync0pateit's.. that easy?17:21
tmwsiyshould be :)17:21
tmwsiyit runs once a day by default I believe17:22
RoyKsync0pate: it normally runs at night, so better run updatedb after mounting17:22
sync0patewell, I'll be simultaneously relieved and really pissed off if it's that simple17:22
RoyKlol17:23
tmwsiysync0pate: the best solutions are often like that :)17:23
sync0pateand.. I guess I can just search that mount with /samba/mount/*filename.ext17:24
sync0pateor similar17:24
RoyKman locate17:24
tmwsiyyou can just do an extra | grep /samba/mount on the end17:24
RoyKit's got some filters, the rest can be done with grep/sed/awk17:24
sync0pateyeah but tmwsiy I'm working with some huuuuge shares here17:25
sync0pateso I don't want to have to find everything and then grep through it17:25
sync0pateif I can avoid it17:25
tmwsiyonce it indexes it will be fast17:25
tmwsiydoes not read filesystem but the database it gerneates17:25
rsmarshallit was the damn firewall17:25
tmwsiyyou can probably do it with a filter directly to locate17:26
sync0pateyeah cool..17:26
tmwsiyas well17:26
RoyKsync0pate: --regex is nice17:28
sync0pateRoyK, yeah just found that17:28
sync0pateI think I've only ever used locate for "locate php.ini"17:28
sync0pateheh17:28
RoyKhehe17:28
sync0pate(because I'm somehow *never* editing the right one..)17:29
rsmarshalli broke it again tmwsiy17:29
rsmarshalllol17:29
rsmarshallswitched off anon access and local and now i can't connect17:29
Geeky_Vin_@tmsiy: IK followed this article http://unix.stackexchange.com/questions/92799/connecting-to-wifi-network-through-command-line and my WiFi is working now! Thak you!17:29
RoyKsync0pate: I wrote this small thing to index everything in a tree with both filenames, dates and the files' checksums to check for duplicates - it should be easy to extend that to do a lot more https://github.com/rkarlsba/dupious17:30
Geeky_Vin_@tmsiy: let me knw when u come to India, I'll buy u a pint.17:30
Geeky_Vin_;)17:30
sync0pateRoyK,  perl :-|17:30
RoyKperl <317:30
sync0patenever used it17:31
sync0patedelphi, C, java, C#, php..17:31
RoyKwell, it's not hackish perl17:31
RoyKI try to code so it's understandable17:31
sync0pateyeah it doesn't look ridiculous17:32
sync0pateI think locate will serve me fine for now tbf17:33
RoyKprobably17:33
sync0pateany idea about indexing file *contents* ?17:33
sync0pateI've looked at solr17:33
tmwsiyGeeky_Vin: aawesome!17:33
RoyKafaik solr is one of the best there17:33
sync0pateI got it set up, and added a file17:34
sync0patebut I can't see any way to just index a dir17:34
RoyKwe use it rather a lot at work17:34
sync0pateother than doing that manually17:34
sync0pateI mean I kinda gave up because I'm not being paid for that part, it was just curiosity and I had real work to do17:34
RoyKyou can run an index update IIRC, but there are som bugs there :P17:34
* RoyK doesn't work with solr, but has spoken to people at work who do17:34
sync0patebut man, finding solr documentation is difficult17:35
sync0pateand when you find it it's seriously obfuscated, and seemingly 90% version-specific17:35
RoyKheh - hope it's not in the land of RTFS17:35
rsmarshallnow i have 500 OOPS: vsftpd: both local and anonymous access disabled!17:36
tmwsiysync0pate: I would not discount just piping the output through grep until you try it for directory filtering17:37
RoyKrsmarshall: why do you use ftp?17:37
rsmarshalli don't want to lol17:37
rsmarshallsome legacy system a client has for sending data files to the server17:38
rsmarshallfor products17:38
rsmarshalli asked for sftp and keys, but no17:38
rsmarshallfeel my pain RoyK ;)17:38
RoyKknow it already :P17:38
rsmarshallshould i turn chroot user on?17:39
rsmarshallto restrict them to their home directory? seems a good option17:39
RoyKtell them to use tftp over the open internet instead :P17:39
RoyKyou can configure vsftpd with chrooting17:39
RoyKshould be fairly secure17:39
tmwsiyas secure as ftp with plain text auth can be :P17:40
RoyKbut then - vsftpd sucks rather badly at TLS, so the passwords will be sent in cleartext17:40
rsmarshallhmm tirned it on and now it sends them to the server root17:40
RoyKsome issues with proftpd on that part as well, with certain clients17:40
rsmarshallhow do i restrict them to their home? chroot_local_user seems to do that17:41
rsmarshallbut it doesn't17:41
bekksthen you did not setup it correctly.17:41
bekksFor me, it does.17:41
rsmarshallyeah figured that ;)17:41
funcoland11hey guys can anyone tell me why i can download packages off of the ubuntu archive from a server but if i browse to them directly i can't see them? i only see like Release.gpg, release, packages.gz ?17:41
rsmarshalli just turned on the option17:41
funcoland11i'm talking about if i go to the archive with my web browser17:42
rsmarshallbekks: how do i set the chroot directory for the user?17:43
funcoland11i guess that's just the way apache is configured so the package listing doesn't work via web browser?17:43
RoyKrsmarshall: normally that's the user's homedir17:43
rsmarshalldoesn't seem to be atm17:43
sarnoldfuncoland11: look in the pool/ directory17:43
bekksrsmarshall: https://help.ubuntu.com/community/vsftpd17:43
sync0patewhat format does the regexp have to be in for locate --regex?17:44
RoyKsync0pate: I guess standard posix regex - not perl regex17:44
sync0patethat's what I guessed, can't seem to get it working. hmm.17:44
rsmarshallbekks i have : # 1. All users are jailed by default:17:45
rsmarshallchroot_local_user=YES17:45
rsmarshallchroot_list_enable=NO17:45
funcoland11sarnold: ahh i see packages now. so i guess those files like packages.gz only reference the packages under this pool/ dir?17:45
rsmarshallah17:46
rsmarshallseems filezilla was remembering a previous connection and showing me a folder even though i didn't have access17:47
rsmarshallright that's it, i'm off home17:47
rsmarshallthanks all for your help, especially bekks and tmwsiy for their patience17:47
RoyKsync0pate: same here - seems the regex there is rather faulty17:48
sarnoldfuncoland11: exactly17:48
RoyKsync0pate: just what I tried to produce with locate17:50
sync0pateyeah.. weird17:50
RoyKhttp://paste.ubuntu.com/7231754/ <-- anyone that knows what's wrong with this regex? or is mlocate broken?17:50
delinquentmeso I've changed my keyboard shortcuts 3 times now ... and on rebooting .. they continually are getting erased ... what should I fix here?17:50
RoyKdelinquentme: keyboard shortcuts? on a server?17:52
sarnoldRoyK: hrm, on my saucy laptop I get different output http://paste.ubuntu.com/7231782/17:55
delinquentmeI know RoyK however I've asked 3 times and people in #ubuntu are useless17:55
RoyKdelinquentme: this is about server stuff ;)17:55
RoyKsarnold: which version?17:55
delinquentmeOk so where are profiles for a user saved ?17:55
sarnoldRoyK: 0.26-1ubuntu117:56
lazyPowerDoes the ceilometer openstack charm spin up a HTTP instance by default with the administrative gui?17:56
sync0pateRoyK, does locate not index the  /home dirs?17:56
RoyKsarnold: which distro version is this?17:56
sync0patemine seems not to be..17:56
lazyPoweri've never tried to manage openstack outside of just using the horizon dashboard, so i'm really unfamiliar with the landscape.17:56
sarnolddelinquentme: ~/.profile ? what are you trying to do?17:56
RoyKsync0pate: did you run updatedb as root?17:56
sync0pateno.. should I?17:57
sarnoldRoyK: 13.10, saucy17:57
RoyKah17:57
sync0pateI ran it as the user who's home dir isn't being indexed though..17:57
RoyKI'm on 12.04 on this box17:57
RoyKsync0pate: don't know - sorry17:57
sync0pateI'm on 13.10 too though.. I get the same as you RoyK17:58
RoyKsync0pate: do you have anything in those tmp dirs like /var/tmp?17:58
RoyKjust came to me I ran this on a RHEL box with a far older locate version :P17:58
sync0pateyeah17:58
sarnoldRoyK: ahhhhhh :)18:00
sarnoldi just got a 12.04 vm spun up and tested and it seemed to work fine too18:00
sync0pateso I'm running updatedb again18:00
RoyKok :)18:00
sync0pateas root18:00
sync0pateso maybe that's what was wrong, we'll see18:01
sync0patetakes a while huh!18:01
delinquentmeis there a specific channel on freenode for ubuntu dev?18:01
delinquentmesarnold, apparently this is a OS-wide bug.18:01
RoyK#ubuntu-dev18:01
delinquentmeits empty18:01
RoyKhm18:02
sync0pateok it seems to be working on other dirs now, just the home dir, which I don't really need anyway18:02
sync0patethanks :)18:02
sarnoldthere's an #ubuntu-devel but I suspect they'll ask you the same questions -- what is a keyboard shortcut? how are you setting it? how does it not work? ..18:02
RoyKsync0pate: #ubuntu-devel18:02
sync0pate?18:03
RoyKsorry - that was for delinquentme18:03
RoyKdelinquentme: see above18:03
RoyKsarnold: touched /var/tmp/asdf and did an updatedb and it worked well18:06
sarnoldRoyK: woo :)18:07
RoyKseems the old mlocate in RHEL6 is broken18:07
patdk-wkI always uninstall mlocate, no need for it to use up disk i/o on my servers18:07
RoyKwonder how RH survives - late with critical fixes and lots of crap18:07
sync0pateok weird question but18:10
sync0pateI've occasionally encountered resistance to using ubuntu as a server18:10
sync0patefrom clients18:10
sync0patebut I can never get a straight answer as to why18:10
sync0pateany ideas?18:10
RoyKthey've probably learned from marketing that ubuntu is a hack18:11
sync0patefrom marketing?18:11
RoyKfrom the FUD guys18:11
sync0patefrom ubuntu's marketing? :)18:11
RoyKbut still, in risk of getting kicked out from here, I've turned back to Debian because of issues not being fixed. Seems to me the move to upstart wasn't the best of things18:12
sync0pateugh, that's the one thing I've had trouble with actually18:12
sync0pateon one of my vps upstart just stopped working18:12
RoyKbingo18:13
sync0pateno idea why18:13
RoyKso - I went back to debian - it just works18:13
RoyKI still use ubuntu for desktop things, though18:13
sync0pateI still occasionally have to use windows :(18:13
RoyKso do I, at gunpoint18:13
sync0pateit feels like living in the past18:14
sync0pateluckily our government has paid so much to microsoft to continue supporting xp18:14
sync0pate:'(18:15
RoyKsync0pate: "our government" as in "Murrica"? ;)18:18
sync0pateno, I'm in the UK18:18
RoyKk18:19
RoyKit's hardly any better here (in .no)18:19
xibalbaanyone here using btsync?18:39
tcstari have a web log that is of type "combined"...  i know i can use https://gist.github.com/tcstar/51eabdfe21c88be0a6dc to get the results listed...  but how can i modify that to get the actual browser name?18:55
tcstarand maybe by version of that browser too18:56
tcstar     1 Mozilla/5.0 (iPhone; CPU iPhone OS 7_0 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Mobile/11A465 [FBAN/FBIOS;FBAV/6.7.2;FBBV/603804;FBDV/iPhone5,2;FBMD/iPhone;FBSN/iPhone OS;FBSV/7.0;FBSS/2; FBCR/Verizon;FBID/phone;FBLC/en_US;FBOP/5]19:00
=== guntbert_ is now known as guntbert
s3ri0ushey guys for all static sites does would I be looking at RAM or CPU for best benefits?20:03
tgm4883rbasak, might you be able to give the Mythbuntu team (me) a pointer on why the default Apache2 website in 14.04 makes mythweb unavailable?20:17
tgm4883(daviey made me do it)20:17
xibalbas3ri0us, you serious?20:18
sync0pateso, still having trouble with locate20:44
sync0patelocate -r '/var/web/.*'20:44
sync0pateworks20:44
sync0patebut20:44
sync0patelocate -r '(/var/web|/home/user).*'20:45
sync0patedoesn't20:45
=== metasansana is now known as metasanta
monokromeHey. I have a number of Ubuntu server machines, and after `apt-get update && apt-get upgrade && reboot` followed by `apt-get update && apt-get dist-upgrade` - I seem to still be running openssl version 1.0.1e20:54
monokromeIs there not a version of OpenSSL that isn't affected by heartbleed in Ubuntu yet?20:55
=== s3ri0us is now known as s3ri0us|away
TJ-The updates have been published; check that the installed versions are still supported by security upgrades, and that the APT mirror those systems uses isn't out-of-sync with the primary repos20:59
mdeslaurmonokrome: you should have version 1.0.1e-3ubuntu1.2 of the packages21:00
monokromemdeslaur: It says OpenSSL 1.0.1e 11 Feb 201321:01
mdeslaurmonokrome: where does it say that?21:01
monokromeDid Ubuntu backport the fixes?21:01
monokrome$ openssl version21:01
mdeslaurmonokrome: yes, we backported the fixes21:01
monokromeoic21:01
mdeslaurmonokrome: use "openssl version -b"21:01
monokromebuilt on: Mon Apr  7 20:33:19 UTC 201421:02
mdeslaurmonokrome: congrats, you are secure21:02
monokromeWHy would someone backport the fixes instead of just updating OpenSSL? If there's enough room for error in the portion of code affected by this, then why would it be a realistic solution to backport more changes into it instead of updating to the original fixed version?21:03
monokromeI realize why Ubuntu changes packages, but this seems like a place where that wouldn't be wanted21:04
mdeslaurmonokrome: because the new version of packages introduce new bugs and incompatible changes21:07
mdeslaurmonokrome: testing a 4 line patch is pretty easy, testing a whole new version can take days/weeks21:08
=== s3ri0us|away is now known as s3ri0us
mdeslaurmonokrome: believe me, if simply updating to the latest upstream were a viable solution for packages, it's what all the distros would do21:10
monokromemdeslaur: I see21:31
monokromeThat surely makes sense, but still a bit concerning.21:31
=== Peerbreed is now known as Tekmeout
=== xibalba_ is now known as xibalba
=== a1berto_ is now known as a1berto
=== Tekmeout is now known as techdesigns
=== techdesigns is now known as peerbreed
pmatulisthe new apt in trusty is refreshing23:06
=== mikal is now known as stillbert

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!