[00:13] :) [00:14] whats the best safest way to mass rename files is following way - all files containing text 'sample' are having this part of their name renamed to 'samk' [02:37] hello. i was just a bit curious. i have a box with 4x3TB drives and wanted to start using btrfs or zfs .. is btrfs stable enough nowadays to use it in a similar fashion to raidz? [04:04] So I tried to reinstall util-linux and now get a "mount: not found" - I managed to get a USB version into rescue mode for the system. What's the best way to fix this? [04:40] hm. i'm getting a blanked out screen when ubuntu server 14.04 boots [04:49] video driver issue ? [04:49] using a GUI on it ? [04:49] no [04:49] rather fresh install .. seemed to get past the fb part.. was starting up services and then just went blank [04:50] does ubuntu-server install allow you to configure a raid5 btrfs from the install? [04:50] maybe i'll just try to install directly to the hdds instead of using a thumb drive to boot it [04:51] i know i didn't see the option earlier when i tried to install it to a thumb drive but i doubt it would show it considering there was only the thumb drive to install to [04:51] might wanna check the logs [04:52] it seems more like a crash than a fb issue [04:52] i can't check the logs because i can't ssh to the box and the console is blanked [04:52] recovery mode or liveusb + mount ? [04:53] i'm actually going to try to run it from a liveusb in a minute [04:53] to see where it went wrong [04:53] yea you can check logs from there [04:54] it could be because i installed using a laptop then moved it to another pc to try to boot.. but i don't see why that should be an issue [04:54] :) [04:54] and it seems that btrfs installed as root doesn't do it cleanly [04:54] you need an ext(2/3/4) partition [04:54] which is why i was trying to boot from a thumb drive [04:54] may be beyond the scope of official support :p [04:55] booting from a thumb drive and using btrfs? [04:55] btrfs is 'experimental' [04:55] oh [04:55] is zfs on the same boat? [04:55] according to wikipedia at least [04:55] dont know [04:56] i thought btrfs was supposed to be stable as of late [04:56] im sure people will help anyway, just sayin' you might take some flak for it :p [04:56] but first let me try to boot this install thumb drive heh [04:56] well.. these things don't get fixed until someone uses them ;) [04:57] the random blanking/crashing is problematic [04:57] heh [05:00] yes [05:00] problem reading data from the cdrom? [05:00] wth? :) [05:01] not sure what happened there. i just did a straight dd from the iso [05:01] to a thumb drive [05:52] hello everyone , [05:52] i got a problem, my ubuntu 14.04 can not save the brightness setting. [05:53] when i reboot computer, the brightness back to 100%, does anyone has this problem? [06:10] xzavier: hrm, lots on google http://google.com/search?q=ubuntu+not+saving+brightness -- sorry, no personal exp [06:10] i just searching that with google, [06:10] thanks [06:10] i expect you will win soon. :) [06:10] hehe [06:11] haha [09:56] hello there... i have a strange issue with samba shared folders... some folders are always accessible while otheres are only accessible (visible) after accessing the server via ssh... could anybody help me? [10:06] i believe my ubuntu server got hacked a few hours ago [10:07] i got an email from digitalocean. : We've had to unfortunately reboot your Droplet graafik due to an issue on the underlying physical node where the Droplet runs. [10:08] i managed to login via digitalocean online console. found out that all connections were dropped from ssh, http, https etc [10:09] i investigated the bash history, where i saw some weird commands that didnt ring a bell to me [10:09] http://i.imgur.com/CHJ9MIw.png [10:09] starting from iptables save [10:10] seems that someone has hacked into the server and turned off the prots [10:10] ports *. cpu load is nearly 100%. two-three processes that take the most memory are labelled "sh" [10:10] if so then they had root access which means the only way to clear them out is re-image [10:10] they change their pid's every few seconds [10:11] yes, i thought about re-imaging the system and it is my next step [10:11] BUT [10:11] i need to get a database dump before [10:11] :( [10:11] now the interesting part starts [10:11] nearly every command i type in fails [10:11] should do that daily ideally if not too big [10:12] hmm [10:12] yes, from now on i will do it :D [10:12] mysqldump would help me out BUT http://i.imgur.com/T12cBjK.png [10:12] well if youre on a console connection then i would shut dwn the networking asap [10:12] so the guy cant do stuff anmore [10:13] i believe it is used for bitcoin mining [10:14] and find and kill the processes [10:14] whatever they are [10:14] the process id changes every few seconds [10:14] That's unusual for mining [10:15] here is the output of top [10:15] http://i.imgur.com/Sp6bJ6W.png [10:15] Paste a "ps aux", like "ps aux | pastebinit" or manually on a pastebin [10:16] you can get the parent process id [10:17] ps -f [10:17] umm [10:17] ps -ef [10:18] anyway you should shut off networking until you want to send off your backup [10:19] yeah im trying to get the results to you. but the online-console does not have mouse interactivity and the keyboard layout is really weird. i can not find the | character. copy/paste does not work also [10:19] just in case the boogeyman is watching you and decides to destroy everything [10:19] hello there... i have a strange issue with samba shared folders... some folders are always accessible while otheres are only accessible (visible) after accessing the server via ssh... could anybody help me? [10:19] how to turn off the networking the right way _ [10:19] ifdown [10:20] done [10:20] now do you dumps and zips and stuff [10:20] tar czfp to maintain permissions [10:21] i only need the mysql database backup [10:21] but yeah, i can not execute nearly anything [10:21] i try to get the ps aux response to you [10:22] h3r1: dont know bout that [10:22] ranno: iptables -F will flush the firewall [10:23] ps aux output [10:23] http://i.imgur.com/vJec9AY.png [10:23] ranno: ps -ef will show PPID = parent process [10:24] ok ps -ef output [10:24] http://i.imgur.com/o4CNqPN.png [10:24] ranno: if you do iptables -F the rules he added to /etc/iptables/rules.v4 wont be re-run until reboot ..... [10:25] http://i.imgur.com/MFheFCz.png [10:25] ranno: youre just looking for the parent of the processes using 100% cpu if you care to kill them [10:25] ranno: otherwise just ignore them get your dump, offload it and reimage [10:26] i will probably save the current image for later investigation [10:26] but the main problem is that i can not make the dump [10:26] ranno: easy answer is they brute forced your root pw [10:26] executables do not work [10:26] ranno: or they stole your private key from home comp [10:26] hmm [10:27] this is what i get when i try to execute something [10:27] http://i.imgur.com/T12cBjK.png [10:27] what if you just type bash [10:28] nothing happens [10:28] prob opened a new shell [10:28] might seem like nothing happened :) [10:28] What makes you believe you got hacked, anyway? DigitalOcean told you they had to reboot your system [10:29] bash_history commands that i do not recall [10:29] what about things like echo does that run [10:29] echo displays a new line [10:29] yeah [10:29] echo works [10:30] what about mysql [10:30] bash: /usr/bin/mysql: cannot execute binary file [10:30] does it still have executable flags [10:31] ls -al /usr/bin/mysqldump [10:31] Also, they're probably using a US layout, see https://en.wikipedia.org/wiki/File:KB_United_Kingdom.svg for an approximate mapping to a ISO layout [10:31] yeah i even chmodded 777 [10:32] well [10:32] you can always copy the mysql files directly [10:32] if they havent been destroyed [10:32] look in /var/lib/mysql/databasename [10:33] MyISAM tables? [10:33] im an innodb noob :p [10:33] yeah , the files still exist [10:34] tar work? [10:34] seems so [10:34] well then just tar up your /var/lib/mysql/* [10:35] i have to admit i have never really understood the tar flags [10:35] may be able to skip some things.. like ib* .. not 100% certain [10:35] tar czfp /path/to/archive.tgz /var/lib/mysql [10:35] -c create -z gzip -f filename -p keep permissions [10:36] also note your mysql version .. [10:36] if you can [10:37] dpkg -l | grep mysql [10:37] I seriously doubt you got hacked, ranno. You probably installed some package for the wrong architecture, thus a script can't execute a binary and retries, this are the sh processes which consume 100% cpu [10:38] i havent logged in for a week or so [10:38] but tbh, i now also doubt the hacking [10:38] Yeah, DigitalOcean told you they rebooted the system [10:38] maybe they ran teh iptables stuff [10:38] i get errors like \read-only file system [10:38] when trying to tar [10:39] wtf mode did they reboot into :) [10:39] http://askubuntu.com/questions/175739/how-do-i-remount-a-filesystem-as-read-write [10:40] http://i.imgur.com/uWtvK0G.png [10:41] is there anything malicious in /etc/iptables/rules.v4 ? [10:42] 'cause thats all the bash history says was modified [10:42] not too nefarious really [10:42] ranno: remount the filesystem read-write. [10:43] not like they wrote echo "haha you got owned" > /i-am-the-best [10:43] iptables rules [10:43] http://i.imgur.com/9EdQLfW.png [10:43] hehe [10:43] yea that looks not so bad [10:44] quite wrong actually. [10:44] There are no ports above 65535 :) [10:44] still not obviously malicious [10:45] Indeed. [10:45] tell them they rebooted wrong and to fix it :p [10:45] I second that. [10:45] when trying mount -o remount / [10:45] i cannot access some samba sheres until i connect to the server via ssh. i want the samba share folders to be alway visible, without ssh connection... can somebody help me out? [10:46] ranno: Thats not the correct command. [10:49] remount,rw ? [10:49] ranno: Read the link given. [10:51] a proper boot should be rw.. dont know why it booted ro [10:51] but that likely explains all the stuff like no ssh [10:52] after reboot now [10:52] it said that there is something to fix [10:52] pressed F [10:52] drive failing? :/ [10:52] and some indodes had something of value 2 that had to be 1 [10:52] dw1: It perfectly does. No PID file can be written on a ro fs. So almost every daemon, including sshd, fails to start. [10:54] please, does anybody have at least a hint for me? [10:57] h3r1: http://askubuntu.com/questions/274138/samba-only-works-if-logged-in-over-ssh ? [10:58] google ftw? :) [10:59] i try to umount as shown in the article [10:59] but i get "device is busy [10:59] ranno: if it mounts properly on boot shouldnt need to do that..... [11:00] ranno: if it doesnt mount properly on boot.. tell your provider they broke it, if they're mildly responsive, and especially if its managed [11:00] ranno: you cannot umount / [11:00] ranno: report the inode thing too [11:01] so okay the partition identifier is /dev/vda [11:01] what should the mountpoint be _ [11:01] dw1 thanks for the link... indeed, my share is an encrypted one... does it mean, that i have to be connected via ssh always that i want to access this share? how can i automatically mount it via ssh? [11:01] ranno: look at your /etc/fstab [11:01] h3r1: Yes, it means you need to connect using ssh prior using samba. [11:02] bekks thank you [11:02] h3r1: or move it out of the encrypted folder [11:04] dw1 is it convenient at all to hacve my home-folder encrypted on the server? i did it for security reasons... [11:04] h3r1: maybe you can hack it http://google.com/search?q=automatically+mount+encrypted+samba+share [11:04] hi, some soft for nikon D3200 to control from computer? [11:05] h3r1: i encrypt at home and on laptop mostly to prevent physical access [11:05] lak-kal: Define "control" a bit further please. [11:05] h3r1: you may not be able to protect against a snooping provider.. not sure [11:06] h3r1: at least not while youre logged in [11:06] h3r1: so it may or may not be beneficial [11:06] dw1 so encryption only helps in case of phisical access? [11:06] h3r1: Actually yes. [11:07] bekks: control = manage, [11:07] etc/fstab shows two mount points> /proc and / [11:07] ranno: And? [11:07] first has a file system proc and the second has UUID=3107/// [11:07] ranno: So look at the UUIDs your system: sudo blkid [11:08] lak-kal: I'd say "digikam", but it more for managing your photos. [11:08] h3r1: id say its unlikely your provider will snoop or have your server stolen.. :) [11:08] h3r1: but if someone brute forces some account or something i guess encryption could be good [11:09] h3r1: dont know :) [11:09] bekks: okay i get /dev/vda and LABEL and UUID values [11:09] bekks: i still dont get where do i get the mount point value [11:09] h3r1: assuming you have a remote server btw [11:09] h3r1: in a standard secure facility :) [11:09] ranno: the mount point is / [11:10] ranno: Just call your ISP to fix that issue. They broke it, they have to repair ir. [11:10] take pictures from computer : http://www.lmscope.com/produkt22/Nikon_Camera_Control_Pro_2_es.shtml [11:10] *it [11:12] bekks: take pictures from computer : http://www.lmscope.com/produkt22/Nikon_Camera_Control_Pro_2_es.shtml [11:13] ok thats it [11:13] opened a digitalocean ticket [11:13] dw1, thank you for your advice [11:14] actually i now remember this is already the second time when i have problems with DO disks. [11:14] thank you for helping me [13:19] wow. i have no idea what is going on here [13:19] ubuntu just crashes when i try to boot it to install [13:20] weirdest thing ever [13:20] !md5sum|Macer verify your ISO , verify the boot media [13:20] Macer verify your ISO , verify the boot media: To verify your Ubuntu ISO image (or other files for which an MD5 checksum is provided), see http://help.ubuntu.com/community/HowToMD5SUM or http://www.linuxquestions.org/linux/answers/LQ_ISO/Checking_the_md5sum_in_Windows [13:20] ubottu: it isn't the media [13:20] Macer: I am only a bot, please don't think I'm intelligent :) [13:20] cfhowlett: i used the same one to install to another SD using a laptop [13:20] worked fine... would boot [13:21] Macer: do you have multiple monitors plugged in by any chance? [13:21] no. just one. [13:21] it completely crashes the system tho. the usb turns off.. strangest thing ever heh [13:21] Macer so ... you did NOT take the 90 seconds required to verify the integrity of your the ISO. right. [13:22] cfhowlett: no.. but the integrity should be proven by the fact i just used the same exact SD to install it onto another system? [13:22] the install media is fine [13:22] Macer garbage in/garbage out [13:22] Do it to rule it out [13:25] 01545fa976c8367b4f0d59169ac4866c *ubuntu-14.04-server-amd64.iso [13:25] it matches [13:26] it tries to boot.. reaches a certain point... then just crashes the entire system [13:26] and i can't even check the logs on it [13:27] either way tho. a fresh install simply crashing "just because" ... :/ [13:31] maybe an issue with the amd apu stuff? === SPeedYdr is now known as SPeedY === SPeedY is now known as SPeedYdr [13:34] hm. let me try debian. [14:51] wow it's really the weirdest thing.. debian boots. ubuntu boots but reaches a certain point and crashes the whole box [15:00] yeah i'm at a loss. amazing. [15:06] there seems to be some awkward module that is loading that is making it crash. when going into recovery mode it boots fine [15:06] :/ [15:06] wth [15:06] it just got to a login.. then the screen goes blank... and it crashes [15:21] ah.. ok. well.. nomodeset seems to have fixed the not booting problem :) [16:44] so what is the best way to do a swap when you are booting from an sd and want to create a raid5 btrfs across 4 disks? [16:44] do i just partition a couple GB per disk and add all the swap partitions to fstab? [16:44] then make the remainder btrfs partitions and create the raid5 btrfs? [17:08] hello there... i made a reinstall of ubuntuon my laptop... i have an encrypted home folder... i used to share the desktop folder via samba without problems. now after the reinstall it says it cannot mount it... any idea how i can fix this? [18:16] nice. set up the swap space and zfs on the 4x3TB drives [18:16] hopefully it survives this reboot [18:25] Hi is Ubuntu server secure?? [18:26] What I mean is every core program vetted? [18:26] Can we trust the very core of Ubuntu?? [18:26] Who checks these things?? [18:27] Who vefifies that Ubuntu is secure??? [18:28] Verifies sorry. [18:30] I think security is to be a big thing and if any problems should be brought before the so called law big time [18:30] who verifies all the software withing ubuntu??? [18:30] within [18:31] Is Ubuntu secure?? If so who says so?? [18:32] cloudman: Isnt it? Who says so? [18:32] whatever dude [18:32] who verifies ubuntu as secure software [18:32] or any other distro [18:33] I run bunt 12.04 [18:33] And I mean verify so that you can sue them later [18:34] if not so [18:34] who does that for any OS? [18:34] So, the main question is, is Ubuntu secure software and who says so [18:34] Officially [18:36] So does Ubunt give no promise of its core security??? [18:36] Ubuntu sry [18:37] cloudman: the nsa does [18:37] And the DoD, and the US Army, and and and. [18:37] Oh, and the NATO as well. [18:37] Macer: dont make light dude on a important issue [18:37] yeah. they verify windows and osx as well [18:37] Oh so we just piss it off [18:37] cloudman: depends on what you mean by "secure" [18:38] i don't think there is some govt agency that verifies that an OS is secure [18:38] Macer: all core software, who verifies it, simple question [18:38] I'm not aware of anyone who does this for any platform. it's a fairly unrealistic expectation [18:38] It's open source, feel free to verify it [18:39] i an only assume there is some sort of private org within ubuntu that does it... i mean other than that it's pretty much "use our free stuff at your own risk" [18:39] dasjoe: so they jus add it without looking at the code? [18:39] but then again who verifies if windows is secure as well? [18:39] Macer: just talking about Ubuntu here dude [18:39] there are agencies who will take $$$ and verify an OS as FIPS compliant [18:39] of course, FIPS is not very secure at all. [18:40] geez guys just abswer the question [18:40] cloudman: nobody. [18:40] answer sorry [18:40] I do. i verify it secure. [18:40] worked up as it is [18:40] see. I looked at it, and I verified it. [18:40] like i said. i'm sure there are some internal testers... [18:40] jrwren: ;) lol [18:41] all it takes is one snowdenesque dev to make everything come off the rails [18:41] Macer: sure but who official and accountable?? [18:41] who verifies ANY os as far as your question goes. Windows or Mac or Android or Other? [18:41] cloudman: nobody [18:41] GEEZ [18:41] any OS is use at your own risk. i'd assume even more so for something that is free and opensource [18:41] ^^^ [18:41] the faith based operating systems [18:42] Macer: is that a window for big shit [18:42] all are faith based, aren't they? [18:42] cloudman: http://www.ubuntu.com/about/about-ubuntu/governance [18:42] freebsd probably has CS students checking code [18:42] jrwren: quiet dude [18:42] Also, the original Q can only be answered with more questions. Secure from what? [18:43] there are no other questions. he's already stated "And I mean verify so that you can sue them later". which means nobody. [18:43] Geez I think there are a lot of sysadmins here [18:43] cloudman: i'd guess that ubuntu is secure based on the fact that it has so many users that a flaw would be quickly found and fixed [18:43] obviously things get through like that little openssl debacle [18:43] yeah like heart beed [18:43] bleed [18:43] It was found and fixed within three hours. [18:43] and that isn't open in the default ubuntu install. [18:43] What do you expect. Dude. Geez. [18:43] but ran for 2 years [18:43] but anyways.. i finally finished setting up ubuntu-server and the zfs so i'm happy heh [18:44] good stuff [18:44] just need to set up samba in a bit and i'm done [18:44] desktop OR server, heartbleed wasn't there OOTB, someone had to install an https server [18:44] oh.. and virtualbox i guess [18:44] geez guys dont be so niave [18:44] cloudman: geez guy. dont make a drama out of nothing. [18:44] * Macer puts on his tin foil hat [18:45] cloudman: what do you need? [18:45] sure, greatr and helpful comment [18:45] you can always use option b... write your own OS :D [18:45] then you KNOW it's perfectly secure [18:45] cloudman: like all your rants before. [18:45] so protective man [18:45] bekks what rants?? [18:45] and even then someone will find an exploit heh [18:45] openbsd is great. I like a lot of what they do. I still use ubuntu. [18:45] cloudman: read your own backlog. [18:45] <°)))o>< [18:45] yawn as they gang up [18:45] cloudman: what do you need? [18:45] lol [18:45] *plonk* [18:45] dick [18:46] whats up [18:46] You? Yes [18:46] just asked a basic question [18:46] "nobody" is a pretty basic answer. so why drag it out? [18:46] and you all came back and said basically that Ubuntu is not monitored for security lol [18:47] that is what you did. that is not what was replied. [18:47] you've said you're looking for someone to accept legal liability. no such party exists. [18:47] monitoring for security is different than a formal verification. [18:47] a quick duck duck go gives me this: https://wiki.ubuntu.com/SecurityTeam [18:47] So Ubuntu does not take any security measures at all or even tries?? [18:47] cloudman: there is a security team. https://wiki.ubuntu.com/SecurityTeam [18:48] Tried they were out to lunch [18:48] tried what? What do you need? [18:48] besides just asking questions here [18:48] typical irc jump on someone [18:51] jrwren: lol duck duck, you have security issues? [18:52] not right now. [18:52] everyone has security issues at one time or another. [18:52] duck duck wont let me access if I have peerblock running [18:52] so much for not tracking [18:52] i'm not familiar with peerblock [18:52] obviously [18:53] so you need to access duckduckgo while peerblock is running? [18:53] so much for duck duck bull shit [18:54] Please keep the language clean [18:54] thay dont track you, why they want to know my IP?? [18:54] IdleOne: sry [18:54] who? duckduckgo? [19:01] jrwren: your quite a person [19:02] very prevocative [19:06] That was not my intention. I only want to help. [19:06]