[03:21] <Macer> what the hell
[03:32] <Seven_Six_Two> jak2001, you might need an entry in the server's /etc/hosts.allow
[05:58] <glisignoli> Hello, does anyone have expirence setting up bind9 and remote nsupdates?
[05:59] <glisignoli> I've follow a few guides but I keep getting SERVFAIL
[06:02] <glisignoli> Oh I am error... I think it's apparmor
[06:09] <glisignoli> Or not, bind couldn't write to /etc/bind
[06:09] <glisignoli> I am smrt
[07:15] <Pupeno> When I do ssh-add, it asks me for the password of my key, even though I have no password set on it (and pressing enter just adds it). Any ideas why? On other machines this didn't use to happen.
[10:22] <ice9> how to use DH with sshd?
[10:23] <ikonia> DH ?
[10:23] <ice9> diffie-hellman
[10:24] <ikonia> no idea what that even is
[10:25] <lordievader> Doesn't ssh do that by default? I've seen a message pop by about diffie-hellman keyexchange from time to time.
[10:26] <ice9> lordievader: message pop? where?
[10:26] <lordievader> Probably with ssh -v, or it was on the ssh application on my ipad.
[10:26] <dasjoe> It tries curve25519-sha256@libssh.org first
[10:27] <dasjoe> ice9: man 5 ssh_config, Section "Key Algorithms"
[10:27] <dasjoe> *KexAlgorithms, sorry
[10:28] <ikonia> ooh the encyption
[10:28] <ikonia> I thought you meant an application
[10:28] <ice9> dasjoe: but I have to create the DH group first right?
[10:28] <ikonia> grup ?
[10:29] <ikonia> don't just set it in the ss_cnofig which cypers are available
[10:29] <ikonia> sshd
[10:29] <ikonia> oops
[10:29] <ikonia> ssh_config
[10:30] <ice9> ssh_config or sshd_config?
[10:30] <ikonia> ssh_config
[10:30] <ikonia> sshd is the server, not client
[10:30] <ikonia> I assume you're talking about client config
[10:31] <ikonia> or are you referencing your ssh server, not client
[10:36] <Guest67771> hi my ubuntu server is is using ufw, with port 23 allowed. My router has port forwarding setup for both tcp/udp on port 23. Yet a port scanner shows the port as closed. I need it open for a MOO. Any ideas of what errors or things I may have overlooked?
[10:37] <lordievader> Guest67771: Is there something listening to port 23?
[10:37] <Guest67771> I have a mOO server, expecting telnet traffic...Is that what you mean?
[10:40] <lordievader> Guest67771: Perhaps, is that listening to 23? (netstat -tulpn|grep 23)
[10:41] <Guest67771> showing nothing
[10:42] <lordievader> Guest67771: So nothing is listing to port 23, that should be your problem.
[10:43] <Guest67771> does that mean it won't allow traffic in on port 23 - that's my major concern. MOO uses telnet - I'm trying to troubleshoot MOO access to school
[10:45] <lordievader> There is nothing on your server that accepts connections on port 23.
[10:45] <Guest67771> ok...that sort of make sense. Back to the manuals. Thank you
[10:45] <lordievader> Good luck, Guest67771
[12:56] <Teduardo> Hi there, i've just installed 14.04 on a server and when it boots it comes up and says mei_me initialization failed and then it hangs there forever, i searched on google and it says to update the bios, i've updated the bios and it still does this. is there a setting via grub that i can use to disable mei?
[12:57] <Teduardo> i would prefer not to recompile the linux kernel
[13:24] <patdk-wk> teduardo, blacklist the mei module
[13:52] <elliotd123> I'm having trouble with environment variables in 14.04 - I can't get a script that runs #!/bin/sh to recognize environment variables. Where's the correct place to put non-interactive startup scripts for sh?
[13:53] <elliotd123> Correction - I don't know where to add the export command to CHANGE the environment variables
[13:56] <elliotd123> I just noticed that the environ variables work without sudo, but not with sudo
[14:01] <OpenTokix> elliotd123: sudo resets your enviroment
[14:01] <OpenTokix> elliotd123: it has to be set inside /etc/sudoers to be allowed
[14:02] <OpenTokix> elliotd123: this line: Defaults	env_reset
[14:02] <OpenTokix> elliotd123: to be more specific, and it should not be removed, since its kind of a securityrisk if you can pass enviroment-stuff from normal user to superuser like that
[14:03] <elliotd123> Got it, thanks OpenTokix. All I needed to do was add a folder to the path variable, so I added it to the file and it's working now. THANKS!
[15:08] <sander^work> Do anyone know why apache2 wasnt upgraded correctly from ubuntu 10.04 to 12.04? The log of apt-get is here: http://pastebin.com/gHEc7BD0
[15:09] <sander^work> Package apache2-mpm-prefork is not configured yet.
[15:16] <shauno> sander^work: line 3 is preventing apache from starting, which throws apt into an error.  it should try to handle it better if mods-enabled/reqtimeout.load is symlinked from mods-available/ (as intended)
[15:16] <shauno> er, line 4 rather
[15:20] <shauno> I had a very similar issue because my rsync-fu failed me - I took my config from a previous install, but it created mods-enabled and sites-enabled as regular files instead of symlinks
[15:34] <sander^work> shauno, Will try*
[15:37] <sander^work> shauno, correct.. but how do I fix the apt-get thingie after symlinking properly?
[15:41] <shauno> sander^work: once you've replaced those files with symlinks, just run exactly the same apt operation again and it should figure itself out
[15:42] <shauno> all that's happening is that apt updates the copies in 'mods-available', and because you have copies of them instead of links to them, your copies are out of date
[15:42] <sander^work> shauno, do-release-upgrade reports no new releases.
[15:42] <sander^work> and apt-get dist-upgrade reports the error.
[15:43] <shauno> ah.  I'd just apt-get install apache2.2-common then
[15:43] <sander^work> oh. I have to do it with reqtimeout.conf too.
[15:43] <shauno> if everything in mods-enabled is a proper file instead of a symlink, there's probably a good many things you'll have to do it for - anything that's been updated since the prior version
[15:45] <sander^work> shauno, thanks alot, it worked now:)
[17:12] <fridaynext> I've set up an AFP share from my Ubuntu 12.04 server for Time Machine backups, but this pops up about once every 2 months http://share.pho.to/5gIkf
[17:13] <fridaynext> is there any way to make TM backups to Ubuntu more reliable?
[17:18] <sarnold> fridaynext: wow. what a can of worms: https://discussions.apple.com/thread/3684176
[17:20] <fridaynext> sarnold: wow - that is quite the can of worms.
[17:21] <sarnold> fridaynext: several reports of it failing often even with apple's time capsule. I don't know if that's hilarious or sad.
[17:22] <fridaynext> sarnold: time to switch exclusively to rsync, it appears.
[17:22] <fridaynext> I bet you fifty bucks THAT won't fail on me.
[17:22] <fridaynext> :)
[17:22] <fridaynext> Well, good to know that it's nothing I'm doing wrong, and it's the damn system that doesn't work properly.
[17:23] <fridaynext> If only  could have made this easy for me. Off to rsync I go.
[17:23] <sarnold> fridaynext: the downside of course is that rsync doesn't provide the same thing -- there's no back-and-forth through time.. rsnapshot works okay for me, but source and destination drive are in the same machine. heh.
[17:23] <fridaynext> sarnold: ah.
[17:23] <fridaynext> But I do'nt really care about back adn forth through time - i just want incremental backups.
[17:23] <sarnold> fridaynext: no kidding. until today I had a high opinion of time machine..
[17:24] <fridaynext> sarnold: I've had my share of issues since I started using it.
[17:24] <fridaynext> Nice as a safety net, but definitely doesn't give me the warm and fuzzies about my content being backed up properly...
[17:24] <fridaynext> alright, i'm off to go fix this. Thanks!
[17:24] <sarnold> fridaynext: yeah.
[17:24] <sarnold> fridaynext: have fun!
[17:31] <med_> jamespage, zul: will there be a UCA for Trusty at some point or are upgrade/support schemes changing?
[17:32] <med_> someone just suggested UCA for Trusty could exist (and just have the same pkgs as Trusty proper atm)
[17:32] <med_> gaughen, ^
[17:35] <gaughen> med_, yes, the plan is to have  UCA for Trusty but I suspect it won't appear until further along in the Utopic cycle
[17:35] <med_> gaughen, nod. Filed #1320960
[17:35] <gaughen> but the 2nd part of that statement is my opinion, so maybe it will be sooner med_
[17:35] <med_> and thanks pat.
[17:36] <gaughen> no problem-o!
[18:03] <lordievader> Good evening.
[18:29] <hxm> hi, exists a log where I can see what ip is using what port?
[18:30] <lordievader> hxm: lsof can show those things if I'm not mistaken.
[18:31] <hxm> with lsof -i I can see the opened ports
[18:31] <hxm> but not if someone connected time ago
[18:46] <sarnold> hxm: no such log exists.
[18:47] <sarnold> hxm: what are you trying to do? there may be ways to get something similar.
[18:54] <lordievader> hxm: You could use pmacctd to capture flowrecords and use the nfsen collector to log them.
[19:02] <hxm> i have problems with postfix, and the user swears he is using the proper 587 port but cant sends emails, I see in the logs the error in ehlo command and the doc explains is because a wrongly use of the TLS
[19:02] <hxm> and im half sure they are missconfigured the mail client, if I configure it, works, if they do, dont
[19:03] <hxm> but I dont have proofs
[19:46] <SCHAAP137> hxm, which mailclient is the user using
[20:59] <ptronico> Hello! I cannot fetch google.com using SSL. It says: "SSL certificate problem, verify that the CA cert is OK." Anyone can help me? Thank!!!
[21:00] <dasjoe> ptronico: is your computer's clock set correctly?
[21:00] <dasjoe> "okay"
 ptronico: is your computer's clock set correctly?
[21:02] <ptronico> dasjoe: no. its saying "Thu Mar 13 09:43:52 BRT 2008"
[21:03] <dasjoe> ptronico: fix that (manually) and your problem will probably disappear
[21:04] <ptronico> dasjoe: I'll try
[21:10] <ptronico> dasjoe: it worked! tanks a lot dude!
[22:43] <rostam> hi we have installed server on field running ubuntu 12.04. Due do some performance issues, we need to change the /etc/fstab mount options for "/" (mounted on /dev/sda1 and no lvm).  We can not edit /etc/fstab on each system manually, We need an automated solution, script,.. How could I do manage this? thx
[23:07] <sarnold> rostam: something like ansible may do the trick, if you want something better than a multiple-ssh kind of tool
[23:30] <rostam> sarnold, thanks
[23:56] <brianblaze420> anyone know what I need to do to generate keys for openvpn? in the instructions it says to move a folder from somewhere to /etc/openvpn/easy-rsa/ but I don't seem to be able to find the file to copy :(