[01:11] <chriys> is it worth to protect something else than ssh using fail2ban
[01:11] <chriys> ?
[02:35] <chriys> hey guys I got this error when I try to log in ssh Write failed: Broken pipe
[03:36] <chriys> does someone has an idea on how to fix that error. I get it when I try to log in ssh /bin/bash: No such file or directory connection xx.xx.xx.xx closed
[04:46] <axisys> whats the recommended way to fix the *** glibc detected *** ... munmap_chunk(): invalid pointer: 0x00007fb46a278460 *** ?
[04:47] <axisys> ssh to remote host fails, apt-get update fails .. on 10.04.4 LTS
[04:50] <axisys> its failing since AUg 5
[04:50] <axisys> Aug 5
[04:50] <axisys> 2014-08-05 06:28:47 status installed libc6-dev 2.11.1-0ubuntu7.14
[04:57] <chriys> I'm back I disable the chroot jails. does someone has a link for chroot jail that also allow ssh an sftp login ?
[07:42] <FrEaKmAn_> hi all
[07:43] <FrEaKmAn_> every week I want to backup for files (tar them) and delete them
[07:43] <FrEaKmAn_> my idea was to use cron to call a script to handle everything
[07:43] <FrEaKmAn_> I can easily specify which folder to backup, but while it's doing it, the folder changes
[07:44] <FrEaKmAn_> what would be the best way to delete only the files that I put into archive?
[07:44] <FrEaKmAn_> to delete only files where date created < date of script run?
[07:45] <FrEaKmAn_> or to somehow get a list from tar and delete those files?
[08:27] <kklimonda> FrEaKmAn_: you can get a list of files from tar, or move the files to be backed into another dolder and do backong up from there
[08:47] <DarkStar1> Morning all
[08:48] <lordievader> o/
[08:48] <DarkStar1> I need help as to finding out whether or not I have fixed the issue of my smtp relay HELO-ing as localhost.local domain, as it doesn't receive andy emails and just sends how can I test this?
[08:51] <miceiken> telnet
[08:52] <DarkStar1> miceiken: according to CBL TELNET will not show the banner
[08:53] <miceiken> hm
[08:53] <DarkStar1> brb
[10:52] <gnaddel> Hi there, I have a problem with a cifs mount on ubuntu server 14.04: I want to add a samba share to /etc/fstab, however I get "mount error: cifs filesystem not supported by the system". I have cifs-utils installed.
[10:58] <cwhy1> gnaddel: have you tried it again following a reboot?
[10:59] <gnaddel> cwhy1: Yes, tried a reboot
[11:05] <cwhy1> gnaddel: run 'dpkg -l cifs-utils'
[11:05] <cwhy1> what output do you get?
[11:06] <gnaddel> cwhy1: http://pastebin.com/HdcMYQ1i
[11:11] <gnaddel> the fstab entry is as follows: //winfs-uni.top.gwdg.de/MYUSER$ /home/localuser/GWDG-P/ cifs credentials=/home/localuser/.smbcredentials 0 0
[11:16] <ogra_> gnaddel, try adding cifs to /etc/modules for a test
[11:17] <ogra_> and check in proc/filesystems if it is supported after loading the module
[11:18] <gnaddel> ok, rebooting
[11:21] <gnaddel> ogra_: Doesn't seem to work: http://pastebin.com/5M75kCdV
[11:22] <ogra_> this is weird ... also that you dont have anything in /etc/modules by default
[11:22] <ogra_> lp and rtc shoul still be in there i think
[11:24] <lifeless> I certainly have lp and rtc; though why anyone needs lp these days...
[11:24] <ogra_> well, you cant auto-load it for some reason ... so to use it it must be there ... even if only a fraction does actually use it
[11:26] <gnaddel> It's a pretty vanilla 14.04 server installation, the only things I added so far are fail2ban, auto-updates and some python stuff
[11:26] <gnaddel> and I don't think it would be a non-standard setup either (It's a VPS from 1&1, German hoster)
[11:28] <ogra_> oh, you didnt tell its a VPS
[11:29] <ogra_> might be that they use a kernel that doesnt even have cifs as module
[11:31] <gnaddel> They call it Ubuntu Server 14.04 LTS minimal system
[11:43] <ogra_> well, check "uname -a"
[11:44] <ogra_> (and also see if /lib/modules has the coressponding modules there)
[12:37] <Nivex> arrrghhhAWAY: good morning. bets on if/when the upgrader goes live today?
[12:39] <coreycb> jamespage, zul:  keystone is ready for review - https://code.launchpad.net/~corey.bryant/keystone/2014.1.2/+merge/230290
[12:40] <jamespage> coreycb, ack
[13:06] <jamespage> coreycb, working through your branches now btw
[13:07] <jamespage> coreycb, I'll upload anything that is OK
[13:07] <coreycb> jamespage, great, thanks
[13:09] <Abhijit> how can i tell preseed to delete all the existing lvm. delete everything.
[13:24] <jamespage> coreycb, does our MRE cover trove yet?
[13:24] <coreycb> jamespage, I'm not sure - where can I check?
[13:25] <jamespage> coreycb, MRE wiki page
[13:25] <coreycb> jamespage, looking
[13:27] <coreycb> jamespage, I don't see trove here - https://wiki.ubuntu.com/StableReleaseUpdates/MicroReleaseExceptions
[13:27] <jamespage> coreycb, OK _ well drop that from the update then
[13:27] <coreycb> jamespage, ok
[13:27] <jamespage> coreycb, we don't have an effect test strategy
[13:37] <jamespage> coreycb, horizon and ceilometer uploaded
[13:41] <jamespage> coreycb, for future reference, if you need to sync in the archive version of the package to the branch, make sure you pull in the changelog entries in full
[13:41] <jamespage> nova - > 1:2014.1.1-0ubuntu2
[13:41] <jamespage> for example
[13:41] <jamespage> rather than amending your changelog entry to include that ones patch
[13:41] <coreycb> jamespage, ok
[13:41] <coreycb> jamespage, want me to update those?
[13:42] <jamespage> coreycb, no worries - I've done neutron and nova
[13:42] <coreycb> jamespage, ok
[13:42] <jamespage> coreycb, if any other ones need updating please do
[13:46] <coreycb> jamespage, looks like cinder's the only other one that needs the changelog fixed, so I'll go  ahead and do that
[13:49] <jamespage> coreycb, awesome
[13:51] <jamespage> coreycb, zul, gnuoy, ++ : just in case you had not noticed but PPA builds are now much faster - scalingstack is taking care of them so they are running ontop of OpenStack under full KVM; queue is virtually 0 and they are faster than my SSD quad core....
[13:54] <gnuoy> Go team IS!
[13:54] <coreycb> jamespage, very nice!
[13:54] <coreycb> jamespage, cinder is update
[13:54] <coreycb> updated
[14:16] <jamespage> coreycb, glance and cinder uploaded
[14:17] <jamespage> coreycb, ditto nova
[14:26] <jamespage> coreycb, having severe deja-vu - waiting for keystone to finish building!
[14:26] <coreycb> jamespage, lol
[14:28] <coreycb> jamespage, there's some sort of db issue with heat that I'm trying to figure out
[14:28] <jamespage> coreycb, ack
[14:41] <jamespage> coreycb, neutron uploaded
[15:04] <jamespage> coreycb, and keystone
[15:05] <jamespage> coreycb, the complete set is here - https://launchpad.net/~james-page/+archive/ubuntu/icehouse/+packages
[15:05] <jamespage> as well
[15:05] <coreycb> jamespage, ack, thanks a lot.  just waiting on me for heat now.
[15:05] <jamespage> coreycb, ack
[15:10] <bitfury> anyone built GRE tunnels between two ubuntu servers behind NAT?
[15:10] <bitfury> I set up a tunnel but not sure if they're are up or not
[15:11] <bitfury> I do 'ip tunnel' and it's empty
[15:11] <bitfury> so I guess they're not up, is this a good way of checking?
[15:18] <chriys> Hi all, I'm running ubuntu 14.04 but for some reason I can't manage to change DocumentRoot in apache 2
[15:18] <Pici> chriys: Are you modifying the file for your site?
[15:18] <Pici> in /etc/apache2/sites-enabled/ ?
[15:19] <Pici> And if so, what isn't working?
[15:20] <coreycb> jamespage, do we want trove here with it not being on the MRE list?  https://launchpad.net/~james-page/+archive/ubuntu/icehouse/+packages
[15:21] <chriys> Pici: I want to change the location of the website. Instead of /var/www/ I want /home/myuser/html
[15:26] <jamespage> coreycb, meh
[15:29] <coreycb> jamespage, maybe it doesn't much matter
[15:33] <bitfury> anyone might know why my GRE tunnel between two ubuntu servers is not working?
[15:40] <jamespage> coreycb, if you fancy some MIR practice after sorting out heat - https://bugs.launchpad.net/ubuntu/+source/python-pysnmp4/+bug/1349868
[15:43] <coreycb> jamespage, sure I'll work on that
[15:43] <jamespage> coreycb, thanks :-)
[16:28] <arrrghhh> Nivex, :/  I can try to ping the folks who were talking about it in -devel, I just hate sounding desperate.  I just wonder what is needed, if they need help with additional testing or something...
[16:42] <arrrghhh> Nivex, check the page now :)
[16:42] <arrrghhh> http://changelogs.ubuntu.com/meta-release-lts
[16:42] <Nivex> huzzah!
[16:42] <Nivex> root@atlantis:~# do-release-upgrade -c
[16:42] <Nivex> Checking for a new Ubuntu release
[16:42] <Nivex> New release '14.04.1 LTS' available.
[16:43] <Nivex> sounds like I get some lunch and start my upgrade
[16:43] <arrrghhh> I pinged the guy in -devel and he was like "concidentally I just did that" hehe
[16:43] <arrrghhh> except he spelled it correctly.  coincidentally*
[16:43] <Nivex> and coincidentally I had just hit reload when you said to :)
[16:45] <arrrghhh> and all is right in the world of 'buntu
[17:22] <Nivex> and here we go!
[17:48] <zartoosh__> HI is there a linux utility to re-read uefi boot efivars which are displayed by efibootmgr -v ? thx
[18:04] <hallyn> jamespage: smoser: any objection to http://paste.ubuntu.com/8019264/ ?
[18:05] <smoser> hallyn, the string 'qemu-system-x86' is that relevant ?
[18:05] <smoser> qemu-system-x86.modprobe. ie, is that arch specific ? does this matter elsewhere ? i suspect not.
[18:05] <catphish> i have a system where "init" is extremely busy, using 100% cpu a lot of the time, is there a way i can find out what it's doing?
[18:06] <smoser> hallyn, the only suggestion i hav is:
[18:07] <smoser>  rmmod kvm_intel && modprobe kvm_intel || true
[18:07] <hallyn> smoser: yes, it is only on x86, however there isn't currently a postinst for qemu-system-x86, so i didn't want to add it.
[18:07] <smoser> that way you dont modprobe if rmmod failed
[18:07] <hallyn> smoser: will do, thx
[18:07] <smoser> and maybe just comment that yes, this could fail.
[18:07] <hallyn> smoser: if you think it's cleaner to add a x86 postinst, i'll do it, this just seemed less likely to be messe dup by the likes of me
[18:07] <smoser> if kvm was being used)
[18:08] <rberg> hello. I have a first boot script run in rc.local that in some cases asks a question, when it asks I see the question but I cannot see anything I type into the bash read.. does anybody know why?
[18:08] <hallyn> good point - i was actually only thinking of in a container
[18:08] <hallyn> smoser: feh, maybe i should check the value of /sys/modules/kvm_intel/parameters/nested
[18:08] <hallyn> i think i'll add that check, to redue the amount of module load/unloading
[18:10] <smoser> yeah. that'd be good too
[18:11] <smoser> hallyn, isn't there some util to say : am-i-in-a-container ?
[18:11] <smoser> i thoguht there was one
[18:11] <hallyn> smoser: there is, but i'd rather not have kvm depend on that,
[18:12] <hallyn> bc there are other ways to fail in the same way
[18:12] <smoser> ok
[18:13] <smoser> hallyn, you didn't come up with any magic to allow me to use upstart in a non-network-namespaced container, di dyou ?
[18:16] <hallyn> smoser: I'm afraid not.  upstart is just not designed that way.  I'd simply recommend bridging eth0 and putting hte container on that bridge
[18:17] <hallyn> smoser: use systemd? :)
[18:17] <smoser> thanks
[18:21] <hallyn> smoser: so this again is for running maas or the openstack network daemon in a container?
[18:22] <hallyn> smoser: so i'm going with http://paste.ubuntu.com/8019402/ for qemu
[18:22] <smoser> yeah, thats waht it was.
[18:22] <smoser> your answer is really ok.
[18:23] <hallyn> smoser: I really hate it
[18:23] <smoser> having non-network namespace seemd just so perfect.
[18:23] <smoser> as i could basically run the container as an "application".
[18:23] <smoser> and clean it easily.
[18:23] <hallyn> but then abstract sockets have pained me since i was first taught about them 10 years ago ("yo umoron, you'r enot handling these")
[18:25] <rberg> to answer my own question stty can re-enable echo
[18:38] <toyotapie> Does everyone around here run a dns caching server on each of their servers?
[18:42] <arrrghhh> toyotapie, I think everyone uses their servers in whatever way they see fit... if you have a question, feel free to ask :)
[18:46] <toyotapie> My server was slowed to a halt because the first dns server in resolv.conf was offline, I am looking for a solution where a local dns cacher will check if servers are alive and route dns requests accordingly, that way it eliminates the delays trying to reach backup servers.
[18:47] <patdk-wk> toyotapie, pdns-recursor does this by default
[18:48] <patdk-wk> others, I dunno
[18:48] <patdk-wk> you can also modify your resolv.conf to help
[18:48] <patdk-wk> timout and attempts
[18:48] <patdk-wk> the idea there, set a really low timeout, but attempt multible times
[18:49] <patdk-wk> so you request it from basically all your nameservers, and the 2nd or 3rd attempt will get the results
[18:49] <patdk-wk> default is 5seconds
[18:49] <patdk-wk> and use rotate
[18:50] <sarnold> pdns++
[18:50] <patdk-wk> I still need to look into how unbound does it
[18:51] <toyotapie> pdns is different from pdns++ ?
[18:54] <sarnold> toyotapie: heh, no, that's just a shorthand for "I also like pdns" :)
[18:54] <toyotapie> OK ;)
[18:54] <toyotapie> I use pdns for my ns servers, but not the recursive server.
[18:55] <toyotapie> Maybe I should use pdns as a recursive server, I was still using the old trusty bind for recursive lookups
[18:55] <toyotapie> is it a good idea to setup a single pdns instance as a public authoritative server for my domain and at the same time the recursive dns server for my servers ?
[18:56] <patdk-wk> do what?
[18:56] <patdk-wk> pdns is a server only
[18:56] <patdk-wk> pdns-recursor is a recursive server only
[18:56] <toyotapie> Ah ok
[18:56] <toyotapie> thanks
[18:57] <toyotapie> given my success with pdns, I will try pdns-recursor
[18:57] <toyotapie> thanks guy
[18:57] <toyotapie> guys*
[19:14] <catphish> would it be save to remove /etc/init/network-interface.conf if i don't have any hotswap network interfaces, or is this necessary for normal boot time network config?
[19:14] <catphish> i guess it executes the ifup so probably not
[19:23] <Aison> damn, I just killed my system
[19:24] <Aison> I did a chown -R on /var mistakenly
[19:24] <Aison> nothing works
[19:30] <TJ-> Aison: boot to a live ISO or the server rescue option, then use a script to read the correct ownership from a good system and apply it to that broken one
[19:40] <lordievader> From the live iso for example ;)
[19:40] <TJ-> Aison: this works with the broken FS mounted at $TARGET (remove the "echo" inside the loop to have it actually do the chown rather than print it): "TARGET=/target; while read inode b perm qty user group size month day time name; do [ -e "${TARGET}$name" ] && echo chown $user:$group "${TARGET}$name"; done < <(sudo find /var -type d -ls)"
[19:41] <TJ-> Aison: You might want to modify that since it only targets directories, and also won't operate on directories that aren't in the reference system. You could sort the result of the find by path-length first, and apply permissions using -R from the shortest path to the longest
[19:47] <zartoosh__> HI using ubuntu 14.04 I got this error: BUG: Bad page map in process sshd  pte:01000000 pmd:23ed32067   what this means? thx
[20:09] <zartoosh__> TJ- hi have a question on uefi. I have installed grub on  a usb disk. that creates an entry that I can display through efibootmgr -v, but when i reboot sometimes I do not see that entry could be an issue with UEFI implementation? thx
[20:10] <TJ-> zartoosh__: That sounds like the firmware isn't reading the USB device correctly/in-time, and so suppresses the boot-menu entry because the device isn't there
[20:11] <TJ-> zartoosh__: If the mobo has an EFI shell you could explore from there
[20:12] <zartoosh__> zartoosh__, It does have uefi shell but it does not see the entry at all, It can see the uefi entry from hardisk but not the one created through grub-install ?
[20:17] <Aison> TJ-, i've got the var directory now from my bacula backup
[20:17] <zartoosh__> TJ-,  this is how I install the grub, please let me know if you see anything wrong: http://paste.ubuntu.com/8020251/      thx
[20:17] <Aison> TJ-, so maybe it is possible to copy over just the rights?
[20:22] <TJ-> Aison: Sure, use a modification of what I posted
[20:23] <Aison> TJ-, just working on that :D
[20:23] <TJ-> zartoosh__: looks OK... but I'm a bit tired right now not thinking clearly, so don't rely on me :)
[20:28] <zartoosh__> TJ-,  thanks ping you tomorrow thanks
[20:39] <hallyn> hm, ipxe currently doesn't build in utopic
[20:39] <hallyn> It fails because
[20:39] <hallyn> ISOLINUX_BIN=/usr/lib/syslinux/isolinux.bin bash util/geniso bin/ipxe.iso bin/ipxe.lkr
[20:40] <hallyn> while that happens in trusty ^ , in utopic ISOLINUX_BIN is empty
[20:41] <hallyn> hm, looks like syslinux-common needs to be added as an explicit build-dep now
[20:42] <hallyn> yeah syslinux used to depend on syslinux-common, now it recommends it
[22:17] <hallyn> smoser: wtf - default utopic ec2 image doesn't have bridging enabled?