[00:10] <Jeeves_Moss> I think that after upgrading Bind9 through the Ubuntu repos, it's broken something.  what would cause the server not to report when pinging a domain?  Some of the domains work, some do not.  All the configs are copied from known working ones
[04:51] <droidbuster> I was upgrading my server from 10 whatever to 12.04 and somehow when i read the details on a version to replace i didnt exit the changelog in text editor. so i accidently exited the upgrade midway through. i am only able to login to recovery and all the commands i have tried result in telling me i need to run sudo dpkg --configure -a
[04:51] <droidbuster>  however i get an error dpkg error unable to access dpkg status area Read only... wtf
[08:01] <Joe_Spencer> hello
[08:11] <Sachiru> Yes?
[08:19] <lordievader> Good morning.
[08:20] <Joe_Spencer> morning
[08:33] <ApplesInArrays> I have a few extra computers here and I'm thinking of installing Ubuntu Server Edition 14.04LTS to one of them via USB
[08:33] <ApplesInArrays> I keep getting "Boot Error' after selecting the USB, though.
[08:33] <lordievader> ApplesInArrays: How did you create the live-usb?
[08:33] <ApplesInArrays> Universal USB Installer
[08:34] <ApplesInArrays> The USB works on the machine I'm using now, but not another one.
[08:34] <lordievader> Does it happen to be a UEFI machine?
[08:35] <ApplesInArrays> Let me see how I check
[08:35] <ApplesInArrays> I remember seeing EFI files when I ooted it on this computer.
[08:35] <ApplesInArrays> It has a BIOS
[08:36] <lordievader> Hmm, try recreating the live-usb with unetbootin. That program usually works ;)
[08:37] <ApplesInArrays> I have that too
[08:37] <ApplesInArrays> I'll try again.
[08:37] <ApplesInArrays> I tried with ubuntu desktop and it didn't work.
[08:38] <ApplesInArrays> unetbootin doesn't have Ubuntu 14.04LTS as an option
[08:38] <lordievader> ApplesInArrays: Doesn't matter, you can give it any iso.
[08:38] <ApplesInArrays> Great, thanks.
[08:40] <ApplesInArrays> Also, could I develop with that machine and 'push' updates to my #digitalocean droplet?
[08:40] <ApplesInArrays> or would I update to it with netBeans, then once I'm happy, push that to my droplet?
[08:44] <cfhowlett> ApplesInArrays, download 14.04 LTS .iso and then use unetbootin
[08:45] <ApplesInArrays> I've already tried that
[08:45] <ApplesInArrays> Boot Error
[08:45] <ikonia> there must be more detail than "boot error"
[08:45] <cfhowlett> ApplesInArrays, then your .iso is funky.  you DID md5sum, right?
[08:45] <ApplesInArrays> There isn't.
[08:45] <ApplesInArrays> cfhowlett: yes
[08:45] <ikonia> there is that error coming from
[08:45] <ikonia> what point in the boot process
[08:46] <ApplesInArrays> I tell BIOS to boot from USB, it says "Boot Error"
[08:46] <ApplesInArrays> Then it starts up windows after about 5 seconds.
[08:46] <ikonia> that suggests there is no boot sector on the usb disk
[08:46] <ikonia> so it skips it and moves to the next boot option
[08:46] <ApplesInArrays> I stick it in this machine, and it works.
[08:46] <ikonia> that looks like a bios error
[08:46] <ApplesInArrays> I just played around with it for a while.
[08:48] <cfhowlett> ApplesInArrays, usb's do go bad.  frequently.  md5sum the usb to verify
[08:48] <ApplesInArrays> I already have
[08:48] <ApplesInArrays> on the image
[08:48] <ApplesInArrays> and then I ran it on this machine
[08:49] <ApplesInArrays> Alright, never mind, I'll figure it out.
[08:49] <cfhowlett> ApplesInArrays, ?  2 step verification: the .iso AND the usb after you burn the iso
[08:49] <ApplesInArrays> If it doesn't work on the 1st machine, but works on the 2nd machine, could it be the USB?
[08:50] <cfhowlett> ApplesInArrays, no if it works at all, it's not the USB causing issues
[08:50] <ApplesInArrays> That's... what I was getting at.
[08:50] <cfhowlett> ApplesInArrays, noted.  I missed that detail.  sorry.
[09:05] <ed8> I got a script run by apache that attempt to chown/chgrp a file but fail
[09:05] <ed8>  I'm running: chown mast:www-data /var/log/mast/mast-alban.log
[09:06] <ed8> 'www-data' user is already in 'mast' group → uid=33(www-data) gid=33(www-data) groups=33(www-data),999(mast)
[09:06] <ikonia> thats nothing to do with changing ownerhip of a file, that's trying to add a user to a group it's already in
[09:07] <ikonia> is there a user called "mast"
[09:07] <ed8> ikonia: yep
[09:07] <ed8> ikonia: the error is on the chown (or chgrp) command
[09:08] <ikonia> so apache (the user running apache) won't be able to change the owner, as the owner is mast, and apache is not running as the user mast
[09:08] <ikonia> that error looks very badly wored
[09:08] <ikonia> worded
[09:09] <ed8> ikonia: so who can change ownership ? I though being in the source and target group would allow that
[09:09] <ikonia> no
[09:09] <ikonia> the owner/super user can change the owner
[09:11] <lordievader> ed8: Owner and root.
[09:11] <ed8> ikonia: ok, then how can I create my file with a given ownership ?
[09:11] <ikonia> how is the file getting created now ?
[09:11] <ikonia> what is it you're actually trying to do
[09:12] <ikonia> as having a web server change things on the file system is very very very bad
[09:12] <lordievader> ikonia: +1
[09:16] <ed8> ikonia: based on a template file, so using a 'cp template newfile'
[09:17] <ikonia> ed8: is the webserver doing that or an interactive user
[09:17] <ed8> ikonia: the webserver invoke a init script like: 'mast status'
[09:17] <ikonia> that is a very very very bad idea
[09:17] <ikonia> and not something I'd suggest you do
[09:18] <ikonia> your webserver should not be controlling your system
[09:18] <ed8> ikonia: how would you do it then?
[09:18] <ed8> the project is to create a web interface for a init script
[09:18] <ikonia> I have no idea what you are doing/why you are doing what you are doing, so it's impossible to say
[09:19] <ikonia> thats a bad project and not something I'm interested in
[09:20] <ed8> ikonia: what do you suggest to improve security ?
[09:20] <ikonia> not using a web interface
[09:22] <ed8> ikonia: as that's the goal of the project, this is not possible.
[09:22] <ApplesInArrays> I could use Vagrant on my Windows machine and Ubuntu machine to make sure everything's identical?
[09:22] <ikonia> ed8: thats fine, as I said it's not something I want to be part of/assist with
[09:22] <ikonia> ApplesInArrays: not sure what value that would be
[09:23] <ApplesInArrays> I will have a local server for dev, then copy files to main droplet for production.
[09:23] <ApplesInArrays> Right now production=development, and I think this is not the best way to go about it.
[09:23] <ikonia> no idea what you're on about
[09:23] <ApplesInArrays> Oh, ok.
[09:24] <ApplesInArrays> Not sure what you mean.
[09:24] <lordievader> ApplesInArrays: NFS share? If it is a dev environment it should not matter that things break.
[09:25] <ed8> ikonia: ok, thanks
[09:26] <ApplesInArrays> lordievader: then I need to copy things to production
[09:26] <ApplesInArrays> I'd like to make sure it works there
[09:26] <lordievader> ApplesInArrays: Of coure you need to copy/push things to production. That is not a test environment...
[09:27] <lordievader> And to make sure it works you have your dev environment.
[09:27] <ApplesInArrays> and if it works in completely different environments, I wouldn't expect identical behavior all of the time.
[09:28] <ApplesInArrays> So I'm trying to figure out if Vagrant could set up the same environment for testing before pushing.
[09:28] <lordievader> That is why you try to keep your dev environment identical to the production environment.
[09:28] <ApplesInArrays> Which is why I'm asking if Vagrant can do it.
[09:29] <ApplesInArrays> I don't know if I can spell it out any simpler.
[09:36] <ed8> why does 'cp --preserve=mode,ownership /etc/mast/template /etc/mast/alban' doesn't preserve ownership ?
[09:36] <ed8> the file 'template' has the following permissions: -rwxrwx--- 1 mast www-data 1.5K Sep 23 21:26 template
[09:36] <ed8> and the script is run by 'www-data'
[09:36] <ed8> s/script/cp command/
[09:39] <ed8> I was expecting to have 'mast' ownership preserved. Do I missed something?
[09:40] <lordievader> ed8: The file is owned by mast?
[09:41] <ed8> lordievader: yep
[09:41]  * lordievader doesn't see the problem
[09:42] <ed8> lordievader: new file is own by www-data:www-data instead of mast:www-data
[09:42] <lordievader> Ah, you didn't say that ;)
[09:43] <ed8> and 'www-data' user is in 'mast' group, so again I expected this to be enough
[09:45] <lordievader> ed8: Likely because www-data is not mast, and therefore cannot change the ownership to mast without root rights.
[12:03] <ikonia> ApplesInArrays
[12:03] <ikonia> oops
[12:32] <ghostfire> hi all, what is the best way to have a program launch when the server starts ?
[16:47] <zzxc> Hey guys, Apache is giving me a message saying I have message saying "(98)Address already in use: AH00072: make_sock: could not bind to address [::]:80". I've checked and nothing is bound to port 80 right now.
[16:48] <zzxc> This is a new install. Anyone have any ideas?
[16:51] <ikonia> it means something is listening on port 80
[16:53] <zzxc> I've check with both nc -l 80 and netstat -ltnp | grep ':80' neither returned anything.
[16:54] <ikonia> that's not a check
[16:55] <zzxc> How do you mean?
[16:55] <ikonia> it will use the service name
[16:55] <ikonia> port 80 will have a definition in /etc/services so will never show up in netstat
[16:57] <zzxc> Ahhhhh alright. And that actually might be the issue. I have two entires in /etc/services for port 80.
[16:57] <zzxc> Actually scrapt that. one is tcp the other is udp.
[16:57] <ikonia> /etc/servies doesn't do anything
[16:57] <ikonia> other than map ports to names
[16:58] <ikonia> what is the name of the service in /etc/services for port 80
[16:59] <zzxc> "http>>>>80/tcp>>>>www>>># WorldWideWeb HTTP" and "http>>>>80/udp>>>>>>>># HyperText Transfer Protocol"
[16:59] <ikonia> zzxc: pastebin the output of the following command please "netstat -a | grep LIST"
[16:59] <zzxc> ikonia: K one second.
[17:01] <zzxc> ikonia, Here you go: http://pastebin.com/MEJFJ4Er
[17:02] <ikonia> zzxc: looks like you have it listening on ipv6
[17:03] <ikonia> which ties in with the [::]:80 error you pasted
[17:03] <zzxc> ikonia: Oh http-alt. I missed that.
[17:04] <tafa2> ufw is misbehaving for some reason
[17:04] <tafa2> ive done this a million times.... but today apparently is a no go... how do I allow 53/tcp to ip 192.168.0.1 on eth0?
[17:05] <zzxc> ikonia: Awesome thats some progress. Let me see if I can find out where to disable ip6.
[18:22] <tafa2> does anyone know how to forward pptpd packes to a local dns server?
[19:38] <tafa2> is there a firewall that allows connections for a specific process?
[19:39] <bekks> iptables
[19:39] <tafa2> really?
[19:39] <tafa2> does that I mean I could do it using ufw
[19:39] <bekks> Depends on what exactly you want to do.
[20:33] <lordievader> Good evening.
[21:10] <RoyK> lordievader: evening
[21:11] <lordievader> Hey RoyK, how are you doing?
[21:14] <RoyK> lordievader: stomach full of good food, relaxing
[21:15] <lordievader> Sounds good ;)
[22:47] <tafa2> would anyone be able to help with this? http://serverfault.com/questions/633715/configure-ufw-pptpd-and-dnsmasq-on-the-same-server