=== exixt_ is now known as exixt
=== markthomas is now known as markthomas|away
=== zz_DenBeiren is now known as DenBeiren
[00:56] <FilthyMacNasty> any of you server peoples know how to pxe boot a multiple image server?
[00:57] <FilthyMacNasty> because I'm lost
[00:57] <sarnold> "multiple image server"?
[00:57] <FilthyMacNasty> dell d620 dell d630 dell 830 all windows 7 pro
[00:58] <FilthyMacNasty> I have a full on installed machine in each flavor, would like to create an image for each and then pxe boot the other 40 or so mixed machines I have
[00:58] <FilthyMacNasty> and I dont want to fiddle with the winders aik
=== markthomas|away is now known as markthomas
=== markthomas is now known as markthomas|away
[01:01] <sarnold> FilthyMacNasty: hmm. I've used maas to pxeboot a handful of virtual machines before but really don't know how well it would handle windows images, sorry
[01:01] <LinStatSDR> you can
[01:01] <LinStatSDR> deployment services if hes using windows
[01:02] <LinStatSDR> It has a setup wizard that's not bad
[01:02] <LinStatSDR> But you would probably have a better time doing multicast if you're worried about bandwidth doing it all at once
[01:03] <FilthyMacNasty> I'm currently using clonezilla live cd to image them but I would think I could pxe boot to something
[01:03] <LinStatSDR> Doing this on what server os?
[01:07] <Joe_knock> sarnold: Is there a way I can specify using tail over a period of time? I'd like to check changes that occurred in a directory over the past 10 hours.
[01:08] <Joe_knock> I helped someone else recently to install a PXE server. Can I share the install stuff with you? FilthyMacNasty
[01:08] <Joe_knock> fascinating username, btw.
[01:12] <sarnold> Joe_knock: you can use find's -mmin predicate to try to find files modified more recently than a certain number of minutes ago; there's no way to find out what part of the file might be newer or older
[01:16] <Joe_knock> sarnold: Thanks. found a solution here: http://stackoverflow.com/questions/5242501/how-to-find-the-files-that-are-created-in-the-last-hour-in-unix
[01:23] <FilthyMacNasty> sorry for the delay, my previous mirc computer bought the farm
[01:24] <FilthyMacNasty> ubuntu servers stuck in a windows world
[01:24] <FilthyMacNasty> bleh
[01:27] <WilliamDotAT> i like windows for some things
[01:28] <WilliamDotAT> i also see a place for OSX
[01:28] <WilliamDotAT> im not radical enough for this channel
[01:29] <sarnold> enjoy :)  http://www.windows93.net/
[01:30] <WilliamDotAT> haha
[01:30] <WilliamDotAT> including ILOVEYOU trojan txt in root
[01:30] <WilliamDotAT> funny thing
[01:31] <Joe_knock> windows for gaming, yes.
[01:31] <WilliamDotAT> i saw that the enw Nvidia drivers are now on-par with Windows
[01:31] <Joe_knock> and I think the hardcore channel you're looking for is #ubuntu-radicals
[01:31] <WilliamDotAT> they're binary of course
[01:31] <WilliamDotAT> but still
[01:31] <WilliamDotAT> + Steam + Source Engine/Unreal = not bad
[01:32] <WilliamDotAT> Portal 2 works far better on my Linux than on my Mac system
[01:32] <Joe_knock> I cant wait to get a new system. I can do PC gaming once again thereafter.
[01:33] <WilliamDotAT> mine is still ok for gaming
[01:34] <WilliamDotAT> i will just buy a new GPU for GTA V
[01:34] <WilliamDotAT> R290X or so
[01:36] <Joe_knock> laptop or desktop?
[01:45] <WilliamDotAT> haha
[01:45] <WilliamDotAT> desktop
=== TDog_ is now known as TDog
=== TDog_ is now known as TDog
=== lkthomas_ is now known as lkthomas
=== liam_ is now known as Guest77235
[08:29] <lordievader> Good morning.
=== sync0new is now known as sync0pate
=== exixt is now known as exixt_
=== DenBeiren is now known as zz_DenBeiren
=== zz_DenBeiren is now known as DenBeiren
[11:02] <dirk__> hi
[11:02] <dirk__> I need help in networking with ubuntu 14.04
[11:03] <dirk__> could someone help?
[11:03] <dirk__> hey, someone here?
=== kickinz1|afk is now known as kickinz1
=== DenBeiren is now known as zz_DenBeiren
=== kickinz1 is now known as kickinz1|afk
[12:13] <pmatulis> morning
=== Lcawte|Away is now known as Lcawte
=== Lcawte is now known as Lcawte|Away
=== exixt_ is now known as exixt
[13:27] <dine909> ive created a ubuntu installation using debootstrap - got it booting, and workiing - however my network adaptors dont up automatically, although work fine when i manually up them
[13:28] <dine909> what is the glue ubuntu uses to do this?
[13:28] <dine909> (its a trusty dist)
[13:28] <dine909> (that i created)
[13:33] <dine909> root
[13:33] <dine909> eek
=== kickinz1|afk is now known as kickinz1
=== rcj is now known as Guest40311
=== kickinz1 is now known as kickinz1|afk
[14:17] <xperia> hi all. small question. is there a reason why mysql5.6 is not the default database in ubuntu 14.10 ? from what i have read it should be about 3 times faster than the mysql5.5 version shipped and installed with ubuntu by default?
[14:18] <rbasak> xperia: there were issues with the transition, so we decided to delay it until this cycle.
[14:19] <rbasak> xperia: eg. http://lists.alioth.debian.org/pipermail/pkg-mysql-maint/2014-September/007015.html
[14:20] <xperia> rbasak: ahh yeah understand it full. i tryed yesterday to install mariadb10.1 on my ubuntu 14.04 to get much more functionality like master master replication and it did not worked out. had several dependecies problem with access apparmour restriction. had to go back to mysql 5.5. lucky all went good. thanks for the link. reading it right now.
=== zz_DenBeiren is now known as DenBeiren
=== freyes is now known as zz_freyes
=== zz_freyes is now known as freyes
[14:34] <fixmypc956> I am trying to follow this instructable http://www.instructables.com/id/How-to-Host-Your-Own-Cloud-v20/?ALLSTEPS to start my own cloud...cant get it to work. please help
[14:39] <xperia> fixmypc956: it looks like a very simple apache file server. did you followed all the steps described?
[14:40] <fixmypc956> well im stuck where i need to make a directory
[14:40] <fixmypc956> i already have my directories made where i want my files
[14:41] <LinStatSDR> Morning
[14:41] <fixmypc956> morning
[14:42] <xperia> fixmypc956: in the configuration file there is the path where you need to have this directorys. usali it is in /var/www there you need to make simple sudo mkdir /var/www/yourdirectorys and should be fine.
[14:44] <xperia> actually should find there allready also the html file that is showed when you call the apache server over a webbrowser like http://localipadressofyourserver/
[14:44] <xperia> something like "it works" should appear
[14:47] <xperia> ahh sorry you changed the port so the url would be need to be  http://localipadressofyourserver:8080/
[14:47] <fixmypc956> ok let me check this
=== bilde2910|away is now known as bilde2910
[15:00] <LinStatSDR> Anyone familiar with running Maven on ubuntu 14.04
[15:44] <cyphermox> smoser: hallyn: rbasak: I've been preparing an update to isc-dhcp -- merge with Debian and some apparmor profile additions for dhclient, I don't currently have very much of a server setup here ready, so I was wondering if you'd be willing to help test dhcpd before I go upload it
=== kickinz1|afk is now known as kickinz1
=== kickinz1 is now known as kickinz1|afk
[15:46] <smoser> cyphermox, well, the most i could do really is put it into some cloud instances
[15:47] <cyphermox> ok
[15:52] <rbasak> cyphermox: I don't have any specific paces to put it through either, sorry.
[15:53] <cyphermox> ack
=== Guest40311 is now known as rcj
=== rcj is now known as Guest80531
=== kickinz1|afk is now known as kickinz1
[16:32] <hallyn> cyphermox: where is the proposed package?
[16:32] <hallyn> (it's just about EOD here but i can aim to build+test it in a container or two)
[16:33] <cyphermox> I've tested the server bits quickly by breaking my own network, I think it will be alright ;)
[16:33] <cyphermox> so, thanks, but you don't need to stay around after all
[16:44] <hallyn> cyphermox: great, good night :)
[16:44] <cyphermox> good night!
[17:18] <john___> I've got a weird problem, On my Ubuntu server when i try to ping my Printer that's connected on my LAN network i'm getting "ping: sendmsg: Operation not permitted", when I disable UFW pinging the printer works perfectly. I also tried an arp-scan on localhost and the printer does not get listed there at all.
[17:18] <john___> Any idea what might be the problem here?
[17:21] <patdk-wk_> your firewall :)
[17:21] <john___> Seems like arp-a finds my printer while doing arp-a instead of arp-scan, I just wonder what's causing the pinging problem tho
[17:22] <john___> That's pretty obvious :) but i'm unfamiliar to configure a UFW firewall rule to allow the pinging to the device :)
[17:23] <patdk-wk_> heh?
[17:23] <patdk-wk_> you just allow ping
[17:23] <patdk-wk_> oviously arp works, likely cause you didn't block it
[17:23] <patdk-wk_> but you blocked ping
[17:23] <john___> Pinging works succesfully on other devices on the network
[17:23] <patdk-wk_> most people never block arp
[17:23] <john___> it's just the printer
[17:23] <patdk-wk_> so?
[17:23] <patdk-wk_> not sure what that has to do with it
[17:24] <patdk-wk_> when you get, operation not permitted
[17:24] <patdk-wk_> that means your computer says it's not allowed
[17:24] <patdk-wk_> that normally means one of two things
[17:24] <patdk-wk_> no route to it, or firewall
=== exixt is now known as exixt_
[17:25] <john___> must be firewall then cause arp-a lists "(192.168.0.59) at (mac) [ether] on eth0"
[17:25] <john___> (printer)
=== exixt_ is now known as exixt
[17:27] <john___> patdk-wk would adding certain rules in my firewall to allow icmp ping solve this?
[17:28] <patdk-wk_> sure, if done in the correct order
[17:28] <john___> ok, thank you
=== kickinz1 is now known as kickinz1|afk
=== Lcawte|Away is now known as Lcawte
=== patdk-wk_ is now known as patdk-wk
=== bilde2910 is now known as bilde2910|away
[21:16] <jarno> anyone know abit about subnetting here?
[21:18] <jarno> for 2 subnets Network Class C 211.16.17.0/24 & 211.16.17.0/25 Subnetmask 255.255.255.0 & 255.255.255.128 what would be the network adres?
[21:18] <jarno> both 211.16.17.0?
[21:19] <sarnold> ugh I don't know what you're trying to do but overlapping networks like that with different netmask lengths sounds like a recipe to endless frustration and hatred
[21:24] <guntbert> sarnold: +1
=== Guest80531 is now known as rcj
=== Lcawte is now known as Lcawte|Away
=== rcj is now known as Guest64490
[21:32] <Joe_knock> sarnold: How would I check a facebook link that may contain malware without using the browser (or safely) ?
=== bilde2910|away is now known as bilde2910
[22:35] <Joe_knock> Does anybody know how to analyze a tcpdump output?
[22:37] <jhobbs> open it with wireshark
[22:41] <igoryonya> tcpdump shows the line: packets dropped by interface, how can I see which packets were dropped?
[22:42] <jhobbs> you can't, they were dropped
[22:48] <igoryonya> jhobbs, so, how do I tackle the problem then, my pings don't get replied from some subnets and I need to determine, what makes them drop.
[22:50] <jhobbs> igoryonya, your interfaces shouldn't be dropping traffic unless they are very busy - is that the case?
[22:55] <igoryonya> jhobbs, no, I wouldn't say so, it's a newly installed server. Packets are being dropped on a virtual machine it's interface is being configured to connect to the ISP with the IP address behind a NAT (the ISP gives NATted addresses from the 172.16.0.0/16 network) all the addresses from that net ping, and dns resolves, but the internet addresses don't get replies to the vm, although, when I monitored with tcpdump on the tap0 interface from the host mach
[22:55] <igoryonya> ine, the pings to the internet addresses return with a reply packet.
[22:58] <Joe_knock> Does this tcpdump: 14:56:27.742567 IP 174.143.140.137.80 > 192.168.2.21.45704: Flags [S.], seq 3555324792, ack 2292208597, win 5792, options [mss 1452,sackOK,TS val 593134436 ecr 91197600,nop,wscale 6], length 0
[22:58] <Joe_knock> Mean this:
[22:58] <Joe_knock> a packet of length 0 was received from the sender
[22:58] <Joe_knock> It looks like the sender and receiver acknowledged each other though
[23:01] <WhiteIntel> hello, does the command "ip route add" persist the static routes also after a reboot?
[23:02] <sarnold> Joe_knock: it's hard to check a possibly-malicious link safely; if you grab the contents with curl or wget that'll sometimes be sufficient; when I'm confident something is evil, I'll stick a very tight apparmor profile on wget for the download to prevent an exploit from easily working
[23:02] <sarnold> WhiteIntel: no, it only modifies the current routing table; if you want it persistent you have to take other steps
[23:02] <WhiteIntel> sarnold: ok, and what steps if have to take
[23:03] <tafa2> does anyone backup their servers to S3? If so does anyone have a particular strategy in place? Like a write only user with no delete rights incase the server is ever compromised an attacker wouldn't be able to delete your backup as well?
[23:03] <Joe_knock> sarnold: It is an example I am trying to work through. I'm trying to understand what tcpdump is for and what the output means (based on the example). [what it means = what is it telling me in laymans terms]
[23:03] <sarnold> WhiteIntel: depends on what you're doing; modifying /etc/network/interfaces isn't a bad starting place though
[23:04] <sarnold> Joe_knock: oh, nice, tcpdump is an awesome tool.
[23:04] <WhiteIntel> sarnold: you mean the config directive "up route add -net"?
[23:04] <jhobbs> Joe_knock: wireshark can be a lot easier to understand if you're getting started
[23:04] <Joe_knock> okay I see you were answering a previous question sarnold
[23:05] <jhobbs> Joe_knock: it interprets packets a lot more for you, and can do stuff like follow a particular connection
[23:05] <jhobbs> tshark also if gui is hard
[23:05] <Joe_knock> jhobbs: I am installing that software. It is open source and not in binary, right?
[23:05] <jhobbs> igoryonya: watching for ping replies along all the interfaces back to the VM is the right thing to do; you don't see the responses at all in the VM i guess?
[23:06] <jhobbs> Joe_knock: yes it's open source
[23:06] <sarnold> WhiteIntel: yeah, if what you're doing fits there, anyway
[23:08] <igoryonya> jhobbs, I see the responces in vm to 172.16.0.0/16 subnet, but not to the global internet addresses, although, tcpdump shows that replies from global addresses get all the way up to tap0 of the virtual machine connected to. So they traverse through the real nic -> bridge -> tap, but only 172.16.... get to the actual vm.
[23:08] <Joe_knock> jhobbs: I see that this tool is for network admins. Gonna be fun using it.
[23:09] <jhobbs> Joe_knock: or for developers - it's an essential for anyone doing anything interesting with networking
[23:09] <jhobbs> igoryonya: do you have iptables rules set that may be interfering?
[23:09] <jhobbs> i have to run, good luck
[23:10] <WhiteIntel> sarnold: is there a wiki page for the exact syntax? I have to set some routes that don´t have a gw only an other address => via an other net
[23:10] <Joe_knock> Thanks. take care jhobbs
[23:11] <sarnold> WhiteIntel: none that I know of; the resolvconf manpage and interfaces manpages describe the interfaces format, and the ip-route manpage describes the ip route interface..
[23:12] <sarnold> WhiteIntel: there's a huge pile of interesting stuff here: http://lartc.org/ -- but I suspect it's suffered bitrot, and it was never very good at distro-specific details
[23:12] <WhiteIntel> sanrold: ok I will have a look at this, thank you very much!: )
[23:14] <igoryonya> jhobbs, no packets were being able to pass to the vm, then I temporarily made an iptables rule to accept all the forward packets, and started getting replies to the 172 subnet, but didn't get any replies to global with that rule. then i added rules to iptables that pass all the packets from and to the phisical nic, connected to the isp, bridge and the tap, so, unless, I've missed something, none of the traffic on this route is blocked. iptables on the
[23:14] <igoryonya>  vm show no rules attached to it at all.
[23:14] <igoryonya> jhobbs, can I show you my iptables config, maybe you can see something that I've missed?
=== exixt is now known as exixt_
=== sync0new is now known as sync0pate