[00:22] <devilspgd> n00b bash question. I want to umount the path where a shell script lives, can it copy itself to a temporary location and run from there?
[00:22] <devilspgd> Or more specifically, how do I make the copy from the original location terminate immediately?
[00:23] <devilspgd> I thought throwing a "&" on the end of the call to temp script might work, but it still holds a lock on the original script in the child.
[00:26] <sarnold> devilspgd: the 'exec' builtin might be what you need, it replaces the current process with a new process -- which could be /tmp/path/to/copied/shellscript.sh  or simimlar
[00:26] <devilspgd> That sounds like exactly the one, thanks.
[00:28] <devilspgd> Works like a charm, thanks. I knew I read something somewhere at one point, but I couldn't think of it at the time.
[00:30] <sarnold> nice :)
[06:30] <LarsN> would this be the right place to ask about the Orange-Box?
[06:31] <LarsN> I have one, and just need to be pointed at some proper documentation on the best way to interact with Juju and Maas
[08:00] <nilesh> jjohansen: found anything?
[08:00] <jjohansen> nilesh: I haven't gotten back to it yet
[08:03] <jjohansen> nilesh: however the hexdump you provided shows me that the compliled profile has dropped the network rules
[08:06] <jjohansen> nilesh: so either I am going to have to track down why its dropping those rules, and then maybe be able to provide a work around, OR I am going to have to build you a new parser that doesn't have the issue
[08:07] <jjohansen> hrmmm, I guess that is a little more than when we talked last
[08:17] <jjohansen> nilesh: can you provide me the output of
[08:17] <jjohansen>   cat /sys/kernel/security/apparmor/features
[08:18] <jjohansen> and
[08:18] <jjohansen>   cat /etc/apparmor.d/cache/.features
[08:33] <White_Cat> Is there a mail server that I can use with ubuntu-server. I was looking at postfix but that requires creation of ubuntu accounts per each email account. I'd rather keep the two seperate as users will never ever login to the ubuntu server and they tend to use less than ideally srong passwords
[08:41] <jjohansen> White_Cat: there are lots of mail servers http://en.wikipedia.org/wiki/Comparison_of_mail_servers
[08:43] <White_Cat> well yes
[08:43] <White_Cat> thats why I am asking for a reccomendation :)
[08:43] <White_Cat> its more of a taste issue after a certain point
[08:43] <White_Cat> and I tend to have poor taste in mail servers :p
[08:44] <alex88> export PATH=$PATH:$HOME/vendor/vips/bin and export PATH="$PATH:$HOME/vendor/vips/bin" isn't exactly the same thing?
[08:44] <White_Cat> ideally I want the mail server to have exchange support
[08:48] <jjohansen> alex88: no they aren't if either of the $PATH or $HOME variables contain whitespace
[08:49] <alex88> jjohansen: oh awesome, thanks a lot!
[09:02] <lordievader> Good morning.
[09:38] <nocturnal_> I got a server that was going to be e-wasted and installed ubuntu-server on it. i've been using it to store my media, however i have a lot of cpu power that is not being used.
[09:38] <nocturnal_> does anyone have any ideas or fun projects that might help me learn more about computing?
[09:46] <Rajvi> Hello Everyone.
[09:46] <nocturnal_> Hi Rajvi
[09:47] <Rajvi> What's the easiest & effective procedure to switch between multiple php & apache versions on a LAMP setup?
[09:50] <Rajvi> ?
[09:54] <nocturnal_> I don't know
[09:54] <nocturnal_> are you upgrading?
[09:56] <Rajvi> No, I need to use somehow php 4.x & some old Apache version , so what this old program works!
[09:58] <adsc> can't you just run a virtual machine?
[10:03] <nocturnal_> Don't you just need to configure PHP to work with Apache? Which version of PHP?
[10:16] <samgoody> Hello all. when I do cat /etc/hosts I get a different listed fqdn then hostname -f
[10:17] <samgoody> I realize that something extremely obvious, like I shouldnt be checking /etc/hosts for the fqdn. Could someone help?
[10:21] <Eggs_> samgoody: if you have changed you hostname previously you need to change it in /etc/hosts too, which you may have forgot to do
[10:26] <samgoody> Thanks.
[10:27] <samgoody> I changed it once using hostname me.example.com
[10:27] <samgoody> And since then have had issues ;)
[10:28] <samgoody> Also, whereas before this my hostname was "me", and fqdn was "me.oldomain.com" the new hostname is the same as the hostname -f: me.example.com
[10:28] <samgoody> How do I fix that so that hostname should be "me" and only fqdn be "me.example.com"
[10:30] <Eggs_> samgoody: not too sure on that one, i would just have it the same, are you wanting it different for the bash promt or something?
[10:32] <samgoody> No, I just figured it ought to be different since that's what I see in all examples of hostnames online
[10:36] <Eggs_> samgoody: its based on the /etc/hosts file, so at the top instead of having 127.0.0.1 me you would have 127.0.0.1 me.olddmain.com
[10:39] <samgoody> thanks
[11:03] <sunstar> does the php_mail function work for anyone? i've been using ubuntu since 9.10 and phpmail has never worked on any of my boxes. is this normal?
[11:12] <samgoody> 127.0.0.1       localhost.localdomain localhost
[11:12] <samgoody> What does the localhost.localdomain mean
[11:12] <samgoody> On the linode tutorial, they suggest: 127.0.0.1  localhost
[11:12] <samgoody> Why skip that?
[12:33] <YamakasY_> why is this partition scheme ignored ? it just creates swap and / on vg00 http://pastebin.com/7a3uyXZh
[14:36] <jamespage> tinoco, looking at https://bugs.launchpad.net/ubuntu/+source/pacemaker/+bug/1382842
[14:37] <jamespage> the pacemaker binary is tied directly to the binary versions of the libraries it produces?
[14:44] <tinoco> jamespage: i fixed one regression yes
[14:44] <tinoco> it looks like libraries were not being updated together
[14:45] <jamespage> tinoco, erm they are
[14:45] <jamespage> tinoco, I'm trying to understand why it breaks
[14:45] <tinoco> so there could be a situation when users updated binary without libraries
[14:45] <jamespage> tinoco, the ABI is the same upstream version
[14:45] <jamespage> so it should not
[14:45] <tinoco> jamespage:  let me revisit this
[14:45] <tinoco> so i can remember proplery
[14:45] <jamespage> tinoco, if the pacemaker binary hard depends on exactly the same packaging version, then we should do that in debian/control
[14:46] <tinoco> i remembered
[14:46] <tinoco> version used by Ubuntu did not cause
[14:46] <tinoco> dh_makeshlibs to behave properly
[14:46] <tinoco> (the string gitXXXX-something)
[14:47] <tinoco> https://bugs.launchpad.net/ubuntu/+source/pacemaker/+bug/1368737/comments/17
[14:47] <tinoco> take a look at this comment please
[15:02] <TimN> Is there any way I can only allow a specific list of IP adresses to a specific port on my server?
[15:03] <teward> TimN: firewall restrictions, or at the application level.
[15:04] <TimN> I don't think it's possible at application level. It's about a Minecraft server.
[15:04] <teward> TimN: probably individual rules in iptables or ufw to allow from specific IP addresses.
[15:04] <teward> TimN: then you're stuck using firewall rules
[15:05] <TimN> Okay, so iptables...
[15:05] <teward> TimN: or ufw
[15:05] <teward> i use iptables
[15:05] <teward> `sudo iptables -A INPUT -p tcp --dport MINECRAFTPORT -s IP.AD.DR.ESS -j ACCEPT
[15:05] <teward> one of each of those for the IP addresses you want to allow
[15:05] <teward> sudo iptables -A INPUT -p tcp --dport MINECRAFTPORT -j REJECT --reject-with icmp-host-unreachable
[15:06] <teward> that should ONLY be run as the last rule
[15:06] <TimN> That blocks all others?
[15:06] <teward> (and that adds a REJECT such that if it doesn't match the other IP addresses, it'll just fail for others
[15:06] <teward> yep
[15:06] <TimN> Ah.
[15:06] <teward> that's what the last one there does
[15:06] <TimN> And if I'd want to add another IP later?
[15:07] <teward> TimN: `sudo iptables -L -n INPUT`
[15:07] <teward> find the rule which has REJECT as the target
[15:07] <teward> count where in the ruleset that is
[15:07] <teward> then: sudo iptables -I INPUT THENUMBER -p tcp --dport MINECRAFTPORT -s IP.AD.DR.ESS -j ACCEPT
[15:08] <TimN> Are those rules placed in a file?
[15:08] <teward> TimN: no, those are command-line commands you run
[15:09] <teward> they're not saved unless you save them with `iptables-save > /some/path/`.
[15:09] <jhobbs> http://dev.bukkit.org/bukkit-plugins/iplist/
[15:09] <teward> you can use the iptables-persistent package to help though
[15:09] <jhobbs> if you use bukkit :/
[15:09] <TimN> Jhobbs, would be nice if Bukkit was available. ;P
[15:15] <TimN> Teward, does "sudo iptables -I INPUT THENUMBER -p tcp --dport MINECRAFTPORT -s IP.AD.DR.ESS -j ACCEPT" place the rule before THENUMBER or as THENUMBER?
[15:23] <teward> TimN: it inserts it as THENUMBER and then pushes what was there down one
[15:23] <teward> so if the REJECT is the 5th rule, then -I INPUT 5 puts your new rule before that 5th rule (the REJECT) as rule #5, and the REJECT moves to rule #6
[15:24] <TimN> Okay. Nice.
[15:24] <TimN> Thanks for your help. =)
[15:50] <rbasak> gnuoy: looking at lp:~gnuoy/ubuntu/vivid/python-logutils/update-to-0.3.3-2, I can't seem to apply fix-_levelNames-vs-_levelToName.patch cleanly. I'm not sure if this is me not handling the bzr branch right though.
[15:50] <rbasak> Ah, I see you're on holiday this afternoon.
[15:50] <rbasak> I'm out from tomorrow.
[15:50] <rbasak> I'll leave it for now.
[15:52] <rbasak> gnuoy: looks to me that the patch is right, but it isn't applied in the bzr branch even though .pc/ says it should be or something.
[15:52] <rbasak> This is an area where I get very frustrated with UDD and bzr. AIUI, stuff in UDD is supposed to be committed with all quilt patches applied and a corresponding .pc/ set up correctly.
[15:52] <rbasak> So the first thing I tried to do was "quilt pop -a" on your branch, which failed.
[15:53] <rbasak> OTOH, "quilt pop -a" on lp:ubuntu/python-logutils works
[16:24] <fandi> hi
[16:25] <fandi> i got udp packet
[16:25] <fandi> here is my result from tcpdump
[16:25] <fandi> http://paste.ubuntu.com/9551966/
[16:26] <fandi> is there any exploit on rpcbind or rpc.stat
[16:26] <fandi>  ?
[16:26] <fandi> please need your help :) thanks
[16:27] <teward> fandi: those look like DNS requests and responses... but without me dumping that into wireshark i can'tbe certain of that.
[16:29] <fandi> teward: yups it's query unavailable domain A? lzj.passwd1.com.
[16:29] <fandi> teward: i never found like this, and only rcpbind, rpc.stat which running with proto udp
[16:30] <teward> fandi: looks like something on your system is triggering those queries, but from a simple packet log you won't find out what's issuing those requests on your system
[16:30] <teward> unless it's whatever's running on rpc
[16:31] <fandi> teward: is possible to try stop rpc ?
[16:49] <samba35> i have configure a network with openvswitch i am faceing two issuses ,1 )how do i fix ifconfig eth0 to ipaddress 0.0.0.0 after bridge is configure (i am using ovs version 2.0.2 with vlan
[17:22] <tinoco> jamespage:  talking about LP: #1382842, fix is on LP: #1368737
[17:22] <tinoco> jamespage:  could u sponsor that ?
[17:22] <jamespage> bug 1368737
[17:22] <jamespage> bug 1382842
[17:22] <jamespage> tinoco, that last one was the one I had query over
[17:23] <tinoco> yep
[17:23] <tinoco> just talked with dosaboy
[17:23] <tinoco> it seems that they might have a temporary fix into a charm
[17:23] <tinoco> because apt-get update might misbehave
[17:23] <jamespage> tinoco, I was unclear as to why pacemaker requires an exact package version match with its associated libs
[17:23] <jamespage> tinoco, there is a charm bug and dosaboy has a fix for that which will help things
[17:23] <tinoco> 1368737 -> #16 and #17
[17:23] <jamespage> tinoco, but I'm not 100% happy with the fix approach
[17:24] <tinoco> jamespage:  u think changing version would be better ?
[17:24] <jamespage> no
[17:24] <jamespage> tinoco, I just don't see why the mismatch causes this error
[17:24] <tinoco> because of latest fix (-updated)
[17:24] <tinoco> libraries have to be at the same version
[17:25] <tinoco> orelse you get:
[17:25] <tinoco> Oct 18 20:54:16 saturn crmd[23424]: warning: do_lrm_control: Failed to sign on to the LRM 2 (30 max) times
[17:25] <jamespage> oh right I see
[17:25] <jamespage> in which case that's not the right fix
[17:25] <jamespage> pacemaker should be depending explicitly in d/control on a matching binary version
[17:26] <jamespage> which will force the upgrade
[17:26] <jamespage> making shlibs depend on a packaging version is not a good idea
[17:26] <jamespage> tinoco, leave this with me - I need to sortout vivid first and the packaging is awkward
[17:27] <tinoco> jamespage: ok. let me know if you need me to change anything for you
[17:27] <tinoco> tks james ;)
[17:27] <jamespage> tinoco, np
[17:27] <tinoco> jamespage: i was also talking with arges about proposing 1.1.12 into sid (mid jan)
[17:27] <tinoco> and bringing the new version to ubuntu also.. 1.1.12 has lots of bug fixes
[17:27] <jamespage> tinoco, yeah maybe
[17:27] <tinoco> that would be good for us (a lot)
[17:27] <jamespage> tinoco, I've been working on 1.1.12 for vivid
[17:28] <tinoco> perfect :)
[17:28] <tinoco> so i´ll leave it with  you tks again
[17:28] <jamespage> tinoco, but I might chicken out and do 1.1.11 for now
[17:28] <tinoco> ok.. i´ll propose 1.1.12 to debian-ha
[17:28] <tinoco> and see what they come up with
[17:36] <jkyle> I'm getting the following error when trying to add a gpg key to a precise server: keyserver timed out
[17:36] <jkyle> I thought it might be due to port 11371 being blocked, but nmap -p 11371 keyserver.ubuntu.com shows the port as open
[17:36] <jkyle> and Ihave no firewall on this machine
[17:37] <rberg_> you could try a different key server
[17:38] <jkyle> well, I can. but this is for some automated scripts. so is keyserver.ubuntu.com unreliable in some way? Is there a more reliable keyserver I should use?
[17:40] <rberg_> that I dont know
[17:51] <rww> jkyle: yes, keyserver.ubuntu.com is unreliable. I'd recommend pool.sks-keyservers.net
[18:27] <pmatulis> rww: how did you conclude keyserver.ubuntu.com is unreliable?  is there a known problem?
[18:28] <rww> pmatulis: because half the time I make requests to it it fails
[18:29] <rww> and the response I got from someone (forget who) was "yeah, that's a thing" basically
[18:42] <pmatulis> rww: alright, thx
[18:44] <alias_neo> Hey chaps. Having issues authenticating to my freeipa server from ubuntu 14.10 server. I can authenticate from 14.04 desktop and 14.04 server though. Anyone have any ideas please?
[18:45] <sarnold> alias_neo: any errors or warnings on either the client or the server?
[18:45] <alias_neo> The server doesn't complain, but I've got the sssd logging on high on the client, there's quite a lot of stuff, nothing that stands out to me (but I'm an sssd/ipa noob)
[18:46] <alias_neo> I@m just about to compare it with the sssd log of a working client
[18:54] <alias_neo>  I see this in the broken server log just before it all goes wrong:  No ccache file for user [<username>] found.
[18:55] <sarnold> alias_neo: interesting... what's a ccache file in the context of freeipa? :)
[18:55] <alias_neo> Not entirely sure but I believe it's to do with sssd caching credentials
[18:56] <sarnold> aha, so not a caching c compiler >:->
[18:56] <alias_neo> hehe no
[18:56] <YamakasY> any partman pro's in here ?
[18:57] <YamakasY> man it's giving me a hard time
[19:51] <proq> can someone point me to the best guide to installing a gnome desktop environment on ubuntu server 14.10?
[19:55] <dasjoe> proq: "apt-get install tasksel; tasksel install ubuntu-gnome-desktop" should do the trick
[19:56] <proq> thanks
[19:56] <dasjoe> Mind you, this will pull in everything as if you selected "GNOME desktop" during the installation
[20:19] <Noskcaj> zul, We can you check if we can sync python-tornado now? upstream says it was fixed by our current pycurl. https://github.com/tornadoweb/tornado/issues/671
[20:28] <YamakasY> which channel do I need for partman help ?
[21:01] <pmatulis> YamakasY: try #ubuntu-installer
[21:02] <YamakasY> pmatulis: yeah that channel seems to be dead
[21:04] <pmatulis> YamakasY: it's definitely not a "hot" channel but i wouldn't call it dead
[21:04] <pmatulis> YamakasY: maybe a mailing list is more appropriate
[21:06] <YamakasY> pmatulis: yeah got some help months ago... good idea
[22:21] <kyle__> if you have multiple interfaces, and only one has the gateway line, will that always be set as the default gateway in the routing table?
[22:23] <kyle__> I have a bridge (virbr1) that sets a specific route via postup, and a tagged vlan, which is supposed to have the default route (set using gateway in interfaces file), but it's using the virbr1's route as default, and the tagged vlans as specific.  I think
[22:28] <kyle__> s/specific/static/
[22:28] <kyle__> But you know what I mean.  Ihope.