=== enleeten_ is now known as enleeten
[01:26] <lickalott>  gents, having an issue I can't seem to solve....   I have some NFS shares that are accessed by 3 different machines on my network.  It's worked in the past with 770 permissions (all three machines can access fine.  Same username and password, different UID's obviously).  I had to reload the OS on a windows box (one of the 3 machines) and now I have to have the permissions @ 777 to access the folders.   I'm wondering what changed an
[01:26] <lickalott> d how do I get it back?
=== Lcawte is now known as Lcawte|Away
=== zz_DenBeiren is now known as DenBeiren
[02:51] <Patrickdk> lickalott, there is a lot of questions there
[02:51] <Patrickdk> are you using nfs3 or nfs4
[02:51] <Patrickdk> what are these guests? you said something about windows?
[02:51] <Patrickdk> nfs3 depends on the uid for permissions
[02:52] <lickalott> i want to say nfs4.  whatever the latest nfs-kernel-server is for 14.04.
[02:52] <Patrickdk> nfs4 depends on what security model your running, but it generally also still needs uid and usernames to match between systems
[02:52] <Patrickdk> what does, latest nfs-kernel-server have to do with version?
[02:52] <Patrickdk> the latest nfs-kernel-server supports nfs2 nfs3 and nfs4
[02:52] <lickalott> 1 "guest" is a WDTV media streamer (can do samba and NFS, but have it set up for NFS), 1 is a windows box, and the other is a fedora laptop.  The windows box is having the trouble right now.
[02:52] <Patrickdk> oviously you configured nfs, so what did you use?
[02:53] <lickalott> wait 1.  let me check.
[02:53] <Patrickdk> I doubt the wdtv can do nfs4
[02:53] <Patrickdk> and dunno if the windows one will default to nfs3 or nfs4
[02:54] <Patrickdk> but sounds like, making it work the way you want, is going be near impossible with nfs
[02:54] <lickalott> how can I tell which version?
[02:54] <Patrickdk> normally? on the mount option
[02:54] <Patrickdk> type nfs (rw,noatime,bg,noacl,nfsvers=3
[02:55] <Patrickdk> as far as server, running nfs4 is a lot of work, and config
[02:55] <lickalott> it did work like that (for a long time) before I had to reload the OS on the windows box.  It doesn't really make much sense to me which is why i can't even attempt to recreate it to work again.  Nothing has changed on the NFS side.  the only thing that changed was the UID that is being used/seen on from the windows machine.
[02:55] <Patrickdk> atleast if you planned to do it correctly
[02:55] <Patrickdk> as I said, it's normally luck if it works
[02:56] <Patrickdk> I have no idea how windows does nfs
[02:56] <Patrickdk> but nfs DEPENDS on uid's to match
[02:56] <lickalott> do you mean version on the windows side or the ubuntu server side?
[02:56] <Patrickdk> so you need windows to match the uid when using nfs
[02:56] <Patrickdk> I mean both sides
[02:56] <Patrickdk> UID must match over ALL systems
[02:56] <Patrickdk> or you loose all security over nfs
[02:56] <Patrickdk> when using non-kerberos based nfs
[02:57] <Patrickdk> that means, unless you use kerberos based nfs4, fully configured, you depend on uid matching over all clients and server, for security
[02:57] <lickalott> i'm going to say nfs3.   I don't think the built in windows NFS client module can handle nfs4.
[02:58] <Patrickdk> and even with kerberos based nfs4, you still need uid and usernames to match, or it won't work right, but it will still be *secure*
[02:58] <Patrickdk> I know nothing about windows nfs
[02:58] <lickalott> and on the server....i used this https://help.ubuntu.com/community/SettingUpNFSHowTo
[02:58] <Patrickdk> but somehow you need the uid's to match
[03:00] <lickalott> that's what I was thinking.   I even went as far as to make a user based on the UID from the windows box (something like 429128847).  he now shows up with an actual username.  Then added that user to a group that has "group" priviledges on the folders in question.
[03:00] <lickalott> but still can't access unless the permissions are wide open.
[03:00] <lickalott> I'll look into the UID match thing and report back if I get anywhere (just incase someone else ever asks.)
[03:01] <Patrickdk> I don't know about the group thing
[03:01] <Patrickdk> if it's verified on the server or the client
[03:01] <Patrickdk> your assuming server side though
[03:01] <lickalott> true
[03:06] <cryptodan> lickalott: is this Windows 7?
[03:06] <lickalott> yes
[03:07] <cryptodan> ill install NFS Client on my VM and see if it supports NFS4
[03:08] <lickalott> looks like it does, just not natively - http://www.citi.umich.edu/projects/nfsv4/windows/readme.html
[03:12] <cryptodan> I connected to my NFS4 share just fine via the client in WIndows 7
[03:13] <cryptodan> Here are some of the command line switches for it http://technet.microsoft.com/en-us/library/cc754350.aspx
[03:14] <Patrickdk> cryptodan, that document lists a lot of nfs3 stuff
[03:14] <Patrickdk> you SURE it's using nfs4?
[03:15] <Patrickdk> oh there it is
[03:15] <cryptodan> I would imagine that my client would have gotten a protocol mismatch
[03:15] <Patrickdk> -o sec=....
[03:15] <Patrickdk> looks like windows 8 does
[03:20] <lickalott> mount -o mtype=soft 192.168.1.108:/media/cyclops Z:
[03:20] <lickalott> mount -o mtype=soft 192.168.1.108:/media/iceman Y:
[03:20] <lickalott> mount -o mtype=soft 192.168.1.108:/media/wolverine X:
[03:20] <lickalott> mount -o mtype=soft 192.168.1.108:/home/weed/ipcam1 W:
[03:20] <lickalott> mount -o mtype=soft 192.168.1.108:/home/weed/ipcam2 V:
[03:21] <lickalott> that's what mine looks like now.
[03:21] <cryptodan> wrong slashes I think
[03:22] <lickalott> it works.  its just the permissions thing.
[03:22] <cryptodan> C:\Users\cryptodan>mount \\192.168.1.8\home\cryptodan\public_html U:
[03:22] <cryptodan> U: is now successfully connected to \\192.168.1.8\home\cryptodan\public_html
[03:22] <Patrickdk> cryptodan,  that is nfs? that looks like smb/cifs
[03:23] <cryptodan> its nfs
[03:23] <cryptodan> dont have SMB on my server at all
[03:24] <lickalott> i can't get it to work with the slashes that way.
[03:25] <lickalott> C:\Users\weed>mount -o \\192.168.1.108\CYCLOPS U:
[03:25] <lickalott> Network Error - 53
[03:25] <lickalott> Type 'NET HELPMSG 53' for more information.
[03:25] <cryptodan> you need the full path
[03:25] <cryptodan> and I didnt use the -o
[03:26] <cryptodan> lickalott: and are you sure that the nfs admin and client are installed on the client machine?
[03:27] <lickalott> got it to mount.
[03:28] <lickalott> pretty sure....  i went into programs and features and enabled everything NFS.  Even went as far as to install "services for NFS"
[03:29] <cryptodan> thats all I did and followed one of the examples in that post on that site from MS to mount it
[03:30] <lickalott> what are you permissions on the server side for the folders/files?  I've made the main folders 777 but the subdirs and files that i haven't touched yet I can't access from the windows side.
[03:30]  * teward coughs at 777
[03:30] <lickalott> serious
[03:31] <cryptodan> default for the mount
[03:31] <lickalott> are you saying default for the mount as in "whatever the default is" or 777 is default for the mount?
[03:32] <cryptodan> 755
[03:33] <cryptodan> so its mounting via nfs3
[03:33] <lickalott> yep, that's how I had it.  and it worked fine before.  For some reason I can't get to them now unless I changed the permissions (which I don't really want to do)  This server has an internet facing interface and I'd rather not have my stuff wide open.
[03:34] <cryptodan> as does my server but my firewall disallows nfs from the outside
[03:34] <lickalott> but you're running nfsv4 on the server side?
[03:34] <cryptodan> yes
[03:35] <lickalott> i have to be missing something....
[03:35] <lickalott> I'm even sharing out NFS mounts from the windows box fine.  (Hanewin NFS server)
[03:36] <cryptodan> let me create a new user in my VM and see if I can mount it
[03:39] <cryptodan> new user mounts fine and the user doesnt exist on the server can access files but cant create them
[03:40] <lickalott> will you do me a favor?  can you pastebin your /etc/exports file?
[03:41] <cryptodan> /home/cryptodan/public_html 192.168.1.0/24(rw,nohide,insecure,no_subtree_check,sync)
[03:42] <lickalott> /media/CYCLOPS         *(rw,sync,no_subtree_check)
[03:42] <lickalott> what does the insecure switch do for you?
[03:42] <cryptodan> unauthed access I believe
[03:52] <lickalott> thanks cryptodan.  It seems to be working now with 755
[03:52] <cryptodan> you are welcome
=== markthomas|away is now known as markthomas
=== bilde2910|away is now known as bilde2910
=== markthomas is now known as markthomas|away
=== not_phunyguy is now known as phunyguy
[08:01] <jdzielny> hello everyone.  I'm looking for some help converting a server with a single hdd over to bootable RAID 1.  It's currently hdd > LUKS > LVM
[08:51] <lordievader> Good morning.
[09:16] <FullEraser> hi all
[09:18] <lordievader> o/
=== Lcawte|Away is now known as Lcawte
=== bilde2910 is now known as bilde2910|away
=== bilde2910|away is now known as bilde2910
[14:25] <FrEaKmAn_> hi.. today I got this email http://pastie.org/9812344 from my VPS
[14:25] <FrEaKmAn_> does this mean something bad?
[14:26] <FrEaKmAn_> I'm checking mail.err log and noticing a lot of invalid email address errors. is this spam?
[15:17] <Patrickdk> FrEaKmAn_, it would be helpful if you told us something
[15:17] <Patrickdk> we can't tell you anything so far
[15:19] <FrEaKmAn_> Patrickdk, neither do I :)
[15:19] <FrEaKmAn_> I don't know in which direction to go..
[15:20] <Patrickdk> where are the logs? what is the name of your server?
[15:40] <FrEaKmAn_> in var/log.. name?
=== bilde2910 is now known as bilde2910|away
=== bilde2910|away is now known as bilde2910
=== rcj is now known as Guest48642
=== chmurifree is now known as chmuri
[19:22] <jdzielny> hello everyone.  I'm trying to install Ubuntu Server 14.04 LTS using RAID/LVM/LUKS.  I correctly configure all the petitions and mount points, and everything in the install goes smooth, until it gets to the bootloader install.  It runs "grub-install /dev/sda /dev/sdb" and crashes with the unhelpfully vague message that grub-install failed
[19:22] <jdzielny> anyone know what the problem is?
[19:23] <cryptodan> it should only be trying to install on one drive
[19:25] <jdzielny> in order for it to be bootable from either disk in RAID 1 it has to be on both drives
[19:25] <jdzielny> otherwise you have one drive with a bootloader and the other without.  defeats the point of RAID 1 if you have to manually install a bootloader when one of the drives fails
[19:25] <cryptodan> I have a RAD 1 for my system partition, and when I Installed it it selected only one drive
[19:25] <cryptodan> RAID 1*
[19:26] <jdzielny> if you pull that drive out (to simulate a drive failure), you won't be able to boot
[19:26] <jdzielny> if only one of the drives in the array has a bootloader, if it fails, the system can't boot
[19:27] <cryptodan> it should mirror it during install and as such the data should be mirrored
[19:28] <jdzielny> here's the steps I followed.
[19:29] <jdzielny> 1.  Create 2 identical partition tables on /dev/sda and /dev/sdb -- /dev/sda/b1 are 250MB type FD (RAID), /dev/sda/b2 are 100% (all remaining space) type FD
[19:29] <jdzielny> 2. Create md0 from sda/b1 and md1 from sda/b2
[19:30] <cryptodan> so this is software raid?
[19:30] <jdzielny> yes.  configured using the Ubuntu Server installer
[19:31] <cryptodan> ah mine is hardware raid via controller so your setup is different
[19:31] <jdzielny> yeah :-\
[19:32] <cryptodan> and mdraid is gone and as such dmraid is inplay I believe in Ubuntu 14.04 LTS
[19:32] <jdzielny> the issue seems to be with ubiquity, not with grub
[19:33] <jdzielny> then again, I could be wrong
[19:34] <jdzielny> anyway, here's the rest, maybe someone else can see and give some insight
[19:37] <jdzielny> 3. md0 is configured as ext3 mounted at /boot (intended to be used for the boot files with /dev/sda and /dev/sdb as the bootloader disks)
[19:37] <jdzielny> 4. md1 is configured as physical volume for LUKS
[19:37] <cryptodan> try not using encryption and see if you succeed
[19:41] <jdzielny> brb
[20:01] <jdzielny> had to restart the laptop i'm on
=== bilde2910 is now known as bilde2910|away
[21:20] <jdzielny> cryptodan, trying the raid 1 install without any encryption or LVM.  just 4 partitions on each hdd (/boot, /, swap, and home), arrayed into /dev/md0, md1, md2, and md3 respectively
[21:21] <cryptodan> kk
=== bilde2910|away is now known as bilde2910
=== bilde2910 is now known as bilde2910|away
[21:38] <jdzielny> cryptodan, okay it installed without the same error as before (I think)
[21:39] <jdzielny> Aside from pulling one or the other hdd out, how can I chec that it actually booted from /md0 and not from /sda or /sdb
[21:39] <jdzielny> ?
[21:43] <cryptodan> thats the only way
[21:45] <jdzielny> using grep /dev/md /etc/fstab I verified at least that the filesystems actually are on the RAID devices
[21:46] <jdzielny> confirmed that / is on md1, /boot on md0, etc. all where they should be
[21:46] <cryptodan> so it sounds like the issue was in your luks setup
[21:46] <jdzielny> so far anyway
[22:07] <jdzielny> LoL cryptodan for future reference, make sure /proc/sys/dev/raid/speed_limit_min and _max are set high
[22:07] <jdzielny> was trying to figure out why it was so slow (1000KB/sec resync, really?!?!), speed limit was set to 1k
[22:07] <jdzielny> lol
[22:09] <jdzielny> I'm gonna try redoing the install with crypto on and see if it works
[22:11] <jdzielny> the only annoying thing is that if you use crypto for all of the partitions, you have to type in the passphrase that many times at least once.  once the system is up and running you can create keyfiles for all the partitions, but holy f**k it's annoying thta the installer doesn't just work right
[22:44] <cryptodan> lol
[22:52] <lnxmen> Hello
[22:53] <lnxmen> Is there any magic that I changed one file and my site is totally broken?
[22:53] <lnxmen> I returned everything to previous situation.
[22:53] <lnxmen> And site stil does not work.
[22:54] <lnxmen> No error.
[22:54] <lnxmen> How come?
[22:55] <bekks> Depends on the file you changed :)
[22:56] <lnxmen> bekks: It was a template.
[22:56] <bekks> And?
[22:56] <lnxmen> And nothing more.
[22:56] <bekks> Whats the filename?
[22:56] <lnxmen> template.html.php
[22:57] <lnxmen> As I said I returned original one.
[22:57] <lnxmen> But it's still blank page.
[22:57] <bekks> Could you provide a bit more information please? Like which Ubuntu do you have, which webserver, where did you get that file from, where is it stored, erc.?
[22:57] <bekks> *etc
[22:57] <lnxmen> bekks: surely.
[22:58] <lnxmen> It's Ubuntu 14.04 LTS
[22:58] <lnxmen> apache2
[22:58] <bekks> You dont have to press enter after every three words ;)
[22:58] <lnxmen> File was sent by my client - he said it's original one to the framework (PHPFox)
[22:59] <lnxmen> Okay.
[22:59] <lnxmen> So, I changed them.
[22:59] <lnxmen> And next I got blank page. (wtf?!)
[23:00] <lnxmen> Okay, I thought file is broken or something, so I changed files one more time (to the file that was eariler).
[23:00] <lnxmen> And despite I reloaded everything (apache, mysql) I get blank page.
[23:00] <lnxmen> No error.
[23:01] <lnxmen> And yes, I have set php to display errors.
[23:01] <lnxmen> In index.php as well as in php.ini.
[23:01] <lnxmen> bekks: I don't really know what is the problem.
[23:01] <lnxmen> No error given, no warning. I checked every log that is related to this site.
[23:01] <lnxmen> Literally nothing.
[23:01] <lnxmen> Do you need something more?
[23:02] <lnxmen> Any idea?
[23:02] <lnxmen> I configured everything on this server, so I believe it's well done.
[23:02] <lnxmen> Permissions are okay.
[23:08] <lnxmen> I reloaded cache. It works again.