| jaybot | Hey guys, I have a question about permissions | 02:25 |
|---|---|---|
| === jaybot is now known as Jaybroni | ||
| Jaybroni | Hello? | 02:30 |
| ianorlin | anything I can help with? | 02:31 |
| Jaybroni | Hi Ian, I think you helped me six months ago haha | 02:31 |
| Jaybroni | My question is about permissions | 02:33 |
| Jaybroni | I have a personal ftp server setup and and it's all working but I want to clean up my permissions somewhat | 02:34 |
| Jaybroni | using users and groups | 02:34 |
| Jaybroni | I just wonder if you can link me to a good template for setting up users and groups for FTP | 02:35 |
| Jaybroni | for example: | 02:35 |
| Jaybroni | home/sharing samba:guests u+rwx g+r_x | 02:36 |
| Jaybroni | home/sharing/uploads samba:guests u+rwx g+r_x o+rwx | 02:37 |
| Jaybroni | guests group has: sharing, samba | 02:37 |
| Jaybroni | and my ftp users login with sharing | 02:37 |
| Jaybroni | that's what i'm thinking of implementing, but I want it so future files and directories uploaded in the /uploads folder automaticaly are assigned to samba:guests | 02:38 |
| Jaybroni | I want both samba and sharing(ftp) users to read everything, and ftp users to write to uploads only | 02:41 |
| Jaybroni | but my system is a mess | 02:41 |
| Jaybroni | Do you know of anybody who has setup both FTP and Samba to share the same media? How did they design the permissions? | 02:42 |
| ianorlin | Ah I am not an expert on FTP or samba really | 02:45 |
| Jaybroni | ok no worries, just writing it out here gave me some perspective | 02:45 |
| Jaybroni | i'm going to reassign all the users to just two groups: 1) guests 2) admins | 02:46 |
| Jaybroni | thanks for your help today and last year :P my lubuntu server has been humming along for awhile now. | 02:47 |
| drkokandy | Jaybroni: this might give you a good overview of how to get set up with a simple Samba server: https://help.ubuntu.com/community/Samba/SambaServerGuide | 03:27 |
| drkokandy | I don't have an FTP server setup on my home server, but I use SFTP, which is based on SSH, so it uses the user's permissions from Ubuntu | 03:29 |
| holstein | which, should be, and should be able to be used instead of FTP | 03:30 |
| drkokandy | You can dive deeper using a lot of these links: http://askubuntu.com/questions/126850/how-do-i-use-ubuntu-server-as-file-server/112167#112167 | 03:30 |
| drkokandy | exactly :) | 03:30 |
| holstein | make users, give them access.. boom | 03:30 |
| Unit193 | I'd not recommend you use ftp, quite unsecure. | 03:31 |
| holstein | you can connect to an ssh share from "normal"clients.. like, if a client had filezilla, and was used to using ftp.. its not a big difference sftp.. | 03:31 |
| holstein | fot hem | 03:31 |
| holstein | for them* | 03:31 |
| Jaybroni | Thanks for the advice guys, I'm using FTPS | 03:32 |
| Jaybroni | SFTP is setup as well, but isn't FTPS faster? I haven't done any tests but that's what i heard | 03:32 |
| holstein | ssh is the current running suggestion.. | 03:33 |
| holstein | are you having issue with speed? | 03:33 |
| holstein | personally, i dont use samba like that either.. only locally when i do.. | 03:34 |
| Jaybroni | I just heard ssh file transfer is the slowest of the three options | 03:34 |
| holstein | i dont put samba outside my firewall | 03:34 |
| Jaybroni | yeah my lan machines are all assigned to one group, and that group is given full permission in samba | 03:35 |
| holstein | Jaybroni: you heard? | 03:35 |
| Jaybroni | i googled* | 03:35 |
| holstein | Jaybroni: so, you are having issues with speed? | 03:35 |
| holstein | Jaybroni: have you tried it? if not, try it.. | 03:35 |
| Jaybroni | because ssh encrypts everything it takes a performance hit. Whereas FTPS encrypts only the authentication and is a good balance between SSH and plain old FTP | 03:35 |
| holstein | safe, fast, easy... you may not be able to use all these words in a sentence about your setup.. | 03:36 |
| Jaybroni | Yeah I'm going to turn a test right now | 03:36 |
| Jaybroni | FTPS vs SFTP vs FTP stay tuned :) | 03:36 |
| Jaybroni | transfer rate | 03:36 |
| Unit193 | use rsync rather than scp. | 03:37 |
| holstein | ssh is the industry standard | 03:38 |
| holstein | there literally is no other contender.. to the point of concern about it being the only game in town | 03:38 |
| Jaybroni | ok so the results are in: using Filezilla as the client, the winner was SFTP (ssh) by .1MBps | 03:40 |
| Jaybroni | So I'm going to switch to SFTP since FTPS was a bit tricky to implement active/passive through nas, etc. | 03:41 |
| holstein | im still not sure you are getting the testing right, since, i dont think you are using an ssh server | 03:41 |
| holstein | but, for the client end, which i assume needs to be filezilla, you can switch to ssh, and they can still connect in | 03:41 |
| Jaybroni | note: I didn't test plain old ftp because I need security | 03:42 |
| Jaybroni | I have openssh | 03:42 |
| holstein | cool.. becuase, before, you had samba and ftp outside the firewall.. | 03:42 |
| Jaybroni | my testing was all done over lan | 03:43 |
| Jaybroni | what? samba outside the firewall? what are you talking about | 03:43 |
| Jaybroni | anyway thanks for the advice guys | 03:44 |
| holstein | Jaybroni: thats what you were talking about | 03:44 |
| Jaybroni | let's leave that a mystery | 03:44 |
| holstein | Jaybroni: its not by box, so, i have no skin in the game | 03:45 |
| holstein | i suggest that you not leave *anything* a mystery on a server machine like that outside the firewall.. | 03:45 |
| Jaybroni | I still need to improve the way my permissions are organized but I will check out the links you guys suggested for that. Thanks again | 03:45 |
| holstein | why? | 03:45 |
| Jaybroni | what are you talking about, my server is behind a firewall | 03:45 |
| holstein | if its inside your firewall, on your lan.. and you have normal user permissions, sudo, etc.. whats the issue? | 03:46 |
| holstein | Jaybroni: then, whats the issue? | 03:46 |
| holstein | why are you "cleaning up permission" just for you? | 03:46 |
| holstein | what have you broken? and why? | 03:46 |
| Jaybroni | Because SFTP (only, not Samba) will be connected to remotely from the WWW | 03:47 |
| holstein | Jaybroni: *that* is outide your firewall.. | 03:47 |
| holstein | Jaybroni: that is what you may want to reconsider.. connecting to samba from www, or whatever you want to call it | 03:47 |
| Jaybroni | Yes. I have port forwarding setup for FTP but not Samba | 03:47 |
| Jaybroni | you said samba and all this junk about it being outside my firewall | 03:48 |
| holstein | right.. and, thats bad | 03:48 |
| holstein | Jaybroni: thats what forwarding a port does, friend | 03:48 |
| holstein | puts the machine accessible.. bypassing the firewall.. | 03:48 |
| Unit193 | holstein: He's only talking about (s)ftp(s) outside of the firewall, not samba as far as I can tell.. | 03:48 |
| Jaybroni | what is the problem | 03:48 |
| Jaybroni | yes Unit193 | 03:48 |
| holstein | Jaybroni: ftp public like that | 03:48 |
| holstein | using ssh there would be preferable, and, you can still connect with filezilla.. | 03:49 |
| Jaybroni | it requires a username and password, and connects via FTPS or SFTP. Plain old FTP is disabled | 03:49 |
| holstein | Jaybroni: as i said before,i wouldnt leave that a mystery.. only you know if its secure or not.. if its me, i use ssh there.. not ftp | 03:50 |
| Jaybroni | The only remote access is through FTP with Explicit TLS or SSH | 03:50 |
| holstein | no form of ftp.. | 03:50 |
| Jaybroni | there's a difference between plain FTP and FTP with Explicit TLS | 03:50 |
| Jaybroni | I don't use plain ftp | 03:50 |
| holstein | Jaybroni: i wouldnt know, i dont use ftp. i use ssh | 03:51 |
| holstein | Jaybroni: im not interested in having *any* ftp outside my firewall | 03:51 |
| Jaybroni | If you think FTP with TLS is insecure you have some googling to do | 03:52 |
| holstein | Jaybroni: *i* dont.. i dont use ftp | 03:52 |
| Unit193 | I'm pretty sure we're not getting anywhere here. | 03:52 |
| Unit193 | Perhaps we should move on? | 03:53 |
| Jaybroni | i can tell | 03:53 |
| Jaybroni | agree | 03:53 |
| Jaybroni | I've been traying actually, hence my 'leaving it a mystery' comment | 03:53 |
| Jaybroni | my mistake though was leaving out the S after FTP a few times, out of laziness :P | 03:54 |
| Jaybroni | anyway thanks for the tips guys | 03:54 |
| Jaybroni | I'll be switching to SFTP for several reasons | 03:55 |
| Jaybroni | SFTP aka SSH FTP | 03:55 |
| mucus | howdy! | 06:52 |
| mucus | i have a 64bit 1gb ram 16gb storage tablet. how's installing 64bit lubu on that? | 06:52 |
| === mucus__ is now known as mucus | ||
| Tadurin | When I create a usb boot stick using the standard procedure it refuses to boot. Is that a known problem? | 09:59 |
| Tadurin | The message is Missing parameter in configuration file. Keyword: path\n gfxboot.c32: not a COM32R image | 10:04 |
| Tadurin | In case anybody cares. ;) | 10:04 |
| Gerry_ | Hello | 10:42 |
| ochosi | Tadurin: yeah, that is a known issue: https://bugs.launchpad.net/ubuntu/+source/usb-creator/+bug/1325801 | 10:44 |
| ubottu | Launchpad bug 1325801 in usb-creator (Ubuntu Utopic) "failed to boot from USB disk with error: gfxboot.c32: not a COM32R Image boot:" [Critical,Triaged] | 10:44 |
| ochosi | Tadurin: just type "live" and hit enter and it will boot | 10:44 |
| Unit193 | Tap tab twice to see options too, but ^ | 10:46 |
| Tadurin | Unit193: yeah, I had already found that | 10:57 |
| Tadurin | hrm | 15:12 |
| Tadurin | how do I turn off the touchpad on my laptop in lubuntu? Is there no GUI tool for that? | 15:12 |
| Tadurin | I think there was an xset command... | 15:12 |
| teward | Tadurin: there might be a function key for it built in - did you try that? | 15:13 |
| Tadurin | no, like what? | 15:13 |
| teward | Tadurin: most laptops have a key combo to press that could disable the touchpad on the laptop - it varies by manufacturer and model | 15:13 |
| wxl | mine doesn't work | 15:14 |
| wxl | i'm sure you can do this with synaptics | 15:14 |
| wxl | this is a welcome change from fightning tox | 15:14 |
| wxl | synclient TouchpadOff=1 | 15:15 |
| teward | wxl: i think it depends on the laptop - i've had luck with dell acer hp and asus laptops, so... | 15:15 |
| Tadurin | I find it very irritating that it doesn't matter which keyboard layout I chose on the login screen. | 15:15 |
| Tadurin | It always uses the same one. :p | 15:16 |
| wxl | xinput disable "$(xinput list --name-only | grep Touchpad)" | 15:16 |
| wxl | or | 15:16 |
| wxl | xinput set-prop "$(xinput list --name-only | grep Touchpad)" "Device Enabled" 0 | 15:16 |
| wxl | Tadurin: sounds like a lightdm bug | 15:17 |
| wxl | i wonder if setxkbmap -layout "jp" (or whatver you want) won't fix your layout issue | 15:20 |
| wxl | oh better | 15:20 |
| wxl | you can set what you want in /etc/default/keyboard | 15:20 |
| Tadurin | wxl: yeah, but if different users want different layouts you're still screwed | 15:44 |
| wxl | you can add multiple keyboard layouts tad | 15:44 |
| Tadurin | O_o | 15:45 |
| Tadurin | wxl: how do I select them, then? | 15:45 |
| wxl | that's beyond my level of understanding XD | 15:45 |
| wxl | sorry i've only got one language and one keyboard layout to worry about :( | 15:46 |
| Tadurin | thanks anyway! :) | 15:54 |
| testdr | Tadurin: about selected keyboard layout - you may have corrupted your setup - normaly it works. | 16:05 |
| testdr | Tadurin: and last - the user settings may always override what you select at login-screen - because user-settings are the last in the row and should rule | 16:06 |
| testdr | Tadurin: if you need diffent keyboard-layouts for a user - add those layouts and let the user switch them as wanted during his work and maybe even special for different windows | 16:07 |
| Tadurin | in what row? | 16:07 |
| Tadurin | i'm confused | 16:07 |
| testdr | Tadurin: the row how configs are activated -- and why are you confused? | 16:08 |
| Tadurin | okay so on the login screen I have a keyboard layout selector in the top right | 16:08 |
| Tadurin | which does nothing apparently | 16:08 |
| testdr | Tadurin: this works if the user has not setup special layouts | 16:09 |
| Tadurin | and where would the user do that? | 16:09 |
| testdr | Tadurin: as far as i know the default is to use the global system keyboard layout in the preferences ... | 16:09 |
| testdr | Tadurin: have you ever tried the kb-layout setup with the little icon in the menu-panel? | 16:11 |
| Tadurin | on the login screen? | 16:11 |
| testdr | Tadurin: no - after login in the user-panel | 16:11 |
| Tadurin | you mean the input method settings? I have those open, yes. | 16:12 |
| testdr | Tadurin: thats boreing for me -sorry - you should check the docs about it | 16:13 |
| === Mr_Comet is now known as Comet|Away | ||
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!