[03:18] <morenoh150> ansible vs salstack go!
[03:18] <morenoh150> saltstack
[03:20] <sarnold> saltstack has a terrifying history: https://github.com/saltstack/salt/pull/7356 https://github.com/saltstack/salt/commit/5dd304276ba5745ec21fc1e6686a0b28da29e6fc
[03:21] <sarnold> I don't know that ansible is _better_, mind, but I certainly don't recall anything quite so horrible in their history
[04:48] <morenoh150> how can I verify that my harddrive is experiencing hardware failure
[04:59] <morenoh150> nvm
[06:27] <lordievader> Good morning.
[07:37] <ivoks> stgraber: around by any chance? :)
[14:03] <rsevero> Hi, I'm finishing the configuration of my second server being migrated from Gentoo to Ubuntu. Unfortunatelly, when I did a last boot to see if everything would come up ok the boot process started to hang on "Stopping Send an event to indicate plymouth is up". Any ideas what might be causing this?
[14:16] <teward> rbasak: ping if you're around
[14:17] <rbasak> teward: here but a bit tied up this afternoon
[14:17] <teward> rbasak: ahh, well, i"ll leave you be, just making a note WRT bug #1267255 that nginx suggests the use of php5-fpm for their PHP configurations, althuogh it can be done with php5-cgi and others, FPM makes it quick-and-easy
[14:17] <teward> just wanted to at least make you aware of that one.
[14:18] <teward> which is one point for the MIR, if we wanted to ship, say, a LEMP stack option in Ubuntu
[14:18] <teward> 'tis all :)
[14:18]  * teward returns to fiddling with his tablet
[14:19] <rbasak> teward: yeah, understood. I think we'll probably have the fpm mir done eventually. But I think it should block on fixing all the fpm related bugs first.
[14:19] <teward> mhm
[14:19] <teward> rbasak: assuming that someone steps up - those bugs can be... tricky.
[14:34] <teward> rbasak: for the record i'll prep the SRU/Debdiff for https://bugs.launchpad.net/ubuntu/+source/php5/+bug/1230917 - the patch as is from upstream (Ondrej) doesn't apply cleanly, so I'm going to go the evil method and rebuild the patch manually with quilt (looks like something doesn't like the patch as-is)
[14:37] <teward> oh duh, it's d/ changes
[14:37]  * teward facedesks
[15:59] <AkivaAvraham> Hey all: Live Ask Ubuntu Anything live in 5 minutes: http://ubuntuonair.com | #ubuntu-on-air
[16:30] <alias_neo> Hey guys, anyone know how I can take advantage of hardware RNG in my Xeon on Ubuntu-Server for VM use?
[16:31] <alias_neo> KVM*
[17:39] <ssarah> hallo. Guys, someone told me it's ALWAYS safe to leave security updates on ubuntu-server
[17:39] <ssarah> as in, it wont break running applications, like puppet, etc
[17:39] <ssarah> true?
[17:39] <ssarah> *automatic security updates on
[17:40] <akae> Hi everyone
[17:40] <akae>  I'm having a problem with ubuntu-server 14, which does not mount at start a sdb1 SSD disk even if it is configured in fstab, but mounts perfectly when I run mount -a
[17:40] <akae> does anyone have an idea of what could be happening?
[17:54] <jrwren> ssarah: that is the goal AFAIK
[18:14] <rsevero> akae: As it mounts when you run "mount -a" I believe you have the "auto" option enabled on this particular volume, right?
[18:31] <Tzunamii> mount -a mounts everything in /etc/fstab
[18:34] <lordievader> It mounts everything that doesn't have 'noauto' set.
[19:07] <ssarah> jrwren: the "goal" ?
[19:08] <ssarah> they are telling me to be afraid the security upgrades would bream something else
[19:40] <jrwren> ssarah: its always a possibility, but it is highly unlikely.
[20:30] <kaje> So, I have a tricky problem that could easily be solved by using a setuid bit on a script, but ubuntu seems to block that.
[20:31] <kaje> I have a user with a private ssh key set up to connect to a remote server. That user has a specific command it wants to allow other users to perform on the remote server, but no other commands.
[20:32] <bekks> kaje: Which command is that, in particular?
[20:32] <kaje> I created a script that just has "ssh -i keyfile "the command"" in it.
[20:33] <kaje> I am trying to think of another solution for this problem that doesn't give other users direct access to that keyfile since that will give them full access to the remote server.
[20:35] <kaje> I tried doing the C file with a system call to the script trick, but that didn't work either.
[20:37] <sarnold> kaje: I suggest creating a key specifically for that one command
[20:38] <sarnold> kaje: look for command=  in authorized_keys(5)
[20:38] <kaje> How do I prevent someone from sshing in with that key using ssh -i ?
[20:39] <kaje> ok, thanks
[22:37] <NymeriaFR> Hello every body
[22:37] <NymeriaFR> I have a little question about docker
[22:38] <NymeriaFR> if someone can help me
[22:41] <pmatulis> ask away and someone may help NymeriaFR
[22:42] <NymeriaFR> If all my application run inside docker, are library shared ?
[22:44] <NymeriaFR> For exemple, if I have two application which use the same library (Qt for example), is Qt library shared between application ?
[22:47] <jrwren> NymeriaFR: i don't now of any special handling for this. So the answer is: maybe.
[22:48] <jrwren> NymeriaFR: I assume you mean 2 different containers, one running each app?
[22:50] <NymeriaFR> Sorry, I wasn't very specific
[22:50] <NymeriaFR> Yes the applications are in differents containers
[22:52] <NymeriaFR> I assume in ubuntu touch, each application is lunch in differents containers, isn't ?
[22:58] <NymeriaFR> in ubuntu snapy*
[23:02] <jrwren> NymeriaFR: I don't know.
[23:03] <jrwren> NymeriaFR: ultimately, share libraries being loaded only once happens because the linker uses mmap. If the library files are the same on disk, like is the case for aufs, then the mmap calls will only map once.
[23:12] <Fun> hey folks
[23:12] <Fun> say i sell vps and dudes use them to hack something, does DC mind?
[23:12] <Fun> I could simply close they account when reports arrive
[23:13] <Fun> however there are no cheap way to see what people are upto with rented vps :D
[23:18] <sarnold> "DC"?
[23:18] <Fun> data centre
[23:18] <Fun> IP providers
[23:18] <Fun> since most likely complains go into arin IP email
[23:18] <Fun> unless its mine
[23:19] <lenios> you might get your IP banned before you close their account
[23:21] <Fun> or them I sell vps and some ips may get complains
[23:21] <Fun> :d
[23:21] <Fun> its  not a big deal for them if I lease IPS long term
[23:34] <Jeeves_Moss> is there a netflow EXPORTER for Ubuntu?  I'd like to monitor my boxes using my netflow monitor