[02:29] <zhhuabj> https://docs.google.com/document/d/1Lhvp2-fbW8rezaipQklk3tzU7mIefH3J2UUFUW5Dv24/edit#
[02:30] <zhhuabj> sorry, type error
[02:30] <zhhuabj> pls ignore it
[02:31] <sarnold> you may wish to check the ACLs on your doc to make sure it is properly restricted
[03:48] <brianw__> anyone here use lxc for samba ad dc containers && ctdb/glusterfs samba dfs file servers (containers) ??
[03:49] <brianw> my nick is brianw
[03:49] <brianw> :)
[09:40] <arcsky> hello
[09:40] <arcsky> i have empty files messages/syslog. what can i do about it?
[10:57] <samba35> i am trying to confiugre mail /web server @home ,i am able to send email but i am not sure how pop3/pop3s  to be configure
[10:57] <samba35> i am behind a firewall /utm /pop proxy for spam and antivirus and other thing ,if i have to use ssl certificate do i have to use my own certicate  (create with openssl )
[11:01] <samba35> using ubuntu 14.04.2
[11:02] <bekks> samba35: "Yes."
[11:12] <samba35> bekks: thanks
[11:12] <samba35> if i am using  proxy /relay do i have to use that proxy's certificate ?
[11:13] <bekks> No, since you want to configure your own mailserver, not the proxy server.
[11:14] <samba35> my ubuntu mail server is behind utm/firewall /proxy
[11:15] <samba35> in that case do i have to use that utm/firewall/proxy's certificate ?
[11:15] <samba35> or i have to use dovecot's certificate
[11:16] <samba35> my mail server use relay to deliver mails
[13:12] <pi-> I'm seeking to remotely (from my MacBook) modify files in my VFS's /var/www/html.  I'm looking at using sshfs to do a remote mount. I can get it working for mounting ~ but not /var/www/html
[13:13] <pi-> sshfs  pi@46.101.38.186:/home/pi  ~/RemoteFS/droplet_home    <-- works, asks me for my remote pi password
[13:13] <pi-> sshfs -o allow_other root@46.101.38.186:/var/www/html ~/RemoteFS/droplet_webroot   <-- asks me for my remote root password, but rejects it even though I know I'm typing it in correctly
[13:14] <pi-> ah I have disabled remote root access!
[13:14] <pi-> d'oh
[13:15] <pi-> So what I'm wondering is whether I can move everything from /var/www/html to say ~/web, and symlink
[13:15] <pi-> Does this sound sane?
[13:26] <Jare> remote root..grrr
[13:27] <Jare> change the file owner/group for that dir+files, just ensure that the webserver has permissions to access the files...
[13:30] <pi-> I've just done `sudo mv /var/www/html/wiki ~/web/` -- now I need to do something like `sudo chmod -R u+w ~/web` so that user has write-access. But that doesn't seem to have had any effect.
[13:31] <pi-> `ls -l web/`  displays  "drwxr-xr-x 14 root root 4096 Apr  3 15:56 wiki"   -- it is failing to set the middle '-' to 'w'.
[13:32] <pi-> I'm guessing this is because by doing `sudo`, my 'u' is now going to be root
[13:34] <pi-> Just reading up, the owner of that folder is root.  So I think I need to be changing the owner to pi.
[13:36] <pi-> `sudo chown -R pi web;  sudo chmod -R u+w web;  ls -l web/`  still prints out "drwxr-xr-x 14 pi root 4096 Apr  3 15:56 wiki"
[13:38] <pi-> I do notice everything in ~/web/wiki now has ??w ??? ??? permissions. I've just realised I didn't want to do that. heh. Lucky I took a backup.
[13:51] <sergey> How to setup mail sever on vps?
[14:52] <Voyage> Hi
[14:52] <Voyage> I have googled a lot and found no answer workable answer to this question: How to downgrade from php 5.5.9 to php 5.4?
[15:01] <teward> Voyage: manual compilation of php 5.4 and removal of the version installed from the repositories, likely
[15:01] <Voyage> teward,  if I install php5 manually, it wont be connected to apt-get anymore and I would not be able to install modules and auto integrate them with apache etc?
[15:02] <teward> probably not, no.
[15:02] <teward> Voyage: why do ou need 5.4 anyways
[15:02] <teward> it's "old"
[15:02] <Voyage> ya, some app requires it.
[15:02] <teward> 'some app'
[15:02] <teward> the app needs updating
[15:02] <Voyage> teward,  sugarcrm7.5
[15:03] <Voyage> ok, how about I downgrade/change repository, install php5.4, lock the php5.4 version, change repository to latest again in sources. update?
[15:04] <teward> Voyage: still going to be stuck on bad module versions - the modules would've been updated for the version in the repositories, not the version you've installed
[15:04] <teward> Voyage: i can't believe that sugarcrm doesn't provide an update package for newer PHP, after all they are kinda bound to PHP upstream's versions, soon enough 5.4.x will probably burn
[15:04] <Patrickdk> how did you get php 5.5.9?
[15:04] <Patrickdk> 14.04 is 5.4
[15:04] <Patrickdk> or it is 5.5 isn't it?
[15:04]  * Patrickdk is going braindead
[15:05] <teward> Patrickdk: it's 5.5
[15:05] <Patrickdk> ya, so many issues with php 5.5, expectially from zend
[15:06] <Patrickdk> it's one thing to have app support for 5.5, it's another when php people can't make support for 5.5 so you can support 5.5
[15:06] <Voyage> teward,  so is there a proper solution?
[15:06] <Patrickdk> voyage, it's simple
[15:06] <Patrickdk> you just rebuild the 5.4 or 5.3 php packages for your release
[15:07] <Voyage> rebuild the 5.4 ?
[15:07] <Voyage> Patrickdk,  what do you mean? how?
[15:07] <Patrickdk> I am not going go into how
[15:07] <Patrickdk> as I don't feel like holding your hand for the next x hours to do it
[15:07] <Voyage> Patrickdk,  rebuild manually without apt and repositories?
[15:07] <Patrickdk> that is what google is for and all the webpages that tell you
[15:07] <Patrickdk> why would you do that?
[15:08] <Voyage> Patrickdk,  dont worry, I would do the research. just tell me what do you mean by "rebuild"
[15:08] <Patrickdk> I never said not to use apt, or repos
[15:08] <teward> Voyage: the alternative is to rebuild the debian package - get the older version from Debian or the last version in Ubuntu repositories to have 5.4, rebuild.
[15:08] <teward> the tricky part is a LOT of the php modules in the repositories aren't exactly in the php5 source package
[15:09] <Patrickdk> anything that touches php will likely need to be rebuilt
[15:09] <Patrickdk> but likely, you don't use a lot of them
[15:09] <maxb> Though, to be fair, for a complex package like PHP, rebuilding a different series package probably isn't something someone who hasn't previously worked with Debian packaging wants to confront
[15:09] <Patrickdk> so probably php base, and 2-3 other packages
[15:09] <Patrickdk> maxb, why?
[15:09] <Patrickdk> rebuilding php is extreemly simple
[15:09] <teward> Patrickdk: apache might hate it
[15:10] <Patrickdk> teward it shouldn't at all
[15:10] <Patrickdk> can't think of a single thing apache would hate about it
[15:10] <teward> Patrickdk: you'd still need to apt-pin the version down - otherwise it'll just overwrite again
[15:10] <teward> rebuilding also requires a build environment for it
[15:10] <Patrickdk> no
[15:11] <Patrickdk> for version, just add a 1: infront of the version, done
[15:11] <Patrickdk> or pin it, but that can be annoying
[15:11] <teward> rebuilding it as should be done needs the build environment unless you want to install all the build dependencies
[15:11] <Patrickdk> rebuilt it in a ppa
[15:11] <Patrickdk> no build env needed
[15:11] <Voyage> Patrickdk,  teward  what do you both mean by "rebuild" and what involvment would the repos have in it?
[15:11] <teward> Patrickdk: there's probably a reason the person who had the php oldstable PPA stopped after 13.10
[15:12] <teward> i could ask, but i wonder if it's because build deps might be to 'new' or such
[15:12] <Patrickdk> I don't know, could look
[15:12] <Patrickdk> personally I build my own apache and php's
[15:12] <teward> ran into the problem for the znc package, in a PPA, as well, older than 14.04 you have to go grab additional PPAs for g++, have to backport things, etc.
[15:12] <Patrickdk> been a requirement for years
[15:12] <teward> but the reverse can be true also, build deps drop things that're needed, problems arise, etc.
[15:14] <Patrickdk> https://help.launchpad.net/Packaging/PPA/Uploading
[15:14] <Patrickdk> best overview url I can locate :(
[15:14] <Patrickdk> but that is more about uploading
[15:14] <Patrickdk> not really rebuilding
[15:14] <teward> Patrickdk: needs a launchpad account, PGP keys uploaded, etc.  -  not for the faint of heart either
[15:14] <Patrickdk> seems most people just post how to rebuild locally
[15:14] <Patrickdk> heh, that isn't hard
[15:15] <Patrickdk> and it makes distribution so much easier
[15:15] <Patrickdk> and updating
[15:15] <Patrickdk> vs attempting to make your own local repo
[15:15] <teward> Patrickdk: didn't say squat about local repo xD
[15:22] <Voyage> Patrickdk,  teward  what do you both mean by "rebuild" and what involvment would the repos have in it?
[15:24] <tarvid> installing 14.04 on a dell r410 with one 160 gb drive and two 500s. Can install first on the 160 as LVM and then add the 500s?
[15:24] <tarvid> make thar r310
[15:25] <Walex> tarvid: why not?
[15:25] <Voyage> what will this do sudo sed -i.bak "s/trusty/precise/g" /etc/apt/sources.list ?
[15:25] <tarvid> the two 500s are now set up (maybe0 with ESXi, can I just blow those away
[15:26] <Patrickdk> Voyage, that will cause LOTS of breakage
[15:26] <Voyage> Patrickdk,  hm. but what would this do ?
[15:27] <Patrickdk> hopefully? nothing, except not let you update/security patch/...
[15:27] <Patrickdk> it will attempt to download/install from 12.04 instead of 14.04
[15:28] <Voyage> Patrickdk,  you mean, it will change repositories to old ones?
[15:28] <teward> Voyage: lots and lots of damage, it'd set your sources to use Precise instead of Trusty and break a ton of things
[15:29] <Voyage> Patrickdk,  how about I use sudo sed -i.bak "s/trusty/precise/g" /etc/apt/sources.list , install php 5.4 old version, lock it, and then change to new repositories?
[15:29] <Voyage> teward,  ^
[15:30] <Patrickdk> why do all that?
[15:30] <Patrickdk> why not just INSTALL 12.04
[15:30] <Patrickdk> since your doing the same thing, but making it much much more broken that way
[15:31] <Voyage> Patrickdk,  ya, but I already have a server assembled with latest ubuntu
[15:31] <Voyage> ubuntu should provide a way.........
[15:32] <Patrickdk> it does provide a way
[15:32] <Patrickdk> you can download it, rebuild it, and distribute it
[15:32] <Patrickdk> ubuntu does will not support it, so there is no point in them doing it
[15:32] <Voyage> Patrickdk,  ok. when you say "download it" do you mean downloading a .deb package and installing it???
[15:33] <Patrickdk> no
[15:33] <Voyage> Patrickdk,  then?
[15:34] <Voyage> Patrickdk,  what do you meant? download what?
[15:34] <Voyage> rebuild what?
[15:36] <Voyage> Patrickdk,  teward  come one people, whats so hard about it? what do you guys actually mean. I am having trouble understanding the terminology here. What is it suggested to be downloaded? if its not a .deb. what is it?
[15:36] <Voyage> a .gz.tar?
[15:36] <Voyage> are you guys talking about compiling it from source?
[15:38] <maxb> Effectively, yes.
[15:40] <maxb> "ubuntu should provide a way" you say - well, it'd be more convenient for you, sure, but maintaining multiple versions of software increases the burden of support on Ubuntu quite significantly
[15:41] <maxb> It's easy to see why it's not considered an efficient use of developer and tester time
[15:43] <Patrickdk> this *is* something rhel does
[15:43] <Patrickdk> though, only lately
[15:44] <Voyage> maxb,  hm
[15:44] <Voyage> ok. I tried this: is it a good way despite error? I tried this but its not working. echo "deb http://php53.dotdeb.org stable all" | sudo tee -a /etc/apt/sources.list                    Err http://php53.dotdeb.org stable/all i386 Packages              W: Failed to fetch copy:/var/lib/apt/lists/partial/php53.dotdeb.org_dists_stable_all_binary-amd64_Packages  Invalid file format
[15:46] <Voyage>  why doesnt this works? echo "deb http://php53.dotdeb.org stable all" | sudo tee -a /etc/apt/sources.list
[15:47] <maxb> You appear to now be using some site's pre-built packages of a different PHP version. The fact that what you've said includes 'stable' rather than any Ubuntu codename strongly suggests you're trying to use something targetting Debian on your Ubuntu system. If it works at all, it'll be more by luck than intention
[15:48] <Voyage> maxb,  hm. ok is there ANY way to install / php 5.4 by a repository and lock the upgrade?
[15:49] <maxb> No, unless you find someone who is specifically building such a repository.
[15:51] <Voyage> so  http://php53.dotdeb.org stable all wont work. and what about pool?  http://snapshot.debian.org/package/php5/5.4.39-0%2Bdeb7u2/
[15:52] <Voyage> max?
[15:52] <maxb> Now you're just randomly grasping at irrelevant links you happen to find
[15:53] <Voyage> because I cant find a usefull one
[15:54] <Voyage> maxb,  I really wonder what does the "rebuilding" means when Patrickdk  and teward  say it but do not explain it
[15:54] <maxb> The notion of compiling software?
[15:55] <Voyage> from source?
[15:55] <Voyage> like in a gz.tar?
[15:55] <Voyage> maxb,  thats what Patrickdk  and teward  dont tell..........
[15:57] <maxb> Well, yes, from what else would you build software? That's (by us) assumed to be not worth mentioning.
[15:58] <Voyage> why I am getting the error? sudo deb http://snapshot.debian.org/archive/debian/20150329T213024Z/       sudo: deb: command not found
[15:58] <maxb> Sorry, it looks like you're looking for something (namely, pre-built packages of a specific version of PHP matched to a specific version of Ubuntu) that doesn't seem to exist because no-one has made that
[15:59] <Voyage> maxb,  hm. so if I installed php 5.4 by dpkg -i .deb or build it from source, I would not have the advantage to manage related modules / integration by repository and apt-get?
[16:00] <maxb> You're getting that error because you typed some meaningless string into a shell
[16:00] <maxb> With sudo at the start, no less. You probably want to be a bit more careful about what you run as root
[16:01] <maxb> Right, you don't get the advantages of a supported repository of integrated software if no supported repository of integrated software exists for the combinations of versions you want to use
[16:01] <Voyage> hm
[16:02] <Voyage> maxb,  I followed http://stackoverflow.com/questions/17128602/apt-get-identify-all-old-version-numbers-of-a-package           answer 1. I wonder what should be replaced for     "deb http:// ......"
[16:07] <Voyage> this is the correct sudo echo "deb http://snapshot.debian.org/archive/debian/20150329T213024Z/ stable all" | sudo tee -a /etc/apt/sources.list
[16:08] <maxb> No, in so many ways
[16:08] <Voyage> ..
[16:08] <Voyage> it just adds the repo. doesnt it
[16:09] <Voyage> to sources.list
[16:11] <maxb> So the first thing which is wrong with it is you're trying to add a Debian package source to an Ubuntu system - which, granted, is something that *might* work *sometimes*, but really if you're resorting to that you should just build from source rather than just hoping for compatibility
[16:12] <maxb> The second thing that is wrong is 'sudo echo' -- why would you bother sudo-ing a command that doesn't require any kind of elevated privileges?
[16:13] <maxb> The third thing which is wrong is that you're trying to use snapshots of the Debian stable release, which is pretty much static anyway, so makes no sense
[16:14] <Voyage> hm
[16:15] <Voyage> maxb,  i guess to write inside /etc   would require a root
[16:15] <maxb> In the interests of trying to work this conversation around to a more productive direction, let me summarize: You really want something pre-made. But you've searched for some time and it doesn't seem to exist. It's probably best to accept that and reconsider your direction.
[16:16] <maxb> Yes but that command isn't writing inside /etc -  which you seem to have partially recognized since you do have the actually relevant sudo before tee
[16:18] <maxb> As far as I can see your options are basically: 1) Use the PHP 5.5 that ships with current Ubuntu releases, or 2) Compile PHP 5.4 from source
[16:18] <Voyage> hmm
[16:20] <Voyage> maxb,  the only thing I get afraid is if I install php5.4 by source. many modules like sudo apt-get install php-curl or others  that integrate with apache auto matically will be a big headache for me
[16:20] <Voyage> maxb,  am I correct?
[16:20] <Voyage> as a side error: W: Failed to fetch http://snapshot.debian.org/archive/debian/20150329T213024Z/dists/stable/Release  Unable to find expected entry 'all/binary-amd64/Packages' in Release file (Wrong sources.list entry or malformed file)
[16:21] <maxb> You won't be able to install modules with apt-get to work with a PHP built from source
[16:24] <maxb> Though many modules are shipped as part of the main PHP source tarball, and will build with it if the relevant library dev packages are available.
[16:24] <maxb> Some may need additional flags passed to PHP's configure script to enable
[16:26] <Voyage> maxb,  thats the headache
[16:26] <Voyage> maxb,  ok. which ubuntu version ships with php 5.4/
[16:26] <Voyage> ?
[16:26] <maxb> None which are currently still supported
[16:27] <Voyage> 12.  something?
[16:28] <Patrickdk> 12.04 is 5.3
[16:29] <Voyage> whats for 5.4?
[16:29] <maxb> Some releases between 12.04 and 14.04 shipped with 5.4, however all such releases have passed their End of Life
[16:31] <Voyage> maxb,  its 13 then?
[16:32] <Voyage> maxb,  i see amazon has 64-bit ubuntu/images/ebs/ubuntu-quantal-12.10-amd64-server-20140202 - ami-006a0930        option to launch instance
[16:35] <Patrickdk> that would be unwise
[16:36] <maxb> I'm quite deliberately not saying the exact version number because I can't consider deploying something afresh on an OS version that has already reached EOL to be a sensible move
[16:36] <Voyage> unwise? why? because its old?
[16:36] <Patrickdk> cause it is NOT MAINTAINED
[16:36] <Patrickdk> you will NEVER get securty updates for it
[16:36] <Patrickdk> it already has known vulnerabilities
[16:36] <Voyage> hm
[16:37] <Voyage> so best solution is to compile by source or dpkg -i deb php.5.4
[16:37] <Voyage> Iam going for the later
[16:37] <Voyage> I never compiled anything fromsource
[16:37] <Voyage> atleast a deb would be installed auto on default locations
[16:37] <Voyage> I guess centos maintins versions
[16:38] <Patrickdk> centos doesn't maintain anything
[16:38] <Patrickdk> that is the whole point of centos
[16:39] <Voyage> who does ?
[16:39] <maxb> CentOS is an exercise in de-branding and rebuilding mostly unmodified source from RHEL
[16:41] <Voyage> maxb,  am. this resulted in a promising message; add-apt-repository ppa:ondrej/php5
[16:45] <Voyage> hm
[16:54] <Voyage> ah. no use. my apt policy is still the same
[16:54] <Voyage> having 5.9
[16:54] <Voyage> going for db
[16:54] <Voyage> deb
[16:57] <teward> Voyage: php 5.4 is in his oldstable ppa
[16:57] <teward> Voyage: but that isn't updated past 13.10
[16:57] <teward> read: https://launchpad.net/~ondrej/+archive/ubuntu/php5-oldstable
[16:58] <teward> Voyage: 12.10 had 5.4, but it's not supported.  12.04 + ondrej's php5-oldstable PPA would give you 5.4
[16:58] <teward> but no guarantees on it having everything you need
[16:58] <teward> I remember 12.10 getting 5.4, 'cause one of my patches made it into Debian's packaging to switch php5-fpm from a TCP listener to a linux socket
[16:58] <teward> s/linux socket/unix socket/
[16:59] <Voyage> teward,  i see
[16:59] <Patrickdk> I just normally change it to socket myself
[16:59] <Patrickdk> nice the default is that way though
[16:59] <teward> Patrickdk: indeed, it changed with 5.4rc1 iirc
[16:59]  * teward pulls the Debian changelog
[17:00] <Patrickdk> this php 5.5 issue is the ONLY reason I haven't upgraded customer facing machines to 14.04 yet
[17:00] <Patrickdk> but that isn't so much a ubuntu issue, as it is zend/php
[17:00] <Voyage> so whats the easiest way to install and maintain 5.4? where to download. source or .deb? where from"?
[17:01] <teward> Patrickdk: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=650204 is the bug where it was changed.  Thanks to Clint Byrum (SpamapS) for helping get that patch up to debian back when I wasn't as fluent as I am now xD
[17:01] <teward> s/bug/php5-fpm listener/
[17:01] <teward> Patrickdk: i don't know if they've reversed it... but i could check xD
[17:02] <Patrickdk> oh nice, zend JUST released support for php 5.5 a few days ago
[17:02] <Patrickdk> that only took 2+ years
[17:03] <teward> wow my vivid vm is outdated o.o
[17:03] <teward> oh well
[17:04] <teward> Patrickdk: yep, php5-fpm still listens on a socket by default :P
[17:05] <Voyage> can anyone tell where to download (I just want to do it wrong experiments)
[17:06] <Patrickdk> and it looks like it has backlog support now
[17:06] <Patrickdk> Voyage, there is none
[17:06] <Patrickdk> you have to create it yourself
[17:06] <Patrickdk> no one yes has cared enough, to attempt it
[17:06] <Patrickdk> or maybe have, but gave up
[17:07] <teward> I may be willing to try and grab Quantal's package and repackage for trusty in a PPA, but I won't go past one attempt
[17:07] <teward> i'm lazy after all xD
[17:07] <Patrickdk> tried, the configure script is horrible
[17:07] <teward> quantal was the last version to support 5.4 anyways
[17:07] <Patrickdk> 5.4 configure might be better
[17:08] <teward> Patrickdk: um... i meant the actual 5.4 package
[17:08] <teward> that was in quantal, try and forward port it
[17:08] <teward> xD
[17:08] <Patrickdk> but there have been new security patches CVE's that need to be ported to it
[17:09] <teward> blah
[17:09] <teward> i hate 5.4
[17:09] <teward> why can't app devs actually update their things
[17:09] <teward> Patrickdk: i could just pull 5.4.39 from upstream
[17:10] <Patrickdk> yep
[17:10] <teward> try and wrap the 5.4 debian/ around it from quantal
[17:10] <teward> but still
[17:13] <Voyage> Patrickdk,  no I mean, how to install php 5.4 from source? what you call rebuild
[17:14] <Patrickdk> those are two totally different things
[17:14] <Patrickdk> install from source, just follow php's instructions
[17:14] <Voyage> Patrickdk,  which link?
[17:14] <Patrickdk> php.net
[17:16] <teward> Patrickdk: and I give up - there's too much of a delta
[17:17] <teward> (half the patches fail
[17:17] <Patrickdk> :)
[17:18] <teward> could try ondrej's source but i'm lazy as i said earlier
[17:19] <teward> ooo wait there's build fails there that's why
[17:19] <teward> nevermind
[19:16] <Voyage> I just installed php by source. apache is not displaying my .php files (its showing blank pages ) what can be wrong?     apache does not knows if php is isntalled.I gues
[19:17] <replman> Hi! I have a cronjob that executes a backup script as user 'backupchef'. In backupchef's home/.ssh i have id_rsa.pub for ssh. When executing the script manually logged in as backupchef, it works. When cron executes the script i get a password failed from the ssh.
[19:21] <bekks> Voyage: You downgraded your php5 installation manually, as OerHeks just told in #ubuntu?
[19:21] <Voyage> ya.
[19:21] <Voyage> I have php 5.4
[19:21] <Voyage> but it should run
[19:21] <Voyage> as it is a php...
[19:21] <bekks> LOL, no :)
[19:21] <Voyage> its just not installed by a repository
[19:22] <Voyage> thats the only difference
[19:22] <Voyage> right?
[19:22] <Voyage> or no?
[19:22] <bekks> As it is PHP, it is more a matter of star constellation, water temperature and some voodoo.
[19:22] <bekks> In #ubuntu you just made sure that /usr/lib/apache2/modules/libphp5.so is missing.
[19:29] <Voyage> bekks,  so what do I need to do?
[19:30] <bekks> Looks like you need to build the missing modules as well.
[19:30] <bekks> Cant you just use a more recent php version from the repos?
[19:34] <Voyage> nop
[19:34] <Voyage> bekks,  which modules? modules on apache side or php side?
[19:35] <bekks> Voyage: You are missing the php module for apache.
[19:35] <Voyage> hm
[19:37] <Voyage> ok  how to uninstall php that I installed by source?
[19:37] <bekks> Please keep it in one channel :)
[19:37] <Voyage> ok
[19:37] <Voyage> isnt it the same channel?
[19:38] <Voyage> oh. yes. messages dont pass
[19:38] <Voyage> rigth
[19:38] <bekks> No. This is #ubuntu-server, while you are in #ubuntu, too :)
[19:38] <Voyage> ops
[19:39] <replman> ok, got my script to work with cron.
[19:51] <r0x> Hi. I'm configuring a server and for some reason I want that a certain user can only view a particular folder and that can execute only a set of program/commands (e.g.: I don't want that user X can execute ifconfig, ip, ps and even ping). How I can do that?
[19:51] <r0x> I have already asked to #ubuntu channel
[19:52] <bekks> r0x: The answers are the same as in #ubuntu ;)
[19:54] <r0x> ok, but after I do chroot a certain user can still execute all the commands available on my system?
[19:54] <r0x> such trying to ping other hosts on the network
[19:57] <r0x> bekks: he can execute only the commands that are available in the bin folder that I create in the chroot environment?
[19:57] <bekks> Thats what a chroot is for.
[19:58] <bekks> But you cannot hid /proc and /sys from the user. Your chroot will be dysfunctional.
[19:58] <r0x> uhm
[19:58] <r0x> so i should create a vm?
[19:58] <JanC> you could use containers to get even more protection
[19:59] <JanC> without needing a VM
[19:59] <bekks> r0x: A VM will not help you from hiding /proc and /system.
[19:59] <bekks> And containers dont, too.
[19:59] <r0x> ok, but if someone see /proc and /system of the vm I don't care
[19:59] <r0x> I only want to hide the configuration of the real machine
[20:00] <r0x> JanC: with containers I can do what I asked for?
[20:01] <JanC> also, to prevent people from executing certain applications, you only need to set/revoke permissions?
[20:08] <r0x> JanC: I don't understood when you said "you only need to set/revoke permission?"
[20:20] <JanC> r0x: you can set different permissions depending on the user?
[20:20] <JanC> or group
[20:20] <r0x> no
[20:20] <JanC> etc.
[20:20] <r0x> Same for all
[20:20] <JanC> ?
[20:21] <r0x> I don't need that kind of flexibility
[20:21] <JanC> eh?
[20:21] <JanC> you were asking for it...
[20:22] <r0x> I just have a set of users that have the same permission
[20:22] <JanC> that sounds like a "group"
[20:22] <r0x> Yes
[20:23] <JanC> so use it
[20:24] <r0x> I found this on the internet: https://openvz.org/Main_Page
[20:24] <bekks> r0x: Seeing /proc and /sys will enable users to find out a lot about the effective configuration of the host.
[20:24] <bekks> r0x: openvz are containers - and they still reveal a lot about the configuration of the host.