=== markthomas is now known as markthomas|away === Lcawte is now known as Lcawte|Away [02:16] start -v mongodb says start: Job failed to start [02:16] there are no logs anywhere that I can find. Where to look? [02:17] try /var/log/upstart/mongo* ? [02:17] nothing in /var/log/upstart/ nothing in /var/log/syslog [02:17] sarnold: I wish :( [02:17] just run mongo manually and see what happens [02:18] Patrickdk: works great :( [02:18] jrwren: you could try running fatrace to see what files are accessed [02:18] even invoking with start-stop-daemon the way the upstart job does works great. [02:18] you are running it as the same user as the init script uses? [02:18] fatrace is a good idea. [02:18] start-stop-daemon has a user option, so yes? [02:21] even adding debug to init/mongodb.conf gives no log [02:21] anything in dmesg? [02:22] I understand if the numa memory allocation policy isn't set correctly for mongo it'll just fall over with an oom [02:23] nothing obvious. this is in an lxc and so dmesg is showing me host stuff. Still, nothing with a recent timestamp [02:24] and mongo runs fine if I invoke it manually. upstart seems to be the problem? [02:25] hi [02:26] oh man that pokes a neuron.. [02:26] sarnold: there is an issue with running mongo in a host if its already running in lxc, but this is not that :( [02:27] I'm using a ubuntu server 14.04, nginx and php-fpm and was wondering where the best place is to install a php application? One developer will need access to it using sftp, so i was thinking /srv/www/my-app and give him access to this directory [02:27] jrwren: ah! that's what it was. thanks.... [02:27] is that a sound way to do it :P? [02:28] shellox: yeah, it's as good a place as any. debian guidelines might suggest stuffing it somewhere under /var/www but I never really liked that location for locally installed web applications. [02:28] jrwren: but dang. :) [02:30] is there a way to put upstart into super debug mode? [02:31] or /sbin/start into debug verbose++ mode? [02:31] sarnold: Is it good practice to add a user to the www-data group, so he has write access to directory? [02:33] shellox: I'd rather have the directory and files owned by the developer, and make sure the www-data user or group can read the files. I think webservers should only have write access to their log files and databse sockets... [02:33] webservers shouldn't have to write to them ever [02:33] your cgi/fcgi might have to, and should be limited [02:34] it's nice to do something like git or so [02:34] and just have it continuously get updates pushed to it [02:35] no need to worry about dev owning files [02:36] strace of the /sbin/start is a bit interesting [02:36] http://paste.ubuntu.com/11216946/ [02:37] not really, to be expected [02:37] as strace doesn't follow forks [02:38] yeah? the EAGAIN on reads to the /com/ubuntu/upstart socket is to be expected? [02:39] can't tell, it's all ... [02:39] but I don't see that [02:39] i'll paste again with -f and -s 1024 [02:39] it sent a message, it worked [02:40] sarnold: I see, that sounds plausbile. Thanks [02:40] http://paste.ubuntu.com/11216993/ [02:41] looks like it's working fine [02:42] I didn't suggest strace since I expected it to be useless; iirc start just contacts the running pid 1 and asks -it- to start a new job, and upstart uses ptrace extensively when starting new jobs, and .. throw containers inthe mix and I really doubt strace will demystify anything. [02:43] ok. maybe trace pid 1? [02:43] no [02:43] I haven't got a clue if that's allowed, and I wouldn't try it on a system I needed to stay alive :) [02:43] you need to trace the mongodb pid [02:43] mongo is fine. [02:43] there is no mongo pid [02:43] sure there is [02:43] if I start mongo manually, it runs [02:44] if I start mongo by using start-stop-daemon exactly as is in the upstart script, it runs. [02:44] upstart is failing. [02:44] maybe throw the strace -f on that start-stop-daemon [02:44] but that actually works. [02:44] oh, on it in the upstart job? [02:44] again, since upstart uses ptrace I'm worried it might not be helpful... [02:48] oh! [02:48] this is a user lxc [02:48] and mongodb upstart jobs has [02:48] limit nofile 64000 64000 [02:48] which failed [02:49] strace -p 1 showed me. [02:49] that was it. [02:49] woo! [02:49] HUGE thanks for helping. [02:49] i don't know if that is a bug or not. [02:49] it seems worth filing a bug report [02:49] ok. [02:49] but I don't know if it ought to be filed against lxc, mongo, or upstart :) [02:50] ha! that was about to be my next question [02:50] heck file it against all three ... [02:50] i'll have to learn how to LP to file 1 bug against all 3. [02:51] file it against one package, then hit the "also affects distribution/package" button, and add in another one in the 'source package name' field [02:51] thanks. [02:53] time to bail, have fun jrwren :) [02:53] thanks again. good night. === gema_ is now known as gema === markthomas|away is now known as markthomas [06:05] morning [06:07] i had some problems with mysql, so i unninstalled every mysql packages, i am trying to install mysql-common and it says /etc/mysql/my.cnf.fallback does not exists [06:07] indeed, i deleted that directory === markthomas|away is now known as markthomas [07:42] hxm: purge mysql-common first. Otherwise it'll keep your "modifications". [07:43] hxm: in fact, make sure to purge *all* MySQL related packages if you're going to go to the extreme of removing stuff manually first. === Lcawte|Away is now known as Lcawte [08:29] which permission should the key file for my SSL cert have? [08:29] i found this guide [08:29] https://help.ubuntu.com/lts/serverguide/certificates-and-security.html [08:29] and copied it to /etc/ssl/private === ashleyd is now known as ashd [10:13] In what circumstances is it required to have nfs shares inside a subdir like this: /nfs/host1/share1 and nfs/host2/share2/ instead of having everything in /nfs/share1 and /nfs/share2 === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd [11:50] I have this problem http://paste.ubuntu.com/11223995/ which is a headache for me [11:52] in the /var/log/mysql/error.log the relevant line is ERROR: 1062 Duplicate entry 'innodb' for key 'PRIMARY' [11:53] i thought i already deleted database === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd === ashleyd is now known as ashd [14:07] matsubara_: around? Would you mind driving SRU verification for bug 1443735 for me please? It'll be a while yet - an existing SRU needs to clear before I can upload it and it'll probably sit in the SRU queue for a while after that anyway, but I thought I'd ask you in advance. [14:07] https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/1443735 [14:07] * rbasak wonders where the bot is. [14:10] * matsubara_ looks [14:13] rbasak, ok. I can do that [14:15] matsubara_: thanks! [14:26] how to write automated scripts for linux with max possibilities and control? [14:27] Voyage: very carefully. [14:27] jrwren, in what way [14:27] Voyage: that is how I write automated scripts. I do it very carefully. [14:28] you know scripts that would do stuff that I do in commandline. rsync ssh, copy files, change configs, connect to another server, do stuff, return back. what ever....... [14:29] how to do it? [14:29] how do you write those [14:30] jrwren, bash or what? [14:30] I heard doing this with pythong was a smarter way [14:31] Voyage: bash is fine. its nice to have easy access to gnu coreutils things. [14:31] Voyage: I recommend you start with bash and use something else only if you need it. [14:31] cant python do what bash can? [14:31] Voyage: I love python too. I'd not call it "a smarter way" [14:31] why [14:32] Voyage: it depends. [14:32] Voyage: you'll find in tech, a lot of people have strong opinions and like to tell others what they should be doing without any idea of individuals actual needs. [14:33] Voyage: because many things can be done simply in bash which aren't quite as simple in python, or... require some external python dependency. [14:33] hm === ashleyd is now known as ashd [14:35] can anyone give an example of things that cannot be done by bash and we need python to do so? [14:37] Voyage: there are no absolute answers to these qeustions. [14:37] Voyage: python can spawn threads, bash doesn't have primitives for that [14:37] Voyage: BUT, python has its GIL, so threads aren't as useful. [14:38] Voyage: I highly recommend focusing on solving problems isntead of worrying about differences between python and bash. [14:40] hm [14:45] hey, anyone has an issue with Ubuntu 15.04 not rebooting without a connector monitor? - Any ideas what could be causing it? -- 14.10 rebooted without issues. [14:46] (I'm using ubuntu-server, so no X and I would like to run headless) === ashleyd is now known as ashd [14:53] hackeron: https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/1443735 maybe? [14:54] You should be aware of that and implement the workaround on every headless box anyway. We should have an update which fixes the default soon. [14:54] rbasak: no, not that one - I already have this set on every headless server [14:54] rbasak: this is related to 15.04 and I am guessing maybe systemd - plugging in a monitor makes the server instantly boot [14:55] hackeron: that's interesting [14:56] hackeron: if you figure it out, please let me know. Maybe try a serial USB adaptor to diagnose if that works? [14:56] rbasak: I commented on that original bug back in 2011 [14:57] rbasak: the server is remote somewhere, I am speaking to them on skype and when I reboot the server, it doesn't boot - as soon as a monitor is plugged in, it boots up - nothing in the logs other than:May 19 15:45:20 TimeBox rsyslogd: [origin software="rsyslogd" swVersion="7.4.4" x-pid="1055" x-info="http://www.rsyslog.com"] exiting on signal 15. [14:57] May 19 15:53:14 TimeBox rsyslogd: [origin software="rsyslogd" swVersion="7.4.4" x-pid="1653" x-info="http://www.rsyslog.com"] start [14:58] the rsyslogd start happens the instant a monitor is plugged in - and this did not happen in 14.10 === ashleyd is now known as ashd [15:26] hackeron: nothing in dmesg? [15:26] rbasak: nope, the kernel starts booting the instant the monitor is plugged in - it appears to get stuck in grub [15:26] Ah [15:27] The only logging you'd get from grub is to the console really (practically that means serial) [15:28] trying to boot with nomodeset - but not sure how that will help, if it never starts booting without a monitor :/ [15:29] rbasak: don't have a serial console though - what do they look like these days anyway? - I only have USB ports, heh [15:31] hackeron: yeah I understand. Nowadays the only form I'm aware of are USB<->serial adaptors. I have no idea if grub can use one of those though. [15:31] rbasak: even so, what do I connect to the serial end of the adapter? [15:31] hackeron: a smartphone video of the screen is another possibility, but also impossible here because your screen won't be plugged in [15:31] hackeron: another usb serial adaptor :) [15:31] rbasak: the second I plug a monitor in, it boots :/ [15:31] Yeah [15:32] VGA? [15:32] rbasak: yep [15:32] The only other thing I can think of is to cut the DDC pins with a switch for debugging [15:33] I alot of OOB managment systems do SOL, some ever provide access via ssh.. very nice compared to some java kvm [15:33] It seems a bit of a stretch though I think DDC is the only way grub would know when the monitor gets plugged in === ashleyd is now known as ashd [15:35] rbasak: hmmm, if I set all the GRUB timeouts to 0 (effectively disabling the menu), it seems to boot, or at least it booted now - trying to reboot [15:35] hackeron: maybe also play with https://www.gnu.org/software/grub/manual/html_node/gfxpayload.html? [15:36] rbasak: well, I donno what monitor may or may not be plugged in, so I don't want to hard code anything like that [15:37] rbasak: and this worked fine in 14.10 - so it seems something in grub between 14.10 and 15.04 broke headless boot on Intel Atom and Intel Celeron machines like Shuttles and NUCs - not good [15:39] hackeron: I was thinking of changing it to "text". [15:39] hackeron: agreed it's not good. If it can be verified as a bug in grub or grub packaging I'm confident that it'll get fixed. Just need to pin it down. [15:41] rbasak: will try - this server is in Moscow and I'm in London so coordinating is hard - I have around 70 servers, around 15 of them are experiencing this. Going to change the grub timeouts on them to 0 as a workaround, then assemble one locally and see if I can pin it down [15:41] hackeron: thanks, I appreciate it. [15:46] rbasak: no worries :) - also it seems setting timeouts to 0 isn't enough - it also needs GRUB_HIDDEN_TIMEOUT_QUIET=false [15:47] hackeron: you are doing BIOS serial console redirection, are you? [15:48] aren't doing [15:48] what's that? - I'm not doing anythign special - I did do-release-upgrade to 15.04 and it stopped booting without a monitor [15:48] hackeron: fairly common on headless boxes. The BIOS presents a serial device and redirects it to the monitor/keyboard. [15:49] If that is enabled then I wonder if the BIOS is causing serial output to hang until the monitor is connected for example. [15:49] rbasak: it's just an NUC [15:49] hackeron, rbasak, I also experienced grub stuck at menu, when you run update-grub, there is a error message about GRUB_HIDDEN_TIMEOUT_QUIET and other related option not supported enabled at the same time anymore [15:49] I've never handled a NUC physically, so I don't know much about them. === matsubara_ is now known as matsubara [15:50] I just don't follow why grub would care whether a monitor is plugged in. I didn't expect it to speak DDC. [15:50] But I was having problem on making my system boot on a bcache rootfs, so I didn't take too much care of this. [15:50] So I'm wondering if there's some kind of BIOS interaction going on here. [15:50] And serial redirection is the first BIOS interaction I thought of that might be relevant. [15:50] But why would the fact to connect the display make it start .... [15:50] (was on 15.04) [15:51] rbasak: ok, it seems GRUB_HIDDEN_TIMEOUT_QUIET=false isn't enough - need to remove splash and quiet also -- if the bios is doing that, why would removing splash and quiet and setting GRUB_HIDDEN_TIMEOUT_QUIET=false fix the issue? [15:53] rbasak: and why wasn't it doing that in 14.10 or 14.04? [15:53] hackeron: plenty of interactions change between releases. That doesn't necessarily make it a bug in a newer release. [15:54] Hackeron; Do you have this warning when you update grub (translated from french): " Setting GRUB_TIMEOUT to a non-zero value if GRUB_HIDDEN_TIMEOUT is set is not possible anymore" [15:54] hackeron: I am just speculating here. First let's figure out what's going on. Then we can talk about whether it's a bug and where and how it might be fixed. [15:54] kickinz1: no warnings when running update-grub - I have all timeouts set to 0 [15:54] hackeron: I'm suggesting that if you have BIOS serial redirection turned on, try turning it off to help pin down the bug. [15:54] hackeron, OK, sorry fo noise, then. [15:55] hackeron: I appreciate that's difficult in your situation. It's just a suggestion. [15:55] rbasak: I very much doubt the NUC has this feature - this is just a tiny mini PC with an intel celeron CPU - also it's in Moscow -- I'll assemble one locally later today and check [15:56] I have some cheap Atom based boards that do it. [15:56] Don't NUCs have some basic management as well? [15:56] rbasak: not that I know of.. - this also happened on a shuttle with an atom which just has defaults loaded in the bios - it's designed as a cheap desktop [15:57] rbasak: this one: http://www.dabs.com/products/shuttle-slim-xs35v3l-black-barebone-system--atom-d2550-2-x-ddr3-sodi-949D.html?utm_source=google&utm_medium=ppc%20product%20search&utm_campaign=Computing%20-%20Desktops%20and%20Monitors%20-%20Desktop%20PCs&gclid=Cj0KEQjwvuuqBRDG95yR6tmfg9oBEiQAjE3RQNyYMACUOhj9Z06x02P_5OPcqAajBUV7pKRbVrcHVS8aAoM58P8HAQ [15:57] actually it's a v2 with a VGA: http://us.shuttle.com/barebone/Models/XS35V2.html [16:05] with an Apache web server is there a way to refresh the configurations (like how nginx can do `service nginx reload` and refresh the configurations without booting current connections or having the instance shut down)? [16:05] (but close down the apache instance) [16:06] teward: graceful [16:07] teward: apachectl has a graceful option [16:08] jrwren: OK, so that will not require a restart of the Apache process, and will gracefully apply the updated config for future connections without disrupting already connected connections? [16:08] that's the problem (can't afford downtime!) [16:08] i have to say ubuntu 15 ruined my day [16:09] joking, but still true [16:09] https://httpd.apache.org/docs/2.2/programs/apachectl.html yes [16:09] " This differs from a normal restart in that currently open connections are not aborted." [16:09] jrwren: ahhh, that's hyper important, thanks. [16:10] i'm an nginx guy hence my asking :/ [16:10] :P [16:10] jrwren: stupid other question: what's the syntax to enforce SSL server side ordering in a config. [16:10] in nginx it's ssl_prefer_server_ciphers, but no clue what it is in Apache [16:10] (getting stuff dumped on me is blah) [16:12] teward: SSLHonorCipherOrder on [16:12] teward: https://httpd.apache.org/docs/current/mod/mod_ssl.html double check that its what you want. [16:22] rbasak: an update, after some trial an error, it seems only this is required to make these servers boot: GRUB_CMDLINE_LINUX_DEFAULT="nomodeset" [16:24] rbasak: so it seems like a kernel bug in that case? [16:25] in fact this works too: GRUB_CMDLINE_LINUX_DEFAULT="nomodeset quite splash" [16:25] jrwren: awesome, that's exactly what we needed. Thanks again :) [16:28] hackeron: could be a kernel bug. Can you try the utopic kernel on vivid to pinpoint that? [16:31] quiet* [16:33] rbasak: sure, let me try - I believe I just change GRUB_DEFAULT=1 [16:34] hackeron: yep - GRUB_DEFAULT. Though I'm never sure what 1 will do with older kernels being in a submenu now, so I do it by text: http://askubuntu.com/a/216420/7808 [16:34] I match the exact text strings from the existing /boot/grub/grub.cfg. [16:34] Then update-grub. [16:35] '>' is for a submenu [16:57] rbasak: for some reason it just booted the 15.04 kernel anyway and the sysadmin had to leave - will try to reproduce locally here [16:58] hey guys [16:58] anyone have experience with ILO2 (HP Integrated Lights-Out 2) ? [16:58] hackeron: OK. I'm heading out now but will stay online and will check back later. If it does turn out to be a kernel issue, please file a bug - "kernel modesetting hangs headless machines until monitor is plugged in" or something. They'll probably want hardware details. [16:59] I'm trying to install my own ISO (OS) rather than using a cpanel with pre-set ISO's I'm not sure how exactly I can remotely install my own custom ISO [17:00] hackeron: if you wanto dig further (we'd love it if you did) then https://wiki.ubuntu.com/Kernel/MainlineBuilds and https://wiki.ubuntu.com/Kernel/KernelBisection will hopefully help pin it down to a single commit. [17:02] in the ILO2 web management I have this thing called "Virtual Media Applet" But i just get java error [17:04] rbasak: thank you, I'm just buiding a new NUC here to try to reproduce the problem first :) === Lcawte is now known as Lcawte|Away === Lcawte|Away is now known as Lcawte === pgraner is now known as pgraner-food [17:47] jKaideN: using windows/IE on the client side? if so, that should work [17:47] yeah i am not working though [17:48] Could not initialize class com.sun.deploy.net.protocol.https.Handler$Intializer [17:50] Ah disabled TLS 1.1 + 1.2 on Java [17:50] it's working now [17:53] Ubuntu Server 15.04 or Ubuntu Server 14.04.2 LTS ?? [17:55] rbasak: argh! - I have the same NUC here but a different revision and cannot reproduce the problem here, but 15 of 60 servers have this problem now and they are in client locations so can't really ask them to keep rebooting while I experiment :( - going to try the workaroud and see if the problem goes away for them all [18:07] hackeron: a higher or lower revision? I wonder if it was a BIOS bug that got fixed? [18:07] rbasak: same bios version, different hardware revision [18:08] OK, I guess not then. [18:19] Hi - Please, let me know a good successor for emule? [18:21] Hey guys anyone here I got a quick question regarding "Virtual Media" [18:21] now, i'm installing Ubuntu Server on my remote dedicated server [18:21] I've got access to KVM switch which has things like remote console to server and this thing called "Virtual Media" [18:22] i've located the virtual media to the ISO i downloaded (ubuntu server) on my client local machine [18:22] Does this upload the iso ? because the iso is around 600 MB and my upload speed is really slow [18:23] was wondering how is the server reading the file from my local PC without me having to upload it ?? [18:36] rbasak: the plot thickens - I managed to reproduce the problem, but only when doing do-release-upgrade from 14.04 -> 14.10 -> 15.04 -- if skipping 14.04, there are no boot problems - how bizare :/ [18:44] hackeron: this is the grub thing, right? can you diff -r /boot between a system exhibiting the problem and another not? === pgraner-food is now known as pgraner [18:59] jrwren: will do, just helping a client get a system back up and running - thankfully the workaround fixes the immediate issue [19:09] jKaideN: yes, will be slow [19:10] pmatulis, yep i'm setting up right now, um i've got 2 network interfances i've just setup eth0 as primary [19:10] how would i know if thats the correct one ? [19:10] and im stuck at "partitioning disks" [19:11] stuck how? [19:11] Guided - Use entire disk ? [19:11] so many options [19:11] or should i be doing manual for this [19:11] server has 1 500GB HDD [19:11] jKaideN: depends what you want in the end [19:12] jKaideN: do you need any special partitioning? [19:12] nope [19:12] I don't [19:12] jKaideN: choose 'guided + LVM' [19:12] Guided - use entire disk and set up LVM ? [19:13] yep [19:13] then accpet the next few questions [19:13] (yes) [19:14] it's asking for volume group to use for guided partitioning: [19:14] it automatically says "499.8 GB" leave it as it is/ [19:14] yes [19:15] http://i.imgur.com/heR2NoS.png [19:15] is that all good ? [19:16] yes [19:26] upload speed : 47.37 KB/s :( [19:26] #Australia [19:26] ow :/ [19:28] go australia, those packets are taking the scenic route around corrals and whateva [19:31] Hi - Please, let me know a good successor for emule? [19:32] lol and my download is 100 MB/s rofl [19:40] for the nameserver i just set it to 8.8.8.8 [19:40] thats fine ? === NomadJim_ is now known as NomadJim [19:41] that's local-specific [19:41] ? [20:04] hzut: 'amule' [20:51] how should i manage upgrades on the system? which is preferred? [20:51] no auto updates | install security updates auto | manage system with landscape [20:57] jKaideN: The way that fits your requirements. [20:57] Hi everyone [20:57] I've faced this issue https://bugs.launchpad.net/ubuntu/+source/policykit-1/+bug/1447654 [20:58] and tried to install polkit like in workaround described in comment [20:58] I just went with no auto updates i'll porbably want to manage them myself [20:58] but apt-get install polkit-1 hangs on installing udev [20:58] how can I fix that? [21:01] when you first install ubuntu server is it essential to do 'apt-get full-upgrade' ? [21:01] jKaideN: apt-get dist-upgrade [21:01] I use it on cloud [21:02] to be clearer: it's droplet in digitalocean [21:02] jKaideN: full-upgrade isnt even mentioned in the man page. [21:02] bekks, oh i see, is the dist-upgrade any different from normal upgrade [21:03] bekks, in other words why should i be doing dist-upgrade opposed to normal upgrade [21:03] jKaideN: This article explains it: http://askubuntu.com/questions/81585/what-is-dist-upgrade-and-why-does-it-upgrade-more-than-upgrade [21:10] any help?:( [21:17] do i install GRUB boot loader? [21:57] CrustY__: perhaps add a comment to the bug with the information pitti asked for; he'll probably be online in seven or eight hours and might be able to work on it then [22:15] jKaideN: 'apt full-upgrade' will work [22:16] jKaideN: yes, install GRUB [22:16] yep done [22:16] heh, I've never seen full-upgrade before. [22:16] pmatulis: How comes it isnt documented in the man page? [22:16] installing iptables-persistent now [22:16] apt not apt-get [22:17] ah, oh, ok. TIL. :) [22:17] hopefully to have completion soon [22:17] :) [22:18] btw im using ufw will that conflict with iptables ? [22:18] like when i allow something on ufw but accidentally deny in iptables which takes highest priority ? [22:18] jKaideN: ufw writes iptables rules for you [22:18] ufw uses iptables, but you're better of using either ufw for administering iptables, or dont use ufw. [22:18] jKaideN: I'd recommend picking one; hand-writing rules or using ufw, and stick with it... [22:19] ok since i'm not going to be using much rules everything will be kept simple i'll just go with ufw [22:27] I have [22:27] -P INPUT DROP [22:27] -P FORWARD DROP [22:27] is that normal [22:34] is there a way to update python and making sure that two different versions are non-existing? [22:34] jKaideN: what are you trying to do? [22:34] jKaideN: hint: it's best to pretend python3 and python2 are completely different languages [22:35] update current python from 2.7.6 to 2.7.9 [22:35] yes [22:35] jKaideN: the easiest way to do that is to upgrade to vivid. [22:36] jKaideN: alternatively you could compile your own python fro msource for whatever requires 2.7.9. [22:38] things that use python doesn't require 2.7.9 but I'd like to update python for security reasons as well, rather not keep them outdated [22:40] example: fail2ban requires python >= v2.6 (or >= 3.2) [22:40] 2,7,6 fits that.. [22:40] there's not much outstanding for python2.7: http://people.canonical.com/~ubuntu-security/cve/pkg/python2.7.html [22:41] we've rated all those low priority issues [22:42] i should be fine with 2.7.6 ? [22:50] i'm using ufw does this save the table after reboot [22:50] or am i required to install iptables-persistent as well [22:53] also in motd i receive "7 updates are security updates. [22:53] " How do i apply these updates ? through apt-get upgrade ? === Guest38176 is now known as mgagne [23:06] jKaideN: Just use apt-get dist-upgrade, instead of aptget upgrade, always. [23:07] also on syslog i got something like this: [23:08] [UFW BLOCK] IN=eth0 OUT= MAC=00:19:.... SRC=128.8.x.x DST= LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=12690 DF PROTO=TCP SPT=50848 DPT=8333 WINDOW=14600 RES=0x00 SYN URGP=0 [23:09] there's a couple of htem [23:12] lol wtf that ip is dreyfus.umiacs.umd.edu === Lcawte is now known as Lcawte|Away