/srv/irclogs.ubuntu.com/2015/07/18/#ubuntu-server.txt

=== zerick_ is now known as zerick
lordievaderGood morning.08:33
* CiPi wtf, i was disconnected08:33
LartzaCiPi, Are you pasting some huge wall of text to some channel?08:35
CiPiNehhh08:37
CiPiI did /list08:37
CiPiGot excess flood?08:37
LartzaMaybe don't do /list then08:38
Lartza:P08:38
lordievaderHehe, from the irssi help page: Trying to list all the channel names usually causes you to be disconnected from the server with the reason "Excess flood", as usually all 40000 channels form together and server naively attempts to send you them.08:56
* CiPi https://www.youtube.com/watch?v=lUF6klWuB3810:14
=== Lcawte|Away is now known as Lcawte
=== Lcawte is now known as Lcawte|Away
mojtaba1Does anybody know how can I print specific emails from command line? (and also check for new emails all the time?) basically I have a gmail account and I want to be able to print automatically all receiving emails with specific subject.18:45
mojtaba1Does anybody know how can I print specific emails from command line? (and also check for new emails all the time?) basically I have a gmail account and I want to be able to print automatically all receiving emails with specific subject.19:25
bekksYou could setup a satellite SMTP server, receive your email, and use procmail.19:27
StuxwebHi all newbie here. So I have vsftpd set up on my server to allow SFTP login which is working great. I also wanted to enable FTPS for other reasons (optional for my purposes though.)22:40
StuxwebAnyway, while trying to connect via FTPS I get an error: GnuTLS error -15: An unexpected TLS packet was received.22:41
StuxwebI only found one solution which was to revert back to an old version of vsftpd and I think that's not acceptable22:42
StuxwebApparently it was documented as a bug in File Zilla which is the client I'm using but the page for the bug is here https://trac.filezilla-project.org/ticket/8313 which is way out dated.22:43
StuxwebDoes anybody have any experience with this problem? It seemed to be pretty well known. I just couldn't find the solution.22:43
StuxwebApparently they rejected the bug claiming it was a server problem.22:44
patdk-lapare you using nat in there anywhere?22:46
StuxwebOkay this is the latest bug report on it https://trac.filezilla-project.org/ticket/1020722:46
patdk-lapftps does NOT work with nat, won't ever, and is impossible22:46
Stuxwebno I don't think so22:47
patdk-lapno private ips on either side? only public?22:47
patdk-lapwithout any firewalls22:47
patdk-lapguess firewall would be ok if running in pasv mode22:47
StuxwebForgive me I am very ignorant when it comes to networking but22:47
Stuxwebthe server is behind a router22:47
patdk-lapwhat is the ip addresses on both machines?22:47
Stuxwebthe server's ufw is set to enable ftps and sftp22:48
patdk-laphow can it enable ftps?22:48
patdk-lapftps uses all kinds of random ports22:48
patdk-lapunless you configure those ports in your ftps server and in the firewall manually22:48
StuxwebWell I did sudo ufw allow ftps, sudo ufw allow sftp22:48
Stuxweband it accepted the rules..22:48
patdk-lapyes, it will accept the primary port22:48
patdk-lapbut not the data ports22:48
Stuxwebah22:48
patdk-lapbut that only is needed when doing a file transfer to directory listing22:49
patdk-lapor22:49
patdk-lapbasically, ftps is impossible22:49
patdk-lapdue to the limitations of it living in the 70/80's22:49
StuxwebWell the ubuntu server documentation only mentioned that in order to enable ftps simply add one line in the my ftps daemon config file enabling SSL22:49
Stuxweband said nothing more at all about it lol22:49
Stuxwebok22:49
patdk-lapyes, if you are running in active mode22:49
patdk-lapbut active mode won't work with any client side firewalls22:50
patdk-lapor nat's22:50
Stuxweboh ok22:50
patdk-lapso ftps is unusable to use basically outside a local network22:50
StuxwebGotcha. I did not know that22:50
patdk-lapwell, your firewall has to do a lot of stuff to *fix* ftp22:50
StuxwebThat would probably be the problem.22:50
patdk-lapftps blocks that cause it's encrypted22:50
patdk-lapno fix, no work, unless you do it all manually22:50
StuxwebOkay. that makes sense because I am currently at work on a laptop on a secured wireless network.22:51
patdk-lapand manually is normally way over peoples head22:51
StuxwebSo to allow external secured FTP for users I should just allow a user to SFTP and maybe disable shell access?22:52
patdk-lapyes22:52
patdk-lapwell22:52
patdk-lapdepends22:52
patdk-lapthe best way is normally use a ftp server that does sftp, put it on port 2222:52
patdk-lapthen move ssh to a different port22:52
patdk-lapyou could go with real users, with only sftp access, and chroot them22:52
StuxwebOkay well I do my SSH on a different port anyway22:53
patdk-lapbut I really don't like openssh's way to do that, it's rather annoying22:53
Stuxwebheh22:53
patdk-lapor do what I did22:53
patdk-lapand completely wrap the hell around sftp with apparmor22:53
Stuxwebah22:54
patdk-lapwould still be a good idea for whatever ftp server you use22:54
patdk-lapbut can be alittle annoying to get it nice and tight22:54
StuxwebSo that basically controls what files users have access to right?22:54
patdk-lapI wonder if any of the ftp server support apparmour profile changes22:54
patdk-lapmore than that22:55
patdk-lapit controls everything, files, directorys, read, write, execute, socket, ...22:55
StuxwebCool22:55
patdk-lapso just incase they *break* out of the sftp program, they can't really go anywhere22:55
patdk-lapor if chroot is broken, can't see anything22:55
StuxwebGotcha22:55
StuxwebWell that definitely answers my question, thanks man.22:56
Kully3xfhey all - how can I connect to my file server connected to router23:54
Kully3xftried mounting direct over smb but it fails out each time23:55

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!