[08:04] <TAFB> can anyone help me get vnc working on my ubuntu vps?
[08:09] <mybalzitch> TAFB: https://www.homedepot.ca/en/home/p.timer-in-wall-4-hr-countdown.1000770177.html
[08:09] <mybalzitch> oops
[08:09] <mybalzitch> TAFB: https://help.ubuntu.com/community/VNC/Servers
[08:10] <mybalzitch> i suggest x11vnc
[08:10] <TAFB> mybalzitch: thanks, I'll give it a go. I installed x11vnc but it always says connection activly refused
[08:15] <TAFB> I followed the Vivid+ instructions, when I try and connected with tightvnc is says the target machine actively refused it :(
[08:16] <mybalzitch> OK
[08:16] <mybalzitch> do you have a firewall?
[08:16] <TAFB> on the vps? I don't think so.
[08:16] <mybalzitch> an/ythin/g show up in/ iptables -Lvn
[08:17] <TAFB> No chain/target/match by that name.
[08:17] <mybalzitch> oh
[08:17] <mybalzitch> iptables -L -v -n
[08:18] <TAFB> http://pastie.org/pastes/10739491/text
[08:18] <mybalzitch> ok thats good
[08:18] <mybalzitch> netstat -nap|pastebinit
[08:19] <TAFB> http://pastebin.com/kWutDYCm
[08:20] <mybalzitch> ok the service isn/'t run/n/in/g
[08:20] <mybalzitch> please try startin/g it
[08:20] <TAFB> systemctl start x11vnc.service
[08:20] <TAFB> ?
[08:21] <mybalzitch> I thin/k so
[08:21] <TAFB> done
[08:21] <mybalzitch> try n/ow?
[08:21] <TAFB> nope, same error, activly refused
[08:22] <mybalzitch> grrr
[08:22] <TAFB> if I had to guess I think x11vnc isn't starting
[08:22] <mybalzitch> yes
[08:24] <TAFB> any way to troubeshoot that?
[08:26] <TAFB> XOpenDisplay failed (:1)
[08:33] <TAFB> it says "Check if you have a ~/.Xauthority directory" ~/.Xauthority is a file, not a directory :(
[09:37] <lordievader> Good morning.
[10:49] <velusunivers-sys> hello is there any way to restrict root access from ssh to a certain ip address?
[10:50] <lordievader> Yes, set up key access and allow that key only to be used from a certain ip.
[10:50] <velusunivers-sys> how do i do that
[10:50] <velusunivers-sys> key as in ssh key?
[10:50] <lordievader> Preferable ssh as a user and use sudo to do root stuff.
[10:50] <lordievader> Preferably*
[10:51] <mybalzitch> don/'t allow root login/s rem;otely
[10:51] <lordievader> velusunivers-sys: Yes, ssh keys.
[10:51] <velusunivers-sys> i want to avoid ssh keys
[10:51] <lordievader> Why?
[10:52] <velusunivers-sys> because i have more than one system that will access them, and there is like 12 servers, i dont want to have 12 keys and hav to put them one like 5 computers and 3 tablets
[10:53] <velusunivers-sys> i just want to restrit root to one ip addess
[10:54] <lordievader> You can reuse keys? I have one to access most of my servers.
[10:54] <velusunivers-sys> but still thats means i would have to put it on 5 computers and on 3 tablets
[10:55] <lordievader> Puppet that stuff ;)
[10:55] <lordievader> Anyhow, if there are no other uses for ssh you could just firewall ssh access.
[10:56] <lordievader> http://www.unixlore.net/articles/five-minutes-to-even-more-secure-ssh.html
[10:56] <velusunivers-sys> ok so just fiewall it to one ip?
[10:56] <lordievader> That, or read the link I just posted.
[10:56] <velusunivers-sys> ok
[10:58] <shauno> another option is to use /etc/security/access.conf  (you'd need to uncomment pam_access.so in /etc/pam.d/sshd )
[10:58] <velusunivers-sys> ok
[10:59] <lordievader> As usual, there are many roads to Rome ;)
[10:59] <velusunivers-sys> but only one which is direct
[11:11] <velusunivers-sys> does caldav and carddav have to be on a ldap? can it be used with mysql?
[14:45] <NwS> Heya guys, would it be ok to use fail2ban on huge log files? 7-8gb size
[14:58] <bekks> NwS: fail to ban is not used on logfiles, it has a totally other purpose. Truncate and compress logfiles using logrotate.
[15:00] <NwS> bekks, I want to use it to ban bruteforce attacks on a few WP sites. So it will check out access_log of each website. Those logs are combined with webalizer and I can't logrotate them hmm
[15:00] <NwS> Unless I am doing something wrong :/
[15:01] <bekks> NwS: If you cannot logrotate them, you are using webalizer the wrong way.
[15:01] <bekks> NwS: webalizer can perfectly handle logrotated logs.
[15:01] <NwS> bekks, hmm fml. I didn't alter anything tbh I was just using webalizer and now I've got a few huge files
[15:02] <bekks> NwS: Yeah, the default config is useless :)
[15:02] <NwS> The rest logs are being logrotated
[15:03] <bekks> So configure your webalizer and logrotate your webserver logs.
[15:03] <NwS> Everything under /var/log works good, the ones I am talking about are under log/virtualmin
[15:03] <bekks> It doesnt matter where the logs are stored.
[15:03] <NwS> I mean they are supposed to logrotate
[15:04] <NwS> But everything under that folder doesn't
[15:04] <bekks> Then configure logrotate, too.
[15:08] <NwS> ty mate I'll look it up
[21:25] <Poindexter_> Is anyone here familiar with ircd-ircd2       ?
[21:26] <Poindexter_> It is actually ircd-irc2     sorry for the mistake.
[21:26] <Poindexter_> It is a Debian IRC server.
[21:27] <bekks> No, we are just meta question experts, and redirecting Debian server support to the the Debian support community.
[21:27] <Poindexter_> Hello again Bekks. Nice to see you again.
[21:27] <mybalzitch> Poindexter_: why not use something like inspircd?
[21:28] <JanC> or any of the 300 other irc servers?  ;)
[21:29] <bekks> Or even Ubuntu? :P
[21:29] <Poindexter_> Mybalzitch I never read about that. Freenode uses ircd-seven
[21:30] <Poindexter_> The server I installed works fine    I did a sudo apt-get install <server> works OK but ran into a crazy problem.
[21:31] <bekks> Poindexter_: And whats the Ubuntu relevance of your Debian server?
[21:31] <JanC> seems like ircd-irc2 is the IRCnet ircd
[21:32] <Poindexter_> Bekks, when logging into 192.168.***.***       the MOTD says it is a Debian based ircd.
[21:32] <RoyK> Poindexter_: perhaps #debian is the place to haunt
[21:32] <bekks> Poindexter_: Whats the relevance of your debian problem to Ubuntu?
[21:33] <bekks> Please seek debian support in #debian
[21:33] <mybalzitch> bekks: I'd hate to see him interrupt the endless waves of joins/parts with his questions :P
[21:33] <JanC> is it running on Debian or does it just say so?
[21:34] <mybalzitch> Poindexter_: you can edit the MOTD you know :)
[21:53] <bekks> So thats the confirmation of your rrefusal to provide information.
[21:54] <Poindexter_> Bekks, my mistake and I will say that I should have made a copy of the original file as a backup. I repent for that error. I should have known better.
[21:54] <bekks> Poindexter_: I dont care anymore.
[21:54] <bekks> You had 5 chances now. You missed them all. Please keep me out of that issue. Thanks.
[21:54] <Poindexter_> Bekks, I bid you a fine day. There is no isssue. It was just a simple oversight on my part not copying a text file. MOTD is nothing but a text file.
[21:54] <Poindexter_> It was a permissions issue.
[21:54] <bekks> Please do not hilight me any further.
[21:54] <Poindexter_> Calm down man. Don't take this so seriously. We are all trying to reach the same goal.
[21:54] <Poindexter_> Have a nice day folks. I bid all here peace.
[21:56] <mybalzitch> lol