/srv/irclogs.ubuntu.com/2016/08/05/#ubuntu-server.txt

Amginehuh. After 30-some hours of data uploading between old and new server, I went to check progress and got...00:43
Amgine@    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @00:43
AmgineIs my best solution to rip it down and try to rebuild the server more securly?00:44
sarnoldowww00:45
sarnoldwhatever you do don't type passwords into that thing until you've figured out what's going on00:45
sarnoldit might be as easy as using sudo ssh by accident, and getting an _ancient_ /root/.ssh/known_hosts file entry or something similar to that00:45
sarnoldor it might be that it's now someone else's computer and they're not very quiet about it00:45
cncr04sis there any setting to determine how often linux flushes the drive write cache to disk. While I have UPS and 64G of ram, It will read like 4-16GB of data(from network or other disk) before it begins to write to the disk, not sure why it waits that long.05:01
sarnoldcncr04s: I think the sysctls labeled "dirty_" are probably most useful to you https://www.kernel.org/doc/Documentation/sysctl/vm.txt05:03
RoyKcncr04s: probably not a good idea if you want consistent data in case of a panic or similar05:29
sarnoldRoyK: I think he wants to make it write more frequently :)05:37
RoyKsarnold: oh - the other way around :)05:38
sarnoldyeah :)05:38
RoyKcncr04s: possibly ext4 writeback doing it05:38
djc_Hi setting up Ubuntu 14.04 server for the first time... Should SSH keys be generated08:00
cpaelzerdjc_: what keys do you refer to?08:15
cpaelzerdjc_: to create a key for yourself and how to place it https://help.ubuntu.com/community/SSH/OpenSSH/Keys08:16
cpaelzerdjc_: did you mean this or something else?08:16
cpaelzerdjc_: and in case you might have meant https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-0285.html - no not an issue08:47
ejatstgraber: r u here?08:50
jamespageddellav, coreycb: I think the keystone unit test failures are due to a unrepresented requirement for a newer oslo.db version08:52
jamespagethere is a fix in a 4.10 - 3277ef3 Capture DatabaseError for deadlock check08:53
jamespagethat looks pertinent08:53
cpaelzerjamespage: did you have uncommitted changes that brought you to 1609846 ?10:20
jamespage?10:21
cpaelzerI cloned and build against my 16.07 ppa but break at10:21
cpaelzermake[3]: *** No rule to make target 'debian/python-openvswitch.install', needed by 'distdir'.  Stop.10:21
cpaelzerjust wanted to test build and see If I could help - but it seems I block at this before the unit test failures you reported10:22
cpaelzerfile it searches got deleted by your last commit10:30
cpaelzer"d/rules,control: Add python3-openvswitch package."10:30
cpaelzerthe question is - accidential delete or missed to remove from debian/automake.mk ?10:31
cpaelzerbecause the latter still referes to it10:31
cpaelzermaybe it should have been created by your new call to python setup.py10:33
cpaelzerchecking if there was a former error in thebuildlog10:33
cpaelzerno tat seems to be the real install, removing the line in the automake gets me going10:38
cpaelzerI'll continue that way for now10:38
cpaelzerlater on we can discuss if it was right and if/how you want the commit back10:38
cpaelzerrunning unittests now, eager to see if I hit the same that you did jamespage10:48
jamespagecpaelzer, oh I might sitll have local delta for tha10:48
jamespageone sec10:48
jamespagecpaelzer, infact two commits pushed10:49
cpaelzer:-/10:53
cpaelzergotcha10:53
cpaelzerhehe10:53
jamespageddellav, coreycb: I've updated cloud-archive-utils to use i386 schroots for precise and trusty targets, mimicing the behaviour for LP builders.11:05
jamespagexenial will use amd64 still11:05
jamespagefor arch all builds anyway...11:06
jamespagechanged my mind - bad idea11:08
jonahHi has anyone used keepalived?11:55
=== Piper-Off is now known as Monthrect
=== Monthrect is now known as Piper-Off
ikoniaI have used keepalived12:12
ikoniaalthough there are more options now than when keepalived was king12:12
=== JanC is now known as Guest20161
=== JanC_ is now known as JanC
jonahikonia: well I'm just trying to plan how to add failover to a current server - I found this guide: http://gcharriere.com/blog/?p=33912:14
ikoniaok ?12:14
jonahikonia: which looks pretty awesome!! but as my system is already running I wasn't sure the best way to set it up, as that guide starts with two blank machines. Can I just install keepalived on the current running ubuntu server, do the virtual IP bit, update dns/router to virtual IP and then worry about second server later?12:15
ikoniakeepalived is just an application daemon, thats it, nothing more12:15
ikoniayou can install that onto a running host, no problem at all12:15
jonahikonia: that's cool. My other problem is how can I clone the whole server to the second box... Is rsync ok for this like set to sync every 10 minutes or something?12:17
ikoniathe whole server ?12:18
ikoniacould you define the whole server please12:18
jonahikonia: well this is my problem. I didn't want to start fresh with drbd or some block level network raid as my current server is already running. So just need to sync it up... I can't clone the whole thing I guess or I'd wipe my keepalived setup and slave settings. But need to sync it so all the email, websites, mysql etc goes over to the failover and load balancer. Or would this just not work as it isn't realtime. Maybe I can't use the load12:19
jonahbalancing...?12:19
ikoniaI think you need to look at that in a different way12:20
ikoniathis is not the "whole server"12:20
ikoniathis is just some content12:20
ikoniaso for example, you can use mysql/maria replication for the database12:20
ikoniathe webroot - sure, rsync12:20
ikoniaemail ? how are you storing it12:20
ikoniathere are loads of things to look at this is not a two minute "just rsync everything"12:21
RoyKikonia: what do you use to keep the disks in sync?12:32
ikoniaRoyK: depends, I normally don't do it at a disk level, but tools like drbd can be useful for that12:32
RoyKI've used drbd for that - works well12:33
jonahikonia: ok so say I've got rsync and mysql syncing set up and few other bits and then I get a hardware failure on the main server so it powers off. The second server picks up from where it left off with the most up-to-date files it has from 10mins ago or whatever. Then someone logs into the hosted website and uploads a file. Then I fix the first server and power it back on. Will that file that was upload then be lost (or email or whatever12:38
jonahchanged on server 2)? Or does that sync back to the first server somehow. I know this all depends on how things are set up but hyperthetically is that easy to set up or will it just not work very well?12:38
jonahikonia: same for load balancing, can it even load balance at all if using rsync etc with dynamic sites or email/webmail - or is load balancing just out the question.12:40
jonahikonia: I am looking to hire someone to set this up and help me with this stuff, but just trying to understand or think of the best setup before really.12:40
ikoniajonah: you're trying to do enterprise availability without an enterprise approach (eg: using rsync in a one way sync)13:00
ikoniaI think you need to look at what you've got and what you actual realistic goal is13:01
jonahikonia: Well I'm not looking for anything too complex and don't need the best HA or anything. If hardware failure happened I could live with some files being a little out of date, as hopefully it would be rare. Not trying to set any goals unacheivable or anything...13:02
jonahikonia: just with that guide saying loadbalancing was achievable: http://gcharriere.com/blog/?p=339 I wondered if it would work, despite running dynamic websites/email server etc13:03
cpaelzerjamespage: I have reproduced the 2214 unittest several times now13:04
cpaelzerjamespage: the test itself is one of the new OVN things13:05
cpaelzerjamespage: so new might mean it has issues - nut sure13:05
cpaelzerthe test does so many things that I need to check what it actually is first that I'm still feeling lost13:05
cpaelzerjamespage: do you want me to report at least this test (the others seem transient) and set you on CC?13:05
ikoniajonah: the reality is you want a two way sync13:09
ikoniawhich means you have to build logic into your scripts to work out which one is the active node13:09
ikoniathats all13:09
jonahikonia: ok so unison or something?13:09
ikoniajonah: however your best to handle it13:15
cpaelzerjamespage: didn't hear form you - but I think (hope) it can't hurt to report that13:25
cpaelzerI got the same using non debian way to build13:25
jamespagecpaelzer, +1 yeah that's the one I see failing reliably on i38613:25
jamespageon amd64 I saw the bfp failure but its transient13:26
cpaelzerjamespage: I ran it through some loops and envs over lunchtime 15/1149 are both transient - 15 in both, 1149 only in i68613:26
cpaelzerI just snet the mail out about 221413:26
cpaelzerjamespage: I'm on vacation after next week, so I hope we get something uploadable working before to match FF13:27
cpaelzerjamespage: otherwise I'll have to file a FFE on next Friday13:28
jamespagecpaelzer, agreed - I am as well13:28
jamespagecpaelzer, there is still no 2.6 branch :-(13:28
cpaelzerthey have two major features being discussed inthe scope of "please add before branching 2.6" that might stall it13:29
cpaelzeron the DPDK side of things already the "oh this is broken" fixes start to come up13:29
cpaelzersimilarly on OVS I've seen a few new leak fixes13:29
cpaelzerthis OVN test really is an gigantic oven - if you haven'T written that test you feel lost and close to "well done"13:30
derwood2Heya again folks :)13:32
cpaelzerI just hope there is some upstream feedback leading us to the right place13:33
derwood2Can I ask a silly question here.. MaaS2.0, I have a install on a 80GB HDD I'm doing right now inside a node just as a standalone install.. Can I create an .iso? or something like using DD command, and have MaaS2.0 feed that out as the image after a PXE boot so I can run my blender network rendering image I am setting up right now?13:34
cpaelzerderwood2: https://maas.ubuntu.com/docs/os-support.html13:35
derwood2I have/am setting this install up to autologin, then start blender with the network rendering settings set on a DHCP LAN.. so would like to know if I can just feed this image of the drive out to each node as and when I please using MaaS2.0.. Not sure if I'm asking the question in the right manner or syntzx :D13:35
cpaelzerderwood2: you are just less custom than you would be for a different OS13:35
derwood2Cheers buddy :D13:36
cpaelzerroaksoax: ^^ you might have a more sophisticated answer13:36
cpaelzerderwood2: but reading what you want to do instead of how you want to do it13:36
derwood2Cheers fellas, much respect :D13:36
cpaelzerderwood2: wouldn't you just feed some cloud-init config to a usual ubuntu image via maas13:36
cpaelzerderwood2: that could make the post install setup you need13:37
cpaelzerderwood2: without you needing to build a custom image13:37
derwood2I just dont know, I'm still very new to this.. and this is the way I thought about going about it, anything new as in ideas would be awesome :D13:37
cpaelzerderwood2: https://maas.ubuntu.com/docs/development/preseeds.html13:38
derwood2Cheers for the link and answers fella :D Awesome as ever :d13:38
cpaelzervia that you can control how things are set up for you13:38
cpaelzergood luck13:38
derwood2:D13:39
roaksoaxderwood2: not sure i follow what you want to do exactly, but for the looks of it, you want MAAS to isntall a machine (i.e, ubuntu), and after the installatio is finished you want to put something in the filesystem ?13:47
derwood2yes, I would like to PXE boot each node and the OS they will run is 16.4LTE with blender and x11VNC all ready running and auto logged in :D if that make sense.13:48
derwood216.4.1LTE server edition, sorry13:49
Pici*LTS13:50
roaksoaxderwood2: so, when you say OS, you mean you want to isntall ubuntu Xenial with Blender and x11VNC13:50
roaksoaxderwood2: so you are deploying stock ubuntu from MAAS13:50
roaksoaxderwood2: you are not creating a custom ISO13:50
derwood2I would like to deploy ubuntu Xenial with Blender and x11VNC, yes :D but I assumed I had to make an .iso file to be fed to the nodes after PXE booting..13:52
=== iberezovskiy is now known as iberezovskiy|off
nopeaHi folks, I just did a clean install of Ubuntu Server 12.04.5 and when I try to install Apache 2 I am getting 'missing dependices' errors.  How can I get LAMP on this VM?19:54
sarnoldnopea: sudo apt-get update && sudo apt-get install lamp-server^19:55
sarnold(the ^ syntax asks apt to install a 'task selection', see e.g. https://help.ubuntu.com/community/Tasksel for information)19:56
nopeasarnold: yeah I tried that, but the same.19:56
sarnoldnopea: can you pastebin your errors?19:56
OerHeksoke lets continue here, hi sarnold19:56
nopeaWhen I run apt-get update I get a bunch of errors about 'failed to fetch...'19:56
nopeaHere is when I run apt-get update... https://drive.google.com/open?id=0B5QmcW_8DZ4MaTZHU3FhRGVrVGc19:57
sarnoldnopea: check dmesg output for storage errors19:58
nopeasarnold: sorry can you tell me how to do that19:59
sarnoldnopea: run "dmesg" and look for error messages..20:00
sarnoldthe storage errors tend to have a lot of {  } and "SENSE" in them :) heh20:00
nopeasarnold: thanks... looking - but the VM cuts half the screen off argh20:00
sarnoldnopea: you can ssh in and use whatever decent terminal emulator you want that way20:01
sarnoldI almost never interact with VM consoles, they're usually more annoying than ssh20:01
sarnoldthey do stupid things like steal mouse and keyboard, and they can't use the same select buffer in X11...20:01
nopeasarnold: that is the other issue.... I can't even install OpenSSH - I get missing dependicies errors with that as well20:01
sarnoldnopea: ugh20:02
nopeasarnold: https://drive.google.com/open?id=0B5QmcW_8DZ4MRU9la2l6VWpMSzg20:04
sarnoldnopea: heh, how about that dmesg output?20:04
nopeait appears that the install did not install some libraries - or perhaps they are out of date?20:04
sarnoldit's all the hash sum mismatches; apt won't install packages it can't authenticate20:05
sarnoldand your package lists aren't authenticating20:05
nopeasarnold: dmsg... https://drive.google.com/open?id=0B5QmcW_8DZ4MSXVlUjFWakZqbUE20:05
sarnoldthat can happen if there are IO errors, and dmesg output would show that if there are any...20:06
sarnoldalright looks boring enough20:06
sarnoldnopea: try sudo rm /var/lib/apt/lists/partial/* ; sudo apt-get update20:07
nopeasame mismatch errors20:08
sarnoldnopea: are you using a proxy such as squid-deb-proxy or apt-cacher-ng? is someone _else_ running e.g. a transparent proxy that you might be using?20:08
nopeano, I don't think.  I just straight up installed this on a Oracle VM box20:09
nopeasarnold: I just tried the update again and I got no mismatch errors... I will try lamp server again20:13
OerHeksshould nopea enable backports ?20:14
sarnoldOerHeks: no.. one problem at a time :)20:14
sarnoldnopea: awesome. That saves a huge amount of hassle.20:14
nopealooks like it is installing20:15
sarnoldOerHeks: I don't recommend the backports repository, it feels vastly unloved these last few years20:15
OerHeksoh, missed the update error is gone20:15
nopealooks like it is up - let me check20:15
nopeaApache is running20:15
sarnoldthat's more like it :)20:15
nopeamysql is running20:16
nopeawoo hoo.... now the question is... what the @#%$^$%^ was going on.20:16
sarnoldOerHeks: I think that if you need newer software than is in an LTS release, it'd probably be better to just grab a newer LTS release20:16
nopeaAs it is a VM I may be installing this again... don't want the have to jump thru these hoops again20:16
OerHeksThat would be logical indeed, sarnold20:16
sarnoldnopea: APT enforces a path of trust -- e.g. the file http://us.archive.ubuntu.com/ubuntu/dists/precise/Release must have a valid signature in http://us.archive.ubuntu.com/ubuntu/dists/precise/Release.gpg20:17
OerHeksoke, have fun nopea20:17
sarnoldnopea: the Release file includes a huge pile of hashes for all the other files20:17
sarnoldnopea: e.g. the file http://us.archive.ubuntu.com/ubuntu/dists/precise/universe/binary-i386/Packages.bz2  (which reported a hash sum mismatch in your screenshot) has a hash listed in the Release file20:17
sarnoldnopea: and when apt checked the downloaded file against the hash in the Release file, they didn't match, and apt refused to use it20:18
nopeaso by removing the list (and the hashes) I was able to match then on next update?20:18
sarnoldyeah20:18
sarnoldand if you've got a caching proxy somewhere in the middle, it might have cached bad versions20:18
sarnoldor it might be serving stale versions20:18
nopeaok - I will have to remember that.  Not sure how the mismatches happened in the first place20:19
sarnoldapt-cacher-ng had some hilarious bugs when it would store files with the wrong names....20:19
sarnoldnopea: do note that 12.04 LTS will reach end of life in eight months; 14.04 LTS or 16.04 LTS have more time left in their support periods.20:21
nopeasarnold: OerHeks big thanks guys!20:21
sarnoldnopea: have fun :)20:21
nopeaI am going to see if get the other packages to install20:21
sarnoldit should all be pretty smooth sailing now that your package lists are happy :)20:22
nopeasarnold: thanks for the info.  I am using 12.04 as that is what my rackspace cloud server is running, and I am trying to match my dev machine as close to it as possible20:22
sarnoldnopea: good plan.20:22
nopeasarnold: I guess I could clone the cloud server... but I dont want to pay ;)20:22
nopeasarnold: do you think it could have been becuase my VM network was set to NAT... perhaps Bridged would have been better20:29
sarnoldnopea: maybe, IF the NAT mode meant the VM thingy put a caching proxy in the middle..20:31
nopeasarnold: I will try another install and set it to bridge first - but of course I will not remove this install that is working now, even SSH ;)20:31
sarnoldhaha20:32
sarnoldnopea: it might not be immediately reproducable with either networking type...20:33
sarnoldit's possible to go years without seeing those errors20:33
nopeasarnold: true.20:33
nopeasarnold: yeah - the network setting had no effect.  On another install the problem was the same as before20:44
=== pavlushka_ is now known as Guest47235
=== Guest47235 is now known as pavlushka
riz0nHello friends. I just restored a system backup to a new computer, and when I boot, I have no eth0 interface. How can I reinstall networking in ubuntu?21:09
=== ksx4system_ is now known as ksx4system
ikoniariz0n: you don't re-install network21:23
ikoniayou need to understand why it can't see your device or if it's been renamed21:23
ikoniacopying system backups to a new machine is not a straight forward process for some parts21:23
riz0nikonia: after doing ifconfig -a, I saw that the device was there, but under a new name (ens33) so I modified /etc/networking/interfaces, then init 6, now all the bases are loaded and I'm running in for the home run! :)21:26
ikoniaexcellent21:27
riz0nI feel like I'm starting to learn a thing or two about Linux ;)21:27
YamakasYoh no why is isc-dhcp such a pain in failover21:52
=== unreal_ is now known as unreal

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!