[00:41] <fels> hi All  -  help... !  I know nothing about this and an screwed as the guy who normally does this is awol -  I need to setup mapping for nginx
[00:42] <fels> I 've mapped it according to a link i found but its' not honouring the mapping . please help!!!
[00:48] <tomreyn> get prof help if this is too heavy for volunteers
[00:48] <tomreyn> :-P
[00:50] <fels> lol - we have to start somewhere - so might as well start here .... i really need to get thsi running ..
[00:58] <tomreyn> fels: how many employees are there in this company
[00:58] <fels> which one ?
[00:58] <fels> tomreyn: ?
[00:58] <tomreyn> the one you're trying to get the nginx stuff fixed for
[00:59] <fels> 2 - its a stat up
[01:00] <tomreyn> so you are one founder and the other foudner is absnet without leave?
[01:00] <tomreyn> well that's more of a conclusion than a question really.
[01:00] <tomreyn> you should put your configuration on a pastebin
[01:01] <tomreyn> !pastebin | fels
[01:01] <tomreyn> since this will make it public to thew world, before you paste it there, you should redact sensitive info
[01:02] <tomreyn> i.e. maybe replace domain names, peoples names in comments, ip addresses etc.
[01:03] <tomreyn> and then explain what you need to map where, and how you can tell that it does not currently work.
[01:03] <fels> tomreyn: no - I'm not the founder - just hte helpful guy that got roped in :)
[01:04] <tomreyn> i see
[01:06] <fels> when you put multiple names in the .conf file do you seperate it with  SPCE ? eg :   server_name JOE.mainsite.com BLOGSS.mainsite.com ?
[01:06] <tomreyn> yes
[01:07] <tomreyn> but you end the line with a ;
[01:10] <fels> (great - tomreyn thanks
[01:11] <tomreyn> you can use "sudo nginx configtest" to check whether your configuration files' syntax looks fine.
[01:12] <fels> Thnks tomreyn- That will come in handy -  what if i need that to map to JOE.mainsite.com/SOMETHING ?
[01:13] <tomreyn> are you saying that you want all http requests directed to http://JOE.mainsite.com to go to http://JOE.mainsite.com/SOMETHING instead?
[01:13] <fels> yeah
[01:14] <fels> is that possible ?
[01:14] <tomreyn> fo sure, as long as requests to http://JOE.mainsite.com actually end up on the server you are working on
[01:16] <tomreyn> http://nginx.org/en/docs/http/ngx_http_rewrite_module.html#return
[01:18] <tomreyn> so withint the server{} block add a location{} block. and in this 'location' block, add a 'return' statement
[01:19] <tomreyn> server { ...; location / { return 302 http://JOE.mainsite.com/SOMETHING ; } ... }
[01:19] <tomreyn> roughly this, fels
[01:19] <fels> thank you tomreyn
[01:20] <tomreyn> this wont redirect requests initially made to http://JOE.mainsite.com/xxx or to httpS://JOE.mainsite.com though
[01:21] <tomreyn> i.e. only requests for the main web page at the / URI will be redirected
[01:23] <tomreyn> so it's quite late here, and i really need to get some sleep. AKA, good luck.
[01:27] <fels> ok tomreyn thks for the help -
[01:27] <fels> where ar you based ?
[01:29] <tomreyn> to the south east
[02:38] <Guest63015> does anyone know how to setup minidnla with an external hard drive?
[02:41] <Lehthanis> I need some help with hosts and postfix/ptr record settings...my ptr record is mydomain.com but my postfix myhostname setting is servername.mydomain.com and my hosts file lists the ip address as servername.mydomain.com also.
[02:42] <Lehthanis> its a web server that hosts multiple domains...so do I need to change my ptr record to servername.mydomain.com or change my hosts file to remove the servername?
[02:51] <Lehthanis> http://hastebin.com/okixudaral.css here's my /etc/hosts file
[02:52] <Lehthanis> edited to protect the guilty (xx.xx.xx.xx is my ip address and my real domain names and server name is in there)
[02:52] <Lehthanis> also...servername is not www...should it be?
[04:42] <brucegl> :-D
[09:43] <cpaelzer> rbasak: I've seen your mysql upload blocked on dovecot
[09:43] <cpaelzer> rbasak: I quickly looked at the actual fail and I'm not convinced that is sql related at all
[09:43] <cpaelzer> rbasak: the new dovecot is uploaded now but the queues are rather full
[09:44] <cpaelzer> rbasak: if you have the power you might just try to re-run that test to check if it is a transient error
[09:44] <cpaelzer> rbasak: I have seen the dovecot 2.2.25 autopkgtests succeed in zesty on Monday morning
[09:44] <cpaelzer> rbasak: but that was on amd64
[09:48] <rbasak> cpaelzer: thanks, I hadn't noticed. I'll look.
[10:00] <YuxKukMo> hi! can anyone here tell me how can i setup the apache server to listen only on 443 port ?
[10:00] <YuxKukMo> thank you
[10:02] <rbasak> cpaelzer: that failure looks familiar. I think it's a test instability. I requested a retest, thanks.
[12:28] <rbasak> smb: do you have an opinion on bug 1321144 please?
[12:28] <rbasak> Sounds like something you would have hit by now?
[12:28] <rbasak> Also bug 1352512
[12:34] <rbasak> nacc: do you want to assign yourself https://bugs.launchpad.net/bugs/1570472 in our bugwork status? I just hit it while triaging.
[12:34] <rbasak> Or did you want to drop it?
[12:48] <zul> coreycb: when you get a chance can you have a look at the autopkgtest failure i am sooo confused now
[12:50] <coreycb> zul, sure, which package was that again?
[12:51] <zul> coreycb: oslo.i18n and oslo.services i think
[12:53] <coreycb> zul, ok
[12:53] <coreycb> beisner, can you promote mistral and neutron to newton-proposed please?
[12:54] <zul> coreycb: thanks
[12:56] <coreycb> zul, is it neutron maybe for s390x?
[12:56] <zul> coreycb: yeah but i tried reproducing yesterday and I was able to reproduce but mysql might be in a werid state on s390
[12:57] <zul> i really dont know
[12:58] <coreycb> zul, do you have an s390x instance I could use?
[12:58] <zul> coreycb: i do
[13:08] <fels> hey all
[13:08] <fels> Can someone help me setup SSL on Ubuntu 16... ?
[13:09] <hateball> fels: in what? apache, nginx?
[13:09] <fels> nginx hateball
[13:09] <hateball> fels: do you have a commerical certificate?
[13:09] <fels> yes - one was purchased -
[13:10] <fels> so the main daomin lets say SITE.com is hosted  on a differnt plan with the same company
[13:11] <fels> I have this ubuntu VM and it will have multiple submdomains eg :   api.SITE.com and app.SITE.com and stuff.SITE.com
[13:11] <fels> I would like those to be SSL secured
[13:11] <hateball> well you define server_name in your config so that shouldnt be a concern
[13:11] <hateball> fels: so you got a wildcard cert?
[13:11] <hateball> for SITE.com
[13:11] <fels> yes
[13:12] <hateball> Usually whatever commercial seller of certs you use has a guide for how to use them
[13:12] <fels> so 1st question - should the cert be installed on the SITE.com server ?
[13:12] <hateball> fels: Otherwise this is short and simple https://www.digicert.com/ssl-certificate-installation-nginx.htm
[13:12] <hateball> fels: eh... the cert needs to be on any machine serving a website
[13:13] <hateball> fels: so if you api, app, etc all on different ones, they all need the cert
[13:13] <fels> those will be on the same VM but differnt ports
[13:14] <hateball> well, you only need your key, cert and intermediate in one place, then you have a config file for each website pointing to the certs
[13:14] <fels> main SITE.com is on a differnt machine its  a marketing site so they not to concerned just yet
[13:14] <hateball> If you read the link it is quite clear
[13:15] <frickler> jamespage: not sure if I asked that earlier already, but can we get ceph 10.2.3 into xenial-updates? there's lot of important bug-fixes in that release, in particular for rgw
[13:15] <fels> hateball: are you about for a few hours in case i hit  a wall ? I woudl really appreciate it
[13:16] <hateball> fels: on and off, I am supposed to be working after all :)
[13:16] <fels> :) - i understand
[13:20] <fels> hateball: do i need OPen ssl ? how do i know if is installed  ?
[13:24] <hateball> fels: if you have nginx installed you have openssl
[13:28] <fels> Great "_
[13:35] <Andrew_jedi> 	Hello folks, We are running icehouse and we may have to upgrade the kernel from 3.13 to 4.2. Do you think this can affect the openstack installation in any way?
[13:36] <Andrew_jedi> I mean openstack  icehouse packages and willy kernel? Will this work?
[13:36] <ikonia> the kernel is your hypervisor
[13:36] <ikonia> so the kernel will have an impact to your virtualization stack
[13:38] <coreycb> zul, I couldn't recreate the autopkgtest failure.  let's see what the next run shows now that you are dumping the log file.
[13:38] <zul> coreycb: ok
[13:39] <Andrew_jedi> ikonia: This is the reason why we have to upgarde the kernel, we have problems in our virtualization layer. VM is hanging.
[13:40] <ikonia> so why did you upgrade the kernel ?
[13:40] <coreycb> zul, I'm looking at the heat failures for ocata
[13:40] <zul> coreycb: im doing neutron....yaaay
[13:41] <coreycb> zul, k
[13:41] <coreycb> zul, cinder has some issues too so I'll take that
[13:41] <zul> coreycb: i saw...it looks like to do something with the newer os-brick
[13:41] <zul> coreycb: sorry :)
[13:42] <theGoat> quick syslog-ng question.....(can never get anyone in #syslog-ng to respond)  i have a huge list of subnets.  i have a large list of subnets in cidr notation....can i put those into a file, and have syslog-ng read that for the netmask filter?  i don't want to have tp manage them in the syslog-ng config file
[13:42] <ikonia> the config file format does inlude and "include" directive
[14:04] <coreycb> zul, ah yeah so I think we need to be careful of bumping deps before they land in upper-constraints (os-brick)
[14:05] <zul> coreycb: yeah
[14:06] <zul> coreycb: was a bit overzealous
[14:08] <coreycb> zul, bug 1638576
[14:17] <binia> hi all
[14:18] <binia> got a slight problem
[14:18] <binia> by stupid mistake deleted daemon system user from 16.04 server
[14:18] <binia> well, not me manually
[14:18] <binia> script i used did
[14:19] <binia> how can i re add it the right way?
[14:19] <timeflow> ouch...
[14:19] <binia> yeah
[14:19] <binia> already emailed script dev
[14:19] <binia> my mate used nick daemonfor script to add
[14:20] <binia> then removed that user and script simply removed damn daemon user from the system
[14:20] <binia> luckily didnt reboot the server after that
[14:20] <binia> heh
[14:22] <timeflow> so what exactly was deleted? can't you just restore /etc/passwd?
[14:22] <binia> can i just add to etc/passwd and etc/shadow daemon user?
[14:23] <binia> or is there some commands
[14:23] <timeflow> i mean don't quote me on this but as far as i know these should be the only files that matter
[14:24] <timeflow> but better wait for a second opinion on that
[14:24] <binia> cool, checking goolge meanwhile but cant find much :(
[14:24] <timeflow> what did the script do exactly? delete the line with deamon from /etc/passwd?
[14:25] <cpaelzer> you likely want to ensure to get it the same gid/uid it had before which likely was "1"
[14:26] <cpaelzer> same if you had any group memberships of or to it
[14:26] <cpaelzer> binia: ^^
[14:26] <binia> well it first added daemon as normal user, it said that the user exists, so it created home directory, added vsftp login etc
[14:26] <binia> then my mate wanted to test user removal
[14:26] <binia> and it did get rid of daemon user from the system
[14:26] <timeflow> haha oh man ^^
[14:27] <binia> so deleted from /etc/passwd and /etc/shadow, group all that
[14:27] <cpaelzer> :-/
[14:27] <timeflow> restore backup?
[14:27] <binia> didnt have one
[14:27] <binia> heh
[14:27] <cpaelzer> outch
[14:27] <binia> this server shouldnt be even touched
[14:27] <timeflow> uuuuh nice ^^
[14:28] <binia> but from what i see uid was 1 etc for that user
[14:28] <cpaelzer> binia: you might already be doomed, but in case you want to try to set the assumed old gid is like this: groupadd --system --gid 1 daemon
[14:28] <binia> as its missing from /etc/passwd
[14:28] <cpaelzer> similar for the user
[14:28] <cpaelzer> with uid
[14:29] <binia> ok will try it
[14:29] <binia> gonna be scared to reboot it now
[14:29] <cpaelzer> wait
[14:29] <cpaelzer> since you have to create the user from scratch
[14:29] <cpaelzer> only use useradd
[14:30] <cpaelzer> maybe something like: useradd --system --gid 1 --uid 1 daemon
[14:30] <cpaelzer> that should autocreate the group for the user
[14:30] <cpaelzer> and any old ownership on files should match again
[14:30] <binia> ok let me try
[14:30] <cpaelzer> but if you had any group member ship it might be lost unrecoverably
[14:31] <binia> heh useradd command not found
[14:31] <timeflow> now it's getting interesting
[14:32] <cpaelzer> binia: would be of package passwd which I thought is always there
[14:38] <binia> thats a bummer :/
[14:42] <nacc> binia: um if you're on 16.04 and you don't have passwd; I feel like you're not actually on 16.04
[14:43] <nacc> binia: or at least not Ubuntu
[14:43] <nacc> binia: pastebin apt-cache policy passwd?
[14:44] <timeflow> binia: i'm out. good luck!
[14:44] <binia> http://i.imgur.com/RHma2F5.png
[14:44] <binia> nacc^
[14:44] <nacc> binia: urgh, dpkg -L passwd?
[14:45] <binia> thats very long
[14:46] <binia> sec
[14:46] <nacc> binia: i wonder if the PATH of the user you tried to run useradd was just wrong?
[14:46] <nacc> binia: try with absolute path (/usr/bin/useradd) and maybe sudo
[14:47] <binia> http://pastebin.com/MLN2TUHp
[14:47] <binia> ok will try
[14:47] <nacc> binia: yeah, so the package does provide /usr/sbin/useradd (sorry wrong path a moment ago!)
[14:48] <binia> -bash: /usr/sbin/useradd: No such file or directory
[14:48] <binia> too weird
[14:49] <nacc> binia: can you manually see if it is present?
[14:49] <binia> checking
[14:50] <binia> no it isnt
[14:51] <nacc> binia: urgh; something rather serious is wrong, I'd think then -- dpkg and your filesystem no longer agree, which means someone manually messed with it?
[14:51] <nacc> cpaelzer: thoughts?
[14:51] <binia> thing is it did work just fine few hours ago
[14:52] <binia> all went crazy after my mate added daemon user and removed it
[14:52] <nacc> binia: useradd did?
[14:52] <coreycb> zul, looking at keystone for ocata
[14:52] <zul> coreycb: its needs a patch for requirements.txt
[14:53] <zul> its blocking on oslo.config
[14:53] <coreycb> zul, I see tests are running ok but failing on "install: cannot stat '/<<PKGBUILDDIR>>/httpd/keystone.py': No such file or directory"
[14:53] <binia> nacc, yeah
[14:54] <zul> coreycb: huh
[14:54] <nacc> binia: that's very strange
[14:54] <nacc> binia: i guess as a quick test you could try reinstalling passwd and see if the binary(s) are back
[14:54] <binia> ok
[14:55] <cpaelzer> nacc: sorry was on other screens
[14:55]  * cpaelzer is reading backlog
[14:55] <nacc> cpaelzer: np
[14:55] <nacc> binia: i hope you have backups generally? might be simpler to just restore from a backup if things are this odd -- as I don't know why only one package like this would be in a bad state
[14:56] <coreycb> zul, yeah so that's just final removal after deprecation
[14:56] <binia> nope, no backup
[14:56] <cpaelzer> nacc: he denied having backups before
[14:56] <binia> didnt manage to do it
[14:56] <binia> stupid me
[14:56] <cpaelzer> one more thought on the weird passwd there but not
[14:56] <binia> tried to reinstall, not working still
[14:57] <cpaelzer> binia: can you run "dpkg --verify passwd"
[14:57] <cpaelzer> binia: that should list any files of the package that are not where/as they should be
[14:57] <binia> nothing listed at all
[14:57] <cpaelzer> binia: than dpkg finds your useradd where it should be
[14:57] <cpaelzer> maybe just path ...
[14:58] <cpaelzer> binia: does "sudo /usr/sbin/useradd --help" work?
[14:58] <cpaelzer> ah I see above you had that nacc
[14:59] <cpaelzer> any other deletions by that script we are not yet aware of binia?
[14:59] <binia> it does work
[14:59] <nacc> binia: oh sudo does work?
[14:59] <binia> cpaelzer, the script is in fact seedbox script
[14:59] <cpaelzer> ok, so on that you can try reestablishing your group and user
[14:59] <binia> so it shouldnt really mess with system
[15:00] <binia> the only thing is it managed to remove daemon user when asked
[15:00] <binia> would think it removed files owned by the user?
[15:00] <cpaelzer> binia: there is no auto cleanup for that
[15:00] <cpaelzer> it just seems your path is weird
[15:00] <binia> oh shit
[15:00] <binia> useradd worked
[15:00] <cpaelzer> but if the sudo to useradd works restore your group and user
[15:01] <cpaelzer> but with the uid/gid magic I listed
[15:01] <binia> yes
[15:01] <binia> let me check did it add to files
[15:01] <binia> daemon:x:1:1::/home/daemon:
[15:01] <binia> in /etc/passwd
[15:02] <cpaelzer> binia: so you are maybe good again :-)
[15:02] <binia> useradd --system --gid 1 --uid 1 daemon
[15:02] <binia> after that
[15:02] <binia> thought it should look like this daemon:x:1:1:daemon:/usr/sbin:/usr/sbin/nologin
[15:03] <cpaelzer> yep the nologin needs to be set
[15:03] <binia> ok, command or file editing?
[15:03] <nacc> probably usermod -s /usr/sbin/nologin daemon?
[15:04] <cpaelzer> or just forc it in with "sudo vipw"
[15:04] <binia> ok vipw i heard about
[15:09] <nacc> cpaelzer: good call
[15:09] <nacc> cpaelzer: easier than figuring out usermod options :)
[15:09] <binia> ok edited vipw
[15:10] <binia> can someone show me how it should look with vipw -s please
[15:10] <binia> i have this daemon:!:17107::::::
[15:12] <binia> or do i just delete all daemon lines from vipw -s
[15:12] <binia> ?
[15:20] <cpaelzer> binia: you can mod that with chage
[15:20] <cpaelzer> mine looks like "daemon:*:16729:0:99999:7:::"
[15:21] <cpaelzer> binia: the only meaning ful number is the date you set it which should be fine as you set it to not expire
[15:22] <binia> trying to get vipw -s daemon line from exactly same server and setup
[15:22] <binia> just in case
[15:24] <binia> yeap, you're right cpaelzer
[15:24] <binia> thanks for your help
[15:24] <binia> should i be fine now, you think?
[15:24] <jge> hey all, good morning. What's the difference between default-jre and openjdk-8-jre ?
[15:25] <nacc> !info default-jre
[15:25] <nacc> !info openjdk-8-jre
[15:25] <nacc> jge: well, openjdk-8-jre is a specific implementation, for one
[15:25] <nacc> jge: default-jre is a metapackage, i think, that depends on the currently recommended Java RE (currently it's openjdk-8-jre in 16.10)
[15:27] <jge> nacc: got it, so if I install openjdk-8-jre it grabs default-jre as well since it's a metapackage?
[15:27] <binia> you think i should reinstall any packages?
[15:27] <nacc> jge: other way around
[15:27] <nacc> jge: if you install openjdk-8-jre, you are saying you want specifically version 8 of the OpenJDK JRE
[15:28] <nacc> jge: if you install default-jre, you're saying, give me whatever is currently the default -- and on upgrades, I keep on wanting to use the default (which might change)
[15:28] <jge> Ohh I see
[15:29] <jge> thanks for clarifying nacc
[15:31] <cpaelzer> binia: you should be good in the degree that most things should work
[15:31] <binia> nope
[15:31] <cpaelzer> binia: but good is only true if you start working  on an backup/restore policy asap
[15:32] <binia> apt-get update && apt-get upgrade gives dpkg-preconfigure error
[15:32] <cpaelzer> yay - this gets more and more complex
[15:32] <cpaelzer> binia: I hope the one that gave you the script had bedded a few pardons to you already
[15:33] <cpaelzer> binia: we might run out of ideas, but feel free to pastebinit the error
[15:33] <binia> he's still asleep
[15:33] <binia> that bastard
[15:33] <nacc> heh
[15:34] <cpaelzer> s/insult/compensation/gc
[15:34] <binia> geezus, might have to get another server and rsync users directories then reinstall
[15:34] <binia> g'damn 280 gbp server :/
[15:36] <binia> what if i spin off a kvm, install 16.04 and rsync /bin /usr/bin and /usr/sbin
[15:42] <cpaelzer> binia: IMHO everything else than fixing up with useradd/vipw/vigr will have even higher potential to make it worse
[15:43] <cpaelzer> binia: the effect of syncing in will be to drop every group/user setup that is different which I think already makes it worse
[15:43] <binia> what if i sync only missing files?
[15:43] <cpaelzer> binia: sync up the daemon lines like that in vipw/vigr if you want, but that should be what you already have
[15:45] <binia> what if i get dpkg working manually trying to reinstall it
[17:18] <nchambers> hey guys. setting up my .bashrc. what is the advantage and/or point of lesspipe and debian_chroot?
[17:20] <sarnold> nchambers: debian_chroot makes using schroot with different releases very much nicer
[17:20] <nchambers> hmm ok
[17:20] <sarnold> $ schroot -u sarnold -c trusty-amd64
[17:20] <sarnold> (trusty-amd64)sarnold@hunt:~$
[17:21] <sarnold> lesspipe sets up some environment variables that change how less works
[17:58] <temmi_hoo> on 15.04 how do i find out which block device the freshly inserted usb stick is? dmesg says usb 1-2
[17:59] <temmi_hoo> i would like to dd onto that and am at loss currently
[17:59] <temmi_hoo> it might be mounted but the mount command does not indicate that is he case
[18:01] <binia> cpaelzer, seems i fixed it :d
[18:01]  * binia drops the mic
[18:01] <binia> heh
[18:02] <sarnold> temmi_hoo: look for /dev/disk/by-id/ or /dev/disk/by-path/ to find the device node
[18:02] <temmi_hoo> dev disk by id shows only ata devices and there is no disk by path
[18:05] <temmi_hoo> ls /dev/s* shows sda sda[125] sg0 sg1 snapshot sr0 and std(in|err|out)
[18:05] <temmi_hoo> am typing on a pad so sorry for shortening stuff
[18:06] <sarnold> are you sure that usb device supports mass storage?
[18:06] <temmi_hoo> it is a usb flash stick
[18:06] <sarnold> does it work on other systems? maybe it's dead
[18:07] <temmi_hoo> mounta on a windows machine but i cannot dd the install media on that as that requires admin password i lack
[18:08] <temmi_hoo> mounts
[18:10] <beisner> coreycb, delayed pong.  still need to scoot mistral and neutron to newton-proposed?
[18:11] <coreycb> beisner, yessir, please
[18:17] <beisner> coreycb, ok mistral + neutron promoted to newton-proposed re:
[18:17] <beisner> https://bugs.launchpad.net/ubuntu/+source/mistral/+bug/1634475
[18:17] <beisner> and https://bugs.launchpad.net/ubuntu/+source/neutron/+bug/1635369
[18:17] <coreycb> beisner, thanks appreciate it
[18:18] <beisner> yw co
[18:18] <beisner> yw coreycb
[18:29] <ddellav> coreycb zul are you guys having  issues building in zesty for ocata? I was able to do it fine yesterday but it's been failing on package resolution all day today.
[18:29] <zul> ddellav: yep
[18:37] <temmi_hoo> okay it seems usb-storage kernel module is not loaded and for some reason the /lib/modules is not populated
[18:38] <temmi_hoo> explains lack of /dev/sdb
[19:37] <jancoow> Hi. For some reason i can't update owncloud: http://download.owncloud.org/download/repositories/9.0/Ubuntu_16.04  Release.gpg The following signatures couldn't be verified because the public key is not available:NO_PUBKEY 47AE7F72479BC94B
[19:56] <sarnold> jancoow: if you completely trust that key's owner with root on your computer, feel free to install their key into your /etc/apt/trusted.gpg.d
[19:57] <sarnold> sadly the instructions on how to do that are all over the place; the apt-key manpage shows how to add the key to your /etc/apt/trusted.gpg file, but that makes it a lot harder to remove them eventually
[19:58] <jancoow> sarnold: well, no. I want a trusty source for owncloud
[20:00] <sarnold> jancoow: the owncloud team didn't want to keep distro versions updated, so they asked dstros to delete their packages
[20:01] <jancoow> sarnold: wut 0.o . That doesn't make sense. What should be the best way for me now?
[20:02] <sarnold> jancoow: downloading the package from their repository, as you were trying to do, is the thing to do if you trust them with root on your system
[20:02] <sarnold> jancoow: maybe there's a "snap package" available, in case you don't trust them with root
[20:55] <DK2> hello im trying to connect to a ubuntu machine via ssh
[20:55] <DK2> it hangs at
[20:55] <DK2> debug1: Connection established.
[20:55] <DK2> debug1: permanently_set_uid: 0/0
[20:55] <DK2> debug1: identity file /root/.ssh/identity type -1
[20:55] <DK2> debug1: identity file /root/.ssh/id_rsa type -1
[20:55] <DK2> debug1: identity file /root/.ssh/id_dsa type -1
[20:55] <DK2> what could be the cause?
[20:57] <nacc> DK2: why are you ssh'ing as root?
[20:57] <DK2> im trying to get access back to the machine
[20:58] <DK2> im usually logging in with my user, but this box is not included into our puppet yet
[20:58] <DK2> however, the ssh connection wont go further than that
[21:01] <nacc> DK2: does it allow ssh by root?
[21:02] <sarnold> I'd really hope you'd get an error message of some sort back
[21:02] <nacc> sarnold: good point ...
[21:02] <nacc> DK2: what is the actaul error you get, or is it hanging there?
[21:02] <sarnold> I've seen more than one bug report mention that changing the mtu fixes ssh logins. :/ I've always hated those, it doesn't feel like it makes sense
[21:02] <DK2> its just hanging there
[21:02] <DK2> for decades
[21:03] <DK2> well not decades, but i have it running for 5 minutes now
[21:03] <sarnold> very nearly a decade :)
[21:14] <DK2> well, #openssh says it because the server doesnt send the ssh banner
[21:14] <DK2> so i guess the sshd of the server is kind of broken
[21:17] <sarnold> interesting; nc or telnet could confirm/deny that quickly anyway
[21:21] <DK2> which nc switches should i use when testing?
[21:25] <sarnold> I'd just nc host 22   and see if it spits out a banner eventually
[21:38] <arooni> i have a ubuntu 14.04 server running a few wordpress sites; wondering what the advantage/disadvantage of upgrading to 16.04 would be?
[21:48] <sarnold> arooni: does wordpress work on php7?
[22:42] <cdorsal> I am trying to listen to all incoming UDP traffic from a windows system on the same subnet as my ubuntu system, but nothing appears in wireshark or tcpdump. If I listen using another windows system, I have no issues.
[22:43] <cdorsal> I have tried using promisc mode on eth0, played with iptables, pimd, smcroute and all I have been able to do is send a udp packet to the target IP address, which is not what I want to do
[22:43] <sarnold> does the switch know to also send the packets to your switch port?
[22:43] <sarnold> sometimes you can configure a specific port as a 'span port'
[22:43] <sarnold> which gets everything
[22:44] <cdorsal> there's no switch in between my windows system and my ubuntu system
[22:45] <sarnold> ahh so they're directly connected?
[22:45] <cdorsal> correct
[22:47] <cdorsal> *crickets*
[22:47] <sarnold> cdorsal: *maybe* http://tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.kernel.rpf.html
[22:48] <sarnold> it doesn't exactly sound like your issue
[22:48] <sarnold> but it's the next best guess I've got
[22:48] <cdorsal> I'll take a look
[22:50] <cdorsal> that looks like it might make it worse, but I'll try it now
[22:50] <sarnold> hahaha
[22:50] <sarnold> could be, could be..
[23:06] <cdorsal> sarnold, it did not work
[23:06] <cdorsal> :(
[23:08] <sarnold> cdorsal: hrm :(
[23:11] <cdorsal> I'm sort of surprised this is so hard to do in ubuntu
[23:13] <cdorsal> I am trying to listen to all incoming UDP traffic from a windows system on the same subnet as my ubuntu system, but nothing appears in wireshark or tcpdump. If I listen using another windows system, I have no issues.
[23:13] <cdorsal> I have tried using promisc mode on eth0, played with iptables, pimd, smcroute and all I have been able to do is send a udp packet to the target IP address, which is not what I want to do
[23:21] <cdorsal> this IRC is not nearly as helpful as the others, bummer
[23:24] <nacc> cdorsal: this is volunteer driven support; be patient
[23:25] <cdorsal> @nacc you helped me with an AP problem a month ago!
[23:25] <cdorsal> (many thanks)
[23:25] <nacc> cdorsal: heh, could be; have no recollection :)
[23:37] <tomreyn> cdorsal: more people might feel inclined to help if they could see how you are testing
[23:38] <tomreyn> like, what do you do on the windows side to create / send the apckets, and how do you try to capture them on the receiving end (ubuntu)
[23:38] <tomreyn> show commands run, output generated, optionally packet dumps.
[23:39] <tomreyn> also discuss ubuntu release + patch level + active kernel version
[23:41] <sarnold> hmm that reminded me, https://github.com/nmap/nmap/issues/34
[23:41] <sarnold> dunno if it's related or not