JoseLuis_ | estoy vivo? | 00:51 |
---|---|---|
wedgie | soy muerto | 00:51 |
JoseLuis_ | he he he, I thought that it was disconnected. | 00:53 |
nacc | jgrimm: fyi, dogtag-pki finally built, it's migrating now, tests are queued, i'll check again in the AM | 01:26 |
jgrimm | nacc, thanks sir | 01:26 |
fishcooker | is there any apps like iostat for cpu and memory usage ? | 02:18 |
OerHeks | fishcooker, top or htop | 02:23 |
cpaelzer | good morning | 06:29 |
GPenguin | moin | 06:30 |
thrasos | Hello :-) | 07:39 |
thrasos | First time installing ubuntu-server anything you'd suggest | 07:40 |
thrasos | I mean't is there anything you'd suggest? (any pitfalls to avoid etc) | 07:41 |
sarnold | if it's going on the live internet please disable password authentication in sshd_config as soon as you can | 07:41 |
thrasos | sounds important thanks! | 07:43 |
boichev | thrasos: sounds like you are playing around wiht linux servers is this right | 07:50 |
thrasos | that is true | 07:51 |
boichev | thrasos: check htop it is really a nice way to monitor the server resources | 07:54 |
thrasos | thanks for the tip | 07:57 |
sarnold | thrasos: you can use 'apt-cache search' to search for packages to install; it searches both descriptions and names. you can use apt-cache show to see more information on the package, and apt-get install to install it | 08:00 |
thrasos | excellent | 08:07 |
=== jamespag` is now known as jamespage | ||
boichev | thrasos: If you need something speciffic just tell us a direction :), a software raid with mdadm. You can mix random disk sizes (with equal partitions) and raid1 is super nice for redundancy ... many here will disagree with my love to software raid but it did gread job for me on many servers | 08:10 |
sarnold | <3 zfs | 08:11 |
boichev | +1 on zfs it is really REALLY nice | 08:13 |
maxagaz | hi | 08:22 |
lordievader | Good morning. | 08:49 |
JanC | ZFS has advantages and disadvantages | 09:13 |
JanC | it seems like ZFS is not as predictable as linux software RAID + ext4 when it comes to performance | 09:14 |
lordievader | Wasn't it supposed to be superior? (Never used it...) | 09:14 |
JanC | and you can't expand a ZFS RAID with extra disks, like you can with software RAID | 09:15 |
JanC | well, you can, but not in the same way as you can with software RAID (you need to create a new volume with multiple disks) | 09:16 |
JanC | OTOH, it has much better integrity checking of course, and features like de-duplication | 09:16 |
JanC | and it supports compressed files (although that's not useful if you use it primarily for already compressed files) | 09:17 |
JanC | one nice feature is also that you can enforce UTF-8 filenames :) | 09:18 |
PhoenixMage | Hi guys, there are few iscsi packages floating around and I am wondering which one is the most stable for a home lab NAS, integration with the zfs commands would be a plus | 09:38 |
=== Amgine_ is now known as Amgine | ||
valbr | hi all :) | 10:28 |
valbr | Is there a possibility to make a fan profile for a 3 pin fan | 10:28 |
valbr | fancontrol does it for a PWM fan, but not a 3 pin fan. can it be done with a 3 pin fan too? | 10:28 |
maxagaz | I have installed a headless virtual box on my server A, this virtual box contains another ubuntu server B. I can ssh from my laptop to server A, and from server A to server B, but how can I ssh directly from my laptop to server B ? | 10:39 |
rbasak | cpaelzer: I updated the blueprint to find any outstanding merges in there that aren't already in proposed. I have nut, logwatch and python-django. Are you taking care of logwatch today? I'll look at nut (I think it's pending my review from caribou) today. nacc isn't here but I'll ask him about python-django later. | 11:00 |
rbasak | roaksoax: ^ | 11:00 |
cpaelzer | rbasak: yeah logwatch is already in proposed now | 11:35 |
cpaelzer | rbasak: IIRC python-django had something about test failures - the log of the IRC meeting has some details, but in any way nacc is the right one to know | 11:36 |
rbasak | cpaelzer: ah great. Thanks! | 11:39 |
rbasak | (re: logwatch) | 11:39 |
Genk1 | Hello all! | 12:10 |
Genk1 | Is disabling Ipv6 support a good practice ? why ? | 12:10 |
hateball | If you have an ill configured network it can give you grief | 12:11 |
Tm_T | I'd rather fix the network | 12:11 |
Genk1 | Hmm OK, but what is the risk of having ipv6 disabled ? | 12:12 |
hateball | That you cant communicate over ipv6 if you need to | 12:13 |
patdk-lap | loosing half the internet! | 12:43 |
cpaelzer | rbasak: and migrated, I see you already set done - thanks | 12:46 |
lordievader | Genk1: Nowadays you want to slowly move to ipv6. So do try to leave it enabled. | 12:58 |
Genk1 | lordievader, OK thanks! | 13:00 |
zioproto | Hello, is nish aravamudan in this chat ? | 13:03 |
rbasak | zioproto: he's nacc, but not here right now. | 13:03 |
zioproto | rbasak, thanks, I wanted to ping him about this https://bugs.launchpad.net/ubuntu/+source/puppet/+bug/1570472 | 13:03 |
ubottu | Launchpad bug 1570472 in puppet (Ubuntu) "Set systemd as default service provider" [Medium,In progress] | 13:03 |
zioproto | do you know on what time zone is he ? | 13:03 |
rbasak | zioproto: UTC-8. | 13:04 |
zioproto | thanks ! | 13:05 |
=== rvba` is now known as rvba | ||
rbasak | caribou: around? I'm just writing up review notes from nut now. As we need to upload today for FF, do you have time for some tight review loops, or would you like me to just take care of it? | 13:42 |
rbasak | Sorry it's been so late coming. It's (almost) one of the last ones left :-/ | 13:43 |
rbasak | caribou: also I'll suggest tweaking the changelog a bit. I can propose the change, but would like an ack for you before keeping your name on it. | 13:45 |
zioproto | I am trying to understand in LP if there is a list of merge requests against the puppet package | 13:48 |
zioproto | I arrived here https://code.launchpad.net/ubuntu/+source/puppet/ | 13:48 |
zioproto | rbasak, reading all the story of LP bug #1570472 probably I could ask also to you | 14:07 |
ubottu | Launchpad bug 1570472 in puppet (Ubuntu) "Set systemd as default service provider" [Medium,In progress] https://launchpad.net/bugs/1570472 | 14:07 |
=== Guest55639 is now known as IdleOne | ||
rbasak | zioproto: I'm not really current with what the issue exactly is. Could you perhaps summarise in the bug, effectively rewriting the bug report including all the information that others have gathered in comments, and identify any inconsistencies? | 14:12 |
zioproto | sure, I'll try my best | 14:13 |
rbasak | Thanks! | 14:13 |
zioproto | should I then make also a merge request on launchpad like I do with the openstack packages ? | 14:13 |
rbasak | We don't have an official repo branch for puppet packaging in Ubuntu. Normally attaching a debdiff to the bug is fine. | 14:14 |
zioproto | What is this then ? ~usd-import-team/ubuntu/+source/puppet | 14:14 |
rbasak | I was just looking that up for you :) | 14:14 |
rbasak | It's our experimental work on git branches for Ubuntu packages. | 14:14 |
rbasak | If it's current, feel free to file a merge proposal against the appropriate branch in there. | 14:15 |
rbasak | If it's not current, we can bring it up to current manually on request. | 14:15 |
zioproto | but how is it possible that this bug is open since April 2016 ? | 14:18 |
zioproto | every puppet user is still on trusty ? :) | 14:19 |
patdk-wk | hmm, it's only since april | 14:19 |
patdk-wk | it would be more concerning if it was april 2012 | 14:19 |
rbasak | No idea. We'd be quite happy to fix it if we were clear on the details of the problem. | 14:19 |
rbasak | Also, there's a trivial workaround posted in the bug. | 14:20 |
zioproto | the workaround does not work if you dont have a site.pp | 14:21 |
zioproto | we use foreman | 14:21 |
rbasak | I suspect there are far fewer users in that situation. | 14:21 |
zioproto | soon tons of people are going to be forced to do the trusty xenial upgrade | 14:22 |
rbasak | ...who don't have a site.pp and use foreman? | 14:22 |
zioproto | I just mean that if you have a puppet master with external_nodes you cannot apply the workaround | 14:25 |
* rbasak shrugs | 14:25 | |
zioproto | the packages from the PPA work okay, and also other users reported they work | 14:25 |
rbasak | Like I say, we'd be happy to fix it if someone who cares comes along and tell us what to do. | 14:25 |
zioproto | I dont understand what is the blocking factor | 14:25 |
rbasak | We need to know that it's the minimal fix and there's no regression risk. | 14:26 |
zioproto | I think we need to wait for nacc | 14:26 |
rbasak | Since the set of people who test the PPA are a biased sample representing only one use case. | 14:26 |
rbasak | To understand the regression risk, we need to understand what scenarios are affected, how and why. | 14:26 |
zioproto | do you know if the tree where the PPA is buillt from is published somewhere ? | 14:26 |
rbasak | Yes. See the PPA page. You can get the sources from there. | 14:27 |
rbasak | "and there's no regression risk" -> well, there's never *no* regression risk, but we do want to minimise it, and for that we need a good understanding of the problem and the fix. Saying "the patch works" isn't good enough for a proposed change to a stable release. | 14:27 |
zioproto | https://launchpad.net/~nacc/+archive/ubuntu/lp1570472 | 14:27 |
zioproto | if I click on code | 14:28 |
rbasak | "View package details" | 14:28 |
rbasak | Open the arrow against the version/series you want. | 14:28 |
rbasak | You can download the source package files from there. | 14:28 |
zioproto | ok | 14:30 |
rbasak | zioproto: thank you for driving this. We appreciate your help. | 14:30 |
zioproto | rbasak, I understand how to get diff from 3.8.5-2ubuntu1~ppa7 to 3.8.5-2ubuntu1~ppa8 | 14:35 |
zioproto | but this means it is the version number 8 of the PPA ? | 14:35 |
zioproto | I would like to diff against che Xenial package | 14:36 |
zioproto | I mean the buggy one that is delivered to the world :) | 14:36 |
rbasak | zioproto: you might find https://git.launchpad.net/usd-importer/tree/git-dsc-commit useful | 14:36 |
rbasak | It imports a Debian source package into a fresh git commit. Then you can use git to diff as normal. | 14:37 |
rbasak | zioproto: check out the correct parent commit first, eg. ubuntu/xenial-devel if the PPA package is based on that. | 14:37 |
zioproto | okay, so I use it with https://launchpad.net/~nacc/+archive/ubuntu/lp1570472/+files/puppet_3.8.5-2ubuntu1~ppa8.dsc | 14:37 |
rbasak | zioproto: yes, but you also need the associated files. You can use dget to pull them from the dsc URL automatically. | 14:38 |
coreycb | zul, backports should be back to normal soon for ocata | 14:52 |
zul | ack | 14:53 |
isthakur | I am trying to run a php based application on my LAMP server which is reporting error 500 can any one help me. I have a a scripts that run well on LAMP server with php6 but not working with PHP7 | 14:55 |
lordievader | Have you checked the logs? | 14:56 |
isthakur | where to find? | 14:57 |
lordievader | Logs usually go to /var/log | 14:58 |
lordievader | If you are using Apache with mod_php you want to look into the error log of Apache. | 14:58 |
isthakur | Thank you lordievader. Trying to figure out the issue. | 15:08 |
lordievader | What is the error? | 15:09 |
isthakur | unable to figure out. accidently deleted the error log. | 15:19 |
isthakur | now nothing is being added to it. | 15:20 |
lordievader | Restart apache ;) | 15:20 |
isthakur | Thanks dear. | 15:26 |
isthakur | [Thu Feb 16 20:53:51.821767 2017] [:error] [pid 22108] [client 127.0.0.1:59574] PHP Warning: require(include/RequirementsValidation.php): failed to open stream: Permission denied in /home/isthakur/data/isthakur/Sites/yetiforce/index.php on line 17 | 15:26 |
isthakur | [Thu Feb 16 20:53:51.821822 2017] [:error] [pid 22108] [client 127.0.0.1:59574] PHP Fatal error: require(): Failed opening required 'include/RequirementsValidation.php' (include_path='.:/usr/share/php') in /home/isthakur/data/isthakur/Sites/yetiforce/index.php on line 17 | 15:26 |
isthakur | permision is fine i.e. 644 on index.php | 15:26 |
isthakur | permission on folder was not given to other so corrected that but now there is a huge list of errors. I will try to fix it and then let you know. Thank you very much for showing me the route to troubleshoot the problem | 15:30 |
lordievader | Can you browse to that file and read it as the apache user (www-data)? | 15:30 |
isthakur | now yes | 15:31 |
isthakur | I have to leave right now. for half an hour. catch you later. | 15:31 |
isthakur | and once again thank you very much. | 15:31 |
lordievader | No problem | 15:32 |
=== din0 is now known as dino82 | ||
zioproto | rbasak, the git-dsc-commit too is perfect :) I was able to diff the ppa code from the current stable. The patch LGTM. What is the workflow to propose the patch for the proposed Xenial packages ? Should not nacc do it ? He is the original authro | 16:01 |
cpaelzer | jamespage: on your work snapping qemu/libvirt did you create an interface that covers /var/run/libvirt/libvirt-sock-ro ? | 16:05 |
cpaelzer | or the non read-only version | 16:06 |
cpaelzer | hmm I found a libvirt interface, checking definition | 16:07 |
rbasak | zioproto: anyone can do it. See https://wiki.ubuntu.com/StableReleaseUpdates#Procedure, and just attach something usable to the bug (that includes packaging changes such as the version in debian/changelog) and subscribe ~ubuntu-sponsors to the bug. | 16:09 |
Amgine | Question: When there is network links from my IP to an IP blocked via iptables, that likely means my server is compromised, yes? | 16:20 |
zioproto | Amgine, what do you mean with 'network links' | 16:22 |
zioproto | ? | 16:22 |
Amgine | using iftop shows data connection, outbound. | 16:22 |
Amgine | zioproto: https://dpaste.de/HJUh/raw | 16:24 |
=== runelind_q_ is now known as runelind_q | ||
zioproto | this is the output of a command like ss ? | 16:26 |
Amgine | sudo iftop, it is like top only for network traffic. | 16:26 |
zioproto | try ss -tp | 16:26 |
zioproto | do you see a connection ESTABILISHED with that host ? | 16:28 |
Amgine | No. Nor do I see a connection for the steady streams of spiders, bots, and browsers. | 16:29 |
Amgine | But I think I understand what you're suggesting. | 16:29 |
zioproto | Amgine, do you see more stuff with ss -tpa ? | 16:29 |
Amgine | Just me. | 16:30 |
zioproto | It could be that the traffic you see with iftop is just ICMP replies that your port is closed. Or maybe you are sending TCP RST | 16:30 |
Amgine | kk. Just being paranoid, I suppose. | 16:32 |
zioproto | nacc, welcome in ! :) I was waiting for you :D | 16:36 |
zioproto | nacc, I have a production openstack cloud where the Trusty to Xenial upgrade is blocked by this bug: https://bugs.launchpad.net/ubuntu/+source/puppet/+bug/1570472 | 16:37 |
ubottu | Launchpad bug 1570472 in puppet (Ubuntu) "Set systemd as default service provider" [Medium,In progress] | 16:37 |
zioproto | nacc, I looked at the diff between the package shipped in Xenial and the ppa you published on launchpad. Changes look ok. There is a reason why this patch was not yet proposed to Xenial ? | 16:38 |
nacc | zioproto: mostly business :) i have been waiting for upstream feedback on it | 16:38 |
nacc | *busyness | 16:39 |
nacc | zioproto: let me prepare an SRU today for it | 16:39 |
zioproto | yahoo :) | 16:39 |
zioproto | if I can help tell me what I have to do | 16:39 |
nacc | zioproto: thanks! | 16:39 |
zioproto | usually for openstack packages I make a merge request of my git tree on launchpad, but I guess SRU has a bit more of burocracy | 16:39 |
nacc | zioproto: yeah, but in this case, pretty easy to argue for | 16:40 |
zioproto | nacc, leaving the office soon, I sent you my mail in pvt | 16:42 |
zioproto | of you need any testing to be done write to me | 16:42 |
nacc | zioproto: thanks again | 16:42 |
zioproto | also, if we go to production using your PPA on launchpad, can we rely on that PPA to be available ? | 16:42 |
nacc | zioproto: i won't remove it, and it should get trumped by the SRU | 16:43 |
zioproto | ok great | 16:43 |
zioproto | the problem is that Openstack MItaka is the only release support both on trusty and xenial | 16:43 |
zioproto | so we have to upgrade to xenial to move on to openstack newton | 16:44 |
zioproto | so I guess a lot of openstack people will soon move to Xenial | 16:44 |
zioproto | better get this puppet thing fixed :D | 16:44 |
zioproto | I have to go ! thanks for the help ! | 16:44 |
zul | coreycb: do we need a blanket FFE? | 18:17 |
coreycb | zul, i don't think we do this cycle. it might be worth emailing the release team though just to keep them in the loop. | 18:18 |
=== miczac\away is now known as miczac | ||
=== miczac\away is now known as miczac | ||
teward | rbasak: another 'merge' update was pushed by me just now, it's a minor minor packaging strings change for debian/control but it syncs us up with Debian except for our delta that we add. | 20:34 |
teward | sarnold: jgrimm: ^ just an FYI | 20:34 |
teward | (for nginx) | 20:34 |
jgrimm | teward, ack | 20:34 |
teward | hopefully that sneaks in right before FF goes into effect | 20:36 |
teward | otherwise, it probably can be FFe'd without issue | 20:36 |
jgrimm | yup! :) | 20:39 |
teward | whoopsies I left junk .save files stupid editor crashes | 20:40 |
teward | nginx -1ubuntu2 inbound heh. | 20:41 |
teward | someone please shoot me for my screw up | 20:41 |
teward | the taser is over on the desk :P | 20:41 |
nacc | `git status` ftw | 20:41 |
teward | nacc: not git tracked | 20:41 |
teward | *manual* merge | 20:41 |
nacc | or `git status --ignored` | 20:42 |
teward | nacc: ^ not git tracked. Yet. | 20:42 |
nacc | bah, you can still do it in a git repo locally :) | 20:42 |
teward | nacc: I *could* except that these're minor fixes. | 20:42 |
teward | In any case, it's uploaded/fixed finally hopefully in time for FFe. | 20:42 |
teward | I need coffee, really. | 20:42 |
teward | Release team is probably going to slap me for so many uploads today xD | 20:42 |
nacc | :) | 20:42 |
teward | nacc: it'll be tracked *soon* on my own gitlab. I couldn't reliably use any git workflows because of some very evil merge conflicts | 20:43 |
teward | that basically needed start-over-from-scratch for the delta | 20:43 |
teward | and about a month of headbanging against fPIE/fPIC | 20:43 |
nacc | teward: oh i get that, i just meant, it's trivial to just do a `git init` locally when you start, then you know what you are changing from the debian version, at least -- even if manual | 20:43 |
nacc | teward: i've found my own mistakes in trivial merges by doing that | 20:44 |
nacc | teward: but on to bigger and better things any ways :) | 20:44 |
teward | nacc: true, but i also have an automated testbuild workflow that would kill that :P | 20:44 |
teward | so blah | 20:44 |
teward | in any case, it's *now* git-worthy since the dynamic module stuff is in | 20:44 |
nacc | :) | 20:44 |
teward | I should go get coffee though now heh | 20:45 |
* genii 's ears perk up for a second at the mention of coffee | 20:45 | |
teward | genii: give. | 20:46 |
teward | :P | 20:46 |
teward | wow Chrome crashed lol | 20:46 |
* genii covertly meets Juan Valdez at the Columbian border and obtains coffee for teward | 20:47 | |
* genii hand-roasts the beans, grinds them in an antique brass grinder, prepares enough for 1 large mug in the French press. | 20:49 | |
* genii slides teward the mug | 20:49 | |
* teward takes, and disappears gradually (with the coffee and the mug) into the shadowy mists that seemed to just 'appear' in the periphery of the channel. | 20:50 | |
PhoenixMage | Hi guys, there are few iscsi packages floating around and I am wondering which one is the most stable for a home lab NAS | 20:59 |
patdk-wk | heh, depends on what your doing | 21:19 |
patdk-wk | for me, all of them are stable | 21:19 |
patdk-wk | it's more in what you want to interface with it | 21:19 |
patdk-wk | lio seems to be so dymaically changing, that if you want to script it (use pacemaker with it), it keeps changing and it's hard to use | 21:20 |
PhoenixMage | Its mainly for my lab ESXi boxes, I am migrating to ubuntu from freenas | 21:28 |
wedgie | for that you may be just as well off with NFS if you don't find a satisfactory answer for iscsi | 21:29 |
PhoenixMage | wedgie: Yeah I am thinking of moving them to NFS but at the moment I have a collection of them on an iscsi volume. If I upgrade to 10G interfaces then NFS is apparently the way to go anyway | 21:31 |
wedgie | PhoenixMage: you're moving from freenas... will you be using zfs on the ubuntu system as well? If so that's a double good reason to go NFS. Much more graceful handling of compression | 21:32 |
patdk-wk | unless your real issue is, your stuck on 1gbit network, and attempting to balance over multible | 21:33 |
patdk-wk | but then make sure your iscsi service can make use of multipathing | 21:33 |
patdk-wk | but nfs would be perferred though, as you don't have to worry about empty space reclaiming | 21:33 |
wedgie | indeed. One glorious day NFS will support multipathing but it's not quite standard yet, as I understand it. Haven't looked into it for about a year though | 21:34 |
PhoenixMage | wedgie: yeah zfs on ubuntu, just improted all my zpools | 21:34 |
wedgie | huh, maybe nfs4.1 with multipathing *is* a thing already: http://packetpushers.net/multipathing-nfs4-1-kvm/ | 21:38 |
wedgie | oh, wait, requires recompliling the kernel. So yeah, not quite prime-time just yet | 21:39 |
PhoenixMage | I am running a lagg across 4 interfaces and 3 hosts, not ideal | 21:40 |
PhoenixMage | Anyway, seems I might just go with any of the iscsi implementations and migrate to nfs | 21:40 |
=== madsa is now known as Guest13012 | ||
=== madsa_ is now known as Guest87296 | ||
=== keithzg_ is now known as keithzg | ||
=== miczac is now known as miczac\away | ||
=== Darkman802_ is now known as Darkman802 | ||
=== miczac\away is now known as miczac |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!