[01:10] <bobafett> having issues using VPN. it says it is connected but pages dont load and i cant ping past router unless i DC from vpn
[01:10] <bobafett> i can connect to VPN from windows 10 with no problem
[01:10] <sarnold> check error logs on both the vpn client and the vpn server
[07:36] <PhoenixMage> Hi all, I am having problems with lio/targetcli restoring config on boot, is anyone else using it?
[08:27] <lordievader> Good morning.
[10:22] <WantDevHelp> I'm having difficulty installing ubuntu-server 16.04.2. When it detects the disc is gives, "Enter an IP address to scan for iSCSI targets". I don't know what this is about. I want to just partition my local disk. Any help appreciated.
[10:24] <lordievader> If you don't want to use iSCSI can you not cancel the window?
[10:28] <WantDevHelp> thanks for replying lordievader. It's the only option it gave me. I fiddled about with BIOS settings but it only seemed to give me the option to set up iSCSI. Don't know why. However, the power supply in the back of the PC just made a noise like an arc welder. Proble Solved!
[10:29] <lordievader> Err, okay?
[10:29] <WantDevHelp> Computer not working so I'll have to do somthing else.
[10:30] <WantDevHelp> I'm being silly. I won't be able to progress for the moment. I'll have to either dig out a power supply from another PC or use VM.
[10:31] <WantDevHelp> It's unusual though. Previously when I've installed ubuntu, it opens the partitioner and I can choose between manual partition or just accept defaults. Didn't give me the chance for some reason.
[10:35] <lordievader> Are you using some kind of raid controller?
[10:37] <WantDevHelp> no
[10:38] <WantDevHelp> I seem to recall having a simila difficulty with an old Dell before. As it appears to have turned into an arc welder, I'll defer that for the momoent. I'll use another old PC for the moment.
[10:38] <WantDevHelp> I'm going to have to muck about with hardware for a while. Thanks
[13:00] <boichev> +1 on zfs it is really REALLY nice
[13:00] <boichev> sorry wrong window
[13:15] <lordievader> The same thing was said here a few days ago ;)
[13:27] <coreycb> zul, i'm starting on cinder and horizon rc2
[13:30] <zul> ok
[13:31] <zul> coreycb: i got nova and manila
[13:31] <coreycb> ok
[13:42] <coreycb> zul, i'll get the neutrons
[13:42] <zul> ok
[13:49] <coreycb> zul, i'll get trove
[13:50] <zul> coreycb: i got mistral* after..
[13:54] <zul> i got magnum as well
[13:57] <PhoenixMage> Hi all, how can I get ubuntu server to auto import zpools on boot?
[14:25] <jamespage> coreycb, zul: we need to sortout qemu for ppc64el in proposed
[14:25] <jamespage> I'll do that now
[14:25] <jamespage> I need to disable the seccomp support on that arch
[14:25] <zul> jamespage: ack
[14:27] <coreycb> jamespage, ok thanks
[14:35] <boichev> lordievader: exactly :D the error was "Up arrow, Enter" :D
[14:36] <jamespage> coreycb, zul: qemu re-backporting now
[14:36] <zul> jamespage: k
[14:53] <jamespage> mwhahaha, hey around?
[14:54] <mwhahaha> jamespage: what's up?
[14:54] <jamespage> mwhahaha, are you around at the PTG next week?
[14:55] <mwhahaha> jamespage: I will not be
[14:56] <jamespage> mwhahaha, hmm no openstack-puppet slots mon/tues
[14:56] <jamespage> mwhahaha, OK
[14:56] <mwhahaha> jamespage: yea we had 0 response when asked about the ptg so nothing for Puppet
[14:57] <mwhahaha> jamespage: EmilienM will be there if you had specific questions
[14:57] <mwhahaha> I had a schedule conflict
[14:57] <jamespage> mwhahaha, np - I've been working to get topics scheduled to discuss what we're planing with snaps
[15:00] <EmilienM> jamespage: yes, feel free to reach me
[15:01] <jamespage> EmilienM, awesome I will do
[16:21] <DammitJim> this is a general server question... does a single drive in a RAID array have data that can be read?
[16:25] <drab> DammitJim: depends on what raid, depends what you mean read, in raid1, yes, in raid6 it depends and you'd have to read at low level
[16:26] <DammitJim> right, but I mean, you can't just grab this drive and plug it into some cable to your computer and just read data
[16:30] <vonsyd0w> from a raid1 sure, but probably not from other raid levels
[16:30] <cncr04s> can I add a md/raid device as a member in annother md/raid ?
[16:32] <DammitJim> thanks
[16:38] <DammitJim> do you guys know if there is a way to control what range of ID number to use for when one creates a new user?
[16:38] <DammitJim> for some reason on a server I have that is joined to a domain, it sets the ID to the 10,000 range
[16:38] <DammitJim> instead of just 1,000
[16:44] <smoser> nacc, thoughts? https://bugs.launchpad.net/usd-importer/+bug/1665703
[16:47] <nacc> smoser: certainly reasonable to do. Would it just be `git-dsc-commit`? I'm not sure we can support parenting it correctly for the first version imported (it'd be an orphan), but as lng as 1.4, 1.5 mention 1.3 in the changelog, i think we'd find it
[16:47] <teward> rbasak: um, i'm not sure why it's saying 'unsatisfiable dependencies' on nginx on update_excuses, can you peek?
[16:47] <nacc> smoser: that is, wrapping git-dsc-commit as we do now with usd
[16:47] <teward> the package versions it's after are *listed* in Zesty right now, per rmadison...
[16:47] <teward> also Perl still hanging the migration out of proposed
[16:48] <nacc> teward: new build hasn't been copied to the archive(s) yet?
[16:48] <nacc> teward: there's latency there between when the build finishes and when excuses sees it, iirc
[16:48] <teward> nacc: new build of the dependencies you mean
[16:49] <teward> *brain is not fully online*
[16:49] <nacc> teward: oh sorry, i was looking at the nginx lines, my fault
[16:49] <teward> nacc: two issues: (1) "Dependency not satisfiable" when those packages exist in those archs.  (2) Perl version is holding up migration, but I don't know why.
[16:50] <nacc> teward: let's focus on 1), trying to reproduce in my chdist, one sec
[16:51] <teward> nacc: mmkay.  My brain is offline today so blah.  :)
[16:51] <teward> ah, but you're probably right -1ubuntu2 probably isn't uploaded when it was created
[16:51] <teward> though it should've been since it was uploaded yesterday heh
[16:53] <rbasak> teward: component mismatch.
[16:53] <rbasak> libnginx-mod-http-lua is in main. libluajit-5.1-2 is in universe.
[16:53] <nacc> teward: yeah, main/universe
[16:53] <nacc> teward: as is liblua5.1-0
[16:54] <teward> rbasak: http-lua should go to universe then
[16:54] <nacc> teward: is there any reason those two can't live in universe?
[16:54] <teward> nacc: i'm five steps ahead of you
[16:54] <rbasak> Yeah you can do that. An archive admin can move it.
[16:54] <teward> rbasak: the bug for the merge has what should be in main
[16:54] <rbasak> If you can't find one on IRC, file a bug against nginx and subscribe ~ubuntu-archive please.
[16:54] <nacc> http://people.canonical.com/~ubuntu-archive/component-mismatches-proposed
[16:54] <teward> in terms of libnginx-mod
[16:54] <nacc> teward: --^ :)
[16:55] <rbasak> Or just subscribe ~ubuntu-archive to that bug I guess, if it's still open.
[16:55] <nacc> it's a binary only movement, so it's easy, just needs the AA as rbasak said
[16:55] <nacc> rbasak: we do have a few of those for server, it seems
[16:55] <teward> rbasak: it's the merge bug until it moves out of proposed...
[17:07] <teward> rbasak: nacc: do we know why nginx-core-dbg, a debug symbols package, is being caught?
[17:07] <teward> is it because it's new?
[17:08] <teward> WOW i'm an idito nevermind
[17:08] <teward> actually, wait i still don't knwo why that's listed
[17:09] <nacc> teward: as i read it, ubuntu1 produced that binary, but ubuntu2 did not
[17:09] <nacc> (it produced -dbgsym instead)
[17:09] <nacc> https://launchpad.net/ubuntu/+source/nginx/1.10.3-0ubuntu1/ vs https://launchpad.net/ubuntu/+source/nginx/1.10.3-1ubuntu2/
[17:10] <nacc> (or only -dbgsym rather)
[17:11] <nacc> teward: and excuses/proposed-migration doesn't like binaries going away
[17:13] <teward> ah, right
[17:13] <teward> nacc: that's a result of the evil packaging changes
[17:13] <teward> i'll make a note of that too
[17:14] <nacc> teward: I *think* you need AA intervention for that too
[17:14] <teward> well the AAs are going to be busy either way
[17:14] <nacc> :)
[17:18] <teward> rbasak: i'mma subscribe ubuntu-archive and add this massive list of things heh
[17:21] <teward> rbasak: added to the bug, and ubuntu-archive subbed.  I hope I dont get shot for any of these things heh.
[17:21] <teward> but that should be able to fix the mismatches.
[17:22] <teward> Perl is just hanging the migration currently from proposed to nonproposed :/
[17:23] <rbasak> teward: thanks!
[17:24] <rbasak> I wouldn't worry too much about Perl. I'm sure the Foundations team will take care of it :-)
[18:44] <Emmanuel_Chanel> Hello!
[18:44] <Emmanuel_Chanel> I upgraded linux-image of Ubuntu 16.04 LTS. But the post installation process doesn't succeed.
[18:44] <Emmanuel_Chanel> Someone can help me?
[18:45] <Emmanuel_Chanel> It generates too much initramfs to occupy whole /boot
[18:56] <DammitJim> is there a way to disable these ssl warnings on mysql server 5.7?
[18:58] <kur1j> I'm trying to create an image for Openstack manually and I am using the minimal ubuntu installer and without selecting anything during installation its 1.9GB for me. I'm using QCOW2 and I have no idea how to make the installation smaller. Any suggestions?
[18:59] <kur1j> http://cloud-images.ubuntu.com/xenial/current/xenial-server-cloudimg-amd64-disk1.img this image from Ubuntu is ~300MB
[19:00] <sarnold> Emmanuel_Chanel: btw irc works best if you stick around for a while :)
[19:00] <sarnold> Emmanuel_Chanel: how large is your /boot? do you even need a /boot?
[19:03] <Emmanuel_Chanel> sarnold: /boot = 113MB and yes, I need /boot .
[19:03] <Emmanuel_Chanel> My HP server is not with UEFI but with BIOS.
[19:04] <Emmanuel_Chanel> But the HDD RAID1 pair is about 6TB.
[19:04] <Emmanuel_Chanel> sarnold: Can you help me?
[19:06] <sarnold> Emmanuel_Chanel: ouch. that's -really- tiny. I think 500 MB or so would be far safer
[19:07] <sarnold> /boot on my laptop is 256M, /boot on a serverish-machine is 280. definitely you need bigger..
[19:08] <Emmanuel_Chanel> ok.
[19:08] <nacc> Emmanuel_Chanel: my guess is you have old kernels around
[19:08] <Emmanuel_Chanel> Do you know why it generates unneeded initrd images?
[19:08] <nacc> Emmanuel_Chanel: that size /boot is only really going to be able to store 1 or 2 kernels it feels like
[19:09] <nunchuck> greetings had to "unset DISPLAY" on ubuntu server, how do i get display back?
[19:09] <nacc> Emmanuel_Chanel: define 'unneeded'
[19:09] <Emmanuel_Chanel> nacc: How can I do?
[19:09] <nacc> Emmanuel_Chanel: `apt autoremove` typically
[19:09] <nacc> Emmanuel_Chanel: but it depends on what all is installed
[19:10] <nacc> Emmanuel_Chanel: what version of ubuntu and please pastebin `ls -ahl /boot`
[19:18] <Emmanuel_Chanel> nacc and sarnold http://pastebin.com/AZNc4yD4
[19:19] <DammitJim> do you guys know what I can add to my mysql config so that I don't get SSL warnings?
[19:19] <sarnold> DammitJim: what warning are you getting?
[19:20] <nacc> Emmanuel_Chanel: ls -ahl /var/lib/initramfs-tools
[19:20] <sarnold> Emmanuel_Chanel: excellent; what kernel does uname -r report that you're running now?
[19:20] <DammitJim> WARN: Establishing SSL connection without server's identity verification is not recommended.
[19:20] <DammitJim> I understand I can provide a useSSL=false on the client connecting to the server
[19:20] <DammitJim> but can I set something up on the server so it doesn't check for this?
[19:21] <sarnold> DammitJim: ehhhh... using ssl without verification is better than using no ssl at all.
[19:21] <Emmanuel_Chanel> sarnold: uname -r = 4.4.0-62-generic
[19:21] <sarnold> DammitJim: and enabling verification is going to be some work. I'd leave it alone.
[19:21] <DammitJim> sarnold, maybe you can help me understand what that means
[19:21] <Emmanuel_Chanel> nacc: I'm trying it now.
[19:21] <DammitJim> that's probably what I'm missing
[19:22] <DammitJim> you mean leave the warnings alone?
[19:22] <DammitJim> this is for local connections
[19:22] <sarnold> DammitJim: this means that the certificate from the other side can't be verified -- it isn't signed by a trusted certificate authority
[19:22] <DammitJim> oh gosh
[19:22] <DammitJim> but I don't want to use certificates
[19:22] <Emmanuel_Chanel> http://pastebin.com/RURU7bLU
[19:22] <Emmanuel_Chanel> nacc: Done.
[19:23] <nacc> Emmanuel_Chanel: ok, that is why extra initrds are being generated
[19:23] <sarnold> DammitJim: you don't want to go to the hassle of using _real_ certificates... but self-signed is fine enough for many uses, and this is probably one of them.
[19:23] <nacc> *normally*, i beleive that directory only contains kernels that are actually installed
[19:23] <DammitJim> oh man
[19:23] <nacc> Emmanuel_Chanel: did you manually delete some kernels (rather than using apt)?
[19:23] <Emmanuel_Chanel> nacc: So all I need to is delete them except 4.4.0-62-generic
[19:23] <DammitJim> so, a solution would be to use self signed certificates, huh?
[19:24] <nacc> Emmanuel_Chanel: yes, i believe so
[19:24] <DammitJim> do I have to then import them for the server and then import them for the client? (even though the server and client are on the same server)
[19:24] <Emmanuel_Chanel> nacc: No... I deleted /var/tmp/mkinitramfs* , though.
[19:24] <Emmanuel_Chanel> nacc: ok. I do.
[19:24] <sarnold> Emmanuel_Chanel: be sure to keep a fall-back as well; in general, keep the kernel you're running, keep the newest, and if those are the same, keep the next newest :)
[19:24] <nacc> sarnold: no fallback in /boot (taht i can see)
[19:24] <sarnold> DammitJim: yeah; I suspect you're already using self-signed certs
[19:24] <nacc> which is why i think something manually was done
[19:25] <DammitJim> I am, but not for mysql
[19:25] <DammitJim> so, would I need to change my client connections to use a client certificate?
[19:25] <DammitJim> or where do I tell mysql client that the server cert is good?
[19:26] <Emmanuel_Chanel> sarnold and nacc: Thanks for your help! Looks my problem is solved.
[19:26] <DammitJim> oh man, I loose either way because I have to get the developers to change their connection code
[19:26] <DammitJim> is that right?
[19:28] <sarnold> DammitJim: I don't know how to fix that -- I really don't know mysql -- but if you put the self-signed cert in your /etc/ssl/certs/ directory and run update-ca-certficates I think that will do the trick -- read the update-ca-certificates manpage first and make sure it sounds right
[19:29] <DammitJim> sarnold, so if I add the certs, then I won't need to update connection code?
[19:33] <sarnold> DammitJim: I don't know about that; all the clients may need to have their cert stores updated if they're on different hosts..
[19:34] <DammitJim> something tells me one can disable ssl on the server as an option
[19:34] <sarnold> yeah you probably can but I really don't like that idea :)
[19:34] <sarnold> why use telnet when you can use ssh?
[19:35] <DammitJim> because this will involve a couple dozen apps to be updated
[19:35] <sarnold> why? for one warning??
[19:36] <DammitJim> yeah, this happens in multiple servers
[19:36] <sarnold> but it's a warning; what's wrong with ignoring it? :)
[19:36] <DammitJim> it clutters the log files
[19:36] <sarnold> true enough
[19:37] <sarnold> but if you don't care about the tls certificate validation then you might as well work on something that you do care about ;)
[19:39] <geigerCounter> Hello!
[19:41] <Doow> Hi, I recently did a fresh install of an ubuntu server (16.10). When taking a look at the open ports I noticed that it was listening on three ports. 22, 80 and 5355. 22 and 80 I knew about and it's intentional, but what is 5355? /etc/services lists it as 'hostmon', but hostmon doesn't have a manpage and I haven't found anything really relevant when googling either. Only airport-hostmon which seems to be some old apple standard.
[19:42] <Doow> tldr: what is hostmon running on port 5355?
[19:42] <sarnold> Doow: what program is listening on it?
[19:42] <sarnold> run netstat -lntp or something similar to find out
[19:42] <geigerCounter> I'm running Ubuntu 14.04 LTS server edition and trying to configure exim4 to use tls. Here's my config: http://paste.ubuntu.com/24015110/
[19:43] <geigerCounter> The connection times out when connecting remotely with telnet or thunderbird. Connecting locally with telnet, I'm able to access smtp and after running ehlo, I'm able to try "starttls", but it gives me an error message that tls is unavailable. What should I do?
[19:44] <Doow> sarnold: 810/systemd-resolve
[19:45] <sarnold> Doow: hopefully useful https://lists.ubuntu.com/archives/ubuntu-devel/2016-May/039350.html
[19:45] <sarnold> geigerCounter: connection timing out sounds like firewall settings
[19:46] <Doow> sarnold: I wasn't running netstat as root at first =)
[19:46] <Doow> sarnold: thanks, I'll take a look
[19:46] <geigerCounter> sarnold: On the server or the client?
[19:47] <geigerCounter> sarnold: That also doesn't explain why starttls fails.
[19:48] <sarnold> geigerCounter: indeed, but one problem at a time is the way to preserve sanity :)
[19:48] <sarnold> Doow: aha :D
[19:51] <Doow> sarnold: That explained everything, thanks for the quick help
[19:51] <sarnold> great :)
[19:53] <geigerCounter> I don't think it's a firewall issue though, as before I started trying to config exim4 to use tls, I was able to access SMTP fine remotely as well. But just to be sure, I've made sure to add an exception for port 25 in Windows firewall. I know that server-side there's no firewall whatsoever and there's activity to my SMTP server just fine. GoDaddy's MX Toolbox reports when SMTP goes down and when it
[19:53] <geigerCounter> comes back up and right now... it says it's down...
[19:54] <geigerCounter> I just restarted exim4
[19:56] <geigerCounter> I just connected locally via telnet and was able to log in.
[19:56] <geigerCounter> Well I was able to connect and ehlo, haven't actually tried to auth.
[19:57] <geigerCounter> Hang on...
[21:33] <axisys> how do I install a particular version of a package?
[21:34] <tarpman> axisys: apt install package=version
[21:34] <axisys> sudo apt-get install zabbix-agent=1.8.22 says not found
[21:34] <axisys> how do I get a older version?
[21:34] <axisys> trusty latest is 2.2.2
[21:34] <tarpman> axisys: 'apt-cache policy zabbix-agent' will show you the available versions
[21:35] <axisys> on 2.2.2
[21:35] <axisys> only*
[21:35] <tarpman> axisys: according to http://packages.ubuntu.com/zabbix-agent you probably have to go back to 12.04 if you want zabbix 1.8
[21:35] <axisys> so is it possible to install 1.8.x on 14.04 ?
[21:36] <tarpman> I don't know, sorry
[23:16] <nacc> axisys: no, you'd need to use 12.04 for that, presumably
[23:26] <geigerCounter> Okay, I think I finally found something out in regards to my exim situation. It appears that the self-signed certs I rolled for testing exim with are not valid and/or cannot be accessed by exim.
[23:27] <sarnold> geigerCounter: ugh :/ while I wouldn't necessarily expect all clients to work with that, I sort ofhope the server itself wouldn't care
[23:27] <geigerCounter> No, I mean, it literally couldn't read the cert. And upon checking I know see why.
[23:27] <geigerCounter> I had MAIN_TLS_PRIVKEY as the macro instead of MAIN_TLS_PRIVATEKEY
[23:27]  * geigerCounter facepalms
[23:28] <sarnold> oh man
[23:29] <geigerCounter> So pedantic.
[23:29] <sarnold> 'unknown macro' would have been kind..
[23:29] <nacc> might be nice for it to complain about unknown keys in the cof?
[23:29] <nacc> *conf
[23:29] <geigerCounter> Yeahh...
[23:29] <geigerCounter> Yeah.
[23:30] <geigerCounter> But it didn't do that until I tried to send stuff to/from Gmail.
[23:31] <geigerCounter> That still doesn't seem to have fixed it though...
[23:31] <geigerCounter> starttls still isn't working.
[23:31] <geigerCounter> Wait.
[23:32] <geigerCounter> -rw-r--r-- means globably readable by all users right?
[23:32] <nacc> yes
[23:32] <sarnold> yes
[23:33] <geigerCounter> That's what I thought. exim's now pointing to the correct cert and key, but it can't read them.
[23:33] <sarnold> directory permissions above it may prevent the world from getting to the file, thuogh
[23:33] <geigerCounter> It won't say how and why.
[23:33] <geigerCounter> Ah
[23:33] <geigerCounter> Well can I symlink it to another directory then?
[23:33] <sarnold> and apparmor permissions could prevent it too (check dmesg | grep DENIED if you think this might be the case)
[23:33] <geigerCounter> I don't think I have apparmor installed yet.
[23:34] <geigerCounter> Mmm... yeah, the certs directory ( /etc/ssl/certs ) is readable, the key directory ( /etc/ssl/private ) is not.
[23:35] <geigerCounter> I assume this is by design.
[23:35] <geigerCounter> Would that prevent exim from being able to read /etc/ssl/private/exim.key ?
[23:36] <sarnold> it could; maybe you need to add the supplementary group ssl-cert to exim's startup scripts?
[23:37] <geigerCounter> I may yes, but for whatever reason my /etc/ssl/private directory is user read only. It's group executable tho...
[23:37] <geigerCounter> Not sure if that makes a difference in this case.
[23:38] <sarnold> interesting, mine is: drwx--x--- 2 root ssl-cert
[23:38] <geigerCounter> So is mine.
[23:38] <sarnold> oh ok, good
[23:38] <geigerCounter> And idk.
[23:38] <geigerCounter> I've got another key in here that dovecot uses and is able to read just fine.
[23:38] <geigerCounter> So mm.
[23:39] <geigerCounter> I'm not sure if that means dovecot spawns with different permissions or what?
[23:39] <sarnold> dovecot probably reads it as root at startup or also has the ssl-cert supplemtnary group
[23:39] <geigerCounter> Mm. Makes sense.
[23:40] <geigerCounter> To add a user to a group, you run "adduser <user> <group>" right?
[23:40] <sarnold> worth a try
[23:41] <sarnold> funny, I jumped right to 'edit the startup' but it might be easier than I was making it :)
[23:41] <geigerCounter> Hm?
[23:41] <genii> I generally use sudo usermod -Ga newgroup username
[23:42] <geigerCounter> Woo! No error when accepting mail from gmail! :D
[23:43] <geigerCounter> tls starts!
[23:43] <sarnold> geigerCounter: great :D
[23:44] <geigerCounter> Yeah, that's one issue down, one to go.
[23:45] <geigerCounter> Or maybe not...?
[23:46] <Henster> hello, know when you cp a file and use -R -v ,i whish it showed a bar of the current file size that im copyig  like when you use wget
[23:46] <geigerCounter> TLS error on connection from <myhostname.com> [my.ip] (gnutls_handshake): An unexpected TLS packet was received.
[23:47] <Henster> maybe i should use mc ,, lol
[23:48] <geigerCounter> Henster: Midnight Commander? I have it, I like it, I don't use it much tho. ;p
[23:49] <Henster> i found this chem today tmux .. man making my life allot easer ,, screen did not work well with mc
[23:49] <geigerCounter> sarnold: Okay, now after getting the 220 TLS go ahead, any additional input crashes the connection and gives me the above error. :Y What am I doing wrong now?
[23:50] <Henster> so i hosted my 1st wordpress website on Ubuntu server ,, man im nervious but so far so good
[23:50] <geigerCounter> Henster: Hey man, congrats! It's probably way smarter than what I'm doing trying to build a custom content system. x-x
[23:51] <geigerCounter> My everything is broken...
[23:52] <sarnold> geigerCounter: yikes. that doesn't make sense :/
[23:54] <geigerCounter> sarnold: Nope. But then again, configuring email seems to be an eldritch task, so...
[23:54] <geigerCounter> Lol.
[23:54] <Henster> @geigerCounter im learing early to make backups ,,not so sure how im going to secure remorte archive files
[23:54] <sarnold> geigerCounter: yeah. it's miserable these days.
[23:54]  * geigerCounter sighs
[23:54] <geigerCounter> I'm making progress at least!
[23:55] <geigerCounter> Henster: Can you try that sentence again, I don't quite get what you mean...
[23:56] <Henster> sever 1 ,, webserver and server 2 has files server 1 uses ,, eg. some files of Apache document root .. want to encrypt the data inetween the 2 servers
[23:57] <Henster> inbetween* sorry my spelling
[23:57] <geigerCounter> Let me see if I've got this right: You have two servers, a file server and a webserver, and you want to secure the data transfer between them with encryption?
[23:59] <geigerCounter> Henster: Is there a special reason why you can't just have both on the same server?
[23:59] <Henster> @geigerCounter correct
[23:59] <geigerCounter> Okay.