[00:00] <Epx998> day
[00:46] <hehehe> folks
[00:46] <hehehe> did you use dapperlinux?
[00:58] <hehehe> correction https://dapperlinux.com/features.html
[01:59] <patchobriar> Hi all. I have been muddling through apache2 for the past two days trying to get everything up and running properly. I still cannot seem to get my images to show up on the live site. I checked both my html and css code via validation service with no errors. Any hints on where to look online?
=== giraffe is now known as Guest89848
[03:21] <fishcooker> is it normal to see this syslog verbose intensely like this... cmiiw, it seems related to the docker service http://vpaste.net/YcYc9
[08:17] <cpaelzer> coreycb: FYI - I pushed the tests your zesty SRU on libvirt was blocked on, it is now good in pending-sru except waiting a few days more as usual
[08:25] <sonu_nk> hi Does the SSL include XSS protection as well?
[08:38] <cpaelzer> sonu_nk: no I'd think http://www.computerweekly.com/tip/Cross-site-scripting-explained-How-to-prevent-XSS-attacks
[08:38] <cpaelzer> there are zillions of sources, this was just the first somewhat readable that came up on a search
[09:57] <lordievader> sonu_nk: SSL does not provide any security for the contents of a page, hence XSS attacks are still possible.
[10:49] <RoyK> sonu_nk: SSL, that is, TLS, is just transport safety, it doesn't do anything about bad code on the page, as lordievader says
[10:57] <sonu_nk> ok
=== amonrahx is now known as am0nrahx
[15:49] <station> whats a good webpannel for ubuntu server virtual machine host
[15:49] <station> 16.04
[16:10] <Masterphi> can someone confirm this is the right way of configuring automatic updates using automatic-updates? https://help.ubuntu.com/lts/serverguide/automatic-updates.html
[16:12] <Masterphi> (I'm using an ec2 instance)
[16:38] <Epx998> maas has its own channel probably?
[17:17] <thebwt> Masterphi: Correct, unattended upgrades probably the most common way of doing automatic updates with apt.
[17:18] <Masterphi> :+1: thx
[17:18] <thebwt> Np
[18:45] <supercool> Hi
[18:45] <supercool> How do I untar a folder/file ?
[18:46] <sarnold> tar tf filename.tar | less   -- make sure it will untar what you expect; then tar xf filename.tar
[18:48] <supercool> sarnold: the compressed file uses .tar.gz extension
[18:49] <supercool> It means the file is zipped then tarred?
[18:49] <sarnold> supercool: these days tar recognizes several different compression formats, including gz, and 'x' works on the ones it knows
[18:49] <sarnold> supercool: the other way around -- tarred, then gzipped
[18:50] <supercool> So I keed tar tf filename.tar | less
[18:50] <supercool> keep*
[18:50] <sarnold> yeah; you don't want to be surprised if it has ../../etc/passwd in the tarball or something similar :)
[18:51] <supercool> :D
[18:51] <supercool> Alright, let me test it.
[20:56] <drab> hi, I'm trying to do transparent proxying and also do transparent dns redirection using a box that's not the gw
[20:56] <drab> any thoughts on the best approach?
[20:57] <drab> right now the content filtering it's happening on the gw, a simple iptables REDIRECT from port 80 to 8080
[20:57] <drab> but if I move the cf to another box that won't work since REDIRECT is local only
[20:57] <drab> I could NAT, but that seems nasty to do on LAN, and I
[20:57] <drab> 'd end up with double NAT (that + nat'ing again on the GW)
[20:58] <drab> for dns, there's people with hardcoded dns's which I'd like to redirect to our internal one
[20:58] <drab> so again outgoing requests to port 53 should be redirected to an internal server
[20:59] <drab> is [D/S]NAT with iptables the best solution to this kind of thing?
[21:12] <phibs> so i'm following https://help.ubuntu.com/lts/installation-guide/amd64/ch08s07.html and setting the boot parameter rescue/enable=true via PXE, but the installer keeps trying to preseed/install, any help appreciated.
[21:15] <drab> phibs: just to be sure, hwo do you determine that the installer keeps trying to preseed/install? because that page you linked does say that a few screens of the installer will be shown
[21:15] <drab> no note in the corner of the display?
[21:16] <phibs> if I remove the earlycmd exit from my preseed, it asks partitioning questions etc
[21:17] <drab> mmmhk, lemme try just out of curiosity, I have pxe here for installs, but never use it for recovery, for that I just boot a liveCD over pxe
[21:17] <phibs> nod I hear ya
[21:18] <phibs> also working on just building my own images with debirf as an alternative
[21:18] <phibs> and thanks!
[21:22] <drab> nope, that didn't work for me either... no clue why. not very helpful I know
[21:22] <phibs> well, I feel better now at least.
[21:23] <drab> what if you just use the shell during the installer? would that help?
[21:23] <drab> it's just busybox, but maybe it's enough?
[21:23] <phibs> Yeah i'm trying to present a nice environment for my techs to debug stuff
[21:23] <phibs> so more control would be better
[21:23] <drab> oh, I see
[21:23] <phibs> (and them not having to do extra stuff)
[21:24] <phibs> debirf built me a kernel/initrd, so it's possible that route will work nicely
[21:24] <drab> liveCD is not an option? too much stuff to load? that would even give you a GUI if that's the kind of tech you deal with
[21:24] <drab> oh, ok, had never heard about debirf, looks nice
[21:25] <phibs> don't need/want a gui, a lot of times we're debugging with SOL (IPMI)
[21:30] <drab> fair enough
[21:30] <phibs> (otherwise yeah, good suggestion)
[21:37] <drab> phibs: ah, I got it
[21:37] <phibs> what you gotg!
[21:37] <drab> phibs: I have a bunch of diff isos, server, mini, desktop and alternate
[21:37] <drab> I had a hunch and tried alternate and the pxe param worked
[21:38] <phibs> oh...
[21:38] <phibs> yeah this is just using http://archive.ubuntu.com/ubuntu/dists/$DISTRO-updates/main/installer-amd64/current/images/netboot/ubuntu-installer/amd64/initrd.gz
[21:38] <drab> lubuntu alternate install to be precise, "Rescue mode" popped up in the corner and it dropped me to the prompt to enter rescue mdoe as expected
[21:38] <drab> yeah, that's what I tried too initially
[21:38] <drab> and indeed it did not work
[21:39] <drab> I also tried with server, same problem
[21:39] <phibs> grr
[21:39] <drab> actually lemme test once more just to be sure, but mini/netboot did not work for sure
[21:39] <phibs> this is why we can't have nice things
[21:41] <drab> ok, I was wrong, I guess I tried diff minis... server works too
[21:41] <drab> so it's just the mini/netboot that does not work with rescue/enable=true
[21:41] <drab> the others do
[21:43] <phibs> hmm
[21:43] <phibs> which exact one did you use, the installer initrd/kernel?
[21:44] <phibs> (and did you specify a preseed url)
[21:45] <drab> the way I set up pxe is: download iso, unpack, copy files to srv/nfsroot and then copy stuff from install/ to tftp etc
[21:45] <drab> ubuntu-16.04.2-server-amd64.iso
[21:45] <drab> using that iso
[21:45] <drab> yes I used preseed to specify my internal mirror, language, etc
[21:46] <phibs> ah ok, thanks
[21:46] <phibs> we use pure initrd, no nfs
[21:49] <drab> yeah that's what I do for mini/netinstall, but not for server/dekstop installs
[21:49] <drab> and it seems you can't do rescue with mini/netinstall
[21:50] <phibs> ;0
[21:51] <drab> even tho since June I'm just using mini + ansible and haven't touched server/desktop isos once
[21:52] <phibs> nice.
[21:52] <phibs> we take the server ones and customize a bit adding other debs and tools
[21:54] <phibs> thanks for your help btw
[21:54] <sarnold> hey phibs :)
[21:54] <phibs> sarnold: yo ;0
[21:56] <drab> phibs: my pleasure, it was good to know
[21:57] <drab> .o/ sarnold
[21:57] <sarnold> hey drab :)
[22:02] <drab> any thoughts about the transparent content filter question? :)
[22:07] <drab> bbl
[22:07] <sarnold> man I can't find the blog post from a pal that I thought would help. I've asked, but he might have gone to bed already.
[22:10] <gheorghe_> guyssssss please add openstack-dashboard version 11.0.3 to the repos ... we just have 11.0.2 and this version has some major interface bug and you can't deploy istances with volumes... 11.0.3 was already published by openstack devs.
[22:11] <gheorghe_> anybody know whom i can span with this request? are the guys who manage ubuntu packages here on irc? can we make their day bad so they push the packages faster? :))
[22:11] <sarnold> gheorghe_: what bug number?
[22:20] <gheorghe_> sarnold i can search if you want. should i? does this info help?
[22:22] <sarnold> gheorghe_: issues with bug reports tend to get fixed faster than issues witohut bug reports; I was just going to see if the bug report looked at all useful, filed in the right place, etc
[22:23] <gheorghe_> sarnold the bug got already fixed. the package is just not available within the ubuntu repo
[22:24] <sarnold> gheorghe_: if there's no bug filed against an ubuntu package then no one will ever find out about it :)