/srv/irclogs.ubuntu.com/2018/08/05/#ubuntu-discuss.txt

lotuspsychjegood morning to all01:10
lotuspsychjeleftyfb: oO ;p01:46
lotuspsychjeyou want him?01:46
leftyfbnah01:47
leftyfbgot my own issues I'm dealing with01:47
lotuspsychjewhat you playin with leftyfb01:47
leftyfbmain server was down for 2 hours(gotta fix monitoring). It was rebooted (don't know why) and I just finished fixing why it came back up without network(stupid -modules packages)01:48
lotuspsychjeouch01:48
lotuspsychjewhat server Os leftyfb02:00
leftyfb16.04.502:00
lotuspsychjefound something in the logs?02:00
leftyfbI'm not finding anything02:00
leftyfbnope02:00
leftyfbauth.log, syslog, kern.log, last02:01
tomreynwhat kind of server is this?02:02
leftyfbPowerEdge R31002:02
leftyfbDell02:02
tomreyni guess it'll have some more logs then02:02
leftyfbwhat do you mean?02:03
tomreynthe remote out of band managment stuff, can't remember dell's name for it right now02:03
tomreynit probbaly provides some hardware monitoring log02:03
leftyfbipmi/iDrac02:03
tomreynright02:03
tomreynidrac is what i meant02:04
leftyfbsel log02:04
tomreynexactly, nothing there either?02:04
leftyfblooking ...02:04
lotuspsychjedebug logs?02:04
leftyfbI started looking for the exact term the moment you started mentioning it :)02:04
lotuspsychjeor the last command can help?02:04
leftyfbnope02:04
leftyfbnothing there, only "reboot"02:04
tomreyn:-/02:04
leftyfbnothing in SEL02:05
tomreynmight be better to switch it to not reboot automatically on failure next time02:05
tomreyn..so you can see whats on the console from idrac02:05
leftyfbyou think a failure caused it to properly reboot(ACPI)?02:06
tomreynwell if trhere's nothing in the logs, it sounds like a hardware issue, right? or a kernel issue which could not get logged in time02:07
leftyfbreboot   system boot  4.15.0-29-generic Sat Aug  4 18:17:43 2018 - Sat Aug  4 20:51:28 2018  (02:33)02:07
tomreyni think there's an optio in most bioses/uefis to stop the system from getting rebooted / power cycled on failures. it's normalöly enabled. i'm suggesting you might want to disable it.02:07
leftyfbthat's all I've got02:07
lotuspsychjeleftyfb: ups could rebooted it?02:08
lotuspsychjeif logs doesnt show anything, we should look external things?02:09
leftyfbI don't have any of the apc tools installed02:09
lotuspsychjehmm02:09
lotuspsychjeleftyfb: can you trigger var log messages from the day?02:10
lotuspsychjemorning guiverc_d02:11
leftyfbtrigger? Also, /var/log/messages hasn't been a thing in years. You mean syslog/auth.log02:11
lotuspsychjeyeah02:12
leftyfbhttps://pastebin.ubuntu.com/p/MzqjQ4rTMp/02:13
leftyfbthat's from syslog02:13
lotuspsychjelets c02:13
leftyfbreboot happened around 18:17 or so .. closer to 18:14 I think02:14
lotuspsychjeleftyfb: what kind of service your server running/purpose?02:15
leftyfbapache2 on the host and in a couple lxc containers02:15
lotuspsychjeshould be stable that02:15
leftyfbyep02:15
leftyfbbeen doing this stuff for over 20 years :)02:16
leftyfbiDrac has a nice "Last Crash Screen" feature, but nothing was captured. I don't think it was a crash though02:17
lotuspsychjeleftyfb: ssh on it? use anti bruteforce?02:18
leftyfbyep and yep02:18
lotuspsychjechecked those attempts yet?02:18
lotuspsychjeon the time of shutdown02:19
leftyfbroot has a randomly generated 23 character password that I don't know (on purpose) only accessible via ssh keys from 2 ip address's. I have fail2ban on. ssh running on a non-standard port02:19
lotuspsychjecheck anyway :p02:21
lotuspsychjeyou never know they got in02:21
leftyfboh this is cool as hell02:21
leftyfbiDrac saves a recording of the last 3 boot sequences02:21
lotuspsychjeaha02:21
tomreynwell, some may like it, others may hate it02:22
tomreynthere's also https://help.ubuntu.com/lts/serverguide/kernel-crash-dump.html02:22
tomreynbut i assume you'll know02:22
leftyfbif someone "got in" to ssh via a non-standard port using my private key and somehow spoofed the 2 ip address's that's allowed, one of which is local, there's no way in hell they left any sort of tracks02:22
tomreynthe @ characters in your log make it look like a kernel crash02:22
leftyfbtomreyn: that's what I was thinking.02:23
leftyfboh man, it shows me logging in to the local console and troubleshooting for a bit. Cool as shit02:24
tomreynscary as shit :P02:25
leftyfbI love it02:25
leftyfbit's a dedicated interface on my LAN, not accessible to the outside02:25
leftyfbdifferent VLANs02:26
tomreynthat's probably fine. i just don't like the idea of having the host OS effectively run in a sandbox with lots of security cameras and some other operating systems around it, where you have no idea what their limits are, how they work, and how they may be susceptible to compromise, too.02:28
leftyfbI'm partial to OOB BMC's02:28
lotuspsychje!info watchdog02:29
ubot5watchdog (source: watchdog): system health checker and software/hardware watchdog handler. In component universe, is extra. Version 5.15-2 (bionic), package size 81 kB, installed size 263 kB02:29
leftyfbit was sort of my thing when I worked at Canonical :)02:29
lotuspsychjecould be usefull too, but not sure if it can go in the past02:29
tomreyni like to have OOBs, i just want them to be well defined, well designed, and most of all sully open source and fully documented.02:30
leftyfbI think iDrac meets most, if not all of those02:30
lotuspsychjekk02:30
leftyfbespecially since it fully complies with ipmi02:30
tomreynluckily we'll likely get this in the years to come.02:30
tomreynidrac is proprietary, not open source, not documented (in terms of hardware and software), afaik.02:31
lotuspsychjei like lynis system scan too, but thats if you a bit more paranoid :p02:31
tomreynwell, libre software was not on my requirements list.02:31
leftyfbI really gotta setup another nagios server02:37
leftyfbanother day ... gonna call it a night02:38
lotuspsychjenite leftyfb02:40
lotuspsychjeBashing-om: next time, donate to lotus computers ok? https://www.omgubuntu.co.uk/2018/08/elementary-os-hires-cassidy-james02:50
lotuspsychjepm for my bank account02:50
Bashing-omlotuspsychje: looking.02:50
lotuspsychjelol02:50
Bashing-omlotuspsychje: Must be a trend started ... as the GNOME Foundation aslo recently got a donation that enabled paid staffing .02:55
lotuspsychjeyeah02:55
lotuspsychjenext: lotus computers :p02:55
lotuspsychjei understand when you retire, you dont know what to do with all your money :p02:56
Bashing-omlotuspsychje: I smell a fallacy somewhere :P02:57
lotuspsychjehaha02:57
Bashing-omI would be greatly pleased with a small donation of a Ryzen7 box :P02:59
lotuspsychjeyeah sure, how about 10 with million $02:59
Bashing-omlotuspsychje: Well, yeah ..if ya gonna wish .... wish *BIG* .03:00
lotuspsychjeto be able to help volunteers, we need a good machine right??03:00
* lotuspsychje hope that donate guy reads the ubuntu logs03:01
Bashing-omlotuspsychje: Consider how much smoother my work flow would be with modern hardware ... now that would be support :)03:02
lotuspsychjeyes!03:03
lotuspsychjewb pragmaticenigma03:37
pragmaticenigmaalo03:37
lotuspsychjebeen going slow03:37
pragmaticenigmathat'd be a nice change of pace03:38
ducassegood morning06:20
lotuspsychjegood afternoon to all10:22
tomreyngood morning lotuspsychje ;)10:31
tomreynyou just joined a few mins before i did ;)10:31
lotuspsychjehey tomreyn had a nice night :p10:31
tomreynerr after10:31
tomreynyes, full 6 hours10:31
lotuspsychjetoo hot again?10:31
tomreynsorry, missed your response, LP. not too hot, maybe too much daylight ;)11:14
lotuspsychjeno sweat11:14
tomreynnot yet11:16
lotuspsychjehaha11:16
BluesKajHi folks12:28
lotuspsychjehey there BluesKaj12:29
BluesKajhey lotuspsychje12:37
JimBuntuHita BluesKaj . Great morning to you and yours!13:07
BluesKaj'Morning JimBuntu, thanks...the same to you and yours :-)13:08
lotuspsychjehey pragmaticenigma13:32
pragmaticenigmahey13:33
lotuspsychjepragmaticenigma: support steady today13:34
pragmaticenigmaonly on for a moment13:35
lotuspsychjesure tyt, have a coffee :p13:35
pragmaticenigmacan't ... got places to be, things to do13:35
pragmaticenigmaI do not understand how someone things a support channel is the appropriate place to talk about their misives on flash13:38
lotuspsychjepragmaticenigma: <amagard> Hi folks. Anyone any hint why Flash Plyaer won't work on my ubuntu 18.04, neither in Firefox nor Chromium web browser ?13:39
lotuspsychjewas his origin question13:39
pragmaticenigmaperhaps, but the commentary after wasn't OT13:40
lotuspsychjetrue13:40
lotuspsychjeppl think when flash works in windows, everything is ok13:41
pragmaticenigmaAlso, flash is not insecure, regular updates are provided when vulnerabilities are found. Personally, I don't have it installed on my machines, only because adobe is pulling the plug 2020 (unless they're like microsoft and extend it another X years while companies finally remove it from their sites)13:41
pragmaticenigmaIf I desperately need flash for something, I have google chrome installed, which includes their sandboxed implementation13:41
lotuspsychjeflash is widely abused13:45
lotuspsychjebut hey alot of apps got 0day exploits13:46
pragmaticenigmait is, but to out-right dismiss it as vulnerable is spreading FUD in my mind. I have only ever been stung by flash once, and it was my own doing. I honestly believe a person has to really try to find a way to get their computer compromised these days.13:47
lotuspsychjei dont agree with that13:48
lotuspsychjewindows boxes are like full of malware just by browsing the web13:50
lotuspsychjei always warn users for using bad protocols13:51
lotuspsychjevnc,ftp,flash,..13:52
lotuspsychjessh when not protected gets hammered 24/7 also13:52
pragmaticenigmaI still call FUD on that... I have several windows boxes that I maintain for family. They only run Window's Defender full time, and I run other programs once a month. These machines are more or less vanilla installs with updates installed regularly.13:53
lotuspsychjeits not because its updated, they are not infected13:53
lotuspsychjei would call it reality instead of fud13:53
pragmaticenigmalotuspsychje: you just made the claim that owning a windows machine is vulnerable13:54
lotuspsychjepragmaticenigma: depends from the owner13:54
lotuspsychjebut alot of owners are infected yes13:54
pragmaticenigmathat's not a fault of the machine if the owner is doing bad things. computer do as they're told13:54
pragmaticenigmathey're not sentient... yet13:55
lotuspsychjethe owners choice is also the Os13:56
lotuspsychjescan any windows pc with malwarebytes and youl get 500 hits13:57
lotuspsychjeunless the owner maintains his Os a bit13:57
pragmaticenigmaI don't agree with that generalization13:58
lotuspsychjethen there are rootkits, virusses,browser exploits and scanners 24/713:58
lotuspsychjethe world is one big scanning warzone, thats reality mate13:58
lotuspsychjenot a general statement13:58
lotuspsychjesame for android..playstore is a joke full of malware14:02
lotuspsychjeive been warning my customers dont use pc banking on android14:03
pragmaticenigmaokay, i'm out ... this conversation is fruitless and really taking a turn for the worse14:04
lotuspsychjelater ;)14:04
lotuspsychjeleftyfb: server back in business?14:05
leftyfbit was last night, pretty quickly. I was just trying to find out the "why"14:05
lotuspsychjekk14:05
leftyfbI cringe thinking of all the packages someone_ has installed from ppa's, manually or from source.14:37
daftykins:)14:37
leftyfband there we go14:38
mwsbArch is still the best server os. It's just minimal and you know it's flaws14:42
leftyfbmwsb: It's nice to have an opinion isn't it?14:43
mwsbIt's a fact. daftykins knows14:45
leftyfbmwsb: incorrect14:45
daftykinsxD14:48
leftyfb<someone_> leftyfb I solved the problem, I have downloaded all .deb files from pkgs.org and after I installed them to take place of oibaf files, I executed sudo apt -f install and that is it and everything is perfect now ."17:14
* leftyfb sigh17:14
leftyfbsome people just refuse to listen/learn and are just hell bent on making a mess17:14
daftykinsxD17:15
tomreynBenderRodriguez: connection issues?20:21
daftykinstime to sort 'em :)20:21
tomreynnot happening20:42
daftykinshmm?20:46
tomreynits ok-ish, he got kicked, but only after he bragged about how he rickrolled folks, follewed by much discussion in #ubuntu, followed by more discussion in #ubunutu-ops. so he was able to deal his damge, which trolls consider winning. like he did twice yesterday, and the day besfore.20:51
daftykinsthis is the guy above? or someone else20:51
tomreynno, no. its this person now called 'rekt' in #ubuntu20:52
tomreynpreviously rooik20:53
daftykinsah20:55
tomreynthe only way to deal with such classic trolls is to kickban them immediately, leaving an explanatory (ban) message for the rest of the channel. since only then they can't do harm, can't disrupt, can't score in what they consider to be a game.20:57
daftykins*shrug* glad to not encounter such anymore20:58
tomreynhow do you do that? got his isp on ignore?20:58
daftykinsi'm not in that channel20:59
tomreynoh :) a hideous approach to solve this issue ;)21:00
daftykinsoh it's not from choice :)21:01
daftykinsthis is why i often ask what's going on in there, can't see for myself21:01
tomreyni see21:04

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!