[05:15] <ansyeb> hello. whats the best way to read array of strings from ENV VAR, and then process each value depending on a condition in a loop using bash or perl?
[05:45] <t0lkman> for www server do you suggest to use built-in www-data user? or create new one
[05:45] <benharri> www-data user is fine
[05:47] <t0lkman> thanks
[07:03] <lordievader> Good morning
[07:34] <t0lkman> Is there any way so whatever user create/copy any file into /www directory the file will have www-data owner?
[07:42] <lordievader> Yes, there are sticky bits with that effect.
[07:43] <lordievader> Hrm, that might only be for groups. It seems that ACLs can do this: https://unix.stackexchange.com/questions/115631/getting-new-files-to-inherit-group-permissions-on-linux
[11:16] <RoyK> t0lkman: I uess using a group for that will be a good idea
[11:17] <RoyK> t0lkman: if you don't want fancy ACLs, that is
[12:40] <pagios> hello, i have a NFS question, i have a server hosting some mp4 files, and a client mounting the directory of the nfs server locally. The users mainly connect to the webserver on the client which is mounting the mp4 directory of the server. My question is, when a user tries to play the mp4 file, he uses the nfs mount on the client, does it mean if i have 100 clients, i create 100 request for nfs between the client and
[12:40] <pagios> server?
[12:40] <pagios> [14:38:24] <pagios> or is it one request for the mp4 that is shred by all the users?
[12:43] <lotuspsychje> idle a bit ok pagios, usa waking up soon
[12:46] <trippeh> hum. initramfs-tools doesnt seem to work so well with xz compressed kernel modules.
[12:47] <lotuspsychje> trippeh: start from the beginning please, what are you trying to do?
[12:47] <trippeh> trying to use xz compressed kernel modules, as supported by kmod in ubuntu.
[12:51] <trippeh> it's not important, was just looking into some private packaging.
[12:52] <trippeh> seems partly supported, update-initramfs copies over some of the xz modules, just far fewer than when using plain .ko's
[13:05] <lyze> Hey! I'm currently trying to install ubuntu server 18.04.2 on a new system. I wanted to setup software raid for / but when it tries to create the partition on /dev/md0 it fails and crashes: https://i.imgur.com/5SlaWwI.jpg   Installing the system without raid but using all drives works fine. Setting up raid with https://wiki.ubuntuusers.de/Software-RAID/ manually in a live cd works also fine. Could somebody help? c:
[13:07] <sarnold> do you have access to a shell on that machine that you could use to run dmesg?
[13:08] <lyze> yes
[13:09] <lyze> gimme a sec
[13:12] <lyze> So I've run the installer up to the point where it crashes and pressed ctrl alt f2 to switch to a free shell
[13:12] <lyze> sarnold, anything in particular you want to see from dmesg?
[13:13] <sarnold> lyze: I'm mostly curious if  there's any errors that give details why the partition create failed..
[13:14] <lyze> Here's the output https://0x0.st/zifA.txt
[13:15] <sarnold> well, that's kinda mixed. no errors (probably for the best :) -- but the sda1 and sdc1 sdc2 makes me wonder.. why do those two drives have different partition schemese if you're making a raid out of them?
[13:16] <lyze> I've tried to install it without raid right before this reboot, just to check if that might fail as well. That's probably why dmesg shows that
[13:17] <lyze> I'll reboot quickly and send you the new dmesg output
[13:17] <sarnold> aha
[13:19] <lyze> https://0x0.st/zifS.txt that's the new dmesg output
[13:19] <lyze> And that's the output of blkid https://0x0.st/zifQ.txt
[13:23] <sarnold> lyze: sorry, I'm out of ideas. if you have the time, please do file a bug
[13:23] <lyze> Alright thanks for your time! I'll check if it fails on 18.04.1 as well or not and file a bug report if I find some time.
[14:03] <lyze> Does anyone has a download link for 18.04 instead of 18.04.2?
[14:10] <lyze> sarnold, figured it out thanks to a year old bug report on launchpad. Instead of using 100% of the md0 partition I've told it to use 99% of it and now it works just fine.
[14:10] <sarnold> lyze: wat
[14:11] <lyze> yes
[14:11] <lyze> exactly
[14:11] <sarnold> lyze: that sounds like it's worth a comment on the bug report :)
[14:11] <lyze> https://bugs.launchpad.net/subiquity/+bug/1783374
[14:11] <sarnold> ta
[14:11] <OerHeks> i have 18.04.1 live server http://nl.releases.ubuntu.com/bionic/ubuntu-18.04.1-live-server-amd64.iso.torrent
[14:13] <sarnold> mwhudson: ^^^ /lastlog lyze -- is  https://bugs.launchpad.net/subiquity/+bug/1783374 actually fixed?
[14:14] <lyze> OerHeks, thanks!
[14:15] <OerHeks> lyze
[14:15] <lyze> Yes?
[14:15] <OerHeks> wait
[14:15] <OerHeks> http://ftp.yzu.edu.tw/Linux/ubuntu-old-releases/releases/18.04.0/
[14:15] <OerHeks> old releases page
[14:16] <lyze> ahh awesome
[14:16] <OerHeks> yw
[14:16] <OerHeks> all the way from taiwan :-D
[14:18] <mwhudson> sarnold: possibly not in all cases :(
[14:19] <mwhudson> presumably the size of a md devices is a deterministic function of the size of the constituent devices and the raid level
[14:19] <mwhudson> but sometimes it really doesn't seem like it
[14:19] <sarnold> oof
[14:20] <mwhudson> lyze: can you paste lsblk?
[14:20] <mwhudson> lsblk -b
[14:20] <lyze> yep, gimme a sec
[14:22] <lyze> mwhudson, https://0x0.st/ziOo.txt
[14:23] <lyze> Should I comment on the old bug report?
[14:23] <lyze> I've never really worked with launchpad before
[14:24] <sarnold> probably best to file a new bug
[14:24] <sarnold> and say in the description that it's quite similar to an old bug blah blah lp: ...
[14:25] <lyze> ok
[14:31] <muhaha> Any love for me ? https://superuser.com/questions/1407474/run-kodi-on-ubuntu-bionic-server-with-flatpak
[14:32] <sarnold> I thought you got that working yesterday?
[14:32] <OerHeks> muhaha, oh, that error is being worked on
[14:32] <muhaha> yes :/
[14:33] <sarnold> oh i see, that's a *new* question..
[14:33] <muhaha> si it?
[14:36] <mwhudson> lyze: thanks! did you pastebin the failing sgdisk command already? :)
[14:37] <mwhudson> ah you posted a photo of it, good enough
[14:37] <mwhudson> lyze: busy now but if you can file a bug with lsblk and that image, that would be super great
[14:37] <lyze> Yeah didn't think of grabbing the logs from somewhere and uploading it
[14:37] <lyze> yeah will do
[14:38] <mwhudson> lyze: well i just want to know how big a partition we're trying to create and the image is ok for that :)
[14:38] <mwhudson> (i am still pretty unhappy about this general situation but oh well)
[14:38] <mwhudson> block devices in linux a mess, news@11
[14:45] <muhaha> sarnold:  It does not work for me unfortunatelly...
[14:46] <OerHeks> muhaha, install the xbmc version?
[14:47] <OerHeks> ppa, that is
[14:48] <lyze> Good like this? https://bugs.launchpad.net/subiquity/+bug/1816777
[14:49] <sarnold> awesome, thanks :)
[14:49] <muhaha> OerHeks: xbmc will not work eighter ... There is a problem with ubuntu server, xorg, lightdm and autologin under user and run X11 app
[17:11] <yikoru> hi some good book about security in debian or ubuntu server??
[17:15] <lordcirth__> yikoru, https://github.com/imthenachoman/How-To-Secure-A-Linux-Server ?
[17:16] <tomreyn> https://help.ubuntu.com/lts/serverguide/security.html.en is a start
[17:17] <OerHeks> or look for pages 'ubuntu server hardening'
[18:14] <muhaha> what is difference between xhost vs xserver-xorg-legacy/xwrapper/allowed_users ?
[18:31] <yikoru> but some recommendation? i dont want a web page or similar i'll find a good book and buy it
[18:46] <RoyK> yikoru: dunno about books, but there are a lot of resources on the net. Basically, to secure a server, keep as few services running as possible - only those you need. Don't install stuff you don't know. Don't use PPAs. Better yet, use something else than Ubuntu, like Debian or even CentOS, since they're far more strict in package management. Install a good firewall (ufw on debian/ubuntu is a good
[18:46] <RoyK> frontend for iptables). Update regularly, preferably with unattended-upgrades or similar.
[18:46] <RoyK> yikoru: that's just my words, I guess others may have other views
[18:48] <RoyK> yikoru: and if you need some PPA of sorts, or some custom software, make sure it doesn't run as root, and better run it in a VM instead of on the host, in case the midden hits the windmill, so to say…
[18:52] <yikoru> ok thanks i'll considered for the future i plan upgrade all my server farm (2 servers jajajajaja) with the security in mind because in my enterprise its not a item to consider (unfortaly)
[19:07] <RoyK> yikoru: for that sort of work, I wouldn't use ubuntu, although I know some people do and it works well
[19:07] <RoyK> yikoru: swearing in church here…
[19:09] <yikoru> jajajaja yes i think about debian so, but i dont know if my bosses approve the change of distribution (at present use ubuntu)
[19:10] <RoyK> at least stick to LTS
[19:14] <yikoru> at least...
[20:06] <Ussat> and FYI:  https://nvd.nist.gov/vuln/detail/CVE-2019-8912
[20:10] <OerHeks> https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-8912.html untriaged
[20:10] <OerHeks> and disputed
[20:14] <sdeziel> OerHeks: off by 2 years ;)
[20:15] <OerHeks> :-( my bad
[23:19] <mostym> Hey guys.  I have two static different static ips assigned to two network ports https://paste.ubuntu.com/p/JTtFnTrKTM/.  I can ping the .51 but can't ping the .50
[23:19] <mostym> Does everything look correct in the netplan config?
[23:19] <mostym> I am running 18.04.2
[23:28] <RoyK> mostym: why would you have  two network cards on the same network?
[23:28] <RoyK> mostym: the routing table will be messy
[23:29] <RoyK> mostym: if you want bonding or teaming or something like that, configure it