malina | but anyway, ye looking at the update list, it seems qemu was updated not so long ago but didn't find stale/new ocnfig files which needed merging or anytbing so I don't know . | 00:00 |
---|---|---|
compdoc | I think in windows the only driver I add is the mem balloon. nics are e1000, and disks are ide or sata. otherwise not stable | 00:00 |
malina | really? | 00:00 |
malina | I use virtio for the disks and am pretty sure they are way better. | 00:00 |
malina | oh wait, if you use windows as server, then | 00:00 |
compdoc | I found virtio nics in a business environment to be a bad choice | 00:01 |
malina | how is this on topic? | 00:01 |
compdoc | in the past I have searched and installed the scsi card driver that windows sees. but its a pain to track down | 00:02 |
compdoc | no, ubuntu server | 00:02 |
malina | well, I played a bit with iscsi on a test server but felt complexity would mean time lost thus money, in 'business environments' but ye.. | 00:02 |
malina | OH i see | 00:02 |
malina | you use a windows server AND a win10 machine as guests | 00:03 |
compdoc | actually, ubuntu Mate thats used as servers. i like to remote desktop using x2go | 00:03 |
malina | I get you, I thought you said you ran a windows machine on a windows server. | 00:03 |
compdoc | no, I was talking about windows guests. and nix guests too. I avoid virtio | 00:03 |
malina | ye, ok.. but I am here to find something on an issue with the vfio logic and libvirtd, not chit chat about our machines. sorry. I have no issues running passing through nvme nor runing it on virtio or the other disks, and sure, a very old sindle and/or full will suffer under virtualisation (be it virtio or elsewise), but else, I get near native performance with virtio, whic is _good enough_ for my simple worksttion windows machine. | 00:05 |
malina | anyway, if no one has had similar issues lately of vfio card not binding suddenly and/or usb passthrough being potentially an issue, I will move on. | 00:05 |
emOne | hmm I disabled password authentication in SSH, but password authentication still appears when I ssh into the box | 01:16 |
tomreyn | did you restart the ssh server? | 01:16 |
emOne | tomreyn: no but I restarted the whole OS | 01:19 |
emOne | restarting just the ssh server doesn't help either | 01:20 |
tomreyn | restarting sshd does apply configuration changes to sshd_config, yes | 01:21 |
tomreyn | what's the prompt you get when you connect? | 01:21 |
emOne | password: | 01:22 |
tomreyn | and your client is? | 01:22 |
tomreyn | putty, i guess? | 01:22 |
emOne | mac os terminal | 01:22 |
emOne | bash or whatever it uses | 01:23 |
emOne | tomreyn: it works fine if I connect to root@IP | 01:23 |
emOne | but if I connect to just the IP or other made up users it shows me the password prompt | 01:23 |
tomreyn | how do you connect to root@IP then? | 01:24 |
emOne | ssh root@my.ip | 01:24 |
tomreyn | not connect, authenticate, i mean | 01:24 |
emOne | public key | 01:24 |
emOne | secured by a password | 01:24 |
tomreyn | okay, so there's no issue there | 01:24 |
emOne | but to be honest I never had this issue before on ubuntu 18.02 | 01:25 |
emOne | 04 | 01:25 |
emOne | I think it might have something to do that I am running it through a virtual container | 01:25 |
tomreyn | it's normal for ssh clients to fall back to password authentication since the server wont tell the client which ones are available | 01:25 |
emOne | fair enough | 01:26 |
emOne | tomreyn: I don't want attackers to even try guessing passwords | 01:27 |
emOne | or is that a client only thing | 01:28 |
tomreyn | if your server is configured not to accept password authentication then clients can try as much to do as they want but wont succeed | 01:28 |
emOne | awesome :) | 01:29 |
tomreyn | the server must not enable the client to guess whic authentication methods are enabled, so it keeps pretending that password authentication was available. | 01:30 |
emOne | tomreyn: I think it might have something to do with the fact I am running ubuntu through a virtual proxmox container | 01:31 |
tomreyn | what is "it"? | 01:31 |
emOne | the clown | 01:31 |
emOne | ;) | 01:31 |
emOne | pennywise | 01:31 |
emOne | or, the password prompt | 01:32 |
emOne | you choose | 01:32 |
tds | tomreyn: why wouldn't the server indicate which methods are available though? | 01:32 |
tds | that's certainly the behaviour I see on my machines with password auth disabled | 01:33 |
* emOne waves at tds | 01:33 | |
emOne | I think "it" got him lol | 01:33 |
tds | emOne - what did you change in your sshd config exactly? | 01:34 |
emOne | passwordauthentication no | 01:34 |
emOne | PermitRootLogin yes | 01:35 |
emOne | UsePAM yes | 01:35 |
emOne | X11Forwarding yes | 01:35 |
emOne | the last two I didn't change. They are commente out though. | 01:35 |
tds | I can't remember if those are case sensitive, but I suspect you wanted PasswordAuthentication? | 01:35 |
mybalzitch | I forgot I'd turned off password based authentication entirely on my big server, until I tried to log in from my new desktop | 01:36 |
mybalzitch | had to go digging for my pubkey | 01:36 |
emOne | sorry. I typed it out in IRC.. yes it is PasswordAuthentication in the config file | 01:36 |
emOne | mybalzitch: that is always fun | 01:36 |
emOne | tds: I just removed my ssh key | 01:40 |
emOne | tds: the password prompt showed up and it let me enter my root password without the key ... | 01:40 |
emOne | it let me log in | 01:40 |
emOne | I think I may have put the public key in the wrong directory or something | 01:41 |
emOne | I removed the ssh key from my client machine | 01:41 |
tomreyn | tds: hmm, yes, you're right, the server actually does tell the client which authentication methods are supported. sorry, i got this wrong. | 01:47 |
tomreyn | emOne: ^ | 01:49 |
emOne | tomreyn: yes something else is wrong | 01:53 |
emOne | firstly and strangely the folder ~/.ssh didn't exist on the ubuntu OS | 01:53 |
emOne | I created it myself | 01:53 |
emOne | also I found out that if I remove my key pair from my local/laptop machine , I am still prompted with a password box | 01:54 |
emOne | when I type my root password in, it just lets me log on | 01:54 |
emOne | so something is obviously not ight | 01:54 |
emOne | I fixed the issue... there was a mistake in sshd config | 02:18 |
lotuspsychje | !netplan | 08:45 |
ubottu | Netplan is a network configuration abstraction renderer which uses YAML descriptions of a network to work with either a NetworkManager or Systemd-networkd "renderer". More information at https://netplan.io/ | 08:45 |
circ-user-dFjby | https://paste.ubuntu.com/p/ky3NHkkQFR/ | 08:45 |
circ-user-dFjby | Need a bit of help with netplan, | 08:45 |
circ-user-dFjby | I am wanting to configure a bridge0 and eth0 (enp2s0) to get a DHCP address from the router. | 08:46 |
circ-user-dFjby | the br0 is going to be used for libvirt. | 08:46 |
circ-user-dFjby | But eh, I want the enp2s0 to have it's normal eth0 address based on it's mac, as it used to be with the old /etc/network/interfaces configuration I had on the older version of the server. | 08:47 |
lotuspsychje | circ-user-dFjby: im not the netplan expert myself, but i think you need to add your routes in the yaml file | 08:53 |
circ-user-dFjby | Hi, I am trying to achieve something else. | 09:02 |
circ-user-dFjby | I want the br0 to be 10.15.1.100 (static) and the libvirt to get a DHCP address from the router. | 09:02 |
circ-user-dFjby | so any interface screated by the libvirt. | 09:02 |
TJ- | circ-user-dFjby: your requirement doesn't make sense | 09:10 |
TJ- | circ-user-dFjby: you want enp2s0 to be a slave port of br0 ? but you also want it to have its own IP address and therefore be routable ? | 09:11 |
=== Wryhder is now known as Lucas_Gray | ||
=== Wryhder is now known as Lucas_Gray | ||
Greyztar | TJ-: evening, i went to broadcom and downloaded latest 3dm2 cli/tw-cli still no serial,however i totally forgot to i could use the -d switch with smartctl as tds mentioned earlier (was a little late for me so head wasent working properly) with 3ware,x /dev/twx to also query for info not only do smart test and that got me the serial number hooray! Thanks for help tds also (,") | 12:48 |
TJ- | Greyztar: good to hear you found it! | 12:50 |
Greyztar | did find it little bit odd though that lsi own software couldnt display it,but then again smartmontools is some awesome piece of software hehe | 12:50 |
tds | Greyztar: ah, that's good to hear! and that sounds about right for raid controller software ;) | 13:14 |
weedmic | i'm trying to limit java's time with the cpu, I did "nice -10 java" and "nice -10 /usr/bin/java" both just bring up a parms list. what am i doing wrong? | 14:09 |
weedmic | nvm i c from htop that the troublemakers are already set to 20 | 14:12 |
Rojola1 | hi | 15:10 |
Rojola1 | according to the manpages, and also according to many tutorials out there, the .local files should override the .config files | 15:10 |
Rojola1 | ^ I'm talking about "fail2ban" | 15:10 |
Rojola1 | but fail2ban ignores the .local file | 15:11 |
Rojola1 | it takes all the config from: | 15:11 |
Rojola1 | /etc/fail2ban/jail.conf | 15:11 |
Rojola1 | /etc/fail2ban/jail.local is being ignored | 15:11 |
=== bracham_ is now known as bracham |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!