[00:00] <malina> but anyway, ye looking at the update list, it seems qemu was updated not so long ago but didn't find stale/new ocnfig files which needed merging or anytbing so I don't know .
[00:00] <compdoc> I think in windows the only driver I add is the mem balloon. nics are e1000, and disks are ide or sata. otherwise not stable
[00:00] <malina> really?
[00:00] <malina> I use virtio for the disks and am pretty sure they are way better.
[00:00] <malina> oh wait, if you use windows as server, then
[00:01] <compdoc> I found virtio nics in a business environment to be a bad choice
[00:01] <malina> how is this on topic?
[00:02] <compdoc> in the past I have searched and installed the scsi card driver that windows sees. but its a pain to track down
[00:02] <compdoc> no, ubuntu server
[00:02] <malina> well, I played a bit with iscsi on a test server but felt complexity would mean time lost thus money, in 'business environments' but ye..
[00:02] <malina> OH i see
[00:03] <malina> you use a windows server AND a win10 machine as guests
[00:03] <compdoc> actually, ubuntu Mate thats used as servers. i like to remote desktop using x2go
[00:03] <malina> I get you, I thought you said you ran a windows machine on a windows server.
[00:03] <compdoc> no, I was talking about windows guests. and nix guests too. I avoid virtio
[00:05] <malina> ye, ok.. but I am here to find something on an issue with the vfio logic and libvirtd, not chit chat about our machines. sorry. I have no issues running passing through nvme nor runing it on virtio or the other disks, and sure, a very old sindle and/or full will suffer under virtualisation (be it virtio or elsewise), but else, I get near native performance with virtio, whic is _good enough_ for my simple worksttion windows machine.
[00:05] <malina> anyway, if no one has had similar issues lately of vfio card not binding suddenly and/or usb passthrough being potentially an issue, I will move on.
[01:16] <emOne> hmm I disabled password authentication in SSH, but password authentication still appears when I ssh into the box
[01:16] <tomreyn> did you restart the ssh server?
[01:19] <emOne> tomreyn: no but I restarted the whole OS
[01:20] <emOne> restarting just the ssh server doesn't help either
[01:21] <tomreyn> restarting sshd does apply configuration changes to sshd_config, yes
[01:21] <tomreyn> what's the prompt you get when you connect?
[01:22] <emOne> password:
[01:22] <tomreyn> and your client is?
[01:22] <tomreyn> putty, i guess?
[01:22] <emOne> mac os terminal
[01:23] <emOne> bash or whatever it uses
[01:23] <emOne> tomreyn: it works fine if I connect to root@IP
[01:23] <emOne> but if I connect to just the IP or other made up users it shows me the password prompt
[01:24] <tomreyn> how do you connect to root@IP then?
[01:24] <emOne> ssh root@my.ip
[01:24] <tomreyn> not connect, authenticate, i mean
[01:24] <emOne> public key
[01:24] <emOne> secured by a password
[01:24] <tomreyn> okay, so there's no issue there
[01:25] <emOne> but to be honest I never had this issue before on ubuntu 18.02
[01:25] <emOne> 04
[01:25] <emOne> I think it might have something to do that I am running it through a virtual container
[01:25] <tomreyn> it's normal for ssh clients to fall back to password authentication since the server wont tell the client which ones are available
[01:26] <emOne> fair enough
[01:27] <emOne> tomreyn: I don't want attackers to even try guessing passwords
[01:28] <emOne> or is that a client only thing
[01:28] <tomreyn> if your server is configured not to accept password authentication then clients can try as much to do as they want but wont succeed
[01:29] <emOne> awesome :)
[01:30] <tomreyn> the server must not enable the client to guess whic authentication methods are enabled, so it keeps pretending that password authentication was available.
[01:31] <emOne> tomreyn: I think it might have something to do with the fact I am running ubuntu through a virtual proxmox container
[01:31] <tomreyn> what is "it"?
[01:31] <emOne> the clown
[01:31] <emOne> ;)
[01:31] <emOne> pennywise
[01:32] <emOne> or, the password prompt
[01:32] <emOne> you choose
[01:32] <tds> tomreyn: why wouldn't the server indicate which methods are available though?
[01:33] <tds> that's certainly the behaviour I see on my machines with password auth disabled
[01:33]  * emOne waves at tds
[01:33] <emOne> I think "it" got him lol
[01:34] <tds> emOne - what did you change in your sshd config exactly?
[01:34] <emOne> passwordauthentication no
[01:35] <emOne> PermitRootLogin yes
[01:35] <emOne> UsePAM yes
[01:35] <emOne> X11Forwarding yes
[01:35] <emOne> the last two I didn't change. They are commente out though.
[01:35] <tds> I can't remember if those are case sensitive, but I suspect you wanted PasswordAuthentication?
[01:36] <mybalzitch> I forgot I'd turned off password based authentication entirely on my big server, until I tried to log in from my new desktop
[01:36] <mybalzitch> had to go digging for my pubkey
[01:36] <emOne> sorry. I typed it out in IRC.. yes it is PasswordAuthentication in the config file
[01:36] <emOne> mybalzitch: that is always fun
[01:40] <emOne> tds: I just removed my ssh key
[01:40] <emOne> tds: the password prompt showed up and it let me enter my root password without the key ...
[01:40] <emOne> it let me log in
[01:41] <emOne> I think I may have put the public key in the wrong directory or something
[01:41] <emOne> I removed the ssh key from my client machine
[01:47] <tomreyn> tds: hmm, yes, you're right, the server actually does tell the client which authentication methods are supported. sorry, i got this wrong.
[01:49] <tomreyn> emOne: ^
[01:53] <emOne> tomreyn: yes something else is wrong
[01:53] <emOne> firstly and strangely the folder ~/.ssh didn't exist on the ubuntu OS
[01:53] <emOne> I created it myself
[01:54] <emOne> also I found out that if I remove my key pair from my local/laptop machine , I am still prompted with a password box
[01:54] <emOne> when I type my root password in, it just lets me log on
[01:54] <emOne> so something is obviously not ight
[02:18] <emOne> I fixed the issue... there was a mistake in sshd config
[08:45] <lotuspsychje> !netplan
[08:45] <circ-user-dFjby> https://paste.ubuntu.com/p/ky3NHkkQFR/
[08:45] <circ-user-dFjby> Need a bit of help with netplan,
[08:46] <circ-user-dFjby> I am wanting to configure a bridge0 and eth0 (enp2s0) to get a DHCP address from the router.
[08:46] <circ-user-dFjby> the br0 is going to be used for libvirt.
[08:47] <circ-user-dFjby> But eh, I want the enp2s0 to have it's normal eth0 address based on it's mac, as it used to be with the old /etc/network/interfaces configuration I had on the older version of the server.
[08:53] <lotuspsychje> circ-user-dFjby: im not the netplan expert myself, but i think you need to add your routes in the yaml file
[09:02] <circ-user-dFjby> Hi, I am trying to achieve something else.
[09:02] <circ-user-dFjby> I want the br0 to be 10.15.1.100 (static) and the libvirt to get a DHCP address from the router.
[09:02] <circ-user-dFjby> so any interface screated by the libvirt.
[09:10] <TJ-> circ-user-dFjby: your requirement doesn't make sense
[09:11] <TJ-> circ-user-dFjby: you want enp2s0 to be a slave port of br0 ? but you also want it to have its own IP address and therefore be routable ?
[12:48] <Greyztar> TJ-: evening, i went to broadcom and downloaded latest 3dm2 cli/tw-cli still no serial,however i totally forgot to i could use the -d switch with smartctl as tds mentioned earlier (was a little late for me so head wasent working properly) with 3ware,x /dev/twx to also query for info not only do smart test and that got me the serial number hooray! Thanks for help tds also (,")
[12:50] <TJ-> Greyztar: good to hear you found it!
[12:50] <Greyztar> did find it little bit odd though that lsi own software couldnt display it,but then again smartmontools is some awesome piece of software hehe
[13:14] <tds> Greyztar: ah, that's good to hear! and that sounds about right for raid controller software ;)
[14:09] <weedmic> i'm trying to limit java's time with the cpu, I did "nice -10 java" and "nice -10 /usr/bin/java" both just bring up a parms list.  what am i doing wrong?
[14:12] <weedmic> nvm i c from htop that the troublemakers are already set to 20
[15:10] <Rojola1> hi
[15:10] <Rojola1> according to the manpages, and also according to many tutorials out there, the .local files should override the .config  files
[15:10] <Rojola1> ^ I'm talking about "fail2ban"
[15:11] <Rojola1> but fail2ban ignores the .local file
[15:11] <Rojola1> it takes all the config from:
[15:11] <Rojola1> /etc/fail2ban/jail.conf
[15:11] <Rojola1> /etc/fail2ban/jail.local  is being ignored