[00:00] but anyway, ye looking at the update list, it seems qemu was updated not so long ago but didn't find stale/new ocnfig files which needed merging or anytbing so I don't know . [00:00] I think in windows the only driver I add is the mem balloon. nics are e1000, and disks are ide or sata. otherwise not stable [00:00] really? [00:00] I use virtio for the disks and am pretty sure they are way better. [00:00] oh wait, if you use windows as server, then [00:01] I found virtio nics in a business environment to be a bad choice [00:01] how is this on topic? [00:02] in the past I have searched and installed the scsi card driver that windows sees. but its a pain to track down [00:02] no, ubuntu server [00:02] well, I played a bit with iscsi on a test server but felt complexity would mean time lost thus money, in 'business environments' but ye.. [00:02] OH i see [00:03] you use a windows server AND a win10 machine as guests [00:03] actually, ubuntu Mate thats used as servers. i like to remote desktop using x2go [00:03] I get you, I thought you said you ran a windows machine on a windows server. [00:03] no, I was talking about windows guests. and nix guests too. I avoid virtio [00:05] ye, ok.. but I am here to find something on an issue with the vfio logic and libvirtd, not chit chat about our machines. sorry. I have no issues running passing through nvme nor runing it on virtio or the other disks, and sure, a very old sindle and/or full will suffer under virtualisation (be it virtio or elsewise), but else, I get near native performance with virtio, whic is _good enough_ for my simple worksttion windows machine. [00:05] anyway, if no one has had similar issues lately of vfio card not binding suddenly and/or usb passthrough being potentially an issue, I will move on. [01:16] hmm I disabled password authentication in SSH, but password authentication still appears when I ssh into the box [01:16] did you restart the ssh server? [01:19] tomreyn: no but I restarted the whole OS [01:20] restarting just the ssh server doesn't help either [01:21] restarting sshd does apply configuration changes to sshd_config, yes [01:21] what's the prompt you get when you connect? [01:22] password: [01:22] and your client is? [01:22] putty, i guess? [01:22] mac os terminal [01:23] bash or whatever it uses [01:23] tomreyn: it works fine if I connect to root@IP [01:23] but if I connect to just the IP or other made up users it shows me the password prompt [01:24] how do you connect to root@IP then? [01:24] ssh root@my.ip [01:24] not connect, authenticate, i mean [01:24] public key [01:24] secured by a password [01:24] okay, so there's no issue there [01:25] but to be honest I never had this issue before on ubuntu 18.02 [01:25] 04 [01:25] I think it might have something to do that I am running it through a virtual container [01:25] it's normal for ssh clients to fall back to password authentication since the server wont tell the client which ones are available [01:26] fair enough [01:27] tomreyn: I don't want attackers to even try guessing passwords [01:28] or is that a client only thing [01:28] if your server is configured not to accept password authentication then clients can try as much to do as they want but wont succeed [01:29] awesome :) [01:30] the server must not enable the client to guess whic authentication methods are enabled, so it keeps pretending that password authentication was available. [01:31] tomreyn: I think it might have something to do with the fact I am running ubuntu through a virtual proxmox container [01:31] what is "it"? [01:31] the clown [01:31] ;) [01:31] pennywise [01:32] or, the password prompt [01:32] you choose [01:32] tomreyn: why wouldn't the server indicate which methods are available though? [01:33] that's certainly the behaviour I see on my machines with password auth disabled [01:33] * emOne waves at tds [01:33] I think "it" got him lol [01:34] emOne - what did you change in your sshd config exactly? [01:34] passwordauthentication no [01:35] PermitRootLogin yes [01:35] UsePAM yes [01:35] X11Forwarding yes [01:35] the last two I didn't change. They are commente out though. [01:35] I can't remember if those are case sensitive, but I suspect you wanted PasswordAuthentication? [01:36] I forgot I'd turned off password based authentication entirely on my big server, until I tried to log in from my new desktop [01:36] had to go digging for my pubkey [01:36] sorry. I typed it out in IRC.. yes it is PasswordAuthentication in the config file [01:36] mybalzitch: that is always fun [01:40] tds: I just removed my ssh key [01:40] tds: the password prompt showed up and it let me enter my root password without the key ... [01:40] it let me log in [01:41] I think I may have put the public key in the wrong directory or something [01:41] I removed the ssh key from my client machine [01:47] tds: hmm, yes, you're right, the server actually does tell the client which authentication methods are supported. sorry, i got this wrong. [01:49] emOne: ^ [01:53] tomreyn: yes something else is wrong [01:53] firstly and strangely the folder ~/.ssh didn't exist on the ubuntu OS [01:53] I created it myself [01:54] also I found out that if I remove my key pair from my local/laptop machine , I am still prompted with a password box [01:54] when I type my root password in, it just lets me log on [01:54] so something is obviously not ight [02:18] I fixed the issue... there was a mistake in sshd config [08:45] !netplan [08:45] Netplan is a network configuration abstraction renderer which uses YAML descriptions of a network to work with either a NetworkManager or Systemd-networkd "renderer". More information at https://netplan.io/ [08:45] https://paste.ubuntu.com/p/ky3NHkkQFR/ [08:45] Need a bit of help with netplan, [08:46] I am wanting to configure a bridge0 and eth0 (enp2s0) to get a DHCP address from the router. [08:46] the br0 is going to be used for libvirt. [08:47] But eh, I want the enp2s0 to have it's normal eth0 address based on it's mac, as it used to be with the old /etc/network/interfaces configuration I had on the older version of the server. [08:53] circ-user-dFjby: im not the netplan expert myself, but i think you need to add your routes in the yaml file [09:02] Hi, I am trying to achieve something else. [09:02] I want the br0 to be 10.15.1.100 (static) and the libvirt to get a DHCP address from the router. [09:02] so any interface screated by the libvirt. [09:10] circ-user-dFjby: your requirement doesn't make sense [09:11] circ-user-dFjby: you want enp2s0 to be a slave port of br0 ? but you also want it to have its own IP address and therefore be routable ? === Wryhder is now known as Lucas_Gray === Wryhder is now known as Lucas_Gray [12:48] TJ-: evening, i went to broadcom and downloaded latest 3dm2 cli/tw-cli still no serial,however i totally forgot to i could use the -d switch with smartctl as tds mentioned earlier (was a little late for me so head wasent working properly) with 3ware,x /dev/twx to also query for info not only do smart test and that got me the serial number hooray! Thanks for help tds also (,") [12:50] Greyztar: good to hear you found it! [12:50] did find it little bit odd though that lsi own software couldnt display it,but then again smartmontools is some awesome piece of software hehe [13:14] Greyztar: ah, that's good to hear! and that sounds about right for raid controller software ;) [14:09] i'm trying to limit java's time with the cpu, I did "nice -10 java" and "nice -10 /usr/bin/java" both just bring up a parms list. what am i doing wrong? [14:12] nvm i c from htop that the troublemakers are already set to 20 [15:10] hi [15:10] according to the manpages, and also according to many tutorials out there, the .local files should override the .config files [15:10] ^ I'm talking about "fail2ban" [15:11] but fail2ban ignores the .local file [15:11] it takes all the config from: [15:11] /etc/fail2ban/jail.conf [15:11] /etc/fail2ban/jail.local is being ignored === bracham_ is now known as bracham