[06:30] <Rubato> hi
[06:33] <Rubato> need help
[06:46] <ducasse> Rubato: what is your problem?
[06:47] <ducasse> please be specific and provide details
[06:49] <Rubato> i have a problem restarting sql server
[06:50] <Rubato> ERROR 2002 (HY000): Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (111)
[06:50] <Rubato> it seems the socket is already in use
[06:50] <Rubato> but sql process
[06:50] <Rubato> but if i kill the pid
[06:50] <Rubato> it keeps coming back
[08:40] <RoyK> Rubato: quite normal - systemd will often try to restart something that dies unexpectently - systemctl stop <servicename> is the way to go. Is this mysql or mariadb?
[12:55] <technoob> Hi
[12:56] <lotuspsychje> welcome technoob
[12:57] <technoob> Im a flask python programmer
[12:57] <technoob> Who here wanna talk
[12:58] <lotuspsychje> technoob: this channel is the ubuntu server support
[12:58] <technoob> Oh
[12:58] <technoob> I see
[12:59] <technoob> Wait is this the channel where they auto flush out inactive users?
[14:21] <geosmile> how do i maintain my own private authenticated PPA - are there any good tools to help with this effort?
[14:38] <RoyK^> geosmile: something like this? https://www.dynamsoft.com/codepool/linux-debian-reporisory-reprepro.html
[15:13] <geosmile> RoyK^, Thanks. That was written for 14.04 - reprepro was last updated in 2019 - is there a tool that is well maintained for this? I also looked at aptly - same problem
[15:24] <geosmile> https://github.com/KanoComputing/kano-repository-manager - perhaps something like this but well maintained
[15:40] <andol> geosmile: Not sure if I missed somewhat, but what is the "same problem" shared by reprepro and aptly?
[15:40] <geosmile> andol, they both are not actively maintained. aptly is worse than reprepro - comparing last updates
[15:40] <geosmile> andol, have you used any of those tools?
[15:42] <andol> geosmile: I've used reprepro, and I've been happy enough with it. Aside from not having been updated since 2019, is there anything in paritcular missing/broken with reprepro?
[15:43] <geosmile> andol, it looks painful to use. Are there any wrappers that make it easier to use?
[15:43] <geosmile> andol, as far as I can tell, one can just host a nginx/apache server - host the files in a particular directory structure and apt-add-repo will work, am i correct?
[15:44] <geosmile> I see "dists" and "pool" directory - is that enough?
[15:44] <andol> What reprepro/aptly/etc does is that they generate, and sign, the needed repository metadata. Then however you host it is up to you. Using a web server is a common solution.
[15:45] <geosmile> andol, how do you add a authentication/password/key - so that the PPA can only be used by a machine that has that certificate/password?
[15:46] <geosmile> andol, https://github.com/KanoComputing/kano-repository-manager - also - do you know of a tool like this that is well maintained?
[15:47] <andol> Well, that depends on how/where you want to host your repositority, but in the case of apache/nginx you'd simply use its native access control.
[15:48] <geosmile> andol, if i put a password on nginx for example, how do you supply it to apt?
[15:50] <andol> geosmile: From what I've understood you go with the https://username:password@server.example.com/ in your sources.list
[15:51] <geosmile> andol, can ssh be used ? or https is the only way?
[15:51] <andol> geosmile: ssh ought to be usable as well.
[15:54] <geosmile> deb ssh://repo-owner@repo.server.com:/home/repo-owner/debian/ ./
[15:54] <geosmile> Yup, that works!
[15:57] <geosmile> andol, it seems that I've to store root@public keys of all the client machines - which might be a security hazard to some extent
[15:58] <andol> geosmile: Surely you'll use a dedicted user for repository access?
[15:59] <geosmile> so the repo.server should have keys so that it can enter all the client machines?
[23:29] <exalted_shmo> Hello! I'm having some difficulty with bridged networking within a docker container on ubuntu 18.04. Is this the right place to ask for help, or is there another channel that would be better?
[23:36] <quadrathoch2> no, just give us more information exalted_shmo :) hopefully somebody can answer your questions
[23:37] <exalted_shmo> Sure! I am running ubuntu 18.04 server on digital ocean and I'm trying to run some docker containers, but within the container it seems the network is not active.
[23:37] <exalted_shmo> I can start a new ubuntu container with `docker run -dit --name ubuntu1 ubuntu bash`
[23:37] <exalted_shmo> and do `docker attach ubuntu1`
[23:38] <exalted_shmo> but when I do `apt update` apt cannot connect to any host
[23:38] <exalted_shmo> the DNS may be a problem, but I have also run other tests and found that I cannot even ping 8.8.8.8 from within the container
[23:41] <exalted_shmo> If I run `docker run -dit --network=host --name ubuntu1 ubuntu bash` everything works as normal, so I was able to install ping that way and test it out.
[23:43] <quadrathoch2> as I don't run docker, I can only guess. did you look at your firewall exalted_shmo?
[23:44] <exalted_shmo> this is the current output of `ufw status`:
[23:44] <exalted_shmo> ```Status: activeTo                         Action      From--                         ------      ----8000                       ALLOW       Anywhere                  OpenSSH                    ALLOW       Anywhere                  8000 (v6)                  ALLOW       Anywhere (v6)             OpenSSH (v6)               ALLOW       Anywhere (v6)
[23:44] <exalted_shmo> ack, sorry about the formatting
[23:44] <exalted_shmo> I suspect the firewall is not configured correctly, but I am unsure what the correct configuration would be
[23:44] <exalted_shmo> ```
[23:45] <exalted_shmo> ```Status: activeTo                         Action      From--                         ------      ----8000                       ALLOW       Anywhere                  OpenSSH                    ALLOW       Anywhere                  8000 (v6)                  ALLOW       Anywhere (v6)             OpenSSH (v6)               ALLOW       Anywhere (v6)
[23:45] <exalted_shmo> ```
[23:45] <quadrathoch2> exalted_shmo use paste.ubuntu.com for stuff like this
[23:46] <exalted_shmo> apologies, thank you
[23:46] <exalted_shmo> https://paste.ubuntu.com/p/w5xzrD36qK/
[23:48] <exalted_shmo> it may also be significant that I recently upgraded from 14.04 with `do-release-upgrade`
[23:49] <quadrathoch2> do you deny outgoing traffic? just guessing here
[23:49] <exalted_shmo> is there a way I could tell that that is the case?
[23:49] <quadrathoch2> ufw status verbose
[23:50] <exalted_shmo> https://paste.ubuntu.com/p/mrQrmtJ2zd/
[23:51] <quadrathoch2> I'm pretty sure this could be a problem: deny (routed)
[23:54] <exalted_shmo> possibly, I did not set that explicitly, so I do not know how to change that one
[23:58] <exalted_shmo> I modified `/etc/default/ufw` and set `DEFAULT_FORWARD_POLICY="ACCEPT"` and then restarted ufw and now ufw status verbose says `Default: deny (incoming), allow (outgoing), allow (routed)`
[23:59] <exalted_shmo> but I am still having the same trouble within the containers