[00:12] <Bashing-om> !info linux-generic-hwe-20.04 focal
[01:03] <dupi3> When will the latest dotnet 6.0 snap actually work without root and not having to do that horrendous workaround as shown here? github.com/dotnet/core/issues/4446#issuecomment-605629427
[01:06] <orange1> 5 weeks
[01:08] <dupi3> orange1 over 100 weeks already, what is 5,15,50 more?
[01:17] <th34lch3m1st> hi all
[01:24] <th34lch3m1st> I'm testing 22.04, live usb work fine, but hardware installation complain about UEFI/GPT and it won't start the OS (Failed to load Login System). Legacy bios machine.
[01:28] <th34lch3m1st> Silly question: does 22.04 daily build "run" on legscy bios machine?
[02:14] <hays> leftyfb: whatever i was supposed to use LXD for i accomplished with about 6 lines of config files
[02:18] <leftyfb> and installing bridge-utils (or the like) and additional network configs on the guest
[02:19] <hays> in the guest i just assigned the static ip
[02:19] <leftyfb> Most of which was done on Debian, which isn’t supported here
[02:20] <hays> it was about equal work on the host and guest
[02:20] <hays> using tools common to both distributions
[02:21] <leftyfb> Not including the custom namespaced install of Ubuntu you did
[02:22] <leftyfb> Literally everything we just mentioned is done with 3 commands. 2 to install and initialize lxd and a 3rd to pull down a cloud image of Ubuntu or almost any other distro you want
[02:23] <leftyfb> I see no advantage to the way you did it. But congrats
[09:32] <EbeninAmi> hi, someone online here?
[09:32] <EbeninAmi> I have a question about something.
[09:33] <ravage> !ask | EbeninAmi
[09:33] <EbeninAmi> I installed znc, it working, but if i rebott my system, no start.
[09:33] <EbeninAmi> I am looking this page, https://wiki.znc.in/Running_ZNC_as_a_system_daemon
[09:34] <EbeninAmi> but no help for me.
[09:34] <EbeninAmi> How can i autostart my znc?
[09:34] <EbeninAmi> os: ubuntu 20,4
[09:35] <ravage> if you followed that guide then you have enabled the znc service
[09:35] <ravage> it probaly just fails to start. check the logs
[09:35] <ravage> journalctl -u znc -f
[09:35] <EbeninAmi> home on please
[09:35] <EbeninAmi> hold
[09:35] <weedmic> I just need to know where to ask - i have run this command to create a file that has all the raw uncorrelated data I need in a file called data.log.  script -t -a /var/tmp/script.htop.out 2> /var/tmp/script.htop.out.timings htop - I was hopping to use https://github.com/boopathi/nethogs-parser to correlate the data, but cannot figure out how to run this "go" programme to take from that file and put it in a new one.  any ideas at all on where to ask would
[09:35] <weedmic> be truly welcome.
[09:36] <weedmic> nvm - there is a go room
[09:39] <EbeninAmi> ravage where is logs files?
[09:39] <EbeninAmi> znc docs in root, but no logs.
[09:39] <Qulli> hello
[09:40] <Qulli> I am a Ubuntu User,  with an EXT 4 formatted hard drive
[09:40] <Qulli> my hard drive makes ticing sounds all the time.  Google research says, it is Journaling
[09:40] <ravage> EbeninAmi: journalctl -u znc -n 50
[09:40] <Qulli> so, I continued googling to find out how to turn journaling off for ext4
[09:41] <Qulli> tune2fs -O ^has_journal /dev/mapper/sda3
[09:41] <Qulli> problem: the drive is LUKS encrypted
[09:41] <Qulli> so I tried to run it for the mapper
[09:41] <ravage> Qulli: if it makes ticing sounds its probably dyning and not journaling
[09:41] <ravage> *dying
[09:41] <Qulli> ravage, nah, its a good sound... a writing sound
[09:41] <EbeninAmi> no entries.
[09:41] <Qulli> it is not a bad sound.  I had the problem before in the past, and ext3 sounds good
[09:42] <Qulli> the problem only appears with ext4
[09:42] <ravage> EbeninAmi: what service did your create? the user or system service?
[09:42] <Qulli> https://dpaste.org/iprp
[09:42] <Qulli> this is the error when I try to run my command on the MAPPER of the LUKS encrypted drive
[09:42] <ravage> Qulli: whats the point of ext4 without journaling? just use ext2
[09:43] <EbeninAmi> Dont know, only i was follow this lines.
[09:43] <EbeninAmi> https://wiki.znc.in/Installation
[09:43] <Qulli> ravage, please, it is too late,  the system is fully set up
[09:43] <Qulli> please just help me turn off journaling
[09:43] <ravage> EbeninAmi: https://wiki.znc.in/Running_ZNC_as_a_system_daemon#Create_the_systemd_unit  <--  use the system variant
[09:44] <EbeninAmi> i do it.
[09:44] <Qulli> Have you seen my paste?   https://dpaste.org/iprp
[09:57] <ravage> it looks like you use the wrong device
[09:57] <ravage> there is no ext4 filesystem on it
[09:57] <weedmic> Qulli: you can boot with clonezilla - copy the worrysome HDD device>device to a new HDD, then just swap the HDD and it will boot.
[09:58] <ravage> mount | grep ext4
[09:58] <ravage> will show you all your mounted ext4 filesystems
[09:58] <weedmic> but, if it is software related, the new hdd (clone) will do the same.
[09:58] <ravage> and you have to unmount it before you change anything
[09:58] <Qulli> weedmic, booting is not the issue... it boots well
[09:59] <ravage> at least i guess you would have to unmount it to make changes like this
[09:59] <Qulli> I am on a live USB stick
[09:59] <Qulli> my HDs are all unmounted
[09:59] <Qulli> https://dpaste.org/NkVT
[10:00] <Qulli> the problem is the LVM inside
[10:00] <ravage> so you want ubuntu--vg-ubuntu--lv
[10:00] <ravage> does /dev/mapper/ubuntu--vg-ubuntu--lv exist?
[10:01] <Qulli> no
[10:01] <ravage> try: vgchange -a y
[10:02] <Qulli>  tune2fs -O ^has_journal /dev/mapper/ubuntu--vg-ubuntu--lv
[10:02] <Qulli> I think that worked
[10:02] <Qulli> thank you all
[10:04] <ravage> make sure you have a UPS unit so your system never crashes and damages your filesystem. the journal is what makes that less likely
[10:04] <weedmic> Qulli: what is making the noise?  The fan for a bank of USB sticks?
[10:05] <Qulli> ravage, what is a UPS unit?
[10:05] <Qulli> is an EXT4 file system without journaling worse that ext3 _
[10:05] <Qulli> ?
[10:05] <Qulli> weedmic, the sound comes from the writing to the SSD
[10:05] <ravage> Qulli: yes
[10:06] <Qulli> Ubuntu Server did not allow to chose the filesystem during the installation
[10:07] <Qulli> rebooting now,  to see if it worked
[10:07] <Qulli> thank you all
[10:07] <weedmic> "Some portable systems equipped with solid state drives (SSD) emit an audible squeal when the system is idle or under light use. This is normal behavior. ... In certain situations, a high-frequency buzzing noise can be heard from the system."
[10:08] <weedmic> is this your issue?
[10:08] <ravage> he left. and he will reinstall soon anyway when is filesystem is damaged afer some unplanned reboots
[10:09] <weedmic> oic
[11:11] <jsbach> Hi, if i want to use another changelog file for my package with dpkg-source -l./alternative/debian/changelog -b .  i get an error dpkg-source: error: cannot open file ./alternative/debian/changelog: No such file or directory
[11:12] <jsbach> i checked that the file is being created before the dpkg-source execution.
[11:12] <jsbach> why does not dpkg-source take the changelog from the path as pointed?
[11:23] <tomreyn> jsbach: there are channels dedicated to debian package creation on OFTC, if you like.
[11:24] <tomreyn> also, if you read perl, you could just see the dpkg-source source code to answer this yourself.
[11:30] <jsbach> tomreyn, thanks for the hints
[12:01] <weedmic> lost connectivity in middle of sudo apt-get install golang-go b/c machine has since rebooted, but connection is back.  i went to reissue command to finish download and got E: Could not get lock /var/lib/dpkg/lock-frontend. It is held by process 4348 (apt-get) (with two warnings on what not to do).
[12:02] <weedmic> what is the correct thing to do next?  reboot?
[12:08] <weedmic> thw answer was simply wait a few mins - it cleared the queue itself
[12:12] <weedmic> how do I download what is here "https://github.com/boopathi/nethogs-parser.git" to a machine I am only attached to via ssh?  use curl?
[12:13] <weedmic> found that - wget --no-check-certificate --content-disposition https://github.com/boopathi/nethogs-parser.git
[12:22] <tomreyn> weedmic: --no-check-certificate should not be necessary on an up to date ubuntu system with a default certificate store, downloading from github.com
[12:32] <Cursarion> Yo. Why does Chromium auto-update on Ubuntu, and how does it happen? It updates without me doing `apt upgrade`, and seems to have root access...
[12:33] <iomari891> Greetings, how do I install "linstor-controller linstor-satellite  linstor-client".? The docs refer to using apt, but apt returns not found.
[12:34] <tomreyn> Cursarion: on current ubuntu releases, chromium is a snap. snaps auto-upgrade automatically by default, and your options in controlling this are limited.
[12:35] <Cursarion> ah
[12:35] <tomreyn> iomari891: which docs?
[12:48] <guesswhat> Is possible to create internal gateway in ubuntu for dummy interface ? i need to deploy cloudstack, but it requires two NICs, public and management network, but I have only single NIC ( wan ), so wondering, if is possible to do this somehow..
[12:50] <iomari891> tomreyn: nevermind, on their site in small print it says "If you have a support subscription to LINBIT, you will have access to our certified binaries via our repositories."
[12:52] <tomreyn> iomari891: i'm glad i was able to encourage you to read the third party documentation thoroughly.
[12:54] <tomreyn> guesswhat: ip link add type veth
[12:55] <Cursarion> tomreyn: so it's a special snap of some sort, because it doesn't show up if I do `snap list`?
[12:55] <tomreyn> guesswhat: or "type dummy", depending on whether you want to actually use it
[12:55] <guesswhat> tomreyn: is veth different than dummy interface type ?
[12:56] <tomreyn> i think dummy is not configurable
[13:00] <tomreyn> Cursarion: no, if it does not show there then you don't have the snap installed. which ubuntu release is this?    (lsb_release -ds; cat /proc/{version*,cmdline}) | nc termbin.com 9999
[13:02] <tomreyn> guesswhat: i was wrong, dummy can be configured, but there are limited use cases where it can be used.
[13:03] <jkaye> Recently upgraded to 21.10 - there's a new sidebar behavior that's driving me insane. If an application has a notification (even with OS notifications disabled), the icon "wiggles" and forces the sidebar open. Anyone know how I can disable this?
[13:04] <guesswhat> tomreyn: i am not sure, what i need, my use case is to run cloustack on single bare metal, but i need to simulate management network ( it wont be accessible, but its needed ), see https://drive.google.com/file/d/1i3_uFRi4wkAxs4CqVQR6pCdn-l3fL149/view?usp=sharing
[13:04] <tomreyn> jkaye: a screenshot might help illustrate what you're referring to, in case you can't get anyone respond to it as is.
[13:05] <jkaye> tomreyn, I can definitely provide one, it would just look like the sidebar being open though haha
[13:05] <jkaye> I think I'd need a gif
[13:05] <Cursarion> tomreyn: 18.04, because I haven't gotten around to upgrade yet
[13:05] <Cursarion> but how else would it update by itself and have root access to do so
[13:05] <jkaye> Is "sidebar" even the right term for this? I'm feeling like I might be searching for the wrong thing
[13:06] <tomreyn> Cursarion: unattended-upgrades
[13:06] <tomreyn> jkaye: i wouldn not know, because i don't know what you are referring to. which is why even a screenshot would probably help me.
[13:07] <Cursarion> tomreyn: ah, right...
[13:08] <jkaye> tomreyn, Fair enough, here you go: https://paste.pics/69ac6fa3cc5012cb566a7d48b6617cb2
[13:09] <jkaye> Normally that bar is hidden. If I get a message (teams/irc/element, any of them) the icon "wiggles" and the bar won't close until I open the application
[13:11] <tomreyn> jkaye: okay, so for basic terminology: https://askubuntu.com/a/1332625
[13:12] <tomreyn> you're referring to the dock
[13:14] <tomreyn> guesswhat: you could do nested virtualization, that could make it easier to set the network up as you like it. but it's probably also a waste of resources. i don't know cloudstack. for more server-like topics, try #ubuntu-server
[13:15] <tomreyn> jkaye: i'm not sure how to change the behaviour you're discussing, sorry. maybe try "tweaks" (package gnome-tweaks)
[13:16] <guesswhat> tomreyn, yes, its waste of resources and nested virtualization is working only on recent xeons and on epycs...
[13:16] <jkaye> tomreyn, Yeah, using the correct terminology I'm at least able to find more info now (thanks for that), but I can't see a way to change this either
[13:17] <jkaye> Guess I may just have to disable the dock entirely
[13:17] <jkaye> That is unfortunate
[13:17] <Leenux> test
[13:18] <tomreyn> Leenux: please    /join #tests    for your testing needs
[13:20] <scrappy> can someone help this newbee with connecting an usb lcd display? lcd4linux/lcdproc ?? (#Scrappy)
[13:21] <tomreyn> jkaye: just because i don't know your answer doesn#t mean no one here does, maybe just try re-asking the same question (with new-learnt terminology) later.
[13:23] <tomreyn> scrappy: which ubuntu rlease is this about, which kernel version?
[13:50] <tomreyn> jkaye: just thought about this more. i guess the only place this can be configurable GUI wise is in gnome tweaks -> (gnome) extensions -> dash-to-dock
[13:51] <BluesKaj> Hi folks
[13:52] <tomreyn> jkaye: but then this doesn't seem to exist on 20.04, whoops
[13:53] <tomreyn> oh it's "ubuntu dock", but this is not configurable and off on this GUI, probably because it's not loaded from user but system scope, for all users.
[13:53] <jkaye> tomreyn, It's all good, honestly I wasn't even using the dock very much so I just disabled it. I doubt I'll even think about it any more in another week :)
[13:53] <jkaye> Thanks for your help
[13:54] <tomreyn> ok :)
[14:35] <scrappy> tomreyn:Ubuntu 20.04.3 LTS, 5.11.0-46-generic
[14:36] <driador> A/quit
[14:37] <Maik> scrappy: 20.04.3 should be on the 5.13.0-25 kernel now
[14:38] <Maik> i received that update yesterday
[14:38] <oerheks> run apt dist-upgrade
[14:39] <Maik> or sudo apt update && sudo apt full-upgrade
[15:06] <tomreyn> Scrappy: here's a german language (use machine translation services such as deepl.com or google translate) which seems to cover much of it https://wiki.ubuntuusers.de/LC-Display/
[15:26] <rubick> will ubuntu continue to release security updates for python 3.6 on ubuntu 18.04 LTS? I'm seeing that python 3.6 is EOL on the python lifesysle page.
[15:29] <oerheks> there will be no security updates then..
[15:30] <Maik> it probably will be patched
[15:31] <oerheks> time to upgrade to 20.04 i guess, with python 3.9
[15:32] <Maik> or install python 3.9 on 18.04?
[15:33] <rubick> I'm not finding anything official from ubuntu which talks about continued python support in their LTS versions.
[15:34] <Maik> rubick: as said they'll probably patch it
[15:35] <Maik> oerheks: kernel 5.13 is also EOL but still Ubuntu patches and supports it until July
[15:36] <rubick> Maik: could the same be said for python 2.7 on ubuntu 18.04?
[15:37] <Maik> python 2.7 is unsupported and dead
[15:38] <Maik> Scrappy: mind fixing your connection please?
[15:40] <Maik> tomreyn: mind taking care of that please? ^
[15:41] <ogra> rubick, https://launchpad.net/ubuntu/+source/python3.6 ... 3.6 is getting (and will get) CVE patches throughout its lifetime on 18.04
[15:41] <ogra> (see the small table at the bottom of that page)
[15:41] <llanhmod> oh hey ogra, thanks for the zoom-client app.
[15:41] <ogra> llanhmod, you'Re welcome 🙂
[15:42] <llanhmod> ogra: I was just gonna ask before I installed it was it any good. Then just installed and seeing that it works perfectly. awesome.
[15:42] <ogra> 😄
[15:43] <ogra> it has its issues in certain setups ... but in 95% of the cases it works very well
[15:44] <jhutchins> llanhmod: What was the client?
[15:44] <llanhmod> ogra: so, is snap sort of like how ports work on OpenBSD or such? I haven't read much how it works...
[15:44] <llanhmod> jhutchins: zoom-client
[15:45] <ogra> jhutchins, https://snapcraft.io/zoom-client
[15:46] <ogra> llanhmod, snaps allow you to bundle apps along with their dependencies, so you can essentially run any app on any linux desktop without having the versions of the deps on the host
[15:47] <ogra> they also run confined (completely separated from the host) for added security
[15:48] <llanhmod> right right, ogra, do you have like a write-up of how you did it with zoom? This is really interesting.
[15:49] <ogra> llanhmod, https://github.com/ogra1/zoom-snap/ has the source for the snap ... https://snapcraft.io/ has a bunch of tutorials how snap packaging works
[15:50] <llanhmod> ogra: okay, thanks.
[15:50] <ogra> if you have questions there is also forum.snapcraft.io
[15:50] <llanhmod> hopefully I find time this weekend to dive into the material and work on something.
[15:53] <llanhmod> just skimming, it seems rather simple and beginner friendly
[15:53] <llanhmod> good stuff. thanks again ogra
[15:53] <ogra> 🙂
[16:19] <ubercube> Hi all. I'm having a bit of trouble installing ubuntu 20.04.03 LTS server on a UEFI Secure Boot system. The desktop .iso, dd'd to a usb drive shows up fine in the boot selector. The server .iso, dd'd to the same usb drive and inserted into the same USB port doesn't show up in the boot selector. Is there a way I can use the desktop .iso to install
[16:19] <ubercube> only the server components, or should I be doing something else to try and make progress?
[16:20] <leftyfb> ubercube: disable secure boot
[16:21] <leftyfb> ubercube: use etcher.io to flas the iso
[16:22] <ubercube> I'm certain I can install if I disable secure boot and turn on compatibility mode. But will there be a way to use the server with secure boot enabled later if I do that? The goal is to have the system use UEFI Secure Boot with LUKS and memory encryption. I'm happy to follow any path that might get me to that goal, or to be educated about better
[16:22] <ubercube> alternatives, or impossibilities :)
[16:23] <leftyfb> ubercube: you can UEFI and LUKS. There is little to no benefit of running secure boot, especially on a server
[16:28] <ubercube> In the olden days I'd have to rely on the BIOS and the TPM and its PCRs for this. It seems like the modern way to accomplish some modicum of malware persistence resistance and physical access resistant security would be to use secure boot, no? Are there better alternatives to achieve those goals that I'm missing?
[16:31] <leftyfb> ubercube: TPM can still be used for LUKS, though the only attack you are protecting against is someone ripping out the hard drive and trying to read it on another machine
[16:33] <leftyfb> ubercube: SB has multiple ways of getting around. If someone gets access to your server and wants to run their own boot loader, they will. Your time is best spent preventing access to your server to begin with
[16:49] <ubercube> leftyfb: Interesting. Any papers / etc I can read on secureboot weaknesses or bypass techniques? I don't like to go the security nihilism route of "it's not perfect, let's not do anything", but I do like to fully understand what the limitations of protections and mitigations are in some depth.
[16:54] <cbreak> In my opinion, secureboot is not very useful.
[16:54] <cbreak> and if it is used in dumb ways (like microsoft's bitlocker does), then it's even harmful
[16:54] <leftyfb> ubercube: https://arstechnica.com/information-technology/2020/07/new-flaw-neuters-secure-boot-but-theres-no-reason-to-panic-heres-why/
[16:55] <leftyfb> ubercube: that said, maybe take the conversation over to #security
[16:55] <ubercube> thanks!
[16:55]  * llanhmod hopes someone updates the gradle package and snap
[16:55] <leftyfb> llanhmod: file bugs
[16:56] <llanhmod> leftyfb: oh okay!
[16:56] <ubercube> so regarding the other paths, I assume the hidden message in your advice is 1) you can't install server from a desktop .iso and 2) server doesn't support UEFI secure boot?
[16:56] <leftyfb> !latest | llanhmod
[16:56] <llanhmod> leftyfb: fair enough...
[16:57] <leftyfb> ubercube: it is not recommended to install the desktop to get a server
[17:00] <ubercube> leftyfb: yeah, I was trying to find a way to install from the booted desktop live CD that didn't install X11, etc, but so far have failed.
[17:01] <leftyfb> ubercube: disable SB, flash the iso properly and you should be fine
[17:01] <leftyfb> ubercube: also, if you're using 20.04 you can try the legacy iso
[17:02] <jhutchins> ubercube: Why would you want secure boot?
[17:04] <ubercube> I'll start with trying to get UEFI working for a server install without SB, and so some reading after that. Is there some reason that dd would work for the desktop iso but not the server iso, and that etcher would do differently? (happy to try, just also want to understand)
[17:04] <ubercube> jhutchins: see above re: malware persistence and physical attack resistance (also using mem_encrypt)
[17:09] <leftyfb> ubercube: the only thing SB protects against is overwriting the bootloader/loading unsigned boot loaders. It is not an encryption and does not protect against other attacks
[17:11] <americaaaaa> how can i update the grub menu on a bootable live usb disk
[17:12] <americaaaaa> i keep getting "failed to get canonical path of /cow"
[17:12] <llanhmod> leftyfb: before I open a bug, is this release note worthy to make a bug report with?
[17:12] <llanhmod> https://docs.gradle.org/current/release-notes.html
[17:12] <americaaaaa> i am NOT trying to update grub on an existing partition, just on the live usb so it can boot to another partition
[17:13] <llanhmod> consider this me determining if the bug is really worth reporting (a bug)
[17:13] <leftyfb> americaaaaa: you do it from the boot menu when you first boot. Each time it boots. Not permanently
[17:13] <americaaaaa> i want to do it permanently
[17:13] <americaaaaa> so i don't have to do that each time
[17:13] <leftyfb> americaaaaa: then you roll your own iso, which isn't supported here but is documented
[17:14] <americaaaaa> that seems unnecessary
[17:14] <leftyfb> americaaaaa: it is 100% necessary
[17:14] <americaaaaa> just to update a grub menu
[17:15] <lotuspsychje> llanhmod: to findout snap support; type snap info snapname in your terminal; contact:
[17:15] <americaaaaa> thanks, but i'll wait for a second opinion
[17:15] <leftyfb> americaaaaa: it's part of the iso image
[17:15] <llanhmod> lotuspsychje: okay, thanks
[17:15] <americaaaaa> and?
[17:16] <llanhmod> lotuspsychje: oh okay...so no need for bug report then. thanks
[17:18] <ravage> i think with this nick you will have to do "your own research"
[17:18] <leftyfb> americaaaaa: an iso image is an image of a block device with it's own ISO9660 filesystem which includes the boot loader. You need to modify the ISO in order to modify the boot loader
[17:20] <jhutchins> ubercube: So you're expecting for someone to sneak into your datacenter and try to install Linux on your server?
[17:22] <RangerBobVA> Kinda like a helpful gremlin? :)
[17:22] <llanhmod> or a physical pentester....
[17:22]  * llanhmod not going there though
[17:22] <ubercube> FYI using the .iso files directly over IPMI media sharing is the same result - desktop .iso is bootable, and server isn't. Even with SB disabled. I'll try the same with both dd and etcher and the server iso and a real USB stick.
[17:25] <leftyfb> ubercube: try the legacy iso and ipmi
[17:25] <leftyfb> ubercube: https://cdimage.ubuntu.com/ubuntu-legacy-server/releases/20.04/release/ubuntu-20.04.1-legacy-server-amd64.iso
[17:25] <ubercube> I bet if I turn on legacy mode it'll work to install for sure, even with the existing ISO.
[17:25] <ubercube> *tries*
[17:26] <leftyfb> ubercube: the legacy iso will work with EFI. Legacy only means the installer
[17:27] <ubercube> ah I see.
[17:27] <ubercube> I'll try that too
[17:28] <leftyfb> ubercube: if the iso didn't work using ipmi(iDrac?) then that means the hardware has an issue with the new ubuntu server live installer. I have the same issue
[17:29] <ubercube> turning on compatibility support mode in the bios does allow the server iso to boot (non-EFI). I'll try the legacy image you recommended without the CSM next.
[17:30] <leftyfb> ubercube: also, with a server, I see no benefit to EFI. If you can disable, just get the OS installed. How the system boots shouldn't matter
[17:30] <ubercube> leftyfb: the ipmi is asrock rack's. I just got them to fix an nvme BIOS bug that only manifested in linux, so I can approach them with this, too, if it's reproducible.
[17:32] <ubercube> leftyfb: if I can educate and convince myself that SB + TPM is no different from legacy with locked BIOS boot + TPM, then I'll definitely go that route. Thanks for the pointers, I'll do a bunch of reading.
[17:35] <jhutchins> ubercube: You seem to be putting a lot into this.  I wonder if you could write something up describing what your objective was, what unsuccessful approaches you tried, and what actually worked in the end.
[17:36] <ubercube> yeah I'll likely write something up when done.
[17:41] <Gallomimia> i just recently had to reboot my system, ubuntu 21.10... the Xorg process was locked at 99% cpu for no apparent reason. i'm wishing i knew how to make a report about it, or if it's even a bug or... what?
[17:42] <oerheks> check your logs?
[17:43] <Gallomimia> yes, i'm still kinda lost in the world of logs. which logs?
[17:44] <ubercube> leftyfb: legacy iso works over IPMI media redirection.
[17:46] <ubercube> even seems to work with secure boot enabled.
[17:56] <ubercube> leftyfb: any idea what the differences are that are triggering the machine to only like to legacy iso? It'd be nice to give asrock a hint even as I move forward and test other things.
[17:57] <leftyfb> ubercube: nope. I would google issues with the live iso. It's probably some acpi or other grub/kernel parameter needed
[17:57] <leftyfb> it's on my list of things to figure out because the legacy iso stopped at 20.04
[18:02] <ooshlablu> hello, not entirely sure where I should report this issue, but on ubuntu 20.04 it looks like the HWE bumped kernel version from 5.11 to 5.13. It looks like the latest version of openzfs is not available for 20.04, which is causing a bug with the way zvols are mounted, openzfs bug here: https://github.com/openzfs/zfs/issues/12301
[18:03] <leftyfb> !bug | ooshlablu
[18:11] <ooshlablu> ok
[18:13] <ash_worksi> is it possible to highlight a column in less?
[18:16] <leftyfb> ash_worksi: I'm not aware of a way.
[18:16] <ash_worksi> less is like the most ungoogable program :P
[18:17] <ash_worksi> thanks leftyfb
[18:23] <loganchris898> Hello.
[18:41] <jhutchins> ash_worksi: less is a lot older than google.
[18:42] <ubercube> ash_worksi: I'm curious if you're trying to select in order to copy, or just to hi-light on the screen? If you're selecting with your mouse, it's your terminal program, not your pager, that controls how you select, for example..
[18:42] <ash_worksi> jhutchins: I appreciate that as pun but as I'm sure you know, that's not why it's ungoogable :P
[18:43] <jhutchins> ash_worksi: https://man7.org/linux/man-pages/man1/less.1.html
[18:43] <ash_worksi> ubercube: it was to highlight the difference column in `diff -y` output
[18:44] <ash_worksi> ie, the column that says < > or |
[18:44] <ash_worksi> needless to say, it wasn't imperative
[19:03] <jhutchins> ash_worksi: I tend to use awk for that, output to a new file.
[19:03] <ash_worksi> jhutchins: what do you mean?
[19:04] <ubercube> ash_worksi: this is truly terrible, but it might do what you want: diff -ty group group2 | sed -E "s/^(.{64})(.)(.*)$/\1`tput rev`\2`tput sgr0`\3/" | less -R
[19:04] <ash_worksi> ubercube: you're inserting an escape sequence?
[19:04] <ubercube> yep
[19:05] <ubercube> it highlights column 65 lol. you need diff -t to expand tabs, and less -R to display escape sequences raw
[19:05] <ash_worksi> so, the problem there I think will be the .{64} since apparently diff outputs trailing space after `group` as tabs
[19:05] <ash_worksi> ah
[19:06] <ubercube> I always enjoy stupid terminal tricks :D
[19:07] <ash_worksi> I wish there was a bit more flexibility over highlighting in general in less though; it would come in handy if said highlighting persisted across pages, like when I have a huge table in psql and want to highlight a row that has gaps
[19:08] <ubercube> less is more :)
[19:08] <ash_worksi> although one could probably argue at that point I am probably looking at things the wrong way
[19:08] <ash_worksi> ¯\_(ツ)_/¯
[19:08] <ramblebamble> ash_worksi, do one thing and do it well, however, if you need s.th. like less, with hightlighting capabilities, look at bat
[19:10] <ash_worksi> s.th ?
[19:10] <ramblebamble> something
[19:10] <ubercube> I use less -R a lot, because it allows other things that know how to apply the appropriate colors and highlighting for the data that less has no knowledge of, to be used.
[19:10] <ubercube> jq .  | less -R, for example.
[19:11] <ash_worksi> the one side-effect of less -R is less -S doesn't work properly :P
[19:11] <ash_worksi> ramblebamble: I'll check out bat; thanks
[19:11] <ramblebamble> https://github.com/sharkdp/bat
[19:11] <ash_worksi> sounds MSFT-y
[19:12] <ubercube> -R doesn't inherently break -S; only if the underlying data has its own escape sequences in it, no?
[19:13] <ash_worksi> ¯\_(ツ)_/¯
[19:13] <ash_worksi> I only recently discovered that
[19:14] <ash_worksi> I am thinking -r apparently
[19:14] <ash_worksi> in the man for -R: "Unlike -r, the screen appearance is maintained correctly in most cases."
[19:14] <ubercube> yes. amusingly -R is, er, "less" than -r
[19:15] <ash_worksi> you've taught me something tremendous ubercube
[19:15] <ash_worksi> less -RS ftw!
[19:17] <ubercube> happy to assist.
[19:38] <ubercube> ash_worksi if you're using diff from gnu diffutils, there are non-POSIX extensions like diff --color=always | diff -R. In general, look for things that understand the context of the data you're messing with and can colorize it. Failing that, play dumb terminal tricks like above :)
[19:44] <ubercube> ash_worksi: there's also git's diff and bat also has batdiff. lots of work in this space you can build on and keep using less, or not.
[19:49] <marc_> Anyone have the issue where the keyboard keeps disconnecting in Ubuntu
[19:49] <ubercube> ash_worksi: I used to use colordiff to post-process diff a bit and let me see more. there are so many options :)
[19:51] <marc_> i found this thread https://ubuntuforums.org/showthread.php?t=2342985
[19:52] <marc_> how do i implement this  "usbcore.autosuspend=-1"
[19:57] <sarnold> marc_: /etc/default/grub -- probably add it to the line with quiet splash
[19:59] <marc_> thanks but im already on it im doint this
[19:59] <marc_> Manually change /sys/bus/usb/devices/usb*/power/control to "on" instead of "auto".
[19:59] <marc_> Manually change /sys/bus/usb/devices/usb*/power/autosuspend to "-1" instead of "0".
[19:59] <marc_> hopefully this fixws it
[20:00] <marc_> https://unix.stackexchange.com/questions/91027/how-to-disable-usb-autosuspend-on-kernel-3-7-10-or-above
[20:01] <oerheks> !info tlp
[22:23] <webchat31> Has anybody had any reports of the ubuntu ntp servers being flagged as a botnet? Specifically for IP: 82.202.70.139
[22:24] <sarnold> who is doing the flagging? why did they flag it?
[22:25] <oerheks> url ? ..
[22:25] <tomreyn> webchat31: ^
[22:25] <sarnold> I could imagine a "smart network security appliance" vendor flagging any host that gets a few thousand connections from a few different sites.. and I also wouldn't be shocked if they didn't put a whole lot of thought into it
[22:26] <webchat31> oerheks, tomreyn sarnold it was flagged by Azure (one of our customer shared this with us.) The url is [0-3].ubuntu.pool.ntp.org
[22:27] <webchat31> For context, pool.ntp.org also resolved to the same IP at some point.
[22:27] <webchat31> same with some other pools.
[22:29] <oerheks> then there must be an url..
[22:31] <webchat31> oerheks what? I gave you the FQDN.
[22:32] <sarnold> an url from whoever made the report..
[22:32] <webchat31> Unless you mean a URL to where it was identified? Azure Sentinel is a paid service so I wouldn't have access to that.
[22:32] <sarnold> unless it's something they sent in an email or something?
[22:32] <sarnold> ah, good good, then there's probably someone you can talk to about it :)
[22:33] <webchat31> One of my customers sent me an email saying that Azure flagged the IP, that the DNS name resolved to.
[22:33] <oerheks> So you don't suffer such issue yourself?
[22:33] <oerheks> me neither, though i am not on azure
[22:33] <webchat31> There is no issue, I'm asking if someone has heard of any knowledge of Azure flagging one of the IP's in the ubuntu NTP pool, as being a botnet.
[22:34] <sarnold> this is the first I've heard of it
[22:36] <tomreyn> webchat31: thanks for reporting it. you customer can handle it this way (note Azure Sentinel is now called Microsoft Sentinel): https://docs.microsoft.com/en-us/azure/sentinel/false-positives
[22:38] <tomreyn> i would think this is more of a topic for #canonical-sysadmin for (potentially) following up on the false positive in the product.
[23:42] <arooni> i have a hard drive that was set up under whole disk encryption via the ubuntu installer;  how do i mount it via the command line now that i put it in a usb enclosure
[23:42] <arooni> b/c the laptop died :(
[23:46] <fuxaches> my computer, recently, stopped being able to reboot or shutdown completely. If I hold the power button, it will shut down completely after 5 seconds. When I press the power button again, it starts up as intended. Shutdown and restarting are the issues here. Anyone have an idea wtf is going on here?
[23:46] <fuxaches> ubuntu desktop version 20..04
[23:48] <orange1> i think when you press escape when it wont shutdown you can see whats doing it
[23:48] <orange1> like when its stuck in shutdown
[23:49] <fuxaches> letme try and i will let you know
[23:51] <sarnold> I've seen squid wait several minutes before shutting down before
[23:52] <fuxaches> yeah, it does flash there for a fraction of a second when i hit esc, but it is gone really fast and the power LED is on, fans are on, screen is blank and it sits there until i unplug it or hold the power button for 5 seconds...
[23:52] <sarnold> arooni: I think cryptsetup open   is the thing you're looking for
[23:53] <fuxaches> sarnold: I noticed this after several hours and the machine never coming back up. Then I went and checked on it
[23:53] <sarnold> fuxaches: ugh.
[23:53] <egm> anyone know of a terminal that you can select color0-color21 via gui sliders and see changes in real time
[23:57] <sarnold> seems like an obvious thing to want, once you hear it :)
[23:59] <egm> sarnold: yeah, i'm a bit tired of launching urxvt over and over to see minute changes to truecolor properties