[02:23] <randomxusr> Curious. Are older versions of Ubuntu updated with the latest software? Or only patched for the software they shipped with?
[02:23] <leftyfb> !latest | randomxusr
[02:24] <randomxusr> thank you
[02:31] <sarnold> randomxusr: sometimes whoever put together a snap package for software will make newer releases, and those will probably work on the older releases of ubuntu. it's not perfect but it's an option
[02:33] <leftyfb> sarnold: was there a bug mentioned here recently that affected snaps/gnome on a zfs filesystem?
[02:34] <leftyfb> a coworker just installed 22.04 and says he's "missing half of Ubuntu desktop"
[02:34] <leftyfb> could have sworn I saw someone mentioned here issues regarding snaps having trouble on zfs
[02:34] <sarnold> leftyfb: hmm, I don't see anything in lastlog that looks like that :/
[02:35] <sarnold> leftyfb: if home directories aren't on /home/ things can go sideways quick
[02:35] <leftyfb> oh?
[02:35] <sarnold> leftyfb: if home directories are mounted over the network, then they go even more sideways
[02:35] <Crucifyy> what could be causing a few select apps to hang uppon opening? Spotify, discord to name 2, and about every browser with the exception of Chrome?  All were fine with 20.04
[02:35] <Crucifyy> all will open eventually.. just takes forever..
[02:36] <sarnold> leftyfb: yeah, snap doesn't make it super-easy to configure where home directories live; a lot of people bindmount their home directories back to /home to deal with it -- the apparmor tunable /etc/apparmor.d/tunables/home  could probably deal with it, too
[02:36] <leftyfb> sarnold: oh, I don't think they have their $HOME on anything else other than /home
[02:37] <MrMobius> I upgraded from 21.10 to 22.04 just now and I can't log in over ssh any more. I confirmed that ~/.ssh/authorized_keys still contains the right key and that PubkeyAuthentication is set to yes in /etc/ssh/sshd_config. what can I do?
[02:37] <leftyfb> Crucifyy: unfortunately, that is still an issue with snaps. Once they are open they will work fine
[02:37] <MrMobius> setup did ask if I wanted to use the new sshd_config or the existing one and i chose the default of keeping the existing one
[02:37] <leftyfb> MrMobius: look through your ssh logs
[02:38] <MrMobius> leftyfb, thanks. where can I find those? I should have specified that "Server refused out key" is the error on the client side when trying to login over ssh
[02:38] <sarnold> the release notes have some hints on ssh that might be useful https://discourse.ubuntu.com/t/jammy-jellyfish-release-notes/24668
[02:39] <Crucifyy> leftyfb: awesome.. at least that confirms an issue... couldn't figure anything out... everything is either on NvME or SSD and was driving me nuts...
[02:40] <MrMobius> sarnold, thanks! it says ssh-rsa is disabled by default which is what im using
[03:42] <WInnerWind> Hello, im trying to use KVM and i went through the install but now i get an error saying "No connection found" How do i fix this?
[03:42] <WInnerWind> I am using the GUI version of KVM on Ubuntu
[03:43] <sarnold> that's a very odd error message
[03:43] <sarnold> if you run the libvirt-manager tool from a command line do you get a better error message?
[03:43] <WInnerWind> I sent the image across
[03:43] <WInnerWind> brb, let me run that command
[03:44] <WInnerWind> command not found
[03:44] <WInnerWind> command was $ libvirt-manager
[03:46] <sarnold> omg what's the name of this stupid program
[03:46] <sarnold> why can't I ever find it..
[03:46] <WInnerWind> what is it?
[03:46] <WInnerWind> the GUI is just called virtual machine manager
[03:46] <sarnold> aha! virt-manager
[03:47] <WInnerWind> virt-manager, i think i already installed that, let me check
[03:47] <WInnerWind> yeah i still have that, opened the GUI for me
[03:49] <WInnerWind> do you have any idea what i can do?
[03:51] <sarnold> do whatever it is you tried earlier, and see if it throws a better error message
[03:52] <WInnerWind> i did, it throws the same error at me
[03:53] <WInnerWind> Error : No active connection to install on
[03:53] <WInnerWind> wont let me get through the first step of the install
[03:55] <sarnold> does systemctl status libvirtd   show anything that looks like failure?
[03:55] <WInnerWind> is that a command?
[03:55] <sarnold> yes
[03:56] <human0123[m]> yeah
[03:56] <WInnerWind> it says Active
[03:56] <sarnold> https://termbin.com/p3ih  this is what it looks like on one of my systems
[03:56] <WInnerWind> mine's look similar
[03:56] <WInnerWind> let me send a paste
[03:58] <WInnerWind> pastebin is a night mare brb
[03:59] <WInnerWind> https://pastebin.com/EexnKDYp
[03:59] <sarnold> I like the termbin.com, you can use it with just systemctl status libvirtd | nc termbin.com 9999
[03:59] <sarnold> hmm, seems reasonable enough :( I was hoping for an error of some sort..
[04:00] <WInnerWind> yeah that is why i came, the other guides want me to install libvert-bin but for some reason that package doesnt exist
[04:03] <sarnold> libvirt-bin was from 18.04 era, 20.04 has libvirt-clients instead. I don't know why it changed :(
[04:03] <WInnerWind> you want me to install libvirt clients?
[04:04] <WInnerWind> man these guides are old if thats the case
[04:04] <WInnerWind> libvert clients already exists
[04:07] <WInnerWind> any idea?
[04:09] <sarnold> WInnerWind: sorry, I'm kind of out of ideas, I don't understand what those error messages mean :(
[04:09] <WInnerWind> its okay, ill try some troubleshooting on my own, thanks for
[04:09] <WInnerWind> trying and have a good day
[04:10] <WInnerWind> sorry that send early. bye
[04:10] <sarnold> good luck :)
[05:29] <noarb> I am looking through https://help.ubuntu.com/community/Full_Disk_Encryption_Howto_2019: this technically does not have a "full" disk encryption because it has a second stage bootloader encrypted but not the first stage. I'm looking at the resulting disk layout of systems installed with the defaults and they don't have multiple stages
[05:30] <noarb> what's the benefit of having a /boot partition and a /boot/efi partition?
[05:46] <syllin> how can i find out why `find_package(Threads)` as written in my CMakeLists.txt isn't finding anything on ubuntu 20? `/usr/lib/x86_64-linux-gnu/libpthread-2.31.so` exists on my system
[05:55] <matsaman> noarb: UEFI requires a separate partition, IIRC
[05:56] <matsaman> noarb: otherwise, for some decades now, /boot partitions are not so important to exist
[07:32] <timothy_> Hi I installed openjdk-8-jdk and openjdk-8-jre on Ubuntu 20.04 then update-alternatives --config java
[07:32] <timothy_> but no matter what I do it keeps using java 1.8
[07:35] <timothy_> update-java-alternatives --list only shows me 1.8
[08:14] <Guest8628> I have to block port 140 for udp on eth1 in an active way, for packets with source port 8989, but block it actively so not silently ignore, but to send active signal to the sender of this packet that this port is blocked, how would I do it under linux? What exact command/commands *
[08:14] <Guest8628> Anyone willing to help ?
[08:15] <Guest8628> ?
[08:17] <Guest8628> anyone please
[08:17] <Guest8628> I have to block port 140 for udp on eth1 in an active way, for packets with source port 8989, but block it actively so not silently ignore, but to send active signal to the sender of this packet that this port is blocked, how would I do it under linux? What exact command/commands *
[08:47] <sunyibo> how can I install all of https://apps.kde.org/categories/education/ in one shot?
[08:50] <duuuuuude> why isn't this installed by default?
[08:50] <duuuuuude> https://askubuntu.com/questions/1170202/how-to-install-rtl8188eus-driver-on-ubuntu-18-04#1170249
[10:41] <tomreyn> duuuuuude: usually, that's because the chipset producing company has decided against developing and maintaining drivers which match the quality standards of the linux kernel.
[10:42] <tomreyn> software licensing can matter, too.
[11:05] <Jeremy31> duuuuuude: The kernel module r8188eu should cover some of the same devices
[11:06] <duuuuuude> Realtek Semiconductor Corp. RTL8188EUS 802.11n Wireless Network Adapter
[11:07] <duuuuuude> Jeremy31: someone says this works on arch and not on ubuntu
[11:07] <Jeremy31> USB ID 8179?
[11:07] <duuuuuude> they didn't provide that in the message
[11:20] <tomreyn> duuuuuude: who is 'they'?
[11:22] <tomreyn> lspci -knn | grep -EA3 '(Network|Ethernet) controller'     should tell
[11:28] <Jeremy31> tomreyn: It is a USB wifi module
[11:31] <tomreyn> Jeremy31: i keep thinkin those still show on lspci output, but since you say that, it's probably wrong. ;)
[11:40] <ian_> HI
[11:40] <ian_> ANYONE THERE
[11:42] <tomreyn> !ask | ian_
[11:42] <Mibix> how hard is it to  upgrade from 20.04 to a non LTS
[11:43] <tomreyn> not much, i would think
[11:46] <daft> Hi, I installed to the new release and now my mouse fails after some time. never had that before. Some one has a idea how to dig into the problem?
[11:48] <mrkubax10> What is output of dmesg after mouse fails?
[11:53] <BluesKaj> Hi all
[12:16] <guiverc> Mibix, the release notes for a release tell you how, eg. Ubuntu 20.10 provided instructions on how to upgrade 20.04 systems to it.   https://fridge.ubuntu.com/2020/10/22/ubuntu-20-10-groovy-gorilla-released/   but later non-LTS releases don't offer the upgrade instructions ; as whilst it's supported; it's primarily CI tested with less QA
[12:16] <Mibix> ty guiverc
[12:17] <Mibix> i just am running a kernel way too far ahead, gfx drivers, and repos
[12:17] <Mibix> trying to stop being such an edge user because i suck
[12:27] <bj0rn[m]> Hi, looks like http://se.archive.ubuntu.com/ is down, can anyone confirm? And what could I do to workaround it?
[12:29] <Mibix> down for me bj0rn[m]
[12:31] <bj0rn[m]> Thanks. I've switched to dk mirrors for now.
[12:36] <Guest66_> Hey there. Is anyone here familiar with the inner workings of Kubuntu.
[12:36] <Guest66_> I’m having a serious issue and am getting no response in the #kubuntu channel.
[13:09] <Devil_Kin> hi folks. Question, iḿ not overly familiar with the ubuntu-way of upgrading between LTS´s
[13:10] <Devil_Kin> i've got a box on 2004, i figured do-release-upgrade should do this, but it keeps telling me there "There is no development version of an LTS available."
[13:10] <Devil_Kin> so, um, what is the right way to do this? :P
[13:11] <Maik>  Devil_Kin the upgrade path will be opened after the first point release in august
[13:11] <Devil_Kin> Maik: ahhh ok
[13:11] <Devil_Kin> makes sense
[13:11] <Devil_Kin> thanks, and sorry for the useless question ;)
[13:11] <Maik> you can upgrade though if you want to with sudo do-release-upgrade -d
[13:12] <Crucifyy> not useless at all my guy
[13:13] <Devil_Kin> yeah, i do tend to skip the .0 releases of most things, wait for the first point release. So it seems like the safe thing to do also here - no rush to upgrade
[13:18] <duuuuuude> why doesn't firmware-realtek have a installation candidate?
[13:31] <Jeremy31> duuuuuude: In Ubuntu it is part of liux-firmware
[13:32] <Jeremy31> linux-firmware
[14:09] <basti_> I was visiting here a few times to ask for advice on 22.04 (apparently) not booting on a lifebook-a531. After a lot of back and forth, i found out that it was the random number generator that was taking a really long time to initialize. After this was over, I was able to install 22.04 normally. To my surprise, it runs a lot more smoothly than 20.04.
[14:10] <basti_> thank you for your advice and kindness.
[14:17] <webchat58>  I have MBR disk, so I'm sure I'm on CSM mode.. But I wanna know if my BIOS supports changing to UEFI or not..  Is it worth it? If it is.. I will wipe my disk as GPT and then enable UEFI
[14:18] <Jeremy31> webchat58: You can use UEFI with the MBR disk
[14:20] <webchat58> Jeremy31 yes but it has to go through CSM mode to work right?
[14:21] <Jeremy31> webchat58: Not really, you just need to have an EFI System Partition
[15:04] <randy__> Hello everybody
[15:06] <randy__> Is there a way to ad the Plasma desktop to Bodhi Linux?
[15:07] <lotuspsychje> we can only support ubuntu and its official !flavours randy__
[15:09] <randy__> How do I make it so I can add folders and icons to the Moksha desktop?
[15:25] <leftyfb> Randy_: Bodhi isn't supported here
[15:29] <nikolam> how can I make external USB to SATA drive, to be recognize as drive on boot/restart, without needing to unplug and re-plug int again.. It is not visible it I don't re-plug it .
[15:33] <cbreak> hmm... is 22.04 ok now? Or does it still sometimes uninstall snap / apt? https://bugs.launchpad.net/ubuntu/+source/snapd/+bug/1970066 (I don't see any update in that ticket, which is weird)
[15:35] <cbreak> it's not even mentioned in https://discourse.ubuntu.com/t/jammy-jellyfish-release-notes/24668 (anymore? ever?)
[15:37] <leftyfb> cbreak: why would a single bug reported 2 days after release show up in release notes?
[15:39] <mrkubax10> assuming that ubuntu devs don't own time machine :D
[15:48] <ogra> cbreak, the snapd tem is aware and i think this bug was also discussed at the sprint they had last week ... don't assume just because there is no update on the paperwork that the bug is ignored 😉
[15:49] <ogra> (it is likely just hard to track down to the actual issue)
[15:53] <cbreak> leftyfb: because it's a release blocker
[15:54] <cbreak> in the 21.10 release notes, they added problems discovered after the release to the release notes
[15:54] <leftyfb> cbreak: again, it wasn't found/reported till 2 days after release. It's also not a release blocker
[15:54] <cbreak> in this one too it seems, see the known-issues section
[15:55] <cbreak> ogra: I'm not assuming it's ignored, I'm curious when it'll be fixed :D
[15:56] <cbreak> (and also I'm curious what's wrong in the first place... the symptoms are weird)
[16:31] <iamtheworstdev> is it expected that upgrading to Ubuntu 22.04 should brick my desktop?
[16:31] <iamtheworstdev> i can't even get into the bios settings
[16:32] <leftyfb> that has nothing to do with the OS on your machine, including an upgraded ubuntu
[16:32] <iamtheworstdev> bullshit it doesn't
[16:33] <descent1> unplug it then plug it back in
[16:33] <iamtheworstdev> I boot into Ubuntu, use it for a bit.. get hit with the "do you want to upgrade to 22.04?" "yea sure" ... get prompted to reboot
[16:33] <iamtheworstdev> and it's broke
[16:33] <iamtheworstdev> and a simple google shows I'm not the only victim
[16:33] <leftyfb> iamtheworstdev: you should be able to physically remove the hard drive with the OS on it and still have the ability to get into your BIOS.
[16:34] <leftyfb> which translates to, the OS installed on your hard drive has nothing to do with your ability to get into your BIOS
[16:41] <cbreak> iamtheworstdev: what happens instead of you managing to get into firmware settings?
[16:43] <iamtheworstdev> first, apologies for the language.
[16:44] <iamtheworstdev> second, leftyb ended up being right. I had already tried a few power cycles and d/c'd power and nothing was getting past the first 10% of the BIOS startup process.. including not letting me F2/F12 to interrupt boot
[16:45] <iamtheworstdev> and when I started google'ing I came across redditors having their machines bricked and people talking about some sort of efi var writing issue
[16:46] <iamtheworstdev> so I had thought it was all done unless I could figure out how to flash my BIOS without being able to boot at all
[16:46] <iamtheworstdev> but I dc'd power again and held the power button this time to encourage whatever discharge I could for a timed minute.. and it ended up coming back up
[16:47] <cbreak> iamtheworstdev: your mainboard might have a button or jumper to reset the CMOS
[16:47] <cbreak> that would reset the settings of the firmware, including any corrupt ones
[16:47] <iamtheworstdev> and it's soft restarting without issue as well so I think it's a non-issue now
[16:48] <cbreak> if turning off wouldn't have helped, resetting that way might have
[16:52] <MICROburst> any grub experts here? Icons are not working. Need to set up grub.cfg from scratch since "grub2-mknetdir --net-directory=/srv/tftp" does not create any config files.
[16:54] <iamtheworstdev> i am still confused as to what would have happened to begin with that it would have hosed the boot process
[17:08] <cbreak> maybe something weird with the efibootmgr command to change selected boot device
[17:09] <leftyfb> if it required a discharge of capacitors, then it was a hardware issue, not software
[17:10] <alkisg> Eeeh I'm not sure about that, I imagine it like "software wrote bad values to places where a plain reboot doesn't erase them"
[18:05] <Doakes> What's the guideline for determining amount of swap space? It used to be 1.5 times physical RAM but what if the system has 128GB RAM. Do I really need a swap partition?
[18:08] <murmel> Doakes, it really depends (with that much ram I assume we are talking about servers) so I set up my own servers without any swap
[18:08] <rob0> That's a good question.  AFAIK the recommendation never really changed.  I've read that it's a good idea to have swap even if the kernel never actually uses it.
[18:08] <cbreak> Doakes: I usually don't bother with a swap partition
[18:08] <rob0> (And I thought it was 2xRAM, not sure.)
[18:09] <cbreak> on my desktop system here, the Ubuntu installer made a swap partition on its own, so I'm using it
[18:09] <Doakes> murmel and cbreak, you've never encountered any issues?
[18:09] <cbreak> on a server I recently installed, I don't think there's one
[18:09] <cbreak> Doakes: I think ubuntu can use swap files on normal filesystem
[18:09] <Maik> cbreak: rather a swapfile
[18:09] <murmel> Doakes use kubernetes with swap -> it will complain and not start xD
[18:10] <cbreak> I know there is swap on that server, since a researcher last week used up all the 512 GB of RAM and ended up with a swapping and suuper slow process :D
[18:10] <rob0> Swapfiles are fully supported, but having another software layer in the middle is not ideal.
[18:10] <cbreak> without swap, linux would have just killed the process and we'd have noticed that way
[18:10] <cbreak> Doakes: there are two issues (at least) here
[18:11] <cbreak> first, linux is lying when processes ask it for memory
[18:11] <cbreak> it overpromisses, and when processes actually want to use the memory, only then they get physical pages
[18:11] <cbreak> but that means that it's too late to give an allocation failure to new / malloc
[18:11] <cbreak> so ... what to do? With swap, you'll just get a recycled page from somewhere else
[18:12] <cbreak> without... I think there's nothing left other than to kill the process
[18:12] <Doakes> i'd rather go with a swap for peace of mind, it's the size that i'm struggling with lol
[18:12] <cbreak> why more than a few GB?
[18:12] <Doakes> that's what i'm thinking
[18:12] <cbreak> as soon as you use it actively, your system will be unusably slow
[18:13] <Doakes> maybe 16GB?
[18:13] <cbreak> so your choice is between slow-but-running, or process-massacre
[18:13] <cbreak> not sure why, but the ubuntu installer made 2GB partitions for me
[18:13] <Doakes> to avoid slow but running, i'd follow the 1.5x RAM guideline?
[18:13] <murmel> Doakes debian uses 2G for every kind of install
[18:13] <cbreak> and on the server, it seems to be an 8GB swap file
[18:14] <cbreak> (for 512GB real RAM
[18:14] <cbreak> )
[18:14] <Doakes> interesting
[18:14] <cbreak> not sure if those swap files can grow like on MacOS
[18:14] <Doakes> i'll go with 8GB and cross my fingers
[18:15] <cbreak> at the moment, I have two 2GB swap partitions on my desktop
[18:15] <cbreak> because I added an other SSD to my boot ZFS pool, which I partitioned in the same way as the first
[18:15] <cbreak> so I thought I might as well use both
[18:15] <cbreak> but I don't expect to actually use them
[18:17] <murmel> Doakes what are you using that system for? afaik I would put on a desktop more swap than on a server, as I am rather okay lagging along for a bit in comparison on a server
[18:18] <Doakes> security onion for a homelab
[18:20] <cbreak> ah, a TOR node? :)
[18:20] <Doakes> hah no
[18:21] <leftyfb> !ot
[18:21] <murmel> sounds like 8 gigs seems good enough
[18:23] <xmetal> hmm ... if i am having an issue with different 22.04 installs where grub SEES other (non-Ubuntu) distros as always but kernel panics when booting ... noting that I do not have a stock ubuntu install ... would #grub be the place to ask for help?
[18:23] <xmetal> just started with 22.04 ftr
[18:23] <WeeBey> Hello frens! I have some odd behaviours after updating to 22.04. When I open a pdf with the default document viewer, it opens in a verys mall window. Changing the view type and size and setting settings as default does nothing. #2 When I try to save a file to a certain directory, files aren't saved at all.But no error is given. But I can save to desktop. Permissions look the same, though! Has anyone encountered either weirdness?
[18:25] <murmel> xmetal do you get the panics on ubuntu or the other distros?
[18:31] <matsaman> WeeBey: which directory?
[18:32] <WeeBey> matsaman, it's a directory in my home. The only difference is that it's a dir that I use to sync one-drive documents. ~/OneDrive/Docs/
[18:32] <WeeBey> matsaman, if I save there from either browser, it's as if it went to /dev/null
[18:33] <matsaman> mmm, what does 'mount' say about it?
[18:33] <matsaman> FUSE things can frequently be user-specific by default
[18:35] <WeeBey> matsaman, not sure what you mean. It's interesting. I can save in ~/OneDrive/Dir1/ but not ~/OneDrive/Dir1/Dir2/
[18:35] <matsaman> WeeBey: PDF thing, I'm not sure. Ideally that would be a simple corruption of a config file
[18:35] <xmetal> oops sorry was AFK ... 22.04 installs boot fine ... it's when i try to boot one of the other distros (22.04 "controlling" grub) that i get the KPs ... and i did check the UUIDs vs what is listed in /boot/grub/grub.cfg and things DO match for each non-Ubuntu based distro
[18:35] <matsaman> WeeBey: what does this output?: 'mount | grep -i onedrive'
[18:35] <WeeBey> matsaman, I was looking around in ~/.config but didn't see anything that could be the default document viewer
[18:36] <matsaman> WeeBey: an easy test would be to create a new user, log in as that user, see if the behavior is any difference
[18:36] <WeeBey> matsaman, nothing is outputted that has the onedrive folder (with the appropriate uppercase also)
[18:36] <WeeBey> matsaman, good idea. I'll test that.
[18:37] <matsaman> WeeBey: hrmm, what software are you using for it, the onedrive?
[18:37] <WeeBey> OneDrive; from the repo, I think.
[18:38] <WeeBey> I can download to the desktop then move the file there. So that's the weird thing. It's not a permissions thing for my user.
[18:38] <WeeBey> And the onedrive sync command still works.
[18:39] <matsaman> hrmm, app is probably a black box
[18:39] <matsaman> I would use something other than onedrive for storage, even, sorry dunno
[18:41] <WeeBey> matsaman, I appreciate your troubleshooting help. There's a bunch of weird things going on. I'll make a new user and check what the heck it could be.
[18:47] <WeeBey> matsaman, ugh. PDF viewer has the same behaviour on a new user. And In the new user, I wasn't able to download files to the desktop! But it could download to ~/Downloads
[18:47] <WeeBey> What the hell. This is new. What's the deal?
[18:47] <WeeBey> :-(
[18:48] <leftyfb> WeeBey: which pdf viewer? Is it a snap?
[18:49] <WeeBey> leftyfb, the default one. It just says "Document Viewer"
[18:51] <leftyfb> looks like it might be evince which is installed via apt, not snap
[18:52] <WeeBey> if i type "evince", it shows up in my apps as "Document Viewer", so you are correct! :-)
[18:52] <matsaman> WeeBey: seems like a pretty enduring bug in evince. Might just swap in another PDF viewer
[18:53] <matsaman> which is a shame, evince is pretty nice otherwise
[18:53] <WeeBey> Yep! It was perfect before.
[18:53] <leftyfb> WeeBey: does any other application have this issue? (please test)
[18:54] <WeeBey> Well, my "save file" window on Brave is full screen now. lol
[18:54] <WeeBey> So it's the opposite problem.
[18:54] <WeeBey> I can't make it not full screen.
[18:54] <leftyfb> ok, so it's probably a cosmetic issue and not an application issue
[18:54] <WeeBey> I may make a backup of my ~/.config/dconf/user
[18:54] <WeeBey> and nuke it
[18:55] <leftyfb> WeeBey: are you using scaling in your resolution?
[18:55] <WeeBey> leftyfb, nope. 100%
[19:00] <WeeBey> Ok, I'll log out and remove this user file and report back.
[19:06] <firewallnooob> hello guys, i have a question to ufw. I set ufw default deny, but still on ufw status i have some incoming rules. Someone know where i can find them to remove them?
[19:07] <WeeBey> nope, that dconf user file didn't do much. What holds the config for the file manager etc? nautilus ?
[19:10] <firewallnooob> for example i have this rule
[19:10] <firewallnooob> To                         Action      From
[19:10] <firewallnooob> Anywhere on vxlan.calico   ALLOW       Anywhere
[19:10] <firewallnooob> (which somehow my microk8s adds to ufw, but i dunno where)
[19:10] <leftyfb> firewallnooob: is this some sort of VPS or nodelet?
[19:21] <firewallnooob> leftyfb its a kubernetes cluster with some containing network interfaces
[19:35] <O0c> Hi.
[19:35] <matsaman> hi
[19:36] <WeeBey> What is the default handler for file browsing and "Save file" prompt? Is it "nautilus"?
[19:36] <matsaman> I think it's called 'Files' these days, but yes
[19:36] <matsaman> although save file might be GTK on its own
[19:37] <matsaman> that is, the file manager is 'Files', but if you're browsing from another app, it's probably just GTK
[19:38] <WeeBey> Ok! yes, $nautilus launches "Files"
[19:38] <WeeBey> I'll try to find where its settings are saved.
[20:53] <WeeBey> Ugh; this is so annoying. It makes working difficult. Where does gnome keep its configuration for "Files" etc?
[20:54] <Jeremy31> WeeBey: Probably some dconf thing where you need the dconf editor installed
[20:54] <cbreak> I'd expect it to be something inside ~/.config or ~/.local
[20:54] <WeeBey> Jeremy31, :-( I deleted my dconf "user" and issues where still there.
[20:55] <cbreak> this isn't windows, where the system stores everything in some opaque binary database
[20:55] <WeeBey> cbreak, yep. I found the dconf "user" in .config
[20:56] <WeeBey> Thankfully it's not windows. lol I was setting up my gf's new laptop and I literally got popup ad taking 25% of the screen because of some built-in garbage.
[20:56] <WeeBey> She's used to Ubuntu and she got sad and asked If I could put Ubuntu on it too.  :D
[20:57] <cbreak> you could modify some setting, and then search with find .config -mmin -10 (to see all files modified within the last 10 mins)
[20:58] <WeeBey> Oh, not a bad idea!
[20:59] <WeeBey> I'll try something and come back.
[21:13] <bob518> what is the meaning of "tasks: 50, 66 thr; 1 running" in htop?
[22:22] <Shadow-fax> I have installed ubuntu on a pi 400, but only get 640x480. I dont think it installs right graphic driver. how do I change that in 22.
[22:52] <alvrz> @Shadow-fax: try adding the `kms` overlay to `syscfg.txt`. In other words, add `/boot/firmware/syscfg.txt (or usercfg.txt)` to /boot/firmware/syscfg.txt
[23:03] <Dom78> Hello, how do we report errors on the new UbuntuStudio please?
[23:15] <WeeBey> I saw a post about evince ("Document Viewer") not saving new default settings... It's from 2010. Haha. :D
[23:31] <webchat54> Hello! I am having a panic attack about a security question. Can anyone help me?
[23:32] <WeeBey> Ok, I'm looking at dconf-editor; any clue what the name of the default dialog box is for saving files?
[23:33] <WeeBey> webchat54, meditation may help.
[23:33] <webchat54> Haha
[23:33] <WeeBey> I don't know much but I'll help you if I can.
[23:33] <WeeBey> :)
[23:34] <webchat54> Listen I've discovered that ufw was not enabled for the past six months. Now I am paranoid. I took Canonical's word for granted when they said Ubuntu is hardened out of the box but clearly it isn't unless iptables was functioning the whole time. I read conflicting information about these things and nothing has soothed me.
[23:34] <webchat54> So now I'm paranoid I've some kind of virus or rootkit
[23:34] <webchat54> If anyone could just connect to my private network
[23:35] <webchat54> But again I myself am not learned in these things so I don't know if I should be worried or not
[23:37] <WeeBey> Hmm
[23:38] <WeeBey> For a server facing the internet, I imagine?
[23:38] <webchat54> It's my home computer
[23:38] <WeeBey> Ah, well, no need to panic like that I would say
[23:38] <WeeBey> You can check logs first of all
[23:39] <webchat54> How would I do that?
[23:39] <WeeBey> Like, a firewall would protect you from getting poked every which way by bots and trying to get brute forced or from someone trying to map your ports.
[23:39] <WeeBey> But you are likely behind a home router with a public IP, right?
[23:40] <WeeBey> So your machine has a private IP, I imagine. Therefore it's not directly exposed to the internet.
[23:40] <webchat54> Yes, to my knowledge. I've a hardware router from my ISP.
[23:40] <WeeBey> Logs are located in /var/logs
[23:40] <WeeBey> For example, my web server is exposed to the internet.
[23:40] <WeeBey> At first there were dozens of SSH login attempts per minute
[23:41] <WeeBey> Then you harden it a bit and it's less. A firewall is important in that case.
[23:41] <WeeBey> in /var/log (not logs)
[23:42] <webchat54> Forgive me I am not very computer literate. I switched as I am sick of Windows, though it comes with growing pains I saw as learning opportunities until now.
[23:42] <webchat54> I'm in the log folder but there are many logs
[23:42] <WeeBey> No problem at all
[23:43] <WeeBey> I was setting up a new windows laptop today and was amazed that it came with stuff showing me ad popups! Out of the box!
[23:43] <webchat54> It's greasy, I know
[23:43] <webchat54> As soon as I saw ads coming in my Home menu in Windows 10 it was time to go lol
[23:43] <WeeBey> auth.log will have log entries showing who has logged into your machine.
[23:44] <WeeBey> But frankly, being infected with something (malware) will likely come from installing something shady
[23:44] <WeeBey> And for this, the firewall will not do anything.
[23:45] <jhutchins> The trick to dealing with ssh brute force attacks is to not run sshd on a common ssh port (22, 222).
[23:46] <jhutchins> It's amazing how well a simple move like that can fix the problem.
[23:46] <webchat54> I've visited shady sites in the past six months but I've not downloaded anything shady. I have some common sense. But this idea that somehow this could give me malware or a rootkit is me being paranoid, right?
[23:46] <WeeBey> jhutchins, definitely will shut down the noise in the logs
[23:47] <WeeBey> but with sshd password login disabled and root account login disabled, not sure how much difference it would do in terms of security.
[23:47] <WeeBey> Fail2ban is fun to play with too
[23:47] <WeeBey> You get banned! you get banned! you get banned! :D
[23:47] <jhutchins> WeeBey: It can be more serious than just noise.  I managed a system that was effectively taken down by the load of attempted connections.  Nothing got through, but the system couldn't run.
[23:48] <WeeBey> webchat54, mostly paranoid. But paranoid is good.
[23:48] <WeeBey> jhutchins, oh snap. wow.
[23:48] <WeeBey> You got DOSed from attempts?!
[23:48] <WeeBey> Good to know.
[23:48] <jhutchins> With fail2ban, all of the connection attempts still reach the system and require processing.
[23:48] <WeeBey> jhutchins, this is true.
[23:49] <WeeBey> jhutchins, I was just not sure if I should given that maybe some internal service is expecting it to be on 22. But my server is super vanilla, so I doubt it.
[23:49] <WeeBey> I'll give it a shot this week. :-)
[23:49] <webchat54> auth.log is illegible to myself. What exactly should I be looking for?
[23:49] <WeeBey> jhutchins, it's good to know. thanks!
[23:50] <webchat54> Also I appreciate the help. At least I am not completely panicked anymore.
[23:50] <WeeBey> See? meditation helps.
[23:51] <jhutchins> WeeBey: Since you always give someone who wants to connect credentials, it's no additional effort to give them the port.
[23:53] <WeeBey> webchat54, logs are kinda challenging to look at. I'm not very good at it. But for my webserver I would search for "failed password" because it would list the brute force attempts on the server. Like I said, It's very unlikely that this would happen in your system. After all, your private IP is not reachable through the internet. And I say this because your initial concern was that UFW was off.
[23:53] <WeeBey> Now if you go around downloading executables from shady sites, then that's something else altogether. :-)
[23:54] <WeeBey> (not reachable as in, you can't ping/access it directly. You need NAT or Port Forwarding to be exposed to the internet)
[23:55] <jhutchins> Usually a home/office internet connection does Network Address Translation (NAT) which assigns a local IP address that can't be reached or routed externally to each internal machine.  A system called "port forwarding" allows the router to pass traffic from a specifc port on the router to a specific port on an internal machine.
[23:55] <WeeBey> jhutchins, slides in with some great info and great timing!
[23:55] <webchat54> So this isn't the end of the world and I should continue as usual presuming my system is clean?
[23:56] <webchat54> ClamAV tells me I am safe but I am not certain of its efficacy, and rootkits specifically being what I am paranoid about an AV scan would be useless in detecting.
[23:56] <jhutchins> !info chkrootkit
[23:57] <WeeBey> Well, if you're messing about with stuff that could root your system, then boot up from a kali usb and scan for rootkits
[23:57] <jhutchins> !info rkhunter
[23:57] <WeeBey> but if youre just looking at porn, you're likely OK. Haha.
[23:58] <webchat54> That's good news! Haha.
[23:59] <WeeBey> Ok, I need to go do some dishes. If anyone knows how to make my "Save File" dialog box not be freaking maximized 100% every time, I would be very greatful.
[23:59] <webchat54> WeeBey Thank you for the help!
[23:59] <WeeBey> Happy to help! I get lots of help here too. :-)