=== chris14_ is now known as chris14 === chris14_ is now known as chris14 === gschanuel7 is now known as gschanuel === justache is now known as justache_Test === justache_Test is now known as justache === gandalf9 is now known as gandalf === toolz is now known as Daniel === Square3 is now known as Square === guiverc2 is now known as guiverc === JanC is now known as Guest8325 === JanC_ is now known as JanC [10:26] Hi folks. When I start executing iproute2 commands, NetworkManager stops seeing my ethernet interface because it assigns a different UUID to the one I bring up with iproute2 [10:26] What should I do? Should I disable NM from managing my ethernet? [10:27] I just don't get why if I do like: `dhclient enp7s0` NM doesn't "see it" as a valid "Wired connection 1" that it knows [10:28] So in fact I now have two interfaces: https://termbin.com/u83u [10:29] (until I manually run the "Wired connection 1" one from NM UI, and then my enp7s0 intrface disappears as you see) [10:48] OnkelTem, why not use the correct tools ? if you use NM you suld also use its cli tools to manipulate routes to not make different technologies clash ... nmcli can very well do everything you'd do with "ip route .." [10:49] ogra_: I don't think it can do what I need. But I agree that I shouldn't make different things to clash [10:49] I'm reading now about so called "Netplan". I don't get is it natural to Ubuntu? Will it play nice with NM? [10:50] Is it under or above it or what [10:50] netplan is a frontend to configure networking ... it can use systemd-networkd or netplan as its backends [10:50] bah [10:51] it can use systemd-networkd or *NM* as its backends [10:52] so yes, it might be an option to do what you want by using the very frontend (which makes internally sure that the technologies do not clash) [10:52] netplan is a frontend? It didn't look like one when I was reading its tutorial LOL [10:52] but ok, I'm not arguing I just don't know [10:52] it is a "generator" [10:53] to either generate NM or networkd configs ... [10:53] Ok, so NM is more than its UI, isn't it? Because when I talk about NM, I think only about its UI and I definitely don't remember things I need to configure via iproute2 [10:53] https://netplan.readthedocs.io/en/stable/ [10:54] yeah, I'm reading it [10:55] What I need is: creata a bridge, add there my "eth0", then create a pair of veth-s, place one into the bridge and another one - into a namespaced network created via `ip netns` [10:55] then inside that netns I should bring up an OpenVPN connection [10:56] I think I can do at least hafl of this job using netplan, and finish the rest via iproute2 [10:56] namely - make a bridge [10:56] using netplan === EriC^^_ is now known as EriC^^ [10:56] i dont think you should need or use iproute at all, netplan should surely offer all you need [10:57] ok, thanks. I continue reading the docs then. [10:57] (it is definitely doing bridging fine on millions of cloud installs out there... I'd be surprised if it would require additional tools) === kostkon_ is now known as kostkon [11:13] hi. I tried to create iSCSI initiator (client) on XUbuntu 22.04 , for iSCS target (server) that is already working well in MS windows. it doe snot require authentication at the moment. but sudo iscsiadm -m discovery -t st -p IP_address does not give nothing.. [11:18] ogra_: seems like I cannot use network manager as a backend if I'm gonna configure something in netplan [11:19] The examples section https://netplan.readthedocs.io/en/stable/examples/ shows that they always change "renderer" to networkd whenever there's a need configure something [11:21] OnkelTem: you can use network manager as backend [11:21] I do that. [11:22] cbreak_: so you still have some configuration like below the renderer line? [11:22] yes [11:22] thanks! [11:23] Ok, I ran through Netplan docs and I didn't find there anything about namespaces. Seems like I cannot configure my setup with netplan only, iproute2 is still needed [11:23] looks aproximately like this: https://gist.github.com/cbreak-black/9ff7cc1fbb61d6ceb799ece3c832ff08 [11:23] cool! [11:23] since I want to use ipv6 auto configure, but also a static IP [11:24] no idea about namespaces [11:24] what is the point/difference then between those two backends - networkd and NM? [11:24] I think the different renderers support different things. With networkd, I couldn't get it to work [11:24] I see [11:25] you want to hard-code routing entries? [11:26] https://netplan.readthedocs.io/en/latest/netplan-yaml/#routing === cbreak_ is now known as cbreak [11:26] OnkelTem, two backends -> simply to support server and desktop likewise ... server does usually not install NM [11:27] (unless your server has a mobile 4G/5G connection you wont really need NM) [11:28] cbreak_: No, my routing is dead simple. I just want to create an isolated network namespace where I run OpenVPN from. This way, I should be able run any program via the vpn connection by just prefixing with `ip netns exec MyVpnNS` [11:29] E.g. $ ip netns exec MyVpnNS google-chrome-stable [11:30] hmm... I use lxc for that [11:30] a container, I see [11:30] I have lxc containers that use different VPNs for everything inside [11:30] a *full* contauner, right? [11:30] well... it's just an LXC contatiner, not a real VM [11:30] never used lxc, honestly. I think it just makes all that isolation inside [11:31] with netns [11:31] it shares the kernel with the outside [11:31] sure, I understand, it's like docker [11:31] but somehow, wireguard still works despite being kernel space [11:32] but starting transmission-daemon inside is easy, and starting firefox inside (with x11 and so on) also works with a bit of configuration [11:33] hm, maybe I should also consider this. As using netns directly isn't convered/documented well in the internet [11:33] I wonder why iscsiadm -m discovery -t st -p IP_adress doe snot give any results, where iSCSi target from the same server is working just fine with initiator running on MS Win 10. [11:33] cbreak: what would you recommend to read first? [11:33] goal 1: run browser inside LXC container [11:35] also, I would like not to use another user id for this. (If I reckoned it an option, I could have configured just user-id based routing) [11:36] I think I followed https://blog.simos.info/running-x11-software-in-lxd-containers/ [11:36] cbreak: thanks! === esv_ is now known as esv [11:44] Ok, my netplan version is 106, and virtual-ethernets appear only on 107 [11:44] so I need to update netplan somehow [11:44] Kubuntu 22.04 here [11:45] not a good (net)plan probably. wait a little longer for 24.04 [11:45] I cannot wait, I need to configure virtual ethernets [11:46] 22.04 does not provide the version you want [11:46] I know, I expect there's a PPA or something [11:48] ok, seems like netplan cannot do even that now. So I can use only its bridge functionality out of my long setup [11:51] And it doesn't seem like NetworkManager support namespaces [11:56] seems I have 0.107-5 from 23.10 [12:41] Hi all === dev_ is now known as kernelcorrupt [14:34] Just curious what people are using for patch management of Ubuntu servers? I'm currently needing an opensource/free solution at the moment. Preferrabley something more than me just writing Ansible or Puppet to manage it. Something with Lifecycle management..etc. === JanC is now known as Guest1241 [15:00] Code_Bleu, what do you mean by "patch management" ? Ubuntu is a binary distro, "patch management" happens on a per-package level, all you need to do is to make sure to keep your packages up to date to be on the latest patchlevel ... [15:07] ogra_: management of updating packages [15:08] ah, right ... well, there is the unattended-updates package pre-installed that lets you configure a lot of actions around this, not sure you actually *need* an external tool for it [15:09] (see: man unattended-upgrades ) [15:10] ogra_: for example: I have 200 servers, I want to be able to see that 98 of them have the same package on an old version and be able to setup a lifecycle to update those in my development environment first, then staging...then prod. A proper lifecycle deployment of updating of software packages. [15:12] Hello, I see that one can apt install package=version , is there a way to apt upgrade to a newer but not the newest version? [15:13] pick: you just answered your own question [15:13] so apt upgrade package=version should work? [15:13] yes [15:15] thanks google was throwing out a cloud of chaff results about apt install [15:18] I'm not clear on the format tho.... if 'apt list -a --upgradable' returns results like package/xenial 7.0.0 amd64, do I just use 'apt upgrade package=7.0.0' or do I have to include the xenial somehow ? [15:18] or the amd64 ? [15:18] pick: 16.04 is multiple years End of Life [15:19] oh, its a third party repository, checking if they have jammy [15:20] there's no guarantee any of this is going to work with a 3rd party repo [15:21] the current installed version is labelled xenial, maybe its just the minimum requirement [15:21] it works fine. [15:22] good luck with that, it might be a honeypot now. [15:22] in any case do I put xenial or amd64 or just 'apt upgrade package=7.0.0' [15:25] the developers release a new version every week or two, but they are all labelled xenial [15:27] pick: apt-cache policy [15:27] get the available versions from there [15:30] hmm the list looks similar. but how do I assemble a working URL from the pieces there? [15:30] sudo apt install package=version [15:31] oh so I don't have to roll my own URL from .....org/desktop/apt xenial/main amd64 Packages [15:31] URL? [15:32] sudo apt install package=version [15:32] sudo apt install package-name=version [15:32] so apt install also works as an apt upgrade [15:32] or downgrade, yes [15:37] thank you very much ... now I see that man apt-get is clearer about this than man apt, which is correct but ambiguous to the uninformed. [15:58] I've used dd with hdd and it always worked.. now ssd are physically different.... so, can I dd from and 120GB ssd to a 1TB ssd?  Trying to increase the size of a Laptop and keep the OS, software and data. [15:58] yes [15:59] great. thanks [16:00] be aware after that DD action, the UUID changes of your partitions ? [16:00] other than mounting, what else would that effect? [16:01] your grub mismatches, use blkid to identify the new ones [16:01] just mounting, of it's part of some volume or array [16:02] *if the os is on that disk [16:09] got disconnected ... [16:09] hmm, now I'm thinking.. if I DD 120GB onto a 1TB, will the 120GB be the first partition or ?? ... will I need to make other partitions after the 120GB [16:09] or is there a better way to clone the small SSD to the large SSD === meena7 is now known as meena [16:10] milktoast: it will go a LOT easier if you just consider your target a blank slate. dd your source to the target, then use partition and filesystem tools to resize to utilize the entire drive [16:11] milktoast: dd the entire drive, not partitions [16:13] leftyfb: .. that is what I was thinking. It is blank. [16:14] Good afternoon. Are you guys using mate’ [16:14] how can I test the match targets for the autoinstall/curtin storage options? e.g. it says in the docs that it's supposed to use "ID_VENDOR" from udev for the "match" keypair, but I can't seem to get it working [16:17] The Linux User Space podcast did a great job detailing the history of Mate’ in episode 4:14 [16:19] !chat | swift110-mobile [16:19] swift110-mobile: #ubuntu is the Ubuntu support channel, for all Ubuntu-related support questions. Please use #ubuntu-offtopic for other topics (though our !guidelines apply there too). Thanks! [16:25] Ok === xrandr_ is now known as xrandr [17:06] ugm, I have a question. we installed a couple of virtual machines with ubuntu 22.04 around october last year. our installation scripts use `openssl genrsa 4096` to create a private key, but around that time it seems like there was a switch of default format, from PKCS#1 to PKCS#8, which basically means that the type of key was dropped from the envelope. [17:08] strangely, after one case of `-----BEGIN PRIVATE KEY-----` on oct 3, there were 4 more installs that got `-----BEGIN RSA PRIVATE KEY-----`, but I suppose our installation method hasn't changed. [17:34] should there be instructions on this site for how to fix the vulnerability? https://ubuntu.com/security/CVE-2023-5178 [17:34] -ubottu:#ubuntu- A use-after-free vulnerability was found in drivers/nvme/target/tcp.c` in `nvmet_tcp_free_crypto` due to a logical bug in the NVMe/TCP subsystem in the Linux kernel. This issue may allow a malicious user to cause a use-after-free and double-free problem, which may permit remote code execution or lead to local privilege escalation. [17:34] or are we supposed to know you just upgrade it to a newer, unaffected, version? [17:35] wait that sounds really serious [17:37] jongsta, basicly yes. all kernels are patched,or ignored as the available update is not vulnerable. [17:38] ok [17:38] i haven't had to fix vulns in a while but for some reason i feel like i recall a section in these types of articles that explains how to fix the problem [17:38] and i'm not seeing that with this one at least [17:38] a simple "Remediation: upgrade kernel to unaffected version" would be enough [17:39] the post is released when the updates are in place, usually [17:40] for volunteers here, that list is handy to answer questions [19:29] hi there [19:30] allo [19:36] !support [19:36] #ubuntu is the Ubuntu support channel, for all Ubuntu-related support questions. Please use #ubuntu-offtopic for other topics (though our !guidelines apply there too). Thanks! [19:37] please ask if you have a question [19:42] !ask | toddc [19:42] toddc: Please don't ask to ask a question, simply ask the question (all on ONE line and in the channel, so that others can read and follow it easily). If anyone knows the answer they will most likely reply. :-) See also !patience === chao is now known as stenno [20:33] !patience [20:33] Don't feel ignored and repeat your question quickly; if nobody knows your answer, nobody will answer you. While you wait, try searching https://help.ubuntu.com or https://ubuntuforums.org or https://askubuntu.com/ [20:33] This bot is pretty useful [20:34] yes. and you can test it in a PM too 🙂 [20:34] Oh, sorry I didn’t know that [20:35] If my question isn’t Kubuntu specific but rather ubuntu in general, should I ask here or in #kubuntu ? [20:36] all ubuntu questions are ok here [20:36] *buntu i mean 🙂 [20:36] eatyourglory: yes, and yes [20:37] eatyourglory: if you were to install Ubuntu desktop and afterwards KDE desktop and QT, you simply will be running Kubuntu [20:38] then why is there a kubuntu channel in the first place? [20:38] eatyourglory: to cover issues with the Kubuntu flavor of Ubuntu :) [20:39] Thanks a lot! [20:40] eatyourglory: and to be fair, most if not all questions at #kubuntu are about KDE , not ubuntu per se [21:42] I am on Ubuntu 20.04.1 with a KDE Plasma 5.12.8 . This computer has a Nvidia RTX 3070 in it (unfotunately). The symptom I am having is that after every large compilation the GUI elements become either frozen or extremely laggy. This lag is so bad it makes the computer unusable, and I have written a bash script to automate rebooting it after every compile. Today I want ot try to solve this problem once-and-for-all by replacing the [21:42] Nvidia driver [21:42] Gtk-WARNING **: 15:28:38.939: Unable to locate theme engine in module_path: "pixmap", how may this be done [21:45] minimum driver would be 460 [21:45] here is the current situation on this machine https://dpaste.com/2VY87TNDB [21:46] i would upgrade to 22.04, and use HWE [21:46] !hwe [21:46] The Ubuntu LTS enablement stacks provide newer kernel and X support for existing LTS releases, see https://wiki.ubuntu.com/Kernel/LTSEnablementStack [21:46] also available for 20.04 AFAIK [21:47] oerheks my boss put this computer together. He should have considered an AMD option for the GPU. But he went with an RTX3070, kind of sending me down the creek === root is now known as Guest6644 [21:56] I believe that the problem with the GUI lags could be solved by trying a different (likely more recent) driver. What role does the LTS Enablement play here? The directions show that they want me to simply go back to the same driver that is already on here via `ubuntu-drivers list` === Guest6644 is now known as root === root is now known as Guest2591 [21:59] newer mesa, kernel, .. 20.04 is pretty ancient today fot such good hardware [21:59] c/for [21:59] try hwe [22:00] or better upgrade to 22.04, and add hwe on that === tursom38 is now known as tursom3 [22:15] oerheks, okay I have this. what is next step? https://dpaste.com/2JH9SPWM7 [22:17] upgrade to 22.04? 3rd time [22:17] you just have kernel 5.15.0-97 [22:18] 22.04 would do 6.5.0-25 === PasiZ0 is now known as PasiZ [23:55] loose change for sale [23:55] any bids [23:56] i know how to use xstart [23:56] u know prob [23:56] baggy: not sure you'll find any buyers here :P What exactly are you trying to do that requires startx? [23:56] wsl [23:56] ubuntu [23:56] ohhh [23:56] ok one sec [23:58] startx [23:58] i meant [23:58] https://www.howtogeek.com/409115/how-to-delete-files-and-directories-in-the-linux-terminal/ [23:58] why exactly are you using startx in WSL? You can run graphical applications from the Start Menu after installing them. [23:58] change to 11?? [23:58] i think [23:59] startx is generally only used to start a full desktop, and even then only in very specific weird situations. [23:59] According to https://learn.microsoft.com/en-us/windows/wsl/tutorials/gui-apps WSL2 does not support running a full Linux desktop.