| anonymous | ahasenack | 00:04 |
|---|---|---|
| anonymous | (~andreas@uk.sesame.canonical.com | 00:04 |
| === guiverc2 is now known as guiverc | ||
| === bob8192_ is now known as bob8192 | ||
| bob8192 | opinion requested: is Docker out of fashion nowadays in favor of Podman? | 00:24 |
| rbox | no | 00:26 |
| srg | bob8192: No | 00:28 |
| bob8192 | i see a lot of articles online mentioning how podman is more secure, etc, and that docker only runs containers as root but they seem to be misinformed because docker has had a rootless mode for a long time | 00:28 |
| bob8192 | docker has had rootless containers since 2020 but there's still top google-result articles from 2023 and 2024 saying that docker only runs as root | 00:29 |
| rbox | people are stupid | 00:31 |
| bob8192 | it seems that way | 00:31 |
| tomreyn | if you choose software by fashion, you must be using a next-gen generative AI enhanced, cloud-native, turnkey solution which applies blockchain transactions on big data silos to drive lean manufacturing through gamification, thriving through synergy amongst all stakeholders, advancing Web3 to the next level. | 00:37 |
| bob8192 | lol | 00:38 |
| KNERD | https://rumble.com/v5jz7gl-remembering-when-obama-declared-linux-users-extremists.html | 00:39 |
| bob8192 | why did they even do that | 00:40 |
| tomreyn | okay, sorry for potentially driving this off topic (ubuntu support) - i should have held back on my joke. but let's not start going more off-topic than this now, please. | 00:40 |
| tomreyn | KNERD: specifically, we definitely don't need politics in here - please refer to the guidelines which are always available fro the channel topic. | 00:46 |
| KNERD | Sure, support , but I think politics should be covered if it directly involves Linux/FOSS/etc. | 00:47 |
| tomreyn | no | 00:47 |
| tomreyn | read the guidelines. | 00:48 |
| KNERD | I mean in general, not support wise, but yes on that | 00:48 |
| tomreyn | not on this *ubuntu* *support* channel. | 00:50 |
| KNERD | that's what iI said OK rto | 00:51 |
| bob8192 | i plan to run rootless docker as a system user. is it good practice to create a new user for a service with useradd --system --home /srv/myserv myserv ? this should make the user non-loggable from ssh, but i can still activate their shell with `su` | 00:58 |
| bob8192 | ive seen some suggestions that you should disable system users' shells with -s /bin/false but i don't really understand the point | 01:00 |
| === mo is now known as Guest4055 | ||
| === mo is now known as Guest2867 | ||
| tomreyn | bob8192: i assume you have more of a redhat-like system experience? in debian derivates, there's adduser (read its man page to understand why), which can be preferrable to useradd (although it just wraps around it). | 01:04 |
| tomreyn | * derivatives (such as ubuntu) | 01:05 |
| === Guest2867 is now known as mo | ||
| === mo is now known as Guest9395 | ||
| bob8192 | tomreyn: so, adduser is the preferable program in ubuntu? judging by the man pages it seems like it's more conformant to debian policies and also does more things | 01:07 |
| tomreyn | bob8192: other than that, you should be right in that just having a shell set for a user is not going to allow anyone to ssh into that user unless password authentication is enabled (it is by default for non-root users) or a public authorized key has been stored for this user account | 01:08 |
| bob8192 | yeah, I have password authentication disabled, but I didn't know that you could still ssh into a system user if you had an authorized public key for it | 01:09 |
| tomreyn | bob8192: it's preferrable unless you prefer to keep following debian policy (and its potential updates) and don't want to be passing a lot of arguments to adduser whenever you use it directly. | 01:10 |
| tomreyn | sorry, i got this wrong. i mean: adduser is preferrable *when* you like to follow debian policy, and if you prefer not to be passing lots of arguments to adduser whenever you run it. | 01:11 |
| bob8192 | yeah, I kind of figured that's what you meant :p | 01:12 |
| tomreyn | i still got it wrong. let's try this: adduser is preferrable *when* you like to follow debian policy, and if you prefer not to be passing lots of arguments to useradd whenever you run it. | 01:12 |
| tomreyn | bob8192: the public key will need to be configured in a location sshd on the system will be looking for it. this is what makes that public key authorized. | 01:14 |
| pycurious | @tomreyn I removed that package you suggested, now i reboot and get this from uname - > Linux asrock 6.11.0-1006-oem #6-Ubuntu SMP PREEMPT_DYNAMIC Mon Sep 23 11:51:29 UTC 2024 x86_64 x86_64 x86_64 GNU/Linux — but i still dont have the ethernet port. Any ideas? | 01:14 |
| bob8192 | I removed the user that I created with useradd and recreated it with adduser with the same arguments. now it uses UID 110 (instead of 987), GID 65534 (nogroup) instead of its own group. that seems more in line with other system user UIDs already in the system. | 01:14 |
| bob8192 | (also created its own home folder in /srv with the correct permissions automatically, which is nice) | 01:15 |
| bob8192 | I honestly had no idea it was this different. thanks for pointing it out | 01:15 |
| tomreyn | i.e. usually ~/.ssh/authorized_keys{,2} (i think /etc/ssh/authorized_keys or similar also works, would need to look this up) | 01:16 |
| hackinghorn | damn, linux users are extremists? | 01:17 |
| tomreyn | bob8192: you're welcome. (though it's not wrong for a service user to have a same-name primary group assigned - but "nogroup" is also fine if that's not needed) | 01:18 |
| leftyfb | hackinghorn: welcome to the Ubuntu support channel. What can we help you with? | 01:18 |
| pycurious | I wish there was a keyboard shortcut to click "Next" button in the installer UI. The contrast of the "Next" button is nearly zero - so trying to click Tab and reach to it is an issue. (Talking about ubuntu 24.10). Not sure if anyone can change that here :) | 01:18 |
| pycurious | I only have a wireless usb mouse, and the installer does not recognize it (Logitech Mx Master 3S) | 01:19 |
| hackinghorn | leftyfb, thanks, I'm just reading older messages | 01:19 |
| tomreyn | pycurious: check lspci -knnv again, is the module/driver now realizing it could be used for this hardware, is it in use, too? What does your kernel log say about the driver and the pci id now? | 01:20 |
| pycurious | @tomreyn https://dpaste.org/dDtrC - lspci =knnv | 01:21 |
| === _justin_kelly5 is now known as _justin_kelly | ||
| pycurious | [ 0.764513] r8169 0000:71:00.0: error -ENODEV: unknown chip XID 64a, contact r8169 maintainers (see MAINTAINERS file) | 01:23 |
| tomreyn | pycurious: "Kernel modules: r8169" - so at least now it realized it does have a suitable driver available (that's an improvement over the other kernel version, where no suitable driver was listed). for some reason the driver could not start managing this hardware, though, and your logs should be telling you why that is. | 01:23 |
| tomreyn | hmm, maybe that is kernel/driver is still too young. you should probably report this on the bug we were looking at previously | 01:24 |
| tomreyn | and potentially upstream | 01:25 |
| pycurious | @tomreyn The UI issues in the installer - any ideas on how to get that fixed? | 01:32 |
| pycurious | "Next" button should have a background like black over white when its selected. It's a gray over gray - and when I click the tab - I cant tell its selected or not. (Dont have a wired mouse - wireless doesnt work) | 01:32 |
| tomreyn | pycurious: i haven't seen the 24.10 server nor the desktop installer, yet, but you could certainly file a bug about it. | 01:38 |
| tomreyn | make sure you include a screenshot | 01:38 |
| tomreyn | pycurious: now the name of the package to report against seems to change every now and then and i'm not entirely sure which ones it is currently. there is the flutter/dart based 'new' desktop installer which has a github project under i think the "CanonicalLtd" organization, but i think it tracks bug on launchpad on a differently named project (thoug the github project may link to that). and then there is subiquity the 'new' (less so by now) | 01:42 |
| tomreyn | server installer which has both a github repository (under, i think, a different organization) and a same-name launchpad bug tracker. All this is from memory, so it can be very wrong. | 01:42 |
| tomreyn | pycurious: so it's, for server: https://bugs.launchpad.net/ubuntu/+source/subiquity and for desktop: https://bugs.launchpad.net/ubuntu-desktop-provision | 01:49 |
| tomreyn | pycurious: any progress on the NIC? | 01:50 |
| tomreyn | https://github.com/torvalds/linux/blob/ae90f6a6170d7a7a1aa4fddf664fbd093e3023bc/MAINTAINERS#L130 lists the kernel driver maintainer contacts. | 02:04 |
| tomreyn | but maybe start just with an update to the existing bug report against ubuntu. bbl. | 02:04 |
| === _justin_kelly6 is now known as _justin_kelly | ||
| pycurious | @tomreyn I filed a bug against one of the bug reports you had mentioned. Hopefully someone will look into it soon. If they reply or do something in 2 weeks - will follow up :) | 02:36 |
| tomreyn | pycurious: please make sure to include the error message your're seeing on the kernel log. | 02:40 |
| tomreyn | also note that it's better to include full context on the bug tracker (upload file attachments where needed), since external pastebin sites won't store content forever. you can replace unique identifiers such as serial numbers "[redacted]" as needed. | 02:42 |
| === n1thc4 is now known as n1thc | ||
| erickcampos | hello | 05:07 |
| nik_ | Hi, just switched to Kubuntu 24.10 from another distro.. After `ssh-add` a key to the agent and providing the key password, a popup shows saying : Please enter a passphrase to protect the received secret key within gpg-agents key storage.. I can't find anything online, is this something new? usually I'm just required to enter the private key password | 07:09 |
| nik_ | seems it's an integration between gpg-agent and ssh-agent, though I never used it that way so the create new password prompt for each ssh-add was/is confusing | 07:38 |
| === pascalm1 is now known as pascalm | ||
| mgedmin | I think this is KDE's secret manager (kwallet?) acting as gpg-agent, offering to store your ssh key in the system keyring | 08:01 |
| mgedmin | *acting as ssh-agent | 08:01 |
| mgedmin | (well, I suppose it acts as both agents, just like gnome-keyring does) | 08:02 |
| mgedmin | the asking for a new passphrase is a bit strange to me | 08:02 |
| mgedmin | when gnome does this thing, it pops up a dialog asking for the ssh key passphrase to unlock it, and then has a checkbox offering to store it in the system keyring | 08:02 |
| mgedmin | the system keyring is typically protected by the login password and gets unlocked automatically | 08:03 |
| mgedmin | so the end result is you can ssh without typing in the ssh passphrase, but the actual private key is still encrypted on disk | 08:03 |
| eee123 | helo | 08:09 |
| === biapy49 is now known as biapy4 | ||
| nik_ | Yeah it's a bit strange behavior. First you unlock the key itself in the CLI, when running `ssh-add mykey`, then the gpg-agent system popup shows and requires you to create new passphrase for storing the key.. I don't know how the gpg-agent works.. $SSH_AUTH_SOCK does point to gpg-agent /run/user/1000/gnupg/S.gpg-agent.ssh | 08:54 |
| nik_ | and it does so for every new key you try to ssh-add | 08:59 |
| === pascalm1 is now known as pascalm | ||
| TomyWork | I put kubuntu 24.04.1 on a USB drive with unetbootin. I booted a live system from it and I'm doing a long-running operation (shred) in KDE partition manager right now. can I remove the USB drive and keep using that live system until the next reboot/shutdown/crash? | 11:25 |
| TomyWork | this seems to hinge on the "toram" option. should that show up in /proc/cmdline? that contains "BOOT_IMAGE=/casper/vmlinuz --- quiet splash" | 11:32 |
| GuKKDevel | Hello, with Version 22.04 I during booting I could use the F3-key to switch from scrreen with "ubuntu" and the log .After updating to 24.04, this doesn't work . was has changed and how can I get the old behavior? | 11:33 |
| === florent is now known as Floflo99 | ||
| mgedmin | GuKKDevel: ctrl+alt+f3? | 11:53 |
| mgedmin | you can try other function keys (ctrl+alt+f1 through f12), although by default I think only tty1-tty6 get text mode login prompts | 11:54 |
| mgedmin | (except for those ttys take over by gui sessions) | 11:54 |
| BluesKaj | Hi all | 11:56 |
| === Rahoul5 is now known as Rahoul | ||
| === Floflo99 is now known as florent | ||
| === florent is now known as Floco99 | ||
| GuKKDevel | I'll try | 14:24 |
| mari-estel | hi all. Audio on my ubuntu does not seem to work properly. Mplayer works but if i plug a jack it stops working. Sometimes it works just for the first split second. Where to start troubleshooting from? | 15:33 |
| lotuspsychje | mari-estel: open a journalctl -f then plug your jack in, share your output in a !paste with the volunteers here | 15:36 |
| mari-estel | cheers | 15:36 |
| lotuspsychje | mari-estel: ubuntu release version/kernel is also handy to know | 15:36 |
| mari-estel | do i get that with uname -a? | 15:37 |
| lotuspsychje | lsb_release -a && uname -a | 15:38 |
| mari-estel | https://bpa.st/FP2A | 15:39 |
| lotuspsychje | thank you! | 15:39 |
| mari-estel | thanks to you | 15:39 |
| mari-estel | nothing appears on the journal as i plug and unplug the jack | 15:39 |
| lotuspsychje | hmm ok | 15:40 |
| lotuspsychje | mari-estel: maybe your full 'sudo dmesg' then in a paste | 15:40 |
| mari-estel | huh, nothing in dmesg --follow --level debug either | 15:42 |
| mari-estel | how is the underpinning system called? Alsa? Pulse? Maybe i should read some of its man pages to understand how to troubleshoot it better | 15:44 |
| lotuspsychje | sudo dmesg, should give a full list mari-estel | 15:45 |
| mari-estel | it returns a lot of lines, but no new one shows as i plug and unplug | 15:45 |
| lotuspsychje | mari-estel: doesnt need to be new lines this time, just to see whats happening inside your system | 15:49 |
| mari-estel | but then it would be a lot of unrelated stuff | 15:50 |
| mari-estel | this page says to check the card with lspci | 15:50 |
| mari-estel | https://help.ubuntu.com/stable/ubuntu-help/sound-nosound.html.en | 15:50 |
| mari-estel | i am trying that | 15:50 |
| lotuspsychje | mari-estel: let the volunteers decide if there's related info in there or not | 15:51 |
| mjt0k | I think I haven't seen an audio card which reports jack plug/unplug events in dmesg | 15:52 |
| mari-estel | this is my card i think | 15:52 |
| mari-estel | 0000:00:1f.3 Multimedia audio controller: Intel Corporation Meteor Lake-P HD Audio Controller (rev 20) | 15:52 |
| mari-estel | i am going to look for specific drivers | 15:53 |
| mjt0k | heh. My audio card/driver, when I plug/unplug an audio jack, reports this: | 15:54 |
| mjt0k | [307581.836628] pcieport 0000:00:08.1: PME: Spurious native interrupt! | 15:54 |
| mari-estel | :P | 15:54 |
| mjt0k | so it looks like there's some bug in there | 15:54 |
| mjt0k | but pavucontrol et all does notice the change | 15:54 |
| mari-estel | oh, found a nice site https://linux-hardware.org/?id=pci:8086-7e28-17aa-3847 | 16:02 |
| mari-estel | got to go. Thanks all i will try again eventually | 16:04 |
| webchat71 | Hi, I installed ubuntu 24.10 and cannot install comskip using 1. Update the package index: # sudo apt-get update 2. Install comskip deb package: # sudo apt-get install comskip | 16:22 |
| webchat71 | gives me the error of "E: Unable to locate package comskip" | 16:22 |
| enigma9o7 | Well it should be there in universe | 16:23 |
| enigma9o7 | Do you perhaps have universe disabled? | 16:24 |
| enigma9o7 | So yeah, that's expected. | 16:24 |
| enigma9o7 | Oh wait, it's not in oracular. | 16:24 |
| enigma9o7 | It's in focal, jammy, and noble tho. | 16:24 |
| webchat71 | My guess is that the removal of the package for Oracular is fallout from some of | 16:32 |
| webchat71 | the previous ffmpeg changes. | 16:32 |
| enigma9o7 | I'm not very good at tracking down status on stuff, but it seems that it was removed cuz it wouldn't work with ffmpeg 7, but a patch has been provided to resolve that on 13 september, but nothin ghappened since. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072406 | 16:33 |
| -ubottu:#ubuntu- Debian bug 1072406 in src:comskip "comskip: FTBFS with ffmpeg 7.0: mpeg2dec.c:563:48: error: ‘AVCodecParameters’ has no member named ‘channels’" [Serious, Open] | 16:33 | |
| mjt0k | there's also #1081663 with the fix :) | 16:37 |
| webchat71 | The maintainer of the package advised to report it to the Ubuntu support channels, he thought that they probably forgot to re-add after the fix | 16:42 |
| webchat71 | Do you know where can I report that the package was removed and not added back | 16:43 |
| leftyfb | webchat71: the maintainer should be reaching out | 17:17 |
| spinningCat | can i convert ubuntu to steeam deck? | 17:30 |
| CosmicDJ | spinningCat: you can install/run steam on Ubuntu if that's what you're asking | 17:31 |
| spinningCat | well | 17:31 |
| spinningCat | i came across an os bazzita | 17:32 |
| spinningCat | you can use as os and steam deck | 17:32 |
| spinningCat | i guess thats the point | 17:32 |
| spinningCat | so you can play steam games | 17:32 |
| daino | sorry, do you know witch kind of format is a fat32. When i choose format i have "compatible with all systems and devices (MBR/DOS)" and "compatible with modern systems and hard disks >2tb (GPT) | 18:09 |
| daino | Which one is fat32? | 18:09 |
| mjt0k | it is neither or both, depending on how you look | 18:12 |
| mjt0k | fat32 is not a partition format, it is a filesystem format. A filesystem created within a partition. | 18:13 |
| daino | i would like to format a usb hdd in fat32, but i can't see this option in ubuntu | 18:14 |
| mjt0k | so you can create a fat32 filesystem on a partition of either mbr/dos format or gpt format partition table | 18:14 |
| daino | so now i choose an option to format? and after i create a fat 32 system into? | 18:15 |
| daino | is correct? and so now how i have to format this hdd for media end foto for windows and ubuntu? | 18:17 |
| === PasiZ6 is now known as PasiZ | ||
| BlackMage | is max size for a exfat partition 47.09 GiB? | 18:51 |
| cbreak | no, much larger it seems: https://en.wikipedia.org/wiki/ExFAT | 18:56 |
| BlackMage | why max size in gpated is 48217? | 18:59 |
| BlackMage | 512 sector size | 18:59 |
| mjt0k | a partition doesn't care which filesystem it contains, - partition can be of any size. but the filestystem can have its own limits | 19:02 |
| BlackMage | but max partition size of exfat is 8TB | 19:06 |
| BlackMage | has it something todo with logical sector size? | 19:08 |
| genii | exfat media size limit is 256TB | 19:12 |
| === n1thc3 is now known as n1thc | ||
| === NDPMBP is now known as NDPMacBook | ||
| outlaw-marine | why are all snaps mounted at boot? | 20:50 |
| bob8192 | I'm running an apache webserver in Ubuntu, and the forum software that I'm trying to install asks that I set some directories to chmod 777 ... which sounds less than ideal for me. could I give ownership of those directories to the apache user instead of 777? | 21:24 |
| srg | bob8192: It depends - is it actually Apache reading the files, or a seperate process like PHP-FPM? | 21:27 |
| srg | But to answer your question: yes, it would generally be preferable to grant ownership or group access to whatever user/group that requires access instead of opening up permissions to 777 | 21:28 |
| bob8192 | srg: I'm not sure if it's another process accessing the files. I think setting the ownership to www-data might do it? | 21:30 |
| bob8192 | there is actually not an "apache" user as I've found out | 21:30 |
| bob8192 | yeah, I set the file ownership to root:www-data and gave it 774 perms. that should be more secure, hopefully | 21:39 |
| Thermoriax | Hmm, anyone good with namespace stuff? I used to (22.04) be able to use unshare -r -n to run programs in wine with access to the local filesystem, but no net access. Now I'm apparently not allowed to do that in 24.04. I can do unshare -U -n which gets me no network, but wine doesn't seem to be able to see the rest of the filesystem (Z:\ is empty). Is there an easy way to do this anymore? | 21:42 |
| bob8192 | sorry, I don't know :( | 21:57 |
| rfm | Thermoriax, I don't know anything about this but I did remember reading https://ubuntu.com/blog/ubuntu-23-10-restricted-unprivileged-user-namespaces when this came out | 21:58 |
| rfm | Thermoriax, it includes a way to set sysctls to turn off the checking, which might get you back to the old behavior (probably best to turn it off, run the unshare command, turn it back on.) | 22:00 |
| Thermoriax | rfm: Hmm, thanks. I'll go read. The unshare and user_namespaces man pages aren't particularly useful. | 22:08 |
| momken | hello | 22:28 |
| momken | I can not install gnome shell extension Persian Calendar | 22:28 |
| momken | After I switch it to on, after refresh it turns back to off | 22:29 |
| momken | Please help | 22:32 |
| corrin | https://www.youtube.com/watch?v=OXJm2RC9kVE | 22:36 |
| momken | I could finally install the extension using extension manager while using a vpn\ | 22:38 |
| momken | But how can I move the icon from top right to top middle? | 22:38 |
| momken | I fixed it with trial and error! | 22:50 |
| === docmax_ is now known as docmax | ||
| catphish | when i log into ubuntu as a normal user, a slice is created with some limits, for example /sys/fs/cgroup/user.slice/user-1000.slice/pids.max = 7360 | 23:38 |
| catphish | is this configured somewhere? i can't find where | 23:38 |
| catphish | oh, never mind, found it, it's in /usr/lib/systemd/system/user-.slice.d/10-defaults.conf | 23:41 |
| === antonispgs1 is now known as antonispgs | ||
| === Juesto is now known as Juest | ||
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!