1132704033 M * sizo n8 1132704178 M * Bertl night sizo! 1132706815 J * Cru ~mindwarp@instructor.e.de.wahlich.com 1132706823 M * Cru mornin 1132706861 M * Bertl morning Cru! 1132707316 M * Cru Bertl: did you see the funny kernel messages I got on the ml? do you know whether it could be vserver related/is already fixed/is a Linux 2.6.14.2 problem? 1132707328 M * Bertl not yet .. 1132707341 M * Cru http://ircnet.de/paste/22 1132707343 M * Cru it is this 1132707518 M * Cru happened again, but still everything seems to work 1132707528 M * Bertl ah, yes, saw that yesterday ... 1132707534 M * Bertl you pasted it here, right? 1132707552 M * Bertl which kernel/patches= 1132707553 M * Bertl ? 1132707557 M * Cru hmm, dont know, cant remember... 1132707676 Q * Hollow Read error: Connection reset by peer 1132707677 J * Hollow ~hollow@home.xnull.de 1132707708 M * Bertl Cru: hmm, what does 'uname -a' tell ya? 1132707751 M * Cru Linux filemaster 2.6.14.2-vs2.0.1-rc1 #1 SMP Mon Nov 14 16:35:29 EST 2005 i686 i686 i386 GNU/Linux 1132707796 M * Cru as I wrote on the ML, it is a rediff of the patch-2.6.14-vs2.0.1-rc1.diff 1132707844 M * Cru applied cleanly except for the EXTRAVERSION= in the Makefile, of course 1132707872 M * Bertl ah, well, could you try with the recent 2.0.1-rc3 ? 1132707889 M * Bertl fixes some thing, nothing really related, but you never know ... 1132707935 M * Cru hmm, problematic ;) that is the only machine I experienced that problem with - and unfortunately it is the file master server ;) 1132707969 M * Cru cant reboot that machine without checking all other machines whether they cleanly resynced 1132708003 M * Bertl well, if it 'works for you' right now, no need to change 1132708071 M * Cru okay, I will build new kernel images, test them on other servers and place them on the file master for the case the watchdog resets the system 1132708221 M * Cru does not even look critical 1132709033 Q * Hollow Ping timeout: 480 seconds 1132709402 J * Hollow ~hollow@home.xnull.de 1132709577 M * miller7 Bertl: are you still here? 1132709592 M * Bertl yup! 1132709623 M * bragon lo * 1132709623 M * miller7 how can I kill a process that runs inside a vserver but has started from the host? 1132709651 M * Bertl unusual, but with a vkill as usual 1132709694 M * miller7 can't kill it 1132709721 M * miller7 ah ok 1132709722 M * miller7 now I did 1132709729 M * miller7 I had it in bg 1132709742 M * Bertl ah, so you required a SIGCONT first :) 1132709747 M * miller7 Bertl: you are the best! :) 1132709755 M * Bertl and you are welcome! :) 1132709777 M * miller7 I'm trying to move vservers from one box to another 1132709780 M * miller7 :-) 1132709787 M * miller7 and that is fun 1132709801 M * miller7 because when they start it says I'm using "legacy config files" or so 1132709807 M * miller7 does this affect them? 1132709845 M * Cru does not really matter, but there is a script in the wiki that converts the old style config to the new one 1132709854 M * miller7 ah ok 1132709858 M * miller7 thanks, I will look at it 1132709896 M * Bertl miller7: you have a limited set of features for the legacy guests 1132709913 M * Bertl miller7: if you do not need any of the new features, you can keep the legacy config 1132709923 M * miller7 new features such as? 1132709938 M * Bertl memory limits, cpu limits, special flags and caps ... sec 1132709956 M * miller7 nah, wouldn't need them for now 1132709963 M * Bertl http://linux-vserver.org/Release+FAQ 1132709969 M * miller7 besides these vservers run like that for years 1132709974 M * Bertl basically all not listed in 1.2.10 :) 1132710000 M * miller7 ah, I have a question for you 1132710014 M * miller7 I installed the 2.6.14 yesterday together with you if you remember 1132710027 M * miller7 I think that when inside a vserver I can see all the eth interfaces 1132710035 M * miller7 did I screw up anything? 1132710039 M * Cru miller7: when using the script, if there are few vservers, ensure there is i.e. a eth0: prefixing every IP definition, because the script does not recognize $IPROOTDEV - if there are many, I could send you a patched version of the script - but it has been altered in other ways, too 1132710108 M * Bertl miller7: no, that's just one of the features which require a new style config 1132710119 M * miller7 ah I see 1132710120 M * Bertl the flag is called hide_netif 1132710137 M * miller7 hmmm... I will need to go to the new config then 1132710166 M * miller7 Cru: I will only do something like 15-20 vservers into a new box 1132710168 M * miller7 so it's not many 1132710202 M * miller7 Bertl: apart from showing, does it affect anything else? I mean, will the vserver user be able to tweak the network of another user or so if I use the old config? 1132710208 M * Cru adding missing eth0:s to 20 servers should be managable by hand 1132710217 M * miller7 Cru: indeed 1132710282 M * Bertl miller7: nope, will work as with 2.4 1132710289 M * ag- Bertl: is it normal that inside a vserver running a service with only an IP on an interface i can telnet localhost to the service? 1132710321 M * Bertl ag-: not untypical ... if the IP is the first assigned one 1132710331 M * ag- of course, it's the service of the vserver not one of the host 1132710364 M * ag- Bertl: it is :) 1132710420 M * Bertl remember, the localhost is mapped to the first IP :) 1132710440 M * ag- well, it also works on other vservers with secondary IPs... 1132710536 M * ag- not upsetting anyway :P 1132710542 Q * ^Cist Quit: Leaving 1132710559 M * Cru Bertl: on Dec. 3/4 the Linux-Tage Essen (Essen, Nordrhein-Westfalen, Germany) will happen for the first time - besides everyone in here is invited, of course, may I interest you in lecturing on Linux VServers on *next* years event, if this year becomes a success? 1132710667 M * derjohn Cru, no good PR - I am from DE and didnt hear about them. It a weekend? 1132710696 M * Cru it is, on thursday you should read about on heise.de ;) 1132710697 M * Bertl sure, I'd be honored to visit there (given they compensate my travel expenses) 1132710797 M * Cru I am quite sure they will - although it is a non-commercial event, next year's will be organized by commitee of 3 local LUGs, admission is free and shall remain free if this year's donations cover this years expenses 1132710921 M * derjohn Cru, didn't find on heise ... you mean I will read about it in thursday? quite short time to decide ;) 1132710974 M * Cru derjohn: you will this thursday ;) it is currently quite chaotic as probably for every event that happens for the first time ;) 1132710997 M * Cru they are currently setting up static mirrors for the common heise.de news DDoS ;) 1132711006 M * derjohn Cru, I assume you are part of the commitee? 1132711027 M * derjohn Cru, don't, we have upstream from plusline! ;) 1132711029 M * miller7 how bad it is for a vserver not to have static context? 1132711093 M * derjohn miller7, if there are open tcp connections and a new vserver gets the same xid after quitting the first one ... 1132711097 M * Cru indirectly, as this year's event is planned by individuals, but I am in direct contact - they asked just for lecture and workshops and I offered to rework my lecture on virtualization and Linux VServers form early 2004, but of course it would be great to get it from the maintainer himself :) 1132711118 M * derjohn Cru, should send the info to http://www.pro-linux.de too 1132711120 M * miller7 derjohn: can you explain that? not sure I got it 1132711175 M * Cru derjohn: with heise.de news DDoS I mean the load problems usually happen to websites mentioned in the heise.de news ;) 1132711193 M * derjohn hm Bertl told once, if you have an vserver with dyn context 42 and you stop that beast it does not kill it tcp connectons. 1132711196 M * Cru especially those fancy CMS ones ;) 1132711225 M * derjohn miller7, if you start a new vserver it may get the 42 again (because its free then) 1132711228 M * Cru derjohn: I will tell the PR dept ;) 1132711243 M * derjohn and could "grab" the connection 1132711257 M * miller7 I thought contexts were more used in the quota file tagging 1132711259 M * derjohn miller7, IMO not very dangerous in small setups 1132711288 M * miller7 it's that I have a box with not s_context specified at all :) 1132711295 M * miller7 very old box 1132711302 M * derjohn miller7, not only. for everything (hopefully) but I did not read kernel code .. luser only ;) 1132711321 M * miller7 derjohn: thanks 1132711329 M * derjohn Cru, yes, maybe CCC web would be cool too? 1132711357 M * derjohn miller7, don't trust my oppinion 100% ... but I remember it was like that 1132711378 M * miller7 I will wait for Bertl to verify then 1132711386 M * Cru well, some local CCC cells are already involved - I suppose sth like this is in work... 1132711427 M * derjohn miller7, I am not sure if dynamic context are implemneted in 2.x ... maybe only partly .. there was something (didnt listen though, I use static conexts) 1132711427 M * Bertl miller7: you should simply specify one 1132711436 M * Bertl (but for some time, it will also work without) 1132711446 M * derjohn miller7, you should .... yes Bertl was faster ;) 1132711449 M * miller7 Bertl: should I specify one on vservers that didn't have? 1132711455 M * miller7 out of my head? 1132711465 M * Cru http://essen.linux-tage.linec.de/images/Comin/ 1132711470 M * derjohn miller7, start at 42 and count ++ :) 1132711476 M * miller7 42? 1132711496 M * miller7 why 42? 1132711497 M * Cru thats the location we got, but you have to look at http://essen.linux-tage.linec.de/images/Comin/comin26.jpg ;) 1132711502 M * derjohn miller7, yes. 0 and 1 are not available and douglas adams wrote that nice book ;) 1132711527 M * Bertl miller7: because 42 is the answer, see HHGTTG :) 1132711546 M * Cru we already offered to make a new label for that room ;) 1132711553 M * derjohn miller7, I just wanted to say that you should secify a unique one per vserver. 1132711568 M * miller7 derjohn: :-) ok, I use the IP for the time being 1132711576 M * miller7 pretty much unique number 1132711613 M * derjohn miller7, yes, hm, goog Q, what is the max numberfor a conext? could I coose 127001 ? 1132711622 M * derjohn s/coose/choose/ 1132711635 M * derjohn miller7, yes, clear. works 1132711640 M * miller7 :P 1132711644 M * Bertl limits are basically 2-49151 1132711678 M * derjohn miller7, if you use xid fs tagging don't forget to "chxid" the vservers directory 1132711686 M * miller7 derjohn: indeed 1132711691 M * miller7 I don't think I do though 1132711702 M * derjohn Bertl, why this number? Did you read the configuration page too much? 1132711729 M * Bertl you mean the 49151? 1132711733 M * derjohn Cru, is is a joke, isn't it? 1132711740 M * derjohn Bertl, yes 1132711765 M * derjohn Cru, ah, it's only the rooms name *lol* 1132711768 M * Bertl well, it's a very intuitive number? 1132711806 M * Bertl you know, 2^16 = 0x10000 1132711808 M * derjohn Bertl, I did never develop capabilities to think in binary :) 1132711818 M * Bertl 2^16-1 = 0xFFFF 1132711830 M * Cru derjohn: sure ;) there is also a room called Bill Gates - we decided to put the kids care into it ;) 1132711849 M * Bertl derjohn: that's the largest number for 16 bits ... and 49151 = BFFF 1132711850 M * miller7 Are we sure the surname is spelled correctly? 1132711881 M * derjohn Bertl, amiga times I remeber 1132711914 M * derjohn miller7, a random conincidene? Similar name only *lool* ? 1132711936 M * derjohn Cru, that one from miller7 was 4 you :) 1132711952 M * miller7 Well I thought his surname was Torvalds 1132711961 M * derjohn Bertl, besides that I dont look for a job a google :) 1132711982 M * derjohn miller7, I think so too,. 1132712017 M * derjohn miller7, or this is some kind of fun pics and we a hit by a joke ! 1132712034 M * Cru miller7: we know, thats a mistake by the buildings janitor or sth like that ;) 1132712052 M * miller7 I wonder what the name was on Bill Gates sign :-)))))) 1132712070 M * derjohn Cru, "Pill Gayts" ? 1132712099 M * Cru Bill Gates is written correctly, as it shall remain, we simply put the kindergarten into it ;) 1132712133 M * miller7 that must be a traumatic experience for the infants 1132712141 M * miller7 you are not nice people Cru 1132712163 M * Cru kids will get nice toys in fancy colors! 1132712193 M * derjohn It's getting late here in DE. I gonna leave now. Cru: Yes, they kids should have to dress like penguis !! :) 1132712207 M * derjohn miller7, we are germany, you know ... 1132712213 M * derjohn s/germany/Germans/ 1132712215 M * derjohn :) 1132712235 M * Cru you are Germany ;) 1132712277 M * derjohn Cru, er, öh, yes it seems like ;) 1132712300 M * derjohn Wow, I am the Bundeskanzlerin but I didnt tell you! 1132712335 M * Cru der Bundeskanzlerin 1132712345 M * derjohn Cru, but anyway I going into hybernation now. 1132712356 M * derjohn Cru, hehe ... should change my nick ;) 1132712375 M * Cru have fun, dont lose tcp connections ;) 1132712396 M * derjohn will count them to sleep in .... sheeps are lame ;) 1132712416 M * derjohn (hopping over are firewall) 1132712420 M * derjohn n8 1132712422 M * derjohn over and out 1132712423 M * Cru counting sequence numbers? 1132712481 M * derjohn hm, maybe, thix xid a have only 49151 .... seqs are more AFAIR .... 1132712496 M * derjohn but now really : leaving the office now 1132712498 M * derjohn bye 1132712829 M * Cru unlustig ;) 1132713288 M * miller7 what will happen if I move a vserver from a box that lsxid shows 70 to a box that lsxid /vservers shows !!ERR!! ??? 1132713299 M * miller7 will there be a problem in writing / appending files? 1132713327 M * Bertl depends on how you move 1132713332 M * miller7 meaning? 1132713337 M * Bertl basically the first box has xid tagging enabled 1132713351 M * Bertl so the guest xid (70) is applied to all files 1132713377 M * Bertl the second machine did not mount /vservers with tagxid 1132713452 M * miller7 so what will it happen? 1132713470 M * Bertl if you move it at a very low level, it will show funny user/group ids 1132713483 M * Bertl if you copy it via rsync or so, probably nothing 1132713487 M * miller7 I enter into the vserver, tar all files 1132713495 M * miller7 then untar them to the new host 1132713509 M * Bertl same level as rsync, just more complicated :) 1132713512 M * miller7 :P 1132713534 M * miller7 if I tarred files from the host then I would get wrong ids in Redhat 1132713541 M * miller7 when the host is gentoo for example 1132713547 M * miller7 in redhat vserver I mean 1132713553 M * miller7 does this make any sense? 1132713561 M * Bertl yes, can happen 1132713577 M * Bertl tar looks at the /etc/passwd file to figure uid/gid -> name 1132713587 M * miller7 ah I see 1132713651 M * miller7 so rsync is the best method? 1132713673 M * Cru or --numeric-owner for tar 1132713676 M * Bertl really depends, I mainly use dump/restore 1132713733 M * miller7 from the host I assume 1132713741 M * Bertl yes 1132713749 M * miller7 ok, then I'll do that also 1132713800 M * Bertl might be problematic for you, as it is very low-level 1132713814 M * miller7 meaning? 1132713816 M * Bertl (so you might run into the funny uid/gid issue) 1132713821 M * miller7 ah ok 1132713906 M * daniel_hozac changes from 2.0.1-rc2 to 2.0.1-rc3? activate fix only? 1132713982 M * Bertl also the vroot fixes 1132714000 M * daniel_hozac delta? 1132714013 M * Bertl give me a minute :) ... 1132714036 M * Cru going to bed, bbl :) 1132714063 M * miller7 bye Cru 1132714069 Q * lilo Quit: 1132714083 M * Bertl night Cru! 1132714092 M * Cru gn8 1132714096 Q * Cru Quit: use Unices; $live->free() || die; 1132714117 M * Bertl daniel_hozac: usual location ... 1132714126 M * daniel_hozac thanks. 1132714137 M * Bertl np 1132714151 M * daniel_hozac usual != FOR-2.0.1? 1132714185 M * daniel_hozac ah, i see it. 1132714189 M * Bertl http://vserver.13thfloor.at/Experimental/delta-2.6.14.2-vs2.0.1-rc2-rc3.diff 1132714225 M * daniel_hozac yep, thanks. 1132714538 J * dddd44 dhb55@60.50.135.12 1132714547 M * Bertl dddd44: ping! 1132714841 F * ChanServ +o Bertl 1132714852 F * Bertl +b *!*dhb55@60.50.135.* 1132714871 F * Bertl +b *!*dhb55@* 1132714889 K dddd44 Bertl dddd44 1132714902 F * Bertl -o Bertl 1132715011 J * miller none@213.239.180.100 1132715381 Q * miller7 Ping timeout: 480 seconds 1132715421 J * stefani ~stefani@c-24-19-46-211.hsd1.wa.comcast.net 1132715431 M * Bertl welcome stefani! 1132715442 M * stefani hola again. 1132715685 J * dlippolt ~dlippolt@cpe-70-112-77-129.austin.res.rr.com 1132715701 M * dlippolt Bertl: ping 1132715715 M * Bertl dlippolt: pong! 1132715754 M * dlippolt Bertl: i setup vs2.0 on kernal 2.6.12, out of debian testing in an otherwise stock sarge setup 1132715777 M * dlippolt Bertl: but the base ip is showing inside the vserver, is this expected? 1132715797 M * Bertl base ip being? 1132715801 M * dlippolt v233:/# ifconfig 1132715801 M * dlippolt eth0 Link encap:Ethernet HWaddr 00:E0:81:30:95:43 1132715801 M * dlippolt inet addr:192.168.1.99 Bcast:192.168.1.255 Mask:255.255.255.0 1132715801 M * dlippolt UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 1132715801 M * dlippolt RX packets:141685 errors:0 dropped:0 overruns:0 frame:0 1132715801 M * dlippolt TX packets:134804 errors:0 dropped:0 overruns:0 carrier:0 1132715803 M * dlippolt collisions:0 txqueuelen:1000 1132715807 M * dlippolt RX bytes:126365237 (120.5 MiB) TX bytes:13526586 (12.8 MiB) 1132715809 M * dlippolt eth0:v233 Link encap:Ethernet HWaddr 00:E0:81:30:95:43 1132715811 M * dlippolt inet addr:192.168.1.233 Bcast:192.168.1.255 Mask:255.255.255.0 1132715813 M * dlippolt UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 1132715815 M * dlippolt lo Link encap:Local Loopback 1132715817 M * dlippolt inet addr:127.0.0.1 Mask:255.0.0.0 1132715819 M * dlippolt UP LOOPBACK RUNNING MTU:16436 Metric:1 1132715821 M * dlippolt RX packets:6 errors:0 dropped:0 overruns:0 frame:0 1132715823 M * dlippolt TX packets:6 errors:0 dropped:0 overruns:0 carrier:0 1132715826 M * Bertl please use pastebin.com for larger info 1132715827 M * dlippolt collisions:0 txqueuelen:0 1132715829 M * dlippolt RX bytes:588 (588.0 b) TX bytes:588 (588.0 b) 1132715832 M * dlippolt the vs 1.2 boxes i have running on 2.4 kernels all hide the ip in eth0 1132715843 M * dlippolt from witin the vserver 1132715845 M * miller dlippolt: you have to set the flag in new config 1132715851 M * miller so that the eth can be hidden 1132715852 M * miller :) 1132715864 M * dlippolt url pointing to vs2.0 gotcha's? 1132715865 M * Bertl dlippolt: I'd assume your debian tools created a legacy guest 1132715882 M * Bertl just avoid the debian gotcha, and everything will be fine 1132715913 M * dlippolt meaning... dont run debian and everythign will be fine? 1132715925 M * Bertl meaning, don't use _any_ debian packages 1132715947 M * Bertl (unless you are 100% sure that they work) 1132715964 M * dlippolt does that extend to the vs2.0 patches as part of debian testing? 1132715975 M * Bertl yes, definitely 1132715993 M * Bertl util-vserver, vserver-debian-tools (or whatever it is called) and the kernels 1132716028 M * Bertl or, alternatively, live with the (broken) debian way 1132716066 M * miller does /vservers need to be chmod 000 in newest version? 1132716085 M * Bertl nope that was replaced some time ago 1132716094 M * miller ok 1132716252 M * dlippolt sorry for being so far behind on how the debian stuff is broken 1132716284 M * Bertl dlippolt: np, all kind of debian folks are trying to fix it (for some time now) but it isn't that easy with the current maintainer ... 1132716285 M * dlippolt would you say these instructions: 1132716290 M * dlippolt http://www.howtoforge.com/linux_vserver_debian 1132716304 M * dlippolt are valid with current reality 1132716368 M * Bertl valid means? will it work? 1132716377 M * dlippolt valid == recommended 1132716386 M * Bertl no, definitely not 1132716414 M * Bertl parts are probably fine, but the tools and the kernel is not recommended 1132716435 M * dlippolt better url? 1132716512 M * dlippolt i used this method to setup what i have now (replace 'unstable 1132716518 M * dlippolt ' with 'testing' everywhere) 1132716519 M * dlippolt http://deb.riseup.net/vserver/preparing/ 1132716573 M * Bertl http://linux-vserver.org/Step-by-Step+Guide+2.6 1132716580 M * dlippolt i will say that the 2.4 based stuff on debian, using straight deb packages, on 1.2 has been rock solid 1132716594 M * Bertl rock solid, but utterly broken ... 1132716596 M * dlippolt across 10's of real boxes, pushing real traffic 1132716613 M * dlippolt haha, i think i prefer solid over not broken, in that case :) 1132716613 M * Bertl give me one guest, and I screw up your entire system :) 1132716622 M * dlippolt ah, point taken 1132716688 M * Bertl basically I'd go with 2.6.14.2-vs2.0.1-rc3 1132716705 M * Bertl get the 0.30.209 util-vserver (and no debian-vserver-tools) 1132716721 M * Bertl configure both to your liking and have a solid and secure system 1132716742 M * Bertl no magic, nothing complicate 1132716745 M * Bertl +d 1132716778 M * dlippolt cool 1132716825 M * dlippolt the other wrinkle is all the boxes are at rackspace, so i dont have console access, and the debian patched kernels are booting but the straight kernel.org kernls aren't, but thats a separate issue 1132716830 M * dlippolt thanks for the link, i'll go play and get back to you 1132716859 M * Bertl do you have serial console? 1132716957 M * dlippolt no, the boxes are physically disparate, and console connections aren't available 1132716981 M * Bertl probably the 2.6.14 kernel tells you (via the console) what went wrong 1132716989 M * Bertl you might consider enabling netconsole 1132717013 M * dlippolt yeah, its just horribly cumbersome to go thru the rackspace techs 1132717024 M * dlippolt who then relay what the datacenter guys tell hem 1132717030 M * dlippolt each cycle can take an hour 1132717035 M * Bertl that's why I said netconsole :) 1132717038 M * dlippolt netconsole... will check it out 1132717061 M * Bertl especially if you have more than one machine there, it should be trivial 1132717072 M * dlippolt yeah, they are on the same vlan 1132718235 J * Greek0 ~greek0@85.255.145.201 1132718264 M * Bertl morning Greek0! 1132719988 P * stefani parting (is such sweet sorrow) 1132720370 M * miller Bertl: ip does want to delete the ip... it is more complicated than what you said before 1132721278 J * Aiken__ ~james@tooax6-176.dialup.optusnet.com.au 1132721344 M * Bertl miller: give me some details ... 1132721362 M * miller ip addr del 1.2.3.4 1132721366 M * miller Not enough information: "dev" argument is required. 1132721372 M * miller dev is the eth0 I assume, right? 1132721382 M * miller becuase if I put it, I get 1132721383 M * miller Error: either "local" is duplicate, or "eth0" is a garbage. 1132721494 M * Bertl hmm, have you considered using the man page? 1132721503 M * miller yes 1132721525 M * miller god I'm stupid 1132721527 M * Bertl ip addr del 1.2.3.4 dev eth0 1132721530 M * miller yep 1132721535 M * miller just realised that 1132721539 M * miller geez I'm stupid 1132721593 Q * Aiken_ Ping timeout: 480 seconds 1132721600 M * miller thanks bert 1132721607 M * Bertl you're welcome! 1132721730 M * miller vserver-stat has changed behaviour? 1132721747 M * miller it does not show the name of legacy conf vservers? 1132722146 M * Bertl yes, those are the small differences ... 1132722160 M * Bertl moving to new style config will show them 1132722206 M * dlippolt regarding that 1132722207 M * miller ah ok 1132722215 M * dlippolt i noticed vserver-stat doesn't include vserver names anymore 1132722220 M * dlippolt is this another config option? 1132722253 M * Bertl 06:02 < Bertl> yes, those are the small differences ... 1132722253 M * Bertl 06:02 < Bertl> moving to new style config will show them 1132722289 M * dlippolt thx 1132722324 M * miller :P 1132722950 J * cdv ~chdemon@pipe.vmts.ru 1132723215 M * Bertl welcome cdv! 1132724798 J * MrThunder ~noemail@rn-v1e4b22.uwaterloo.ca 1132724818 P * MrThunder 1132725153 M * miller hmmm 1132725160 M * miller that is very very strange 1132725502 M * Hollow miller: my person is about me ;) 1132725520 M * Hollow morning btw 1132725532 M * Bertl morning Hollow! 1132725552 M * miller hey Hollow :) 1132725575 M * miller what's about gentoo-vserver? 1132725598 M * miller should I use this directly or install bert's version (patch kernel etc) 1132725650 M * Hollow you're free to install the kernel manually, but the vserver-sources are not that different... 1132725670 M * miller what will be the benefit if I install gentoo package? 1132725678 M * miller apart from installing at once 1132725740 M * Hollow 1. you don't have to care about patches, 2. you don't have to compile things by hand, 3. your sources get updated automegically if there is a new version 1132725763 M * Hollow well, you have to compile the kernel by hand, of course.. but not util-vserver or so 1132725775 M * miller every when do you keep up with Bert's updates? 1132725806 M * Hollow we'll try to be as up to date as possible ;) 1132725810 M * miller ;) 1132725812 M * miller ok 1132725827 M * miller do you need help on this project of yours? 1132725837 M * Hollow which project do you mean? 1132725842 M * miller gentoo-vs 1132725883 M * Hollow well, at the moment everything seems quite fine in gentoo vserver land, but the new utils will need love ;) 1132725900 M * miller ok 1132725901 M * miller :) 1132725996 M * miller anyone ever experienced slow starting of a specific vserver? 1132726003 M * miller I mean, all others start normally 1132726009 M * miller this one used to start normally on old box 1132726015 M * miller but now it takes ages.... 1132726021 M * miller any ideas? 1132726058 M * Hollow maybe dns server in resolv.conf is unreachable... 1132726066 M * miller no 1132726071 M * miller it's the same as another vserver on same box 1132726075 M * miller reachable normally 1132726096 M * miller also it was working on previous (older vserver version) box 1132726102 M * miller even mc takes 2 minutes to show 1132726302 M * miller even ls -alF /etc/init.d/ stops at some point and waits... 1132726337 M * miller could be hacked? 1132726348 M * Hollow strace would be helpful probably 1132726361 M * miller from inside the vserver, right? 1132726392 M * Hollow yup 1132726424 M * miller ok, you probably were right 1132726426 M * miller before 1132726432 M * miller trying to wget the strace files 1132726440 M * miller it tries to resolv for long 1132726461 M * miller that's strange becuase /etc/resolv.conf looks ok 1132726481 M * miller dig works fine too 1132726783 M * Bertl what does /etc/resolv.conf contain? 1132726791 M * miller I strace and it's strange 1132726800 M * miller open("/var/yp/binding/host.domain.name 1132726801 Q * dos000 Ping timeout: 480 seconds 1132726818 M * Bertl ah, you did configure a yellow pages domain? 1132726825 M * miller ? 1132726827 M * Bertl very interesting ... 1132726832 M * miller what is a yellow pages domain? 1132726841 M * Bertl nis/nis+ 1132726852 M * miller not that I know of.... 1132726859 M * Bertl a) how was the guest created? 1132726863 M * miller no idea 1132726868 M * miller this is million years back 1132726894 M * Bertl aha, well, b) what does /etc/nsswitch.conf say 1132726907 M * Bertl (please either upload or just look :) 1132726918 M * Bertl (hmm, but don't paste here :) 1132726920 M * miller it says a lot 1132726933 M * miller bootparams: nisplus [NOTFOUND=return] files 1132726935 M * Bertl I'd assume hosts: files nisplus nis dns 1132726942 M * miller hosts: files nisplus nis dns 1132726944 M * miller yes 1132726945 M * miller indeed 1132726951 M * Bertl remove the nisplus nis 1132726990 M * miller god damn it 1132726992 M * miller it solved 1132727037 M * miller though mc still takes hours to load 1132727047 M * miller recvfrom(4, 0x80d2fd8, 400, 0, 0xbf980e50, 0xbf97eb34) = -1 EAGAIN (Resource temporarily unavai 1132727065 M * miller something similar? 1132727097 M * Bertl it probably tries to connect to something/read something 1132727110 M * Bertl we'd need a full strace (upload it somewhere) 1132727113 M * miller again it shows the same 1132727114 M * miller wait 1132727126 M * miller open("/var/yp/binding/main.hostname 1132727130 M * miller so it is similar problem? 1132727165 M * Bertl could be ... basically if you do not use nis/nis+ 1132727179 M * Bertl then you should not configure them in /etc/nsswitch.conf :) 1132727190 M * miller it's there on other same vservers 1132727193 M * miller but they work fine 1132727227 M * miller ok 1132727235 M * miller I copied /etc/nsswith.conf from the other vserver 1132727238 M * miller and now mc runs 1132727248 A * miller can't imagine what would do without Bertl 1132727265 M * Bertl :) 1132727270 M * miller no really 1132727285 M * miller you are the master 1132727292 M * Bertl you know the donations page? 1132727304 M * miller I will surely find it out! 1132727369 M * Hollow miller: ok.. i bumped vserver-sources to 2.0.1_rc3-r1 (do not use 2.0.1_rc3, it accidently contained the rc1 patch) and 2.1.0_rc8 1132727402 M * Hollow have to leave then.. school and things 1132727410 M * miller ok 1132727414 M * Bertl Hollow: k, cya! 1132727415 M * miller Bertl: donation sent! 1132727426 M * Bertl tx 1132727434 M * Hollow .oO( i need a donations page too ) 1132727449 M * miller it's just $50, I will try to send more soon again 1132727488 J * dos000 ~dos000@CPE00119572fd49-CM00137186e53a.cpe.net.cable.rogers.com 1132727535 M * Bertl welcome dos000! 1132728060 M * miller Bertl: what happens on the new version regarding BIND daemon? 1132728069 M * miller does it require "CAP_SYS_RESOURCE"? 1132728272 M * dos000 hey Bertl 1132728279 M * Bertl miller: well, you can probably give it ... 1132728362 M * dos000 Bertl, i really like this vserver stuff ! 1132728400 M * Bertl dos000: good! 1132728410 M * Johnnie It's addictive. :) 1132728458 M * miller let's prey for Jackques and Bert ;-) 1132728468 M * miller may they always have coding time 1132728471 M * miller :P 1132728511 M * dos000 Bertl, is there a minimum donation 8-) 1132728526 Q * ryker Quit: Leaving 1132728664 M * dos000 i cant see a server whithout thinking how i can run vserver in it ! 1132728686 M * miller dos000: hehe 1132729122 M * Bertl dos000: no, not that I know of ... of course, the more the better :) 1132729145 M * dos000 ok 1132729770 Q * Johnnie Remote host closed the connection 1132729820 M * Bertl okay, off to bed now .. back in the evening ... 1132729828 M * Bertl have a nice whatever everyone ... cya! 1132729830 M * miller have a nice sleep Bertl 1132729834 N * Bertl Bertl_zZ 1132729861 J * Johnnie ~john@acs-24-154-53-217.zoominternet.net 1132730085 Q * mnemoc Read error: Connection reset by peer 1132730215 J * mnemoc ~amery@200.75.27.16 1132731168 M * dlippolt so i built new 2.6.12.5 kernel, new alpha tools, going to build vserver 1132731173 M * dlippolt vserver-build: line 206: -n: command not found 1132731315 M * dos000 anyone know if it is possible to get a linksys routerr to route an ip in the form 192.168.a.b ? i have netcloud <-> router1 <-> {server1 , router2} and hosts behind router2 that need server1 1132731352 M * dlippolt screams for nat? 1132731359 M * dlippolt at router2? 1132731472 M * dos000 my guess is router2 will not route 192.168 type adresses ... before you get to nat issues even 1132731559 M * dos000 nat is for incoming tarrfic right ? 1132731589 M * dlippolt is server1 ip: 192.168.a.b and hosts ip 192.168.c.* where a != c ? 1132731621 M * dos000 yes assume it 1132731655 M * dlippolt then just have router2 nat all of 192.168.c.* behind an ip on 192.168.c 1132731669 M * dlippolt typo, last letter should be a 1132731699 M * dlippolt depending on the linksys device, this is probably the default 1132731740 M * dlippolt from router2's perspective, its WAN ip will be on 192.168.a and its LOCAL ips will be 192.168.c.* 1132731763 M * dlippolt it will by default perform NAT so hosts can get to server, but server can't get to host 1132731828 M * dos000 so if i have 2 host both connecting to server1 at the same udp port what will happen to incoming traffic on router2 ? 1132731932 M * dos000 also router1 is linksys so traffic from server1 will maybe never show up in router2 ! 1132733789 M * dlippolt are you familiar with nat? (network address translation) 1132733885 M * dos000 generally speaking yes 1132733915 M * dlippolt if you have two hosts connecting to server1 from behind router2 1132733929 M * dlippolt then server1 will see both connections as source ip of router2 1132733938 M * dlippolt but will recognize them as different connections 1132733944 M * dos000 ok. 1132734105 M * dos000 so when it has to replay to udp packets .. it technikally cannot send it to the same port right ? 1132734184 M * dos000 s/replay/reply 1132734486 Q * cdv Ping timeout: 480 seconds 1132734555 M * dos000 dlippolt, still there ? 1132735480 Q * shedi Quit: Leaving 1132737251 Q * Aiken__ Quit: Leaving 1132737381 J * supastuff ~user@83.149.117.143 1132737394 M * supastuff hello 1132740601 M * sizo moin 1132742607 J * arapaho ~pmalamy@LAubervilliers-151-12-45-14.w80-14.abo.wanadoo.fr 1132743046 Q * miller Ping timeout: 480 seconds 1132744623 M * arapaho hi * 1132744769 M * arapaho as i'm searching a way to have recent kernels working with vserver and grsec, i was wondering if there is somewhere a howto or some general explanations to produce a vserver + grsec patch 1132744802 M * arapaho or if there are some existing projects about that that need help 1132746159 Q * Pazzo Ping timeout: 480 seconds 1132746909 M * ag- arapaho: why not using selinux? it's already in mainline 1132747006 M * ag- well, i'm sorry if i sound harsh, i didn't wanna troll :) 1132747264 J * Pazzo ~Pazzo@host130-250.pool8172.interbusiness.it 1132752696 Q * mcp Ping timeout: 480 seconds 1132752886 J * shedi ~siggi@tolvudeild-201.lhi.is 1132752963 M * infowolfe hi supastuff 1132752970 M * supastuff hi yourself ;) 1132753439 M * Hollow heya infowolfe 1132753448 M * infowolfe hi Hollow 1132753485 A * infowolfe has been experiencing pebkac issues w/ his xeon... rc-update add {sshd,net.eth0} default (that was a good one for me to forget ;-) ) 1132753488 M * Hollow i just created a new overlay for gentoo vserver/openvz 1132753492 M * infowolfe cool 1132753500 M * infowolfe got svn? 1132753504 M * Hollow http://dev.croup.de/proj/gentoo-vps 1132753510 M * Hollow this is the trac page 1132753515 M * arapaho ag-< we don't use selinux because grsecurity is in our procedures. All kernels here are grsec patched, we use RBAC in a extensive way 1132753516 M * Hollow http://dev.croup.de/repos/gentoo-vps 1132753518 M * Hollow this is svn 1132753543 A * infowolfe bookmarks 1132753577 M * Hollow and, if you're using gensync, you can sync via rsync://dev.croup.de/gentoo-vps 1132753601 M * Hollow this rsync module contains only the overlay/ dir of the svn 1132753609 M * arapaho ag-< and as I'm going to test vservers, I'd like to know if procedures for vservers+grsec already exist or if i have to manage alone 1132753698 M * Hollow arapaho: there were some patches around, but noone kept them up-to-date because it's a pita 1132753731 M * infowolfe arapaho, the question is, why do you need grsec/rbac + vserver? 1132753737 M * Hollow indeed 1132753780 Q * infowolfe Remote host closed the connection 1132754357 M * arapaho "why do you need grsec/rbac + vserver" => Are vserver security contexts the same as those in grsec patch ? 1132754389 M * arapaho Is it bad or dumb to use grsec and verser at the same time ? 1132754895 M * ag- arapaho: this has been done before (pre-2.0 series), see http://linux-vserver.org/grsecurityHowto 1132754929 M * ag- arapaho: it would be nice if you could do it for 2.6.14.2 with 2.0/2.1 series :) 1132755055 M * ag- arapaho: you will however encounter issues with ACLs :/ 1132755062 M * arapaho it's my goal 1132755169 M * arapaho I've tested with a 2.6.11.12 kernel with grsec 2.1.6 and vserv 2.0 rc3 or rc4 i don't remember 1132755169 J * infowolfe ~infowolfe@209-112-215-110-cdsl-rb1.nwc.acsalaska.net 1132755199 M * arapaho ag so ok i'll try that howto and give you feedback 1132755200 M * arapaho thx 1132755246 M * ag- arapaho: i'm quite intersted in that stuff too, feel free to update the wiki... 1132755259 M * ag- s/intersted/interested/ 1132755328 M * arapaho k 1132756552 Q * infowolfe Quit: infowolfe 1132756560 J * infowolfe ~infowolfe@209-112-215-110-cdsl-rb1.nwc.acsalaska.net 1132756571 Q * infowolfe Quit: 1132756746 J * infowolfe ~infowolfe@209-112-215-110-cdsl-rb1.nwc.acsalaska.net 1132757055 N * Bertl_zZ Bertl 1132757061 M * Bertl morning folks! 1132757104 M * matti Morning Bertl. 1132757139 M * Bertl arapaho, ag-: as usual, my funny question "what features of grsec/rbac are you using to enhance linux-vserver security?" 1132757172 M * matti Eh. 1132757183 M * Bertl hey matti! still have to find a postcard ... 1132757232 M * matti Em? 1132757232 M * matti Oh, I forgot about. Heh ;/ 1132757237 Q * supastuff Quit: That's it for today 1132757240 Q * infowolfe Quit: infowolfe 1132757388 M * matti Bertl: If you don't have time... It's not a problem, you should not bother about that postcard thing. 1132757392 M * matti :] 1132757472 M * sizo re 1132757776 M * arapaho Bertl< hi. for grsec: prevents null pointer dereferences from turning bad under heavy load and memory exhaustion, destruction of unused shared memory, randomized pid and others features 1132757788 M * arapaho it's just an experimentation 1132757793 M * arapaho i discover vserver 1132757830 M * arapaho sorry for my bad english -> s/discover/test/ 1132757890 M * arapaho for now, I don't realize well all the modifications vserver patch makes 1132757900 M * arapaho it was just a question 1132757918 M * arapaho => arapaho "why do you need grsec/rbac + vserver" => Are vserver security contexts the same as those in grsec patch ? 1132757926 M * arapaho => arapaho Is it bad or dumb to use grsec and verser at the same time ? 1132758058 J * Larsioa ~lars@you.are.the.lamer.la 1132758061 M * Larsioa Hello :) 1132758761 M * Bertl welcome Larsioa! 1132758789 M * Bertl arapaho: hmm, 'prevents null pointer dereferences from turning bad' how? 1132758817 M * Bertl arapaho: what does the pid randomization help you? 1132758831 M * Bertl arapaho: what _are_ the other features? 1132759029 M * arapaho Bertl< from grsec docs [for null pointer dereferences] => "non-fixed mmaps will not return an address within the first page of virtual memory" 1132759038 M * Larsioa damn why do i have the Linksys WAP54 :( i want the other linksys which have a bigger firmware soo that the openwrt firmware wount be readonly :( 1132759048 M * Larsioa bigger flashcard* 1132759057 M * Larsioa sucky day. 1132759088 M * arapaho pid randomization => we do test about kernel security features random pids are needed in our vserver test environments to test PID prediction 1132759146 M * arapaho other features => randomization features: pid, tcp isn/source ports, ... 1132759151 M * arapaho restriction on /tmp 1132759230 M * arapaho grsec is not the _ultimate_ security patch, but here we use it 1132759235 M * arapaho i've no choice :) 1132759295 M * harry_ hhaaaaa 1132759301 A * harry_ looking at Bertl now :) 1132759307 N * harry_ harry 1132759362 M * Bertl arapaho: no, I'm just trying to figure _why_ so many folks go this road ... and I'm puzzled by the fact that folks apply it but usually don't know why ... 1132759391 M * Bertl arapaho: restriction on /tmp? 1132759415 M * Bertl harry: hmm? 1132759421 M * Bertl harry: WHT? 1132759425 M * harry wth, yes :) 1132759431 M * Bertl ah, :) 1132759505 M * harry did you have special limits on your host/guest ? 1132759506 M * Larsioa Why vserver and not http://openvz.org/ ? 1132759578 M * Bertl Larsioa: well, for me 'personally' there are a bunch of good reasons: 1132759600 M * Bertl - stability and performance 1132759611 M * Bertl - readability of the code 1132759621 J * Breaker_uk ~barrix@host86-134-205-64.range86-134.btcentralplus.com 1132759642 M * Bertl - no comemrcial intentions 1132759665 M * Bertl - no possible GPL infringements ... 1132759677 M * Bertl welcome Breaker_uk! 1132759716 M * Larsioa Okay :) 1132759756 M * Bertl but of course OVZ might have some advantages for the end-user 1132759774 J * infowolfe ~infowolfe@209-112-215-110-cdsl-rb1.nwc.acsalaska.net 1132759774 M * Bertl - easy switch to a fully supported commercial solution 1132759785 M * Bertl - probably better tool support 1132759799 M * Bertl - graphical administration and billing 1132759817 M * Bertl (well, actually those are VZ features :) 1132759837 M * Larsioa hmm are u sure that OpenVZ has the graphical web interrface? 1132759856 M * Bertl no, that's why I said those are VZ features 1132759869 M * sladen openvz? 1132759869 M * Larsioa oh 1132759872 M * Bertl so let's rephrase that: 1132759882 M * Bertl - probably better tool support (at least for VZ) 1132759897 M * Bertl - option to 'upgrade' to VZ graphical stuff 1132759999 A * harry happy with the vserver sollution for now... 1132760015 M * harry learned a little from your presentation, you long-haired dude! ;) 1132760017 M * Larsioa me2 1132760036 M * Larsioa which presentation, where? 1132760047 M * harry Bertl's at wth 1132760055 M * Larsioa is a movie online? 1132760059 M * harry i was there, but didn't get there in time 1132760063 M * harry probably drinking... 1132760066 M * harry yes 1132760071 M * Larsioa where to find it? 1132760075 M * harry wth site? 1132760090 M * Larsioa heh i dont know what wth is :) 1132760105 Q * Johnnie Quit: G'bye! 1132760107 M * Larsioa whatthehack? 1132760127 M * dlippolt fresh install help (2.6.12.5, vs1.2, alpha tools) 1132760134 M * dlippolt running: ./vserver-build -m debootstrap -n v233 --rootdir /vservers -- -d sarge 1132760145 M * dlippolt downloads all the packages, startstoprocess them 1132760145 M * Bertl the video is linked from linux-vserver.org 1132760146 M * harry whatthehack, yes 1132760152 M * Larsioa Which day where he on? 1132760158 M * harry don't know 1132760161 M * dlippolt Selecting previously deselected package debconf. 1132760162 M * dlippolt (Reading database ... 2479 files and directories currently installed.) 1132760162 M * dlippolt Unpacking debconf (from .../debconf_1.4.30.13_all.deb) ... 1132760162 M * dlippolt dpkg: debconf: dependency problems, but configuring anyway as you request: 1132760162 M * dlippolt debconf depends on debconf-i18n | debconf-english; however: 1132760165 M * Larsioa Bertl: which day? 1132760167 M * dlippolt Package debconf-i18n is not installed. 1132760167 M * harry google.com/search?q=wth vserver 1132760169 M * dlippolt Package debconf-english is not installed. 1132760169 M * Bertl dlippolt: you do not run vserver-build 1132760171 M * dlippolt Setting up debconf (1.4.30.13) ... 1132760173 M * dlippolt I: Unpacking required packages... 1132760175 M * dlippolt chroot: cannot run command `--unpack': No such file or directory 1132760177 M * dlippolt W: dpkg 1132760179 M * dlippolt chroot: cannot run command `--unpack': No such file or directory 1132760181 M * dlippolt W: dpkg 1132760183 M * dlippolt chroot: cannot run command `--unpack': No such file or directory 1132760185 M * dlippolt W: dpkg 1132760187 M * dlippolt chroot: cannot run command `--unpack': No such file or directory 1132760189 M * dlippolt W: dpkg 1132760191 M * dlippolt chroot: cannot run command `--unpack': No such file or directory 1132760191 M * harry vserver build blabla 1132760193 M * Bertl dlippolt: you do not run vserver-build directly! 1132760194 M * dlippolt W: dpkg 1132760197 M * dlippolt umount: /vservers/v233/dev/pts: not found 1132760199 M * dlippolt umount: /vservers/v233/dev/shm: not found 1132760201 M * dlippolt umount: /vservers/v233/proc/bus/usb: not mounted 1132760201 M * harry hehe 1132760203 M * dlippolt k 1132760205 M * harry kick the baby! :) 1132760205 M * Bertl dlippolt: please stop spamming! 1132760206 M * Larsioa comeon stop spam 1132760207 M * Larsioa please. 1132760223 M * harry that's what pastebin is for! 1132760226 M * Bertl dlippolt: stuff longer than 3 lines goes to pastebin.com 1132760245 M * dlippolt translation: post url's plz ? 1132760274 M * harry linux-vserver.org 1132760275 M * harry ;0 1132760277 M * harry ;) 1132760277 M * Larsioa Bertl: can you be so kind and tell me where to find the movie. 1132760283 M * arapaho Bertl< restriction on /tmp ? => yes we use /tmp for tomcat/cocoon temp files on apps servers 1132760287 A * harry will look for it again 1132760289 M * Bertl Larsioa: http://linux-vserver.org/Documentation 1132760304 M * harry Larsioa: i'm on a 100mbit limitless connection 1132760308 M * harry if you want i'll dcc it 1132760311 M * Larsioa thanks. 1132760312 M * Bertl arapaho: what kind of restrictions? 1132760314 M * harry (not with this client) 1132760327 M * Larsioa harry: im downloading it now. 1132760328 M * matti Eh. 1132760333 P * matti 8-X 1132760335 M * harry ah, mkay then 1132760380 M * Breaker_uk ber 1132760388 A * Breaker_uk Bertl can dcc it to me as well 1132760388 M * Breaker_uk ? 1132760395 M * dlippolt ok,so i ranvserverdirectly, same error 1132760406 M * dlippolt vserver v233 build -m debootstrap --rootdir /vservers -- -d sarge 1132760414 M * arapaho Bertl< ha ho excuse me. for linking preventions, outside of /tmp for example 1132760618 M * Bertl dlippolt: which tools? 1132760631 M * Bertl dlippolt: maybe upload the output of testme.sh? 1132760662 M * dlippolt util-vserver-0.30.209.tar 1132760665 M * Bertl Breaker_uk: the video? no plz download it directly: http://rehash.whatthehack.org/wth/rawtapes/wth_linux_vserver/wth_linux_vserver_140.mp4 1132760665 M * arapaho Bertl< is it such a dumb way to use grsecurity and vserver together ? so many questions about grsec use make me think that you don't like it :) 1132760703 M * Bertl arapaho: on the contrary, I'm trying to get a cooperation with the rsbac folks (and it looks good as they are trying too :) 1132760732 M * arapaho good news 1132760737 M * Bertl dlippolt: okay, give me a minute to try that out ... 1132760760 M * Larsioa Arent there a site arround where to find all the wth movies is? 1132760764 M * dlippolt https://www.moverotech.com/usersites/dlippolt/vserver/output-1.txt 1132760792 M * dlippolt has output of testme.sh 1132760843 M * dlippolt and, if i run the vserver build command again without deleting dirs, get the following error: 1132760844 M * dlippolt app2:/usr/local/lib/util-vserver# vserver v233 build -m debootstrap --rootdir /vservers -- -d sarge 1132760844 M * dlippolt /usr/local/lib/util-vserver/vserver-build: line 206: -n: command not found 1132760855 M * dlippolt in case thats interesting 1132760886 M * Bertl you sure that you did not mess up the installation with a previous version of util-vserver? 1132760932 J * Johnnie ~john@acs-24-154-53-217.zoominternet.net 1132760991 M * dlippolt just purged, will try running again. though only remnants were in /etc/vservers 1132760999 M * Bertl dlippolt: looks like you installed the 0.30.209 tools in /usr/local, did you execute the suggested installation command? 1132761017 M * Bertl make distro-install (or something like that) 1132761069 M * dlippolt no, nothing like that 1132761071 M * Bertl welcome Johnnie! 1132761075 M * dlippolt followed: http://linux-vserver.org/Step-by-Step+Guide+2.6 1132761145 M * dlippolt grepping util-vserver tarball for "distro" doesn't come up with anything 1132761148 M * dlippolt and its not in the Makefile 1132761215 M * dlippolt are you suggesting i reconfigure the utils setting PREFIX=/ ? 1132761257 M * Bertl as I said, give me a minute, I'll do the entire install process shortly, and will point out things to check ... 1132761272 M * harry Bertl: i have a lot of symlinks to the same dirs in /etc/vservers/.defaults/run.rev 1132761278 M * Bertl dlippolt: please upload the output of 'vserver-info - sysinfo' too 1132761279 M * Johnnie Good morning. 1132761281 M * harry is that normal, or is that... well... erronous 1132761292 M * Bertl harry: that's pretty normal 1132761294 M * harry and: how do i fix that (in a clean way) 1132761321 M * harry (/me reading the entire flowerpage, without the flowers) ;) 1132761329 M * dlippolt app2:/usr/src/util-vserver-0.30.209# vserver-info - sysinfo 1132761329 M * dlippolt Unknown tag; use '-l' to get list of valid tags 1132761378 M * Bertl try SYSINFO (my bad) 1132761411 J * arok ~thorsten@p54959609.dip0.t-ipconnect.de 1132761420 M * dlippolt utils Makefile has a "install-distribution" target,is that what u were referring to? 1132761466 M * Bertl yep, that's it ... 1132761467 M * dlippolt output prepended to the output-1.txt file mentioned earlier 1132761468 M * Bertl welcome arapaho! 1132761491 M * Bertl dlippolt: Use dietlibc: no (you have been warned) 1132761511 M * Bertl dlippolt: please get and install dietlibc 1132761532 M * harry Bertl: is it a good idea to have a .defaults/apps/init/tty file symlinked to /dev/console or so ? 1132761543 M * harry of is it better to leave it absent 1132761552 M * harry or what should i do with all those options? 1132761564 M * Bertl choose those you understand and need :) 1132761708 M * Bertl dlippolt: doing './configure --prefix=/' then 'make && make install' gives a note 1132761722 M * Bertl NOTE: a plain "make install" installs only the files under $(prefix) 1132761722 M * Bertl * which might be insufficient. To complete the installation, 1132761723 M * Bertl * "make install-distribution" should be executed. 1132762144 M * dlippolt if i do that 1132762154 M * dlippolt should i then change /proc/ .. /vhelper 1132762157 M * dlippolt *vshelper 1132762182 M * dlippolt which is currently: 1132762183 M * dlippolt app2:/usr/src/util-vserver-0.30.209# cat /proc/sys/kernel/vshelper 1132762183 M * dlippolt /usr/local/lib/util-vserver/vshelper 1132762199 M * Bertl should point to the right one, no? 1132762234 M * harry i don't get what's meant with that context number... :( 1132762239 M * dlippolt well, its just a question of whether to point it to the symlink (/sbin/vshelper) or to where the symlink pionts (/usr/local/lib/util-vserver/vshelper) 1132762273 M * harry should it be different everytime, what's the advantage of setting it yourself? 1132762336 M * Bertl harry: the context number is the _only_ unique identifier for your guest 1132762411 M * Bertl you should specify it, so that the guest will always use the same xid 1132762416 M * Bertl dlippolt: install with your command is now running ... 1132762437 M * dlippolt Bertl: recompile tools, enabled dietlibc, same error 1132762454 Q * arok Quit: blubba 1132762577 M * dlippolt https://www.moverotech.com/usersites/dlippolt/vserver/output-2.txt 1132762750 J * stefani ~stefani@superquan.apl.washington.edu 1132762851 M * dlippolt fyi, this error is what prompted me to run the vserver-build script directly in an attept to drill down into the build process 1132762860 M * Bertl dlippolt: http://vserver.13thfloor.at/Stuff/VARIOUS/i386_guest.txt 1132762872 M * derjohn Bertl, if an init script fails with exit 1, ,will the vserver foo start process be stopped completely then? 1132762902 M * Bertl derjohn: very likely, unless you use a real init 1132762903 M * derjohn Bertl, EHLO by the way ;) 1132762914 M * Bertl welcome stefani! 1132762929 M * stefani hello 1132762977 M * Bertl dlippolt: that is on an x86_64 testing/unstable machine 1132762981 M * derjohn Bertl, my assumtion on the ML (Manfred) is, that he das a dirty init scipt that produces "vcontext: chroot(): Permission denied" at startup and stop the server startup process? 1132763024 M * Larsioa Bertl: great speech at the wth. 1132763073 M * derjohn Bertl, WTH was a very cool PR for linux-vserver - without it I wouldn't have joined (dunno if this is a goog sign though ;)) 1132763197 M * Bertl Larsioa: tx! 1132763217 M * Bertl derjohn: well, didn't think that WTH was so popular ... but it was definitely fun! 1132763223 M * dlippolt Bertl: i tried your command also, didn't work. fyi i'm on an opteron 1132763230 M * Larsioa Bertl: btw nice suit :) 1132763260 M * Bertl Larsioa: you might not believe it, but it's one of my every day suits ... 1132763273 M * Larsioa Bertl: coool :P 1132763278 M * michal_ have some pics ? ;p 1132763280 M * derjohn Larsioa, he even introduced cpuhog, which would be an nice option to run as cgi script on a webserver at a provider you dont like 1132763297 M * derjohn Bertl, you are sleeping all day I thought ... 1132763298 M * Bertl dlippolt: I assume your system is somehow messed up .. might be cause by left overs from a previous install or badly configured/not updated debootstrap 1132763307 M * Larsioa derjohn: :) 1132763329 M * dlippolt Bertl: app2:/usr/local/sbin# dpkg --list | grep deboot 1132763329 M * dlippolt ii debootstrap 0.2.45-0.2 Bootstrap a basic Debian system 1132763329 M * Bertl derjohn: mostly ... I'm nocturnal :) 1132763348 M * Bertl dlippolt: dpkg --list | grep deboot 1132763349 M * Bertl ii debootstrap 0.3.3 Bootstrap a basic Debian system 1132763403 M * Bertl dlippolt: I'd suggest to do the following: 1132763405 M * dlippolt u pull that out of testing? 1132763422 M * Bertl - search the system for evidence of vserver leftovers 1132763426 M * ag- Bertl: being nocturnal, do you appear to work at a backup storage facility? :) 1132763447 M * Bertl ag-: nope, but would be an option :) 1132763461 M * Bertl dlippolt: especially check for debootstrap configs and similar in /etc 1132763471 M * Bertl dlippolt: make sure to remove all of them ... 1132763511 M * Bertl dlippolt: also, it seems your dependancies are quite broken (see checks while installing), so maybe change the repository too? 1132763730 Q * sladen Read error: Connection reset by peer 1132763739 J * sladen paul@starsky.19inch.net 1132763967 M * sladen why did I unjoin? 1132763987 A * sladen waits for 'wb sladen...' from Bertl :) 1132763993 M * dlippolt Bertl: didn't update any dep's, only upgraded to debootstrap from testing, now vserver builds without issue 1132764081 M * Bertl dlippolt: excellent! 1132764102 M * Bertl sladen: I gave up on that, as you do not greet back :P 1132764130 M * Larsioa Bertl: Well it be possibel someday to do CPU limit / memory limit somehow? 1132764135 M * Larsioa Will* 1132764149 M * Bertl vs2.x includes cpu and memory limits 1132764166 M * Bertl (and a bunch of other limits) 1132764187 M * Larsioa vserver --version 1132764188 M * Larsioa vserver 0.30.208 -- manages the state of vservers 1132764189 M * Larsioa hm? 1132764292 Q * shedi Quit: Leaving 1132764311 M * ag- Larsioa: kernel-space code, not user-space code 1132764331 M * sladen Bertl: I'm pathetic :) 1132764357 M * Larsioa ag-: you lost me, is it possibel by now to do cpu limit / mem limits? 1132764394 M * derjohn Bertl, Do you claim you greetings are not auto-created by sth bot-ish ? 1132764430 M * derjohn Larsioa, yes 1132764439 M * derjohn Larsioa, check "the great flower page2 1132764441 M * derjohn " 1132764462 M * Larsioa Hmm then i missed something in the FAQ 1132764494 M * derjohn Larsioa, create a file called rlimits (on vs2 , kernel 2.6 ) in /etc/vservers/foo/rlimits 1132764516 M * derjohn Larsioa, them put the options in , which you will find between the leafs.... 1132764532 M * Larsioa Is there some pages where i can see the prefix limits? 1132764646 M * Larsioa /etc/vservers/vserver-name/rlimits 1132764646 M * Larsioa A directory with resource limits. Possible resources are cpu, fsize, data, stack, core, rss, nproc, nofile, memlock, as and locks. This configuration will be honored for kernel 2.6 only. 1132764650 M * derjohn Larsioa, prefix limits? only /24 ? 1132764657 M * Larsioa http://www.nongnu.org/util-vserver/doc/conf/configuration.html - Damnit im burning my eays. 1132764678 M * derjohn Larsioa, burn Larios, burn ;) 1132764694 M * Larsioa derjohn: i mean in the file rlimits how should the config prefixs be? (CPU=500mhz) heh :) 1132764714 M * derjohn Larsioa, nonononoonon 1132764769 M * Larsioa ah rlimits is a directory 1132764800 M * Bertl Larsioa: you really don't want to use rlimits to limit the cpu :) 1132764803 M * derjohn Larsioa, root@herbert:~# cat /etc/vservers/fraud/schedule 1132764803 M * derjohn 14 1132764803 M * derjohn 32 1132764803 M * derjohn 500 1132764803 M * derjohn 200 1132764803 Q * Breaker_uk Quit: 1132764803 M * derjohn 1000 1132764805 M * derjohn dummy 1132764815 Q * arapaho Quit: graoumph 1132764821 M * Larsioa Bertl: ulimits ? 1132764831 M * derjohn This makes a cpu limit about 21% of one CPU 1132764860 M * Larsioa soo it aint possibel to define limits in MHZ but only per percent? 1132764894 M * derjohn Larsioa, is described in the wiki 1132764898 M * derjohn that the lines mean 1132764915 M * Bertl Larsioa: the currently available CPU do not support hardware time sliced multi processing :) 1132764918 M * derjohn Larsioa, has to do with jiffies (not kiffies ... ) 1132764956 M * ag- Bertl: :D 1132764957 M * derjohn Bertl, CPU-stickyness (or whatever this was called) ? 1132764957 M * Bertl Larsioa: if you get intel/amd to improve the virtualization technologies to support MHz for each process, I can add that :) 1132764960 A * Hollow loves kiffies 1132764995 M * Bertl Larsioa: until then, we can on give away fractions of the entire CPU :) 1132765002 M * derjohn Bertl, what will the new virtualisation stuff of AMD/Intel bring? 1132765015 M * Bertl derjohn: better support for Xen and QEMU 1132765018 M * Larsioa Bertl: okay how about memory? 1132765025 M * derjohn Bertl, cool, I'm leaving now 1132765037 M * derjohn Bertl, *just kidding* 1132765043 M * Bertl Larsioa: you can currently limit RSS and AS/VM 1132765058 M * Bertl Larsioa: and here the rlimit is the right place to look 1132765073 M * derjohn Larsioa, RTFW ! 1132765089 M * derjohn Larsioa, there is even a search function in it ;) 1132765108 M * Larsioa Sorry 1132765148 M * derjohn Larsioa, sry ... just wanted to point to linux-vserver.org .... 1132765169 M * Larsioa :) 1132765172 M * derjohn Larsioa, not that I dont like to chat, but you will be mnore efficient there, there are config examples 1132765181 M * Larsioa Now just the last question. RSS Resident set size - What does resident set size actually mean 1132765209 M * derjohn Bertl, is it possible to stick a versver to a certain CPU ? 1132765223 M * Larsioa with nice 1132765232 M * Larsioa i think. 1132765300 M * ag- Larsioa: man nice :) 1132765309 M * Larsioa not for me. 1132765339 M * Larsioa Hmm no it wount work with nice 1132765339 M * Larsioa hmr. 1132765389 M * derjohn Larsioa, *lol* 1132765396 M * Larsioa ye ye just lol at me :D 1132765406 M * derjohn Larsioa, cool pun :) 1132765520 M * ag- derjohn: the first question, IMHO, is how would you do that without vserver... 1132765564 M * Larsioa I think i need to read up about the whole limit thing. 1132765574 M * derjohn Larsioa, RES = CODE + DATA ; SHM = SHARED MEM 1132765602 M * Bertl Larsioa: http://linux-vserver.org/Documentation 1132765640 M * derjohn ag-, sched_set_affinity() and sched_get_affinity() 1132765655 M * baggins how to prevent secure-mount from messing with mtab in vserver? 1132765684 M * Bertl baggins: hmm, use '-n' option to mount? 1132765715 M * baggins ah, yes, but I have no control over util-vserver scripts in this matter 1132765725 M * Bertl ah, you mean the startup? 1132765745 M * Bertl well, you can put your 'own' mtab file into the config, the tools will copy it to the guest 1132765748 M * baggins yes, I'm configuring quota and now I have the same fs twice in mtab 1132765759 M * Hollow Bertl: but still modify it afterwards.. 1132765773 M * baggins first from default mtab and second from mount 1132765800 M * Bertl baggins: well, what about _removing_ it from the default mtab then? 1132765811 M * baggins Bertl: no quota then ;) 1132765814 M * Hollow well, you should only put those entries in mtab which secure-mount does not mount.. imo 1132765825 M * Hollow then your fstab entry is wrong 1132765833 M * Bertl yup 1132765866 M * baggins so I should just use normal mount from the host, and not vserver fstab? 1132765889 M * baggins I considered it last resort ;) 1132765894 M * Hollow you should use fstab with correct entries for each guest 1132765902 M * Larsioa Bertl: hmm were the things about limiting in the wiki? 1132765903 M * Bertl baggins: show us your fstabs and mtabs please :) 1132765910 M * derjohn ag-, I also checked http://linux-vserver.org/Scheduler+Parameters -> I cannot find CPU affinity . But not so important for me by now. 1132765923 M * baggins apps/init/mtab: 1132765924 M * baggins /dev/hdv1 /home xfs rw,usrquota 0 0 1132765929 M * derjohn ag-, works anyway - with limits it shares quite fine. 1132765941 M * Bertl Larsioa: see the url above ... 1132765942 M * baggins fstab: 1132765946 M * baggins /home /home none bind,usrquota 0 0 1132765968 M * Hollow .oO( pastebin ) 1132766002 M * baggins no pastebin 1132766007 M * baggins Query failure: Got error 134 from table handler 1132766012 M * Hollow heh 1132766488 M * harry Bertl: ? 1132766494 M * harry or anyone any ideas on this: 1132766496 M * harry vserver1:/vservers# vserver tobiaas start 1132766497 M * harry /bin/sh: /lib/libc.so.6: version `GLIBC_2.3' not found (required by /bin/sh) 1132766497 M * harry An error occured while executing the vserver startup sequence; when 1132766497 M * harry there are no other messages, it is very likely that the init-script 1132766499 M * harry (/etc/init.d/rc 3) failed. 1132766525 M * harry it's a 2.4 installation that i want to run on a 2.6 kernel vserver 1132766538 M * harry is there a way to fix this? where do i look for a fix? 1132766613 M * Larsioa /bin/sh: /lib/libc.so.6: version `GLIBC_2.3' not found (required by /bin/sh) 1132766617 M * Larsioa i think u should update your glibc 1132766675 M * harry where? 1132766694 M * harry in host or guest? 1132766702 M * harry and, why does it work with redhat AS 3 ? 1132766705 M * Larsioa in host. 1132766711 M * harry which also RAN on 2.4 kernel 1132766806 M * harry ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries and Timezone 1132766806 M * harry ii libc6-dev 2.3.2.ds1-22 GNU C Library: Development Libraries and Hea 1132766858 M * harry i do have 2.3... 1132766944 M * harry stracing doesn't help me out either :s 1132766997 M * Bertl harry: you're sure you copied the guest properly? 1132767018 M * harry i think so 1132767029 M * harry let me see 1132767097 M * Bertl harry: try with 'chroot /vservers/' 1132767112 M * harry nope, nogo 1132767115 M * harry same problem 1132767124 M * harry but... we're getting closer, it seems ;0 1132767126 M * harry ;) 1132767142 M * Bertl harry: debian? 1132767143 M * harry btw. it's a copy of a standalone system 1132767144 M * harry yes 1132767148 M * Larsioa try newvserver 1132767167 M * Bertl harry: make sure that you have no 000 modes on the vserver guest! 1132767177 M * Bertl Larsioa: that's a pretty bad advice :) 1132767183 M * Hollow haha 1132767184 M * harry 000 modes? 1132767186 M * derjohn Bertl, keep clam ;) 1132767188 M * Hollow debian is a pretty bad advice 1132767198 M * derjohn Hollow, hey hey .... 1132767201 M * Larsioa Bertl: ill just go away :) 1132767205 M * Hollow ok, i keep silent ;) 1132767217 M * harry vserver1:/vservers/tobiaas# ls -l lib/libc* 1132767218 M * harry -rwxr-xr-x 1 root root 1153784 2005-01-07 13:05 lib/libc-2.2.5.so 1132767220 M * Larsioa \ go silent stealth mode. 1132767222 M * derjohn Hollow, I am not DD though ... 1132767223 M * harry lrwxrwxrwx 1 root root 13 2005-11-23 18:14 lib/libc.so.6 -> libc-2.2.5.so 1132767230 M * derjohn Larsioa, foo ! 1132767232 M * harry (stripped the useless stuff :)) 1132767243 M * Larsioa derjohn, bar ! 1132767252 M * derjohn Larsioa, no silence. goog. 1132767256 M * derjohn Larsioa, good 1132767265 M * Larsioa Wuuuhu five point for me? 1132767292 M * derjohn Larsioa, Minus 5 if you are using Debain. Those will go to a hollow account 1132767311 M * harry heeeeeeeey... he's right! 1132767315 M * Larsioa derjohn: im not only using Debian... FreeBSD and OpenBSD too. 1132767322 M * derjohn harry, installed gentoo this fast? 1132767324 M * harry vserver1:/vservers/tobiaas# grep GLIBC_2.2 lib/libc.so.6 1132767324 M * harry Binary file lib/libc.so.6 matches 1132767327 M * harry but 2.3 doesn't 1132767329 M * derjohn ah 1132767349 M * Larsioa derjohn: OpenBSD powah. 1132767370 M * derjohn Larsioa, how about writing a little in the wiki ? you would help all, e.g. extent the scheduler and limit pages with examplaes (which I am missing too) 1132767373 M * Bertl Larsioa, derjohn: check out #offtopic 1132767374 M * harry tssss... gentoo... it's bsd for kinds 1132767383 M * harry Bertl: true! :) 1132767394 M * harry damn... how is this possible? 1132767399 M * Larsioa Shit we just got owned derjohn 1132767404 M * Larsioa > private. 1132767498 M * michal_ rotfl 1132767548 M * derjohn Bertl, yes. just animated Lariosa to hack sth in the wiki. Lariosa, the wiki pwnes you soon! transfer your knowledge ! 1132767977 M * baggins Bertl: as pastebin is not working my fstab and mtab are at http://sith.mimuw.edu.pl/~baggins/vserver/ 1132768097 M * Bertl baggins: ahem? 1132768106 M * Bertl you cannot do tragxid bind mounts? 1132768126 M * baggins eh? 1132768131 M * Bertl btw, what is the purpose of that anyway? 1132768186 J * Cru ~mindwarp@bastardrouterfromhell.e.de.wahlich.com 1132768186 M * baggins it will be mounted in at least two vservers, and I don't want them to see each other files 1132768189 M * Cru moin 1132768205 M * Bertl baggins: that's fine, but won't work :) 1132768212 M * Bertl welcome Cru! 1132768249 M * Bertl baggins: the xid tagging a) does not give you separate file name spaces and b) you have to mount /home with tagxid 1132768281 M * Bertl baggins: but if context A creates file F, context B will not be able to create file F too 1132768320 M * baggins Bertl: a) I expected, b) is no problem 1132768345 M * baggins Bertl: but if context A create file F with mode 666 then context B won't have access to it? 1132768359 M * Bertl yes, it will get permission denied 1132768371 M * baggins that's enough for my needs :) 1132768400 M * Bertl why do you want to share /tmp anyway? 1132768501 M * baggins so students will have additional space, with no quota (except for abusers ;>) 1132768528 J * lilo ~lilo@lilo.usercloak.oftc.net 1132768554 M * baggins it's a bit complicated 1132768555 M * Bertl baggins: aha, why won't they use /home for that? 1132768566 M * baggins Bertl: quota? 1132768593 M * Bertl ahem, you bind mount /home/tmp to /tmp, so it _is_ the same filesystem and quota 1132768614 M * baggins no, it's another fs mounted at /home/tmp 1132768644 M * Bertl you're sure you are not doing a bunch of bind mounts for no apparent reason at all? 1132768724 M * baggins the only bind mounts I'm doing are for vservers 1132768770 M * baggins and contrary to what it looks like, I know what I'm doing ;) 1132768875 M * baggins Bertl: can we get back to the question "how to avoid duplicate entries in vserver guest"? 1132768883 M * Megabart hello chan! 1132768960 M * Bertl baggins: sure ... IIRC, the initial mtab is copied over, then the mounts happen 1132768987 M * Bertl baggins: so leaving the initial mtab empty will not give any mtab entry twice without good reason, no? 1132769036 M * baggins there won't be /dev/hdv1 and /dev/hdv2 entries, but then the quota will not work 1132769089 M * baggins mtab is there only for quota to work 1132769188 M * Bertl well, I guess you have to improvise on that (or file a feature request to savannah) 1132769472 M * Larsioa wow TDc maybe gonna be sold for 11 billion USD 1132769481 M * Larsioa thats damn much 1132769920 Q * sladen Ping timeout: 480 seconds 1132770134 J * sladen paul@starsky.19inch.net 1132771868 Q * infowolfe Quit: infowolfe 1132771881 J * infowolfe ~infowolfe@209-112-215-110-cdsl-rb1.nwc.acsalaska.net 1132772009 Q * infowolfe Quit: 1132772022 J * infowolfe ~infowolfe@209-112-215-110-cdsl-rb1.nwc.acsalaska.net 1132772031 M * Bertl wb infowolfe! 1132772038 M * infowolfe thanks again Bertl 1132772042 M * infowolfe doing a round of xchat reloads... 1132772047 M * infowolfe 2.6.0 is quite nice ;-) 1132772102 A * daniel_hozac is still using 2.0.7 :) 1132772115 M * Larsioa is anybody in here using bind via. mysql database? 1132772212 M * infowolfe Larsioa, http://cr.yp.to/djbdns.html (iirc) much better than bind, and http://www.vegadns.org/ (web control panel) 1132772233 J * prae ~benjamin@sherpadown.net 1132772235 M * infowolfe daniel_hozac, afaik, it's using the pango lib for display... 1132772260 M * Cru bbl 1132772265 Q * Cru Quit: use Unices; $live->free() || die; 1132772274 M * daniel_hozac infowolfe: so what is 2.6.0 using? 1132772301 M * infowolfe that's what i said... pango rendering lib 1132772302 M * infowolfe ;-) 1132772315 M * infowolfe iirc, 2.0.7 would be using gtk+ 1132772327 M * daniel_hozac rpm -qR xchat | grep pango 1132772327 M * daniel_hozac libpango-1.0.so.0 1132772327 M * daniel_hozac libpangox-1.0.so.0 1132772327 M * daniel_hozac libpangoxft-1.0.so.0 1132772332 M * daniel_hozac ;) 1132772399 M * infowolfe :-o 1132772402 M * Bertl infowolfe, daniel_hozac: please tell me what does an irc client need a rendering lib for? are we imitating M$ here? 1132772404 M * infowolfe well, hell :-p 1132772413 M * infowolfe Bertl, X11 ;-) 1132772445 M * infowolfe aren't gtk, qt, and a few others also rendering libraries? 1132772465 M * Bertl ah, i.c. so let's see if my 'ls' has motif support ... hmm, no, how old fashioned! :) 1132772487 M * infowolfe lol 1132772511 M * infowolfe Bertl, technically, ncurses is a rendering lib also ;-) 1132772589 M * Bertl yes, but you said it like if that would 'improve' your xchat ... 1132772621 M * Bertl IMHO even intrinsic is more than sufficient to render text, no? 1132772638 M * Bertl are you able to chat on more channels with pango? 1132772809 M * ag- Bertl: :D 1132772880 M * Bertl infowolfe: ah, now I got it, you will be faster with your responses :) 1132772888 M * infowolfe Bertl, don't make me ashamed of my semi(-faked)-transparent irc client ;-) 1132772892 M * infowolfe o.O 1132772893 M * infowolfe hardly 1132772899 M * infowolfe i'll ignore more people with pango 1132772902 M * infowolfe *grin* 1132772960 J * Viper0482 ~Viper0482@p54976888.dip.t-dialin.net 1132773191 M * Bertl welcome Viper0482! 1132774121 M * Megabart i've the problem with the vserver machine 1132774149 M * Megabart the name of vserver is backup1 1132774196 M * Megabart i start the vserver with "vserver backup1 start" 1132774213 M * Megabart i enter in backup1 1132774233 M * Megabart but, when i run ifconfig 1132774255 M * Megabart the result is backup1:/# ifconfig 1132774255 M * Megabart eth0 Link encap:Ethernet HWaddr 00:05:5D:45:0D:68 1132774255 M * Megabart UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 1132774306 M * Megabart why when backup1 starting, vserver don't assign ip? 1132774362 M * Megabart in a backup1 conf file there's the ip! 1132774487 M * Bertl Megabart: a) what tools do you use, b) what does your config contain? (please upload the info somewhere) 1132774518 Q * ntrs_ Remote host closed the connection 1132774527 M * Megabart i use the debian vserver script to create vserver 1132774538 J * ntrs_ ~ntrs@68-188-50-87.dhcp.stls.mo.charter.com 1132774568 M * Megabart the command is "newvserver --ip ipmachine --domain domainname --hostname nameofmachine" 1132774632 M * Megabart the config file fot network interface of machine is in /etc/vservers/backup1/interfaces/0/ip 1132774707 M * Bertl Megabart: well, you have to complain to the debian folks then, there is no newvserver in util-vserver 1132774735 M * Bertl Megabart: what does your /etc/vservers/backup1/interfaces/0 contain? 1132774769 M * Megabart dir /etc/vservers/backup1/interfaces/0 contains the file "dev" and "ip" 1132774791 M * Bertl that's not much, actually ... 1132774805 M * Bertl do you get an error message on startup? 1132774810 M * Megabart no 1132774828 M * Megabart This is the message on startup 1132774841 J * shedi ~siggi@inferno.lhi.is 1132774847 M * Megabart Starting system log daemon: syslogd. 1132774847 M * Megabart Starting internet superserver: inetd. 1132774847 M * Megabart Starting periodic command scheduler: cron. 1132774935 M * Bertl get/install the mainline util-vserver 0.30.209 and try with 'vserver backup1 build -m debootstrap --hostname . --interface / --context 42 -- -d sarge 1132774986 M * Megabart Bertl, i have change the name of device from eth0 to etho.backup1 1132775005 M * Bertl that's not a good idea :) 1132775006 M * Megabart and, when i startup backup1, i have this error 1132775015 M * Megabart VLAN device-name used, but vlan subsystem not enabled. 1132775015 M * Megabart Try to execute 'modprobe 8021q' before starting the vservers 1132775108 M * Megabart I don't have include 8021q in kernel 1132775120 M * Bertl do you really want to use vlans? 1132775140 M * Megabart no, i want to use vserver! 1132775150 M * Bertl well, then better do what I suggested :) 1132775177 M * Megabart i ok 1132775178 Q * Viper0482 Read error: Connection reset by peer 1132775182 M * Megabart i try it 1132775296 M * Megabart what's prefix? 1132775311 M * Bertl your netmask prefix, e.g. 24 or 16 1132775322 M * Megabart ahhhhhh :D 1132775323 M * Megabart yeah 1132775337 M * Bertl if you want to get an alias for the interface, 1132775355 M * Bertl also add = before the part 1132775372 M * Bertl for example: --interface karli=192.168.0.1/24 1132775405 M * Megabart this is the first error 1132775407 M * Bertl or to be precise: 1132775407 M * Megabart No device specified for interface '0'; do not forget to set the 'nodev' option 1132775415 M * Bertl --interface karli=eth0:192.168.0.1/24 1132775463 M * Bertl yeah, I forgot the device in my line (you can also use --netdev to specify it) 1132775500 M * Bertl but it's all documented here anyway: http://linux-vserver.org/alpha+util-vserver 1132775510 M * Megabart device is the real device of machine? 1132775516 M * Megabart ok 1132775526 M * Bertl yep, like the eth0 in my example 1132775540 M * Bertl the alias will then be called eth0:karli 1132775739 M * Megabart good.....very good! 1132775760 M * Megabart but, what is --context 42 parameter? 1132775787 M * Bertl each guest needs an unique identifier, the context number 1132775806 M * Bertl in this case I chose 42 for you ... you should choose one for each guest 1132775810 M * Megabart ahhhhhhhh 1132775814 M * Megabart yes yes 1132775826 M * Megabart now, i remember 1132775857 M * Megabart if i don't specific the context parameter, vserver generate the context number! 1132775876 M * Bertl yes, but those are called dynamic context ids, and are deprecated for a long time now 1132775884 M * Megabart :) 1132775983 M * Megabart well, eat time! 1132776002 M * Megabart return it later :D 1132776041 M * Bertl make it so! 1132776921 Q * shedi kinetic.oftc.net arion.oftc.net 1132776921 Q * Johnnie kinetic.oftc.net arion.oftc.net 1132776921 Q * Larsioa kinetic.oftc.net arion.oftc.net 1132776921 Q * Pazzo kinetic.oftc.net arion.oftc.net 1132776921 Q * Greek0 kinetic.oftc.net arion.oftc.net 1132776921 Q * dlippolt kinetic.oftc.net arion.oftc.net 1132776921 Q * Hollow kinetic.oftc.net arion.oftc.net 1132776921 Q * monrad kinetic.oftc.net arion.oftc.net 1132776921 Q * TheSeer kinetic.oftc.net arion.oftc.net 1132776921 Q * harry kinetic.oftc.net arion.oftc.net 1132776921 Q * DaCa kinetic.oftc.net arion.oftc.net 1132776921 Q * sizo kinetic.oftc.net arion.oftc.net 1132776921 Q * FaUl kinetic.oftc.net arion.oftc.net 1132776921 Q * mef kinetic.oftc.net arion.oftc.net 1132776921 Q * entroposcope kinetic.oftc.net arion.oftc.net 1132776921 Q * FireEgl kinetic.oftc.net arion.oftc.net 1132776921 Q * aba kinetic.oftc.net arion.oftc.net 1132776921 Q * PerlOffice kinetic.oftc.net arion.oftc.net 1132776921 Q * prae kinetic.oftc.net arion.oftc.net 1132776921 Q * infowolfe kinetic.oftc.net arion.oftc.net 1132776921 Q * dos000 kinetic.oftc.net arion.oftc.net 1132776921 Q * neofutur kinetic.oftc.net arion.oftc.net 1132776921 Q * bragon kinetic.oftc.net arion.oftc.net 1132776921 Q * alexx kinetic.oftc.net arion.oftc.net 1132776921 Q * michal_ kinetic.oftc.net arion.oftc.net 1132776921 Q * Megabart kinetic.oftc.net arion.oftc.net 1132776921 Q * mountie kinetic.oftc.net arion.oftc.net 1132776921 Q * Hunger kinetic.oftc.net arion.oftc.net 1132776921 Q * derjohn kinetic.oftc.net arion.oftc.net 1132776921 Q * virtuoso kinetic.oftc.net arion.oftc.net 1132776921 Q * pusling kinetic.oftc.net arion.oftc.net 1132776921 Q * daniel_hozac kinetic.oftc.net arion.oftc.net 1132776921 Q * nokoya kinetic.oftc.net arion.oftc.net 1132776921 Q * SNy kinetic.oftc.net arion.oftc.net 1132776921 Q * jkl kinetic.oftc.net arion.oftc.net 1132776921 Q * dhansen kinetic.oftc.net arion.oftc.net 1132776921 Q * lonewolff kinetic.oftc.net arion.oftc.net 1132776921 Q * nox kinetic.oftc.net arion.oftc.net 1132776921 Q * mugwump kinetic.oftc.net arion.oftc.net 1132776921 Q * MostlyHarmless kinetic.oftc.net arion.oftc.net 1132776921 Q * AndrewLee kinetic.oftc.net arion.oftc.net 1132776921 Q * ntrs_ kinetic.oftc.net arion.oftc.net 1132776921 Q * sladen kinetic.oftc.net arion.oftc.net 1132776921 Q * lilo kinetic.oftc.net arion.oftc.net 1132776921 Q * meebey kinetic.oftc.net arion.oftc.net 1132776921 Q * Bertl kinetic.oftc.net arion.oftc.net 1132776921 Q * ag- kinetic.oftc.net arion.oftc.net 1132776921 Q * anonymousc kinetic.oftc.net arion.oftc.net 1132776921 Q * marl_mobile kinetic.oftc.net arion.oftc.net 1132776921 Q * [MUPPETS]Gonzo kinetic.oftc.net arion.oftc.net 1132776921 Q * SiD3WiNDR kinetic.oftc.net arion.oftc.net 1132776921 Q * Vudumen kinetic.oftc.net arion.oftc.net 1132776921 Q * flock kinetic.oftc.net arion.oftc.net 1132776921 Q * ComplexHo kinetic.oftc.net arion.oftc.net 1132776921 Q * cryo kinetic.oftc.net arion.oftc.net 1132776921 Q * Marchildon kinetic.oftc.net arion.oftc.net 1132776921 Q * tchan kinetic.oftc.net arion.oftc.net 1132776921 Q * Medivh kinetic.oftc.net arion.oftc.net 1132776921 Q * BWare kinetic.oftc.net arion.oftc.net 1132776921 Q * micah kinetic.oftc.net arion.oftc.net 1132776986 J * PerlOffice ~stuart@220-253-85-202.QLD.netspace.net.au 1132776986 J * DuckMaster ~Duck@tox.dyndns.org 1132776986 J * shedi ~siggi@inferno.lhi.is 1132776986 J * ntrs_ ~ntrs@68-188-50-87.dhcp.stls.mo.charter.com 1132776986 J * prae ~benjamin@sherpadown.net 1132776986 J * infowolfe ~infowolfe@209-112-215-110-cdsl-rb1.nwc.acsalaska.net 1132776986 J * sladen paul@starsky.19inch.net 1132776986 J * lilo ~lilo@lilo.usercloak.oftc.net 1132776986 J * Johnnie ~john@acs-24-154-53-217.zoominternet.net 1132776986 J * Larsioa ~lars@you.are.the.lamer.la 1132776986 J * Pazzo ~Pazzo@host130-250.pool8172.interbusiness.it 1132776986 J * dos000 ~dos000@CPE00119572fd49-CM00137186e53a.cpe.net.cable.rogers.com 1132776986 J * Greek0 ~greek0@85.255.145.201 1132776986 J * dlippolt ~dlippolt@cpe-70-112-77-129.austin.res.rr.com 1132776986 J * Hollow ~hollow@home.xnull.de 1132776986 J * meebey meebey@booster.qnetp.net 1132776986 J * neofutur ~neofutur@neofutur.net 1132776986 J * monrad ~monrad@213083190130.sonofon.dk 1132776986 J * Bertl herbert@212.16.62.52 1132776986 J * bragon ~bragon@god.geeknode.org 1132776986 J * alexx ~alexx@proxy.ikse.net 1132776986 J * ag- ag@caladan.roxor.cx 1132776986 J * TheSeer ~theseer@border.office.salesemotion.net 1132776986 J * anonymousc ~anonymous@203.26.95.33 1132776986 J * FireEgl Atlantica@Atlantica.DollarDNS.Net 1132776986 J * michal_ ~michal@mprivacy-update.de 1132776986 J * marl_mobile ~matt@84.92.193.225 1132776986 J * Megabart Megabart@host6-202.pool80181.interbusiness.it 1132776986 J * mountie ~mountie@CPEdeaddeaddead-CM000a739acaa4.cpe.net.cable.rogers.com 1132776986 J * harry ~harry@d515321D1.access.telenet.be 1132776986 J * Hunger Hunger.hu@Hunger.hu 1132776986 J * aba ~aba@eos.turmzimmer.net 1132776986 J * derjohn ~derjohn@80.69.35.186 1132776986 J * virtuoso ~s0t0na@shisha.spb.ru 1132776986 J * pusling pusling@195.215.29.124 1132776986 J * DaCa ~danny@mail.limehouse.org 1132776986 J * sizo janek@openbug.org 1132776986 J * FaUl yJrvr66kLe@verbrennung.org 1132776986 J * mef ~mef@targe.CS.Princeton.EDU 1132776986 J * entroposcope ~entroposc@user-0c992og.cable.mindspring.com 1132776986 J * daniel_hozac ~daniel@c-6f1472d5.010-230-73746f22.cust.bredbandsbolaget.se 1132776986 J * nokoya young@hi-230-82.tm.net.org.my 1132776986 J * [MUPPETS]Gonzo gonzo@langweiligneutral.deswahnsinns.de 1132776986 J * SNy 50a8ff22cf@bmx-chemnitz.de 1132776986 J * SiD3WiNDR luser@bastard-operator.from-hell.be 1132776986 J * Vudumen vudumen@perverz.hu 1132776986 J * flock ~restless@l192-117-111-12.broadband.actcom.net.il 1132776986 J * ComplexHo ~ComplexHo@cpc1-brig3-6-0-cust194.brig.cable.ntl.com 1132776986 J * cryo ~say@212.86.233.146 1132776986 J * Marchildon ~nicolas@dsl.speedline207.106.electronicbox.net 1132776986 J * tchan ~tchan@c-67-174-18-204.hsd1.il.comcast.net 1132776986 J * jkl eric@c-67-173-248-142.hsd1.co.comcast.net 1132776986 J * dhansen ~dave@sprucegoose.sr71.net 1132776986 J * lonewolff ~lonewolff@host86-128-133-145.range86-128.btcentralplus.com 1132776986 J * nox ~nox@nox.user.oftc.net 1132776986 J * mugwump ~samv@watts.utsl.gen.nz 1132776986 J * MostlyHarmless ~mh@melbourne.mostly-harmless.ca 1132776986 J * AndrewLee ~andrew@tnlug.linux.org.tw 1132776986 J * Medivh ck@paradise.by.the.dashboardlight.de 1132776986 J * micah micah@micha.hampshire.edu 1132776986 J * BWare ~bware@office.intouch.net 1132776986 T * kinetic.oftc.net Topic: http://linux-vserver.org/ | latest stable 2.0, 2.0.1-rc3, 1.2.10, 1.2.11-rc1, devel 2.1.0-rc8 | util-vserver-0.30.209 | He who asks a question is a fool for a minute; he who doesn't ask is a fool for a lifetime -- share the gained knowledge on the wiki, and we'll forget about the minute ;) 1132777402 Q * dos000 Quit: Leaving 1132777538 J * Aiken ~james@tooax6-215.dialup.optusnet.com.au 1132778172 M * Megabart Bertl, which permissione must have the guest dir (/vserver)? 1132778195 M * Megabart in this moment this are the permission of dir: 1132778217 M * Megabart drwxr-xr-x 4 root root 4096 2005-11-23 20:59 vserver 1132779314 M * Bertl Megabart: that's fine ... 1132779326 M * Bertl the tools will take care of setting the barrier and such 1132779370 M * Megabart Bertl, if i use chmod 000 to protect the dir? 1132779386 M * Bertl then most of your apps inside the guest will stop working 1132779412 M * Bertl aside from the fact that it would not protect anything :) 1132779521 M * Megabart therefore, i leave the permission "drwxr-xr-x 4 root root" 1132779545 M * Megabart it's right? 1132779842 J * BreezBl0k ~BreezBl0k@host-84-9-191-228.bulldogdsl.com 1132780196 M * Bertl Megabart: yep, that is fine with mainline util-vserver 1132780205 M * Bertl welcome BreezBl0k! 1132780277 M * Bertl okay, off for now .. back later ... 1132780290 M * Megabart bye Bertl 1132780311 N * Bertl Bertl_oO 1132780762 Q * BreezBl0k Quit: HydraIRC -> http://www.hydrairc.com <- The future of IRC 1132780810 J * BreezBl0k ~BreezBl0k@host-84-9-191-228.bulldogdsl.com 1132780937 Q * BreezBl0k Quit: 1132781464 J * BreezBl0k ~BreezBl0k@host-84-9-191-228.bulldogdsl.com 1132781541 M * BreezBl0k is it possible to use dhcp for the vserver or does it have to have a set ip? 1132781707 J * dothebart ~willi@xdsl-84-44-231-183.netcologne.de 1132781764 M * derjohn BreezBl0k, hm, at least you the the capatbilta for net_raw 1132781768 M * dothebart hy. i'd like to know when the patch is going to catch up with the latest versions? 1132781776 M * dothebart from the linux kernel? 1132781790 M * derjohn dothebart, you mean 2.6.15 rc ? 1132781801 M * derjohn oder 2.6.14 ? 1132781805 M * dothebart 2.6.14 right now. 1132781806 M * derjohn s/oder/or/ 1132781811 M * dothebart genau ;) 1132781823 M * derjohn the is a patch for 2.6.14 vs2.1.0rc8 1132781839 M * derjohn and a 2.0.1 AFAIR (I dunno use stabel though) 1132781846 M * derjohn eben ;9 1132781893 M * dothebart hm, it isn't linked directly under the downloads section on the wikki page... 1132781897 M * derjohn http://www.13thfloor.at/vserver/s_rel26/v2.0/ 1132781908 M * derjohn -> 2.6.14 stable 1132781911 M * derjohn nach was suchst du? 1132781915 M * derjohn 2.1.0 rc ? 1132781929 M * dothebart ne, nur was, was .14 sauber patcht. 1132781935 M * Larsioa Nice to se that there arent any harm vserver exploits arround. 1132781938 M * Larsioa see* 1132781960 M * derjohn dothebart, guck auf URL, das patcht sauber. oder nutzt du debian? 1132781971 M * dothebart ja, aber nicht den debian kernel... 1132781986 M * dothebart zuerst den split drueber? dann den patch? 1132781993 M * derjohn dothebart, tja, Debian ist unsauber in dem fall. One reject . correct this handish 1132781999 M * derjohn or linux-vserver.derjohn.de 1132782010 M * dothebart also, ich benutz vanilla. 1132782013 M * derjohn -> 2.6.14 Debian src, vserevr 2.1.0rc7 patached 1132782025 M * derjohn dothebart, der patcht sauber 1132782043 M * dothebart den split patch dann? 1132782054 M * derjohn split patch???? 1132782071 M * dothebart http://www.13thfloor.at/vserver/s_rel26/v2.0/split-2.6.12.4-vs2.0.tar.bz2 1132782091 M * dothebart hm. bzw, da steht ja ueberall .12 drin... 1132782092 M * derjohn dothebart, iam overquestioned ;) 1132782106 M * derjohn warum nicht den normalen patch? 1132782114 M * dothebart den hab ich ja schon probiert... 1132782121 M * derjohn dunno what a split patch is 1132782129 M * derjohn gegen vanilla? 1132782136 M * dothebart auch auf den .12'er und dann auf .14 hochpatchen. 1132782151 M * dothebart In file included from init/main.c:50: 1132782151 M * dothebart include/net/sock.h: In function `__sk_prot_rehash': 1132782151 M * dothebart include/net/sock.h:628: error: structure has no member named `sk_prot' 1132782152 M * dothebart ... 1132782170 M * derjohn hm, nimm 2.1.0 rc 8 1132782188 M * derjohn ist auch recht stabil und hat neue features 1132782204 M * derjohn (my uptime is quite high with it) 1132782251 M * dothebart hm, wo find ich den? ;) 1132782263 M * dothebart experimental->kernel patches? 1132782282 M * derjohn http://vserver.13thfloor.at/Experimental/ 1132782312 M * derjohn achtung! delta is really a diff to a diff ... you have to look for patch-foo 1132782332 M * derjohn and immediately ge testme.sh , too 1132782337 M * dothebart ugh. 1132782352 M * derjohn dothebart, uguga .... 1132782363 M * derjohn ot take my .deb ;) 1132782372 M * derjohn it's even signed ... 1132782387 M * derjohn (what does not mean that it is not trojaned) 1132782390 M * dothebart :] 1132782409 M * dothebart i was looking at that signing too, but didn't get it yet. 1132782409 M * derjohn (I cannot even give much goog refrences in colonge .. hmm *thinking* ) 1132782434 M * derjohn I can sign with trused key, too if you like ... :) 1132782448 M * dothebart no, not that much needed. 1132782452 M * derjohn *lol* 1132782453 M * dothebart ;) 1132782469 M * derjohn I sigb my trojans .. good style ;) 1132782490 M * derjohn But you can even diff to an original debian 2.6.14 (experimental) 1132782518 M * derjohn and: take at LEAST util-vserver vom debian sid. 1132782526 M * derjohn no sarge allowed ! 1132782534 M * dothebart ok. http://www.hydrairc.com <- 1132783023 M * derjohn dothebart, i thought they are from cologne ... i was wrong (checked openbc ;)) 1132783042 M * dothebart ay. hm, whats your nick there? 1132783075 M * derjohn nick=? my reakl name ... should be in my details of the nick here, or isn't it? 1132783087 M * derjohn I dont make much secret about who I am 1132783120 M * derjohn xchat -> rightclick -> username :) 1132783150 M * dothebart hm, there are three... the net-lab one? 1132783152 M * derjohn dothebart, added ;) 1132783208 Q * Larsioa Read error: Connection reset by peer 1132783214 M * dothebart ok, you were faster ;) 1132783388 M * dothebart hm, just 3 corner connections ;) 1132783401 M * derjohn dothebart, yes i notices that 1132783404 M * derjohn noticed 1132783424 M * dothebart hmpf. disapeared after the contact is set ;) 1132783469 M * dothebart you actualy don't know double-p? ;-) 1132783507 M * derjohn dothebart, you can click on "what would be if" nearly the top 1132783516 M * derjohn dothebart, PP ? no . 1132783540 M * dothebart not that far away from you. openbsd geek from stutgard... 1132783583 M * derjohn hm, no. but i liked th eopenbsd tent at wth :) 1132783596 M * dothebart maybe you've seen him there. 1132783614 M * dothebart he's been selling t-shirts on the most events... 1132783670 M * dothebart right next to that guy from belgium 1132783720 M * derjohn hm, I ve seen him probably. but dunno ;) 1132783753 M * derjohn dothebart, however, I think i will patch my rc7 to rc 8 now. I afk so. 1132783775 M * dothebart ok, cu soon... 1132783780 M * derjohn cu here 1132783918 Q * DuckMaster Quit: Client exiting 1132784987 Q * dothebart Quit: be root reboot 1132785369 P * stefani I'm Parting (the water) 1132786122 P * mef 1132788849 Q * prae Quit: Pwet 1132789072 J * ryker ~ryker@c-67-176-240-74.hsd1.in.comcast.net 1132790347 J * miller7 ~none@213.239.180.101 1132790356 M * miller7 hello guys