1147824012 M * brc_ ok 1147824273 M * brc_ tried --manaully etc 1147824279 M * brc_ segfaults 1147824282 M * brc_ :( 1147824286 M * brc_ gonna try again toomorrow 1147824294 M * doener did you create the necessary directories? 1147824308 M * brc_ sure 1147824315 M * brc_ if the directories are not created it gives an error message 1147824326 M * brc_ should i try getting a bt ? :) 1147824327 M * brc_ hehe 1147824339 M * brc_ going to eat something to late here, tomorrow i will play again :) 1147824352 M * doener heh, ok 1147824363 M * brc_ gnight 1147824369 M * doener night! 1147824377 P * Dr4g Open Source Development :: http://dynamichell.org 1147825335 J * harry ~harry@d54C2508C.access.telenet.be 1147826102 Q * sladen Ping timeout: 480 seconds 1147826331 J * sladen paul@starsky.19inch.net 1147827290 Q * lilalinux Remote host closed the connection 1147827454 Q * doener Quit: leaving 1147827476 M * [PUPPETS]Gonzo is there a way to measure the current cpu usage of a verver? 1147828398 M * Skram not easily 1147830170 Q * softi42 Ping timeout: 480 seconds 1147830785 J * softi42 ~softi@p549D59C7.dip.t-dialin.net 1147834138 M * brc_ Enabnle cpu schedule and check availbel tokens :) 1147836361 Q * Loki|muh Ping timeout: 480 seconds 1147836652 Q * jpacheco Remote host closed the connection 1147836895 J * jpacheco ~justin@CPE00146c1608af-CM00159a655a08.cpe.net.cable.rogers.com 1147836900 M * jpacheco hey everyone :) 1147836934 M * jpacheco has anyone here been able to get lvm + quota working in a vhost? 1147836961 M * jpacheco i got lvm working, but enabling quotas (in a debian host) is proving to be difficult 1147837036 M * Skram should work as it would outside of a vps 1147837223 M * jpacheco i followed the docs on the linux-vserver.org website 1147837260 M * jpacheco but when i type edquota, i get a message back saying that it could not find a filesystem with quota support enabled 1147837345 M * jpacheco also, when i type mount, in my debian host, it doesn't say anything about /dev/hdv1 1147837353 M * jpacheco is that going to be an issue? 1147837357 M * Skram no idea 1147837371 M * Skram i have lvm setup, but its just to regulate the /vserver/ folder as a whole 1147837376 M * Skram not each vps, etc. 1147837402 J * Loki|muh loki@satanix.de 1147837435 M * jpacheco but you have quota's setup? 1147837458 M * Skram for each vps? no 1147837461 M * jpacheco what kind of vhosts do you have? 1147837470 M * Skram vhosts? 1147837476 M * Skram what do you mean 1147837477 M * jpacheco vps 1147837483 M * Skram like server specs? 1147837487 M * jpacheco what distro are they running 1147837491 M * Skram Gentoo 1147837496 M * Skram Host is running Gentoo 1147837504 M * jpacheco ack, me too 1147837506 M * Skram VPSes are running gentoo, we will release debian sometime soon 1147837513 M * jpacheco but gentoo reports /dev/hdv1 1147837516 M * jpacheco debian doesn't 1147837533 M * Skram heh 1147837539 M * Skram for keeping track of user data 1147837541 M * Skram all we do is 1147837555 M * Skram http://paste.linux-vserver.org/44 1147837560 M * Skram and then analyze the data 1147837569 M * Skram we will make a db-enabled script sometime and release it to the public 1147837577 M * Skram (when i get the time) 1147837588 M * Skram or hire a good perl programmer to join the team 1147837604 M * jpacheco nice 1147837641 M * Skram yeah 1147840319 M * mugwump oh, vserver xxx build doesn't let you specify ccaps/bcaps 1147840554 M * jpacheco mugwump: huh? 1147840667 M * mugwump vserver xxx build --help | grep -i cap 1147840685 M * mugwump there's no option 1147840745 M * mugwump which is dumb, because if the build method needs extra caps then you can't do it 1147840779 M * jpacheco don't you enable caps after the vserver is installed? 1147840788 M * mugwump I guess I'll have to ;) 1147842310 M * jpacheco anyone here have some experience with debian vps's? 1147842357 M * mugwump sure 1147842380 M * jpacheco mugwump: are you running one as we speak? 1147842454 J * _coocoon_ ~coocoon@p54A07FBC.dip.t-dialin.net 1147842458 M * _coocoon_ morning 1147842469 M * jpacheco morning 1147842638 M * mugwump I'm currently writing a script to build clusters of debian vpses via FAI, then run regression test suites against the built cluster, actually 1147842658 M * jpacheco hum, nice 1147842677 M * jpacheco tell me something, when u type 'mount' do you see /dev/hdv1? 1147842738 M * mugwump sure, it's in /etc/mtab 1147842770 M * jpacheco can you show me the line 1147842799 M * jpacheco when you say "in /etc/mtab" you are referring to the /etc/ inside of your vps, right? 1147842809 M * mugwump /dev/hdv1 on / type ufs (defaults) 1147842812 M * mugwump yes 1147842838 M * mugwump I built that vserver with vserver xxx build -m debootstrap 1147842849 M * jpacheco what about in /etc/vserver//apps/init/, do you have a mtab file in there? 1147842900 M * mugwump no, just /etc/vservers/XXX/fstab 1147842911 M * jpacheco damn 1147842919 M * jpacheco i can't get my quotas enabled :( 1147842977 M * mugwump can't get them enabled, or can't get the admin tools to work inside the vserver? 1147843120 M * jpacheco huuuum 1147843153 M * jpacheco well the tools don't work because they don't see a quota enabled system 1147843177 M * jpacheco and i don't have a quota enabled system because /dev/hdv1 doesn't show up 1147843280 M * mugwump ah, I think you need a vroot 1147843284 M * _coocoon_ what is in u r mtab 1147843296 M * _coocoon_ pacheco 1147843314 M * jpacheco i did vrsetup to 'map' a vroot* to the lvm dev 1147843395 M * mugwump did you put the device that vrsetup created inside the /dev of the vserver? 1147843398 M * _coocoon_ pacheco: what does dmesg -s 100000 | grep vroot show 1147843404 J * Methos ~mjoconr@hacker.pineview.net 1147843411 M * _coocoon_ dmesg -s 100000 | grep vroot 1147843415 M * jpacheco mugwump: yes i did 1147843432 M * jpacheco _coocoon_: one sec, getting the info 1147843458 M * jpacheco mtab shows only proc /proc proc rw 0 0 1147843458 M * jpacheco devpts /dev/pts devpts rw,gid=5,mode=620 0 0 1147843472 M * jpacheco i put the /dev/hdv1 line, but it seems to be ignoring it 1147843515 M * jpacheco dmesg -s 100000 | grep vroot 1147843524 M * jpacheco reports: vroot: loaded (max 8 devices) 1147843527 M * _coocoon_ pacheco on the host 1147843533 M * jpacheco yup 1147843536 M * jpacheco that's it 1147843553 M * _coocoon_ ah ok that is looking good 1147843567 M * jpacheco one question, how do you 'unmap' a vrsetup? 1147843640 M * _coocoon_ pacheco: here are my mtab entries maybe u can use it 1147843641 M * _coocoon_ http://paste.linux-vserver.org/45 1147843675 M * _coocoon_ pacheco: which distro u r using 1147843677 M * jpacheco _coocoon_: do i put these in teh vps's mtab, or in the hosts /etc/vservers//apps/init/mtab file? 1147843691 M * jpacheco _coocoon_: i am using both gentoo and debian 1147843691 M * _coocoon_ yes 1147843702 M * jpacheco _coocoon_: which? 1147843708 M * _coocoon_ no in the /vservers/foo/etc/mtab 1147843716 M * jpacheco k 1147843720 M * _coocoon_ on the host 1147843723 M * _coocoon_ ? 1147843754 M * _coocoon_ pacheco: which distro on the host 1147843763 M * jpacheco the host is gentoo 1147843772 M * jpacheco and i have a mix of gentoo/debian vps's 1147843841 M * daniel_hozac jpacheco: vrsetup -d 1147843842 M * jpacheco ok, im pasting the data into mtab now 1147843856 M * Skram what is vr(setup_ 1147843857 M * jpacheco and restarting the vps 1147843858 M * Skram *) 1147843862 M * Skram woo hoo 1147843878 M * Skram (to the debian.gentoo guests) 1147843919 A * mugwump wonders if you need XID tagging for that 1147843937 M * daniel_hozac for vroot? no, that's awfully useless. 1147843952 M * daniel_hozac given that you need one base-device for each guest. 1147843962 M * jpacheco _coocoon_: still says the same old thing 1147843963 M * daniel_hozac (for now) 1147843983 M * _coocoon_ pacheco: what is with the fstab in the guest 1147843998 M * _coocoon_ pacheco: what stand there 1147844002 M * jpacheco another question: is it possible to create more /dev/vroots (is it as simple as incrementing the minor number?) 1147844026 M * jpacheco _coocoon_: nothing in the fstab 1147844066 M * _coocoon_ pacheco: yes it is possible set this in the menu.list kernel /boot/linux26-vs2.0 max_vroot=20 root=/dev/sda1 ro 1147844086 M * _coocoon_ max_vroot=20 for example 1147844125 M * jpacheco cool 1147844192 M * jpacheco ack 1147844195 M * jpacheco damn fstab 1147844242 J * jpacheco_ ~justin@CPE00146c1608af-CM00159a655a08.cpe.net.cable.rogers.com 1147844254 M * jpacheco_ mtab does nothing..NOTHING! 1147844284 M * jpacheco_ _coocoon_: is there another way to create more vroots or does it have to be a kernel option? 1147844366 M * _coocoon_ pacheco: how is ur german? 1147844380 M * _coocoon_ ;-) 1147844395 M * jpacheco_ don't speak it at all :( 1147844399 M * jpacheco_ why? 1147844401 M * daniel_hozac if you built vroot as a module, you could unload it and reload it with the correct option. 1147844435 M * jpacheco_ daniel_hozac: ah 1147844454 M * jpacheco_ ok, so i got mount to show /dev/hdv1 1147844462 M * jpacheco_ and it has quota support enabled (wooohooo) 1147844471 M * _coocoon_ pacheco: ok maybe u only need the commands not the description maybe it will help --> http://paste.linux-vserver.org/46 1147844477 M * jpacheco_ but now i get this when i type quotaon 1147844485 M * jpacheco_ quotaon: using //aquota.group on /dev/hdv1 [/]: Operation not permitted 1147844494 M * daniel_hozac did you give the guest quota_ctl? 1147844518 M * jpacheco_ yes 1147844524 M * jpacheco_ quota_ctl\ 1147844536 M * jpacheco_ is in the ccapabilites file 1147844576 M * jpacheco_ thx for the paste _coocoon_ 1147844594 M * _coocoon_ pacheco: yw 1147844657 M * daniel_hozac jpacheco_: so what does grep CCaps /proc/virtual//status show? 1147844682 Q * jpacheco Ping timeout: 480 seconds 1147844700 N * jpacheco_ jpacheco 1147844720 M * jpacheco CCaps: 0000000000000101 1147844739 M * daniel_hozac no quota_ctl there. 1147844749 M * jpacheco how can you tell? 1147844764 M * daniel_hozac it's 0x100000 1147844794 M * jpacheco weird 1147844807 M * jpacheco its in the file 1147844922 M * daniel_hozac did you restart the guest since adding it? 1147844947 M * jpacheco yes, and i did it after you told me that it wasn't enabled, still says the same thing 1147845142 Q * shedi Ping timeout: 480 seconds 1147845228 M * daniel_hozac is there a newline after quota_ctl? 1147845256 M * jpacheco no 1147845280 M * daniel_hozac add that then. 1147845316 M * jpacheco looking over my old notes 1147845331 M * jpacheco should i be using bcapabilities instead? 1147845346 M * daniel_hozac no. 1147845419 M * jpacheco now /proc reads 1147845423 M * jpacheco CCaps: 0000000000100101 1147845535 M * jpacheco i think that did it 1147845542 M * jpacheco thanks daniel_hozac 1147845580 M * [PUPPETS]Gonzo So measuring current cpu usage is only available by enabling cpu scheduling and checking the tokens? Can I enable cpu usage to 100% and still get the usage out of the tokens? 1147845847 J * shedi ~siggi@inferno.lhi.is 1147845962 M * jpacheco how can i see which /dev/vroot's are attached to what block dev's? 1147846158 M * daniel_hozac [PUPPETS]Gonzo: well, you already have /proc/virtual/.../sched, which has lines for each CPU stating how many ticks the context has used. 1147846168 M * daniel_hozac jpacheco: i don't think you can. 1147846202 M * [PUPPETS]Gonzo daniel_hozac: so the cpulines show usertime and systime then? 1147846302 Q * mire europa.oftc.net reticulum.oftc.net 1147846302 Q * dsoul europa.oftc.net reticulum.oftc.net 1147846302 Q * cehteh europa.oftc.net reticulum.oftc.net 1147846302 Q * Skram europa.oftc.net reticulum.oftc.net 1147846302 Q * teukka europa.oftc.net reticulum.oftc.net 1147846302 Q * hallyn europa.oftc.net reticulum.oftc.net 1147846302 Q * Johan europa.oftc.net reticulum.oftc.net 1147846302 Q * gdm europa.oftc.net reticulum.oftc.net 1147846302 Q * sukria europa.oftc.net reticulum.oftc.net 1147846302 Q * danderson europa.oftc.net reticulum.oftc.net 1147846340 J * mire ~mire@200-167-222-85.COOL.ADSL.VLine.Verat.NET 1147846340 J * dsoul darksoul@vice.ii.uj.edu.pl 1147846340 J * cehteh foobar@cehteh.homeunix.org 1147846340 J * danderson ~dave@natulte.net 1147846340 J * gdm ~gdm@64.62.195.81 1147846340 J * Johan ~finger@lounge.datux.nl 1147846340 J * hallyn ~xa@adsl-75-0-155-101.dsl.chcgil.sbcglobal.net 1147846340 J * sukria ~sukria@www.sukria.net 1147846340 J * teukka ~tmatilai@backport.ri.fi 1147846340 J * Skram ~mark@admins.sentiensystems.net 1147846355 M * Skram Thats messed up. Its 1am and I just consumed dinner. 1147846356 M * Hollow morning! 1147846360 M * Skram Morning, Hollow 1147846369 M * [PUPPETS]Gonzo hi hollow 1147846372 M * Hollow hey Skram, can i still help you? ;) 1147846377 M * Skram I dont know 1147846385 M * Skram rebooting does not work 1147846390 M * jpacheco sup Hollow 1147846401 M * Skram and i wanted someone to look at the "RAM"/RSS script I made 1147846402 M * Hollow Skram: you mean rebooting inside? 1147846408 M * Skram Hollow: Yes'sir 1147846421 M * jpacheco hey hollow, are you on the apache 2.2.x team for gentoo? 1147846455 M * daniel_hozac [PUPPETS]Gonzo: yes. 1147846468 M * [PUPPETS]Gonzo daniel_hozac: Thanks a lot 1147846477 M * Hollow jpacheco: kind of.. im still in the apache herd, but didn't do much lately 1147846498 M * jpacheco oh, because i wanted to ask you how 2.2.x is coming along 1147846502 M * daniel_hozac Skram: kernel without legacy support and util-vserver? 1147846533 M * Skram util-vserver-0.30.210-r13 1147846539 M * Hollow daniel_hozac: btw.. do you know the progress of the vps killer patch for util-vserver? 1147846541 M * jpacheco i noticed that you were the one to release the 2.2.0-r2 release 1147846555 M * Skram Linux hercules 2.6.14-vs2.0.1-gentoo 1147846570 M * daniel_hozac Hollow: no, unfortunately not. 1147846579 M * Skram daniel_hozac / Hollow: 1147846580 M * Skram CONFIG_VSERVER_LEGACYNET=y 1147846580 M * Skram # CONFIG_VSERVER_LEGACY is not set 1147846588 M * Skram is that all what it should be? 1147846596 M * Hollow daniel_hozac: maybe we can try it on our own? 1147846620 M * daniel_hozac Hollow: yeah, i've been thinking about that. 1147846647 M * Hollow i have enough free time this week, so we could at least try it ;) 1147846685 M * daniel_hozac hehe. 1147846701 M * daniel_hozac Skram: you need CONFIG_VSERVER_LEGACY if you want halting/rebooting from the inside to work. 1147846802 M * Skram daniel_hozac: can it be modularized or has to be built in? 1147846815 M * Skram daniel_hozac: okay, then what else needs to be done? anything to the configs? 1147846823 M * daniel_hozac given that it just adds/modifies codepaths elsewhere, built-in. 1147846832 M * Skram damn. 1147847816 M * eyck sorry, any idea which CAP is responsible for realtime scheduling? (like cdrecord: Operation not permitted. WARNING: Cannot set RR-scheduler 1147847928 M * Skram what could my cdrom drive be named? not in /dev/cdrom 1147848252 M * cehteh eyck: CAP_SYS_NICE 1147848315 M * eyck cehteh: thnx. 1147848393 M * cehteh well usually you wont grant that to a guest 1147848403 M * Skram peace out 1147848430 M * eyck yeah, but I've got desktop guest, it already can do damage if it wants to 1147848434 M * cehteh and for modern burners with buffer-underun protection realtime shouldnt be required 1147848442 M * cehteh wel ok then 1147848473 M * eyck I don't know if it's modern...I just bought it yeasterday, how do I check if it's modern or not?;) 1147848483 M * cehteh heh 1147848495 M * cehteh modern as being produced in the last 5 years at least 1147849217 N * otaku42_away otaku42 1147849725 J * ||Cobra|| ~cob@pc-csa01.science.uva.nl 1147849927 J * dsoul_ darksoul@vice.ii.uj.edu.pl 1147850281 Q * dsoul Ping timeout: 480 seconds 1147850816 J * dna ~naucki@dialer-188-106.kielnet.net 1147851287 Q * brc_ Ping timeout: 480 seconds 1147851382 M * jpacheco hey guys, i keep getting this when i type quotaon in my vps 1147851391 M * jpacheco quotaon: using //aquota.group on /dev/hdv1 [/]: Invalid argument 1147851396 M * jpacheco any ideas? 1147851499 M * Hollow daniel_hozac: this seems to work here: http://home.xnull.de/misc/vshelper-workaround.patch 1147851572 M * Hollow even simpler.. patch updated 1147851612 M * Hollow although i think this workaround does not care to bring stuff down like interfaces 1147851699 M * Hollow Skram: ping 1147852090 N * dsoul_ dsoul 1147853099 J * brc_ bruce@20151172040.user.veloxzone.com.br 1147853397 M * anonc anyone tested COW links with 2.1.1-rc20? 1147854015 J * lilalinux ~plasma@dslb-084-058-255-236.pools.arcor-ip.net 1147854323 J * Oli_ ~skycode@212.224.233.137 1147854382 M * jpacheco anyone have luck with quota's in debian/gentoo vps's? 1147854946 J * NetAsh ~NetAsh@193.219.160.108 1147854961 M * NetAsh hy 1147855251 Q * shedi Quit: Leaving 1147855580 M * _coocoon_ jpacheco: it is maybe no solution but in my opinion it is easier to use this http://linux-vserver.org/Disk+Limits instead of quota ;-) 1147855769 M * jpacheco _coocoo_: but i see docs saying that it is possible :( 1147855802 M * jpacheco it feels like im missing something 1147856062 M * jpacheco huum, site is slow 1147856166 M * jpacheco _coocoon_: yeah, i looked up disk limits, and i can't use it for my purposes 1147856175 M * Loki|muh hum, very slow :( 1147856218 M * jpacheco i was told that other vps's can't write to disk limit enabled vps's, which is something that i need 1147856503 M * sid3windr hmm not slow at all here :o 1147857815 Q * NetAsh Quit: 1147858287 M * locksy How do i give a vps full network access (i.e. bind to anything) 1147858352 M * derjohn locksy, well, there is net_raw, icmp_raw and cap_sys_admin ... 1147858361 M * derjohn locksy, depends how much you want to give 1147858373 M * derjohn locksy, check the wiki for that keywords 1147858420 M * locksy As in I don't want to do a chbind 1147858607 M * derjohn locksy, so you want to see all IPs on that interface within the guest? I dunno how to disable the chbind, but i am pretty sure it has nothing to do with the capability system 1147858612 Q * jpacheco Quit: My damn controlling terminal disappeared! 1147859127 J * shedi ~siggi@dsl-og-108-50.du.vortex.is 1147859382 Q * _coocoon_ Ping timeout: 480 seconds 1147860085 J * _coocoon_ ~coocoon@p54A067CA.dip.t-dialin.net 1147861615 J * mattr_sf ~matt@p50884E39.dip.t-dialin.net 1147862256 M * cemil refoo! 1147865041 J * jpacheco ~justin@CPE00146c1608af-CM00159a655a08.cpe.net.cable.rogers.com 1147865112 M * jpacheco brc_: are you there? 1147865406 M * tokkee I just read the thread "VServer vs. OpenVS" in the mailing list archive. Bertl_oO was talking about some cooperation with the OpenVPS project (http://list.linux-vserver.org/archive/vserver/msg11639.html). Is this still relevant? Anybody working on some kind of coorporation? 1147865606 Q * Methos Quit: Methos 1147865770 M * tokkee Did anybody ever talk about cooperation of VServer and OpenVZ? 1147865800 M * tokkee As those two projects seem to make very similar approches even a merge might be fairly easy... 1147865809 M * tokkee +a 1147865872 J * doener ~doener@i5387D272.versanet.de 1147866101 M * Wonka it seemed to me OpenVZ (or better, Virtuozzo) was quite close to GPL violation... 'cause OpenVZ is only a part of the Linux derivative that Virtuozzo is. 1147866112 M * Wonka (correct me if I'm wrong) 1147866644 Q * Aiken Quit: Leaving 1147867164 J * Methos ~mjoconr@hacker.pineview.net 1147867355 J * Lucifer ~Master@88.226.29.232 1147867361 M * Lucifer . 1147867433 Q * cryo Ping timeout: 480 seconds 1147867547 M * harry heeeeeeey 1147867571 M * harry lucifer.homelinux.com 1147867576 M * harry you stole my hostname! ;) 1147867582 M * Lucifer ? 1147867592 M * harry in your nick :) 1147867601 M * Lucifer ;) 1147868572 M * jpacheco any of you guys running a debian vps wiht quota support?? 1147868622 Q * eyck Ping timeout: 480 seconds 1147868637 M * harry jpacheco: not me 1147868644 M * harry sry 1147868651 M * jpacheco that's cool 1147868912 M * Lucifer coders@hotmail.fr 1147868917 Q * Lucifer Quit: mIRCTR.ORG 1147869136 Q * _coocoon_ Quit: KVIrc 3.2.0 'Realia' 1147869427 J * _alec_ ~kvirc@dialin-145-254-210-013.pools.arcor-ip.net 1147869752 Q * mattr_sf Quit: Leaving 1147870484 M * brc_ jpca: quota does not work on a dshared partition 1147870490 M * brc_ if you are using 2.x 1147870523 M * jpacheco it doesn't? 1147870554 M * jpacheco so the docs on teh website are for 1.x? 1147871176 M * doener a part of them are 1.x only, by now, most of them are 2.x only (because it has much more features, and AFAIK lacks only the one you are referring to) 1147871199 M * jpacheco doener: are you referring to quota support? 1147871269 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1147871357 M * doener quota on shared partion, yep 1147871436 M * jpacheco its not shared though 1147871449 M * jpacheco each vserver gets their own lvm partition 1147872249 J * doener_ ~doener@i5387D01E.versanet.de 1147872249 Q * doener Read error: Connection reset by peer 1147872250 M * jpacheco doener: what's AFAIK 1147872273 Q * Methos Quit: Methos 1147872446 M * doener_ jpacheco: As Far As I Know 1147872462 M * jpacheco ic. 1147872475 M * jpacheco well i pretty much read this doc: http://www.5dollarwhitebox.org/wiki/index.php/Howtos_Linux-Vserver_With_LVM_And_Quotas 1147872509 M * jpacheco and im pretty sure his using 2.x stuff 1147872642 P * _alec_ So Long, and Thanks for All the Fish! 1147872663 M * doener_ jpacheco: that's not quota on a shared partition, in his setup each vserver has its own LV 1147872681 M * jpacheco yes, and this is my exact setup 1147872700 M * doener_ ah, I see... been mislead by brc_'s comment then ;) 1147872736 M * jpacheco i just keep getting this error: quotaon: using //aquota.group on /dev/hdv1 [/]: Invalid argument 1147872829 J * ChaoAss DigitalX@68.234.54.142 1147872842 P * ChaoAss 1147873533 Q * shedi Quit: Leaving 1147873798 J * Methos ~mjoconr@hacker.pineview.net 1147873949 J * NetAsh ~NetAsh@193.219.160.108 1147873973 J * regl ~Freedom@85.101.19.174 1147873981 Q * NetAsh Quit: 1147874164 M * regl i have some problems with the realvns for linux. is there anyone can help me? 1147874169 M * regl realvnc 1147874220 Q * f_ Quit: This computer has gone to sleep 1147874309 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1147874392 J * Milf ~Miranda@ipsio77.ipsi.fraunhofer.de 1147874462 Q * f_ Quit: 1147874607 Q * regl Quit: 1147874663 M * brc_ jpca: if you are on LVM forget what i said :) 1147874685 M * jpacheco brc_: do you have any idea what my problem is though? 1147874821 M * brc_ you should check if your kernel hsa quota support enabled (are hte moduels loaded?) 1147874837 M * brc_ I am not sure but i think you need some flags or caps enabled so that quota will work inside a vserver 1147874840 M * jpacheco quota support is built in 1147874855 M * jpacheco caps are in and verified 1147874872 M * jpacheco and the vroot module is loaded with 20 vroots 1147874875 M * brc_ if bertl was around .. he knows everything about quota and working to get quota on the 2.x version 1147874897 M * brc_ check /proc/mounts if you have the correct options for a quota fs 1147874900 M * jpacheco yeah, i've been looking for him 1147874909 M * jpacheco is he away or something? 1147874939 M * brc_ I dunno, i haven't seen him on the last days 1147874947 N * brc_ brc 1147875000 M * jpacheco brc: do i have to have ursquota/grpquota on at the host level? 1147875009 M * jpacheco its only withing the vhost right? 1147875077 M * brc hmm. i don't remember the answer for that. I am sure that /proc/mounts inside a vserver must show usrquota/grpquota 1147875122 M * jpacheco huuum, it doesn't show it 1147875138 M * jpacheco but mount inside my vhost shows the right settings 1147875143 M * jpacheco could this be my problme? 1147875290 N * Bertl_oO Bertl 1147875294 M * Bertl morning folks! 1147875302 M * jpacheco Bertl! 1147875322 M * jpacheco help .. me .. pleeeeease 1147875329 M * jpacheco hahaha, do you have a minute? 1147875343 M * Bertl sure, as usual, what's up? 1147875376 M * jpacheco quota support in lvm 1147875401 M * jpacheco when i execute quotaon -a in the vps (gentoo) 1147875428 M * Bertl yup? what filesystem? 1147875430 M * jpacheco whoa 1147875437 M * jpacheco it worked ? 1147875443 M * jpacheco hum, reiserfs 1147875445 M * Bertl ah, good, problem solved :) 1147875449 M * jpacheco lol 1147875454 M * jpacheco one sec 1147875481 Q * lilalinux Remote host closed the connection 1147875489 Q * ||Cobra|| Remote host closed the connection 1147875510 M * jpacheco ok, anyways 1147875519 M * jpacheco a few questions while i figure this out 1147875527 M * brc good morning bertl ! :) 1147875535 M * Bertl hey brc! how are you? 1147875541 M * jpacheco on the host, do i have to turn on quota support for that lvm partition 1147875558 M * brc Bertl: i am ok , almost ready to finish all that quota script tests. :) 1147875566 M * jpacheco oh, nice presentation btw Bertl :) very informative 1147875587 M * Bertl jpacheco: for certain filesystems (including reiser) yes 1147875642 M * jpacheco so i have to mount my lvm partition with quota support 1147875666 M * jpacheco and for the vps's mtab file, i have to enable quota support? 1147875774 M * Bertl jpacheco: you know the wiki page (for quota on lvm)? 1147875802 M * jpacheco link? 1147875831 M * jpacheco this one: http://linux-vserver.org/Standard+non-shared+quota ? 1147875858 M * Bertl yep for example 1147875871 M * Bertl but also this one: http://www.5dollarwhitebox.org/wiki/index.php/Howtos_Linux-Vserver_With_LVM_And_Quotas 1147875877 M * jpacheco yes, i've gone over this document many times 1147875885 M * jpacheco that one also :) 1147875893 M * Bertl okay, so the mtab inside the guest has to have that 'magic' ufs entry 1147875914 M * jpacheco right 1147875918 J * lilalinux ~plasma@dslb-084-058-255-236.pools.arcor-ip.net 1147875931 M * Bertl jpacheco: that's valid for all filesystems 1147875950 M * Bertl this tricks the tools into using the kernel and enabling quota 1147875998 M * jpacheco that much i got 1147876016 M * jpacheco but its when i get in the vps that stuff goes wrong 1147876044 M * Bertl how so? 1147876054 M * Bertl I mean, what gies wrong? 1147876057 M * Bertl *goes 1147876074 M * jpacheco comp is rebooting, one sec 1147876079 M * jpacheco but what i can tell you is 1147876085 M * jpacheco that when i hit quotaon -a 1147876089 M * jpacheco i get this 1147876130 M * jpacheco i just keep getting this error: quotaon: using //aquota.group on /dev/hdv1 [/]: Invalid argument 1147876174 M * Bertl what about hdv1, does it exist, is it configured properly? 1147876192 M * Bertl do you get a message in the kernel log? 1147876216 M * jpacheco i did the vrsetup to the lvm partition 1147876222 M * jpacheco i get no error in the kernel log 1147876240 M * jpacheco and i copy the same /dev/vroot* to the vps 1147876245 M * jpacheco under /dev/hdv1 1147876312 M * jpacheco ok 1147876324 M * jpacheco so while on the host i see 1147876347 M * Bertl hmm, reiserfs you said? 1147876348 M * jpacheco /dev/mapper/vg0-ftp--srv_001 on /home/virtual/ftp-srv_001 type reiserfs (rw) 1147876357 M * jpacheco this is ok right? 1147876372 M * Bertl no quota options, but check with /proc/mounts 1147876394 M * jpacheco so i have to have those options enabled at the host level? 1147876418 M * Bertl 16:19 < jpacheco> on the host, do i have to turn on quota support for that lvm 1147876424 M * Bertl 16:19 < Bertl> jpacheco: for certain filesystems (including reiser) yes 1147876438 M * jpacheco ok, turning it on now 1147876466 M * Bertl it might not even be required/possible to turn it on/off on the guest 1147876478 M * jpacheco /dev/mapper/vg0-ftp--srv_001 on /home/virtual/ftp-srv_001 type reiserfs (rw,usrquota,grpquota) 1147876486 M * Bertl IIRC, reiser uses journaled quota ... 1147876518 M * jpacheco what about ext3 1147876521 M * jpacheco and other fs's? 1147876530 M * jpacheco do they need to be turned on outside as well? 1147876531 M * Bertl ext3 can support both, file based and journaled 1147876544 M * Bertl ext2 only support file based (quota files) 1147876557 M * Bertl jfs doesn't support quota at all, IIRC 1147876564 M * jpacheco all the docs i read made it seem like you had to turn it on inside 1147876566 M * Bertl xfs has a special quota interface 1147876574 M * jpacheco no where did it say to mount the partition with quota support 1147876581 M * jpacheco unless it was something i missed 1147876584 M * Bertl jpacheco: yes, that's because all those folks used ext2/3 1147876589 M * jpacheco ahhhh, 1147876590 M * daniel_hozac Hollow: not stopping the guest doesn't seem like quite the right thing to do ;) 1147876599 M * daniel_hozac Hollow: but isn't it already doing the right thing for the halt case? 1147876629 M * jpacheco this is very helpful, thanks bertl 1147876706 M * Hollow daniel_hozac: hm, dunno, i only tested the reboot case 1147876766 M * Hollow the problem is that the reboot process still exists, so vserver .. restart says already running 1147876914 M * daniel_hozac right, for reboot. 1147876937 M * Hollow halt also calls sys_reboot 1147876937 M * Milf Anyone in the know of how to fix an openLDAP after having tar-ported a machines files to a VServer? 1147876940 M * daniel_hozac which was supposed to be solved by vserver --sync ... stop; vserver ... start & if i understood Enrico correctly. 1147876945 M * Hollow so it shouldn't make a difference 1147876955 M * Milf (I know I'm asking this every three months) 1147876962 M * jpacheco Milf: fix it? 1147876967 M * Milf Yeah but how? 1147876969 M * daniel_hozac Hollow: but then once the stop process returns, the halt process will exit and the guest will be fully dead. 1147876982 M * Hollow well yes.. 1147876984 M * daniel_hozac Hollow: which is what you what. 1147876992 M * daniel_hozac s/what/want/2 1147876996 M * Milf Ah you mean: 'What seems to be the problem?' 1147877026 M * Milf DBERROR db4: Berkeley DB library configured to support only DB_PRIVATE environments 1147877034 M * jpacheco Milf: can't you dump your db in ldif format then install openldap in the vps and import? 1147877046 M * tokkee Bertl: Did you read my questions in backlog? 1147877051 M * daniel_hozac Milf: did you tar the entire server? 1147877060 M * tokkee Bertl: 13:36 1147877061 M * daniel_hozac tokkee: did you refer to OpenVPS or OpenVZ? 1147877082 M * tokkee daniel_hozac: both ;-) 1147877086 M * Milf jpacheco: Hmmm, haven't tried that. How Do I do this? 1147877102 M * daniel_hozac OpenVPS uses a Linux-VServer kernel AFAIK. 1147877103 M * Milf daniel_hozac: Yes, tared the whole thing after booting from Knoppix 1147877104 M * jpacheco which? install openldap or dump the db? 1147877124 M * daniel_hozac Milf: and then copying it to a guest doesn't work? what kernel is that? 1147877143 M * Milf Hmmm 2.6 in the original, 2.4 in the VServer host 1147877177 M * daniel_hozac Milf: that's likely your problem. certain builds of bdb uses nptl, IIRC. 1147877259 M * Milf Hmmm, I should read my own logs of what I've tried before 1147877262 M * tokkee daniel_hozac: Hum? Reading that mailing list thread, I thought OpenVPS is using a somewhat different approach implementing contexts... 1147877304 M * daniel_hozac tokkee: i guess they don't use util-vserver. 1147877335 M * tokkee daniel_hozac: No, I mean in the kernel... 1147877385 M * daniel_hozac tokkee: i've never really looked in to it, but i'm pretty sure they don't do anything kernel related. 1147877388 M * tokkee " ...but I consider the way 1147877389 M * tokkee FreeVPS works with context ids to be much more efficient." 1147877400 M * daniel_hozac tokkee: FreeVPS is a completely different beast. 1147877501 M * tokkee daniel_hozac: "FreeVPS used RH EL kernels" that sounds like they do kernel related stuff... 1147877527 M * Bertl teukka: what is different about 'context ids' and xid? 1147877538 M * Bertl s/teukka/tokkee/ 1147877566 M * tokkee Bertl: I don't know... that's what Alex Lyashkov was talking about... 1147877584 M * Bertl ah, and where was he talking about that? 1147877590 M * tokkee Bertl: You were talking about some cooperation in one of your emails... 1147877598 M * tokkee Bertl: http://list.linux-vserver.org/archive/vserver/msg11642.html 1147877638 M * tokkee Bertl: And Alex replied that he would only be interessted if the two projects would be merged. 1147877719 M * Bertl well, just reread that email and I already regret that I asked, it is wrong at so many levels ... 1147877779 M * tokkee OpenVPS is wrong? 1147877781 M * Bertl but please read my reply to that, it should clarify most of it 1147877788 M * Bertl FreeVPS, but yes 1147877868 M * tokkee Did he ever provide any test results to prove that OpenVPS contexts are faster? ;-) 1147877876 M * tokkee I guess not ;-) 1147877884 M * Bertl not to me, and not in the thread 1147877895 M * tokkee Oh... it's _Free_VPS? 1147877923 M * Bertl and I think it would be quite hard, as we manage to get 100% native performance +/- 0.5% 1147877951 M * tokkee ;-) 1147877971 M * Bertl funny part is that the + part is true sometimes 1147877980 M * tokkee Ah... I see... FreeVPS = completely different, OpenVPS built on top of VServer. 1147877987 M * tokkee Bertl: Huh? How can that happen? 1147878009 M * Bertl well, seems that some Linux-VServer changes improve the kernel performance 1147878018 M * Bertl but somtimes it's easily explaned 1147878036 M * Bertl just consider a test (artifical) which does nothing but reading procfs entries 1147878056 M * Bertl the guest has less entries (because of proc security and isolation) 1147878067 M * Bertl so the test will show a greater performance 1147878076 Q * Milf Quit: Miranda IM! Smaller, Faster, Easier. http://miranda-im.org 1147878116 M * tokkee Bertl: I see ;-) 1147878244 M * Bertl OpenVPS is/was a panel project ontop of Linux-VServer 1147878272 M * Bertl FreeVPS was a branch from Linux-VServer about two and a half year ago 1147878290 M * Bertl they still use the common syscall and some command structures 1147878290 M * tokkee Bertl: Why was it created? 1147878333 M * Bertl it was after jack vanished, when Alexey and Say decided to branch 1147878357 M * Bertl we worked together for some time, but then they went commercial with positive software 1147878512 M * tokkee That's too bad :-/ 1147878521 J * Viper0482 ~Viper0482@p54975AA2.dip.t-dialin.net 1147878544 M * Bertl indeed 1147878630 M * tokkee Bertl: Do you think a cooperation of VServer and OpenVZ makes sense or will ever happen? 1147878652 M * Bertl that's a really good question ... 1147878677 M * Bertl I think that cooperation has some advantages, if both parties try to 'improve' things 1147878686 Q * mire Ping timeout: 480 seconds 1147878692 M * tokkee I just see quite a few projects pretty much trying to reach the same goal.... 1147878721 M * tokkee ... it would make much more sense to me to join efforts (and maybe even merge _all_ those projects). 1147878721 M * Bertl I doubt that the OpenVZ folks will ever manage to break free from SWsoft (and the commercial requirements/background) 1147878752 M * tokkee Hum yeah... probably kinda like OpenOffice and StarOffice... 1147878766 M * Bertl and I don't like to implement stuff (or even discuss it), because of 'commercial requirements' 1147878804 M * tokkee Well... the "commercial guys" could implement stuff like that on their own on top of the rest. 1147878827 M * Bertl so there goes the cooperation then, no? 1147878838 M * tokkee Guess your right :-/ 1147878886 M * Bertl what I still hope for is a friendly environment, where folks of both projects inform the other side of issues or new developments and ideas 1147878897 M * tokkee But still people would develop on the same code base... 1147878921 M * Bertl and not keep them secret (as the OpenVZ folks seem to do) just to use it agains the other project 1147878934 M * tokkee Bertl: ack... the should be the least both projects can do for each other... 1147878950 M * tokkee s/the/that/ 1147878955 M * Bertl tokkee: there is no common code base between OpenVZ and Linux-VServer for example 1147878975 M * Bertl and I doubt that there is much common code left with FreeVPS 1147878997 M * tokkee Bertl: I know... but merging the projects would create one ;-) 1147879002 M * Bertl but granted, it would make sense to share ideas, have a talk every now and then and such 1147879013 M * Bertl tokkee: how would you do that? a merge? 1147879075 M * tokkee Bertl: I'm not sure ... maybe getting together and try to pick out the best stuff from every project... kind of an naive idea ;-) 1147879087 M * Bertl take for example OpenVZ, (or better VZ) they consider their BeanCounter the philosophers stone, while we consider it unneccesary bloat, as we accomplish the same in a much less intrusive way ... 1147879112 M * tokkee Hmmm... :-/ 1147879126 M * Bertl granted, our accounting might not be 100% correct, but it is more than sufficient for the purpose 1147879155 M * Bertl or, OpenVZ basically requires to do full pid virtualization 1147879166 M * tokkee Maybe stuff like that could be made configurable during compilation time. 1147879176 M * tokkee Personally, _I_ would like that most ;-) 1147879181 M * Bertl otherwise things like the migration stuff don't work, we otoh, avoid it, because of the overhead 1147879211 J * mire ~mire@238-167-222-85.COOL.ADSL.VLine.Verat.NET 1147879229 M * Bertl tokkee: you can _always_ build a kernel with OpenVZ and Linux-VServer support, just use the patch option to make it conditional 1147879256 M * Bertl will produce unreadable code, require a complete kernel recompile but would allow you to 'configure' which one you want :) 1147879264 J * s_ sp@83-215-237-4.seek.stat.salzburg-online.at 1147879267 M * Bertl (not speaking of the resulting bloat) 1147879406 M * tokkee Do you know how OpenMosix accomplishes to transfer processes from one pc to another? 1147879453 M * Bertl yes 1147879549 Q * brc Ping timeout: 481 seconds 1147879667 M * tokkee Could that be applied to migrate VServers as well? 1147879701 Q * s_ Quit: get satisfied! • :: ««« (Gamers.IRC) »»» www.gamersirc.net :: 1147879704 M * Bertl yes, but it would not help you much 1147879773 M * Bertl the main problem with *Mosix is the head node 1147879809 A * tokkee pretty much does not know anything about *Mosix ;-) 1147879821 M * Bertl well, to make it short and simple: 1147879841 M * Bertl you start a process (think guest) on one node, and can migrate the computational part to another node 1147879855 M * Bertl but the I/O still stays on that node (the head node) 1147879924 M * tokkee Ah... I see... 1147879963 M * Wonka hmm... 1147879977 M * Wonka vserver on *mosix 1147880003 M * Bertl I would probably go for OpenSSI 1147880017 M * Wonka read what i mean ;) 1147880026 M * Wonka vserver on clustering-foo 1147880040 M * Bertl and let me state that once again, as soon as anybody is _really_ interested in doing/testing that, we can start working on it .. shouldn't be too hard :) 1147880283 M * tokkee ;-) 1147880554 M * derjohn Bertl, call me anybody ;) 1147880789 M * Bertl ah, okay, well, first step is to get a test setup ... 1147880816 M * Bertl you need two machines, both connected via serial console to a third one (or at least eachother) 1147880844 M * Bertl setup OpenSSI on both so that normal process migration works 1147880848 M * derjohn Bertl, I dont know anything about moosix, but I like the idea have i.e. gameserver nodes automatically pushed to some machine that had computing power left 1147880863 M * derjohn WTF is openssi ? /me ask google 1147880902 M * Bertl second step is to provide a clean kernel patch for OpenSSI and recent 2.6.16.x kernels 1147880946 M * derjohn Bertl, I have both Linuxtag machines here .... I can plug them into the cabinet and then we can do anything we want ... 1147880971 M * derjohn hm, but I guess we'll need Giagbit Interconnect? 1147880980 M * Bertl ah, not for testing 1147881019 M * derjohn For testing: I could (relatively easy) give them public IPs and start them as they are ... 1147881024 M * Bertl once that is working fine, you can always switch to GB 1147881045 M * derjohn (no mandriiva yet .... the mandrida machine is here, but 'naked') 1147881067 M * Bertl well, no requirement for me either, as you have to do the setup :) 1147881068 M * derjohn kir, Bertl do you remember the PW from Linuxtag ? 1147881084 M * derjohn Bertl, no setup, I leave them as they are .... 1147881091 M * Bertl kir? 1147881095 M * derjohn kir , sry 1147881105 M * derjohn (funny typo) 1147881124 M * derjohn wanted to type "k" like "ok" 1147881179 M * derjohn and the tab completion made its way ... 1147881191 M * derjohn Bertl, remember the PW? 1147881196 M * Bertl well, go crazy with OpenSSI, let me know once you can migrate 1147881205 M * Bertl yes, I remember 1147881236 M * derjohn Bertl, hehe, I thought I simply pull some kernel to the system and the rest is yours ;) 1147881276 M * derjohn Bertl, do you run openssi already? 1147881291 M * derjohn or am I the test-bunny? 1147881320 M * Bertl I had a look at it about a year ago ... 1147881346 M * derjohn k (no tab now) ;)), I'll take the latest Debian packages I can find. 1147881358 M * Bertl http://openssi.org/cgi-bin/view?page=openssi.html 1147881360 Q * Methos Quit: Methos 1147881375 M * Bertl 1.9.1 1147881407 M * derjohn how does it realte to drbd ? 1147881410 M * derjohn *relate 1147881429 M * Bertl well, you probably need a cluster aware filesystems too 1147881454 M * Bertl but you have a lot of options there: 1147881455 M * Bertl http://openssi.org/cgi-bin/view?page=features.html 1147881465 M * derjohn hm, so the head node does not offer a 'data channel' to the node? you need shared storage? 1147881533 M * Bertl openssi has no head nodes (as far as I understood) 1147881545 M * derjohn 'there is a clusterwide device model via the devfs code' -> shared hdX ? 1147881584 M * Bertl check it out, migrate your running apache from one machine to the other, kill the 'original' and let me know how it works for you ... 1147881585 M * derjohn clusterwide 'shared memory' ? must be slow ... 1147881610 M * derjohn Bertl, k, understood. I think: this evening, after sports .... 1147881625 M * Bertl whenever you feel like ... :) 1147881923 M * locksy Bertl, does the BME allow you to remount bind mounts to switch between ro and rw? 1147881939 M * Bertl it should 1147881962 M * locksy Hmm, That's what I thought. 1147882003 M * Bertl does it fail for you in some way? 1147882028 J * bonbons ~bonbons@83.222.38.81 1147882044 M * locksy If I have a running vserver with context 1001 and from the host I call: vnamespace -e 1001 -- chroot . mount -o remount,ro /srv/www 1147882071 M * Bertl where /srv/www is a bind mount? 1147882099 M * locksy It tells me there's no such mount, but there definitely is and it's in the mtab properly 1147882113 M * Bertl well, mtab is not really relevant 1147882122 M * Bertl but if it is there, try the following: 1147882140 M * Bertl vnamespace -e 1001 -- mount -o remount,ro /path/to/guest/srv/www 1147882232 M * locksy mount: can't find /var/lib/vservers/http/srv/www in /etc/fstab or /etc/mtab 1147882414 M * locksy added entry to host fstab and I get - mount: /var/lib/vservers/http/srv/www not mounted already, or bad option 1147882439 M * locksy same message as with chroot, but has full path. 1147882457 M * locksy (debian host and guest btw) 1147882472 Q * Viper0482 Ping timeout: 480 seconds 1147882616 M * daniel_hozac grep /srv/www /proc/mounts; vnamespace -e 1001 grep /srv/www /proc/mounts 1147882623 M * Bertl locksy: let's check with cat /proc/mounts 1147882628 M * Bertl jep :) 1147882664 M * derjohn Bertl, BTW: did you ever manage to mount an NFS share within a guest? I tried with capa binary_mount etc but I ended up with mounting from the host into the fs. And: I remember you (?) telling to take NFS V3 with TCP and nothing else (No v4, no udp) .. is that right? 1147882698 M * Bertl yup, and yes 1147882718 M * Bertl derjohn: but it might easily be that the kernel changed since 1147882736 M * derjohn do i need the rpc.lockd and portmap within the guest? 1147882750 M * derjohn or on the host? 1147882768 M * Bertl you need to be able to reach portmap 1147882783 M * Bertl locking depends on the mount options 1147882797 M * derjohn ok, so, run only one portmap (no matter where) .. 1147882814 M * Bertl it must be reachable, i.e. rpcinfo should work 1147882815 M * derjohn i did "tcp,soft" 1147882822 M * derjohn yes, k. 1147882833 M * locksy host: /srv/www is not in /proc/mounts 1147882851 M * locksy vnamespace: /dev/mapper/Debian-WWW /var/lib/vservers/http/srv/www xfs rw,nodev 0 0 1147882872 M * Bertl that looks like an xfs mount, yes? 1147882886 M * Bertl i.e. no bind mount (just to clarify) 1147882906 M * locksy vnamespace & chroot: /dev/mapper/Debian-WWW /srv/www xfs rw,nodev 0 0 1147882935 M * Bertl okay, so what do you actually want to do? 1147882946 M * Bertl remount the xfs filesystem read-only? 1147882958 M * Bertl or create a read-only bind mount for the guest? 1147882966 M * locksy no it is definetly a bind mount 1147882975 N * otaku42 otaku42_away 1147882979 M * daniel_hozac your kernel begs to differ ;) 1147883020 M * locksy the root of the xfs filesystem has a srv/www directory which is bind mounted into the vserver namespace 1147883047 M * Bertl daniel_hozac: ah, no, kernel shows it wrong ... 1147883059 M * locksy /proc/mounts never mentions bind 1147883074 M * Bertl yes, that's correct, another bug we should fix ... 1147883076 J * Viper0482 ~Viper0482@p54976273.dip.t-dialin.net 1147883093 M * locksy Yes please! 1147883130 M * locksy That is something that has annoyed me ever since I learnt about bind mounts a year or so ago. 1147883132 M * Bertl but the remount should work with the path 1147883147 M * Bertl try the following for a test: 1147883190 M * Bertl add an mtab entry on the host (for the dumb mount tools) 1147883216 M * Bertl /srv/www //var/lib/vservers/http/srv/www none rw,nodev,bind 0 0 1147883229 M * Bertl then do: 1147883255 M * Bertl vnamespace -e 1001 -- mount -o remount,nodev /var/lib/vservers/http/srv/www 1147883270 M * Bertl (just for a test, should not change anything but should not fail either) 1147883431 M * locksy nup. 1147883456 M * Bertl nup? 1147883466 M * locksy no. 1147883497 M * locksy " not mounted already, or bad option" 1147883530 M * Bertl imho your tools are broken then ... it works here, let me verify that with the latest kernel too 1147883549 M * locksy that's what I was afraid of... :( 1147883758 M * locksy hmmm... mkdir orig copy; mount --bind $PWD/orig $PWD/copy; mount -o remount,ro $PWD/copy; "mount: /home/staff/kris/copy is busy" 1147883820 M * Bertl here is what I do ... 1147883836 M * Bertl after a 'normal' new style guest startup on 2.6.16.16-vs2.0.2-rc20 1147883844 M * Bertl # vnamespace -e 1002 -- mount --bind /tmp /vservers/XXXN/opt/ 1147883849 M * Bertl # vnamespace -e 1002 -- mount -o remount,ro /vservers/XXXN/opt/ 1147883855 M * Bertl # vserver XXXN enter 1147883861 M * Bertl bash-2.05b# touch /opt/x 1147883861 M * Bertl touch: cannot touch `/opt/x': Read-only file system 1147883880 M * locksy bugger. 1147883892 M * Bertl assumed that your 'first' mount is executed from the startup scripts 1147883900 M * Bertl you will probably be missing the mtab entry 1147883913 M * Bertl I will now try without that one 1147884002 M * Bertl yes, now I get 1147884007 M * Bertl mount: can't find /vservers/XXXN/opt in /etc/fstab or /etc/mtab 1147884027 M * Bertl but adding the mtab entry makes it work quite fine ... 1147884042 M * locksy gentoo? 1147884053 M * Bertl nope, mandriva test system 1147884057 M * Hollow pong? 1147884059 M * Hollow :) 1147884062 M * Bertl lol! 1147884081 M * Bertl mount: mount-2.12 1147884289 M * locksy Well I guess debian either stuffs up mount_2.12r-8 or linux-image-2.6.16-1-vserver-686_2.6.16-12 (2.6.16.12 with vs2.0.2-rc18) 1147884347 J * mnemoc_ ~amery@216.241.24.10 1147884454 Q * mnemoc Ping timeout: 480 seconds 1147884472 M * Bertl locksy: if you have a static binary of your mount, I can test that for you 1147884698 M * Bertl you might also try if it works on the host ... 1147884743 J * shedi ~siggi@inferno.lhi.is 1147884760 M * Bertl welcome shedi! 1147884761 M * locksy no, it's definitely the debian mount binary, busybox mount works (at least on the host with entry in fstab) 1147884770 M * shedi thank you kind sir 1147884781 M * Bertl locksy: ah, good to know, so debian 'improved' that :) 1147884901 J * mnemoc ~amery@216.241.24.10 1147884909 Q * mnemoc_ Ping timeout: 480 seconds 1147885058 J * NetAsh ~NetAsh@88.222.136.221 1147885096 M * NetAsh hy 1147885371 M * locksy actually after further testing, I've realized there was a second bind mount on top (coming from a "mount --bind . ." I had in a script from an experiment) and I can't remount a bind mount where the source and destination are the same - I guess it's because there is no way of referring to the source anymore. 1147885492 M * locksy Yes: mount --bind /tmp/xxx /tmp/xxx; mount -o remount,ro /tmp/xxx will always fail... 1147885575 M * locksy If I mount something over the source in any way I can no longer remount. 1147885696 M * locksy I think it's about time to reboot... I've done so many mounts, binds, moves, umounts and vnamespaces I'm not sure what is where :) 1147886110 M * Bertl # vnamespace -e 1002 -- mount --bind /vservers/XXXN/opt/ /vservers/XXXN/opt/ 1147886110 M * Bertl # vnamespace -e 1002 -- mount -o remount,ro /vservers/XXXN/opt/ 1147886115 M * Bertl works fine here :) 1147886152 M * locksy aaarrggh! 1147886249 Q * lilalinux Ping timeout: 480 seconds 1147886277 M * Bertl hey NetAsh! 1147886571 M * NetAsh hey hey bertl 1147886757 J * lilalinux ~plasma@dslb-084-058-243-205.pools.arcor-ip.net 1147887387 J * dearaujo ~dearaujo@pixpat.austin.ibm.com 1147887627 M * dearaujo hello everyone - I was wondering if someone had some time to explain to me how Vserver comes together. That is, I am having a difficult time (conceptually) connecting how a Guest can actually run isolated from the Host. What's the encapsulation mechanism? 1147887701 M * daniel_hozac have you read http://linux-vserver.org/Linux-VServer-Paper? 1147887711 M * derjohn dearaujo, plaese check out the VServer paper on the wiki first. Look out for 'contexts' and 'xid'm which tag everything the vserver (read: guest or context) does. 1147887725 M * derjohn daniel_hozac, good idea :) 1147887798 M * derjohn dearaujo, and: did you ever mount a linux partition on an already running linux and changed via 'chroot' to the freshly mounted system? 1147887833 M * dearaujo derjohn: no, never 1147887867 M * dearaujo let me see if the kernel side implementation answers my questions 1147887870 M * dearaujo thanks guys 1147887914 M * derjohn dearaujo, ah, well, many admins did that to rescue a system. it would to understand what a chroot does... if that is clear the idea what to restrict within that environment get clear 1147887949 M * Bertl dearaujo: thing of it as: usually id -> resource, now you have id,xid -> resource (where xid is implicit) 1147887986 J * SpZ ~Spz@CBL217-132-73-232.bb.netvision.net.il 1147887995 M * Bertl welcome SpZ! 1147888005 M * dearaujo yes - i understand the concept of chroot, however, when you do say - vserver GUESTNAME start, how do processes get tagged, etc... 1147888008 M * SpZ Hi Gay 1147888035 T * SpZ Bertl = FucKinG Gay 1147888040 M * SpZ Bertl 1147888054 M * derjohn Bertl, i think we've seen that IP (net) the night before. 1147888059 M * Bertl SpZ: ah, our special friend with no clue 1147888090 M * Bertl SpZ: do you know the meanings of Gay? 1147888094 M * locksy dearaujo: chcontext --help 1147888106 M * SpZ wtf 1147888115 M * daniel_hozac dearaujo: the start process migrates into the context and executes the rc script or init. 1147888118 J * howiemou ~byoungine@dpc691914012.direcpc.com 1147888118 Q * SpZ autokilled: This host violated network policy. Mail support@oftc.net if you have any questions. 1147888123 Q * howiemou Open Proxy found on your host. Please visit http://www.blitzed.org/proxy?ip=69.19.14.12 for more information. 1147888138 T * derjohn http://linux-vserver.org/ | latest stable 2.01, 1.2.10, 1.2.11-rc1, devel 2.1.0, exp 2.{0.2,1.1}-rc20 | util-vserver-0.30.210 | libvserver-1.0.2 & vserver-utils-1.0.3 | He who asks a question is a fool for a minute; he who doesn't ask is a fool for a lifetime -- share the gained knowledge on the wiki, and we'll forget about the minute ;)' 1147888160 J * sarnold ~sarnold@sarnold.noc.oftc.net 1147888171 M * Bertl welcome sarnold! 1147888176 M * sarnold bertl :) evening 1147888182 M * weasel sarnold: it's just his silly script :) 1147888200 M * dearaujo so is it safe to safe that the context it one giant process? 1147888202 M * sarnold weasel: awwww here i thought i had a friend. 1147888203 M * locksy there is a syscall which will change the xid of the current process (if the xid is currently 0) and the all it's children will inherit that xid 1147888217 M * Bertl sarnold: weasel is just jealous ... 1147888241 M * sarnold Bertl: is that in the script too? :) 1147888274 M * Bertl yes, all wet-ware :) 1147888310 M * sarnold Bertl: oooh :) i'm still waiting for my upgrade 1147888357 M * dearaujo i think im starting to get it - and the kernel does permission checks based on these XIDs? 1147888368 M * Bertl sarnold: what do you want to be upgraded to? 1147888380 M * Bertl dearaujo: yes 1147888423 M * sarnold Bertl: posix 'sh' is getting old. i wish i were something fancy, like ksh. 1147888435 M * Bertl sarnold: the only thing I'm worried about is the turing police ... 1147888435 M * dearaujo ok great - it now makes sense - thanks guys 1147888448 M * Bertl dearaujo: you're welcome! 1147888457 M * sarnold Bertl: hehehe ok ok you win :) I can't keep up 1147888494 M * Bertl how's it going @oftc? 1147888549 M * sarnold Bertl: I think it's going pretty well :) 'course, weasel and EE do most of the work 1147888602 M * weasel I hope our new "coding team" actually delivers some of the "requested" bug fixes :) 1147888618 M * sarnold weasel: i keep filing bugs! 1147888640 M * weasel sarnold: you don't attach patches however :) 1147888645 M * Bertl ah, good, shall I report bugs/feature requests too? 1147888650 M * weasel sure 1147888653 M * weasel bugs.oftc.net 1147888656 M * sarnold Bertl: please ;) 1147888658 M * weasel (http) 1147888665 M * sarnold weasel: i'm more an 'idea rat' 1147888703 M * Bertl okay, will do so, thanks for working on improvements ... 1147889209 Q * dearaujo Read error: Connection reset by peer 1147889364 Q * mnemoc Ping timeout: 480 seconds 1147889719 J * dearaujo ~dearaujo@pixpat.austin.ibm.com 1147889765 J * brc bruce@20151170049.user.veloxzone.com.br 1147889833 Q * pzystorm Ping timeout: 480 seconds 1147889884 J * mnemoc ~amery@216.241.24.10 1147890181 Q * mire Ping timeout: 480 seconds 1147890676 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1147891018 Q * Viper0482 Remote host closed the connection 1147891114 N * Roey WorkRoey 1147891366 J * mtw ~after@200.96.91.159 1147891556 J * mtww ~after@200.96.91.159 1147891556 Q * mtw Read error: Connection reset by peer 1147891573 M * mtww How I can add a new ip address on my vserver? 1147891719 M * mtww Bertl? 1147891800 M * Bertl welcome mtww! 1147891827 M * Bertl mtww: best way is to shutdown the guest, add the config and restart it? 1147891899 J * mtw ~after@200.96.91.159 1147891907 M * mtw Bertl, how do i add a new ip address on my vserveR? 1147891923 Q * mtww Read error: Connection reset by peer 1147891965 M * WorkRoey Welcome mtw and Bertl! 1147891983 M * mtw hello :D 1147891986 M * WorkRoey hr, I suppose welcome^(-1) since I just came in 1147892002 M * WorkRoey hehey 1147892022 M * mtw WorkRoey do u know a way to add a new ip address on a vserver? 1147892085 M * Bertl mtw: how was the guest created? 1147892125 M * mtw with debian debootstrap 1147892241 M * Bertl okay, with or without the vserver tools? 1147892268 M * Bertl i.e. something like vserver build -m debootstrap? 1147892340 M * mtw yes 1147892348 M * mtw with build -m .. :D 1147892356 M * Bertl okay, did you specify some --interface there? 1147892361 M * mtw yes. 1147892422 M * Bertl okay, then you got a config in /etc/vservers 1147892434 M * Bertl for your guest, which already contains a dir called interfaces 1147892444 M * Bertl with probably one (or more) entries 0,1,2 ... 1147892492 Q * Oli_ Read error: No route to host 1147892492 Q * mtw Read error: Connection reset by peer 1147892493 Q * f_ Quit: Leaving 1147892579 J * mtw ~after@201.11.236.73 1147892685 Q * mtw Read error: Connection reset by peer 1147892691 J * mtw ~after@200.96.91.159 1147892701 M * mtw Bertl /etc/vservers/vps01/interfaces 1147892703 M * mtw what's next? 1147892710 M * mtw interfaces]# ls 1147892711 M * mtw 0 dev 1147892724 M * Bertl precisely, the '0' there is your one configured ip 1147892733 M * mtw yes. 1147892737 M * Bertl it is a subdirectory, containing the ip and such 1147892748 M * Bertl basically you can 'copy' that dir, e.g. to '1' 1147892756 M * Bertl and just adjust the settings there 1147892761 M * Bertl or you can create a new one 1147892766 M * mtw mkdir 1 ? 1147892770 M * Bertl e.g. 1147892782 M * Bertl it doesn't matter how it is named 1147892820 M * mtw ok, I created a dir named 1 with a file named ip with a new ip address written there 1147892843 M * Bertl good, have a look in the '0' dir for other entries 1147892858 M * mtw there's no other entries there 1147892860 M * mtw just 'ip' 1147892866 M * mtw # ls -la 1147892866 M * mtw total 12 1147892866 M * mtw drwxr-xr-x 2 root root 4096 May 14 08:12 . 1147892866 M * mtw drwxr-xr-x 4 root root 4096 May 17 12:06 .. 1147892866 M * mtw -rw-r--r-- 1 root root 13 May 17 12:06 ip 1147892874 M * Bertl okay, and that works for you? 1147892878 M * mtw yes 1147892893 M * mtw on /interfaces I have a file named dev 1147892899 M * Bertl ah, yes 1147892910 M * mtw with eth0 1147892925 M * Bertl so the other ip will be added to eth0 too 1147892940 M * mtw hmm 1147892942 M * mtw ok, let me try 1147893018 Q * NetAsh Quit: 1147893018 Q * mtw Read error: Connection reset by peer 1147893063 J * mtw ~after@201.11.236.73 1147893069 M * mtw didn't work Bertl. 1147893081 M * mtw I did restart the vserver, and the new ip was not assigned 1147893085 M * Bertl sure about that? 1147893094 M * Bertl check with 'ip addr ls' 1147893113 M * mtw on host? 1147893119 M * Bertl host or guest 1147893128 M * mtw on host, ip is assigned 1147893135 M * mtw on guest, this command does not exist 1147893145 M * Bertl well, then you have two options :) 1147893149 M * mtw but, with ifconfig I can't see that ip. 1147893152 M * Bertl a) install it 1147893164 M * Bertl b) use an old fashioned, 6 years old alias :) 1147893185 M * mtw what's the package name of 'ip' on dbian? 1147893193 M * Bertl iproute or iproute2 1147893210 M * Bertl the latter, btw, can be achieved by adding a 'name' entry to the '1' dir 1147893230 M * Bertl something like echo hansi >name, will give you eth0:hansi 1147893240 M * mtw hey, on ip addr ls I see the new ip 1147893296 M * mtw but it seems not working o.o 1147893328 M * Bertl ah, no, I guess it is working quite fine, you just expect it to do something different than it actually does :) 1147893350 M * Bertl first, let's figure your expectations :) 1147893400 Q * mtw Read error: Connection reset by peer 1147893469 J * mtw ~after@201.11.236.73 1147893474 M * Bertl wb mtw! 1147893479 M * mtw :/ 1147893489 M * mtw Bertl not working :| 1147893509 M * Bertl as I said, let's first figure what you expect it to do :) 1147893544 M * mtw i need it working normally.. like the other one 1147893563 M * Bertl both are 'working' normally as on a 'normal' linux system 1147893572 M * brc Hey bertl, i think i found a bugL: 1147893572 M * brc # /usr/lib/util-vserver/vhashify -v demo_syscp 1147893573 M * brc Initializing exclude-list for /fs5/vservers/demo_syscp (demo_syscp) 1147893573 M * brc Starting to traverse directories... 1147893573 M * brc Segmentation fault 1147893601 M * Bertl brc: ah, latest version, mainstream? (0.30.210)? 1147893612 M * mtw yes 1147893615 M * Bertl brc: in any case, please file a bug report to savannah 1147893629 M * daniel_hozac brc: distro? does make check work? 1147893660 M * mtw Bertl, so, why the new ip don't aswer to a ping command? 1147893672 M * mtw and, not listen to sshd connections.. 1147893684 M * Bertl from where do you ping it? 1147893691 M * mtw from my computer 1147893696 M * Bertl which is what? 1147893709 M * mtw in my house. the guest is running on a remote server 1147893716 M * Bertl a machine in the same lan, or in a completely different network? 1147893741 M * Bertl is it in the same network than the first ip? 1147893764 M * Bertl is it enabled (the ip) by your firewall/provider/router? 1147893787 J * mtww ~after@201.11.236.73 1147893801 M * mtww Bertl, what i should do? 1147893805 Q * mtw Read error: Connection reset by peer 1147893823 M * daniel_hozac for one, staying in the channel after asking questions is a good start. 1147893838 M * daniel_hozac or at least reading the logs. 1147893844 M * mtww i'm having troubles with my connections. 1147893859 M * Bertl yes, I can see that 1147893863 M * mtww hhehe ;P 1147893908 M * Bertl http://irc.13thfloor.at/LOG/2006-05/LOG_2006-05-17.txt 1147894418 M * Bertl okay, off for now .. back later ... 1147894424 N * Bertl Bertl_oO 1147894579 M * brc Bertl_oO: lastest version 1147894580 Q * mtww Read error: Connection reset by peer 1147894614 M * brc how can i file a bug report ? 1147894812 M * daniel_hozac https://savannah.nongnu.org/bugs/?func=additem&group=util-vserver 1147894849 M * daniel_hozac brc: a backtrace would be very interesting. 1147894903 Q * lilalinux Remote host closed the connection 1147895164 M * brc i forgot how to use gdb 1147895782 M * daniel_hozac ulimit -c unlimited 1147895789 M * daniel_hozac ... 1147895796 M * daniel_hozac gdb 1147895796 M * daniel_hozac bt 1147895932 J * eyck eyck@ghost.anime.pl 1147895939 J * enet ~jpduyx@adsl-228-22.dsl.uva.nl 1147896139 M * enet hi how are you all 1147896168 M * enet i was wondering if vserver is already being used on (debian sarge) production servers 1147896201 M * daniel_hozac for sure. 1147896246 M * enet how stable is it ? is there documentation that i can use to convince my boss ? 1147896303 M * brc ok 1147896763 J * yarihm ~yarihm@80-218-6-5.dclient.hispeed.ch 1147897042 M * eyck enet: what are you going to use it for? mass-vhosting? priviledge separation? generel managment improvement? 1147897106 M * eyck generally 2.6 versions are as stable as 2.6 1147897123 M * derjohn enet, tell him it runs c00l. tell him that the debian compile farm (buildd) is partly in vserver :) 1147897153 M * derjohn enet, so if he trusts debian ... ah, and : we have everything you in in sid .. i mean: binary kernels. 1147897168 M * derjohn enet, think about a host on Sid and guests on sarge. 1147897209 M * eyck hmm, derjohn: are you sure about that? ... 1147897220 M * derjohn eyck, about what? 1147897222 M * eyck you would want your host to be stable 1147897229 M * eyck derjohn: about host on sid. 1147897250 M * derjohn eyck, ah, sure .... no one can host an sarge without backports. 1147897251 M * eyck if sid brakes..as happens from time to time, you're F**CKed 1147897274 M * enet hey eyck it will be used mainly for priviledge seperation, 1147897275 M * enet and improving the management and availability by ease of moving / duplicationg the vservers to other machines 1147897278 M * derjohn eyck, personally I host on Sid ... but: I recommended enet to put sid on the _host_ 1147897323 M * eyck I prefer my host to be as stable as possible, when one of guests brakes... or well, shit happens, I can fix it from the host. 1147897330 M * derjohn eyck, what services do you expect a _host_ to run? sshd and a kernel. there cant brake much :) 1147897348 M * eyck derjohn: you never had libc to brake on you? 1147897355 M * derjohn eyck, no. 1147897364 M * enet hey eyck and derjohn, i have a testing machine with sarge and an apt-pinning construction to use the kernel and vserver utils from Sid, but i don't trust Sid on a production machine 1147897386 M * derjohn eyck, except about 3 or 4 years ago .. there was a general switch on glibc (they dropped deprecated stuff) 1147897391 M * eyck derjohn: you must be very young and unexperienced... oh well we'll wait for you to gather experience.. 1147897412 M * derjohn enet, won't work. too much dependencies (kernel 2.6.16 -> yaird etc.) 1147897423 M * eyck enet: my machines are used exactly this way, 1147897435 M * derjohn eyck, :) in business since > 10 years 1147897450 M * eyck enet: and those are mission-critical machines, 1147897476 M * eyck derjohn: so, either you haven't had libc brake on you, or it happend 3 or 4 years ago, decide please. 1147897491 M * eyck derjohn: you're supposed to learn from your mistakes, you know...;) 1147897513 M * derjohn eyck, no glibc problems on servers so far. I apt-get several times per month usually (I dont talk about desktop pc .. kde et al. brake often during transitions) 1147897522 M * derjohn eyck, ok :)= 1147897565 M * derjohn eyck, and have lots of fun by upgrading from sarge (2.4 default!) to etch (2.6). no upgrade path sdo far .... 1147897595 M * derjohn eyck, what PHP Version do you run on sarge? 1147897596 M * eyck enet: but you won't find much document on such scenarios, people that use vserver like this don't brag about it in public docs.. 1147897631 M * eyck derjohn: I run real soft on my servers, no php for you ;) 1147897646 M * derjohn eyck, well, what kernel do you run? 1147897658 M * eyck 2.4.32 1147897670 M * eyck is there any better? 1147897682 M * derjohn eyck, its not my question what I want, we do hosting, and custmers want to see. even php5 are often reqiurement. 1147897706 M * derjohn eyck, crappy performance on 2.4 ion many things. 1147897735 M * derjohn eyck, did they backport all the sata stuff (I didnt follow anymore ..) 1147897737 M * eyck derjohn: not a problem, with stable host you can more or less safely run anything in host, including php5 1147897746 M * derjohn eyck, backports.org ? 1147897761 M * derjohn eyck, or did you mean; in a guest? 1147897768 M * eyck what what? 1147897784 M * derjohn eyck, php5 is not in sarge AFAIK 1147897794 M * eyck it is in MY sarge ;) 1147897803 M * derjohn I meant if you run special 'guests' with sid in it 1147897842 M * eyck derjohn: most of the SATA works out-of-the box, but I had to backport one driver lately, but this was for my workstation, I don't touch servers with SATA 1147897858 M * enet i already noticed there was not much documentation on scenario's :(i added sid to /etc/apt/sources.conf and set it to a lower pinning (if i understand that consept right, it means it uses Sarge as main choice, unless i say to use Sid) 1147897859 M * enet than i did an apt-get install -t sid kernel-image-vserver*** (the -t option to use Sid and solve the depend 1147897866 M * derjohn eyck, well, thats the other way to go. but in my business case this is not an option. i want security upgrades from the upstream disti .... 1147897882 M * derjohn (cannot compile all stuff every time again ...) 1147897914 M * eyck enet: pinning doesn't work very well, unfortunately, AFAIK backporting is the only option 1147897924 M * eyck derjohn: why? you ain't got power? 1147897937 M * derjohn enet, you can also set the default-release in preferences, but pinning is cool, to .. 1147897964 M * enet yes i remember setting the default-release 1147897968 M * eyck it takes <1hour to recompile everything I use, and this includes some bigger stuff 1147897983 M * derjohn eyck, no. if I would have to compile that stuff with every buglet again ... no ... it not only one package ... it hundreds .. 1147898004 M * derjohn and: you have to stay close to all those MLs .... 1147898013 M * enet but i am wondering, sid can break, so if one of the parts of sid breakes and vserver depends on those parts, my hosting machine will break, with all my guests, or am i mistaken 1147898015 M * derjohn (to get an idea _when_ to upgrade) 1147898039 M * eyck derjohn: hundreds? what do you use ? 1147898058 M * eyck enet: if you keep your host at sarge/stable, then it won't brake 1147898072 M * derjohn enet, what do you mean by "if sid will break"? Usually only dependencies brake, not the software itself 1147898073 M * derjohn # dpkg --get-selections |wc -l 1147898073 M * derjohn 748 1147898075 M * eyck enet: at worst, one of your guests might brake 1147898092 M * eyck you backport EVERYTHING? 1147898114 M * eyck what's the use... you could run experimental and that would be the same 1147898115 M * derjohn eyck, ldap, apache, apache-ssl, mysql, phpmyadmin, cactim, quagga etc etc etc (just to point some out) 1147898132 M * eyck hmm, what is wrong with apache? 1147898135 M * eyck and mysql? 1147898140 M * eyck and phpmyadmin? 1147898160 M * derjohn eyck, should I forward the debain-secutity list to you? 1147898173 M * eyck ? 1147898178 M * derjohn eyck, all had minor or not so minor problems. 1147898189 M * eyck well, all software has problems 1147898192 M * derjohn *debian-security 1147898205 M * eyck that why you froze the version you use and keep fixing bugs 1147898228 M * derjohn eyck, yes, but that wont work for your self compipled stuff, nor? 1147898248 M * eyck why, exactly? 1147898320 M * enet so best way is keep sarge as host and recompile my own kernel with vserver support, 1147898320 M * enet or is it also possible to use the kernel and vserver from the Sid version ? 1147898320 M * enet or is it backported ? 1147898320 M * enet are there much security issues for the kernel ? 1147898320 M * enet i feel that recompiling my the kernel every time for the vserver support is not much of an option at this point, so i'd like to have a distribution kernel with vserver support 1147898335 M * derjohn if you compiled e.g. an own php5 package on srage. and this particular version has an bug, e.g. buffer overflow. How would you expect it to be fixed? By debian sec ? 1147898344 M * derjohn 2.6.16.16 1147898348 M * derjohn security fix. 1147898362 M * derjohn btw: discovered by doener_ and daniel_hozac ;) 1147898393 M * eyck enet: 2.6.x have been going downhill lately, there are security issues at least twice a month 1147898430 M * derjohn enet, yes. I provide an 2.6.14 rc 16 or so for sarge as .deb package. 1147898442 M * derjohn enet, as well as an updated util-vserver .deb 1147898448 M * eyck derjohn: yeah, there is debian security support for testing, so yeah, sure, I expect it to be fixed by debian sec. 1147898456 M * derjohn but: I didnt makr a new for some month 1147898468 M * enet i c ... 1147898473 M * daniel_hozac util-vserver at least is in backports.org. 1147898492 M * derjohn eyck, if YOU compiled PHP5 there wont be any fix for PHP5 - its not a part of debian , ehy should they fix ? 1147898520 M * enet i found that util-vserver, but recompiling a kernel twice a month, is not my hobby right now (or not my experience so i better keep away from it on production systems) 1147898564 M * daniel_hozac backports.org has some vserver kernels too. 1147898583 M * enet mmm maybe i should check them out again than 1147898589 M * eyck derjohn: you know, I compile those packages from some sources, it's not like I wrote it myself, and they do support testing, so since I based my package on that, I get a security fix, 1147898594 M * derjohn enet, yes, then apt-get source kernel 2.6.8 from sarge, patch out stable rc20 in, and make-kpkg 1147898599 M * daniel_hozac (http://backports.org/debian/pool/main/l/linux-2.6/) 1147898643 M * derjohn eyck, there is absolutely no support for php5 from debian sarge. If you take those from backports.org, they _maybe_ fix issues .. 1147898686 M * eyck derjohn: there is absolutely support for php5 1147898692 M * derjohn eyck, source ? 1147898735 M * enet thanks 1147898751 M * enet how about multiple prosessor support ? 1147898754 M * eyck derjohn: deb-src http://ftp.pl.debian.org/pub/debian etch main 1147898759 J * mire ~mire@238-167-222-85.COOL.ADSL.VLine.Verat.NET 1147898768 M * eyck enet: how many have you got? ;) 1147898796 M * derjohn eyck, etch is not sarge .... is in no way stable. we talk about sarge, dont we? 1147898818 M * eyck derjohn: so? 1147898830 M * derjohn eyck, an apt-get dist-upgarde wont fetch yot new sources. you have to do it manually. 1147898838 M * eyck sure it will 1147898842 M * derjohn eyck, and how do you know when it's time to do so? 1147898846 M * eyck I do it daily 1147898854 M * derjohn eyck, daily compile? 1147898859 M * derjohn eyck, buildd? 1147898863 M * eyck no, daily dist-upgrade 1147898863 M * enet eyck, well only 2 1147898877 M * eyck enet: you should not encounter problems 1147898889 M * derjohn eyck, dist-upgrade wont help you in getting new sources. only binary packages. 1147898910 M * eyck derjohn: so? I'm providing those binary packages 1147898912 M * derjohn --> deb-src http://ftp.pl.debian.org/pub/debian etch main <--- for that you wont get any updates automagically 1147898923 M * derjohn when do you build them? 1147898925 M * eyck why not? 1147898936 M * eyck when I feel like it, I've got great intuition 1147898946 M * eyck plus, you've heard of debian-security? 1147898950 M * eyck and bugtraq? 1147898961 M * derjohn nox, they dont. you have to dpkg-buildpackage by hand or your system is not in shape. 1147898980 M * nox (; 1147899000 M * eyck whose 'they' and what do they 'dont' ? 1147899014 M * derjohn nox, sry :) 1147899025 M * nox np 1147899055 M * derjohn well, eyck, back to the secnario: example: you apt-get source php5-foo-bar and do a dpkg-buildpackage. 1147899063 M * derjohn today 1147899071 M * derjohn (for example) 1147899082 M * eyck ok. 1147899082 M * derjohn then you install your php5 foo 1147899086 M * derjohn today 1147899089 M * eyck ok. 1147899093 M * derjohn and this sarge system 1147899107 M * eyck yes. 1147899110 M * derjohn and tomorrow there comes out a new php5-fixed-whatever. 1147899114 M * eyck sure 1147899130 M * derjohn ok, how will this fix get into you _running_ system? 1147899141 M * eyck we call it apt-get ;) 1147899150 M * derjohn apt-eget source of course 1147899153 M * derjohn or? 1147899161 M * eyck apt-get update;apt-get upgrade 1147899169 M * derjohn eyck, no. 1147899176 M * eyck yes 1147899178 M * derjohn php5 id not part of srage. 1147899182 M * derjohn sarge. 1147899191 M * eyck you've got a very strange point of view. 1147899218 M * derjohn eyck, no. --> apt-get update;apt-get upgrade <-- what do you expect them to do? 1147899247 M * eyck notice my fixed package, and install it, what else 1147899248 M * derjohn eyck, do you use debian-security from etch, too? 1147899255 M * eyck what do YOU expect them to do? 1147899259 M * derjohn your fixed package? 1147899268 M * eyck my fixed package? 1147899272 M * derjohn easy: they update debian _sarge_ 1147899302 M * derjohn notice my fixed package 1147899312 M * derjohn you wrote "my" 1147899314 M * derjohn notme 1147899323 M * eyck yes, and? 1147899358 M * derjohn well, apt-get (dist-)upgrade only take stuff that the debian people compiled. 1147899366 M * derjohn and thats onyl the php4 stuff from srage 1147899379 M * derjohn *sarge 1147899384 M * eyck well, that's your opinion 1147899394 M * eyck and I don't know what makes you think that 1147899409 M * eyck but you're a human beeing and are entitled to have an opinion 1147899413 M * eyck so what can I do 1147899469 M * derjohn eyck, you dont want to listen. i wont waste more time on that. if you are really interested, check out how many php5 packages there are in sarge. 1147899491 M * derjohn sure you can 1147899506 M * derjohn i didnt want to force you to anything, just point out. 1147899553 M * derjohn but thats offtopic here anyway ... enet: We didnt want to scare you. Debian's not that worse ;) 1147899574 J * Aiken ~james@tooax6-202.dialup.optusnet.com.au 1147899580 M * eyck \h:\w\$ cat /etc/debian_version 1147899581 M * eyck 3.1 1147899590 M * eyck dpkg -l php5-cgi 1147899591 M * eyck ii php5-cgi 5.0.5-3 server-side, HTML-embedded scripting language (CGI binary) 1147899621 M * derjohn eyck, that's your own deb , not that fronm sarge? 1147899637 M * eyck that's what we were talking about, right? 1147899645 M * derjohn yes, no problem so far. 1147899660 M * derjohn buti claim that debian-sec wont update that 1147899674 M * eyck I claim that they will 1147899681 M * eyck because they support etch 1147899705 M * derjohn eyck, if you use debian-secuity of etch (apt source() they _may- 1147899708 M * derjohn _may_ 1147899728 M * eyck well, if they won't then I will, 1147899732 M * eyck what's the problem? 1147899776 M * derjohn eyck, that what out start was: how do you know? bugtag? upstream ML =? 1147899802 M * eyck female intuition. 1147899812 M * derjohn eyck, *lol* ok ! 1147899822 M * derjohn eyck, that counts ... :) 1147899865 M * eyck yes. plus, you can't afford to not follow bugtraq, deb-sec is sometimes quite slow:( 1147899877 M * derjohn eyck, sadly, yes. 1147899913 M * eyck gotta go, bye. 1147899919 M * derjohn eyck, bye ! 1147899920 M * derjohn n8 1147900779 Q * yarihm Quit: Leaving 1147901233 Q * bonbons Quit: Leaving 1147902649 Q * dearaujo Quit: goodbye 1147902946 M * derjohn enet, sill there? 1147903782 Q * dna Quit: Verlassend 1147903959 M * enet derjohn 1147903960 M * enet sorry 1147904018 M * derjohn enet, no need to say sorry. I just wondered if our sarge vs. sid bashing scared you. :) 1147904046 M * enet no i was busy with brushing my teeth .... 1147904063 M * derjohn enet, no matter which way you go, as an VServer user for about 18 month I can say this magic works well. 1147904097 M * derjohn enet, well, if that took all your time since them you musst bleed now ;) 1147904129 M * derjohn enet, any technical questions left? 1147904141 M * Skram ive been using VServer for... 10 months. 1147904143 M * Skram About then 1147904149 M * enet for today no questions left 1147904152 Q * brc Ping timeout: 480 seconds 1147904157 M * Skram used it for a lot more, recently, for ~6 months 1147904208 M * derjohn enet, we hope to be in them mainline kernel some day .... some users here fight for every salami slice to be adapted into mainline :) 1147904232 M * enet i 've been playing a little with it and i do like this magick, i was only wondering a lot about the security update and package support in debian, when using sid, or the troubles of compiling a custom made kernel 1147904234 M * derjohn enet, youre welcome here. use it and spread the word ;) 1147904238 M * jpacheco that's be soooo sweet if it was in the mainline kernel 1147904245 M * Skram Indeed,. 1147904284 M * derjohn well, in former times I provided my (signed) kernel debs, but stopped as there appeard vserver enabled kernels in Sid. 1147904284 M * enet so what about what i heard "(22:18:44) derjohn: enet, tell him it runs c00l. tell him that the debian compile farm (buildd) is partly in vserver :)" 1147904337 M * derjohn enet, yes, I met some DDs on Linuxtag who run the Debian buildd for ARCH Alpha in a VServer guest 1147904363 M * derjohn enet: And: In Sid they integrated VServer, I expect it to be in etch soon. 1147904363 M * enet that is hopegiving 1147904397 M * enet only there is still a little lack of a centralised documentation of this project 1147904413 M * derjohn yes, it is. XEN also made it into sid, in Debian experimental there are even hybrid kernels. 1147904424 M * derjohn enet, thats what we are working on. 1147904443 M * derjohn enet, new wiki+webgit ... (thats the plan) 1147904469 M * derjohn enet, ah your are from .nl ? You may join our VServer working weekend this year. 1147904474 M * enet that;s cool. but the problem maybe also because it seems to be running smoothly for the people who tried it and nobody likes to talk in publick how they run their systems 1147904490 M * enet i'd like to join the VServer working weekend 1147904500 M * derjohn enet, I am organsiing some marekting foo for VServer at the moment. 1147904529 M * derjohn enet, we had a booth at linuxtag (gallery.linux-vserver.org) .. now we try to make thos project more public. 1147904558 M * enet there will be a linux ... something at the end of this year in holland again too, i guess 1147904573 M * derjohn enet, it will be most likely in Nuermberg, Germany 1147904599 M * enet will it be announced on the website also ? 1147904678 M * enet hey if you are busy with a new documentation place, keep in mind there are many people (like me) who like to have a version that can easily be printed, unlike a paper like : http://linux-vserver.org/Linux-VServer-Paper wich is split into many different parts 1147904722 M * derjohn enet, there is work in progress .. I dunno if we annouce it or how "public" it will be. Of course we need everyone who wants to contribute, e.g. work on the website or docs 1147904749 M * derjohn http://linux-vserver.org/Work+Retreat <---- this is our idle^W working day ... 1147904774 J * Methos ~mjoconr@hacker.pineview.net 1147904808 M * derjohn enet, if you give me your e-mail, I will inform you, if you like. 1147904841 M * derjohn everyone else listening (lurking): the same is true for YOU ! ;) 1147904883 M * derjohn enet, yes, I made up the first plans to create a real book about vserver 1147904908 M * derjohn ehm, /me and some others ... 1147905072 M * tokkee derjohn: http://linux-vserver.org/Work+Retreat sounds like a great idea - I'd definitly like to attend. 1147905093 M * derjohn tokkee, didnt you hear already? 1147905105 M * tokkee derjohn: Nope, I didn't... 1147905123 M * tokkee I did not read most of the backlog lately... 1147905124 M * derjohn tokkee, add you to the attendee list .. and tell the others whoo might have missed the page ;) 1147905145 M * derjohn tokkee, maybe you were not on the vserveratlinuxtag - ML . 1147905170 M * derjohn tokkee, you email addy (p-msg?) 1147905208 P * enet 1147905237 M * derjohn teukka, ok. thx. 1147905356 M * derjohn teukka, sr. 1147905358 M * derjohn tokkee, thx 1147908314 Q * Methos Quit: Methos 1147909093 J * Methos ~mjoconr@hacker.pineview.net 1147909865 M * gdm great photos :-) ... but i don't recognise this one? - 1147909868 M * gdm http://gallery.linux-vserver.org/main.php?g2_itemId=29 1147910052 M * derjohn gdm, this is 'Bertl' 1147910077 M * gdm heheh - that's what i was thinking actually :-) 1147910131 M * gdm now, i'm in the onfortunate position that my server has gone offline and won't be back for a few days at least, it seems 1147910142 M * gdm so i will try to have a little look at some of the documentation issues as well 1147910159 M * derjohn gdm, broken? 1147910199 M * gdm yep. just stopped working at some point, then wouldn't reboot :/ 1147910232 M * gdm well, would boot as far as trying to decrypt the partitions ready to mount 1147910234 M * derjohn gdm, hm, sounds like HW failure 1147910260 M * gdm but hung between entering the password for /var/ and getting the prompt for /var/lib/vservers/ 1147910295 M * gdm yes, it does, derjohn, but i am in a different country rom the server, makes diagnostics hard for me 1147910305 M * derjohn gdm, well, hm, bad luck :( 1147910309 M * gdm i need to rely on when someone else can get to the colo facility 1147910316 M * derjohn gdm, where are you from? 1147910319 M * gdm yep. such is life 1147910323 M * gdm .uk 1147910326 M * derjohn and: where is you server located? 1147910331 M * gdm usa 1147910358 M * derjohn gdm, well, yes, a little far :) If I can help you out with a guest, then tell me ... 1147910390 M * gdm derjohn: that is very kind, thank you