1152926688 Q * DreamerC_ Quit: leaving 1152926707 J * DreamerC ~dreamerc@59-112-0-189.dynamic.hinet.net 1152927010 J * linuxpoet ~jd@or-67-76-146-141.sta.embarqhsd.net 1152927037 Q * Nam Read error: Connection reset by peer 1152927090 J * Nam ~nam@70.71.224.66 1152927807 J * FaUl_ immo@shell.chaostreff-dortmund.de 1152927807 Q * FaUl Read error: Connection reset by peer 1152928046 M * doener waldi: I probably know what and why it happens, but not how to fix it... 1152928794 M * micah doener: mount -oremount,noexec /proc fixes it :) 1152928848 Q * Nam Read error: Connection reset by peer 1152928855 M * doener well, yeah, but's that's more like a workaround 1152928861 M * doener s/but's/but/ 1152928903 J * Nam ~nam@70.71.224.66 1152928953 M * micah yeah, supposedly linus has a patch to fix it already 1152929607 M * doener micah: btw, nosuid would also work ;) 1152929612 M * doener (to fix it) 1152929629 Q * Nam Ping timeout: 480 seconds 1152929637 P * linuxpoet 1152929720 M * micah doener: good point :) 1152930265 M * doener micah: yeah, it just appeared in his git tree, conflicted with my patch :) 1152930315 M * doener ... Linus' patch that is 1152930432 M * doener well, "just" being a few hours ago if my timezone math is right... should have checked that from time to time instead of wasting hours with debugging sth. that got fixed already 1152930505 M * doener well, at least I created almost the same patch, so I obviously learned sth. along the way :) 1152930680 M * micah :) 1152930690 M * micah doener: have a url to the patch? 1152930724 M * doener http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=18b0bbd8ca6d3cb90425aa0d77b99a762c6d6de3 1152930786 M * micah thanks 1152930804 M * micah thats it? 1152930810 M * doener it just does an automatic chmod 0000, mine did chmod -s ;) 1152930816 M * micah its only + inode->i_mode = 0; :) 1152930823 M * doener yeah, makes the file non-executable 1152930867 M * doener the problem was that the code did first open the file and later read it. the proc code has a nasty race there 1152930901 M * doener when the task is dumpable, files are root-owned and you cannot read them 1152930913 M * doener s/dumpable/not dumpable/ 1152930918 M * doener (bad typo!) 1152930932 M * doener otherwise, they are owned by the task uid, and readable 1152930966 M * doener now the exploit set the permissions to 4755, made the process non-dumpable (gets you a suid-root environ file) 1152931011 M * doener execve reads those settings, in the meanwhile, the task is made dumpable -> reading succeeds and the tainted environment does its job 1152931161 J * mire ~mire@156-166-222-85.COOL.ADSL.VLine.Verat.NET 1152932970 M * doener good night! 1152933073 J * Nam ~nam@S0106001195551ff0.va.shawcable.net 1152933398 M * Skram night 1152935305 Q * mountie Server closed connection 1152935311 J * mountie ~mountie@CPEdeaddeaddead-CM000a739acaa4.cpe.net.cable.rogers.com 1152937935 J * Term_ ~PhAnATiC@201.137.5.133 1152942851 Q * Hollow Server closed connection 1152942857 J * Hollow ~hollow@2001:a60:f026::1 1152943108 Q * mire Ping timeout: 480 seconds 1152944824 Q * Term_ Quit: (-(PS)-) [v5.0.r02] http://www.kalendas.net 1152946263 J * dna ~naucki@dialer-154-35.kielnet.net 1152948785 J * gerrit ~gerrit@c-67-160-146-170.hsd1.or.comcast.net 1152949650 Q * cdrx Quit: Leaving 1152950497 Q * michal` Ping timeout: 480 seconds 1152951119 J * michal` ~michal@www.rsbac.org 1152951769 Q * bragon Server closed connection 1152951786 J * bragon ~bragon@sd866.sivit.org 1152952112 Q * jkl Server closed connection 1152952116 J * jkl eric@c-71-56-216-223.hsd1.co.comcast.net 1152952336 J * bonbons ~bonbons@83.222.39.166 1152954333 Q * doener Server closed connection 1152954339 J * doener ~doener@host.magicwars.de 1152954923 Q * phreak`` Server closed connection 1152954952 J * phreak`` ~phreak``@140.211.166.183 1152955138 J * Smutje_ ~Smutje@xdsl-84-44-185-147.netcologne.de 1152955218 Q * matled Server closed connection 1152955218 J * matled ~matled@85.131.246.184 1152955239 Q * Smutje Ping timeout: 480 seconds 1152955239 N * Smutje_ Smutje 1152956487 J * coocoon ~coocoon@p54A07BD0.dip.t-dialin.net 1152956516 M * coocoon morning 1152958213 Q * nebuchadnezzar Quit: ERC Version 5.1.2 $Revision: 1.796.2.4 $ (IRC client for Emacs) 1152958308 J * nebuchadnezzar ~nebu@zion.asgardr.info 1152959357 Q * bonbons Remote host closed the connection 1152959589 J * lilalinux ~plasma@80.69.35.186 1152959755 Q * coocoon Quit: KVIrc 3.2.0 'Realia' 1152959761 J * bonbons ~bonbons@83.222.39.166 1152961325 N * Bertl_oO Bertl 1152961330 M * Bertl morning folks! 1152961345 M * phreak`` morning Bertl 1152961346 M * phreak`` ! 1152961364 M * Hollow hey Bertl! LTNS :) 1152961376 M * Hollow still connection problems? 1152961389 M * Bertl indeed, and I'm still short of the promised patches :) 1152961415 M * Bertl but the good news is, we will soon have ADSL here! yay! 1152961422 M * Hollow w00t ;) 1152961500 M * Bertl Hollow: but I already figured the interfaces for the missing limit and socket accounting to userspace, so it should not be too hard to provide you with that till monday or maybe tuesday I'd say ... 1152961515 M * Hollow ok, great 1152961559 M * Bertl the switch changes are working fine except for the ENOSYS issue? 1152961578 M * Hollow i even did not encounter an ENOSYS error :) what is it about? 1152961601 M * Bertl nah, unknown syscall commands are supposed to return ENOSYS 1152961607 M * Hollow it's running pretty well here for 4 days now 1152961615 M * Bertl but currently (caused by a bug) they return EPERM 1152961616 M * Hollow ah, guess i didn't test all 1152961651 M * Bertl should not be a problem in real life, only for debugging 1152961681 M * Hollow yeah.. btw, did you decide on the new versioning yet? 1152961709 M * Bertl it seems that nobody really objected, so I still consider it a good idea :) 1152961729 M * Bertl but I will do a short querstionare on the ML too ... 1152961740 M * Hollow ok, i'm all for it ;) 1152961802 M * Bertl okay, I have to run now ... have fun, and cya! 1152961808 M * Hollow cu 1152961814 N * Bertl Bertl_oO 1152962355 Q * lilalinux Remote host closed the connection 1152962710 J * lilalinux ~plasma@h1-gw.of.net-lab.net 1152963331 J * meandtheshell ~markus@85-124-233-68.work.xdsl-line.inode.at 1152963974 M * daniel_hozac so did anyone try the new root exploit in a guest yet? 1152963999 M * mnemoc who is affected? 1152964038 M * phreak`` mnemoc: apperently all linux kernel versions prior to 2.6.16.25 and 2.6.17.5 (iirc) 1152964046 M * mnemoc uff 1152964063 M * phreak`` (at least the 2.6 tree) 1152964101 M * phreak`` if daniel_hozac is talking about http://lists.grok.org.uk/pipermail/full-disclosure/2006-July/047907.html 1152964116 M * daniel_hozac right. 1152964119 M * phreak`` being CVE-2006-3626 1152964149 M * phreak`` daniel_hozac: only tested it on the host, but good idea :) 1152964958 M * daniel_hozac i must be too stupid for it, i can't even get root on the host. 1152965154 M * daniel_hozac oh, there we go. 1152965601 Q * dna Quit: Verlassend 1152966450 J * dna ~naucki@dialer-154-35.kielnet.net 1152966817 M * doener daniel_hozac: should work in a guest as well, will get you euid 0, it just creates a setuid-root executable, no special permissions needed 1152966902 M * daniel_hozac i keep getting permissions denied, and "xid=8001 messing with the procfs" in dmesg. 1152966902 Q * shedi Read error: Connection reset by peer 1152966940 M * doener the exploits taints /proc/$pid/environ, and a race allows to switch between "suid-root non-readable" and "suid user readable" in a way that gets you the desired result 1152966986 J * mire ~mire@249-166-222-85.COOL.ADSL.VLine.verat.net 1152967124 M * doener hm, chmod is indeed blocked 1152967230 M * doener Never thought that the check is that strict 1152967846 J * shedi ~siggi@inferno.lhi.is 1152968583 Q * ray6 Server closed connection 1152968583 J * ray6 ~ray@vh5.gcsc2.ray.net 1152969525 J * pusling ~pusling@cpe.atm4-0-7285.0x50c44806.boanxx19.customer.tele.dk 1152970268 Q * mountie Ping timeout: 480 seconds 1152972123 J * mugwump_ ~samv@watts.utsl.gen.nz 1152972124 Q * mugwump Read error: Connection reset by peer 1152973374 Q * tokkee Server closed connection 1152973375 J * tokkee tokkee@casella.verplant.org 1152975005 Q * mire Quit: Leaving 1152975501 Q * nebuchadnezzar Quit: ERC Version 5.1.3 (IRC client for Emacs) 1152975666 J * nebuchadnezzar ~nebu@zion.asgardr.info 1152976768 J * Pazzo ~thomas@host130-250-static.72-81-b.business.telecomitalia.it 1152976812 M * Pazzo Hi @ll! 1152976834 M * doener hey Pazzo! LTNS! 1152976935 M * Pazzo Hi doener!!! 1152976952 M * Pazzo long time, yeah :-) 1152977034 M * Pazzo A lot of things have changed in my life recently... 1152977046 M * Pazzo How are you? Everything fine? 1152977088 M * doener pretty busy, lot of annoying stuff to do, but fine otherwise 1152977093 M * Pazzo (Maybe I'll be here 1152977101 M * doener and you? good or bad changes? 1152977112 M * Pazzo good changes :-) 1152977143 M * Pazzo I don't know if you remember - I have been running my own business for some year... 1152977163 M * Pazzo ...I had lots of work, great customers... 1152977200 M * Pazzo ...but I did one big mistake: I did most of the work for free, like: 1152977210 M * doener yeah, I remember that (at least somewhat ;) 1152977232 M * Pazzo "no, this was just half an hour of work, just pay me something to drink once we meet again..." 1152977249 M * doener ah, I know that... 1152977260 M * Pazzo I hate writing bills 1152977265 M * doener same here :) 1152977297 M * dna :) 1152977323 M * Pazzo And so after four years working all day and all night just to make my customers happy without taking care of myself I decided that I should better change something in my life. 1152977439 Q * Medivh Read error: Connection reset by peer 1152977673 M * Pazzo Most other people told me that it would be totally crazy to stop my business with my knowledge and my customers -> "I would give my right hand for..." and I also got (different) impressive offers for agreeing to found a new company with someone else / some other people... 1152977720 M * Pazzo ...but after some month I finally decided to stop my business and let myself get employed - to find back to some "normal" way of life... 1152977807 M * Pazzo ...so right now I work for a local ISP (has been my customer before, I did all there vServers and many other things) - and I'm really happy about my decision! 1152977861 M * Pazzo So it could happen that you'll meet me more often right here in the near future :-) 1152977883 M * doener heh, that's a good thing indeed :) 1152977919 J * mkhl ~mkhl@200-148-40-64.dsl.telesp.net.br 1152978129 M * Pazzo doener: is it possible to escape from a vServer using the prctl exploit or will you "just" get root inside the vServer? 1152978152 M * phreak`` Pazzo: just root inside the vserver afaik 1152978176 M * doener the prctl demo exploit I know will not get you out of the vserver, it just creates a file that gets executed by cron inside the vserver 1152978199 M * doener and the new proc-race exploit does not work in a vserver 1152978257 M * mnemoc hi, i'm trying to move to vserver-utils instead of util-vserver but where is vprocunhide now? 1152978266 M * Pazzo that's good news - but nevertheless I have to some "upgrade and reboot" work :-( 1152978294 M * Hollow mnemoc: /usr/sbin/vprocunhide 1152978303 M * Hollow if you're uzsing svn trunk 1152978314 M * mnemoc Hollow: 1.0.2 :( 1152978318 M * Pazzo doener: (as it's a long time I haven't been here) is vserver-utils ready for productional use? 1152978324 M * Hollow there is no vprocunhide 1152978359 M * mnemoc Hollow: vserver-utils-2.0-rc ? 1152978367 M * doener Pazzo: no idea, Hollow should know ;) 1152978378 M * Pazzo Hollow: ? 1152978383 M * Hollow there are no releases yet (even no RCs) but expect one in 1-2 weeks 1152978397 M * Hollow Pazzo: no, see one line above :) 1152978417 M * Hollow my current schedule has the final 2.0 around october 1152978434 M * mnemoc how traumatic can be the update if i deploy some boxes using vserver-utils 1.x and in 1-2 weeks i jump to 2.0 ? 1152978448 M * phreak`` doener: latest exploit (to get a root-shell) http://lists.grok.org.uk/pipermail/full-disclosure/2006-July/047913.html 1152978448 M * Hollow very traumatic :P 1152978451 M * mnemoc :( 1152978463 M * Hollow i won't recommend the 1.0 series to anyone 1152978464 M * mnemoc is trunk usable? 1152978470 M * mnemoc oh 1152978476 M * bonbons mnemoc: if you want a 1.0.* vserver-utils better use svn HEAD in 1.0.4 branch! 1152978479 M * Hollow yes, it's quite usable, all of the basic things work 1152978504 M * doener phreak``: well, that's the new proc-race exploit I mentioned above 1152978506 M * Hollow but it is still not that well tested, especially with more vservers running and more data 1152978543 M * Hollow expect disk limits and unification 2.0 should contain all other features 1152978548 M * doener it's fixed in the latest -stable kernels and there's even a new patch that matches the one I was going to send in (fixes problems with some HAL versions with the original fix) 1152978554 M * Hollow s/2.0/trunk/ 1152978578 M * bonbons Hollow: runs with 3, but no real testing except my every-day work with it (start/stop, java/mysql/apache in them) 1152978582 M * Hollow s/expect/except/ ;) 1152978599 M * Hollow bonbons: trunk, or 1.0.4 branch? 1152978601 M * mnemoc oh, the first match for vserver-utils at google on T2 :p 1152978606 M * Pazzo Doener: http://www.rs-labs.com/exploitsntools/rs_prctl_kernel.c <- this one doesn't even work for me on a running vserver host!? 1152978608 M * bonbons 1.0.4 branch 1152978615 M * Pazzo Hollow: thnx 1152978637 M * phreak`` doener: something like "inode->i_mode &= ~(S_ISUID | S_ISGID);" ? 1152978639 M * daniel_hozac Pazzo: kernel? it requires crond to be running. 1152978642 M * daniel_hozac phreak``: right. 1152978669 M * doener phreak``: yep, first fix was inode->i_mode = 0 1152978676 M * Hollow bonbons: great, i also did not mean 1.0 does not work, i just wouldn't recommend it to anyone, because the 2.0 series follow a completely different design/logic 1152978690 M * phreak`` doener: but that broke at least hal-0.5.5 :) 1152978714 M * mnemoc Hollow: i'll update my packages to r301 if you think that wont kill anything 1152978719 M * doener phreak``: ... as I said above (except for the exact version) 1152978743 M * bonbons Hollow: yep, both have a very different approach 1152978768 M * Hollow mnemoc: well, you will need to convert all configuration manually 1152978798 M * mnemoc Hollow: different than the schema showed at the weed page? 1152978820 M * Hollow yes, completely different.. the 2.0 series features a daemon doing all the work 1152978827 M * Hollow using xmlrpc 1152978829 M * Pazzo daniel_hozac: 2.6.11-vs2.0, cron is running 1152978854 M * mnemoc Hollow: oh 1152978858 M * daniel_hozac Pazzo: IIRC that's 2.6.13 up to 2.6.17.4 (or 2.6.16.24). 1152978870 M * Hollow mnemoc: http://dev.croup.de/proj/vserver-utils/browser/trunk/doc/vcd.spec 1152978889 M * doener yep, the new dump setting was introduced in .13 1152978912 M * Hollow Pazzo: the link may also be interesting for you 1152978955 M * Pazzo daniel_hozac: Yeaaaaaaaaha!!! I'm running 2.6.11 and 2.6.12 on most of my servers - this saves me a LOT of work :-) Are you sure? 1152978978 M * mnemoc Hollow: thanks 1152978993 M * Pazzo Hollow: great, thank you! 1152979002 M * daniel_hozac Pazzo: doener said so :) (as does the exploit) 1152979037 M * doener http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=d6e711448137ca3301512cec41a2c2ce852b3d0a 1152979078 M * doener there's the commmit that introduced the problem, 2.6.11 and 2.6.12 predate it 1152979119 M * doener 2.6.12 by 6 days... lucky Pazzo ;) 1152979143 M * mnemoc Hollow: i'm using runit on my guests using initstyle=plain with util-vserver. does that work on a similar way with vserver-utils? 1152979163 M * Hollow if plain worked before it should work with vserver-utils too 1152979173 M * Pazzo doener: thank you! so this doesn't affect any vanilla 2.6.12.x (x = whatever), right? 1152979196 M * mnemoc doesn'T the exploit affect the whole 2.6 serie? 1152979211 M * Hollow currently only plain init-style is really tested with vserver-utils, i reimplemented the gentoo init style, and also initng, but i did not test them 1152979235 M * daniel_hozac Hollow: no sysv? :) 1152979246 M * daniel_hozac mnemoc: not the prctl exploit. 1152979257 M * Hollow daniel_hozac: i will do it, but had no time to look into a sysv image yet 1152979302 M * doener Pazzo: indeed, no changes in that file for the stable 2.6.12 tree (would be insane anyway, not a security patch) http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.12.y.git;a=history;h=d04a37911968d919fa842ad40fa9e9ff1dd10904;f=kernel/sys.c 1152979338 M * doener mnemoc: which one? the one fixed in .17.4? no. the one fixed in .17.5? probably, but it does not work inside a vserver 1152979376 M * mnemoc ah good 1152979386 M * doener so Linux-VServer saves Pazzo's 4ss ;) 1152979452 M * doener (except for the 5k other exploits that might exist for 2.6.12 ;) 1152979463 M * Pazzo daniel_hozac: prctl -> 2.6.13 - 2.6.17.4 and proc-race 2.6 - 2.6.17.5, but proc-race doesn't work inside a vServer - is this correct? 1152979488 M * doener Pazzo: yep 1152979496 A * Pazzo opens a bottle of wine and hands a glass over to doener 1152979528 M * Pazzo daniel_hozac, Hollow, mnemoc: there is enough for you too :-) 1152979531 M * doener puts the wine aside and opens a bottle of scotch :) 1152979567 M * Hollow i don't drink, but thanks! :) 1152979610 M * Pazzo doener: no problem, my wine cellar and my little personal bar (single malt, whatever, ...) are wide open - take whatever you want :-) 1152979708 A * doener goes searching for some Glenfiddich Havanna Reserve 1152979734 M * doener my favorite :) 1152979981 Q * Vudumen Server closed connection 1152980009 J * Vudumen e94ff97507@perverz.hu 1152980143 M * Pazzo doener: There is a half-full Glenfiddich (Single Malt, 12 years) here - and also some Havanna Reserve, 7 years :-)# 1152980276 M * doener got a bottle of Special Reserve (the 12 years old) as a birthday present two weeks ago :) but isn't Havanna Reserve 21 years old? (might be called Gran Reserva now, seems Glenfiddich decided to change the name) 1152982070 M * sid3windr vserver start and stop sometimes seem to hang :o( 1152982098 M * sid3windr aha 1152982101 M * sid3windr just takes a while 1152982110 M * sid3windr hmm, probably because of dns issue 1152982111 A * sid3windr shuts up 1152982424 M * mnemoc confuse-config ?? 1152982485 M * mnemoc Hollow: what kind of ugly dependency is that? 1152982547 M * mnemoc and even worse because i'm crosscompiling :'( 1152982616 M * Hollow you will need libconfuse, libdbi (with sqlite) and xmlrpc-c 1152982634 M * mnemoc :'( ok 1152982643 M * Hollow and libvserver trunk 1152982667 M * mnemoc the last was assumed :) 1152982674 M * Hollow :) 1152982700 M * Hollow the libdbi dependency will probably go away and we'll use sqlite directly 1152982711 M * mnemoc i fear i'll have to fight a lot to cross compile (and against dietlibc) the other deps 1152982715 M * Hollow due to libdbi depending on libdl, not good (TM) 1152982724 M * mnemoc what? 1152982738 M * Hollow libdbi loads database drivers during runtime using libdl 1152982738 M * mnemoc my ghosts are static :'( 1152982746 M * mnemoc hosts* 1152982751 M * Hollow no static compilation atm possible 1152982755 M * mnemoc f* 1152982765 M * mnemoc plans? 1152982781 M * Hollow replace libdbi with native sqlite3 1152982795 M * Hollow i'm already preparing this (in my head) 1152982847 M * Hollow i will also take a look if we can distribute confuse, sqlite3 and xmlrpc-c in the source so we can link it all statically in our makefiles 1152982894 A * mnemoc prefer the dependencies over the duplication 1152982900 M * mnemoc [ ] confuse-2.5.tar.gz 17-Oct-2004 17:10 491K <--- this? 1152982907 M * Hollow yup 1152982967 M * Pazzo re 1152983023 M * mnemoc Hollow: how intrusive you think moving to sqlite3 will be? 1152983100 M * Hollow will be quite intrusive, about 50% of vcds code has to be changed 1152983118 M * mnemoc outch 1152983127 M * Hollow but i will try to keep the semantics the same 1152983149 M * Hollow it's more a thing of renaming function calls 1152983150 M * mnemoc is this change planned for the release at october or lateR? 1152983158 M * Hollow but still there are _lots_ of them 1152983159 M * mnemoc sed ? :) 1152983166 M * Hollow it is planned until then 1152983205 M * Hollow also disk limits will get in, but i cannot promise that unification will make it 1152983207 M * Pazzo doener: sorry, I didn't even know that there is a Glenfiddich, 21 years called "Havanna Reserve" - I have been talking about a normal 12 yrs Glenfiddich AND a simple Havanna (Rum), 7 yrs (two different bottles, not 2in1 :-) 1152983223 M * doener ah, I see :) 1152983245 M * mnemoc Hollow: i don'T care about unification, but the footprint of the host is something i would like to preserve :) 1152983270 M * mnemoc i have it on an initrd currently *g* 1152983286 M * Hollow heh 1152983315 Q * Radiance Remote host closed the connection 1152983323 M * Hollow mnemoc: i will even try to get the sqlite changes in until the first preview release in 1-2 weeks 1152983337 M * mnemoc that would be really nice 1152983341 M * Hollow depends on how easy it'll be going :) 1152983364 M * mnemoc when do you plan to start fighting? 1152983378 M * Hollow on monday i guess 1152983384 M * mnemoc :D 1152983390 M * Hollow :P 1152983553 M * Hollow vstatd will change a lot too next week i hope, just need the new accounting syscalls bertl is preparing a patch for 1152983560 M * Hollow this will make vstatd really fast 1152983631 M * mnemoc what about 2.0.2? 1152983655 J * Medivh ck@paradise.by.the.dashboardlight.de 1152983662 M * Hollow no-go 1152983696 M * Hollow it will require at least 2.1.1-rcsomething 1152983708 M * mnemoc uhm 1152983752 M * mnemoc what other functionality of vserver-utils will not work on 2.0.2? 1152983774 M * Hollow phew, i don't know exactly... 1152983786 J * Radiance b01255a4a9@halt.1984world.eu 1152983793 M * Hollow i guess this needs trial & error 1152983795 M * Hollow :) 1152983809 M * mnemoc let's revert the question, what do you know will work on 2.0.2? 1152983846 M * phreak`` Hollow: you'll get your trial & error :P (just updating to 2.0.2_rc26) 1152983855 M * Hollow same answer... it's been a while since i booted a 2.0.x kernel 1152983876 A * Pazzo is leaving for barbecue :-) c ya! 1152983885 M * phreak`` Pazzo: have fun 1152983890 M * mnemoc Hollow: oh 1152983898 M * Pazzo phreak``: thnx! 1152983904 J * cattivik ~andrea@yz.dsl.tizianodinca.com 1152983935 M * Pazzo doener: that's a strange new feeling - taking care of how to use your free time and such things... :-p 1152983946 M * Pazzo bye all! 1152983966 Q * Pazzo Quit: ... 1152984912 Q * samuel_ Server closed connection 1152984925 J * samuel_ ~samuel@jupe.quebectelephone.com 1152985060 Q * lilalinux Remote host closed the connection 1152985188 M * cattivik I want to buy vserver hosting and I am looking at http://linux-vserver.org/VServer+Hosting: do anyone have any experience with the low cost ones (mostly in Germany, I seem)? Please /query me if you don't want to speak publicly... :) Many thanks in advance 1152985214 Q * DreamerC Ping timeout: 480 seconds 1152985329 J * DreamerC ~dreamerc@59-112-7-22.dynamic.hinet.net 1152986250 M * mnemoc Hollow: xmlrpc-c 'stable' or 'advanced' ? 1152986269 M * Hollow 1.05 (advanced thi is i guess) 1152986302 M * mnemoc advanced is at 1.06 and 'stable' at 1.06.01 1152986313 M * Hollow oh.. recent updates 1152986325 M * Hollow good question then 1152986334 M * Hollow maybe stable 1.06 will work too now 1152986348 M * mnemoc can i know at build time? 1152986355 M * mnemoc or just runtime? 1152986365 M * Hollow build time 1152986372 M * mnemoc good, let's try stable then 1152986907 M * mnemoc yuck, client.cpp:30:30: error: transport_config.h: No such file or directory ...... lovely :\ 1152987787 M * phreak`` mnemoc: exaclty :| 1152987860 M * mnemoc this is hell of a lot of dependencies :( 1152987867 M * mnemoc now i need libwww or curl :\ 1152988793 M * mnemoc good, libdbi is the next .oO( why the heck all this stuff was not packaged yet? )o 1152988907 M * Hollow depends on the distro :D 1152989072 M * mnemoc they are in now ,-) 1152989080 M * mnemoc well... libdbi not yet 1152989150 M * mnemoc Hollow: does libwww deserve a try? 1152989209 M * Hollow i'm using curl because mod_php needs it too.. but it hink it doesn't matter really 1152989214 Q * matti Quit: 8-X 1152989291 M * Hollow also (for the future) if you're using another client (like web frontend, remote x11 gui whatever) you can disable the build of the clients, i.e. you could also skip the client parts in xmlrpc-c which depend on libwww/curl 1152989331 M * Hollow but currently there is no other client 1152989372 M * mnemoc :) 1152989393 M * Hollow see --enable-{client,server,stat} 1152989451 M * Hollow you're packaging for debian right? 1152989462 M * mnemoc T2 1152989475 M * Hollow never heard of 1152989484 M * mnemoc have you heard of ROCKLinux? 1152989487 M * mnemoc or neither? 1152989488 M * Hollow yes 1152989501 M * mnemoc T2 got forked out of RL two years ago 1152989508 M * Hollow i see... url? 1152989515 M * mnemoc http://www.t2-project.org 1152989550 M * mnemoc the first match of google if you ask for vserver-utils :p 1152989581 M * mnemoc no clue why google decided to do that 1152989583 M * Hollow hehe 1152989632 M * Hollow but the concept of T2 sounds interesting.. 1152989642 M * Hollow is it source based like gentoo or still bin pkgs? 1152989666 M * mnemoc depends on what layer 1152989687 M * mnemoc T2 let you do source based distributions which you distribute 1152989712 M * mnemoc and the running machines can be updated from a binary repo provided by the author of the distribution 1152989719 M * mnemoc or using emerge-like aproach 1152989749 M * Hollow does the package manager have full dependency tracking? 1152989758 M * mnemoc but as i don't like to have compilers on my servers i push pre-built updates 1152989785 M * mnemoc we have just a reference dependency system, cosnidering what files where read during the reference build 1152989809 M * mnemoc the maintainer of the distribution is basicly in charge of selecting a consistent set of packages 1152989834 M * mnemoc our dependencies currently are mostly only useful for building order 1152989859 M * Hollow yeah, even portage misses some functionality here... 1152989915 M * mnemoc i don't see a real way of been package-selection agnostic with mandatory dependencies 1152989916 M * Hollow but i like the approach.. i guess this is mostly used for embedded or creating server images like you do, right? 1152989930 M * mnemoc also desktops 1152989941 M * mnemoc but for been used by the sysadm 1152989956 M * mnemoc sysadmin* 1152989999 M * mnemoc for example to keep a lab, building just once, keeping the custom distribution in cd, and pushing tested updates 1152990072 J * matti matti@linux.gentoo.pl 1152990079 M * Hollow need something to eat, will be back shortly 1152990080 N * cattivik zagor 1152993204 Q * phreak`` Ping timeout: 480 seconds 1152993269 Q * mkhl Quit: 1152994449 J * coocoon ~coocoon@p54A06E43.dip.t-dialin.net 1152995444 Q * Radiance Remote host closed the connection 1152995831 Q * micah Quit: leaving 1152995851 J * micah ~micah@micah.riseup.net 1152995868 Q * micah Quit: 1152996291 J * phreak`` ~phreak``@140.211.166.183 1152997844 Q * zagor Ping timeout: 480 seconds 1152998159 J * zagor ~andrea@yz.dsl.tizianodinca.com 1152999023 M * Skram are there any articles around that outline this so-called VPS Hype, lately? Article doesnt have to be very recent.. just looking for something to quote in a presentation I am compiling 1152999109 J * micah ~micah@micah.riseup.net 1152999628 J * Smutje_ ~Smutje@xdsl-87-78-3-183.netcologne.de 1152999734 Q * Smutje Ping timeout: 480 seconds 1152999734 N * Smutje_ Smutje 1152999801 J * Radiance b8820e93f4@halt.1984world.eu 1153000059 Q * harry Server closed connection 1153000060 J * harry ~harry@d54C2508C.access.telenet.be 1153000463 J * oliwel ~mail-at-o@host-62-245-151-178.customer.m-online.net 1153000656 M * oliwel moin 1153000667 M * oliwel anybody here ? 1153001021 Q * zagor Quit: Ciao! 1153001080 Q * oliwel Quit: Chatzilla 0.9.74 [Firefox 1.5.0.4/2006050817] 1153002085 J * pflanze ~chris@84-73-57-232.dclient.hispeed.ch 1153002094 M * pflanze Hello. 1153002162 M * pflanze Has anyone checked whether the recently discovered proc vulnerability means that processes in vserver guests can escape to the host? 1153002182 M * doener doesn't work inside a vserver at all 1153002192 M * doener chmod is blocked on procfx 1153002197 M * doener s/fx/fs/ 1153002232 M * mnemoc [18:05:38] daniel_hozac: prctl -> 2.6.13 - 2.6.17.4 and proc-race 2.6 - 2.6.17.5, but proc-race doesn't work inside a vServer - is this correct? 1153002235 M * mnemoc [18:06:03] Pazzo: yep 1153002245 M * pflanze ah, glad to know, thanks. 1153002253 M * mnemoc yw :) 1153002317 M * phreak`` doener: working on some special fx ?! :) 1153002317 A * phreak`` goes back to the corner where he came from .. 1153002384 M * mnemoc doener: doh, i didn'T saw you have already answered him .... maybe i should go to sleep a bit :\ 1153002566 M * micah ioi 1153002566 M * micah  1153002567 M * micah  1153002567 M * micah  1153002594 M * micah ↵eeeee 1153002673 M * micah um, ignore me 1153002680 M * mnemoc me too 1153002793 M * micah L( 1153002794 M * micah :) 1153003240 J * DrEeevil ~pal@dslb-084-063-010-068.pools.arcor-ip.net 1153003340 Q * dna Quit: Verlassend 1153003362 Q * bonsaikitten_ Read error: Connection reset by peer 1153003679 Q * schimmi Ping timeout: 480 seconds 1153004291 Q * sladen Read error: Operation timed out 1153004649 J * sladen paul@starsky.19inch.net 1153005068 Q * sladen Read error: Operation timed out 1153005390 J * mire ~mire@249-166-222-85.COOL.ADSL.VLine.verat.net 1153006345 Q * pflanze Quit: [x]chat 1153006714 T * * http://linux-vserver.org/ | latest stable 2.01, 1.2.10, 1.2.11-rc1, devel 2.1.0, exp 2.{0.2,1.1}-rc26 | util-vserver-0.30.210 | libvserver-1.0.2 & vserver-utils-1.0.3 | He who asks a question is a fool for a minute; he who doesn't ask is a fool for a lifetime -- share the gained knowledge on the wiki, and we'll forget about the minute ;) 1153006714 T * Bertl - 1153006894 J * yarihm ~yarihm@84-74-17-70.dclient.hispeed.ch