1157414566 N * _Hunger Hunger 1157415926 Q * Aiken Quit: Leaving 1157415947 J * Aiken ~james@tooax6-121.dialup.optusnet.com.au 1157417233 Q * Aiken Quit: Leaving 1157417280 J * Aiken ~james@tooax6-121.dialup.optusnet.com.au 1157418176 Q * olilo Ping timeout: 480 seconds 1157419671 Q * brc_ Quit: Read error: 666 (Connection reset by Satan) 1157420016 J * brc_ ~bruce@201.19.206.96 1157420242 Q * ruskie Remote host closed the connection 1157420437 J * ruskie ~ruskie@ruskie.user.oftc.net 1157420651 Q * derjohn Ping timeout: 480 seconds 1157420709 J * ntrs ~ntrs@68-188-51-87.dhcp.stls.mo.charter.com 1157420831 Q * rob-84x^ Ping timeout: 480 seconds 1157424578 M * matti I wonder. Will owner module from Netfilter works for some user inside guest? 1157424866 M * mnemoc wrong hour to ask :p 1157424920 M * matti I know. 1157424938 M * matti I try to use connbytes and owner, to limit user to some particular traffic. 1157424957 M * matti But it seems, that owner must be xid-aware. 1157424978 M * matti Which is not and user is not present in host, so crap. 1157424978 M * matti ;] 1157425311 M * mnemoc ^_^ 1157425456 J * derjohn ~derjohn@80.69.37.19 1157425899 M * matti mnemoc: What? :) 1157425910 M * mnemoc nothing 1157425912 M * mnemoc :) 1157426891 Q * micah Remote host closed the connection 1157426906 J * micah ~micah@micah.riseup.net 1157427370 Q * sladen Ping timeout: 480 seconds 1157427563 J * sladen paul@starsky.19inch.net 1157432107 Q * anonc Ping timeout: 480 seconds 1157433891 J * olilo hiddenserv@tor.noreply.org 1157434453 J * anonc ~anonc@staffnet.internode.com.au 1157434876 Q * id23 Ping timeout: 480 seconds 1157435398 J * id23 ~id@p50811942.dip0.t-ipconnect.de 1157437217 J * meandtheshell ~markus@85-124-232-2.work.xdsl-line.inode.at 1157438117 J * dna ~naucki@191-235-dsl.kielnet.net 1157439936 M * ruskie hmm I booted the vserver and the whole box locked up... :( 1157439991 Q * Aiken Ping timeout: 480 seconds 1157440076 M * nayco Hello, all ! 1157440156 M * daniel_hozac ruskie: so you can't even use the console? 1157440174 A * Hollow yawns 1157440209 M * ruskie daniel_hozac, it completly locked up the system 1157440242 M * ruskie I didn't really configure it thoughjust tried running it by default 1157440263 M * daniel_hozac still shouldn't lock up the box. what kernel is that? 1157440270 M * ruskie .17.11 1157440297 M * daniel_hozac and the vserver version? 1157440307 M * ruskie 2.02 1157440318 M * daniel_hozac so how did you create the guest? 1157440331 M * ruskie existing chroot 1157440345 M * ruskie and then after a reboot I found out that vserver seriously abuses /var/run(all FILES in /var/run can be removed safely on bootup) but no vserver has a symlink to the vdir so it cleaned it out :( 1157440462 M * daniel_hozac does the existing chroot have a bunch of device nodes in /dev? 1157440468 M * ruskie yup 1157440506 M * ruskie hmm I did leave the mount scripts in... 1157440513 M * ruskie might want to remove those... 1157440593 M * Hollow hm, IMAP over SSH seems unsupported by most clients :( 1157440616 M * ruskie ssh tunnel it :) 1157440634 M * Hollow overkill.. 1157440660 M * ruskie so why not use IMAPS ? 1157440668 M * Hollow because we have no passwords 1157440676 M * Hollow just ssh pubkeys 1157440755 M * Hollow well, i guess we all use ~/.forward anyway... 1157440794 A * Hollow goes uninstalling courier 1157440854 M * Loki|muh Hollow: weren't you developing some kind of new tools? what status do they have? 1157440943 M * Hollow well, all the basic stuff is implemented, but still has some bugs, main features that are missing: unification, disk limits, scriplets 1157440996 M * daniel_hozac ruskie: and /dev/console, and /dev/tty[0-9]. 1157441164 M * ruskie daniel_hozac, in there it's a full static /dev 1157441228 M * daniel_hozac ruskie: that's probably your problem then. that has been known to cause a "hang". 1157441248 M * ruskie what has? 1157441256 M * ruskie the console and tty? 1157441277 M * daniel_hozac IIRC. 1157441286 M * daniel_hozac try with the minimal dev created by the skeleton build method. 1157441318 M * ruskie will do 1157441381 M * ruskie btw why do you link to the vdir in /var/run??? that's just... wrong... 1157441401 J * ||Cobra|| ~cob@146.50.22.204 1157441487 Q * nayco Quit: Lost terminal 1157441575 M * daniel_hozac ruskie: which directory? and what do you mean by vdir? 1157441670 M * ruskie /var/run/vserver.rev <-- that includes a symlink to the / of the virtual machine when running 1157441845 M * harry no more link to vserver + grsec on the linux-vserver page... 1157441869 M * harry not needed? or forgotten? or not good? 1157441895 M * daniel_hozac new website, feel free to readd it. 1157441923 M * harry then... i need to be on the wiki 1157442182 M * daniel_hozac ruskie: it points to the config directory. 1157442211 M * ruskie http://www.pathname.com/fhs/pub/fhs-2.3.html#VARRUNRUNTIMEVARIABLEDATA <- This directory contains system information data describing the system since it was booted. Files under this directory must be cleared at the beginning of the boot process. 1157442220 M * ruskie for /var/run 1157442224 M * daniel_hozac yep. 1157442237 M * harry daniel_hozac: should i add it to the downloads section? 1157442245 M * harry if yes... how? 1157442251 M * ruskie now here's a simple problem... for some reason it doesn't cleanly shutdown so those symlinks are left there... 1157442256 M * daniel_hozac harry: i don't know, i haven't exactly poked around the new wiki yet... 1157442256 M * harry if no, where else? ;) 1157442275 M * ruskie guess what happens... :) 1157442291 M * daniel_hozac ruskie: it removes the symlinks? 1157442297 M * daniel_hozac ruskie: otherwise you're doing something wrong. 1157442353 M * daniel_hozac harry: i guess downloads is the most appropriate, if it's not, i'm sure someone will move it to where it belongs :) 1157442354 M * Hollow harry: create an account, then click edit :) 1157442363 M * harry Hollow: i did... 1157442366 M * harry i have an account 1157442367 M * Hollow but? 1157442378 M * harry but it only says: CurrentPatchTable in the source 1157442384 M * harry so i'm looking for that one now... 1157442394 M * harry if i enter that page in the url, it says the page doesn't exist yet 1157442399 M * Hollow http://linux-vserver.org/Template:CurrentPatchTable 1157442423 M * harry there is no edit button 1157442430 M * harry there is!! 1157442438 M * harry q: how did you find that? 1157442445 M * daniel_hozac he created it? :) 1157442449 M * Hollow hehe 1157442453 M * harry ah... bastard ;) 1157442469 M * harry i was trying to be smart and mess with the url's and stuff.. 1157442470 M * Hollow if you scroll down when editing a page, there are links to all used templates (those in double braces) 1157442478 M * harry anyway, what is the best place to add it... 1157442486 M * Hollow the patch table :D 1157442495 M * harry yes, but what line? 1157442503 M * harry right under the stable? 1157442503 M * id23 good morning #vserver 1157442506 M * Hollow i'd say so 1157442508 M * harry totally below? 1157442511 M * harry new table? 1157442516 M * Hollow below stable... 1157442529 M * Hollow because maybe there will be one for 2.1 too some day, no? ;) 1157442554 M * harry off course 1157442630 M * Hollow harry: btw.. do you want a people.l-v.org account for your patches? 1157442638 M * ruskie hmm seems the /dev/console or tty[0-9] were the prob 1157442644 M * daniel_hozac ruskie: told you ;) 1157442656 M * ruskie so how can I hook into the vserver now? 1157442659 M * Hollow /dev/console is a pita :D 1157442662 M * harry Hollow: don't really need it 1157442670 M * harry but if you guys like that better... 1157442678 M * harry i can use our webserver at work too 1157442698 M * daniel_hozac ruskie: what? 1157442728 M * Hollow noone needs to have it really (we all have our boxes, don't we?) but it is more contained with all patches, files etc in one place 1157442748 M * ruskie is there some interface that I can use to play in there or do I have to configure it all outside and ssh into it? 1157442780 M * daniel_hozac ruskie: vserver ... enter. 1157442789 M * daniel_hozac should give you a shell inside. 1157442798 M * Hollow harry: and since i'm the PR jackass now, i pay attention to these things :P 1157442811 M * ruskie weee 1157442837 M * ruskie hmm this has practicaly no impact on performance 1157442848 M * daniel_hozac that's the idea. 1157442850 M * harry well... in that case, off course :) 1157442853 M * harry i'll put it there 1157442856 A * ruskie loves it 1157442867 M * Hollow harry: heh, ok.. please send me your ssh pubkey 1157442890 M * harry Hollow: i'll mail it later on today, as i'm not @ work now... 1157442903 M * Hollow sure, thanks! 1157442933 A * Hollow now goes to send the anouncement around 1157442950 M * ruskie and network works in it out of the box basicaly 1157443022 M * daniel_hozac it should, given that the networking happens on the host. 1157443039 M * daniel_hozac guests are only limited to a subset of the host's IP addresses. 1157443093 M * ruskie I really should read up on this stuff but atm I'm still in the exam cram phase at uni so can't play that much :) 1157443166 M * ruskie especialy need to figure out all the capabilites 1157443313 M * harry there we go... updated the patch to the latest grsec too... 1157443322 M * daniel_hozac http://oldwiki.linux-vserver.org/Caps+and+Flags has all of the vserver specific capabilities, the regular ones (bcapabilities) are in /usr/include/linux/capability.h 1157443439 J * chelli ~thomas@PC1.ideolabs.TGZ-Ilmenau.de 1157443441 Q * chelli 1157443480 A * harry off to work now 1157443533 A * Hollow moans 1157443538 M * Hollow no emaila dress for /. 1157443543 M * Hollow just some crappy html form 1157443546 M * daniel_hozac hehe. 1157443584 M * Hollow daniel_hozac: dunni if i asked you already, but any additions to http://home.xnull.de/work/vserver/press/news-contacts.txt? 1157443691 M * daniel_hozac none that i can think of. 1157443703 M * Hollow ok, i can neither :) 1157443741 M * Hollow *click* sent 1157443768 M * daniel_hozac cool, so now all we have to do is wait :) 1157443779 M * Hollow yep :D 1157443810 M * Hollow i also sent a copy to our ML 1157443884 M * daniel_hozac oh yeah, i was thinking about that the other day. 1157443902 M * daniel_hozac ... yesterday, i guess. 1157443912 M * Hollow :) 1157443977 M * Hollow ah yes... don't forget the /. form... dumdidum 1157444008 M * daniel_hozac hehe. 1157444121 M * Hollow my poor box... 1157444127 M * Hollow first /. it will get .. hehehe 1157444138 M * daniel_hozac hehehehe. 1157444159 M * daniel_hozac so the wiki will (hopefully) be unaccessible soon then. 1157444166 A * Hollow nods 1157444170 M * Hollow :P 1157444213 M * Hollow (if the form would actually submit.. *yawn*) 1157444281 M * Hollow 503 Service Unavailable 1157444287 M * Hollow seems like they /. themselves 1157444288 M * Hollow :D 1157444318 M * daniel_hozac lol 1157444404 M * harry Hollow: hollow@linux-vserver.org ? 1157444414 M * harry any other info you need? 1157444428 M * Hollow yep, preffered username :) 1157444436 M * harry name, address, telephone, cellphone, workphone, name of my girlfriend, second name? ;) 1157444455 M * daniel_hozac Hollow: http://paste.linux-vserver.org/334 opinions? 1157444459 M * Hollow wohoo.. /. now pending 1157444494 M * Hollow daniel_hozac: awesome, a check like this was needed for ages 1157444514 M * daniel_hozac yeah, i've just been too lazy to do it. 1157444537 A * Hollow giggles 1157444539 M * Hollow me too 1157444577 J * nayco ~root@proxy2.laroche.univ-nantes.fr 1157444582 M * nayco hello again, all ! 1157444604 M * daniel_hozac hi nayco! 1157444627 M * Hollow hey nayco, everything is out officially now, so post your story :) 1157444753 M * nayco Hollow: That's exactly what I was going to ask ;-) 1157444757 M * nayco K, thanks 1157444764 M * Hollow hehe, developers advisory (explicit source) i like that one :) 1157444768 M * sid3windr very neat, but the box is still there! ;) 1157444962 M * harry Hollow: it's in ya mailbox! 1157445085 M * Hollow hm... 1157445100 J * yarihm ~yarihm@whitehead2.nine.ch 1157445166 M * ruskie hmm I need a working /dev/pts in the vserver but I'm not getting it or I don't have access to it... 1157445195 M * Hollow harry: is your address sth with kuleuven? 1157445203 M * harry yes 1157445210 M * daniel_hozac ruskie: what do you mean? 1157445245 M * Hollow harry: http://paste.linux-vserver.org/335 1157445257 M * ruskie daniel_hozac, well mount in vserver claims /dev/pts is mounted in there but it's empty... 1157445260 M * daniel_hozac ruskie: /dev/pts should work fine within a guest, it's even isolated so you only see the devices beloning to that guest. 1157445270 M * harry yeah... we use greylisting here... 1157445275 M * daniel_hozac ruskie: what util-vserver version are you using? vanilla 0.30.210? 1157445286 M * harry not my choice 1157445299 M * harry but it does help a lot... far less spam comming through... 1157445305 M * ruskie daniel_hozac, yup 1157445311 M * Hollow well, i didn't sent you anything :) 1157445337 M * daniel_hozac ruskie: well, that's why then :) 1157445345 M * harry Hollow: where do these come from then? 1157445357 M * ruskie daniel_hozac, erm? 1157445369 M * Hollow harry: i have no idea.. could you try to send it again? 1157445371 M * daniel_hozac ruskie: i assume you're logged in over ssh to the host, right? 1157445380 M * ruskie no direct vie enter 1157445383 M * ruskie ahh host 1157445388 M * ruskie host is the box infront of me 1157445389 M * ruskie :) 1157445397 M * daniel_hozac so why would you expect a pty? 1157445400 M * harry sure 1157445438 M * daniel_hozac ruskie: but with the vlogin patch, you should get a pty belonging to the guest when you enter it. 1157445443 M * harry done 1157445459 M * Hollow ok.. local delivery works... seems a problem with my .forward.. 1157445475 M * ruskie daniel_hozac, /dev/fd/{0,1,2,255} are symlinks to the current /dev/pts 1157445519 M * daniel_hozac ruskie: ah, so you're not on the console, ok. 1157445529 M * ruskie yeah in X 1157445546 M * daniel_hozac ruskie: those ptys were created on the host, and as such, they belong to it. 1157445557 M * daniel_hozac thus, you will not be able to see those in the guest. 1157445570 M * daniel_hozac vlogin solves this by allocating a new pty inside the guest when you enter it. 1157445589 M * daniel_hozac (http://people.linux-vserver.org/~dhozac/p/uv/util-vserver-0.30.210-vlogin.patch) 1157445606 M * Hollow harry: ok, should work 85.10.237.61 1157445706 M * harry Hollow: weirdness... i sent you that mail 1157445713 M * harry the snippet you gave me says you try to mail smth 1157445729 M * ruskie daniel_hozac, is that scheduled for inclusion into the main tree? 1157445748 M * harry : Recipient address rejected 1157445755 M * Hollow well, i had a .forward, this of course sends something.. but not back to you I#d say, so i have absolutely NFC what is it about, but i will investigate :) 1157445774 M * harry hehe... we do the same here as we speak :) 1157445775 M * Hollow at least it worked after removing it 1157445793 M * daniel_hozac ruskie: we hope so ;) 1157445817 M * Hollow hope and pray without faith.. 1157445818 M * Hollow hehe 1157445871 M * harry Hollow: i know what's going on 1157445882 M * harry the snippet you pasted was from my subscription to the wiki 1157445882 M * Hollow ah? 1157445887 M * Hollow oh 1157445889 M * Hollow damn it 1157445889 M * Hollow :D 1157445892 M * harry and, it's true, we graylist :) 1157445899 M * harry that was about an hour ago :) 1157445931 M * Hollow so, do i need to fix sth, or you? 1157445998 M * Hollow (i hate all this email stuff) 1157445999 M * harry nope 1157446004 M * harry don't think so 1157446018 M * harry the mail i sent is delivered 1157446024 M * harry did you recieve a mail ? 1157446026 M * Hollow i even have no spam filters installed at all :o 1157446027 M * harry (or 2?) 1157446031 M * Hollow the second one yes 1157446039 M * harry what was the subject? 1157446039 M * Hollow after removing my .forward to gentoo 1157446051 M * harry seems there is a problem with the .forward then... 1157446058 M * Hollow gooooood morning 1157446062 M * harry our mailservers say: status=Sent 1157446073 M * Hollow ^ subject 1157446074 M * harry the good morning one is the second one 1157446079 M * harry first one is heya!! 1157446107 M * Hollow ah, here we go.. i found the relevant log entry... 1157446117 M * Hollow host mail.gentoo.org[140.211.166.183] said: 450 : Sender address rejected: unverified address: Address verification in progress (in reply to RCPT TO command) 1157446376 M * harry ahaaaaa.... 1157446455 M * Hollow hm... forwarding mails from another account of mine works though 1157446505 M * ruskie daniel_hozac, hmm I take it a restart should be enough or do I need to do something else as well? 1157446522 M * Hollow harry: anyway, are you able to login now? 1157446528 M * daniel_hozac ruskie: just installing the patched utils should fix it. 1157446536 M * harry Hollow: login where? 1157446547 M * Hollow to your new devspace, 85.10.237.61 1157446551 M * harry yups :) 1157446553 M * harry i'm in :) 1157446561 M * Hollow ok, fine :) 1157446568 M * Hollow ~/public_html is your friend :) 1157446615 M * harry we're in a vserver! ;) 1157446621 M * Hollow indeed ;) 1157446645 M * harry do we have lftp ? 1157446646 M * Hollow vserver is everywhere :p 1157446650 M * harry or can we have lftp? ;) 1157446653 M * Hollow no(t yet) 1157446656 A * Hollow goes installing 1157446993 M * Hollow harry: installed.. 1157446997 M * harry tnx 1157447027 M * harry New: 22 files, 0 symlinks 1157447027 M * harry 20320977 bytes transferred in 9 seconds (2.19M/s) 1157447030 M * harry there we go 1157447035 M * harry all ludit.kuleuven.be is mirrored 1157447042 M * harry long live lftp :) 1157447056 M * harry what's the url now? 1157447121 M * daniel_hozac people.linux-vserver.org/~ 1157447188 M * harry hmm.. 1157447200 M * harry http://wiki.linux-vserver.org/Developers <== doesn't work btw... 1157447211 M * daniel_hozac doesn't work? 1157447218 M * harry the google maps api key used on this web site was registered for a different web site 1157447224 M * Hollow harry: yep, the google api key only applies to one site 1157447228 M * harry you can generate a new key for this website at ... 1157447230 M * Hollow and we decided to use linux-vserver.org for it 1157447237 M * daniel_hozac ah, i see. 1157447246 M * harry so... what do i do??? 1157447246 M * Hollow wiki.* is only used to be able to edit pages that exist in both wikis 1157447255 M * Hollow just use linux-vserver.org 1157447273 M * daniel_hozac people.linux-vserver.org redirects to wiki.* though. 1157447275 M * harry Hollow: then change the redirect on : http://people.linux-vserver.org 1157447282 M * Hollow right... 1157447299 M * Hollow done 1157447572 M * harry Hollow: does that give me a mailaddress too? (then i say harry@linux-vserver.org in the readme) 1157447579 M * Hollow yup, it does 1157447584 M * harry kinky 1157447591 M * harry then i'll set a .forward :) 1157447593 M * Hollow :) 1157447696 M * harry done! 1157447712 M * Hollow nice, thanks! 1157447760 M * harry gentoo... i could've known 1157447767 M * harry http://people.linux-vserver.org/~harry/_README_ 1157447798 M * Hollow sure gentoo, did you expect anything else from my setups? :D 1157447978 M * ruskie hmm how do I change the default login shell for the enter command? 1157448092 M * daniel_hozac ruskie: /etc/vservers/.../shell 1157448399 M * ruskie is that a file with the /bin/shell or a symlink to it? 1157448474 M * daniel_hozac what? 1157448490 M * daniel_hozac oh, it's a file that contains the path to the shell. 1157448510 M * daniel_hozac http://www.nongnu.org/util-vserver/doc/conf/configuration.html has all that info ;) 1157448589 M * ruskie why the hell is that page so bad... 1157448611 M * daniel_hozac you can change the stylesheet. 1157448621 M * harry heeeeeeeeey.... my .forward doesn't work 1157448688 M * Hollow harry: yep, same error as before 1157448692 M * Hollow in the logs 1157448696 M * Hollow address verification 1157448790 A * ruskie get's rid of the tmpfs /tmp 1157448855 M * harry i don't get it... that error should not be there... 1157448862 M * harry our servers respond to that... 1157448871 M * harry they accept that verification request :S 1157448904 M * Hollow wtf.. 1157448914 M * Hollow i hate email so much 1157448947 M * daniel_hozac hehe, yes. 1157448952 M * daniel_hozac email is evul! 1157448965 M * harry hehe 1157448979 M * harry i'll see @ kuleuven network people if they see something wrong :) 1157448989 M * harry but first, i'm gonna reboot some servers 1157449028 M * Hollow lalalala, http://golem.de/0609/47601.html 1157449033 M * Hollow PR is great :D 1157449067 M * daniel_hozac hehe, cool! 1157449195 M * Wonka http://forum.golem.de/read.php?13081,719914,719995#msg-719995 - hasn't xen more complicated context switches? 1157449214 M * harry Linux boromir 2.6.17.11-grsec2.1.9-vs2.0.2 #1 SMP Tue Sep 5 11:09:04 CEST 2006 i686 GNU/Linux 1157449217 M * harry up and running 1157449227 M * harry new grsec from a couple of hours ago! 1157449243 M * Hollow :) 1157449378 M * harry Hollow: what's the best way to get to the currect patch table page ? 1157449393 M * harry i can't seem to be able to edit that one by just following links 1157449424 M * Hollow if you edit a page containing the template, scroll down and you'll find links to the templates 1157449432 M * Hollow or use http://linux-vserver.org/index.php?title=Template:CurrentPatchTable&action=edit 1157449502 A * harry feels stupid now... 1157449527 M * harry why is that page not "easily" editable? 1157449535 M * harry it's not in the all pages list 1157449535 M * Hollow hm? 1157449543 M * Hollow because it is a template 1157449546 M * ruskie :) 1157449553 M * Hollow you can put this template in every page and update it only once 1157449567 M * harry true, that rocks :) 1157449582 M * Hollow currently the main and download page have this template 1157449603 M * Hollow same for the news table 1157449614 M * harry there we go 1157449616 M * harry i edited 1157449620 M * harry now i'll bookmark that one ): 1157449620 M * Hollow this also enables everyone to edit the tables while the main page being locked 1157449622 M * harry ;) 1157449653 M * harry changed the link to linux-vserver 1157449696 M * harry ah!! 1157449699 M * harry my test succeeded 1157449702 M * harry the forward works 1157449705 M * Hollow how so? 1157449709 M * harry just takes a rediculous long time 1157449714 M * Hollow hm.. 1157449717 M * harry testmail got through 1157449743 M * Hollow at least it works.. :) 1157449765 M * harry did you get my first mail then? 1157449780 M * harry now it works quite fast... 1157449781 M * Hollow nope.. it is still in the queue 1157449789 M * harry weirdness++ 1157449799 M * harry if i send a mail now, it's here in a matter of seconds 1157449821 M * matti Eh. 1157449823 M * matti Hi harry. 1157449830 M * Hollow huhu matti :) 1157449838 M * matti Hi Hollow. 1157449889 M * matti harry: I left you my chroot options, but you probably ignored that :) 1157449912 M * harry you crazy dude, matti 1157449925 M * matti :) 1157449927 M * harry http://people.linux-vserver.org/~harry/_README_ 1157449932 M * matti Oh. 1157449937 M * matti You have WiKi ;] 1157449940 M * matti Finally :) 1157449955 M * matti Hahaha. 1157449962 A * matti feels stupid ;p 1157449965 M * matti harry++ 1157450008 M * matti ;-p 1157450046 M * harry hehe :) 1157450054 A * harry food now 1157450058 M * matti harry: Enjoy ;] 1157450061 M * matti harry: And thanks :) 1157450065 M * harry np 1157450213 M * matti harry: Remember to add your photo on the People Page ;] 1157450219 M * matti ^_^ 1157450244 M * matti BTW, regargind my question.. 1157450276 M * matti [04:49:38] < matti> I wonder. Will owner module from Netfilter works for some user inside guest? 1157450279 M * matti [04:55:38] < matti> I try to use connbytes and owner, to limit user to some particular traffic. 1157450282 M * matti [04:55:57] < matti> But it seems, that owner must be xid-aware. 1157450285 M * matti [04:56:18] < matti> Which is not and user is not present in host, so crap. 1157450290 M * matti Anyone have some ideas? Hints? Solutions for that? 1157450291 M * matti :) 1157450430 M * Wonka i think that could be done with a fully virtualized network stack... 1157450453 M * matti Wonka: But, there's no other solution? I hope, there is, but... 1157450469 M * Wonka i am not too much into the internals of virtualisation 1157450470 M * Wonka sorry 1157450483 M * matti I see. 1157450493 M * matti I look on code, and on Netfilter hooks. 1157450546 M * matti But it seems, that Netfilter helper/target modules are not aware of dirty hack that comes with vserver w/o NGNET. 1157450588 M * matti Maybe adding some extra structure from vserver and... somehow making such modules to be xid-aware will do the job. 1157450617 M * matti On the other hand, I am no much of a vserver hacker :) 1157450952 J * zkbrsnie ~zkbrsnie@83-64-146-226.klosterneuburg.xdsl-line.inode.at 1157451224 M * daniel_hozac matti: shouldn't be hard to write a patch for the owner module to be able to match on xid too. 1157451291 M * matti daniel_hozac: Hmm... 1157451359 M * matti daniel_hozac: This improved owner can be handy. I'll look at the code later :-) 1157451367 A * matti have ~ 24 h uptime. 1157451389 M * matti daniel_hozac: Can I ask you on some internals? I am not much of a vserver-hacker as I said ;< 1157451411 M * daniel_hozac well, me neither ;) 1157451429 M * daniel_hozac but sure, shoot. 1157451434 M * matti ;] 1157451566 M * Hollow daniel is just modest :p 1157451598 M * matti Hollow: What you think? 1157451601 M * daniel_hozac IMHO it should be possible to match based on skb->sk->sk_xid/sk_nid. 1157451631 M * Hollow well, i never really used iptables, but impossible is impossible ;) 1157451674 M * daniel_hozac and while you could do a separate iptables match just for xids/nids, IIRC you have to recompile the entire iptables anyway so you might as well just patch an existing one. 1157451732 M * matti Not an issue. 1157451783 Q * doener Remote host closed the connection 1157451792 J * doener ~doener@host.magicwars.de 1157451841 M * daniel_hozac oh, you can't use owner on users inside guests? is that the problem? 1157451913 M * matti Yes. 1157451947 M * matti daniel_hozac: Netfilter works in host, and users (their uids/gids) are not present in host system. 1157451957 M * matti daniel_hozac: owner simply don 1157451963 M * matti daniel_hozac: owner simply don't work at all ;] 1157451997 M * daniel_hozac hmm, i don't see why it wouldn't... i suppose it would be a problem that the rules match all users with that uid/gid on all guests. 1157452050 M * matti daniel_hozac: The best possible way will be an addition --xid to owner match. 1157452057 M * daniel_hozac i agree. 1157452110 M * daniel_hozac an xid match is something i've been meaning to get around to for a while, but iptables' lack of a proper development environment kind of frustrates me. 1157452130 M * daniel_hozac matti: but you're saying it doesn't work at all for users inside a guest? 1157452131 M * matti Hmm... 1157452159 M * matti daniel_hozac: I need to match only one user from some particular gest (amoung other guests). 1157452176 M * matti daniel_hozac: And set a connbytes traffic quota on him. 1157452176 M * matti ;] 1157452193 M * daniel_hozac ah, ok, so owner works, but it works on all users with that uid? 1157452208 M * matti daniel_hozac: Probably yes. 1157452217 M * daniel_hozac ok. 1157452233 M * matti daniel_hozac: But I have almost no users within' host system, so owner fails. 1157452249 M * daniel_hozac hmm? what do you mean? 1157452269 M * matti daniel_hozac: I mean, owner not works, just do nothing at all. 1157452296 M * matti daniel_hozac: I didn't noticed any matches on this uid at all. 1157452315 M * daniel_hozac ok, that's what i thought, but you said it worked... ;) 1157452356 M * matti Probably it should work for this uid from every guests. 1157452368 M * matti But I am not sure of that - so I said "probably" ;] 1157452369 M * daniel_hozac right, that's what it should do... 1157452416 M * matti Sorry to confuse you, I am a bit tired ;) 1157452488 M * matti daniel_hozac: But, since I need to limit only one user from only one particular guest, the default behaviour of owner is not that I really need to achieve ;] 1157452504 M * daniel_hozac right. 1157452532 M * daniel_hozac hmm, i can reproduce that... owner doesn't match users inside the guest. 1157452548 M * matti You just tested it? 1157452552 M * daniel_hozac right. 1157452559 M * matti So, you see my point. 1157452559 M * matti ;] 1157452561 M * daniel_hozac indeed. 1157452578 M * daniel_hozac that's interesting... 1157452726 M * matti Remember, that uid/gid is tagged by xid. 1157452748 M * matti IIRC, and this is the reason, why owner do not match anything. 1157452779 M * matti I am not sure, but this is the simplest explanation. 1157452780 M * matti :) 1157453098 M * daniel_hozac yes, that's my thinking as well, but i can't see where that would come from. 1157453146 M * daniel_hozac i thought current->*id had the actual values, and only certain operations used the tagging. 1157453150 J * cdrx ~legoater@cap31-3-82-227-199-249.fbx.proxad.net 1157453168 M * matti daniel_hozac: I thought the same. 1157453474 M * daniel_hozac ok, testing if tagging really is the problem (added rules for tagged uids) 1157453481 M * matti Aye. 1157453497 M * matti Thanks for contribution in my yet another crazy idea ;] 1157453517 M * daniel_hozac hehe. 1157453520 M * matti ;] 1157453547 M * daniel_hozac hmm, odd, now the original rule caught the packets... 1157453557 M * matti Hm... 1157453571 M * matti What was changes? 1157453576 M * daniel_hozac maybe using ping for testing wasn't the brightest idea. 1157453579 M * matti s/changes/changed/ 1157453581 M * daniel_hozac i used telnet the second time. 1157453604 M * matti icmp is not matched by owner, only tcp? Dunno. 1157453633 M * matti daniel_hozac: So, now you match some uid, right? 1157453634 M * daniel_hozac or ping is setuid root ;) 1157453643 M * matti Indeed ;] 1157453645 M * matti Hehehe. 1157453659 M * daniel_hozac yeah, so IMHO -m owner is working as expected 1157453666 M * daniel_hozac but it's still matching that uid from all the guests. 1157453730 Q * bubulak Ping timeout: 480 seconds 1157454130 M * matti daniel_hozac: Indeed. 1157454137 M * matti daniel_hozac: I see two solutions. 1157454176 M * matti 1. Very dirty - use some totally random uid for user in some guest. We can be almost sure, that the will not duplicate ;p 1157454181 M * matti 2. Fix the module ;] 1157454263 M * daniel_hozac (i'm at school so i don't have access to anything else) http://paste.linux-vserver.org/336 should suffice for the kernel, IMHO. 1157454307 M * matti If this will work. 1157454316 M * matti I will made you my personal hero ;] 1157454318 M * daniel_hozac then you'll have to patch iptables as well. 1157454326 M * matti Right near Bertl ;] 1157454396 M * daniel_hozac hehe. 1157454511 M * Hollow matti: ah, do you have a vserver altar too? ;) 1157454600 M * matti Yeah... With Bertl photo on the of it and lot of exotic incense, candles... 1157454605 M * matti You know. 1157454616 M * matti All suff needed by religious fanatic ;] 1157454627 M * matti ;-p 1157454650 M * Hollow yeah.. :D 1157454664 M * matti :-) 1157454682 M * matti I plan to register The Virtualised Church ;] 1157454684 M * matti ;p 1157454738 M * Hollow hehehe 1157454811 M * daniel_hozac lol 1157454847 M * matti s/the/the top/ 1157454848 M * matti ;] 1157455008 M * daniel_hozac matti: http://paste.linux-vserver.org/337 for the iptables patch. 1157455019 M * daniel_hozac remember to point iptables to your patched kernel tree if you test it. 1157455046 M * daniel_hozac (note: none of this has even been compile tested, i don't have enough things setup here yet) 1157455146 M * matti s/nid/xid/ 1157455152 M * daniel_hozac well, IMHO nid makes more sense. 1157455153 M * matti Maybe? 1157455160 M * daniel_hozac as nid is the network context. 1157455165 M * matti I see. 1157455167 M * matti :) 1157455200 M * daniel_hozac i guess the optimal solution would be to support matching both. 1157455239 M * daniel_hozac but with static contexts, you should (with recent enough util-vserver, i.e. 0.30.210+) have nid == xid. 1157455252 M * matti :-) 1157455415 M * daniel_hozac if you could test it and it works, i'll make better patches when i get home (supporting xid as well)... 1157455437 M * matti I will owe you one then. 1157455462 M * daniel_hozac nah, you 1157455472 M * daniel_hozac +'ll be doing the hard part, testing ;) 1157455480 M * matti daniel_hozac: Thanks for help and support for my idea. I hope. this will be handy for you as well. 1157455524 M * daniel_hozac yep, it should be. it will greatly simplify the firewall rules on my hosts. 1157455559 M * matti ;] 1157455579 M * daniel_hozac the less hardcoded IP addresses in the rules, the better :) 1157455638 M * matti Maybe owner used for marking packets can also be used to do some QoS on particular user ;] 1157455643 M * matti This sounds nice. 1157455664 M * daniel_hozac should be possible, hehe. 1157455736 M * nayco Hollow: Do you mind if I talk about OpenVPC as a side-note for users to know that there are VServer interfaces out there ? 1157455759 M * matti daniel_hozac: I wish... stable ipv6 support also ;] 1157455783 M * daniel_hozac matti: again, the only thing really required there is testing ;) 1157455793 M * Hollow nayco: sure, no problem, but it is OpenVCP ;) 1157455815 M * matti daniel_hozac: You mean, for ipv6? Is so, then... Yep I know ;] 1157455842 M * matti daniel_hozac: I request /48 of ipv6 allocation from RIPE recently, so I will do some ipv6 tests also. 1157455861 M * daniel_hozac cool, i haven't gotten around to requesting an IPv6 block yet. 1157455907 M * matti ;] 1157455965 M * nayco Hollow: ;-) 1157456003 M * nayco Hollow: One other thing : Is there a unstable (2.1.x) release to talk about ? 1157456013 M * daniel_hozac not yet. 1157456029 J * ^Duffy^ noway@host-81-191-136-209.bluecom.no 1157456041 M * Hollow daniel is too fast ;) 1157456042 J * Revelator ~Efnet@62.128.240.117 1157456062 M * nayco daniel_hozac: Hollow : you're answering to me ? 1157456068 M * daniel_hozac yep. 1157456078 M * nayco Ok, I'm posting NOW ;-) ! 1157456102 M * daniel_hozac openvcp released 0.2rc2 recently, right? 1157456115 M * Hollow yep.. 1157456138 Q * id23 Remote host closed the connection 1157456190 M * ^Duffy^ is it possible to setup a vserver without any quota limits? 1157456206 M * daniel_hozac sure, there are no limits by default. 1157456239 M * ^Duffy^ well, we setup a vserver yesterday .. didnt configure any quota limits, but now all of a sudden apt complains about not having enough space 1157456247 M * daniel_hozac on /tmp? 1157456260 M * ^Duffy^ 2 sec.. Revelator ... ? ;) 1157456262 M * daniel_hozac by default /tmp is a tmpfs limited to 16 MiB. 1157456275 M * daniel_hozac you can comment it out of /etc/vservers/.../fstab 1157456292 M * ^Duffy^ I'll check 1157456302 M * Revelator :pP 1157456329 M * Revelator seems like it was 1157456332 M * ^Duffy^ yup 1157456336 M * ^Duffy^ thanks alot daniel_hozac ;) 1157456341 M * daniel_hozac you're welcome! 1157456371 J * id23 ~id@p50811942.dip0.t-ipconnect.de 1157457922 M * daniel_hozac matti: ok, got enough of a setup to test the patches... seems to work. 1157457963 M * daniel_hozac (once i exchanged nid_t to unsigned int in include/linux/netfilter_ipv4/ipt_owner.h, but that should be solvable with an #include) 1157457980 M * matti I see. 1157458019 M * daniel_hozac as i promised, i'll make some proper patches with xid matching too when i get home (should be in a few hours...). 1157458705 Q * yarihm Quit: Leaving 1157458742 J * rob-84x^ rob@submarine.ath.cx 1157458865 Q * rob-84x^ 1157459040 J * sezuan_ matthias@agamemnon.ipv6.scheff32.de 1157459092 M * sezuan_ hi! congratulation for v2.02 1157459220 M * sezuan_ will be there a v2.0.2 for the latest 2.6.16.x kernel series? 1157459242 M * daniel_hozac if you manage to convince someone that it's a good idea ;) 1157459254 M * daniel_hozac in general though, it shouldn't be very hard to make one yourself. 1157459408 J * bubulak ~bubulak@whisky.pendo.sk 1157459420 M * daniel_hozac http://people.linux-vserver.org/~dhozac/2.0.2.deltas has a list of the deltas that make up the differences between release candidates. 1157459435 M * daniel_hozac and the deltas should be available in http://vserver.13thfloor.at/Experimental/ 1157459449 M * daniel_hozac (-rc31 to final is delta-init-fix01, delta-remount-fix01) 1157459583 M * daniel_hozac some deltas may be available from http://people.linux-vserver.org/~dhozac/p/k/ or http://www.13thfloor.at/~doener/vserver/patches/ though. 1157459856 M * sezuan_ thanks. 1157460056 M * harry Hollow: can i try hacking the server? ;) 1157460096 M * harry bleh, no time anyways... so i won't bother :) 1157460173 M * sid3windr haxx 1157460178 M * Hollow harry: sure.. 1157460198 M * Hollow as long as you leave some cpu time to other processes ;) 1157460203 M * harry hehe :) 1157460530 M * nayco Hollow: Bertl_zZ daniel_hozac : Article posted, waiting for moderation... http://linuxfr.org/ (This may take some days...) 1157460542 M * daniel_hozac nayco: great! 1157460696 M * Loki|muh funny, if you let mount a nfs-export via /etc/vservers/vserverxy/fstab, you must put both the host and guest ip in /etc/exports 1157460860 J * rob-84x^ rob@submarine.ath.cx 1157461258 N * Bertl_zZ Bertl 1157461277 M * Bertl morning! 1157461284 M * daniel_hozac morning! 1157461288 M * Bertl Loki|muh: that's what fstab.remote is for :) 1157461383 J * ScoobyD00 ~foo@82-44-80-99.cable.ubr08.newm.blueyonder.co.uk 1157461447 M * ScoobyD00 hello - i have a problem in a vserver - i am using debian stable's kernel-patch-vserver (1.9.5.6) 1157461463 M * Bertl LOL, sorry 1157461478 M * ScoobyD00 hi bertl 1157461481 M * Bertl yes, what's your problem with that ancient version? 1157461484 M * ScoobyD00 :o) 1157461508 M * ScoobyD00 well, i have been using vserver happily for some months (after you helped me with initial issues!) 1157461535 M * ScoobyD00 but now i created a new vserver guest, and downloaded an application (folding@home) 1157461552 M * ScoobyD00 but when i try to run it, inside the vserver it says "file cannot be found" 1157461561 M * ScoobyD00 when it is so definately there 1157461568 M * ScoobyD00 i can copy it, edit it, but not run it 1157461570 J * hvd ~takeagues@fw-grz.hollomey.com 1157461577 M * ScoobyD00 and yes, x permissions are set 1157461584 M * Bertl which file is it looking for? 1157461599 M * Bertl or do you get that when you try to start the executable itself? 1157461634 M * Bertl could it be a script with a hashbang line which isn't correct for your guest (debian)? 1157461640 M * ScoobyD00 -bash: ./FAH502-Linux.exe: No such file or directory 1157461657 M * ScoobyD00 when i start the exe 1157461674 M * Bertl .exe not a typical name for linux executables :) 1157461678 M * ScoobyD00 no i know :) 1157461686 M * Bertl let's start with a 'file FAH502-Linux.exe' 1157461687 M * hvd what does "file FAH502-Linux.exe" give ? 1157461701 M * hvd morgen bertl .. :) 1157461737 M * ScoobyD00 FAH502-Linux.exe: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), for GNU/Linux 2.0.0, dynamically linked (uses shared libs), stripped 1157461748 M * hvd and "uname -a" ? 1157461758 M * ScoobyD00 hmmm, maybe this is because the guest is 64bit 1157461767 M * daniel_hozac quite possible. 1157461769 M * ScoobyD00 although it should run fine - but not a vserver issue 1157461793 M * ScoobyD00 hvd: Linux folding 2.6.8-vserver-smp #1 SMP Wed Jul 5 13:02:07 BST 2006 x86_64 GNU/Linux 1157461808 M * ScoobyD00 ok, i try a 32 bit guest ;o) 1157461810 M * Bertl let's try with 'strace -fF -o FAH.trace ./FAH502-Linux.exe' 1157461822 M * Bertl you might need to install strace first :) 1157461833 M * Bertl and upload the FAH.trace to paste.linux-vserver.org 1157461861 M * ScoobyD00 strace: exec: No such file or directory 1157461872 M * ScoobyD00 strace runs ok, but cant fun the exe thing 1157461875 M * ScoobyD00 *run 1157461903 M * hvd some libs missing ? 1157461905 M * Bertl okay, you are sure that you have 32bit compatibility compiled into the kernel at all? 1157461917 M * ScoobyD00 yeah i have mixed 32 bit and 64 bit guests 1157461939 M * Bertl okay, what does 'ldd ./FAH502-Linux.exe' give? 1157461972 M * Loki|muh Bertl: ah, thanks alot :) 1157462002 M * ScoobyD00 - /usr/bin/ldd: line 1: /lib/ld-linux.so.2: No such file or directory 1157462038 M * Bertl well, that looks like it is the source of your problems, but not a Linux-VServer issue :) 1157462049 M * ScoobyD00 yeah :o) thanks for the help anyways 1157462067 M * ScoobyD00 i am hoping a half recent version will make its way to the new debian release in december ;o) 1157462073 M * Bertl yo're welcome! and don't worry, 99% of the reported 'issues' are not related 1157462083 M * hvd bertl: +/proc/fs/nfs/ in defaults/vprocunhide-files should unhide in all context ? 1157462096 M * daniel_hozac it should. 1157462137 M * hvd even allready running contexts ? 1157462144 M * Bertl yup 1157462204 Q * ScoobyD00 1157462314 M * Loki|muh Bertl: hum, fstab.remote seems not to be noticed :( 1157462351 M * Bertl only means you want to update tools, I guess ... 1157462352 M * Loki|muh what was the switch to enable debugging output? 1157462387 M * Loki|muh hmmm, would be another idea 1157462393 M * Loki|muh util-vserver-0.30.196 are on the host 1157462416 M * Bertl yeah, 0.30.210 would be a good choice :) 1157462419 M * hvd setattr -R --\!hide /proc/fs/nfs/ wont work .. mhh strange 1157462449 M * hvd vs2.0.2-rc31/ 0.30.209 1157462450 M * Loki|muh okay ;) 1157462464 M * doener hvd: IIRC it's --~hide 1157462517 M * hvd both return success .. but they dont thing to change visibility .. 1157462546 M * Bertl maybe something is mounted there? 1157462561 M * Bertl what do you expect to be 'visible' at this location? 1157462563 M * hvd ahh .. its yust recursive downwards .. not upwards :) 1157462575 M * hvd so /proc/fs has to be visible first :) 1157462586 M * Bertl hmm, good point :) 1157462689 M * hvd nfsservctl() should be possible with CAP_SYS_PACCT ? 1157462705 M * hvd (according to capability.h) 1157462720 M * hvd but i get EPRM .. 1157462727 M * Bertl what are you trying to do, btw? 1157462734 M * hvd kernel nfs server .. 1157462741 M * Bertl in a guest? 1157462745 M * hvd yes . 1157462753 M * hvd its on drbd .. 1157462764 M * Bertl well, you probably need a bunch more caps plus a working portmap 1157462786 M * Bertl IMHO kernel services inside a guest are not a good idea 1157462790 M * hvd so handling this in a vserver seems easier .. 1157462874 M * nayco Hello, Bertl 1157462883 J * hallyn ~xa@adsl-75-2-92-167.dsl.chcgil.sbcglobal.net 1157462995 M * Bertl hey nayco! welcome hallyn! 1157463484 J * yarihm ~yarihm@84-75-123-221.dclient.hispeed.ch 1157463533 J * thomsen ~thomsen@p54B9FBC2.dip.t-dialin.net 1157463639 M * thomsen hi all 1157463745 M * thomsen i have a little prob with my vserver ... when try to install something i often get the message "no space left" ...but on the host here ist enougth free space on the hdd .. any hinds ? 1157463782 J * dlezcano ~dlezcano@242.32.96-84.rev.gaoland.net 1157463931 M * Bertl thomsen: maybe too strict disk limits? 1157463949 M * hvd maybe a tmpfs mounted in /tmp ? 1157463953 M * Bertl thomsen: maybe you try to put too much stuff on tmp 1157463969 M * Bertl welcome dlezcano! 1157463981 M * hvd try df -h /tmp 1157464061 M * dlezcano hello 1157464205 M * thomsen no, not disk limits ... 1157464210 Q * virtuoso Ping timeout: 480 seconds 1157464248 M * thomsen df -h /tmp says 139 GB free 1157464325 M * Bertl what does df -k and df -i give on host and guest? (please upload to paste.linux-vserver.org) 1157464333 M * thomsen are some things stored under /var/run/vserver ?? cause this ist an extra partition with only 900 mb 1157464360 M * Bertl yes, a few things are stored there, but nothing huge 1157464389 M * thomsen df -k on vserver --> none 16384 0 16384 0% /tmp 1157464444 M * thomsen Dateisystem 1K-Blöcke Benutzt Verfügbar Ben% Eingehängt auf 1157464444 M * thomsen /dev/hdv1 145653664 1804688 136450204 2% / 1157464444 M * thomsen none 16384 0 16384 0% /tmp 1157464576 M * Bertl okay, I'm off now ... back later 1157464587 M * Bertl thomsen: please upload the outputs to paste.linux-vserver.org 1157464592 N * Bertl Bertl_oO 1157464646 M * thomsen oky 1157464664 Q * dlezcano Remote host closed the connection 1157464681 J * s0undt3ch_ ~s0undt3ch@bl7-251-171.dsl.telepac.pt 1157464767 M * thomsen no ideas ? 1157464832 M * doener well the vserver's tmpfs is just 16MB 1157464852 M * doener adjust /etc/vservers/foo/fstab to change that 1157464962 M * thomsen cool thanx 1157465107 Q * s0undt3ch Ping timeout: 480 seconds 1157465116 N * s0undt3ch_ s0undt3ch 1157465846 Q * nayco Quit: leaving 1157465902 J * root ~root@proxy2.laroche.univ-nantes.fr 1157465921 M * root test 1157465936 M * root test 1157465941 N * root nayco_work 1157465943 M * nayco_work Ah ! 1157467554 M * doener tsts... don't root'n'irc ;) 1157467622 M * cehteh oha 1157467639 M * cehteh 7version nayco_work 1157467642 M * cehteh oops 1157467751 M * matti Hi Bertl :) 1157467754 M * matti cehteh: :) 1157467783 J * lilalinux ~plasma@dslb-084-058-203-181.pools.arcor-ip.net 1157468106 M * nayco_work doener: You're right, but sometimes... You've got no easy alternative. 1157468110 Q * nayco_work Quit: leaving 1157468168 J * nayco ~nayco@proxy2.laroche.univ-nantes.fr 1157468178 M * nayco Oh, this time it works :-O ! 1157468195 M * nayco Well, forget my last root post :D 1157468646 N * Belu_zZz Belu 1157468779 M * thomsen vreboot in vserver only shows "connect /dev/reboot (No such file or directory)" ... how can i create this ?? 1157468893 M * doener vreboot is legacy stuff 1157468911 M * doener with "plain" init-style reboot should work, with sysv init-style, you have to use reboot -f 1157469083 M * doener ah, heise newsticker has our release announcement 1157469102 M * doener http://www.heise.de/newsticker/meldung/77762 1157469318 M * thomsen legacy means that it will work only with some guests ?? ist there a other way to "reboot" inside a guest ? 1157469330 M * thomsen clean reboot ... 1157469422 A * Belu is away (i´ll be back later...) 1157469423 N * Belu Belu_zZz 1157470149 J * Viper0482 ~Viper0482@p54976138.dip.t-dialin.net 1157470171 P * Viper0482 1157470478 M * derjohn Hollow, great foo! well done ;) 1157470823 M * Hollow derjohn: thanks :) 1157470942 M * Hollow btw, http://golem.de/0609/47601.html too 1157470943 M * derjohn Hollow, heise was fast, do others follow Hollow? 1157470948 M * derjohn race ! ;) 1157470954 M * Hollow and not to forget: http://planet.gentoo.org/developers/hollow/2006/09/05/linux_vserver_project_announces_new_stab 1157471068 M * Hollow derjohn: golem was first ;) 1157471086 M * Hollow lwn and /. still missing 1157471099 M * Hollow Bertl_oO: btw, i did not send anything to LKML, do you want to do it? 1157471236 M * harry interesting q, thomsen ... can you "reboot" from inside a guest? 1157471249 M * harry if i have a vps that i want to "restart", is there a way to do so? 1157471262 M * harry or is the only way: enter the root host, and stop/start the vps ? 1157471449 M * matti harry: Seems so. I don't know other method. 1157471567 M * thomsen harry .. found something in the new wiki -_> 1157471568 M * thomsen http://linux-vserver.org/Frequently_Asked_Questions#How_can_I_reboot.2Fhalt_guests.3F 1157471633 M * derjohn .. /. ??? well, will the wiki stand that? 1157471862 N * Belu_zZz Belu 1157471893 M * doener thomsen: "reboot -f" is clean inside a vserver as well, because the kernel forwards the request to a userspace helper that actually does a "vserver foo restart" 1157471922 M * harry mkay... now the question is... if i add the "reboot" capability... will that make the HOST reboot, or the VPS ? 1157471934 M * daniel_hozac the reboot capability is given by default. 1157471992 M * harry luditdb:/# reboot 1157471992 M * harry shutdown: /dev/initctl: No such file or directory 1157471992 M * harry init: /dev/initctl: No such file or directory 1157472008 M * doener that's sysv initstyle then, so you need "reboot -f" 1157472102 M * harry ah... does that cleanly shutdown everything too??? 1157472137 M * doener scroll up by about 3 minutes ;) 1157472145 M * daniel_hozac as doener said about an hour for the first time :) 1157472150 M * daniel_hozac +ago 1157472185 M * doener daniel_hozac: well, that first one didn't say "clean" (just to be fair ;)) 1157472196 M * daniel_hozac that's implied ;) 1157472268 M * harry lol... /me needs to read more :) 1157472427 J * bonbons ~bonbons@83.222.36.236 1157472537 M * matti ;-) 1157473033 M * Hollow derjohn: who cares :P 1157473542 Q * anonc charon.oftc.net iridium.oftc.net 1157473542 Q * sladen charon.oftc.net iridium.oftc.net 1157473542 Q * micah charon.oftc.net iridium.oftc.net 1157473542 Q * derjohn charon.oftc.net iridium.oftc.net 1157473542 Q * ntrs charon.oftc.net iridium.oftc.net 1157473542 Q * ruskie charon.oftc.net iridium.oftc.net 1157473542 Q * cehteh charon.oftc.net iridium.oftc.net 1157473542 Q * Loki|muh charon.oftc.net iridium.oftc.net 1157473542 Q * ebiederm charon.oftc.net iridium.oftc.net 1157473542 Q * lylix charon.oftc.net iridium.oftc.net 1157473542 Q * Belu charon.oftc.net iridium.oftc.net 1157473542 Q * nokoya charon.oftc.net iridium.oftc.net 1157473670 J * anonc ~anonc@staffnet.internode.com.au 1157473670 J * sladen paul@starsky.19inch.net 1157473670 J * micah ~micah@micah.riseup.net 1157473670 J * derjohn ~derjohn@80.69.37.19 1157473670 J * ntrs ~ntrs@68-188-51-87.dhcp.stls.mo.charter.com 1157473670 J * ruskie ~ruskie@ruskie.user.oftc.net 1157473670 J * cehteh ~ct@cehteh.homeunix.org 1157473670 J * Loki|muh loki@satanix.de 1157473670 J * ebiederm ~eric@ebiederm.dsl.xmission.com 1157473670 J * lylix ~eric@dynamic-acs-24-154-53-234.zoominternet.net 1157473670 J * Belu B.Lukas@mail.openvcp.org 1157473670 J * nokoya ~young@hi-230-82.tm.net.org.my 1157473677 J * stefani ~stefani@tsipoor.banerian.org 1157473863 J * stefani_ ~stefani@tsipoor.banerian.org 1157474012 J * Viper0482 ~Viper0482@p54976138.dip.t-dialin.net 1157474134 M * Hollow harry: rofl.. your heya email just arrived :P 1157474239 Q * stefani Ping timeout: 480 seconds 1157474357 Q * stefani_ Ping timeout: 480 seconds 1157474588 Q * ||Cobra|| Remote host closed the connection 1157474767 M * Hollow doener: the heise trolls... jaja 1157474771 M * Hollow ;) 1157475250 Q * MrX Quit: urk IRC v0.-1.4 - http://urk.sf.net/ 1157475302 J * MrX ~urk@219.95.13.176 1157475333 M * [PUPPETS]Gonzo Congratulations for the release 1157477093 M * ruskie hmm does util-vserver acctually need the kernel patch to build or it'll build just not work? 1157477163 M * daniel_hozac it should build just fine. 1157477167 M * ruskie ok 1157477177 M * daniel_hozac installing will require a vserver kernel though, as it sets the barrier attribute on /vservers. 1157477192 M * ruskie hmm so make install won't work? 1157477194 M * ruskie hmm 1157477199 M * ruskie or will it silently fail? 1157477248 M * daniel_hozac i don't know if it does that when you install from source... i'd assume it wouldn't fail, just let you know it didn't work. 1157477689 Q * Viper0482 Quit: one day, i'll find this peer guy and then i'll reset his connection!! 1157478141 Q * ntrs Ping timeout: 480 seconds 1157478240 Q * gerrit Remote host closed the connection 1157478241 M * hvd Bertl_oO: the only problem i have found so far with nfs-kernel-server within vserver is lockd wich does not terminate 1157478292 J * gerrit ~gerrit@c-67-160-146-170.hsd1.or.comcast.net 1157478303 Q * gerrit 1157478423 M * hvd so in need to find a way to call lockd_exit from within userspace .. 1157478595 M * harry Hollow: wiiiiiii :) 1157478601 M * harry right on schedule ;) 1157478745 M * harry new graphics card... 1157480760 J * prae ~benjamin@foxhound.sherpadown.net 1157481065 Q * ^Duffy^ Ping timeout: 480 seconds 1157481923 Q * prae Quit: Pwet 1157482964 M * daniel_hozac matti: http://people.linux-vserver.org/~dhozac/p/k/delta-owner-xid-feat02.diff http://people.linux-vserver.org/~dhozac/p/m/iptables-1.3.5-owner-xid.patch seems to work fine, but kind of ugly with the u_int32_t rather than nid_t/xid_t... 1157484743 J * gerrit_ ~gerrit@c-67-160-146-170.hsd1.or.comcast.net 1157486810 Q * shedi Read error: Connection reset by peer 1157487880 Q * glut Ping timeout: 480 seconds 1157488232 Q * sezuan_ Read error: Connection reset by peer 1157488491 Q * hallyn Quit: leaving 1157488996 J * Hollow_mobile ~bene@p5497C7A6.dip0.t-ipconnect.de 1157489262 J * shedi ~siggi@inferno.lhi.is 1157489498 J * DreamerC_ ~dreamerc@61-224-133-132.dynamic.hinet.net 1157489902 Q * DreamerC Ping timeout: 480 seconds 1157489921 J * ntrs ~ntrs@68-188-51-87.dhcp.stls.mo.charter.com 1157490208 Q * mountie Remote host closed the connection 1157490234 J * mountie ~mountie@CPEdeaddeaddead-CM000a739acaa4.cpe.net.cable.rogers.com 1157490240 Q * dna Quit: Verlassend 1157490303 Q * Hollow_mobile Quit: This computer has gone to sleep 1157490369 Q * bonbons Quit: Leaving 1157490707 Q * Revelator Ping timeout: 480 seconds 1157490737 M * mnemoc hi, what happens if i mount the same blockdevice (not bind) in two different contexts? problems? 1157491588 Q * meandtheshell Quit: bye bye ... 1157492177 M * cehteh i dont think you can do that, mount will refuse with "device in use" 1157492287 M * mnemoc my fear is because it didn't refuse :( 1157492302 M * cehteh well maybe it works for ext filesystems 1157492333 M * cehteh i am not sure but i think there was something to make it possible some time ago 1157492368 M * cehteh its just that the filesysten/buffer cache needs to be aware of that .. and i doubt that some low-quality filesystems acknowledge that 1157492388 M * cehteh (yes i use reiserfs .. but very carefully and not v4) 1157492394 M * ruskie :) 1157492405 M * ruskie I wouldn't touch v4 with a N foot pole ) 1157492409 M * cehteh prolly the same for xfs and jfs 1157492412 M * ruskie collection of plugins... 1157492425 M * cehteh well i benchmarked it and it is really impressive 1157492443 M * ruskie yeah until one of the plugins crashes :) 1157492443 M * cehteh until the box crashed, the kernel hanged or the filesystem was destroyed 1157492451 M * ruskie particulary one of the core plugins 1157492463 M * ruskie and I had probs with v3 as well 1157492465 M * cehteh if they mature and fix the bugs and it withstands my tests then i will use it 1157492473 M * ruskie I'm sticking ext* 1157492483 M * cehteh 2.5 times faster on heavy load than anything else 1157492483 M * ruskie I wonder what interesting features ext4 will have 1157492492 M * ruskie I need reliable :) 1157492498 M * ruskie don't care much about speed 1157492499 M * cehteh yes me too 1157492509 M * cehteh but reliably and fast would be a option 1157492538 M * cehteh so every few month i just test it again .. lets see 1157492543 Q * yarihm Quit: Leaving 1157492555 M * cehteh other filesystems needed some years to stabilize too 1157492589 M * ruskie I tried xfs when it was just a set of patches to linux 1157492596 M * cehteh actually for a squid-cache an other high-demanding, non important data apps i would already reconsider it now 1157492597 M * ruskie wasn't real good then 1157492611 M * ruskie then I tried it again and it crashed in 9 months 1157492615 M * cehteh how do you define 'good' 1157492618 M * ruskie jfs broke down within a week 1157492636 M * ruskie it crashed within a few hours of testing :) 1157492638 M * cehteh i never had a reiserv3 crash 1157492653 M * cehteh (except some really provoked or failed hardware ones) 1157492668 M * ruskie v3 crashed for me and took quite some data with it 1157492681 M * cehteh well .. make backups 1157492687 M * ruskie lol 1157492702 A * cehteh has everything marginally important on backup 1157492703 M * ruskie I'll do that once I get a 3 disk raid-1 scsi array :) 1157492721 M * ruskie I don't have anything important on my hdds acctually... 1157492725 M * ruskie any data on there is transient 1157492750 M * cehteh 4disk raid5 here .. and rdiff-backup daily with 5-7 month into past depending on the box i back up 1157492758 M * cehteh and that works really fine 1157492774 M * michal_ 2 disk raid 0 here :P 1157492788 M * ruskie cehteh, lol 1157492789 M * cehteh hehe for performance i have a 4 disk raid0 on reiser 1157492802 J * Aiken ~james@tooax8-174.dialup.optusnet.com.au 1157492807 M * michal_ how are you going to do 3 disk raid1 btw? 1157492817 M * cehteh its impressive .. but i think i reformant that to somthing with redundancy soon :) 1157492839 M * cehteh i have 4 disk raid1's too 1157492850 M * cehteh each with 2 spares ;) 1157492865 M * michal_ i'm also going to change it, to 4 disk raid 5 soon 1157492883 M * cehteh actually very small partitions and there was just some space left to make the partitions symetric 1157492895 M * michal_ works fast enough and i will be sleeping better ;) 1157492900 M * cehteh so instead completely wasting the space i added them as spare 1157492912 M * michal_ ^^ 1157492927 M * cehteh linux md device raid5 is very slow when writeing 1157492934 M * cehteh reads are quite good 1157492944 M * michal_ tell me more about it.... 1157492947 M * michal_ how much slow? 1157492962 M * michal_ and how fast are reads too... 1157493002 M * cehteh well if you have 4 discs and want to write a chunk you have to read from the three other disks, calculate the parity and then write your data and the parity 1157493021 M * cehteh while reads can distrobuted on idle disk 1157493072 M * cehteh so lets say for a 4 disk raid5 you get somewhat more than 2 times the speed of reading from a single disk 1157493089 M * cehteh but writing is less than a half or maybe even slower 1157493188 M * michal_ less than half of a single disk? 1157493196 M * cehteh yes 1157493202 M * michal_ that hurts 1157493217 M * cehteh well dont use it where write performance is important 1157493225 M * cehteh use raid10 then 1157493265 M * cehteh or some *good* hardware raid controller .. with lots of battery backed memory on board 1157493276 M * michal_ i have one machine with such a controler 1157493279 M * michal_ and one without 1157493304 M * cehteh while for raid1 and raid10 it makes almost no sense to buy hardware raid .. md devices are damn fast 1157493314 M * cehteh what kind of controler 1157493331 M * michal_ IBM01:07.0 RAID bus controller: IBM ServeRAID Controller 1157493341 M * michal_ 64 MB of memory (battery backuped) 1157493344 M * michal_ for cache 1157493354 M * michal_ 4mx model i think 1157493355 M * cehteh sounds ok .. well 64mb isnt that much 1157493390 M * cehteh well if you need performance you would want to benchmark anyways 1157493419 M * michal_ that's what i'm going to do first :) 1157493466 M * cehteh and md-device raid5 for backup is really ok .. its slow .. but speed isnt important and you gain hardware independence because its purely software 1157493507 M * cehteh i actually prefer the md solution for many cases ... one just needs to know where and when it doesnt perform 1157493537 M * cehteh 23:59 .... 1157493547 M * cehteh backups starting soon G* 1157493557 M * michal_ ;p 1157494417 Q * brc_ Quit: [BX] Time wasted: 8 millenia 4 centuries 0 decades 7 years 3 months 1157494683 J * brc_ ~bruce@201.19.206.96 1157495596 Q * thomsen Ping timeout: 480 seconds 1157495727 A * Belu is away (i´ll be back later...) 1157495729 N * Belu Belu_zZz 1157497584 N * Bertl_oO Bertl 1157497589 M * Bertl back now ... 1157497640 M * Bertl hvd: interesting ... please make sure to put your findings on the wiki once you are done 1157497676 J * lilalinux_ ~plasma@dslb-084-058-196-163.pools.arcor-ip.net 1157498106 Q * lilalinux Ping timeout: 480 seconds 1157498579 Q * DreamerC_ Quit: leaving 1157498605 J * DreamerC ~dreamerc@61-224-133-132.dynamic.hinet.net