1194307313 P * paulproteus Leaving 1194307655 J * phx ~phx@core-02.com 1194307837 Q * smithbone Quit: Coyote finally caught me 1194307846 J * smithbone rsmith@opensysadmin.com 1194308038 J * smarthouseguy ~kevin@cpe-024-074-098-089.carolina.res.rr.com 1194308056 M * smarthouseguy hey everyone... 1194308105 M * dowdle smarthouseguy: Greetings. 1194308198 M * smarthouseguy I'm having ssh issues... not sure what's causing this.. have every client and the host configed in sshd_config for the ip is should listen on, but keep getting conection closed after a few mins of inactivity... oddest thing is that this doesn't happen in my lan, only when the server is in a datacenter, 2 diff places now. Any ideas??? using Debian GNU/Linux, kernel 2.6.18-5-vserver-amd64 1194308383 M * Guy- smarthouseguy: is there a stateful firewall between your box and the ssh server? 1194308425 M * Guy- my guess is that the firewall expires the connection state after a period of inactivity and refuses to pass further packets in that session 1194308435 M * smarthouseguy in my local environment here i have a hotbrick lb2-vpn 1194308436 M * Guy- as a workaround, you could try enabling keepalives in ssh 1194308445 M * smarthouseguy ahh... i bet that's it 1194308449 M * smarthouseguy how do i do that? 1194308472 M * smarthouseguy in the ssh client or on the server in sshd? 1194308475 M * Guy- with the TCPKeepAlive option in ssh_config 1194308478 M * Guy- client side 1194308479 M * dowdle smarthouseguy: We have that problem periodically at work and it is because there are periods of massive numbers of connections on the network... and the networking equipment gets overloaded. 1194308546 M * Guy- also maybe ServerAliveInterval 1194308597 M * smarthouseguy TCPKeepAlive is already yes 1194308606 M * Guy- then set ServerAliveInterval to a nonzero value 1194308619 M * Guy- and read man ssh_config 1194308654 M * Guy- if this doesn't help, the connection table of the firewall is probably overflowing 1194308664 M * Guy- maybe throttle your bittorrent downloads a bit :) 1194308680 M * Guy- but now, sleep(), goodnight 1194308687 M * smarthouseguy no bittorrent downloads ;-) 1194308691 M * smarthouseguy night.. thanks Guy 1194309145 J * mire_ ~mire@204-170-222-85.adsl.verat.net 1194309460 Q * mire Ping timeout: 480 seconds 1194311121 Q * dowdle Remote host closed the connection 1194312528 Q * fatgoose_ Quit: fatgoose_ 1194312760 J * fatgoose ~samuel@76-10-149-199.dsl.teksavvy.com 1194312786 Q * fatgoose 1194313897 Q * mire_ Ping timeout: 480 seconds 1194314481 J * mire ~mire@204-170-222-85.adsl.verat.net 1194314811 J * Hollow_ ~hollow@proteus.croup.de 1194314862 Q * Hollow Read error: Connection reset by peer 1194314869 N * Hollow_ Hollow 1194315284 Q * pflanze Ping timeout: 480 seconds 1194315712 Q * mire Ping timeout: 480 seconds 1194315792 J * pflanze ~chris@vslab-dhcp-18.inf.ethz.ch 1194315843 J * friendly12345 ~friendly@ppp59-167-134-217.lns3.mel6.internode.on.net 1194315953 J * Hollow_ ~hollow@proteus.croup.de 1194315959 J * dowdle ~dowdle@67-42-174-141.blng.qwest.net 1194316054 Q * Hollow Read error: Connection reset by peer 1194316072 N * Hollow_ Hollow 1194316157 Q * Hunger Ping timeout: 480 seconds 1194316234 J * Hunger EGO@Hunger.hu 1194316666 Q * pflanze Read error: Connection reset by peer 1194316704 J * pflanze ~chris@vslab-dhcp-18.inf.ethz.ch 1194316839 Q * hparker Remote host closed the connection 1194317207 Q * pflanze Read error: Connection reset by peer 1194317229 J * pflanze ~chris@vslab-dhcp-18.inf.ethz.ch 1194319029 M * Supaplex hello :) 1194322547 Q * pflanze Ping timeout: 480 seconds 1194323512 J * balbir ~balbir@59.178.41.111 1194324462 Q * balbir Ping timeout: 480 seconds 1194325114 N * Bertl_zZ Bertl 1194325119 M * Bertl morning folks! 1194327034 Q * friendly12345 Quit: Leaving. 1194327334 J * balbir ~balbir@59.178.50.183 1194329301 J * JonB ~NoSuchUse@kg1-98.kollegiegaarden.dk 1194330068 M * AStorm Bertl: chilly greetings :> 1194330094 M * Bertl hehe 1194330454 Q * dowdle Remote host closed the connection 1194330789 J * DLange ~dlange@p57A31590.dip0.t-ipconnect.de 1194331055 J * eviljonn1 ~eviljonny@loki.eviljonnys.com 1194331173 Q * eviljonny Ping timeout: 480 seconds 1194331515 M * fb morning Bertl! 1194331592 Q * AStorm Quit: ET calling home 1194331874 N * ensc Guest54 1194331883 J * ensc ~irc-ensc@p54B4FE1A.dip.t-dialin.net 1194331992 Q * Guest54 Ping timeout: 480 seconds 1194332100 Q * ntrs Ping timeout: 480 seconds 1194332367 J * DavidS ~david@vpn.uni-ak.ac.at 1194333000 Q * balbir Ping timeout: 480 seconds 1194333582 J * ntrs ~ntrs@79.125.235.194 1194333761 J * balbir ~balbir@59.178.50.167 1194334603 Q * JonB Quit: This computer has gone to sleep 1194335358 Q * rorem- Read error: Connection reset by peer 1194335586 Q * Hollow Quit: Caught sigterm, terminating... 1194335742 J * rorem- ~roremtank@bzq-219-46-202.isdn.bezeqint.net 1194336040 J * ntrs_ ~ntrs@79.125.229.123 1194336246 J * Hollow ~hollow@proteus.croup.de 1194336413 J * DawnLight ~DawnLight@89.1.227.155.dynamic.barak-online.net 1194336433 M * Bertl wb DawnLight! 1194336487 Q * ntrs Ping timeout: 480 seconds 1194336889 Q * rorem- Remote host closed the connection 1194337020 J * JonB ~NoSuchUse@kg1-98.kollegiegaarden.dk 1194337257 J * rorem- ~roremtank@bzq-219-46-202.isdn.bezeqint.net 1194337829 J * larsivi ~larsivi@85.221.53.194 1194338252 Q * Aiken Ping timeout: 480 seconds 1194338331 J * Aiken ~james@ppp59-167-115-173.lns3.bne4.internode.on.net 1194338402 J * lola22 ~lola22@ANantes-257-1-143-77.w90-32.abo.wanadoo.fr 1194338512 Q * lola22 1194338780 J * dna ~dna@70-240-dsl.kielnet.net 1194339086 J * anna30 ~anna30@ANantes-257-1-143-77.w90-32.abo.wanadoo.fr 1194339100 Q * balbir Ping timeout: 480 seconds 1194339143 Q * anna30 1194339328 Q * toidinamai Quit: Leaving 1194339517 M * igraltist hi 1194339559 M * igraltist for starting a X-server in the guest, need it on the host also a X-server running? 1194339620 M * Bertl define X-server :) 1194339648 M * igraltist so that i can start the gdm on it. 1194339709 M * Bertl you can start gdm on a purely virtual X server too 1194339748 M * igraltist i want opengl support on the guest 1194339757 M * JonB and probably on a remote xserver 1194339798 M * Bertl opengl can be supported on all servers via mesa (even on virtual ones :) 1194339854 J * balbir ~balbir@59.178.39.70 1194339957 Q * DawnLight Ping timeout: 480 seconds 1194339983 J * DawnLight ~DawnLight@89.1.227.155.dynamic.barak-online.net 1194340076 M * igraltist but with mesa the performance are not so fastl 1194340131 M * Bertl so back to define X-server :) 1194340158 M * Bertl do you want to run X11 with 100% hardware access in a guest? 1194340175 M * JonB igraltist: if so, then i wonder what you think you will gain from that? 1194340177 M * Bertl if so, then you need to eliminate most of the security 1194340190 M * Bertl but it works 1194340248 M * ard I can imagine the gain in having a stable or unstable graphical (gaming) environment, and having other stable/unstable along that. 1194340249 M * igraltist security in this sense is not so important 1194340262 M * ard stable/unstable in distribution sense 1194340298 M * ard partitioning is not always done for security, but also for keeping the system clean 8-D 1194340392 M * ard anyway: igraltist : you can make it anyway you want. Though if you want to have hardware accelerated GL, your guest will have to have I/O access or things like that I guess 1194340428 M * ard although I think having access to /dev/dri/* should suffice (which means the dri modules should already be loaded) 1194340454 M * JonB ard: good arguments 1194340476 M * Bertl ard: unfortunately not, X11 still insists on access to memory and I/O ranges for probing 1194340495 M * ard ah, and bios calls of course... 1194340496 M * Bertl even if you do not need all of that :) 1194340533 M * ard Bertl is right 1194340579 M * igraltist the think why i want do it so it, because all filesystem i have encrypted and the host where i can get access should have not special so that is easy to repear. 1194340589 Q * DawnLight Ping timeout: 480 seconds 1194340606 M * ard If yoy can keep the X11-server installation sane, it might be enough to run only the X-server in a guest with I/O privileges, and the client with access to the X-server (/tmp/.X stuff) 1194340620 M * ard but that would make the installation very unclean 1194340686 M * JonB all this have made me think of a setup i think could possibly be usefull 1194340727 M * JonB it's a combination of Linux terminal server and vserver, but the idea is that every user has his/hears own vserver that they might control themselves, aka be root 1194341874 J * DawnLight ~DawnLight@89.1.227.155.dynamic.barak-online.net 1194342010 P * DavidS Leaving. 1194342537 J * toidinamai ~frank@svenska.toidinamai.de 1194343484 Q * JonB Quit: This computer has gone to sleep 1194343734 Q * DawnLight Ping timeout: 480 seconds 1194343779 J * DawnLight ~DawnLight@89.1.227.155.dynamic.barak-online.net 1194344966 J * igraltista ~jens@p4FD27594.dip.t-dialin.net 1194345172 M * baldy huhuhuhu 1194345194 M * baldy is there any way to limit the ram and CPU for a guest? 1194345298 M * Bertl yes, check out: http://linux-vserver.org/Memory_Limits and http://linux-vserver.org/CPU_Scheduler 1194345321 M * baldy great 1194345416 M * baldy omg 1194346201 N * fosco_ fosco 1194346429 Q * virtuoso Ping timeout: 480 seconds 1194346542 J * meandtheshel1 ~markus@85.127.102.148 1194346684 J * JonB ~NoSuchUse@kg1-98.kollegiegaarden.dk 1194346961 Q * Aiken Remote host closed the connection 1194347185 Q * balbir Ping timeout: 480 seconds 1194347913 Q * JonB Quit: Leaving 1194347986 J * mire ~mire@204-170-222-85.adsl.verat.net 1194348115 Q * igraltista Read error: Connection reset by peer 1194348254 J * JonB ~NoSuchUse@kg1-98.kollegiegaarden.dk 1194348519 M * baldy Bertl: in which file i can limit the cpu? 1194348527 M * baldy i cant find anythiing 1194348627 M * JonB baldy: the flowerpage? 1194349130 M * baldy JonB: mhh? which flowerpage 1194349216 M * Hollow http://www.google.com/search?q=flower+page+util-vserver :) 1194349229 Q * JonB Ping timeout: 480 seconds 1194349236 Q * toidinamai Quit: Leaving 1194349361 M * DLange Hi Hollow, 22.11 is on http://linux-vserver.org/Welcome_to_Linux-VServer.org since yesterday. I'll bug you in #gentoo-vps from next week :) 1194349381 M * Hollow yup, i already noticed 1194349396 M * Hollow Bertl: reminds me to bug you again to use localversion ;) 1194349554 M * Bertl Hollow: well, the 'reject' keeps folks from using the wrong patch 1194349583 M * Hollow omg. 1194349625 M * ard 22.11 is so yesterday 1194349629 M * ard today it's 22.12! 1194349636 M * Bertl baldy: http://www.nongnu.org/util-vserver/doc/conf/configuration.html#sched 1194349651 M * ard (at least in my timezone :-0) 1194349670 M * Hollow today is 06.11 in my timezone 1194349671 M * Bertl daniel_hozac: do we have any pending patches (e.g. from the skb fixes)? 1194349693 M * Hollow ard: but lucky for you, two days away from christmas presents :P 1194349735 M * ard :-) 1194349903 J * balbir ~balbir@59.178.39.70 1194352904 J * JonB ~NoSuchUse@192.38.8.25 1194354428 J * toidinamai ~frank@svenska.toidinamai.de 1194354473 J * virtuoso ~s0t0na@ppp91-122-102-225.pppoe.avangard-dsl.ru 1194355027 Q * mire Ping timeout: 480 seconds 1194355597 J * dna_ ~dna@156-244-dsl.kielnet.net 1194356004 Q * dna Ping timeout: 480 seconds 1194357044 J * ^eRicSOn_Full^ ~nYtEmO@210.213.130.52 1194357598 J * lilalinux ~plasma@80.69.41.3 1194358098 M * harry Bertl: you there? 1194358105 M * harry i have my server @ germany... 1194358117 M * harry do you need a mirror server for patches etc/ 1194358118 M * harry ? 1194358149 A * harry will read later... if interested... you know where to find me 1194358170 M * harry i have 100Mbit connection , no BW limits... it's at hetzner.de 1194358184 A * harry fixes a fscked up redhat machine.. 1194358196 M * Bertl harry: yep 1194358203 M * harry ah, you're there 1194358219 M * harry tell me... what/how do we do it/ 1194358224 M * harry rsync in a cron? 1194358242 M * harry other? 1194358266 M * Bertl we should talk with hollow and daniel_hozac about that 1194358279 M * harry sure :) 1194358285 M * Bertl but rsync sounds reasonable 1194358320 M * harry its a server with vservers running on it, so we can do what we want :) 1194358338 M * Bertl yeah, so a vserver guest should suffice 1194358343 M * Hollow well, linux-vserver.org is at hetzner too :) 1194358347 M * Hollow but we can mirror it of course 1194358355 M * harry Hollow: does that make sense then? 1194358362 M * harry same provider etc... 1194358387 M * Hollow well, only if i screw up :) 1194358391 M * harry hehe 1194358410 A * DLange as an unrelated party says: makes sense :-) 1194358411 M * harry do you often screw up? ;) 1194358432 M * Hollow of course not :P 1194358469 M * harry hehe 1194358473 M * Hollow well, even if only backup-wise.. i think it's not a bad idea 1194358478 M * harry mkay 1194358483 M * harry how much diskspace do you need? 1194358541 M * harry what software? 1194358547 M * harry do you need a seperate ip? 1194358550 J * ema ~ema@rtfm.galliera.it 1194358551 M * Hollow helios ~ # du -sh /var/ftp/ 1194358552 M * Hollow 1.4G /var/ftp/ 1194358571 M * harry centos5 ok? or ubuntu? 1194358603 M * Hollow no preference as long as i don't have to touch it :) 1194358620 Q * ^eRicSOn_Full^ Quit: googbye guys!! 1194358771 M * harry vnamespace: execvp("/usr/lib64/util-vserver/vserver-build"): No such file or directory 1194358775 M * harry grmvbl 1194358989 M * harry making.. 1194359594 M * harry Hollow: machine running... 1194359599 M * harry do you need any services running there? 1194359630 M * Hollow hm, maybe it would be best to setup rsyncd at my box so you can sync it via cron? 1194359646 M * harry or rsync through ssh 1194359649 M * harry with a key 1194359663 M * Hollow fine as well 1194359680 M * harry bit more secure i think :) 1194359686 M * harry do make stuff public? 1194359690 M * harry ftp server or so? 1194359692 M * harry webserver? 1194359695 M * harry how about dns? 1194359716 M * harry /dev/hdv1 5160576 487988 4410444 10% / 1194359737 M * Hollow Bertl is repsonsible for dns 1194359758 M * Hollow anonymous ftp sounds fine to me 1194360136 M * harry done 1194360147 M * harry ftp running at 78.47.195.155 1194360158 M * harry now ... we need stuff ;) 1194360166 M * harry daily ;) 1194360171 J * mire ~mire@204-170-222-85.adsl.verat.net 1194360171 M * Hollow wow .195 1194360184 M * Hollow they sell a lot of boxes lately o.o 1194360195 Q * larsivi Quit: Konversation terminated! 1194360226 M * Hollow harry: send me the pubkey and i will create an rsync account 1194360289 Q * ema Ping timeout: 480 seconds 1194360368 M * Bertl Hollow: wouldn't it be better/easier the other way round? 1194360544 M * Hollow doesn't matter really, but it's already done now :) 1194360567 M * sid3windr den edwin 1194360621 M * Bertl sid3windr: what's up with edwin? 1194360626 M * sid3windr I don't know 1194360628 M * sid3windr who's edwin? :p 1194360633 M * Bertl lol 1194360652 M * sid3windr :> 1194360678 Q * meandtheshel1 Quit: Leaving. 1194361017 Q * balbir Ping timeout: 480 seconds 1194361050 M * harry Bertl: shall we make a dns entry for it too? 1194361098 M * Bertl won't hurt, maybe something like mirror1 ? 1194361113 M * harry e.g. 1194361164 Q * DawnLight Ping timeout: 480 seconds 1194361206 M * Bertl harry: 78.47.195.155? 1194361216 M * harry yeah 1194361260 Q * nebuchadnezzar Remote host closed the connection 1194361306 M * Bertl ping mirror1.linux-vserver.org 1194361307 M * Bertl PING mirror1.linux-vserver.org (78.47.195.155) 56(84) bytes of data. 1194361332 J * DawnLight ~DawnLight@89.1.227.155.dynamic.barak-online.net 1194361346 M * harry wiiii :) 1194361369 M * harry it's working 1194361385 M * harry sync is done aswell 1194361399 M * sid3windr syncywinky 1194361469 M * harry every night at 04:36 1194361572 M * grobie i have a question regarding mount -t nfs -o tagxid 1194361586 M * Bertl grobie: yes? 1194361594 M * grobie i always complains that the option is unknown 1194361609 M * Bertl what kernel do you use? what patches? 1194361659 M * grobie mount 2.12r and 2.6.22.2 with vserver 2.2.0.3 1194361688 M * grobie and the nfs-patches from trond 1194361714 M * grobie util-vserver 0.30-214 1194361724 M * Bertl hmm ... did you try with a newer version? e.g. 2.2.0.5 yet? 1194361741 M * grobie nope, not now 1194361755 M * grobie so i assume you suggest to do that? 1194361759 M * Bertl do you get any message in 'dmesg' when you try? 1194361769 M * Bertl (try to mount, that is) 1194361823 J * lidi20 ~lidi20@ANantes-257-1-120-128.w90-25.abo.wanadoo.fr 1194361831 M * grobie do you want the whole dmesg output? in that case i'll provide it as a download ;) 1194361838 M * Bertl harry: you could also do a read-only version (static mirror) of the wiki pages, if you want to spend some time ... 1194361842 M * Bertl welcoem lidi20! 1194361852 M * Bertl grobie: no, just look for new messages 1194361946 Q * lidi20 1194362059 J * balbir ~balbir@59.178.36.94 1194362081 M * grobie well, it's quite much anyway since i added some nfs debugging options 1194362194 M * Bertl okay, feel free to upload it somewhere 1194362233 M * daniel_hozac harry, Hollow: why not make it a public rsyncd on helios? 1194362283 M * DawnLight i don't get how networking works. i am building a vserver so that a stranger could ssh into. i don't know whats being done with the values i give in --interface 1194362299 M * Bertl DawnLight: let me explain then .. 1194362328 M * Bertl DawnLight: networking is and absolutely stays on the host system, so all configuration you do there works as usual 1194362362 M * Bertl DawnLight: IPs can be 'assigned' to guests, which in turn, can then bind services to those OPs 1194362365 M * Bertl *IPs 1194362391 M * harry daniel_hozac: don't know... :) 1194362425 M * Bertl DawnLight: the --interface option supports (as convenience) several methods to 'create/destroy' those guest IPs on guest startup/shutdown 1194362496 M * Bertl DawnLight: the most complex form is --interface =[.]:/(|) 1194362535 M * Bertl e.g. --interface light=eth1:10.0.0.1/24 1194362565 M * Bertl means that the tools will create a 'named' alias for eth1 (eth1:light) and assign the IP 10.0.0.1 netmask 255.255.255.0 1194362583 M * Bertl in addition to that, they will assign the 10.0.0.1/24 ip to the guest 1194362588 J * meandtheshel1 ~markus@85.127.112.221 1194362612 M * Bertl DawnLight: in your specific case, you want to do the following things: 1194362616 M * DawnLight so that interface will be created in my host? 1194362629 M * Bertl no interfaces are 'created' 1194362638 M * Bertl i.e. eth1 has to exist already 1194362653 M * Bertl back to your case ... 1194362668 M * Bertl a) restrict the host sshd to bind to host only IPs 1194362685 M * Bertl b) assign a public or private ip to the guest with 1194362696 M * Bertl --interface eth0:/ 1194362710 M * Bertl c) start the guest .. 1194362746 M * Bertl that's it, the guest will (assumed that it has sshd installed) bind to the assigned ip, and you can connect to the guest ip 1194362747 M * grobie Bertl: http://84.244.1.52/dmesg-short.txt 1194362774 M * DawnLight by "host" we are reffering to the actual system, and not the created vserver 1194362801 M * Bertl yes, the physical machine is called host, the isolation area, guest 1194362887 M * Bertl grobie: could you run the testme.sh script and upload the output please? 1194362904 M * DawnLight by "bind to" you mean "listen on"? 1194362937 M * daniel_hozac listen only sets up the socket for incoming connections, bind is what restricts it to a certain IP :) 1194362975 M * daniel_hozac (but the option in sshd_config is called ListenAddress) 1194363010 M * Bertl which only needs to be specified on the host, if you share the same port with the guest 1194363031 M * daniel_hozac Bertl: did you see http://people.linux-vserver.org/~dhozac/p/k/delta-signal-fix01.diff? 1194363086 M * Bertl ah, protection for virtual init processes? 1194363138 M * daniel_hozac not only that, but signalling it is impossible at the moment. 1194363152 M * daniel_hozac (or, rather, you have to use its real pid) 1194363176 M * Bertl that's the rmap part 1194363179 M * daniel_hozac right. 1194363198 M * daniel_hozac i just added the first hunk because i saw it checking for pid == 1. 1194363222 M * Bertl aha, so no real 'error case' for that, yes? 1194363276 M * daniel_hozac well, it might be kind of unexpected to have init killed too by kill -1, but i guess it's not important. 1194363310 M * DawnLight thanks 1194363310 Q * DawnLight Quit: using sirc version 2.211+KSIRC/1.3.12 1194363336 M * Bertl daniel_hozac: nah, I'm fine with it, just curious if it was tested/triggered somehow 1194363379 M * daniel_hozac no, that was just found by accident when i noticed kill -HUP 1 didn't work ;) 1194363404 M * grobie Bertl: http://84.244.1.52/nfs-client.txt http://84.244.1.52/nfs-server.txt 1194363413 J * fatgoose ~samuel@76-10-149-199.dsl.teksavvy.com 1194363643 J * virtuozzo ~rpavlyuk@195.160.234.1 1194363728 M * Bertl grobie: what nfs version? 1194363745 M * grobie Bertl: version3 1194363832 M * grobie Bertl: i had a first glance at the sources of mount and it checks for recognized options first 1194363853 M * virtuozzo Guys, I have here a problem with vs2.3.0 @ CentOS5: no services want to bind to internal loopback IP 127.0.0.1 1194363866 M * Bertl grobie: could you strace -fFvx the mount for me, please? 1194363874 M * virtuozzo I mean services on guest 1194363875 M * grobie sure 1194363882 M * daniel_hozac virtuozzo: SINGLE_IP activated on the guest? 1194363895 M * Bertl daniel_hozac: vs2.3.0 doesn't even have that 1194363930 M * daniel_hozac well, vs2.3.0 was never released, AFAIK :) 1194363955 M * Bertl virtuozzo: what patch version? 1194363982 Q * ntrs_ Ping timeout: 480 seconds 1194364001 M * virtuozzo [root@prod-c1-solrmst1 ~]# uname -a 1194364001 M * virtuozzo Linux prod-c1-solrmst1 2.6.22.10-vs2.3.0.29.1 #1 SMP Tue Oct 30 20:21:57 EDT 2007 x86_64 x86_64 x86_64 GNU/Linux 1194364042 M * virtuozzo netstat looks like this: 1194364042 M * virtuozzo Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name 1194364042 M * virtuozzo tcp 0 0 127.0.0.1:8005 0.0.0.0:* LISTEN 3311/java 1194364043 M * virtuozzo tcp 0 0 10.10.35.41:8009 0.0.0.0:* LISTEN 3311/java 1194364043 M * virtuozzo tcp 0 0 10.10.35.41:8080 0.0.0.0:* LISTEN 3311/java 1194364043 M * virtuozzo tcp 0 0 10.10.35.41:80 0.0.0.0:* LISTEN 3334/httpd 1194364059 M * virtuozzo so when I try to access localhost:80 I'm getting: 1194364072 M * virtuozzo [root@prod-c1-solrmst1 ~]# telnet 127.0.0.1 80 1194364072 M * virtuozzo Trying 127.0.0.1... 1194364072 M * virtuozzo telnet: connect to address 127.0.0.1: Connection refused 1194364072 M * virtuozzo telnet: Unable to connect to remote host: Connection refused 1194364081 M * daniel_hozac that looks like SINGLE_IP with AUTO_LBACK. 1194364099 M * Bertl assuming localhost points to 127.0.0.1, then it is not bound by httpd 1194364100 M * grobie Bertl: http://84.244.1.52/strace.out 1194364108 Q * lilalinux Remote host closed the connection 1194364140 M * harry listen is on 10.10.35.41:80 .... not on 127.0.0.1 ;) 1194364168 M * Bertl grobie: yep, looks like your mount is trying to be too smart 1194364173 M * virtuozzo harry: yes, right. I need to have it *:80 1194364181 M * Bertl grobie: it is not passing any options to the kernel 1194364224 M * virtuozzo is that possible to have *:80 binds on guest? 1194364228 M * daniel_hozac virtuozzo: remove NXF_SINGLE_IP, using something like echo '~SINGLE_IP' >> /etc/vservers//nflags or nattribute --nid --set --flag '~SINGLE_IP' 1194364254 M * harry think so 1194364266 M * virtuozzo okay Daniel, thanks. let me try it out 1194364336 M * grobie Bertl: it's the usual debian package from etch :/ 1194364369 M * Bertl micah: ping? 1194364439 M * daniel_hozac dpesm 1194364488 M * daniel_hozac hmm, what i meant was, doesn't NFS use a binary mount data format, meaning the mount program has to be able to parse the arguments? 1194364549 M * Bertl AFAIK, the NFS options are passed to the kernel literally 1194364570 M * Bertl except for the 'flag' type options which become the flags 1194364613 M * virtuozzo it works!!! many thanks!!! 1194364678 M * daniel_hozac from mount(8): Instead of a textual option string, parsed by the kernel, the nfs file system expects a binary argument of type struct nfs_mount_data. 1194364738 M * micah Bertl: hey 1194364795 M * Bertl daniel_hozac: ah, right, that changed some time ago, when trond cleaned up the interface 1194364826 J * dowdle ~dowdle@scott.coe.montana.edu 1194364843 M * dowdle Good morning. 1194364850 M * Bertl hey dowdle! 1194364901 M * dowdle Bertl: I talked to my wife and she said there was a green customs form/sticker that she had to fill out that was attached to the package... and that she declared a value ($300) and stated that it was a "gift". I wonder why they charged you? Tax on a gift? 1194364984 M * Bertl well, I'm not home atm, so I cannot check for that, but I will investigate 1194365000 M * dowdle Bertl: It would be nice if you could get your money back. 1194365013 M * Bertl I doubt it, but I'll try :) 1194365014 M * sid3windr expensive gift 1194365019 M * grobie Bertl: do you know if there is a less smart mount version around? 1194365024 M * sid3windr but getting the money back will most most highly highestly likely not work :p 1194365054 M * Bertl grobie: would be interesting to disable that specific check, but if you are at it, you could as well add the option/flag properly 1194365091 M * grobie ok, i'll give it a try 1194365139 M * grobie i'm wondering how usual debian user handle that 1194365150 M * grobie since the vserver-kernel is in etch iirc 1194365159 M * daniel_hozac i'm guessing NFS tagging isn't that common. 1194365172 M * daniel_hozac is it even enabled in the Debian kernel? 1194365181 M * Bertl it was quite unusual, when we developed it for Lycos 1194365198 M * Bertl but I remember some folks using it not that long ago 1194365210 M * Bertl (so they must have had a different mount or so) 1194365437 M * Bertl dowdle: what's your preferred email? 1194365468 M * Bertl ah, don't bother, I simply upload it 1194365497 M * grobie Bertl: do you remember who it was then maybe? 1194365553 M * Bertl no, but check the source for mount, and look where it complains about unknown options 1194365640 M * Bertl dowdle: http://vserver.13thfloor.at/Stuff/Dowdle.txt ... please fix up capitalization for me ... I'm too lazy for that :) 1194365898 M * dowdle Bertl: Ok, will do. Thanks. 1194365951 M * dowdle Got it. To answer your question dowdle@montanalinux.org 1194366115 J * ema ~ema@rtfm.galliera.it 1194366414 N * bragon_ bragon 1194367202 Q * toidinamai Ping timeout: 480 seconds 1194367379 J * pmenier ~pme@LNeuilly-152-22-72-5.w193-251.abo.wanadoo.fr 1194367416 J * toidinamai ~frank@svenska.toidinamai.de 1194367789 J * onox ~onox@kalfjeslab.demon.nl 1194368078 M * sid3windr Bertl lazy? NOWAI 1194368309 M * Supaplex :) 1194368377 M * Bertl sid3windr: hehe, alow me the illusion :) 1194368475 Q * weasel Quit: reboot 1194368832 J * bonbons ~bonbons@2001:960:7ab:0:20b:5dff:fec7:6b33 1194368848 J * weasel weasel@weasel.chair.oftc.net 1194368861 M * pmenier Hi Bertl. I saw 2 delta-xxx.diff that were created after vs2.3.0.29 : must apply them ? 1194368883 M * daniel_hozac only if you can't start more than 50 guests. 1194368897 M * daniel_hozac (and in that case, only delta-keydep-fix01.diff is interesting) 1194368901 M * pmenier oops ! ok not for me :) 1194369475 P * virtuozzo 1194369475 M * dowdle Anyone know where I can find some pictures of the Linux-VServer developers... as a group shot? 1194369529 M * JonB dowdle: http://www.kcrunning.com/SuperHeroes.jpg 1194369575 M * daniel_hozac dowdle: there are none with all of us, i've never even met any of the other developers in person ;) 1194369586 M * JonB dowdle: i dont know which one is Bertl or daniel_hozac though 1194369614 M * dowdle JonB: hehehe 1194370966 J * fxiny ~fxiny@host238-50-dynamic.1-87-r.retail.telecomitalia.it 1194371777 A * dowdle tries to fill in the numbers. derjohn should be emailing soon: http://scott.coe.montana.edu/vserver-team-outline.jpg 1194371957 J * larsivi ~larsivi@101.84-48-201.nextgentel.com 1194371976 M * Bertl dowdle: maybe you can get a picture of daniel_hozac too .. at least you can try :) 1194372021 M * Bertl dowdle: btw, you forgot one person in this picture, namely doener :) 1194372053 Q * pmenier Quit: Konversation terminated! 1194372152 M * dowdle Bertl: Is he the guy on the right not facing the camera? 1194372181 M * Bertl yes, I think so 1194372219 M * dowdle PMing with derjohn, I believe he is going to ask those who are numbered if they want to be indentified and if so, howso... and then anyone not pictured can submit a picture if desired. 1194372268 M * Bertl sounds complicated, but as long as I do not have to do it, it's fine for me :) 1194372312 M * daniel_hozac lol 1194372367 M * derjohn yes, I am currently am e-mail. what about ppl not on the pic, but involved in linux-vserver core devel? 1194372507 M * Bertl yeah, like Jack :) 1194372622 M * doener_ dowdle, Bertl: yeah, yeah, no one told me there was a photo to be taken ;-) (or at least I didn't notice *g*) 1194372732 M * Bertl doener_: I still consider it one of the best pictures taken back then, but don't get me wrong here ... 1194372810 M * doener_ nah, I know what you mean 1194372831 M * doener_ And I didn't look that good back then anyway ;-) 1194372855 M * dowdle doener_: What... that was pre-plastic surgery or something? :) 1194372855 M * Bertl you're looking _that_ good now? show me! 1194372881 J * mire_ ~mire@27-169-222-85.adsl.verat.net 1194372929 M * doener_ Well, I'm still not the women's guy, but at least I got my hair cut now ;-) 1194372945 M * doener_ (but of course I'm still white as chalk) 1194373061 M * Bertl that is not untypical for nocturnal creatures :) 1194373091 Q * mire Ping timeout: 480 seconds 1194373156 Q * larsivi Quit: Konversation terminated! 1194373222 M * doener_ heh :-) 1194373274 M * dowdle Bertl: So, any chance we'll have a live feed to the "Bertl-cam" anytime soon? 1194373278 M * doener_ btw, what I wanted to ask a looong time ago: what's up with the mailing list, got that replaced? I just received another monthly remainder, but no mails for months... Always got distracted from investigating what's up with it 1194373303 M * daniel_hozac doener_: yeah, the old one stopped working completely for a while. 1194373339 M * Bertl dowdle: unlikely for several reasons, one being the fact that upstream bandwidth is still very precious (and unfortunately much too low) here 1194373339 M * daniel_hozac doener_: you should've received an email asking you to subscribe to the new one. 1194373372 M * dowdle email is SOOOO broken. 1194373397 M * Bertl dowdle: but be assured, I will put the camera to good use 1194373397 M * doener_ daniel_hozac: nope... I actually still noticed that you were discussing a change, but never received the email that was proposed back then 1194373427 M * Bertl interesting 1194373438 M * Bertl maybe we should post something to the old ML again? 1194373464 M * daniel_hozac i guess so... 1194373544 M * doener_ from whom did that email get sent? Maybe I just didn't notice, but as I was actually kinda "waiting" for it... 1194373569 M * Bertl we actually had two emails being sent out, IIRC 1194373584 M * dowdle Bertl: I hope soe (camera put to good use) considering how much you had to contribute to receive it. 1194373589 M * dowdle err.. so 1194373601 M * derjohn 27.07.2007 22:42 "NEW Linux-VServer Mailing List" 1194373602 M * Bertl doener_: one was to all 'known' posters (that one came from me) 1194373638 M * Bertl dowdle: yeah, was spending day and night on the answers to your questions ... 1194373641 M * derjohn Bertl, I answered to that mail but was not subscribed. 1194373658 M * Bertl dowdle: Linux-VServer development almost got to a grinding halt ... 1194373692 M * dowdle Bertl: Well, you know... as a secret agent for the OpenVZ project, that WAS my goal. :) 1194373741 M * Bertl yeah, I thought so ... *G* 1194373768 M * dowdle Bertl: Oh, and the camera thing... was a ploy to divert money from your project too! 1194373802 M * dowdle Bertl: I might have a couple more of those cameras btw. 1194373830 M * Bertl probably you'll keep sending me packets every second day now, and I will have to file bankruptcy before the end of the year :) 1194373851 M * Bertl no, seriously, I appreciate it! 1194373892 M * dowdle Bertl: You are welcome. 1194373955 M * dowdle Bertl: Regarding the question about commercial people seeking free help via IRC, you thought that was a strange question... I got that idea from the fact that the centos folks get VERY annoyed when that happens. 1194373988 M * Bertl well, the problem here is the PoV I guess 1194374065 M * Bertl I get very angry if somebody uses open source software for commercial purposes and refuses to share the changes/improvements done to a particular piece of software 1194374120 M * Bertl I also hate folks who claim that they developed something, when instead all they did was to steal from others ... 1194374137 M * dowdle Is it ok if I use any pictures from your gallery? This is quite good from a symbolic point of view: http://gallery.linux-vserver.org/main.php?g2_itemId=95 1194374152 M * daniel_hozac we have a gallery.linux-vserver.org? :) 1194374164 A * daniel_hozac is learning lots of stuff today 1194374176 M * dowdle Bertl: Everyone in a circle looking at you with your mouth open. :) 1194374184 M * Bertl daniel_hozac: maybe add a picture of you there? :) 1194374212 M * daniel_hozac hehe 1194374213 M * Bertl dowdle: yeah, basically says, I can't keep my mouth shut, not even for a minute (which is true by the way) 1194374222 M * dowdle And the guy closest to the camera (sorta) has a shirt that has the word "team" on the back. 1194374246 M * dowdle And the word "open" although I know it is for something else? 1194374276 M * Bertl dowdle: feel free to use it (after contacting all the other folks via derjohn :) 1194374288 M * dowdle Ok. 1194374303 M * dowdle Text comes first then picture. Get back to work. OpenVZ has won enough today. 1194374321 M * Bertl (that is probably the best way to get back in touch with some of the folks :) 1194374583 J * hparker ~hparker@linux.homershut.net 1194374713 M * derjohn Well, I gladly help to get in contact with them (as far as I know them :)) 1194374736 M * Bertl I can make the contact with TuX, btw :) 1194374748 M * derjohn hehe, yes :) 1194374818 M * Bertl he is currently sitting in front of me, together with six other plush penguins ... 1194374844 M * derjohn only six ? I heard about a room full of them ... 1194374855 M * derjohn was that exaggerated ? 1194374885 M * Bertl no, most of them are already packed, because we are moving in the near future 1194374908 M * derjohn oh, but still .at ? 1194374921 Q * ema Quit: leaving 1194374925 M * Bertl yep, about 500m from the old location, so quite harmless :) 1194374968 M * daniel_hozac hehe 1194374982 M * daniel_hozac and i thought i was the only one doing no-op moves. 1194375009 M * derjohn well, I would have guessed, you move towards a bigger internet upstream bandwidth 1194375011 M * derjohn :) 1194375020 Q * balbir Ping timeout: 480 seconds 1194375020 M * daniel_hozac (i moved to the floor below) 1194375021 M * derjohn daniel_hozac, *lol* 1194375031 M * derjohn daniel_hozac, a stack operation ? 1194375037 M * Bertl we were looking for a new, somewhat larger place, for some time now, in different areas of austria, till we found 'the new place' right around the corner 1194375091 M * daniel_hozac heh, sounds nice. 1194375103 M * daniel_hozac derjohn: right :) 1194375369 M * phrost does vserver support passing a raw interface to a guest? 1194375375 M * phrost eg move eth1 from the host to the guest 1194375381 M * Bertl phrost: no 1194375385 M * phrost i'm guessing no because vserver has no ip routing stack 1194375389 M * phrost think i'll have to use openvz for that 1194375397 Q * fxiny Ping timeout: 480 seconds 1194375404 M * Bertl if you actually _need_ this, then yes, likely 1194375453 M * phrost yeah, there's going to be an NIDS in this guest, so it'll need to be able to read all traffic from the interface 1194375466 M * phrost the other side is plugged in to a SPAN / monitor port on a cisco switch 1194375503 M * derjohn phrost, so, you simply wamt to sniff on the NIC inside the guest ? 1194375513 M * phrost basically, yeah 1194375524 M * phrost its done via libpcap i'm sure 1194375537 M * Bertl should work with CAP_NET_RAW 1194375541 M * derjohn phrost, iirc you can set CAP_NET_RAW in vserver. with that, that particular guest should be able to sniff. 1194375544 A * dowdle notes that on the full size version of the pictures, many of the name tags are readable. 1194375544 M * daniel_hozac that's all interfaces. 1194375583 M * Bertl daniel_hozac: did we actually verify that? 1194375603 M * Bertl daniel_hozac: I think it should be easy to limit it to interfaces seen by the host, no? 1194375604 M * daniel_hozac as long as you don't bind the socket, it should be all of them. 1194375604 M * derjohn dowdle, revealed secrets :) 1194375629 M * derjohn phrost, do you know how to set that cap ? have a look in the wiki or GFP. 1194375647 M * phrost yeah the guest having raw access to all interfaces would be decidedly bad 1194375670 M * phrost it only needs regular IP/TCP on the interface going to the LAN 1194375689 M * phrost and sniffing traffic on that interface if it became compromised could be catastrophic 1194375714 M * Bertl phrost: at least that sounds like an upcoming patch to me, if you volunteer to do the testing .. but feel free to use OVZ instead ... 1194375719 M * derjohn well, an IDS need taht much rights - at least on one interface. 1194375733 J * AStorm ~astralsto@tor-irc.dnsbl.oftc.net 1194375739 M * Bertl wb AStorm! 1194375745 M * phrost derjohn: right 1194375751 M * phrost but this box in question has ~4-5 interfaces 1194375757 M * phrost if memory serves me right 1194375790 M * derjohn Bertl, if the guest only has interafces/0/.. set then it woint even see eth1-4, i.e. cannot sniff. 1194375792 M * doener_ dowdle: btw, if you want a picture of me with a face, there's one on http://people.linux-vserver.org/ 1194375816 M * phrost ahh 1194375821 M * Hollow dowdle: may i ask what you're working on? i somehow missed it :) 1194375821 M * AStorm Bertl: hello :-) 1194375841 M * daniel_hozac phrost: the guest has IPs on your private networks? 1194375857 M * Bertl derjohn: that is the idea, i.e. I think that should not be too hard 1194375862 M * dowdle Hollow: Pictures to go along with interview I did with Bertl for my small Linux news site in Montana. 1194375862 M * phrost guest ideally needs 2 interfaces 1194375866 M * phrost 1 with full sniff (the monitor port) 1194375870 M * AStorm If you want to restrict sniffing as much as possible, use dummy interfaces 1194375872 M * phrost and one connecting to a bridge on the host 1194375876 M * phrost which will interface with the LAN 1194375881 M * AStorm with two way NAT or firewalling 1194375893 M * Hollow dowdle: ah, i see 1194375908 M * Bertl phrost: no bridging used in Linux-VServer (well, not required, of course, you can bridge if you like) 1194376185 M * Hollow DLange: 2.2.0.5 in portage (cvs) now ... 1194376219 M * DLange Hollow, if you were a girl ... Thank you! 1194376225 M * Hollow :P 1194376239 M * AStorm phrost: why so many interfaces? 1194376247 M * AStorm why do you need a "monitor" interface 1194376264 M * AStorm it's just a security "hole" ;P 1194376332 M * phrost this is an internal system 1194376340 M * phrost and NIDS has to see all traffic to be effective 1194376351 M * phrost one interface connects to the management LAN 1194376358 M * phrost the other 3 are OoB interfaces to the various routers 1194376530 Q * AStorm Remote host closed the connection 1194376590 J * AStorm ~astralsto@tor-irc.dnsbl.oftc.net 1194376960 M * matti Hollow: :) 1194376965 A * matti kissess Hollow 1194377015 A * DLange kep back because of the same sex issue. Make mental note: be more flexible. 1194377024 M * matti Haha 1194377589 A * JonB is not sure if he is reading bash.org or xkcd.com? 1194377642 M * Hollow "Kaufen sie jetzt beim Dusch Wuchtel!" 1194377653 M * Hollow sorry for the non-german speakers ;) 1194377661 M * arachnist JonB: xkcd is usually, funnier, although bash.org has a lot more content 1194377731 M * JonB yeah 1194377923 M * arachnist s/,// 1194377941 M * arachnist (yay for sed only matching the first one if there's no "g" 1194377943 J * ema ~ema@rtfm.galliera.it 1194377978 M * JonB arachnist: sometimes sed is too greedy, it matches as much as it can, but i want as little as it can 1194377986 M * arachnist yeah 1194377987 Q * JonB Quit: Leaving 1194378091 J * JonB ~NoSuchUse@192.38.8.25 1194378098 M * JonB ?? damn mouse 1194378105 M * JonB did you say anything to me? 1194378201 M * arachnist ofcourse we did 1194378213 M * JonB arachnist: would you care to repeat? 1194378240 M * arachnist ofcourse... not ;) 1194378244 M * arachnist 203820 !-- | <<< JonB!~NoSuchUse@192.38.8.25 [Quit: Leaving] 1194378245 M * arachnist 204004 !-- | >>> JonB!~NoSuchUse@192.38.8.25 1194378296 M * arachnist nothing else happened, really 1194378435 M * JonB okay 1194378450 M * JonB thanks, later 1194378460 Q * AStorm Quit: ET calling home 1194378532 J * AStorm ~astralsto@tor-irc.dnsbl.oftc.net 1194378565 J * Aiken ~james@ppp59-167-115-173.lns3.bne4.internode.on.net 1194378934 Q * JonB Ping timeout: 480 seconds 1194379002 Q * AStorm Quit: ET calling home 1194379124 M * transacid Bertl: your real time irc logs, are prodiced how? just logs from your irc client and then a cronjob? 1194379185 M * daniel_hozac Pinky 1194379206 M * daniel_hozac cron job wouldn't be very real-timey, would it? :) 1194379217 M * transacid yeah right 1194379314 J * AStorm ~astralsto@tor-irc.dnsbl.oftc.net 1194379435 M * transacid hmm is it some kind of bot? 1194379445 M * daniel_hozac yes. 1194379874 J * JonB ~NoSuchUse@kg1-20.kollegiegaarden.dk 1194380054 M * Supaplex humm 1194380065 M * Bertl transacid: yep, self written one 1194380447 Q * ema Quit: leaving 1194380567 Q * JonB Quit: This computer has gone to sleep 1194381000 M * sid3windr [06|21:29:54] [-] [x] ircname : That's Mr. Pinky for you! 1194381002 M * sid3windr a space! 1194381040 J * arekm arekm@carme.pld-linux.org 1194381070 M * arekm hello, /me wonders if anyone is fixing modular ipv6 case in 2.3 series 1194381171 M * daniel_hozac bonbons might be, but it's not a high priority. 1194381175 M * Bertl arekm: any reason for doing so? 1194381216 M * arekm Bertl: distro kernel, 2.3 series testing. Some testers use ipv6, some do not 1194381265 M * Bertl build two kernels then, or test just the ipv6 version 1194381289 M * Bertl i.e. build the ipv6 version and have both ipv6 and ipv4 testing on it 1194381309 M * arekm "use windows" kind of advices ;) 1194381324 M * Bertl no, not really, the modular part isn't such a good idea in the ipv6 case 1194381338 M * arekm because..? 1194381339 M * daniel_hozac patches accepted, as always. 1194381354 M * Bertl even if you do not have the module loaded, most of the structures are already ipv6 and the stack has all the checks and hooks there 1194381384 M * Bertl so you are actually dealing with 3 kernels here 1194381395 M * Bertl ipv4 only, ipv6 used as ipv4 and ipv6 1194381423 M * Bertl each of them will behave differently 1194381452 M * Bertl especially a kernel with ipv6 as module will not be as performant for ipv4 only operations than a purely ipv4 kernel 1194381457 J * Yvo ~yvonne@91.64.217.106 1194381458 M * Bertl (if you know what I mean) 1194381458 M * arekm "ipv6 used as ipv4" ? are you trying to say: v4mapped addresses? 1194381464 M * Bertl no 1194381473 M * Bertl kernel A, ipv6 disabled 1194381483 M * Bertl kernel B, ipv6 as module, but module not loaded 1194381503 M * Bertl kernel C, ipv6 as module (loaded) or built in 1194381517 M * Bertl actually you could make that C1 and C2 1194381532 M * Bertl each of them will behave slightly different in the ipv4 case 1194381563 M * Bertl and my gut feeling tells me that B and C will be much closer than A and B :) 1194381685 M * arekm ;-( 1194381798 M * Bertl arekm: feel free to sponsor modular ipv6, I'm sure somebody is willing to do that 1194381830 M * arekm let me become rich first 1194381883 M * Bertl or, alternatively, create some demand 1194381923 M * Bertl as usual, if a dozent folks show up here and explain _why_ they definitely need it to be a module ... 1194382179 M * arekm the reason is the same. Ability to use single kernel for most of users 1194382198 M * arekm regressions like this suck 1194382202 M * Bertl what's the problem with an ipv6 enabled kernel? 1194382218 M * Bertl I do not see why ipv4 folks cannot use it? 1194382220 M * daniel_hozac what's the problem that a modular IPv6 would solve? 1194382259 Q * FireEgl Ping timeout: 480 seconds 1194382281 M * arekm Bertl: you need to firewall it if you don't use ipv6. You need to tell some apps to stop using AF_INET6 sockets by default (to avoid v4-mapped addresses or fw problem) 1194382296 M * arekm daniel_hozac: you can use single kernel for those who want and for those who don't want ipv6 1194382319 M * daniel_hozac you realize of course that if applications use AF_INET6, the module will be autoloaded, right? 1194382341 M * Bertl (unless the module is removed) 1194382347 M * arekm not if you blacklist it in modprobe.conf 1194382373 M * arekm and modern applications don't force AF_INET6. They use getaddrinfo() and choose working families only 1194382402 M * arekm but if ipv6 is loaded then AF_INET6 is supposed to "work". Only some have ability to avoid ipv6 via configuration switch 1194382403 M * michal ah, you are from pld? 1194382419 M * michal than i understand why i cannot understand ;) 1194382419 M * arekm michal: yes 1194382430 M * michal make ipv6 module, solved 1194382446 M * arekm michal: vserver doesn't let me do that 8-) 1194382471 M * Bertl not with the development/experimental branch, correct 1194382479 M * arekm yes, exactly, 2.3 series 1194382576 M * Bertl arekm: well, you best chance atm is to convince bonbons to add it (IIRC, he already made it modular in his patches) 1194382652 J * _markus__ ~chatzilla@chello084113220059.17.14.vie.surfer.at 1194382653 M * arekm bonbons: become convinced to support modular ipv6 in 2.3 series please :) 1194382897 M * _markus__ hi. I've one vserver which doesn't come up when I reboot the host. I works when I manually start the vserver. Currently I've no clue where to even look for the problem. The vserver in question has the proper /etc/vservers/mail01/apps/init/mark with "default" value in it, like the others vserver which do come up after boot. Any idea where to start digging? 1194383063 M * Bertl check for 'default' vs. 'default\n' and verify if something is trying to start it and maybe fails 1194383218 M * _markus__ no difference compared to other vservers which come up :/ I used hexdump to be 100% sure. 1194383265 M * _markus__ permissions are also all the same .. 1194383268 M * Bertl okay, so I would assume that the script actually tries to start it, but somehow fails 1194383280 M * Bertl what util-vserver version do you use? 1194383311 M * _markus__ 0.30.212 1194383333 M * Bertl you might want to update to 0.30.214 first and see if that fixes it then 1194383345 M * _markus__ ok 1194383377 M * Bertl okay folks, off to bed now ... have a good one everyone! cya! 1194383383 N * Bertl Bertl_zZ 1194383396 M * _markus__ n8 1194383397 Q * _markus__ Quit: ChatZilla 0.9.78.1 [Firefox 2.0.0.9/2007102514] 1194384155 M * Supaplex any indications on why this new vserver will not start? http://rafb.net/p/gdAwBW62.html 1194384229 M * daniel_hozac what kind of guest is it? 1194384245 M * daniel_hozac are you sure sysv is the correct initstyle for that distribution? 1194384263 Q * mire_ Ping timeout: 480 seconds 1194384299 M * Supaplex openwrt 1194384343 M * Supaplex sbin/init -> busybox and the inittab has ::sysinit:/etc/init.d/rcS S boot (among other things) 1194384363 M * daniel_hozac but does it have /etc/init.d/rc or /etc/rc.d/rc? 1194384377 M * Supaplex no 1194384412 M * daniel_hozac so... sysv is not the correct initstyle. 1194384415 M * daniel_hozac try plain instead. 1194384419 M * Supaplex k 1194384503 M * Supaplex oh yes... I remember this pill. sh has no -l. :P 1194384538 M * dowdle New article (currently subscribers only, free in 7 days) on Containers in LWN. Here's a free look for non-subscribers: Notes from a Container - http://lwn.net/SubscriberLink/256389/672014b81ac22047/ 1194384548 M * Supaplex http://rafb.net/p/Ipcqp319.html 1194384555 M * dowdle Note, I'm not trying to promote LWN subscriptions, just give you guys access to the content ASAP. 1194384582 M * daniel_hozac you should make sure you get a commission :) 1194384618 M * dowdle I'm just a longtime subscriber myself. 1194384681 M * dowdle Opps, I jumped the gun... that's the same article as from last week's LWN Weekly edition which I already mentioned. 1194384706 M * dowdle There is a new item on LWN's page though... referring to it so I got confused. DUH. 1194384708 M * dowdle Sorry. 1194384718 M * daniel_hozac Supaplex: so, set the shell to something else. 1194384768 M * dowdle Here's the new story: Process IDs in a multi-namespace world - http://lwn.net/SubscriberLink/257297/68b93dded98a4086/ 1194384962 M * Supaplex i'm trying to figure out how. /proc isn't mounted, but this seems to run: riddle:/var/lib/vservers/litho# /usr/sbin/vcontext --migrate --chroot --xid 49160 --uid 0 -- /bin/sh ; echo 1194385122 M * Supaplex ahh, vserver litho exec /bin/sh == eaiser. :P 1194385185 M * daniel_hozac Supaplex: echo /bin/sh > /etc/vservers//shell and vserver ... enter will use that... 1194385228 M * dowdle daniel_hozac: The article basically shows the discussions among the mainline kernel developers about the design of container features. I wonder if from your perspective you get the, "We've been there, we've already done that" feeling? 1194385393 M * daniel_hozac dowdle: they're facing a different set of problems. 1194385486 Q * DLange Quit: Bye, bye. Hasta luego. 1194385507 M * dowdle daniel_hozac: Problems the Linux-VServer project hasn't run into? 1194385525 M * dowdle daniel_hozac: I'm a layman so a real answer probably wouldn't do me much good. :) 1194385545 M * daniel_hozac yes, we don't bother virtualizing pids since we don't care about c/r. 1194385632 M * dowdle daniel_hozac: Well, there's an answer I can understand, thanks. 1194385811 J * mire_ ~mire@27-169-222-85.adsl.verat.net 1194386064 M * bonbons arekm: send me a reminder-interrupt on sunday 1194386085 M * arekm bonbons: ok 1194386207 M * bonbons daniel_hozac/Bertl: the fix for guest's init not visible as PID=1 in guest is not fixed yet in 2.2.0.5... (ps lists as pid=1, in /proc pid =! 1, and can't send signal to it using pid=1 or real PID) 1194386238 M * daniel_hozac the signal should be fixed with http://people.linux-vserver.org/~dhozac/p/k/delta-signal-fix01.diff 1194386242 M * bonbons if I remember well the fix went into 2.3.0.* but not yet in 2.2.0.* 1194386277 M * daniel_hozac could you see if http://people.linux-vserver.org/~dhozac/p/k/delta-initpid-fix05.diff makes it work? 1194386327 M * bonbons will do tomorrow - too late today for compiling and testing 1194386332 M * daniel_hozac but you're right, that seems to be missing from 2.2. 1194386749 Q * bonbons Quit: Leaving 1194387072 Q * AStorm Ping timeout: 480 seconds 1194387342 Q * _gh_ Ping timeout: 480 seconds 1194387392 J * FireEgl FireEgl@4.0.0.0.1.0.0.0.c.d.4.8.0.c.5.0.1.0.0.2.ip6.arpa 1194388051 J * larsivi ~larsivi@101.84-48-201.nextgentel.com 1194388262 Q * rorem- Read error: Connection reset by peer 1194388631 J * rorem- ~roremtank@bzq-219-46-202.isdn.bezeqint.net 1194389007 J * derjohn_mobil ~aj@e180196121.adsl.alicedsl.de 1194389570 J * _gh_ ~gerrit@bi01p1.co.us.ibm.com 1194390044 J * FaUl immo@shell.chaostreff-dortmund.de 1194390056 Q * FaUl_ Ping timeout: 480 seconds 1194391669 Q * FireEgl Ping timeout: 480 seconds 1194392048 J * FireEgl FireEgl@Sebastian.Atlantica.DollarDNS.Net 1194392108 Q * dna_ Quit: Verlassend 1194392312 Q * derjohn_mobil Ping timeout: 480 seconds 1194392561 J * lidi20 ~lidi20@ANantes-257-1-120-128.w90-25.abo.wanadoo.fr 1194392655 Q * lidi20 1194393235 Q * FireEgl Quit: Bye... 1194393272 Q * mire_ Ping timeout: 480 seconds