1219624288 J * doener_ ~doener@i577BBDAB.versanet.de 1219624392 Q * doener Ping timeout: 480 seconds 1219633632 J * undefined ~undefined@adsl-68-93-101-81.dsl.rcsntx.swbell.net 1219633740 M * undefined can anybody tell me what the SECURE_MOUNT ccap does (something more descriptive than "allow secure mount" as stated on http://linux-vserver.org/Capabilities_and_Flags)? 1219633804 M * daniel_hozac it allows the guest to mount things. 1219633927 M * undefined how's it different than the "mount" ccap that i'm currently using (but's not listed on http://linux-vserver.org/Capabilities_and_Flags)? 1219633956 M * daniel_hozac mount is a deprecated alias for secure_mount. 1219633978 M * undefined ah, thanks, that's what i suspected, and wanted confirmed 1219634077 M * undefined in what way is it "secure"? does it disallow mounting things not already mounted elsewhere in the vserver (like a bind mount, but maybe for /proc and /sys, which is what i'm needing it for)? 1219634147 M * undefined feel free to point me to some resource to read, but i couldn't find anything in the wiki or mailing list 1219634194 M * daniel_hozac i believe secure mostly refers to it being mounted nodev. 1219634224 M * daniel_hozac but honestly, i don't know. i wasn't around when it was introduced. 1219634371 M * undefined daniel_hozac: i always thought of you as "in the beginning..." since you know so much and do so much for the vserver community (which is my attempt at a subtle compliment) 1219634389 M * undefined daniel_hozac: THANKS! 1219634467 M * daniel_hozac heh, you're welcome. 1219635467 Q * derjohn_mob Ping timeout: 480 seconds 1219636868 M * Bertl daniel_hozac: really? regarding not being around ... 1219638181 M * daniel_hozac it's already in the earliest 1.9.x version i can find, and i didn't get "involved" until 1.9.3, IIRC. 1219638205 M * daniel_hozac (involved meaning building kernel RPMs) 1219643081 J * derjohn_mob ~aj@e180198073.adsl.alicedsl.de 1219643363 Q * balbir Ping timeout: 480 seconds 1219645098 J * yang yang@yang.netrep.oftc.net 1219646378 Q * larsivi Quit: Konversation terminated! 1219646725 Q * yang Remote host closed the connection 1219647562 Q * undefined Quit: Logged out 1219647892 N * DoberMann[ZZZzzz] DoberMann 1219649401 J * larsivi ~larsivi@85.221.53.194 1219650005 J * balbir ~balbir@122.171.6.234 1219650230 Q * derjohn_mob Remote host closed the connection 1219650632 J * dna ~dna@160-231-dsl.kielnet.net 1219652520 Q * balbir magnet.oftc.net charon.oftc.net 1219652520 Q * Loki|muh magnet.oftc.net charon.oftc.net 1219652520 Q * sladen magnet.oftc.net charon.oftc.net 1219652520 Q * quote magnet.oftc.net charon.oftc.net 1219652520 Q * wenchien magnet.oftc.net charon.oftc.net 1219652520 Q * mnemoc magnet.oftc.net charon.oftc.net 1219652520 Q * squat magnet.oftc.net charon.oftc.net 1219652520 Q * nebuchadnezzar magnet.oftc.net charon.oftc.net 1219652520 Q * AndrewLee magnet.oftc.net charon.oftc.net 1219652520 Q * Radiance magnet.oftc.net charon.oftc.net 1219652520 Q * danman magnet.oftc.net charon.oftc.net 1219652520 Q * C14r magnet.oftc.net charon.oftc.net 1219652520 Q * hijacker magnet.oftc.net charon.oftc.net 1219652520 Q * fanto666 magnet.oftc.net charon.oftc.net 1219652520 Q * matti magnet.oftc.net charon.oftc.net 1219652520 Q * opuk magnet.oftc.net charon.oftc.net 1219652520 Q * ex magnet.oftc.net charon.oftc.net 1219652520 Q * ag- magnet.oftc.net charon.oftc.net 1219652520 Q * lownoize magnet.oftc.net charon.oftc.net 1219652520 Q * maddoc magnet.oftc.net charon.oftc.net 1219652520 Q * ensc magnet.oftc.net charon.oftc.net 1219652520 Q * ruskie magnet.oftc.net charon.oftc.net 1219652520 Q * Medivh magnet.oftc.net charon.oftc.net 1219652520 Q * Guy- magnet.oftc.net charon.oftc.net 1219652520 Q * Wonka magnet.oftc.net charon.oftc.net 1219652520 Q * vasko magnet.oftc.net charon.oftc.net 1219652520 Q * transacid magnet.oftc.net charon.oftc.net 1219652520 Q * PowerKe magnet.oftc.net charon.oftc.net 1219652520 Q * harry_ magnet.oftc.net charon.oftc.net 1219652520 Q * [PUPPETS]Gonzo magnet.oftc.net charon.oftc.net 1219652520 Q * tokkee magnet.oftc.net charon.oftc.net 1219652520 Q * snooze magnet.oftc.net charon.oftc.net 1219652520 Q * daniel_hozac magnet.oftc.net charon.oftc.net 1219652520 Q * svenk magnet.oftc.net charon.oftc.net 1219652520 Q * trippeh magnet.oftc.net charon.oftc.net 1219652520 Q * mcp magnet.oftc.net charon.oftc.net 1219652520 Q * padde magnet.oftc.net charon.oftc.net 1219652520 Q * mrjack2 magnet.oftc.net charon.oftc.net 1219652520 Q * NaioN magnet.oftc.net charon.oftc.net 1219652520 Q * DoberMann magnet.oftc.net charon.oftc.net 1219652520 Q * xdr magnet.oftc.net charon.oftc.net 1219652520 Q * Genghis magnet.oftc.net charon.oftc.net 1219652520 Q * m_o_d magnet.oftc.net charon.oftc.net 1219652520 Q * zbyniu magnet.oftc.net charon.oftc.net 1219652520 Q * wibble_ magnet.oftc.net charon.oftc.net 1219652520 Q * weasel magnet.oftc.net charon.oftc.net 1219652520 Q * pmjdebruijn magnet.oftc.net charon.oftc.net 1219652520 Q * virtuoso magnet.oftc.net charon.oftc.net 1219652520 Q * cohan magnet.oftc.net charon.oftc.net 1219652520 Q * kiorky magnet.oftc.net charon.oftc.net 1219652520 Q * SpComb magnet.oftc.net charon.oftc.net 1219652520 Q * bzed magnet.oftc.net charon.oftc.net 1219652520 Q * Adrinael magnet.oftc.net charon.oftc.net 1219652520 Q * derjohn magnet.oftc.net charon.oftc.net 1219652520 Q * franck34 magnet.oftc.net charon.oftc.net 1219652520 Q * grobie magnet.oftc.net charon.oftc.net 1219652520 Q * nou magnet.oftc.net charon.oftc.net 1219652520 Q * ard magnet.oftc.net charon.oftc.net 1219652520 Q * phedny magnet.oftc.net charon.oftc.net 1219652520 Q * phedny_ magnet.oftc.net charon.oftc.net 1219652520 Q * hparker magnet.oftc.net charon.oftc.net 1219652520 Q * emag magnet.oftc.net charon.oftc.net 1219652520 Q * bragon magnet.oftc.net charon.oftc.net 1219652520 Q * pmenier_off magnet.oftc.net charon.oftc.net 1219652520 Q * mEDI_S magnet.oftc.net charon.oftc.net 1219652520 Q * karasz magnet.oftc.net charon.oftc.net 1219652520 Q * nox magnet.oftc.net charon.oftc.net 1219652520 Q * blathijs magnet.oftc.net charon.oftc.net 1219652520 Q * Bertl magnet.oftc.net charon.oftc.net 1219652520 Q * eyck_ magnet.oftc.net charon.oftc.net 1219652520 Q * morrigan magnet.oftc.net charon.oftc.net 1219652520 Q * bXi magnet.oftc.net charon.oftc.net 1219652520 Q * Alteisen magnet.oftc.net charon.oftc.net 1219652520 Q * Mr_Smoke magnet.oftc.net charon.oftc.net 1219652520 Q * fosco magnet.oftc.net charon.oftc.net 1219652520 Q * waldi magnet.oftc.net charon.oftc.net 1219652520 Q * kaner magnet.oftc.net charon.oftc.net 1219652520 Q * besonen_mobile_ magnet.oftc.net charon.oftc.net 1219652520 Q * Aiken magnet.oftc.net charon.oftc.net 1219652520 Q * nenolod magnet.oftc.net charon.oftc.net 1219652520 Q * fatgoose magnet.oftc.net charon.oftc.net 1219652520 Q * Hunger magnet.oftc.net charon.oftc.net 1219652520 Q * _gh_ magnet.oftc.net charon.oftc.net 1219652520 Q * tam magnet.oftc.net charon.oftc.net 1219652520 Q * ido magnet.oftc.net charon.oftc.net 1219652521 Q * micah magnet.oftc.net charon.oftc.net 1219652521 Q * quasisane magnet.oftc.net charon.oftc.net 1219652521 Q * awk magnet.oftc.net charon.oftc.net 1219652521 Q * brc magnet.oftc.net charon.oftc.net 1219652521 Q * dna magnet.oftc.net charon.oftc.net 1219652521 Q * infowolfe magnet.oftc.net charon.oftc.net 1219652521 Q * Hollow magnet.oftc.net charon.oftc.net 1219652521 Q * FloodServ magnet.oftc.net charon.oftc.net 1219652521 Q * dddd magnet.oftc.net charon.oftc.net 1219652628 J * dna ~dna@160-231-dsl.kielnet.net 1219652628 J * balbir ~balbir@122.171.6.234 1219652628 J * besonen_mobile_ ~besonen_m@71-220-224-216.eugn.qwest.net 1219652628 J * Aiken ~Aiken@ppp118-208-65-150.lns1.bne4.internode.on.net 1219652628 J * padde ~padde@patrick-nagel.net 1219652628 J * Loki|muh loki@satanix.de 1219652628 J * infowolfe ~infowolfe@c-67-160-149-42.hsd1.or.comcast.net 1219652628 J * ex ex@valis.net.pl 1219652628 J * mrjack2 vend3r@office.smart-weblications.net 1219652628 J * hparker ~hparker@linux.homershut.net 1219652628 J * sladen paul@starsky.19inch.net 1219652628 J * quote ~quote@pomoc.ircnet.com 1219652628 J * phedny ~mark@2a02:348:35:5a26::1 1219652628 J * bragon ~Alexandre@alucard.bragon.info 1219652628 J * emag APDHVreHqg@gurski.org 1219652628 J * nenolod ~nenolod@ip70-189-74-62.ok.ok.cox.net 1219652628 J * ido ~ido@lolcocks.com 1219652628 J * NaioN ~stefan@misc.mordor.unilogicnetworks.net 1219652628 J * _gh_ ~gerrit@67.170.155.50 1219652629 J * wenchien ~wenchien@59.105.176.102 1219652629 J * pmenier_off ~pmenier@ACaen-152-1-63-64.w83-115.abo.wanadoo.fr 1219652629 J * mEDI_S ~medi@snipah.com 1219652629 J * karasz ~karasz@yoda.expert-erp.net 1219652629 J * mnemoc ~amery@yoda.expert-erp.net 1219652629 J * nox ~nox@nox.user.oftc.net 1219652629 J * Hollow ~hollow@proteus.croup.de 1219652629 J * squat ~squat@85-10-210-61.clients.your-server.de 1219652629 J * nebuchadnezzar ~dad@zion.asgardr.info 1219652629 J * DoberMann ~james@cap31-6-88-180-72-76.fbx.proxad.net 1219652629 J * AndrewLee ~andrew@flat.iis.sinica.edu.tw 1219652629 J * ag- ~ag@fedaykin.roxor.cx 1219652629 J * tam ~tam@gw.nettam.com 1219652629 J * quasisane ~sanep@c-75-68-62-13.hsd1.nh.comcast.net 1219652629 J * Radiance ~Radiance@193.16.154.187 1219652629 J * danman danman@eliza.wigner.bme.hu 1219652629 J * waldi ~waldi@bblank.thinkmo.de 1219652629 J * lownoize ~lownoize@swt32.informatik.uni-mannheim.de 1219652629 J * C14r ~C14r@h58173.serverkompetenz.net 1219652629 J * fatgoose ~samuel@98.80.modemcable.oricom.ca 1219652629 J * hijacker ~hijacker@213.91.163.5 1219652629 J * fanto666 fantomas@fantomas.fantomas.sk 1219652629 J * matti matti@acrux.romke.net 1219652629 J * opuk ~kupo@c213-100-138-228.swipnet.se 1219652629 J * blathijs ~matthijs@drsnuggles.stderr.nl 1219652629 J * xdr ~xdr@125-173-96-87.cust.blixtvik.se 1219652629 J * Genghis ~Genghis@213.202.237.202 1219652629 J * maddoc maddoc@social.ostruktur.com 1219652629 J * Bertl herbert@IRC.13thfloor.at 1219652629 J * m_o_d ~m_o_d@host-80.54.30.252.ltv.pl 1219652629 J * ensc ~irc-ensc@77.235.182.26 1219652629 J * zbyniu ~zbyniu@host13-188.crowley.pl 1219652629 J * eyck_ fiiPbpFk@nat05.nowanet.pl 1219652629 J * morrigan morrigan@IRC.13thfloor.at 1219652629 J * wibble_ wibble@vortex.ukshells.co.uk 1219652629 J * weasel weasel@weasel.chair.oftc.net 1219652629 J * Hunger Hunger.hu@Hunger.hu 1219652629 J * ruskie ruskie@goatse.co.uk 1219652629 J * bXi bluepunk@irssi.co.uk 1219652629 J * Alteisen alteisen@shell.chaostreff-dortmund.de 1219652629 J * Mr_Smoke ~smokey@layla.lecoyote.org 1219652629 J * fosco fosco@marx.wirefull.org 1219652629 J * kaner ~kaner@zzz.strace.org 1219652629 J * pmjdebruijn pascal@jester.pcode.nl 1219652629 J * Medivh ck@dolphin.serverbox.de 1219652629 J * virtuoso ~s0t0na@81.9.35.135 1219652629 J * bzed ~bzed@devel.recluse.de 1219652629 J * Guy- ~korn@elan.rulez.org 1219652629 J * cohan ~cohan@koniczek.de 1219652629 J * Wonka produziert@chaos.in-kiel.de 1219652629 J * kiorky ~kiorky@cryptelium.net 1219652629 J * SpComb terom@zapotek.paivola.fi 1219652629 J * Adrinael adrinael@rid7.kyla.fi 1219652629 J * micah ~micah@micah.riseup.net 1219652629 J * vasko ~vasko@unreal.rainside.sk 1219652629 J * transacid ~transacid@transacid.de 1219652629 J * trippeh atomt@uff.ugh.no 1219652629 J * PowerKe ~tom@d5153A1EB.access.telenet.be 1219652629 J * harrydg ~harry@d51A461B4.access.telenet.be 1219652629 J * [PUPPETS]Gonzo gonzo@fellatio.deswahnsinns.de 1219652629 J * tokkee tokkee@ssh.faui2k3.org 1219652629 J * snooze ~o@1-1-4-40a.gkp.gbg.bostream.se 1219652629 J * daniel_hozac ~daniel@c-571472d5.08-230-73746f22.cust.bredbandsbolaget.se 1219652629 J * svenk ~sven@213.73.89.36 1219652629 J * mcp ~hightower@wolk-project.de 1219652629 J * awk ~awk@security.web.za 1219652629 J * brc bruce@megarapido.cliquerapido.com.br 1219652629 J * derjohn ~derjohn@80.69.41.3 1219652629 J * franck34 franck34@sd-10138.dedibox.fr 1219652629 J * grobie ~grobie@valgrind.schnuckelig.eu 1219652629 J * phedny_ ~mark@2001:610:656::115 1219652629 J * ard ~ard@shell2.kwaak.net 1219652629 J * nou Chaton@causse.larzac.fr.eu.org 1219652629 J * FloodServ services@services.oftc.net 1219652629 J * dddd ~matthew@scorpion.sorbs.net 1219653678 J * derjohn_mob ~aj@51.42.69.80.in-addr.net-lab.net 1219653964 J * JonB ~NoSuchUse@130.227.63.19 1219653966 M * JonB help, why is vserver stop not unmounting filesystems? 1219654002 M * daniel_hozac because namespaces take care of that. 1219654027 M * JonB namespaces? 1219654028 M * Bertl JonB: would you like your vserver stop to unmount something on the host? 1219654070 M * JonB i would like that it umounts the filesystem when doing stop 1219654075 M * JonB and mount it while doing start 1219654078 M * JonB it works with start 1219654083 M * JonB but it is still mounted 1219654084 M * Bertl on the host, yes? 1219654086 M * JonB and i get this error 1219654094 M * Bertl i.e. not inside the guest 1219654097 M * JonB This utility only unmounts cifs filesystems. 1219654097 M * JonB This utility only unmounts cifs filesystems. 1219654101 M * JonB yes, from the host 1219654121 M * Bertl then put the mount/umount in the start/stop scripts 1219654124 M * JonB i tried to unmount it by hand on the host, but that isnt working either 1219654137 M * daniel_hozac why not? 1219654163 M * JonB i have the filesystems mentioned in /etc/vservers/name/fstab and fstab.remote 1219654168 M * JonB i figured it would unmount it 1219654181 M * Bertl those are unmounted on shutdown 1219654187 M * Bertl (inside the guest, of course) 1219654213 M * JonB it seems like the samba share is not unmounted :-( 1219654235 M * Bertl I remember some 'bug' regarding cifs 1219654238 M * daniel_hozac sounds like a CIFS bug. 1219654248 M * Bertl caused by the fact that cifs spawns a kernel thread 1219654266 M * JonB right 1219654269 M * Bertl (and that keeps running after the guest is terminated or so) 1219654293 M * JonB so, what do i do now? i cant umount it, and i cant unmount those below it 1219654300 M * Bertl but as I said, put explicit mount/umount entries in the pre/post scripts 1219654301 M * JonB so the vserver will try to do fsck at start 1219654316 M * Bertl fsck cifs? 1219654330 M * JonB Bertl: no, fsck on the non cifs filesystems mounted below 1219654342 M * JonB i have a system filesystem for that host and a data share 1219654346 M * JonB it's a converted host 1219654348 M * Bertl why does the guest 'try' to fsck at all? 1219654374 M * Bertl that's something which should have been removed on the conversion 1219654382 M * JonB probably because i made an extension to the util-vserver which i submitted to daniel_hozac 1219654396 M * JonB and because the there are entires in fstab 1219654413 M * Bertl ah, so that is not the guest, but the tools 1219654429 M * JonB yes i guess you are right 1219654505 M * JonB if i make thos explicit mount/umount, should i then remove it from the fstab? 1219654512 M * JonB for this vservergust? 1219654539 M * daniel_hozac yes. 1219654559 M * JonB okay 1219654570 Q * hparker Quit: Read error: 104 (Peer reset by connection) 1219655497 Q * balbir Ping timeout: 480 seconds 1219656618 Q * pmenier_off Quit: Konversation terminated! 1219656628 M * Bertl okay, off to bed now ... have a good one everyone! 1219656632 N * Bertl Bertl_zZ 1219656632 M * nox where to find a util-vserver rpm for centos 5.2? 1219656641 M * nox sleep well Bertl_zZ 1219657729 J * friendly ~friendly@ppp59-167-65-187.lns1.mel6.internode.on.net 1219657978 J * kir ~kir@swsoft-msk-nat.sw.ru 1219658707 Q * xdr Ping timeout: 480 seconds 1219661370 J * dna_ ~dna@137-207-dsl.kielnet.net 1219661697 Q * dna Ping timeout: 480 seconds 1219663008 Q * mrjack2 1219663786 J * DavidS ~DavidS@vpn.uni-ak.ac.at 1219663839 M * DavidS hi, is this vserver related or do i just have a severly broken FS here: http://paste.linux-vserver.org/12383 ? 1219664057 M * JonB i think that only Bertl_zZ can answer that question 1219664064 M * JonB did you try to FSCK the fs? 1219664081 M * DavidS yeah .. that repaired a few errors but it looked good 1219664087 M * DavidS afterwards, that is 1219664097 M * JonB well, i dunno 1219664201 J * balbir ~balbir@122.171.6.234 1219664462 Q * fanto666 Quit: Leaving 1219665708 M * m_o_d hello 1219665742 M * m_o_d i there any problem with: util-vserver 0.30.215-2 and 2.6.25.4-vs2.3.x-vs2.3.0.34.10 ? 1219665811 J * zlwang ~zlwang@60.177.110.142 1219665823 M * m_o_d i buid guest with debootstrap, but i cant start guest 1219665831 M * m_o_d vserver --verbose s5 start 1219665831 M * m_o_d New network context is 40003 1219665831 M * m_o_d Adding 80.54.30.250 1219665831 M * m_o_d New security context is 40003 1219665928 Q * zlwang Quit: Ex-Chat 1219666075 M * DavidS m_o_d: can you paste the complete output to http://paste.linux-vserver.org/ ? 1219666150 M * m_o_d DavidS: it is all 1219666288 Q * Aiken Quit: Leaving 1219666666 Q * friendly Quit: Leaving. 1219666801 J * lilalinux ~plasma@80.69.41.3 1219667662 J * loddafnir ~mike@193.170.138.233 1219668069 M * DavidS ok, i booted the server under another (older) kernel and could rsync the directory in question without troubles :-/ 1219668262 M * DavidS so it seems to be no fs-corruption but an actual kernel problem :-/ 1219670304 J * hparker ~hparker@linux.homershut.net 1219670390 Q * phedny_ Ping timeout: 480 seconds 1219671741 N * phedny Guest3460 1219671744 J * phedny ~mark@2001:610:656::115 1219672113 J * miller7 ~adminbot@athedsl-390982.home.otenet.gr 1219672751 Q * larsivi Quit: Konversation terminated! 1219674511 J * cryptronic ~oli@p54A3B20E.dip0.t-ipconnect.de 1219674738 J * dowdle ~dowdle@scott.coe.montana.edu 1219675106 M * micah does anyone know what debian supported locale covers ISO-2022-JP? 1219675297 M * micah ww, sorry 1219675437 Q * JonB Ping timeout: 480 seconds 1219675509 M * blathijs Anyone here using LDAP (or something else) to share users between vservers? 1219675984 Q * DavidS Quit: Leaving. 1219676081 Q * fatgoose Remote host closed the connection 1219676282 Q * lilalinux Remote host closed the connection 1219676677 Q * SpComb Ping timeout: 480 seconds 1219677148 J * SpComb terom@zapotek.paivola.fi 1219677220 J * JonB ~NoSuchUse@77.75.164.169 1219677414 M * micah daniel_hozac: thanks, I'll give it a build 1219677524 J * __gh__ ~gerrit@67.170.155.50 1219677548 J * fatgoose ~samuel@98.80.modemcable.oricom.ca 1219677893 J * xdr ~xdr@gote2.62.cust.blixtvik.net 1219677968 J * dna ~dna@151-227-dsl.kielnet.net 1219678356 Q * dna_ Ping timeout: 480 seconds 1219678598 Q * kir Quit: Leaving. 1219678729 Q * xdr Read error: Connection reset by peer 1219678802 J * xdr ~xdr@gote2.62.cust.blixtvik.net 1219679320 Q * phedny Ping timeout: 480 seconds 1219679826 J * larsivi ~larsivi@169.80-202-217.nextgentel.com 1219680462 Q * derjohn Ping timeout: 480 seconds 1219680474 M * m_o_d blathijs: i use pam_mysql+nss(mysql backend) 1219680662 Q * derjohn_mob Ping timeout: 480 seconds 1219680866 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d 1219680872 Q * JonB Quit: Leaving 1219680889 N * DoberMann DoberMann[PullA] 1219681052 M * blathijs m_o_d: Are there any useful tools for managing such a setup? Or is it just manually editing the database with mysql/phpmyadmin or something? 1219681085 M * blathijs m_o_d: I guess that pam_mysql is a lot easier to setup than pam_ldap (which is one of the main reasons I'm looking at alternatives) 1219681306 M * m_o_d blathijs: i have php backend to mysql db 1219681419 M * blathijs m_o_d: What backend? Got a link, or is it custom? 1219681509 M * daniel_hozac blathijs: LDAP isn't all that hard to setup. plus, there are a ton of HOWTOs online... 1219681578 M * blathijs daniel_hozac: Last time I tried (few years back), I spent a few days on getting slapd, the right schema's, finding tools to do user management, etc. 1219681603 M * blathijs Though a significant portion of the work then resulted from my using ldap to authenticate samba as well I think 1219681608 M * daniel_hozac the schemas ship with OpenLDAP, as do tools to convert /etc/passwd, /etc/shadow and /etc/group into LDAP. 1219681681 J * derjohn ~derjohn@dslb-084-058-201-224.pools.arcor-ip.net 1219681769 M * daniel_hozac m_o_d: use a util-vserver snapshot. 1219681770 M * blathijs daniel_hozac: No big problems, but a lot of small ones mainly :-) And coming from zero experience with LDAP, it seemed slightly overpowered for what I was doing. 1219681808 M * blathijs Though, whatever I use as a backend, tools to manage them are the most important. And I think that LDAP might win there, since it's main focus is user management... 1219681835 M * daniel_hozac m_o_d: lenny switched to rsyslog, and earlier utils don't know about it. 1219682516 M * blathijs m_o_d: Using util-vserver from lenny also works, that version has a local patch 1219682532 M * blathijs m_o_d: And you can install it in etch with only a few dependencies 1219682558 M * daniel_hozac or you can build it from the tarball yourself... 1219682574 M * blathijs true :-) 1219682604 M * blathijs daniel_hozac: I guess that my main obstacle with LDAP has been getting samba to work properly and find tools that can also work with samba (which only left me with half-decent tools at that moment) 1219682627 J * phedny ~mark@2001:610:656::115 1219682630 M * blathijs daniel_hozac: Trying to do the same with mysql will probably be even more effort and less support I guess 1219682663 M * blathijs daniel_hozac: So I might give LDAP another go then, thanks 1219682682 M * blathijs bbl, dinner 1219682707 Q * fatgoose Quit: fatgoose 1219683653 Q * dowdle Quit: Konversation terminated! 1219683892 J * dowdle ~dowdle@scott.coe.montana.edu 1219685179 J * ViRUS ~mp@p579B527E.dip.t-dialin.net 1219685478 Q * derjohn Ping timeout: 480 seconds 1219685483 J * derjohn ~derjohn@dslb-084-058-231-122.pools.arcor-ip.net 1219686487 M * m_o_d blathijs: php backend is integrated with our web panel 1219686644 Q * quasisane Remote host closed the connection 1219686978 J * dna_ ~dna@55-198-dsl.kielnet.net 1219687027 Q * dna Ping timeout: 480 seconds 1219687154 N * Bertl_zZ Bertl 1219687938 M * daniel_hozac micah: ~rXXXX is pretty weird. is that the Debian syntax for pre-releases? 1219687963 M * Bertl morning folks! 1219687970 M * daniel_hozac morning Bertl! 1219687982 M * micah daniel_hozac: what would you suggest as an alternative? 1219688001 M * daniel_hozac well, it just seems like it lacks an upgrade path when 0.30.216 becomes available. 1219688018 M * daniel_hozac (unless apt knows about this policy) 1219688336 M * micah daniel_hozac: dpkg --compare-versions 0.30.216~r2772-1 lt 0.30.216-1 1219688379 M * micah because that is a zero exit code, the 0.30.216 is considered newer 1219688385 M * micah or rather 0.30.216-1 1219688535 M * daniel_hozac okay then. 1219688919 Q * ktwilight_ Read error: Connection reset by peer 1219689169 M * blathijs daniel_hozac: micah: AFAIK, ~ is the only character that's sorted before the empty string in Debian versioning 1219689183 J * quasisane ~sanep@c-75-68-62-13.hsd1.nh.comcast.net 1219689188 M * blathijs And it was added to support prerelease versions 1219689193 M * micah blathijs: thats correct 1219689224 N * DoberMann[PullA] DoberMann 1219689897 Q * balbir Ping timeout: 480 seconds 1219690017 Q * nebuchadnezzar Read error: No route to host 1219690973 J * Beuc ~yo@82.238.35.175 1219691065 M * Beuc Hi! Do you know about an automatic method to install a opensuse guest from a debian host? http://linux-vserver.org/Installing_an_openSUSE_vserver_guest suggests the rsync method - eeeew :) 1219691122 M * daniel_hozac yum works. 1219691283 M * Beuc daniel_hozac: I see a 'suse91' directory in /usr/lib/util-vserver/distributions, but it doesn't contain a 'yum' directory. Is it called differently? 1219691395 M * daniel_hozac you have to create the directory yourself. 1219691402 M * daniel_hozac it doesn't have scripts or anything yet. 1219691643 M * Beuc Is there a copy/pastable configuration for lazy persons like me? :o) 1219691671 M * Beuc (I'm installing it on a real computer, I should be able to rip the yum.conf though) 1219691836 M * daniel_hozac if there was, it'd be in the utils. :) 1219692461 Q * dna_ Ping timeout: 480 seconds 1219692657 Q * xdr Read error: Connection reset by peer 1219692664 Q * pisco Remote host closed the connection 1219692719 J * xdr ~xdr@gote2.62.cust.blixtvik.net 1219693093 J * pisco_ ~pisco@tor.noreply.org 1219693558 J * SlackLnX ~Lee@bl7-139-214.dsl.telepac.pt 1219693883 J * dna ~dna@180-197-dsl.kielnet.net 1219694237 J * dustybin subx@microsoft.devilcode.net 1219694370 M * dustybin i have split my server up into 2 parts, private and public, ive setup a vserver guest for public. My server has 2 real NICs, I would like to assign eth0 for my host and eth1 for my vserver guest. I would like all traffic on my host routed in and out of eth0, and all traffic on my vserver guest routed in and out of eth1, anybody know a way of doing this, ive searched google and cannot find much. 1219694371 Q * loddafnir Read error: Connection reset by peer 1219694434 M * dustybin my network will look like this, replace xen with vserver: http://empire.ispeeds.net/~subx/network2.png 1219694758 M * daniel_hozac http://archives.linux-vserver.org/200311/0470.html 1219695158 M * dustybin hmm confusing 1219695298 Q * dna Read error: Connection reset by peer 1219695302 Q * bonbons Quit: Leaving 1219695719 M * Bertl dustybin: it's quite simple, forget all about virtual network stacks and Xen, just think Linux Host ... 1219695726 Q * SlackLnX Quit: I'll Be back 1219695765 M * ViRUS What do you usually use for monitoring your processes across the vservers? I'm used to htop, but that doesn't work accross domains. vtop really is not that great. any recommendations? 1219695781 M * daniel_hozac use htop. 1219695789 M * Bertl what about chcontext --xid 1 -- htop? 1219696065 J * Aiken ~Aiken@ppp118-208-65-150.lns1.bne4.internode.on.net 1219696146 M * dustybin Bertl: is it a case of just changing: ip route 1219696287 Q * pisco_ Remote host closed the connection 1219696312 J * pisco_ ~pisco@tor.noreply.org 1219696411 M * dustybin i think i got it working by changing the ip routes 1219696454 M * dustybin if i remove the network cable internet stops and im unable to ping other devices on my LAN, apart from the host 1219696479 M * dustybin i think the reason why i can ping the host because im using the same kernel as the host 1219696494 M * dustybin so maybe some kind of iptables rule will stop that 1219696798 M * Bertl yep, you can definitely block that with iptables 1219696851 M * dustybin excellent, so this means i can safely put the vserver guest on a DMZ using my firewal 1219697491 J * derjohn_mob ~aj@p5B23D3C2.dip.t-dialin.net 1219697836 J * salman ~salman@office.quietcaresystems.com 1219697889 M * Bertl welcoem salman! 1219697914 M * salman hi, trying to install an fc8/fc9 guest. the install seems to run fine until a vserver start is attempted and then it exits with this error: http://pastebin.com/m1cd71758 1219697929 M * salman (it's a centos4 x86_64 system) 1219697932 J * ViRUS_ ~mp@p579B48A4.dip.t-dialin.net 1219697936 M * salman can someone tell me what I may be doing wrong/ 1219697970 Q * hparker Quit: bbiab 1219697970 M * salman I assume by line 12 that it can't find the install dir... but I see it in /vservers/hostname 1219697984 M * salman and I can chroot into it by hand just fine 1219698002 M * Bertl salman: what util-vserver are you using? (maybe upload the output of 'vserver-info - SYSINFO' to paste.linux-vserver.org)? 1219698040 M * ViRUS_ Bertl, what's the --xid option? 1219698048 M * salman it's the latest one linked on the site 1219698051 M * salman I'll paste it 1219698052 M * ViRUS_ Bertl, it is not in the manpage of chcontext 1219698068 M * Bertl ViRUS_: then the man page is outdated 1219698094 M * Bertl ViRUS_: it specifies the context you want to change to 1219698096 M * daniel_hozac don't read the man pages. 1219698127 M * salman http://paste.linux-vserver.org/12384 1219698136 M * Bertl daniel_hozac: might make sense to replace them by some info where to get more info for now 1219698138 M * salman added with sysinfo and other text 1219698183 M * Bertl salman: looks good so far ... maybe daniel_hozac has an idea what goes wrong with f8/9? 1219698191 M * salman one change I had to make to the configure script was changing all instances of 'nss' to mozilla-nss 1219698195 M * salman but that's all 1219698221 M * daniel_hozac that actually worked? 1219698225 M * salman yes 1219698228 M * daniel_hozac wow. 1219698239 M * daniel_hozac and make check passed? 1219698257 M * salman well, configure, make, and make install all worked. I didn't check make check 1219698258 M * salman let me see 1219698298 M * salman ./src/testsuite/hashcalc.sh: line 56: sha256sum: command not found 1219698304 M * salman 2 of 21 tests failed 1219698307 M * salman both with that error 1219698311 M * salman but not nss failures 1219698326 M * daniel_hozac those are the nss tests... 1219698341 M * daniel_hozac you know you could've just used beecrypt, right? 1219698362 Q * ViRUS Ping timeout: 480 seconds 1219698371 M * salman would my change have caused the chroot errors in my paste log? 1219698380 M * daniel_hozac no. 1219698400 J * hparker ~hparker@linux.homershut.net 1219698405 M * daniel_hozac that's caused by /proc/sys not existing. 1219698420 M * salman ls -ld /proc/sys 1219698421 M * salman dr-xr-xr-x 1 root root 0 Aug 25 05:47 /proc/sys 1219698430 M * salman wrong attrs, perhaps? 1219698505 M * Bertl what does /proc/sys contain? 1219698537 M * salman the usual stuff. net, dev, fs, etc 1219698571 M * salman find /proc/sys |wc -l 1219698571 M * salman 616 1219698583 M * Bertl well, I first suggest to go with daniel_hozac's advice and use beecrypt 1219698583 M * daniel_hozac is anyone running an etch vserver kernel around? 1219698628 M * Bertl salman: then try to build a debian guest first, just to see that everything works (of course, start with giving testme.sh a spin) 1219698652 M * salman I tried the test script, everything passed 1219698661 M * Bertl I almost assumed so :) 1219698668 M * salman let me try a reinstall with crypt=none and see if that works any better 1219698671 M * salman back in a few 1219698735 M * daniel_hozac Bertl: know of a way to tell if the kernel supports the --bind; -o remount,ro feature? 1219698776 M * Bertl good question .. besides from trying, no idea 1219698816 M * Bertl we could mark that in feature flags or so if you need to know it? 1219698836 Q * xdr Read error: Connection reset by peer 1219698872 J * xdr ~xdr@gote2.62.cust.blixtvik.net 1219699600 M * salman same thing with the deb install 1219699615 M * salman ah. but a new error message 1219699622 M * salman W: Failure trying to run: chroot /usr/local/etc/vservers/.defaults/vdirbase/vserver1 mount -t proc proc /proc 1219699622 M * salman >>> Executing post install script ... 1219699622 M * salman vsysctl: chdir(): No such file or directory 1219699629 M * Beuc daniel_hozac: opensuse 10.3 doesn't use yum, it uses 'zypper'. No /etc/yum either :/ 1219699644 M * daniel_hozac Beuc: it uses the same metadata format as yum, so yum can install it. 1219699649 M * daniel_hozac at least, 10.2 does. 1219699658 M * Beuc neat 1219699661 M * salman but /proc is mounted on the host 1219699701 M * Bertl salman: you did run the distro_install, yes? 1219699701 M * dustybin if i manually launch this: 1219699702 M * dustybin ip route add 192.168.2.0/24 dev eth1 table 101 1219699702 M * dustybin ip route add default via 192.168.2.254 dev eth1 table 101 1219699702 M * dustybin ip rule add from 192.168.2.0/24 table 101 1219699724 M * dustybin my vserver guest uses eth1 for everything, where would be a good place to launch that automatically 1219699743 M * daniel_hozac salman: and you ran vprocunhide, right? 1219699759 M * daniel_hozac salman: anyway, r2773 should work around the issue. 1219699765 M * Bertl dustybin: probably the host's /etc/ (you can put routes and rules there) 1219699776 M * dustybin aye ok thanks 1219699789 M * Bertl dustybin: but if you really want to add/remove it, check out the pre/post scripts 1219699799 M * dustybin ok 1219699802 M * salman let me run vprocunhide. I was just doing setattr by hand 1219699812 M * salman not sure what distro_install is.. didn't see that in any of the how-tos 1219699820 M * daniel_hozac install-distribution. 1219699824 M * Bertl salman: setattr by hand? hmm? 1219699825 M * daniel_hozac i think... 1219699840 M * salman daniel_hozac: yes. after the make install 1219699867 M * salman Bertl: one of linked-to pages in the wiki had setattr commands for a few /proc dirs 1219699902 M * Bertl heh, and you wonder about 'strange' effects :) 1219699987 M * daniel_hozac Beuc: btw, i believe your previous issues are fixed now. see http://people.linux-vserver.org/~dhozac/t/uv-testing/util-vserver-0.30.216-pre2772.tar.bz2 1219700074 Q * cryptronic Quit: Leaving. 1219700320 J * xdr_ ~xdr@gote2.62.cust.blixtvik.net 1219700320 Q * xdr Read error: Connection reset by peer 1219700344 J * hparker|laptop ~hparker@linux.homershut.net 1219700407 M * ViRUS_ Bertl, I was rather looking for something like vtop - which monitors all vservers together, but with a bit better user interface. htop is way better than top. 1219700429 N * hparker Guest3516 1219700429 N * hparker|laptop hparker 1219700433 M * Bertl well, vtop is 'top' with the chcontext --xid 1 wrapped around 1219700451 M * Bertl so, what's the problem with htop and the wrapper? 1219700494 Q * Guest3516 Remote host closed the connection 1219700813 Q * derjohn_mob Quit: Verlassend 1219700825 J * derjohn_mob ~aj@p5B23D3C2.dip.t-dialin.net 1219700912 M * Beuc daniel_hozac: I'll give it a try 1219701321 M * daniel_hozac thanks. 1219701339 N * DoberMann DoberMann[ZZZzzz] 1219701437 M * daniel_hozac Bertl: looks like the bit isn't necessary. 1219701463 M * Bertl okay, good 1219701788 J * ktwilight ~ktwilight@87.66.203.58 1219703314 M * Beuc daniel_hozac: looks like this works! 1219703325 M * daniel_hozac great! 1219703651 M * salman okay, after some fighting, I got the deb install to finish but now it is still not starting: http://paste.linux-vserver.org/12385 -- same thing for a centos5 I just tried 1219703653 M * Beuc daniel_hozac: All fine, no message from rpm-fake so far. Yum starts I get my python gpgme traceback alright. 1219703665 M * salman ran vprocunhide before starting vserver also 1219703675 J * dna ~dna@15-231-dsl.kielnet.net 1219703683 M * salman and no errors during install 1219703697 Q * dna 1219703699 M * daniel_hozac salman: which Debian? 1219703718 M * Bertl seems like lenny 1219703731 M * salman cat /etc/debian_version 1219703732 M * salman lenny/sid 1219703733 M * salman yes 1219703734 M * daniel_hozac lenny and centos5 need a util-vserver snapshot to install right. 1219703745 M * Bertl salman: looks good so far .. try again with f8/9 1219703803 M * salman okay. there doesn't appear to be a centos4 package on your site anymore, so let me try f9 1219703844 M * daniel_hozac f9 also requires a snapshot... 1219703862 Q * derjohn Ping timeout: 480 seconds 1219703868 J * derjohn ~derjohn@dslb-084-058-243-121.pools.arcor-ip.net 1219703870 M * salman linux32 vserver vserver3 build -m yum --context 42 --hostname vserver3 -- -d f8 1219703870 M * salman rpm-fake-resolver: vc_ctx_migrate(): No such process 1219703870 M * salman rpm-fake.so: failed to initialize communication with resolver 1219703882 M * salman do you have a centos4 package? or if you can point me at the source, I can grab and build it 1219703886 M * daniel_hozac ... which is fixed in the snapshot... :) 1219703905 M * Bertl daniel_hozac: sounds like time for a new release :) 1219703907 M * daniel_hozac http://people.linux-vserver.org/~dhozac/t/uv-testing/util-vserver-0.30.216-pre2772.tar.bz2 1219703910 M * salman thanks 1219703914 M * daniel_hozac Bertl: yeah, i'm just fixing the last couple of bugs. 1219704701 M * salman looks like it's working... yum's installing packages for fc9 right now 1219704766 M * salman nice. worked fine 1219704787 M * salman thank you both for your help 1219704797 M * Bertl you're welcome! 1219705250 M * daniel_hozac Bertl: so, the pid namespace API... you want to do things in the kernel, yes? 1219705274 M * Bertl not necessarily, but I want it to work with older tools too, if possible 1219705286 M * daniel_hozac ... which means doing it in the kernel :) 1219705294 M * Bertl I'm fine with newer tools using a new API 1219705307 M * Bertl no problem if they use the old one though :) 1219705329 M * daniel_hozac well, there are things the utils just can't take care of easily. 1219705392 M * daniel_hozac and if we want to do the reserve-pid-1 thing, i think we're going to have to create the namespace in the kernel. 1219705413 M * daniel_hozac unless we want to break pid namespaces regular semantics on Linux-VServer kernels. 1219705422 M * daniel_hozac (which seems like a bad idea to me) 1219705429 M * Bertl either that, or provide the 'remap to pid1' we discussed 1219705438 M * Bertl (i.e. the set initpid functionality) 1219705454 M * daniel_hozac but what do we do with the task currently holding pid 1 (which will be the utils)? 1219705496 M * Bertl in that case, the tools can start a 'tool-init' as pid 1, then 'replace' that with the real init or let it disappear and take the 'fake init' over, no? 1219705503 Q * dowdle Remote host closed the connection 1219705519 M * Bertl (fake init here is the blend through version) 1219705521 M * daniel_hozac that sounds really race-prone. 1219705527 M * Bertl how so? 1219705549 M * daniel_hozac oh, nevermind. i misparsed what you were saying. 1219705591 M * daniel_hozac the thing is, the utils daemonize before execing the guest's init. 1219705607 M * Bertl okay 1219705617 M * daniel_hozac and then call vx_set_init from the child. 1219705635 M * Bertl could that be reversed? i.e. happen in the parent? 1219705639 M * daniel_hozac while i could certainly rearchitect this scheme, not supporting this would break older utils. 1219705654 M * Bertl ah, okay, I get it 1219705670 M * Bertl so we have a 'current' init running, and we need to replace that with the child 1219705696 M * Bertl what happens with the parent, is that still needed inside the guest? 1219705721 M * daniel_hozac the parent exits after it receives a synchronization signal from the child, indicating whether it succeeded in execing the guest's init or not. 1219705749 M * Bertl what if we simply exchange the pids? (kernel wise) 1219705795 M * Bertl i.e. what if setinitpid now not only sets an init pid, but also 'unsets' the current init? 1219705925 M * daniel_hozac hmm... the utils call waitpid() if exec fails (or any other step, for that matter), so that might mess things up. 1219706003 M * Bertl hmm 1219706135 M * daniel_hozac i guess we could make it a delayed exchange, that happens on execve if current == current->nsproxy->pid_ns->child_reaper... 1219706182 M * Bertl that sounds extremely hacky ... 1219706187 M * daniel_hozac yes. :) 1219706255 M * Bertl okay, I guess we have to bite the bullet here and go for upgrading the tools (and dropping tool backward compatibility here) unless we have some smart idea for that .. 1219706280 M * Bertl we could add a 'legacy' option to not show the PID space, no? 1219706306 M * Bertl that should make older tools work (but without utilizing the pid space) 1219706323 M * daniel_hozac though that would mean all processes see eachother... 1219706336 M * daniel_hozac or do you want to keep all the old pid code? 1219706354 M * Bertl unless we leave some of the isolation in place (could be removed by disabling the legacy stuff) 1219706425 M * daniel_hozac but i think we could probably do this in a compatible way. 1219706461 M * daniel_hozac if vc_ctx_create allocates the pid namespace and marks pid 1 as used, nothing should get pid 1. 1219706485 M * Bertl ah, yes, that would match the current behaviour 1219706517 M * Bertl we only need to do the set initpid then 1219706527 M * daniel_hozac right. 1219706539 M * Bertl but we still need to keep the 'old' tools from cloning the pid space, yes? 1219706571 M * daniel_hozac well, if the kernels handles the cloning of the pid namespace, it should probably not be in the default set nor in the set reported to the legacy utils. 1219706594 M * Bertl that's the point, what about the 'new' tools? 1219706604 M * Bertl they probably want to do that on their own, no? 1219706612 M * daniel_hozac what? clone the pid space? 1219706615 M * Bertl yep 1219706624 M * daniel_hozac but the utils can't reserve pid 1. 1219706631 M * daniel_hozac it needs to happen in the kernel. 1219706648 M * Bertl yeah, what I mean, the new tools probably want to grab pid=1 no? 1219706669 M * daniel_hozac oh. 1219706690 M * Bertl at least it would make sense, looking forward to Linux-VServer without kernel patches :) 1219706692 M * daniel_hozac well, letting the kernel do it would make my life easier... :) 1219706710 M * Bertl I'm fine with that, at least for now :) 1219706745 M * daniel_hozac it's a fairly substantial rewrite to get pid 1 to the guest's init. 1219706770 M * Bertl okay, so we simply postpone that indefinitely 1219706781 M * daniel_hozac (while keeping the synchronization bits) 1219706991 Q * salman Quit: [BX] Terminated. 1219707831 M * daniel_hozac Bertl: btw, something i thought about the other day... why don't we transfer disk limit usage on vc_set_iattr? 1219707989 M * Bertl please elaborate ... 1219708513 M * daniel_hozac right now, changing the tag of a file requires you to manually update the disk limit accounting info, since it's not handled automatically. 1219708524 M * daniel_hozac that seems like a rather unnecessary step, IMHO. 1219708543 M * Bertl ah, i.c. yeah, that would make sense 1219708568 M * Bertl OTOH, we should make that optional 1219708587 M * Bertl it might be that you have good reason to change the xid without updating the counters 1219708615 P * Beuc Leaving 1219708617 M * daniel_hozac such as...? :) 1219708652 M * Bertl no idea, but we shouldn't break existing behaviour _and_ remove a feature :) 1219708679 M * Bertl but no problem with adding a flag or so there, have to check that