1227571507 Q * dowdle Remote host closed the connection 1227571880 Q * meyerm Remote host closed the connection 1227572136 Q * mugwump resistance.oftc.net scorpio.oftc.net 1227572208 J * mugwump ~samv@watts.utsl.gen.nz 1227574990 J * hparker_lappie ~hparker@linux.homershut.net 1227575072 N * hparker Guest644 1227575072 N * hparker_lappie hparker 1227575095 Q * hparker 1227575101 J * hparker ~hparker@linux.homershut.net 1227575327 Q * Guest644 Ping timeout: 480 seconds 1227576238 Q * daniel_hozac Remote host closed the connection 1227576250 J * daniel_hozac ~daniel@ssh.hozac.com 1227576596 Q * nou Ping timeout: 480 seconds 1227576799 J * nou Chaton@2001:6f8:328:bbc:6666:6667:: 1227578581 M * Bertl off to bed now .. have a good one everyone! 1227578587 N * Bertl Bertl_zZ 1227578848 Q * hparker Quit: Quit 1227578881 Q * daniel_hozac Ping timeout: 480 seconds 1227579261 J * daniel_hozac ~daniel@ssh.hozac.com 1227579310 J * hparker ~hparker@linux.homershut.net 1227579625 Q * hparker Quit: Read error: 104 (Peer reset by connection) 1227579634 J * hparker ~hparker@2001:470:1f0f:32c:212:f0ff:fe0f:6f86 1227581732 J * PowerKe_ ~tom@d5153A64C.access.telenet.be 1227581836 Q * PowerKe Ping timeout: 480 seconds 1227582138 J * Aiken ~Aiken@ppp118-208-72-25.lns1.bne4.internode.on.net 1227584393 Q * hparker Quit: Read error: 104 (Peer reset by connection) 1227587879 Q * derjohn_mob Ping timeout: 480 seconds 1227593407 Q * balbir Ping timeout: 480 seconds 1227593750 J * derjohn_mob ~aj@e180211134.adsl.alicedsl.de 1227594594 J * balbir ~balbir@32.97.110.53 1227596154 J * sharkjaw ~gab@149-67-194.231210.adsl.tele2.no 1227596354 J * mtg ~mtg@dialbs-088-079-143-204.static.arcor-ip.net 1227596852 J * doener_ ~doener@i577BB633.versanet.de 1227596976 Q * doener Ping timeout: 480 seconds 1227597111 Q * independence Ping timeout: 480 seconds 1227597391 Q * esa Ping timeout: 480 seconds 1227597542 N * quinq qzqy 1227599039 Q * larsivi Ping timeout: 480 seconds 1227600505 J * dna ~dna@52-200-103-86.dynamic.dsl.tng.de 1227603237 J * larsivi ~larsivi@85.221.53.194 1227604056 J * Daniel15 ~irc@c122-108-155-252.sunsh1.vic.optusnet.com.au 1227604187 Q * nenolod Ping timeout: 480 seconds 1227604187 M * Daniel15 Hey everyone :) 1227604201 M * Daniel15 Anyone able to help me with this... I'm trying to install Postfix in a newly-created vserver, and am getting this in the logs: 1227604203 M * Daniel15 Nov 25 20:00:43 web2 postfix/pickup[24782]: fatal: chroot(/var/spool/postfix): Operation not permitted 1227604624 J * nenolod ~nenolod@ip70-189-74-62.ok.ok.cox.net 1227605004 Q * nenolod Quit: Leaving 1227605031 J * ghislainocfs21 ~Ghislain@adsl2.aqueos.com 1227605204 J * nenolod nenolod@petrie.dereferenced.org 1227605379 Q * ghislainocfs2 Ping timeout: 480 seconds 1227605501 M * fb_ Daniel15: don't chroot 1227605506 Q * derjohn_mob Ping timeout: 480 seconds 1227605669 M * ghislainocfs21 i think chroot INSIDE a host need to give the chroot privilege to the guest 1227605681 M * ghislainocfs21 see the capabilities if really needed 1227605696 M * Daniel15 I think it chrooted itself by default on install... I guess I should read the manual and see how to change it 1227605730 M * fb_ ghislainocfs21: yeah, but i think one should avoid this cap if possible 1227605778 M * ghislainocfs21 i do not know if it breach any security in the guest isolation 1227605826 M * ghislainocfs21 8 0x00040000 SYS_CHROOT Allow use of chroot() 1227605834 M * ghislainocfs21 BIG FAT WARNING: Adding any system capability to your virtual server WILL reduce security. Do not change the default values unless you absolutely know what you are doing! 1227605851 M * ghislainocfs21 it's a bcap, if you can avoid it, ..avoid it :) 1227606028 N * pmenier_off pmenier 1227606042 M * Daniel15 Okay, thanks 1227606086 M * Daniel15 Hmm I've got another vserver that uses Postfix and it seems to work fine... I set that one up ages ago though, and it's using Debian testing instead of stable. I might make a new vserver using Debian testing and see if the default config on that works fine :P 1227606124 M * Daniel15 I'm a noob at server admin, I'm only good at setting up Apache :P 1227606436 M * Daniel15 ugh, fresh install on Debian testing doesn't work too, it tries to chroot as well 1227606441 M * Daniel15 Reading time, I think :P 1227606568 J * kir ~kir@swsoft-msk-nat.sw.ru 1227606693 M * Daniel15 I'm gonna go now, ttyl 1227606697 Q * Daniel15 Quit: Daniel15 1227606827 J * arapaho_ ~arapaho@213.223.114.206 1227606907 J * esa ~esa@ip-87-238-2-45.static.adsl.cheapnet.it 1227606947 Q * arapaho Ping timeout: 480 seconds 1227607386 N * arapaho_ arapaho 1227607442 Q * Aiken Quit: Leaving 1227607462 J * Aiken ~Aiken@ppp118-208-72-25.lns1.bne4.internode.on.net 1227607937 N * morrigan_oO morrigan 1227607937 Q * pmenier Read error: Connection reset by peer 1227607972 J * pmenier ~pme@LNeuilly-152-22-72-5.w193-251.abo.wanadoo.fr 1227610422 J * ktwilight_ ~ktwilight@247.105-66-87.adsl-dyn.isp.belgacom.be 1227610691 Q * ktwilight Ping timeout: 480 seconds 1227611572 J * Mojo1978 ~Mojo1978@ip-88-152-56-189.unitymediagroup.de 1227611786 Q * esa Ping timeout: 480 seconds 1227612328 J * balbir_ ~balbir@124.124.219.61 1227612438 M * hijacker_ postfix runs by default in chroot under debian 1227612452 M * hijacker_ the file to change this is master.cf 1227612469 M * hijacker_ under the chroot column 1227613113 Q * balbir_ Ping timeout: 480 seconds 1227614412 Q * Aiken Quit: Leaving 1227614990 Q * kir Quit: Leaving. 1227615605 Q * Mojo1978 Remote host closed the connection 1227615748 J * kir ~kir@swsoft-msk-nat.sw.ru 1227617785 Q * hijacker_ Remote host closed the connection 1227619403 N * Bertl_zZ Bertl 1227619408 M * Bertl morning folks! 1227619460 M * pmjdebruijn mornin 1227620725 J * derjohn_mob aj@p57A6FAEF.dip.t-dialin.net 1227620801 Q * bliz42 Quit: leaving 1227622422 Q * sharkjaw Remote host closed the connection 1227623215 J * balbir_ ~balbir@122.167.181.47 1227624568 Q * larsivi Remote host closed the connection 1227624961 Q * derjohn_mob Ping timeout: 480 seconds 1227626515 N * qzqy quinq 1227627501 J * geb ~geb@198.17.192-77.rev.gaoland.net 1227629132 J * dowdle ~dowdle@scott.coe.montana.edu 1227629149 J * independence independen@titan.blinkenshell.org 1227629583 Q * balbir_desk Remote host closed the connection 1227629676 Q * derjohn Ping timeout: 480 seconds 1227629692 J * derjohn ~derjohn@dslb-084-059-021-049.pools.arcor-ip.net 1227630257 J * flyperr ~felipe@81.202.9.117.dyn.user.ono.com 1227630292 P * flyperr 1227630335 J * yubatuba ~felipe@81.202.9.117.dyn.user.ono.com 1227630422 M * yubatuba Hi, I have a problem trying to run one of my guest machine 1227630441 M * yubatuba I have just created it but it's doesnt run 1227630460 M * yubatuba and it's not showing mi any error when I tried to run it 1227630469 M * yubatuba showing me* 1227630489 M * daniel_hozac what distribution? 1227630505 M * yubatuba debian 1227630526 M * daniel_hozac so etch host and lenny guest? 1227630528 M * yubatuba when I start it up normally with vserver -v marchine start 1227630538 M * blathijs yubatuba: You probably tried to install lenny.. 1227630549 M * yubatuba only shows me: New network context is 114 1227630549 M * yubatuba Adding 192.168.13.1 1227630550 M * yubatuba New security context is 114 1227630555 M * blathijs ... on an etch host, but daniel_hozac types faster :-) 1227630556 M * yubatuba uhmm etch 1227630607 M * yubatuba nono, I have some machine running normally here with etch 1227630610 M * yubatuba without any problems 1227630627 M * yubatuba i'ts like it doesn't have any service to run at startup 1227630637 M * yubatuba because de post-install script deleted all 1227630651 M * yubatuba all the rc.* files 1227630671 M * blathijs yubatuba: That's exactly what can prevent a vserver from starting 1227630677 M * blathijs (or rather, makes it quit right away I think) 1227630690 M * yubatuba yes it's what I think 1227630702 M * yubatuba because the others have a lot of boot scripts 1227630719 M * yubatuba but I don't understand why in this one the post-install script deleted all 1227630728 M * blathijs yubatuba: And since lenny changed the name of the default syslog daemon, but the util-vserver from etch doesn't know about this yet, this is commonly seen when installing lenny guests on etch 1227630750 M * blathijs The Debian post-install deletes all but a both 1227630778 M * blathijs You can probably manually patch it up by putting links to /etc/init.d/foo in /etc/rc2.d (or rc3.d perhaps, not sure) 1227630820 M * yubatuba ahhh 1227630852 M * yubatuba ok I'll try to path it to see if its possible to have the machine running 1227630864 M * daniel_hozac rc3.d 1227630900 M * yubatuba or maybe I can stop the post-install script while the machine it's being create 1227630903 M * yubatuba isn't it? 1227630975 M * blathijs yubatuba: But, if you're installing etch, then then post-install script should at least leave the syslogd (or sysklogd or something) init script in tact AFAIK 1227630988 M * daniel_hozac you could for i in touch "chmod +x"; do $i /etc/vservers/.distributions//initpost; done 1227631042 M * blathijs Interesting use of a for loop :-) 1227631073 M * yubatuba oh I have seen that by default it's trying to install me lenny 1227631075 M * daniel_hozac too lazy to write the path twice :) 1227631114 M * yubatuba I'm trying to put the --dist etch 1227631122 M * yubatuba to see what's happend 1227631373 M * yubatuba ohh it works 1227631383 M * yubatuba thank you so much 1227631399 M * yubatuba It was the bug you said about the different distributions 1227632688 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d 1227632821 Q * kir Quit: Leaving. 1227633007 J * larsivi ~larsivi@9.80-202-30.nextgentel.com 1227633048 Q * ncopa Quit: Ex-Chat 1227633805 Q * geb Read error: No route to host 1227633830 J * geb ~geb@198.17.192-77.rev.gaoland.net 1227633887 M * mnemoc hi, do you remember the name of the fuse fs that used vunify concepts? 1227633962 M * daniel_hozac vhashify, you mean? 1227633983 M * mnemoc yes :p 1227634000 M * Bertl no filesystem 1227634006 M * daniel_hozac hash fs 1227634016 M * daniel_hozac Bertl: Sapan has received your packages. 1227634030 M * Bertl excellent! thanks for the info! 1227634145 M * mnemoc daniel_hozac: thanks! http://www.digitalinfra.co.jp/20080720/hashfs.20080721.html 1227634243 M * Bertl but note that, unless it drastically improved, it does not give any of the advantages of unification :) 1227634320 M * mnemoc someone asked me for a fs that notice if he download an mp3 twice :p 1227634340 M * daniel_hozac save them all to the same directory? :P 1227634345 M * mnemoc =) 1227634357 M * mnemoc i still prefer cow 1227634357 M * Bertl and name them according to the md5 hash :) 1227634369 M * mnemoc i like to see the changes done on the guests 1227634390 M * Bertl let's see what we play now ... ah, 8f8d58b2a4c6620601186c564bc967f2 :) 1227634402 M * arapaho Bertl: the live is better 1227634404 M * mnemoc :D 1227635088 Q * mtg Quit: Verlassend 1227635999 N * pmenier pmenier_off 1227636644 J * derjohn_mob ~aj@e180211134.adsl.alicedsl.de 1227637963 J * awk ~awk@41.29.62.53 1227637996 Q * derjohn_mob Ping timeout: 480 seconds 1227638070 M * awk hi, any problems people faced using custom kernel 2.6.22.19 + vs2.2.0.7-grsec2.1.11 ? 1227638079 M * awk on debian etch4 ? 1227638086 M * awk lol debian 4 1227638300 M * awk also is that kernel 'secure' no known vuln? 1227638373 M * daniel_hozac i'd expect there to be a number of mainline vulnerabilities by now. 1227638392 M * awk hmm, no point using grsec if that is the case :) 1227638488 M * awk daniel_hozac you should know, do you know of any 'vunl's in linux-image-2.6-vserver-686 from debian ? 1227638540 M * awk also vendor_id : AuthenticAMD what would you use linux-image-2.6-vserver-686 or linux-image-2.6.18-4-vserver-k7 ? 1227638590 M * awk at the moment default kernel as -pre-installed- is 2.6.18-6-486 1227638596 M * daniel_hozac i'm really not a Debian person. 1227638628 M * awk ok ill guess, lol... tell me do you use grsec with your rh boxes? 1227638637 M * awk or just stripped down kernel 1227638680 M * awk brb 1227638682 M * daniel_hozac no. 1227638687 Q * awk 1227638747 M * geb you should also have linux-image-2.6-vserver-k7 1227638747 M * geb linux-image-2.6-* are just meta packets pointing to the last version 1227639619 Q * geb Ping timeout: 480 seconds 1227640113 J * dallas ~dallas@sf.newdream.net 1227640297 J * geb ~geb@198.17.192-77.rev.gaoland.net 1227640451 P * yubatuba 1227640519 N * PowerKe_ PowerKe 1227641416 J * hparker ~hparker@2001:470:1f0f:32c:215:f2ff:fe60:79d4 1227641737 Q * geb Ping timeout: 480 seconds 1227641771 J * cga ~weechat@94.36.113.17 1227642704 J * geb ~geb@112.4.82-79.rev.gaoland.net 1227642811 N * quinq qzqy 1227643057 N * qzqy quinq 1227644284 M * micah daniel_hozac: http://micah.riseup.net/vserver-build.debootstrap.diff 1227645735 P * cga WeeChat 0.2.6 1227645869 Q * dallas Quit: dallas 1227648004 Q * derjohn Quit: by(t)e 1227648110 Q * bonbons Quit: Leaving 1227648786 J * Piet ~piet@asteria.debian.or.at 1227650231 P * openblast http://quassel-irc.org - Chat comfortably. Anywhere. 1227650526 Q * dna Quit: Verlassend 1227653417 J * Aiken ~Aiken@ppp118-208-72-25.lns1.bne4.internode.on.net 1227653495 N * quinq qzqy 1227653508 J * derjohn_mob ~aj@e180211134.adsl.alicedsl.de 1227653537 N * qzqy quinq 1227654380 J * richi_ ~richi@chello062178029134.10.11.vie.surfer.at 1227654384 M * richi_ hello 1227654468 M * richi_ i have some problems or questions -> for havp i need mandatory locks, so i don't have loop back in the guest, so i mounted it from host into the guest, now hav says: there are no mandatory locks support. The second thing is: is it posible to run chroot in a vserver(just a question) 1227654484 M * richi_ hav = havp* 1227654553 M * richi_ i think that havp needs to see what is mounted on the host - from the guest 1227654951 M * Bertl well ... first, chroot is definitely fine inside a guest 1227654994 M * Bertl second, if you want to make filesystems visible to your guest (which by default uses a private filesystem namespace), you need to mount them in the appropriate namespace 1227655046 M * Bertl finally, I don't think that mandatory locks should cause any problems 1227655756 Q * richi_ Ping timeout: 480 seconds