1257984141 Q * kbad Ping timeout: 480 seconds 1257984576 Q * yarihm Quit: This computer has gone to sleep 1257988757 Q * ensc Ping timeout: 480 seconds 1257988921 Q * balbir Ping timeout: 480 seconds 1257989570 J * balbir ~balbir@122.172.26.129 1257990367 Q * AmokPaule2 Quit: Nettalk6 - www.ntalk.de 1257990712 M * Bertl off to bed now .. have a good one everyone! 1257990716 N * Bertl Bertl_zZ 1257991647 Q * kiorky Remote host closed the connection 1257994835 J * derjohn_foo ~aj@e180192128.adsl.alicedsl.de 1257995263 Q * derjohn_mob Ping timeout: 480 seconds 1257996556 Q * nenolod Quit: Leaving 1257996704 J * aj__ ~aj@e180194179.adsl.alicedsl.de 1257997066 Q * derjohn_foo Ping timeout: 480 seconds 1257998331 J * saulus_ ~saulus@d003209.adsl.hansenet.de 1257998743 Q * SauLus Ping timeout: 480 seconds 1257998747 N * saulus_ SauLus 1257999784 Q * infowolfe Quit: Leaving 1258000108 J * jrklein ~jrklein@adsl-75-34-93-82.dsl.wchtks.sbcglobal.net 1258000255 J * ensc ~irc-ensc@77.235.160.26 1258000424 Q * uva Quit: Leaving 1258003971 Q * AndrewLee Ping timeout: 480 seconds 1258003981 Q * balbir Ping timeout: 480 seconds 1258004421 J * infowolfe ~infowolfe@c-76-105-242-186.hsd1.or.comcast.net 1258004534 J * AndrewLee ~andrew@u7.hlc.edu.tw 1258005405 Q * hparker Quit: Read error: 104 (Peer reset by connection) 1258005790 Q * infowolfe Remote host closed the connection 1258006058 J * nenolod ~nenolod@67.202.104.35 1258007141 J * infowolfe ~infowolfe@c-76-105-242-186.hsd1.or.comcast.net 1258009478 Q * AndrewLee Remote host closed the connection 1258011586 Q * aj__ Ping timeout: 480 seconds 1258012401 J * thierryp ~thierry@zankai.inria.fr 1258013481 J * ghislainocfs2 ~Ghislain@LPuteaux-151-41-11-129.w217-128.abo.wanadoo.fr 1258013820 Q * fLoo 1258013997 J * friendly ~friendly@ppp118-209-136-134.lns20.mel6.internode.on.net 1258014070 J * aj__ ~aj@51.42.69.80.in-addr.net-lab.net 1258014243 J * jhenry1 ~jhenry1@195.83.225.167 1258014252 M * jhenry1 Hi' 1258014300 N * jhenry1 AnOnJoe 1258014410 M * AnOnJoe I've got problems to install vserver on CentOS 5.4 via the dhozac repos. 1258014575 M * AnOnJoe Missing Dependency: mkinitrd >= 6.0.39-1 1258014730 M * AnOnJoe while on the official repos, the last available version is : 5.1.19.6-54 1258015126 J * BenG ~bengreen@94-169-110-10.cable.ubr22.aztw.blueyonder.co.uk 1258016050 N * Bertl_zZ Bertl 1258016054 M * Bertl morning folks! 1258016142 M * Bertl AnOnJoe: yeah, seems to be a minor issue, most likely daniel_hozac didn't test with centos 5.4 ... 1258016208 M * AnOnJoe do you know how can i enable testing version with yum for the mkinitrd package ? 1258016262 M * Bertl no idea, but I'd guess grabbing the proper mkinitrd package from fedora (as source package) and rebuilding that should do the trick 1258016302 J * yarihm ~yarihm@pub-wlan.office.nine.ch 1258016779 J * kiorky ~kiorky@cryptelium.net 1258016786 Q * yarihm Ping timeout: 480 seconds 1258016857 J * yarihm ~yarihm@office-zrh.youngsolutions.ch 1258017446 J * davidkarban ~david@199.123.broadband11.iol.cz 1258018652 J * renihs ~lemming@83-65-34-34.arsenal.xdsl-line.inode.at 1258018677 Q * friendly Quit: Leaving. 1258018830 M * renihs hmm the current available stage from http://bb.xnull.de/projects/gentoo/stages/ uses portage-2_2? is there any specific reason for that? (since its hard masked) 1258018923 M * renihs or at least that is the stage linked in the gentoo vserver howto 1258018946 M * renihs (http://www.gentoo.org/proj/en/vps/vserver-howto.xml) 1258019050 M * Bertl I presume it is the one suited best for Linux-VServer guests, but you have to ask a gentoo person about that, e.g. Hollow (or maybe daniel_hozac) 1258019118 M * Bertl but looking at the page you are referring to, it looks like it is vastly outdated 1258019146 M * Bertl at least util-vserver 0.30.212 is like 3 years old or so 1258019383 J * gnuk ~F404ror@pla93-3-82-240-11-251.fbx.proxad.net 1258019430 M * renihs Bertl, thats true, but the stage linked in there is *ultra* up to date :) 1258019436 M * renihs will ask daniel_hozac once he is around 1258019450 M * Bertl yeah openrc sounds correct to me 1258019927 M * harry Bertl: you there? 1258019942 M * harry 2.6.31.6 patch ready yet? ;) 1258020122 M * Bertl ah, just woke up an hour ago, thanks for the info, will check now 1258020343 M * harry lol 1258020345 M * harry sorry 1258020345 J * TheSeer ~theseer@border.office.nonfood.de 1258020349 M * harry didn't want to stress you :) 1258020351 M * TheSeer morning 1258020367 M * TheSeer daniel_hozac: ping? 1258020379 M * Bertl harry: no problem 1258020515 Q * BenG Quit: I Leave 1258022750 M * TheSeer ouhm.. Bertl? 1258022872 M * Bertl yup? 1258022996 M * TheSeer is there a known problem (maybe in older versions) that restarting one vserver will "disconnect" another? 1258023027 M * TheSeer i did "vserver .... restart" on one, and after that, the IP of another vserver wasn't bound anymore 1258023049 M * TheSeer or does that rather point to a configuration issue? 1258023174 M * Bertl http://linux-vserver.org/Frequently_Asked_Questions#If_I_shut_down_my_vserver_guest.2C_the_whole_Internet_interface_ethX_on_the_host_is_shut_down.__What_happened.3F 1258023195 M * Bertl (should probably be extended to cover your case too :) 1258023229 M * Bertl i.e. primary (for a specific network) going down will take all the secondaries with it (unless promote_secondaries is activated) 1258023239 M * Bertl it's a mainline 'feature' :) 1258023260 M * TheSeer well, the box runs like 10 vserver 1258023269 M * TheSeer and only the ip of *1* went down along 1258023294 M * Bertl what is the network config of that one and the other one (you took down) 1258023307 M * TheSeer if it would have taken the full ethX down, i would have lost my ssh along with it 1258023336 M * Bertl note: 192.168.0.1/24 and 192.168.0.1/26 are different networks (just to give an example) 1258023337 M * TheSeer config as in the files in /etc/vservers//interface? 1258023359 M * Bertl yep, files and contents 1258023431 M * harry maybe the "promote secundaries" enabling should be done by some vserver startup script 1258023444 M * harry because i've seen a lot of people who have this problem 1258023453 M * harry and if you use vserver, this is rarely a desired "feature" 1258023511 M * Bertl make a feature request to daniel_hozac, I guess he might do that in the future 1258023591 M * TheSeer dev:eth0 1258023591 M * TheSeer ip:217.114.76.108 1258023591 M * TheSeer name:v1 1258023591 M * TheSeer prefix:27 1258023596 M * Bertl harry: patch-2.6.31.6-vs2.3.0.36.24.diff is up at the usual place 1258023600 M * Bertl TheSeer: (please use paste.linux-vserver.org for everything longer than 3 lines) 1258023622 M * TheSeer it's only 4 lines ;) 1258023632 M * TheSeer dev:eth0 / ip:217.114.76.109 / name:tpcc1 /prefix:27 1258023639 M * TheSeer i expexted it to be one though 1258023663 M * TheSeer i did restart the v1 vserver, and the tpcc1 vserver wasn't reachable anymore 1258023664 M * Bertl okay, so that is definitely in the same network, now for a different guest (which wasn't affected)? 1258023682 M * TheSeer "no route to host" 1258023781 M * TheSeer dev:eth0 /ip:217.114.76.110 / name:fcms0 / prefix:27 1258023838 M * Bertl that one should have been affected too 1258023880 M * Bertl i.e. if that one was running, but wasn't affected, you definitely have a problem with your config or with your guest security 1258023918 M * Bertl otherwise I'd opt for the primary/secondary issue 1258023952 M * TheSeer hmm 1258024062 M * TheSeer hmm.. looks like i have an error in my network config on that box in general 1258024069 M * TheSeer i just found two vserver that have /28 1258024076 M * TheSeer which doesn't make sense 1258024082 M * Bertl see, those are in a different network 1258024082 M * TheSeer it should all be /27 *or* /28 1258024098 M * TheSeer yeah, i know :) 1258024108 M * TheSeer wtf did i do there? 1258024115 M * Bertl if you look at 'ip a l' you'll see that there are secondaries and a primary for each network 1258024144 M * Bertl taking down the primary ip will remove the secondaries too (unless the promotion is activated) 1258024181 J * AmokPaule ~amokpaule@brsg-4dbb1135.pool.mediaWays.net 1258024273 M * TheSeer yup, that seems to be it 1258024286 M * TheSeer sorry for the fuzz 1258024315 M * harry tnx for the new patch, Bertlydude! : 1258024316 M * harry ;) 1258024348 M * Bertl you're welcome harrydude! :) 1258024367 J * BenG ~bengreen@94-169-110-10.cable.ubr22.aztw.blueyonder.co.uk 1258024371 M * Bertl TheSeer: no problem ... 1258024422 Q * BenG 1258024498 J * awk ~phillip@gw1.security.web.za 1258024502 M * awk Hello guru's and all :) 1258024509 M * awk hmm, vserver-copy seems to have 'vanished' ? 1258024521 M * awk whats the new style on copying man vserver doesn't help 1258024633 M * Bertl 'vserver - build --help' does, I guess :) 1258024675 M * Bertl depending on your setup and the guest, 'clone' or 'rsync' is a good choice 1258025109 M * awk That clone works great, tx. 1258026698 M * Bertl if you unify/hashify a guest, clone will create a unified copy within seconds, btw 1258028005 M * zbyniu Bertl: btw, hashify - there can be some race while this process 1258028247 M * Bertl AFAIK, that should be handled gracefully, but better talk to daniel_hozac about that 1258028549 M * zbyniu ok 1258029566 J * AndrewLee ~andrew@u7.hlc.edu.tw 1258029935 Q * AndrewLee Quit: leaving 1258030296 J * AndrewLee ~andrew@u7.hlc.edu.tw 1258031301 Q * zbyniu Ping timeout: 480 seconds 1258031851 J * hparker ~hparker@208.4.188.201 1258032146 Q * scientes Ping timeout: 480 seconds 1258032582 J * kir ~kir@swsoft-msk-nat.sw.ru 1258032935 J * blues ~blues@cca244.neoplus.adsl.tpnet.pl 1258033039 Q * matthew-_ Remote host closed the connection 1258033056 Q * blues_ Ping timeout: 480 seconds 1258034319 M * Bertl harry: so a grsec version should be available soon? 1258034415 M * harry yesh 1258034421 M * harry i'm compiling/testing as we speak 1258034432 M * harry found several bugs that slipped into previous versions 1258034436 M * harry should all be fixed now 1258034441 M * harry (hence the testing ;) ) 1258034457 M * harry i'm gonna upload the test already, will get back later with confirmation/... on the status 1258034481 Q * AndrewLee Quit: leaving 1258034489 J * AndrewLee ~andrew@u7.hlc.edu.tw 1258035739 J * root__ ~root@ps4629.dreamhost.com 1258035742 N * root__ kbad 1258037106 Q * awk Ping timeout: 480 seconds 1258038365 M * jrdnyquist I see there are some updates in the dhozac-vserver repo, but there is a missing dependency as follows... 1258038367 M * jrdnyquist Missing Dependency: mkinitrd >= 6.0.39-1 is needed by package kernel-2.6.27.38-1.vs2.3.0.36.7.el5.x86_64 (dhozac-vserver) 1258038389 M * Bertl yeah, known ... 1258038405 M * jrdnyquist workaround or just wait? 1258038424 M * Bertl daniel_hozac wasn't around yet, so wait, IMHO 1258038439 M * jrdnyquist also I do not see that issue in the i386 repo, because the is no x86 kernel update 1258038462 M * jrdnyquist err there is no~ 1258038527 M * Bertl I can see that a more recent kernel requires newer mkinitrd tools, so maybe rebuilding that package from fedora might work/help 1258038742 M * jrdnyquist ok I'm running cent5, I'll just wait and see what he says. thx! 1258040001 M * Bertl np 1258040701 M * ghislainocfs2 bertl: when you do bind mount, for exemple a bind mount of /tmp into /hostbigtmp/guest1 then /hostbigtmp/guest2 do you have to put barrier on /hostbigtmp to make it secure ? 1258040752 M * Bertl how's that related? 1258040841 M * ghislainocfs2 bertl: i do not know if the bind mount by itself is secure or ifthere is need to certain added step to make them really separate between guest 1258040841 J * zbyniu ~zbyniu@ip-62.181.188.13.static.crowley.pl 1258040899 M * ghislainocfs2 bertl : all the guests will have their /tmp bind mounted to /hostbigtmp/guestXXX like the /vservers for the root of the guest 1258040904 M * ghislainocfs2 bertl: but for tmp 1258040927 M * ghislainocfs2 bertl: the goal is to bind mount them in a nosuid noexe nodev partition 1258040951 Q * jrklein Ping timeout: 480 seconds 1258040984 M * Bertl ah, now I understand, but what are the actual pathes? 1258041000 M * Bertl because /hostbigtmp/guest1 is on the host, no? 1258041038 M * Bertl so you actually want to bind mount /hostbigtmp/guest1 onto /path/to/guest/tmp, yes? 1258041047 Q * thierryp Ping timeout: 480 seconds 1258041094 M * Bertl also nota, that it is not the best idea to do that for tmp, tmp files are very short lived and usually quite small, a tmpfs typically has a huge performance advantage 1258041099 M * Bertl *note 1258041123 M * Bertl you can, nevertheless, do that for /var/tmp 1258041193 M * Bertl and to get back to the original question, a barrier there should not be needed in any case 1258041324 Q * yarihm Quit: This computer has gone to sleep 1258041474 M * ghislainocfs2 bertl: yes /hostbigtmp is my nodev noexe nosuid partition :) 1258041515 M * ghislainocfs2 bertl: and yes /hostbigtmp/guestxx goes to /vservers/guestxx/tmp 1258041590 M * ghislainocfs2 bertl: ok i see what you mean, i will try to use tmpfs and see if this works. I have seen quite a lot of badly made webapp that use /tmp for big files like uploads or other 1258042541 J * yarihm ~yarihm@80-219-171-38.dclient.hispeed.ch 1258042545 Q * DoberMann[ZZZzzz] Remote host closed the connection 1258042824 M * Bertl nap attack ... bbl 1258042829 N * Bertl Bertl_zZ 1258042944 J * dowdle ~dowdle@scott.coe.montana.edu 1258044188 J * pmenier ~pmenier@ACaen-152-1-5-128.w83-115.abo.wanadoo.fr 1258044626 Q * davidkarban Quit: Ex-Chat 1258045560 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d 1258045886 J * jrklein ~jrklein@156.26.85.143 1258046153 J * balbir ~balbir@122.172.26.129 1258046638 Q * ncopa Quit: Ex-Chat 1258047515 Q * TheSeer Quit: Client exiting 1258047931 Q * jrklein Ping timeout: 480 seconds 1258048147 N * Bertl_zZ Bertl 1258048150 M * Bertl back now ... 1258048181 J * xdr ~xdr@h-238-74.A219.priv.bahnhof.se 1258049800 J * thierryp ~thierry@home.parmentelat.net 1258050070 J * imcsk8 ~ichavero@nat.ti.uach.mx 1258050261 J * DoberMann ~james@cap31-6-88-180-72-76.fbx.proxad.net 1258050443 J * dna_ ~dna@p54BC9B5D.dip0.t-ipconnect.de 1258051727 Q * manana Remote host closed the connection 1258052584 Q * gnuk Quit: NoFeature 1258053134 Q * pmenier Quit: Konversation terminated! 1258056476 N * DoberMann DoberMann[PullA] 1258057115 Q * aj__ Ping timeout: 480 seconds 1258057126 Q * balbir Ping timeout: 480 seconds 1258057424 J * jrklein ~jrklein@adsl-70-248-199-65.dsl.wchtks.swbell.net 1258057828 J * balbir ~balbir@122.172.27.189 1258060466 M * Bertl off to bed now ... have a good one everyone! 1258060473 N * Bertl Bertl_zZ 1258061035 J * scientes ~scientes@174-21-207-238.tukw.qwest.net 1258061306 J * derjohn_mob ~aj@p5B23C4C7.dip.t-dialin.net 1258062406 Q * jrklein Ping timeout: 480 seconds 1258062903 Q * thierryp Quit: ciao folks 1258063252 J * dna__ ~dna@p54BC9B5D.dip0.t-ipconnect.de 1258063393 Q * FireEgl Read error: Connection reset by peer 1258063647 Q * dna_ Ping timeout: 480 seconds 1258065689 Q * bonbons Quit: Leaving 1258065890 J * jrklein ~jrklein@adsl-75-34-93-82.dsl.wchtks.sbcglobal.net 1258065977 Q * AmokPaule Ping timeout: 480 seconds 1258068628 Q * dna__ Quit: Verlassend 1258068809 M * mathx hi! 1258068828 M * mathx has anyone written munin-like stuff for monitoring vserv resource usage? 1258070359 Q * dowdle Remote host closed the connection