1278375568 J * derjohn_foo ~aj@d075050.adsl.hansenet.de
1278375989 Q * derjohn_mob Ping timeout: 480 seconds
1278385244 J * SauLus_ ~SauLus@d064226.adsl.hansenet.de
1278385655 Q * SauLus Ping timeout: 480 seconds
1278385655 N * SauLus_ SauLus
1278386649 J * toor ~toor@c-69-138-128-97.hsd1.fl.comcast.net
1278386791 M * toor I have a VPS that has been rootkited. I have been able to determine that a number of binaries have been compromised. I am tying to acquire a image of the root partion for analysis however this is prooving to be quite difficult. Apparently the hosting provider has al guests on the same partition thus my guest has not access to /proc/partitions. I am not able to use dd and scared to use rsync. Any ideas?
1278387814 M * daniel_hozac why don't you just get the image from your service provider?
1278388044 M * toor they said that they cannot provide an image due to the nature of the setup. I assume this is because they have all guests on the same physical partition.
1278388082 M * daniel_hozac ask them to create a cpio-archive.
1278388149 M * daniel_hozac should be trivial for them.
1278388253 M * toor Thanks I will recommend this.
1278394111 Q * balbir Ping timeout: 480 seconds
1278394753 Q * toor Quit:  HydraIRC -> http://www.hydrairc.com <- Wibbly Wobbly IRC
1278395237 J * petzsch ~markus@dslb-092-078-115-008.pools.arcor-ip.net
1278396359 J * mtg ~mtg@vollkornmail.dbk-nb.de
1278397653 Q * derjohn_foo Ping timeout: 480 seconds
1278397895 J * ghislain ~AQUEOS@adsl2.aqueos.com
1278398321 J * balbir_ ~balbir@122.248.163.1
1278398829 M * ex hi, is it possible to try insmod in vserver (no extra caps)?
1278398921 J * thierryp ~thierry@62.103.184.40
1278398978 J * derjohn_foo ~aj@213.238.45.2
1278399773 J * thierryp_ ~thierry@62.103.184.40
1278399774 Q * thierryp Read error: Connection reset by peer
1278400058 J * thierryp ~thierry@62.103.184.40
1278400058 Q * thierryp_ Read error: Connection reset by peer
1278400389 J * thierryp_ ~thierry@62.103.184.40
1278400389 Q * thierryp Read error: Connection reset by peer
1278400908 J * thierryp ~thierry@62.103.184.40
1278400908 Q * thierryp_ Read error: Connection reset by peer
1278401525 Q * thierryp Ping timeout: 480 seconds
1278401555 J * thierryp ~thierry@62.103.184.40
1278402040 Q * thierryp Ping timeout: 480 seconds
1278402249 Q * petzsch Quit: Leaving.
1278402974 J * BenG ~bengreen@cpc6-aztw22-2-0-cust100.aztw.cable.virginmedia.com
1278403770 J * barismetin ~barismeti@zanzibar.inria.fr
1278403924 Q * imcsk8 Ping timeout: 480 seconds
1278404006 J * imcsk8 ~ichavero@201.144.130.18
1278404518 J * thierryp ~thierry@62.103.184.40
1278404786 Q * imcsk8 Quit: This computer has gone to sleep
1278405091 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d
1278405602 J * gnuk ~F404ror@pla93-3-82-240-11-251.fbx.proxad.net
1278406521 J * ghislain1 ~AQUEOS@adsl2.aqueos.com
1278406765 Q * balbir_ Ping timeout: 480 seconds
1278406777 Q * ghislain Ping timeout: 480 seconds
1278407205 Q * thierryp Remote host closed the connection
1278407358 J * thierryp ~thierry@62.103.184.40
1278407449 J * thierryp_ ~thierry@62.103.184.40
1278407835 J * balbir_ ~balbir@122.248.163.1
1278407840 Q * thierryp Ping timeout: 480 seconds
1278408396 J * thierryp ~thierry@62.103.184.40
1278408397 Q * thierryp_ Read error: Connection reset by peer
1278409124 M * swenTjuln Hi all!
1278409140 Q * thierryp Ping timeout: 480 seconds
1278409157 M * swenTjuln If you're having trouble with Lucid init procedure i've added http://linux-vserver.org/Upstart_issues#Init_procedure_doesn.27t_complete to wiki
1278409164 M * swenTjuln hope it helps someone
1278410047 J * petzsch ~markus@dslb-092-078-115-008.pools.arcor-ip.net
1278411015 N * Bertl_zZ Bertl
1278411025 Q * balbir_ Ping timeout: 480 seconds
1278411033 M * Bertl morning folks!
1278411161 J * thierryp ~thierry@62.103.184.40
1278411282 J * thierryp_ ~thierry@62.103.184.40
1278411327 Q * thierryp_ Remote host closed the connection
1278411642 Q * thierryp Ping timeout: 480 seconds
1278412030 Q * BenG Quit: I Leave
1278412829 J * thierryp ~thierry@62.103.184.40
1278413979 Q * mnemoc Ping timeout: 480 seconds
1278413979 Q * karasz Ping timeout: 480 seconds
1278414419 M * Bertl off for now ... bbl
1278414425 N * Bertl Bertl_oO
1278414767 J * kirstine ~kirstine@88.83.66.77
1278415191 J * yeeeepssen ~yellow12@business-188-111-074-098.static.arcor-ip.net
1278415208 M * yeeeepssen i search a ubuntu 10.04 64bit image
1278417731 N * BobR_OoO BobR
1278418377 J * thierryp_ ~thierry@62.103.184.40
1278418381 Q * thierryp Read error: Connection reset by peer
1278418417 Q * thierryp_ Remote host closed the connection
1278418827 J * mnemoc ~amery@shell.opensde.net
1278419775 M * ard Failed to create cgroup :-(
1278419895 M * Marillion ard: grep -ir 'cgroup' /boot/config*
1278420160 M * ard oh, that's not the problem
1278420181 M * ard the problem is that lxc combined with vserver does not work because somehow vserver wants to create a cgroup
1278420338 M * Marillion this is not the reason
1278420366 M * Marillion vserver works without cgroup very well
1278420405 M * swenTjuln Marillion: but if you have mountef cgroup Vserver wants to use it
1278420436 M * swenTjuln i think there is a problem with namespaces 
1278420469 M * swenTjuln http://linux-vserver.org/util-vserver:Cgroups
1278420475 M * swenTjuln first centence :D
1278420503 M * Marillion and remember, vserver works without cgroup very well
1278420554 M * Marillion its not necessary
1278420651 M * swenTjuln my guess is ard wants to use cgroup
1278420845 M * Marillion but vserver _not_ mount the device, or create it
1278423639 J * ntrs ~ntrs@ppp-94-68-154-0.home.otenet.gr
1278423739 Q * mtg Quit: Verlassend
1278423941 M * ard actually I want to use vserver inside a container :-)
1278423963 M * ard or better: I want to use vserver within specific network namespaces
1278424027 M * ard But using lxc complete bites vserver, so I guess I settle for having a dummy vserver creating a seperate namespace and then use vnamespace -e dummyvserver --net vserver blaaat start  to run a vserver in a specific network namespace
1278424097 M * ard So I can group several vservers into a single network namespace, and for that single network namespace I have to create a single vlan and give it to that namespace
1278424140 N * BobR BobR_afk
1278424144 M * ard It works pretty good so far, but doing vserver blaaat enter without vnamespace -e dummesurver --net will net give me the right network namespace
1278424190 M * Bertl_oO you can set the namespaces for each context
1278424221 M * Bertl_oO i.e. you could tell the kernel that this particular namespace is part of the guest, and then entering it should work as well
1278424320 M * ard well, actually I want to have the same network namespace for a few vservers (as in: the same network and routing table)
1278424330 M * ard and another for another group
1278424359 M * ard I tried to use cgroup/name or spaces/name to group it, but somehow that failed in renaming the namespace
1278424364 M * Bertl_oO I do not see a problem there
1278424383 M * ard ah...
1278424385 M * Bertl_oO the Linux-VServer kernel interface does not care about what namespace you assign to a guest
1278424448 M * ard That's what I thought: a vserver blaaat enter will read the config from /etc/vservers, and if there is no network namespace configured (spaces/net) then it will not try to set it
1278424519 M * ard or am I still looking at it the wrong way?
1278424554 M * Bertl_oO well, you have several options, as I see it, but I'd go for the following one in your case
1278424565 M * Bertl_oO - create the network namespace in question
1278424581 M * Bertl_oO - start the guests you want to share that space inside the space
1278424582 M * ard check...
1278424607 M * ard I do that now with vnamespace -e "namespaceholder" --net vserver XXX start
1278424617 M * Bertl_oO - assign the network namespace to the guest (basically saving it to the proxy object)
1278424641 M * ard ow, ok :-) that's different
1278424651 M * Bertl_oO from that point on, you can simply enter the guest (including the namespace) with vserver ... enter
1278424701 M * ard that last part is where I am stuck now I guess ;-)
1278424927 M * Bertl_oO check out VCMD_set_space* and VCMD_get_space_mask
1278425011 M * Bertl_oO the first one allows you to 'copy' the spaces from the calling process to the 'guest'
1278425033 M * ard will this be the point that you tell me I should upgrade my util-vserver? :-)
1278425056 M * Bertl_oO nah, you don't need util-vserver to call that :)
1278425080 M * ard ah, this will be the point that you say I need to do some light c coding? :-)
1278425095 M * Bertl_oO or utilize the vcmd hack tool :)
1278425127 M * ard sound like you have given me a good solution that makes it more foolproof :-)
1278425334 J * Pazzo ~ugelt@reserved-225136.rol.raiffeisen.net
1278425340 M * ard But if I get it right: you suggest I start the guest in someway and then set the network namespace or vv?
1278425539 M * ard Hmmm, no, i can do it right: start the dummy namespace holder, migrate the network device to that namespace and setup networking. Then start the guests as you say within that network namespace, and then for each guest explicitly set that network namespace with either the vcmd tool or some other hacked utility ;-).
1278425548 M * ard I mean: that's what you said right? :-)
1278425638 M * Bertl_oO yep
1278425858 J * thierryp ~thierry@62.103.184.40
1278425887 Q * Julias_shulman Ping timeout: 480 seconds
1278426620 J * dowdle ~dowdle@scott.coe.montana.edu
1278426835 Q * jrdnyquist Remote host closed the connection
1278426852 Q * petzsch Quit: Leaving.
1278428937 N * BobR_afk BobR_oO
1278429081 J * petzsch ~markus@dslb-092-078-115-008.pools.arcor-ip.net
1278430183 M * ard hmmmm... how does vspace --set work? It says it assigns the current spaces to the current context, but how do you set the current context? :-)
1278430289 Q * SauLus Ping timeout: 480 seconds
1278430623 M * ard hmmzz... somewhere along the way it was set...
1278430625 M * ard but how?
1278430731 M * ard ow, because somewhere along the way I said vnamespace -e dummynet bash ...
1278431481 J * SauLus ~SauLus@d045149.adsl.hansenet.de
1278431585 Q * micah Ping timeout: 480 seconds
1278431586 Q * dannf Ping timeout: 480 seconds
1278431789 Q * Piet Remote host closed the connection
1278431895 J * Piet ~Piet__@7GDAADJ19.tor-irc.dnsbl.oftc.net
1278432081 Q * barismetin Remote host closed the connection
1278432459 J * balbir_ ~balbir@122.172.22.204
1278434013 Q * ntrs Ping timeout: 480 seconds
1278436506 Q * kirstine Ping timeout: 480 seconds
1278436575 J * harobed ~harobed@arl57-1-82-231-110-14.fbx.proxad.net
1278437211 Q * arekm Quit: leaving
1278437245 J * tex ~kvirc@p5DDCF0AB.dip.t-dialin.net
1278437387 Q * harobed Quit: Ex-Chat
1278437390 J * dannf ~dannf@utter.lackof.org
1278437394 M * tex I'm trying to use lvm inside a vserver. I want to manage lvs on a loopback device inside the vserver. Is this possible? ADMIN_CLOOP and ADMIN_MAPPER in ccapabilities allow me to create a pv and vg but lvcreate still fails. What else do I need?
1278437767 J * arekm arekm@carme.pld-linux.org
1278438039 J * harobed ~harobed@arl57-1-82-231-110-14.fbx.proxad.net
1278438044 Q * gnuk Ping timeout: 480 seconds
1278438443 M * tex ok, using MKNOD, SYS_ADMIN and SYS_RESOURCE in bcapabilities seems to work so far ...
1278438525 Q * derjohn_foo Ping timeout: 480 seconds
1278439237 J * helpme ~helpme@117.254.44.70
1278439327 M * helpme hello
1278439333 M * helpme i have a problem
1278439336 M * helpme can any one tell me 
1278439339 M * helpme how to patch it 
1278439340 M * helpme http://git.kernel.org/?p=linux/kernel/git/konrad/xen.git;a=shortlog;h=refs/heads/devel/kms.fixes-0.3
1278439784 J * rococo ~rco@09GAACR7U.tor-irc.dnsbl.oftc.net
1278439928 J * derjohn_foo ~aj@d075050.adsl.hansenet.de
1278440151 J * micah ~micah@micah.riseup.net
1278440243 Q * Pazzo Quit: Bye!
1278441324 J * ghislain ~AQUEOS@adsl2.aqueos.com
1278441407 Q * helpme Quit: Leaving
1278441599 Q * ghislain1 Ping timeout: 480 seconds
1278442718 Q * FireEgl Remote host closed the connection
1278443518 J * FireEgl FireEgl@2001:470:e056:1:4::
1278443993 J * imcsk8 ~ichavero@201.174.19.86
1278444272 J * jrdnyquist ~jrdnyquis@slayer.caro.net
1278445044 J * kirstine ~kirstine@88.83.66.77
1278448032 Q * balbir_ Ping timeout: 480 seconds
1278448035 M * Bertl_oO tex: you are aware that you are basically giving the guest full access to the host?
1278448642 N * DoberMann DoberMann[ZZZzzz]
1278448953 Q * mnemoc Ping timeout: 480 seconds
1278449786 M * harry Marillion: no real need
1278449817 M * Marillion harry: ok, thanks :)
1278449854 M * harry there are some enhancements
1278449928 M * harry but unles you encounter an refcounter overflow
1278449955 M * harry which is patched in the 26th version (in something i never seen overflowed, but bertl says it is normal)...
1278449962 M * harry and there is an enhancement in grsecurity
1278449986 M * harry i'm waiting now for the 2.6.32.16 patches of both patches :)
1278450002 M * Marillion :)
1278450004 M * Marillion harry: ic, you have changes with blackhole and others, afterwards my asking i make a diff, than i see it 
1278450093 M * Marillion but, i seen not all changes for Important
1278450142 M * Marillion and today you have a new patchset released, the changes are to fast :)
1278450168 M * Marillion this was why i asking you again 
1278450176 Q * kirstine Remote host closed the connection
1278450187 M * Marillion and the reason
1278450203 J * mnemoc ~amery@shell.opensde.net
1278450244 M * harry well... the last 4 patches are all for grsec enhancements
1278450254 M * harry so they are "useful" for extra security
1278450303 M * harry that's why i added a patch today
1278450399 M * Marillion ah ok, ic
1278450631 J * dna ~dna@p54BCA5BE.dip0.t-ipconnect.de
1278450914 Q * petzsch Quit: Leaving.
1278451001 M * tex Bertl_oO: yes, I am. There is a big fat warning in the wiki. I'm trying to setup mini-buildd (a Debian buildd) inside a Vserver. I'll be only building my own packages, so I think the risk is ok in this case.
1278451483 N * [Guy] Guy-
1278451579 P * mnemoc 
1278452352 M * Marillion it makes a difference when I do I a tilde (~) prefix to a function, or they leave out? [Example: bcapabilities]
1278452432 M * daniel_hozac ~ removes a bit.
1278452504 M * Marillion ok, you disable the function, but i not seen the default part, this the reason why are ask
1278452514 M * Marillion :)
1278452523 M * daniel_hozac http://linux-vserver.org/util-vserver:Capabilities_and_Flags
1278452553 M * Marillion The default bcaps are:  <-- ok that is the part
1278452628 M * Marillion daniel_hozac: ok, this have i seen, but i am not sure of the differnce for my changing
1278452639 Q * Piet Ping timeout: 480 seconds
1278452794 M * Marillion or, what is better, leave out, or make it with a "~"
1278452934 M * Marillion ok, for working it is better i set a ~ for the function what i do not need it
1278453042 Q * tex Quit: KVIrc Insomnia 4.0.0, revision: 4541, sources date: 20100627, built on: 2010-06-29 08:06:51 UTC http://www.kvirc.net/
1278453057 M * daniel_hozac those are the ones deemed safe.
1278453112 M * Marillion ah ok
1278453141 M * Marillion sorry, my english is not my native language, it is easy to missunderstand what mean, not your problem, it my :)
1278453171 M * Marillion but i understand what you mean
1278453233 J * Piet ~Piet__@7GDAADKGB.tor-irc.dnsbl.oftc.net
1278453284 Q * harobed Ping timeout: 480 seconds
1278453767 Q * Piet Remote host closed the connection
1278453808 J * Piet ~Piet__@1RDAAAY02.tor-irc.dnsbl.oftc.net
1278453965 Q * nou Ping timeout: 480 seconds
1278454016 J * nou Chaton@causse.larzac.fr.eu.org
1278454247 Q * dna Quit: Verlassend
1278454420 Q * thierryp Ping timeout: 480 seconds
1278454683 Q * Piet Remote host closed the connection
1278454753 J * Piet ~Piet__@1RDAAAY1A.tor-irc.dnsbl.oftc.net
1278455323 J * thierryp ~thierry@62.103.184.40
1278456192 Q * thierryp Remote host closed the connection
1278457595 Q * dowdle Remote host closed the connection
1278457690 Q * derjohn_foo Ping timeout: 480 seconds
1278458257 J * derjohn_foo ~aj@d075050.adsl.hansenet.de
1278458283 Q * SauLus Read error: No route to host
1278458661 Q * bonbons Quit: Leaving
1278458730 Q * ghislain Quit: Leaving.
1278458793 Q * FireEgl Read error: No route to host
1278459072 J * SauLus ~SauLus@d045149.adsl.hansenet.de