1285114089 J * emcepe ~mcp@wolk-project.de 1285114118 J * padde_ ~padde@patrick-nagel.net 1285114147 Q * mEDI_S Ping timeout: 480 seconds 1285114148 Q * padde Read error: Connection reset by peer 1285114155 N * padde_ padde 1285114200 J * bzed_ ~bzed@devel.recluse.de 1285114218 J * mEDI_S ~medi@255.255.255.255.li 1285114321 Q * bzed Ping timeout: 480 seconds 1285114326 N * bzed_ bzed 1285114328 Q * mcp Ping timeout: 480 seconds 1285114329 N * emcepe mcp 1285114893 Q * bzed Remote host closed the connection 1285114903 J * bzed ~bzed@devel.recluse.de 1285115639 J * monrad ~mmk@domitian.tdx.dk 1285115699 Q * monrad-51468 Read error: Network is unreachable 1285115699 Q * padde Read error: Connection reset by peer 1285115707 J * padde_ ~padde@patrick-nagel.net 1285115729 J * _Shiva__ shiva@whatcha.looking.at 1285115729 Q * _Shiva_ Read error: Connection reset by peer 1285115730 N * padde_ padde 1285115750 J * bzed_ ~bzed@devel.recluse.de 1285115858 Q * bzed Ping timeout: 480 seconds 1285115863 N * bzed_ bzed 1285116023 Q * rememberme Ping timeout: 480 seconds 1285116775 J * padde_ ~padde@patrick-nagel.net 1285116775 Q * padde Read error: Connection reset by peer 1285116797 N * padde_ padde 1285117151 M * Bertl updated patches have been uploaded, except for the 2.6.36-rc which I will test and upload tomorrow 1285117158 M * Bertl off to bed now ... have fun! 1285117164 N * Bertl Bertl_zZ 1285117895 Q * monrad Quit: bla 1285117900 Q * kolorafa Quit: ZNC - http://znc.sourceforge.net 1285117904 Q * Janno Quit: ZNC - http://znc.sourceforge.net 1285117925 J * monrad-51468 ~mmk@domitian.tdx.dk 1285117952 J * kolorafa ~kolorafa@irc.kolorafa.dlk.pl 1285118013 Q * zbyniu Remote host closed the connection 1285118015 J * zbyniu ~zbyniu@ip-62.181.188.13.static.crowley.pl 1285118038 Q * michal Remote host closed the connection 1285118039 Q * _Shiva__ Remote host closed the connection 1285118039 J * michal ~michal@www.rsbac.org 1285118041 J * _Shiva_ shiva@whatcha.looking.at 1285118133 Q * ard Ping timeout: 480 seconds 1285118230 Q * grobie Remote host closed the connection 1285118262 J * Janno Janno@server3.raumopol.de 1285118345 J * grobie ~grobie@tyr.schnuckelig.eu 1285118514 J * DreamerC_ ~DreamerC@122-116-181-118.HINET-IP.hinet.net 1285118627 Q * DreamerC Ping timeout: 480 seconds 1285124851 J * ard ~ard@gw-tweakb16.kwaak.net 1285129561 J * mugwump ~samv@watts.utsl.gen.nz 1285129576 M * mugwump I have a filesystem which used to be /var/lib/vservers 1285129587 M * mugwump but I moved it to a different mount point, 1285129591 M * mugwump inside a vserver 1285129607 M * mugwump but inside the vserver, I can't access the partition. is there some kind of barrier thing going on? 1285129732 M * mugwump aha, setattr --~barrier var/lib/postgresql 1285133325 J * imcsk8 ~ichavero@evdomip-75-146.iusacell.net 1285133941 J * ntrs ~ntrs@77.28.162.232 1285135051 J * ncopa ~ncopa@180.40.189.109.customer.cdi.no 1285135173 Q * Piet Ping timeout: 480 seconds 1285135728 J * ntrs_ ~ntrs@77.28.16.52 1285135757 J * Piet ~Piet__@82VAABE1V.tor-irc.dnsbl.oftc.net 1285135889 J * ghislain ~AQUEOS@adsl2.aqueos.com 1285136182 Q * ntrs Ping timeout: 480 seconds 1285136397 Q * ntrs_ Read error: Connection reset by peer 1285136408 J * ntrs_ ~ntrs@77.28.5.162 1285136568 Q * derjohn_mob Ping timeout: 480 seconds 1285136879 N * Bertl_zZ Bertl 1285136882 M * Bertl morning folks! 1285136926 J * alpha_one_x86 ~kvirc@141.31.17.95.dynamic.jazztel.es 1285138437 Q * quasisane Ping timeout: 480 seconds 1285138466 J * derjohn_mob ~aj@213.238.45.2 1285138611 M * alpha_one_x86 Hello, patch with grsec not released :( ... 1285138617 J * quasisane ~sanep@c-76-24-80-97.hsd1.nh.comcast.net 1285138769 J * dna ~dna@dslb-092-078-100-007.pools.arcor-ip.net 1285139377 M * Bertl alpha_one_x86: you have to ask harry for that :) 1285140121 Q * alpha_one_x86 Read error: Connection reset by peer 1285140192 J * alpha_one_x86 ~kvirc@11.175.21.95.dynamic.jazztel.es 1285140545 Q * Janno Quit: ZNC - http://znc.sourceforge.net 1285141695 J * Janno Janno@server3.raumopol.de 1285141834 J * hello power@r220-101-172-186.cpe.unwired.net.au 1285142354 Q * imcsk8 Quit: This computer has gone to sleep 1285143033 J * petzsch ~markus@dslb-094-218-178-167.pools.arcor-ip.net 1285143133 J * dna_ ~dna@dslb-094-222-213-202.pools.arcor-ip.net 1285143152 Q * petzsch 1285143211 J * petzsch ~markus@dslb-094-218-178-167.pools.arcor-ip.net 1285143573 Q * dna Ping timeout: 480 seconds 1285143836 Q * petzsch Quit: Leaving. 1285144324 M * ard Bah... 1285144341 M * ard If I df, I get: 1285144345 M * ard /dev/hdv1 90000000 58111068 30840356 66% / 1285144364 M * ard if I vdlimit --xid skydev1 .: I get 1285144366 M * ard space_used=44763496 1285144621 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285146343 J * petzsch ~markus@dslb-094-218-178-167.pools.arcor-ip.net 1285146932 Q * petzsch Quit: Leaving. 1285147188 Q * rememberme Remote host closed the connection 1285147695 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285148295 Q * rememberme Remote host closed the connection 1285148309 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285148564 J * BenG ~bengreen@cpc6-aztw22-2-0-cust100.aztw.cable.virginmedia.com 1285149348 M * daniel_hozac ard: reserved=5? 1285149366 M * daniel_hozac or 15 maybe 1285149813 Q * rememberme Ping timeout: 480 seconds 1285150102 Q * ensc|w Remote host closed the connection 1285150233 J * thierryp ~thierry@92.90.17.1 1285150588 J * barismetin ~barismeti@zanzibar.inria.fr 1285150597 J * ensc|w ~ensc@www.sigma-chemnitz.de 1285150793 J * mike ~mike@94-23-159-232.kimsufi.com 1285150795 Q * mike 1285150826 J * rwat ~rwat@host217-44-233-66.range217-44.btcentralplus.com 1285150897 M * rwat hi guys, I'm trying to run vserver inside a KVM virtual machine. All is going well except that I can't limit memory in the vserver - is this known to be an issue? 1285150913 M * rwat VIRT_MEM flag is specified 1285150931 Q * balbir_ Ping timeout: 480 seconds 1285150935 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285151247 M * daniel_hozac what kernel? 1285151254 M * daniel_hozac and how are you trying to limit memory? 1285151663 Q * rememberme Ping timeout: 480 seconds 1285151687 M * rwat daniel_hozac:: I'm using a kernel from an add-on ubuntu repository belonging to Christoph Lukas linux-image-2.6.32-24-vserver 1285151747 M * rwat daniel_hozac: I'm using /etc/vservers/nebula/rlimits/rss.hard to specify a memory limit 1285151748 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285151763 M * rwat nebula is my vserver 1285151883 Q * thierryp Ping timeout: 480 seconds 1285151906 M * rwat daniel_hozac: I've been following hte instructions here: http://linux-vserver.org/Installation_on_Ubuntu 1285151927 M * rwat I have a working install on a non-kvm debian host 1285151936 M * rwat that install limits memory fine 1285151972 M * rwat however the kvm host server is ubuntu and it's much easier to add ubuntu guests than debian ones, so I'd like to get it working in one of those 1285152158 M * daniel_hozac you might want to try a 2.6.35 kernel 1285152230 M * rwat daniel_hozac: ok, will do - any particular reason? 1285152272 M * daniel_hozac the memory limits have been significantly changed in the last couple of releases. 1285152467 M * rwat does anyone have a config to build 2.6.35 for ubuntu? 1285152500 M * rwat or a built kernel dpkg? 1285152584 Q * alpha_one_x86 Quit: KVIrc Equilibrium 4.1.0, revision: 4696, sources date: 20100519, built on: 2010-08-29 21:19:12 UTC http://www.kvirc.net/ 1285152700 M * daniel_hozac i wouldn't know. 1285152978 Q * rememberme Ping timeout: 480 seconds 1285152994 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285153049 Q * BenG Quit: I Leave 1285153623 M * rwat it looks like the current kernel has support for cgroup - presumably this is why it's not supporting the old style limits 1285153756 M * rwat however it's missing a /dev/cgroup - it seems this is a mountable filesystem type - is there some preferred method to do this for vserver? 1285154649 Q * rememberme Remote host closed the connection 1285154663 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285155080 Q * rememberme Read error: Connection reset by peer 1285155156 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285156096 J * thierryp ~thierry@home.parmentelat.net 1285156252 Q * rememberme Remote host closed the connection 1285156848 M * Guy- rwat: just mount it under /dev/cgroup 1285157006 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285157024 J * kir ~kir@swsoft-msk-nat.sw.ru 1285157488 Q * rememberme Ping timeout: 480 seconds 1285157489 Q * thierryp Remote host closed the connection 1285157510 J * thierryp ~thierry@home.parmentelat.net 1285157518 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285157998 Q * thierryp Ping timeout: 480 seconds 1285158569 P * kir Leaving. 1285158872 Q * rememberme Remote host closed the connection 1285159381 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285159402 J * thierryp ~thierry@80.125.173.72 1285159597 J * BenG ~bengreen@cpc6-aztw22-2-0-cust100.aztw.cable.virginmedia.com 1285159863 Q * rememberme Ping timeout: 480 seconds 1285160365 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285160599 Q * thierryp Remote host closed the connection 1285161013 J * dna__ ~dna@dslb-094-222-210-059.pools.arcor-ip.net 1285161452 Q * dna_ Ping timeout: 480 seconds 1285161999 Q * rememberme Remote host closed the connection 1285162013 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285162158 J * balbir_ ~balbir@122.172.14.164 1285162498 Q * rememberme Ping timeout: 480 seconds 1285162652 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285163336 J * mike mike@no.phear.eu 1285163963 Q * BenG Quit: I Leave 1285164603 M * Bertl rwat: recent util-vserver will mount that from the runlevel scripts for you 1285165043 Q * rememberme Remote host closed the connection 1285165056 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285165132 M * Bertl nap attack ... bbl 1285165139 N * Bertl Bertl_zZ 1285165538 Q * rememberme Ping timeout: 480 seconds 1285165633 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285165712 J * imcsk8 ~ichavero@evdomip-75-146.iusacell.net 1285166118 Q * rememberme Ping timeout: 480 seconds 1285166206 J * rememberme ~rererer@ip-95-223-36-117.unitymediagroup.de 1285166476 J * thierryp ~thierry@92.90.21.5 1285166581 Q * rememberme 1285167233 Q * imcsk8 Quit: This computer has gone to sleep 1285167641 Q * thierryp Read error: Connection reset by peer 1285167838 J * thierryp ~thierry@92.90.17.5 1285169309 J * dreamind ~dreamind@mx01.ap-wdsl.de 1285169864 M * dreamind Hi folks :) 1285169970 N * Bertl_zZ Bertl 1285169974 M * Bertl back now ... 1285170143 Q * thierryp Ping timeout: 480 seconds 1285170226 Q * hijacker Remote host closed the connection 1285170243 Q * ncopa Quit: Ex-Chat 1285170327 M * dreamind hi Bertl :) 1285171497 Q * barismetin Remote host closed the connection 1285172603 M * ard daniel_hozac : reserved=5 1285172621 M * ard it seems I can't change space_used on the fly anymore 1285172652 M * ard actually: even after a stop, remove dlimit cache, start, the df is still different from the output of vdlimit 1285172934 M * daniel_hozac are you sure you're using the right xid/tag? 1285172950 M * ard yeah :-) 1285172986 M * ard This is an upgrade of 2.6.33 to 2.6.35, since the other had real terrible accounting problems 1285172989 M * ard with ext4 :-) 1285173038 M * ard on unlink it would add the size to the total until closed, and then delete it again, forgetting to delete the original, somehthing like that 1285173091 M * ard I still have to compile 2.6.35.5 , which is probably necessary because of the recent rediscovered exploits 1285173158 M * ard anyway: this thing is weird. If I stop and start the vserver, I would actually get the same amount back , as if some other context is not removed on stop 1285173266 M * daniel_hozac you stop, cleanup the cache, and start? 1285173278 M * ard o, the only thing is that I start the vservers with vspace -e --net vserver start 1285173283 M * ard yes 1285173301 J * bonbons ~bonbons@2001:a18:1:1402:2c0:9fff:fe2d:39d 1285173309 M * daniel_hozac what does vdu say about it? 1285173328 M * daniel_hozac are you sure the dlimit is on the right interface? 1285173349 M * ard root@imperium:/var/lib/vservers# vdu --xid skydev1 --space --inodes skydev1 1285173349 M * ard skydev1 44767284 310334 1285173378 M * ard is there an interface on dlimit? 1285173385 A * ard just wanted to type it in :-) 1285173402 M * daniel_hozac well, directory. 1285173419 M * ard yes :-) 1285173441 M * ard or is there a way to list all dlimits for a context? 1285173464 M * daniel_hozac no 1285173808 M * ard the stat of / in the vserver and the stat from the host reveals the same inode for / 1285173844 M * Bertl same device too? 1285173866 M * dreamind hi daniel_hozac :) 1285173898 M * ard jups :-) 1285173924 M * ard 2.6.35.3-vs2.3.0.36.31 to be exact on ext4 1285173988 M * daniel_hozac hello dreamind 1285175242 Q * ntrs_ Ping timeout: 480 seconds 1285175257 Q * derjohn_mob Ping timeout: 480 seconds 1285175980 M * geb micah, ping ? 1285176017 M * geb do you know if debian's 2.6.26 is affected by http://www.vupen.com/english/advisories/2010/2423 ? is there any update now ? 1285176017 M * micah geb: please leave a message and I will get back to you at the earliest convenience 1285176125 M * geb haha, funny if this is an automated message 1285176328 M * geb more precisly i mean, i was looking about informations about how to vserver react with this flaw 1285176339 M * geb (can a vserver root the host ?) 1285176394 M * daniel_hozac yes. 1285176526 Q * ensc|w Remote host closed the connection 1285176534 J * ensc|w ~ensc@www.sigma-chemnitz.de 1285176827 M * dannf geb: http://www.debian.org/security/2010/dsa-2110 1285176837 M * geb yeah, i saw it, but 1285176838 M * geb test ~ # ./a.out 1285176838 M * geb symbol table not available, aborting! 1285176838 M * geb Process finished 1285176949 M * daniel_hozac yes, that particular version doesn't work. the exploit itself though, works just fine. 1285176986 M * Bertl I presume so too, but did you test it by any chance? 1285177065 M * daniel_hozac well, when you're running a distribution kernel, you just have to install the kernel in the guest too to get everything you need... 1285177134 M * Bertl and why do you assume that the guest can escape the context? 1285177184 M * daniel_hozac it's arbitrary code execution in kernel space. just set current->xid = 0 and current->vx_info = NULL 1285177295 M * geb thanks a lot for your answers daniel_hozac and Bertl :) 1285177380 M * geb (i'll hang) 1285177401 Q * geb Quit: ZNC - http://znc.sourceforge.net 1285177431 M * Bertl ah, arbitrary code ... somehow missed that ... have to reread the exploit 1285178027 J * geb ~geb@mars.gebura.eu.org 1285180492 J * petzsch ~markus@dslb-094-218-178-167.pools.arcor-ip.net 1285181071 J * dowdle ~dowdle@scott.coe.montana.edu 1285183042 J * ntrs ~ntrs@77.28.13.210 1285183337 J * dna_ ~dna@dslb-094-222-223-148.pools.arcor-ip.net 1285183462 Q * dna_ 1285183778 Q * dna__ Ping timeout: 480 seconds 1285183870 J * derjohn_mob ~aj@d062216.adsl.hansenet.de 1285183893 Q * Piet Remote host closed the connection 1285183968 J * Piet ~Piet__@82VAABFTE.tor-irc.dnsbl.oftc.net 1285185461 P * dreamind 1285185907 J * imcsk8 ~ichavero@201.174.32.227 1285186799 Q * petzsch Quit: Leaving. 1285187161 J * thierryp ~thierry@home.parmentelat.net 1285187578 Q * derjohn_mob Ping timeout: 480 seconds 1285187714 Q * ntrs Ping timeout: 480 seconds 1285187789 Q * thierryp Remote host closed the connection 1285188749 J * derjohn_mob ~aj@d062216.adsl.hansenet.de 1285189472 J * petzsch ~markus@dslb-094-218-178-167.pools.arcor-ip.net 1285189680 Q * cuba33ci Read error: Operation timed out 1285189881 J * cuba33ci ~cuba33ci@111-240-206-196.dynamic.hinet.net 1285191114 Q * bonbons Quit: Leaving 1285192058 Q * geb Ping timeout: 480 seconds 1285192243 Q * petzsch Read error: Connection reset by peer 1285192855 J * geb ~geb@mars.gebura.eu.org 1285194307 Q * ghislain Quit: Leaving. 1285194634 Q * Piet Remote host closed the connection 1285195731 J * Piet ~Piet__@7R1AAC79M.tor-irc.dnsbl.oftc.net 1285196411 Q * imcsk8 Quit: Leaving 1285196760 Q * Piet Remote host closed the connection 1285196798 J * Piet ~Piet__@7R1AAC79X.tor-irc.dnsbl.oftc.net 1285198664 J * imcsk8 ~ichavero@evdomip-75-146.iusacell.net