1288656378 J * FireEgl FireEgl@2001:470:e056:9:d9e2:e33d:92fb:89d 1288657663 Q * manana Remote host closed the connection 1288657939 M * Bertl off to bed now ... night everyone! 1288657945 N * Bertl Bertl_zZ 1288659066 J * balbir ~balbir@122.172.37.83 1288665710 Q * balbir Ping timeout: 480 seconds 1288673956 J * balbir ~balbir@122.172.165.133 1288674965 Q * balbir Ping timeout: 480 seconds 1288678409 J * balbir ~balbir@122.172.10.201 1288679399 J * Eruquen Janno@server3.raumopol.de 1288679430 Q * Janno Quit: ZNC - http://znc.sourceforge.net 1288679611 Q * daniel_hozac Remote host closed the connection 1288679624 J * daniel_hozac ~daniel@c-aa3771d5.08-230-73746f22.cust.bredbandsbolaget.se 1288680685 J * petzsch ~markus@dslb-088-075-120-251.pools.arcor-ip.net 1288681315 Q * petzsch Quit: Leaving. 1288682498 Q * derjohn_mob Ping timeout: 480 seconds 1288683589 J * derjohn_mob ~aj@213.238.45.2 1288683601 J * petzsch ~markus@dfn601.rz.tu-ilmenau.de 1288684377 J * ghislain ~AQUEOS@adsl2.aqueos.com 1288684868 Q * petzsch Quit: Leaving. 1288685233 J * Romster ~romster@202.168.100.149.dynamic.rev.eftel.com 1288687125 N * Bertl_zZ Bertl 1288687129 M * Bertl morning folks! 1288688432 J * |swenTjuln| ~kvirc@217.72.66.253 1288688459 Q * |swenTjuln| 1288688476 J * swenTjuln ~kvirc@217.72.66.253 1288688967 M * ghislain morning bertl 1288689474 J * barismetin ~barismeti@zanzibar.inria.fr 1288689617 J * ghislain1 ~AQUEOS@adsl2.aqueos.com 1288690018 Q * ghislain Ping timeout: 480 seconds 1288691420 J * manana ~mayday090@84.17.25.149 1288692249 J * petzsch ~markus@dslb-088-075-120-251.pools.arcor-ip.net 1288695469 Q * barismetin Remote host closed the connection 1288700515 Q * balbir Ping timeout: 480 seconds 1288701074 J * balbir ~balbir@122.166.160.119 1288701434 Q * petzsch Ping timeout: 480 seconds 1288702166 J * petzsch ~markus@dslb-088-075-120-251.pools.arcor-ip.net 1288702558 M * swenTjuln A problem: 1288702636 M * swenTjuln I want to debug init process for a guest ( as described here: http://linux-vserver.org/Upstart_issues#Notes_for_debugging ) but I don't have access to local console. Is there a way to redirect /dev/console to PTS or something? 1288703226 M * Bertl there is no way to redirect it, but if your init is able to use a pts or even a file, you can specify that instead of the console 1288703267 Q * petzsch Quit: Leaving. 1288703308 M * Bertl i.e. just put the device or file in /dev/console 1288703369 M * Bertl note that upstart (at least the older versions we know about) used to do console specific stuff on the console, which of course, failed on other devices 1288704162 J * nkukard_ ~nkukard@dsl-247-41-16.telkomadsl.co.za 1288704308 M * swenTjuln Bertl: tnx....seems I get some output 1288704320 M * swenTjuln not what I expected though. 1288704590 Q * nkukard Ping timeout: 480 seconds 1288704883 J * petzsch ~markus@dfn720.rz.tu-ilmenau.de 1288705086 M * zbyniu Bertl: hi, in /proc//cgroup there ie is ....:/5053/5151/5151 1288705119 M * zbyniu Bertl: what are these numers? some pids of starting vserver? 1288705202 M * Bertl I'd say the cgroups, but not really Linux-VServer related 1288705242 M * zbyniu in pure containers it is name of it 1288705300 M * zbyniu 1:net_cls,freezer,devices,memory,cpuacct,cpu,ns,cpuset:/aaa if started some process in lxc aaa 1288705389 M * Bertl probably daniel_hozac has the details 1288705439 M * Bertl nap attack ... bbl 1288705443 N * Bertl Bertl_zZ 1288705514 J * thierryp ~thierry@12.150.171.253 1288705668 M * daniel_hozac zbyniu: you have CONFIG_CGROUP_NS enabled for your guests. 1288705693 M * daniel_hozac it uses the pid and creates a cgroup for each clone. 1288705947 M * zbyniu daniel_hozac: uh, it looks more complicated i thought 1288706322 J * _WildPIkachu_ ~nkukard@41-133-202-230.dsl.mweb.co.za 1288706531 Q * petzsch Quit: Leaving. 1288706678 M * daniel_hozac zbyniu: what? 1288706738 M * geb hi 1288706750 Q * nkukard_ Ping timeout: 480 seconds 1288706804 M * geb daniel_hozac, got a question: chbind require vserver patch or it is usable without it (i am reading the code quicly, and i think it is needed, isn't?) 1288706814 M * geb requires* 1288706886 M * daniel_hozac yes, chbind requires Linux-VServer. 1288706896 M * daniel_hozac it creates a network context. 1288706959 M * geb thanks :) 1288707048 M * zbyniu daniel_hozac: i'm trying to understand what lxc do 1288707068 M * zbyniu and relation containers with vsever in current kernels 1288707235 M * daniel_hozac okay? 1288708799 Q * harry Ping timeout: 480 seconds 1288710188 J * is_null_ ~is_null@perso.chocolatpistache.com 1288710189 Q * is_null_ 1288710826 Q * infowolfe Quit: Leaving 1288711042 J * infowolfe ~infowolfe@c-67-166-127-67.hsd1.ut.comcast.net 1288711320 Q * ntrs Ping timeout: 480 seconds 1288711770 J * ntrs ~ntrs@vault08.rosehosting.com 1288713578 J * petzsch ~markus@dslb-088-075-120-251.pools.arcor-ip.net 1288715149 Q * thierryp Remote host closed the connection 1288715553 Q * balbir Read error: Connection reset by peer 1288715740 N * Bertl_zZ Bertl 1288715744 M * Bertl back now ... 1288716395 J * balbir ~balbir@122.172.7.255 1288717021 Q * derjohn_mob Ping timeout: 480 seconds 1288718529 J * thierryp ~thierry@12.150.171.253 1288719280 J * derjohn_mob ~aj@d179057.adsl.hansenet.de 1288720118 Q * petzsch Quit: Leaving. 1288720228 J * imcsk8 ~ichavero@201.174.32.230 1288720763 J * bonbons ~bonbons@2001:a18:1:1402:2c0:9fff:fe2d:39d 1288720819 J * cptwolf d5f8bf2d@ircip3.mibbit.com 1288720830 M * cptwolf hi 1288720838 M * cptwolf i have a question 1288720878 M * cptwolf E: Couldn't find package linux-headers-2.6.33.2-vs2.3.0.36.30.4-netcup 1288720886 M * cptwolf how can i fix 1288720905 Q * Piet Ping timeout: 480 seconds 1288720968 M * Bertl I'd say that is something you have to ask your distro provider 1288721007 M * Bertl i.e. it looks like your distros package maintainer is looking for a package, which cannot be found, for whatever reason 1288721026 M * Bertl (most likely nobody created a linux-headers for that Linux-VServer kernel package) 1288721045 M * cptwolf i bought vserver from netcup.de and i tried to install osiris-cs 1288721072 M * Bertl so then, netcup.de is your best point to start asking 1288721072 M * cptwolf my stupid company didnt understand that and they are thinking that its my own mistake : 1288721099 M * Bertl but in general, any modern kernel headers will do 1288721104 M * cptwolf yes.. but i still dont know exactly howto tell them mistake 1288721116 M * cptwolf or is it way to i can fix by myself? 1288721146 M * Bertl most likely installing kernel headers for a 2.6.32/33 kernel should provide the required files 1288721184 M * cptwolf how can i install? because im not the server owner :) just customer 1288721202 M * Bertl the userspace inside a Linux-VServer guest is all yours 1288721213 M * Bertl so installing packages is no problem at all 1288721224 M * cptwolf http://vserver.13thfloor.at/Experimental/patch-2.6.34.7-vs2.3.0.36.30.4.diff i found this 1288721241 M * cptwolf but im kind of newbie :) and still didnt find commands to install 1288721329 M * Bertl just to clarify, this patch is against a vanilla (mainline/kernel.org) kernel and has little to do with your kernel or problem :) 1288721330 J * ghislain ~AQUEOS@adsl2.aqueos.com 1288721353 M * cptwolf is there a wiki or something 1288721360 M * Bertl cptwolf: you first want to familiarize yourself with the package management of your distribution 1288721395 M * cptwolf im newbie :) just to need install something to my server 1288721410 M * Bertl exactly 1288721447 J * Piet ~Piet__@1RDAAARLJ.tor-irc.dnsbl.oftc.net 1288721450 Q * ghislain1 Ping timeout: 480 seconds 1288721518 M * cptwolf mm is there any way to give you my details and you can check maybe? 1288721643 M * Bertl this channel is for Linux-VServer questions and problems, as I already stated, you need to familiarize yourself with your distro and the package management system (learn how to install packages and how to check which packages are already installed) 1288722026 Q * cptwolf Quit: http://www.mibbit.com ajax IRC Client 1288722270 Q * FireEgl Read error: Connection reset by peer 1288722417 J * petzsch ~markus@dslb-088-075-120-251.pools.arcor-ip.net 1288722547 Q * petzsch 1288722829 J * peanut ~peanut@cpe-24-58-59-60.twcny.res.rr.com 1288722938 M * peanut Hello gentlemen. I have recently had a dedicated server setup for me with Ubuntu Jaunty 9.04. I am not new to unix/ubuntu/jails however I am new to vservers. I have looked at your documentation on your website but find myself unable to setup a guest vserver. Could one of you take a minute and point me in the correct direction. 1288722962 M * Bertl hey, what's the problem? 1288722990 M * peanut one sec pastebining 1288723007 M * peanut http://pastebin.ca/1979768 1288723067 M * Bertl please upload the output of 'vserver-info - SYSINFO' to the pastebin 1288723118 M * peanut http://pastebin.ca/1979771 1288723153 M * Bertl so, that shows us that you do not have a Linux-VServer patched kernel installed (yet) 1288723204 M * peanut Ok, I can find documentation for doing that on your website? 1288723304 M * Bertl sure, sec 1288723333 M * Bertl http://linux-vserver.org/Documentation 1288723341 M * Bertl http://linux-vserver.org/Installation_on_Linux_2.6 1288723356 M * Bertl ?????????????????????? 1288723359 M * Bertl hmm 1288723366 M * Bertl http://linux-vserver.org/Installation_on_Ubuntu 1288723404 M * Bertl it is advised to get a recent 2.6.36 kernel together with the latest patch 1288723409 M * peanut would their be any benefit to me doing it manually with the guide linux_2.6 opposed to using the apt repository on installation ubuntu? 1288723488 M * peanut ahh 1288723493 M * peanut never mind now that i thought about it 1288723502 M * peanut if i build my own i can select my own kernel settings 1288723509 M * peanut haha *facepalm* 1288723596 M * Bertl yeah, and you can trim the kernel down to hardware and drivers you actually need 1288723605 M * peanut well my interest is soley in security 1288723621 M * peanut vservers will hopefully allow me to keep the few services i require seperate and secured 1288723635 M * Bertl which will also increase if you do so 1288723654 M * peanut i'd really like grsec however i think thats a little bit beyond me at the moment 1288723682 M * Bertl there are patches/combos available, but they are not updated to 2.6.36 (yet) 1288723742 M * peanut well with grsec I can remember reading a lot of settings that I didn't really understand 1288723760 M * peanut with the patchset/combo's is the advanced configuration dumbed down a bit? 1288723761 Q * Piet Remote host closed the connection 1288723789 M * Bertl not really, but some defaults are preset 1288723801 J * Piet ~Piet__@1RDAAARM2.tor-irc.dnsbl.oftc.net 1288723812 M * Bertl in general, if you don't know how to configure it, the only 'benefit' will be pax 1288723853 M * peanut i think i'll let grsec lay and just chroot the services 1288723862 M * peanut unrealircd and openssl in my case =] 1288723895 M * Bertl no problem, Linux-VServer increases the security inside a guest (jail/chroot) significantly by reducing the available capset 1288723939 M * Bertl so it is quite secure and nicely separated/isolated 1288724071 M * peanut I host a chat network full of computer security guys so the security of this machine is important to me. =] 1288724119 Q * thierryp Read error: Connection reset by peer 1288724144 M * peanut Can I message you in private? 1288724154 J * thierryp ~thierry@12.150.171.253 1288724155 M * Bertl yep 1288724230 J * petzsch ~markus@dslb-088-075-120-251.pools.arcor-ip.net 1288725463 A * arekm wonders if vserver can use full network virtualization? 1288725486 M * arekm not just separation 1288725556 J * derjohn_foo ~aj@d126149.adsl.hansenet.de 1288725635 M * Bertl sure, everything the network namespaces provide 1288725796 M * arekm Bertl: oh, how to enable? :) 1288725828 Q * Piet Ping timeout: 480 seconds 1288725850 M * Bertl not sure how far the util-vserver support is atm, but basically you need to configure it like on vanilla kernels 1288725876 M * Bertl some folks here are already doing that with custom scripts and such 1288725900 M * Bertl you can basically combine network namespaces and isolation 1288725922 M * arekm have to see how it's being done on vanilla then 1288725968 Q * derjohn_mob Ping timeout: 480 seconds 1288726174 M * arekm http://www.paul.sladen.org/vserver/archives/200911/0036.html some old stuff 1288726485 J * Piet ~Piet__@1RDAAAROK.tor-irc.dnsbl.oftc.net 1288727126 A * sladen looks around 1288728132 M * arekm vspace has --net but looks like nothing uses this 1288728372 J * dna ~dna@dslb-094-222-124-132.pools.arcor-ip.net 1288728911 Q * thierryp Remote host closed the connection 1288729006 M * Bertl arekm: check the irc logs, I'm pretty sure the folks already using network namespaces are around 1288729015 M * Bertl sladen: hey, how's going? 1288729090 M * arekm Bertl: http://paste.linux-vserver.org/pastebin.php?dl=16615 1288729200 M * arekm now how to enable pure netns itself for a guest 1288729303 J * thierryp ~thierry@12.150.171.253 1288729608 M * Bertl you need to configure the kernel to support it first 1288729629 M * Bertl then it should be simply done by unsharing the namespace 1288729806 M * fback hello Bertl! 1288729821 M * Bertl hey 1288729929 M * arekm my kernel has it compiled in 1288730004 M * fback Bertl: did you manage to sell the house? 1288730038 M * Bertl yep, got sold some time ago ... 1288730060 M * fback nice :) 1288730069 M * Bertl (more than half a year ago now, actually) 1288730070 M * fback now I have the same troube... 1288730088 M * Bertl make a web site, it helps a lot 1288730251 M * fback Bertl: unfortunately I don't have any well-known blog, nor I am well-known linux kernel hacker ;) 1288730292 M * Bertl doesn't really matter, just pick a nice name and link it on every site you know somebody 1288730647 M * arekm Bertl: hm, there is some support for net ns in _generateSpaceOptions 1288730824 Q * thierryp Ping timeout: 480 seconds 1288730923 Q * dna Quit: Verlassend 1288730965 M * arekm I guess touch /etc/vservers/xyz/spaces/net should enable netns for a guest 1288730998 M * Bertl check with daniel_hozac about the net namespace support/progress in latest util-vserver 1288731078 J * thierryp ~thierry@12.150.171.253 1288731109 M * arekm about latest util-vserver - http://pastebin.com/aeXSqQAb 1288731241 M * Bertl kernel/patch? 1288731336 M * arekm 2.6.35.8, patch-2.6.35.7-vs2.3.0.36.33.diff 1288731360 M * Bertl cgroups enabled and runlevel scripts executed? 1288731388 M * arekm none on /dev/cpuset type cgroup (rw,cpuset,noprefix) 1288731405 M * arekm but vservers not restarted. simply util-vserver upgraded while guests were running 1288731425 M * Bertl then you definitely want to execute the runlevel scripts 1288731457 M * Bertl and ultimately reastart the guests 1288731460 M * Bertl *restart 1288731683 M * arekm vprocunhide i vrootdevices restart doesn't help. Freshly started guest after that also not visible in vserver-status (while other old one guests weren't restarted) 1288731726 M * arekm util-vserver init.d also didn't help hmm 1288731748 M * Bertl we are talking about 0.30.216-pre2921, yes? 1288731777 M * arekm yes 1288731779 M * Bertl (just because it works fine here, no vserver-stat issues at all) 1288732262 J * FireEgl FireEgl@2001:470:e056:8:f42c:252d:1fbb:841d 1288732291 M * fback arekm: you have to mount memory cgroup too 1288732307 M * fback not just cpuset 1288732431 M * arekm fback: ok. going to read what all these mean - vserver /dev/cgroup cgroup cpuset,cpu,cpuacct,devices,freezer,net_cls 0 0 1288732476 M * arekm and /dev/cgroup where I had /dev/cpuset 1288732488 M * fback arekm: you need to add "memory" to the options :) 1288732550 M * fback cpu and/or cpuset is needed for scheduling 1288732665 M * arekm cpu and cpuset yells: mount: none already mounted or /dev/cgroup busy 1288732671 M * arekm only one cpu* is allowed it seems 1288732715 M * fback none on /dev/cgroup type cgroup (rw,cpuset,cpu,freezer,memory) works for me (tm) ;) 1288732821 M * arekm but not here and I wonder why 1288732838 M * arekm mount none /dev/cgroup -t cgroup -o cpuset,cpu fails 1288732873 M * arekm fback: CGROUP_NS - is this on or off in your kernel? 1288732887 M * Bertl it should be off 1288732903 M * fback CONFIG_CGROUP_NS=y 1288732910 M * arekm I have it off 1288732951 M * fback but I don't mount it, 'cause I've found on the wiki, it causes troubles 1288732952 M * arekm http://pastebin.com/NnpC8cXB 1288732972 M * fback I mean, I don't pass ns option 1288733028 M * Chlorek what troubles? 1288733138 M * arekm cgroups are not destroyed when unmounted 1288733172 M * fback http://wiki.linux-vserver.org/util-vserver:Cgroups at bottom 1288733205 M * Chlorek arekm: why NS is not set? 1288733226 M * fback arekm: -o remount? 1288733226 M * Chlorek I have pld's kernel (I mean sources) and it works fine 1288733288 M * arekm fback: seems like mounthing something separately (like only -o cpuset) and all together (cpu,cpuset) creates different beasts 1288733330 M * arekm fback: and according to https://partner-bugzilla.redhat.com/show_bug.cgi?id=612805 I would have to mount cpuset, drop all old cpusets and then mount it back (just umount & mount without dropping processes from cpuset is not enough) 1288733334 M * Bertl not really unexpected, no? 1288733358 M * sladen Bertl: in Berlin atm 1288733368 M * Bertl arekm: I mean, if you mount a filesystem with -o rw and a second time with ro, what do you expect? 1288733386 M * Bertl sladen: nice, work or vacation? 1288733405 M * arekm Bertl: I expect it to be ro at one mount point and rw at second mount point? :) 1288733415 M * sladen Bertl: somewhere between work and staying with people afterwards 1288733457 Q * Piet Remote host closed the connection 1288733498 J * Piet ~Piet__@1RDAAARSW.tor-irc.dnsbl.oftc.net 1288733608 M * Chlorek arekm: why don't you just try mount with everything options in one mountpoint 1288733625 M * arekm anyway with -o memory mounted and guest restart vserver-stat sees guests 1288733636 M * arekm Chlorek: because rc-scripts mount cpuset unconditionally earlier 1288733645 M * Bertl good 1288733657 M * arekm which sucks and will see what to do about this. And mount that in different mount point 1288733752 M * Chlorek ok, my english failed on uncond... 1288733779 M * Chlorek come to us to continue, ok? 1288734300 Q * petzsch Quit: Leaving. 1288734399 Q * imcsk8 Quit: Leaving 1288734740 Q * arekm Quit: leaving 1288734790 Q * bonbons Quit: Leaving 1288735073 J * arekm arekm@carme.pld-linux.org 1288738590 J * hparker ~hparker@2001:470:1f0f:32c:215:f2ff:fee0:9872 1288740191 Q * Piet Remote host closed the connection 1288740232 J * Piet ~Piet__@659AAAZWO.tor-irc.dnsbl.oftc.net 1288741901 Q * ghislain Quit: Leaving. 1288742032 Q * hparker Quit: Quit