1320193803 Q * ghislain Quit: Leaving.
1320198399 M * Bertl off to bed now ... have a good one everyone!
1320198405 N * Bertl Bertl_zZ
1320199400 Q * thierryp Remote host closed the connection
1320201483 Q * clopez Ping timeout: 480 seconds
1320201549 J * nicholi ~nicholi@rrcs-76-79-196-34.west.biz.rr.com
1320202165 N * ensc|w Guest15496
1320202166 Q * Guest15496 Remote host closed the connection
1320202175 J * ensc|w ~ensc@www.sigma-chemnitz.de
1320204142 J * clopez ~clopez@238.10.117.91.dynamic.mundo-r.com
1320206614 Q * clopez Ping timeout: 480 seconds
1320208812 Q * fisted Read error: Connection reset by peer
1320209541 J * fisted ~fisted@xdsl-87-78-214-197.netcologne.de
1320212172 J * sannes1 ~ace@cm-84.209.106.118.getinternet.no
1320216303 J * xargs12 ad3c1d03@ircip3.mibbit.com
1320216680 M * xargs12 Hello, I had a question about building vserver guests. I noticed that cloning is much faster then a template build, if the guest that has been cloned from is hashed. Is there a faster way to create a new guest based on a pre-existing system or template, and if a guest is hashified does it always remain so?
1320217058 J * ncopa ~ncopa@3.203.202.84.customer.cdi.no
1320217228 J * derjohn_mob ~aj@213.238.45.2
1320217236 Q * Mr_Smoke Read error: Connection reset by peer
1320217245 J * Mr_Smoke smokey@layla.lecoyote.org
1320217846 Q * daniel_hozac Ping timeout: 480 seconds
1320217874 J * _nono_ ~gomes@licencieux.ircam.fr
1320218419 J * jeroen__ ~jeroen@095-097-051-172.static.chello.nl
1320219143 J * ghislain ~AQUEOS@adsl2.aqueos.com
1320220460 Q * jeroen__ Remote host closed the connection
1320220801 Q * Romster Quit: Geeks shall inherit properties and methods of object earth.
1320222001 J * kir ~kir@swsoft-msk-nat.sw.ru
1320222934 J * hparker ~hparker@2001:470:1f0f:32c:beae:c5ff:fe01:b647
1320223187 J * thierryp ~thierry@home.parmentelat.net
1320224621 J * BenG ~bengreen@cpc12-aztw24-2-0-cust146.aztw.cable.virginmedia.com
1320225604 N * Bertl_zZ Bertl
1320225613 M * Bertl morning folks!
1320225682 M * Bertl xargs12: faster way than cloning a hashed guest? probably no
1320225755 M * hijacker morning
1320225766 M * Bertl xargs12: and no, the guests will slowly drift apart when updated, etc .. so it is advised to reunify/hashify guestss periodically
1320225786 Q * BenG Quit: I Leave
1320226863 J * Romster ~romster@202.168.100.149.dynamic.rev.eftel.com
1320228797 J * clopez ~clopez@155.99.117.91.static.mundo-r.com
1320229800 Q * ccxCZ synthon.oftc.net larich.oftc.net
1320229800 Q * imcsk8 synthon.oftc.net larich.oftc.net
1320230122 J * imcsk8 ~ichavero@148.229.1.11
1320230390 M * Bertl off for now ... bbl
1320230396 N * Bertl Bertl_oO
1320230416 J * ccxCZ ~ccxCZ@new.webprojekty.cz
1320230508 Q * fisted Ping timeout: 480 seconds
1320230673 M * ser bad news, i was abroad, and one of my freshly upgraded from .36 to .0.7 servers rested twice
1320230714 M * ser as it is a production server, i cannot trace the problem, but i happened twice in 48h period
1320230729 J * fisted ~fisted@xdsl-87-78-214-197.netcologne.de
1320230741 M * ser s/rested/reseted/
1320230773 M * ser .36 kernel was stable for months on the same machine
1320230823 J * speedy ~speedy@69.61.36.194
1320230855 M * ser please notice it is not a complaint, just an information :) :)
1320230874 M * speedy are there any tools out there to copy a vserver to a remote server?
1320230886 M * ser speedy: rsync
1320231051 M * speedy ser: /var/lib/vserver/[servername]/ and /etc/vserver/[servername]/ ?
1320231059 M * ser speedy: indeed
1320231065 M * speedy ser: thanks
1320231087 M * ser speedy: you can do it once on working server, then switch it off, and repeat missing part
1320231118 M * speedy alright
1320231125 M * Bertl_oO speedy: take care with the rsync options, you want numeric ids and all attributes
1320231160 M * Bertl_oO ser: .0.7 means 3.0.7?
1320231171 M * ser Bertl_oO: yes
1320231191 M * ser speedy: Bertl_oO means rsync --numeric-ids
1320231195 M * Bertl_oO and what exactly resetted?
1320231202 M * ser Bertl_oO: the whole machine
1320231205 M * ser Bertl_oO: no logs
1320231216 M * Bertl_oO so it most likely paniced, yes?
1320231221 M * speedy Thanks Bertl_oO ser
1320231244 M * Bertl_oO ser: nothing on the (serial) console either?
1320231249 M * ser Bertl_oO: i do not know, it happened without any visible signals
1320231267 M * ser Bertl_oO: it is OVH, no serial, no kvm :(
1320231297 M * Bertl_oO well, hard to tell what it was then ... anyway, thanks for the info
1320231313 M * ser Bertl_oO: i have collectd.org daemon running each ten seconds, no traces - so all of it happened in less then 10 seconds
1320231339 M * Bertl_oO yeah well, if the kernel panics, userspace is always 'too late'
1320231362 M * Bertl_oO you might look into kexec and a crash dump kernel if there is no option for a proper console 
1320231369 M * arekm 3.0.7 has bugs
1320231378 M * ser i will upgrade OVH to have KVM and serial in February
1320231412 M * Bertl_oO arekm: oh? that would be the first Linux kernel with bugs, yes? :)
1320231428 M * ser :D
1320231460 M * ser but i must say .36 is really stable as a rock
1320231469 M * Bertl_oO good to hear ...
1320231472 M * arekm Bertl_oO: I know two ugly bugs in .7 ;>
1320231476 M * speedy rsync -a will preserve symbolic links, permissions, timestamp, and owner & group, is that enough with --numeric-ids ?
1320231489 M * arekm one fixed in .8 and one still discussed
1320231512 M * arekm speedy: but not hardlinks
1320231519 M * arekm and no acls
1320231529 M * ser but i have noticed load on .0.7 was 30% lower then on .36
1320231539 M * arekm and no xattrs
1320231545 M * ser until it was working well of course :)
1320231554 M * arekm ser: what fs?
1320231557 M * ser xfs
1320231579 M * arekm xfs got very cool improvements after .36
1320231593 M * arekm delaylog mainly
1320231607 M * ser maybe i will try .38 next week
1320231848 M * ser speedy: -ax and --numeric-ids should be fine
1320231893 M * ser  -x to not copy proc and tmp :)
1320231900 M * speedy ser: will try that, thanks!
1320232393 P * kir Leaving.
1320233521 J * BenG ~bengreen@cpc12-aztw24-2-0-cust146.aztw.cable.virginmedia.com
1320245417 J * fleischergesell ~fleischer@p54965CBE.dip.t-dialin.net
1320245558 M * fleischergesell Hey folks, I'm using the 26.32-5 kernel and was wondering how memory allocation is calculated on the host and in guests. I have a situation here where free -m reports 0,7G free space without cache, whereas inside the guest free -m reports only 0,4G free - how is that possible?
1320245900 J * dowdle ~dowdle@scott.coe.montana.edu
1320246529 Q * clopez Ping timeout: 480 seconds
1320247156 Q * BenG Quit: I Leave
1320247206 J * clopez ~clopez@155.99.117.91.static.mundo-r.com
1320250349 Q * ncopa Quit: Leaving
1320250639 Q * hparker Remote host closed the connection
1320250803 J * hparker ~hparker@2001:470:1f0f:32c:beae:c5ff:fe01:b647
1320250967 Q * _nono_ Quit: Leaving
1320250974 Q * clopez Ping timeout: 480 seconds
1320251646 J * clopez ~clopez@155.99.117.91.static.mundo-r.com
1320252850 Q * thierryp Remote host closed the connection
1320252986 Q * fisted Read error: Connection reset by peer
1320253568 Q * hparker Ping timeout: 480 seconds
1320253610 J * bonbons ~bonbons@2001:960:7ab:0:848c:d407:ac8a:1bca
1320253822 J * fisted ~fisted@xdsl-87-78-209-213.netcologne.de
1320254292 J * hparker ~hparker@2001:470:1f0f:32c:beae:c5ff:fe01:b647
1320255048 Q * hparker Remote host closed the connection
1320257222 Q * speedy Quit: Leaving
1320260796 P * fleischergesell 
1320262298 Q * derjohn_mob Ping timeout: 480 seconds
1320264265 J * greg c1ef53b4@ircip3.mibbit.com
1320264533 M * greg Hi, I try to run snort in vserver. I have eth0 for ssh etc. and eth1 to listen to traffic for snort. Now my question is Is there any way to add eth1 to vserver without add network address ? 
1320264623 M * greg (without address snort is trying sth. like this ioctl(4, SIOCGIFHWADDR, {ifr_name="eth1", ???}) = -1 ENODEV (No such device) )
1320264668 M * greg but no device... If I add address for example 127.255.255.1/32 it start working... but there should be no address on that interface
1320264775 J * hijacker_ ~hijacker@cable-84-43-136-96.mnet.bg
1320264924 M * greg Versions:                    Kernel: 2.6.32-5-vserver-686                    VS-API: 0x00020305              util-vserver: 0.30.215; Jun 18 2010, 15:28:40  Features:                        CC: gcc, gcc (Debian 4.4.4-5) 4.4.4                       CXX: g++, g++ (Debian 4.4.4-5) 4.4.4                  CPPFLAGS: ''                    CFLAGS: '-Wall -g  -O2 -std=
1320264945 M * greg sorry for flood
1320264954 M * greg                    Kernel: 2.6.32-5-vserver-686                    VS-API: 0x00020305              util-vserver: 0.30.215; Jun 18 2010, 15:28:40
1320265604 M * Guy- I'd like to use vserver in a Xen dom0 - any special considerations I should be aware of?
1320265629 M * Guy- (it can also be a domU if that's better for any reason)
1320265864 Q * clopez Ping timeout: 480 seconds
1320265964 J * hparker ~hparker@2001:470:1f0f:32c:beae:c5ff:fe01:b647
1320266090 J * daniel_hozac ~daniel@c-a53171d5.08-230-73746f22.cust.bredbandsbolaget.se
1320266877 M * greg Ok. I found solution: echo ~hide_netif >> nflags
1320266878 M * greg so vserver see all interfaces
1320267178 M * greg but of course this only solve some problem ;)
1320267309 M * daniel_hozac Guy-: shouldn't matter.
1320267341 M * daniel_hozac greg: for snort you need CAP_NET_RAW... although be aware that it gives the guest the power to forge packets on any network interface.
1320267359 M * greg Yes but it;s not work
1320267388 M * greg this cap_net_raw was in bcap... file
1320267418 M * greg but this syscall fails :( and snort not working
1320267536 Q * hparker Quit: Quit
1320267536 M * greg it worked but today we updated kernel and it stop working old kernel was very old - 2.6.18-vs2.0.2-gentoo-r8
1320267609 Q * hijacker_ Quit: Leaving
1320267626 Q * sannes1 Remote host closed the connection
1320267652 M * daniel_hozac if you really trust your guest you can run it without a network context, by touch /etc/vservers/<guest>/noncontext
1320267719 M * greg what is safer 
1320267719 M * greg echo ~hide_netif >> nflags
1320267719 M * greg or nocontext ?
1320267941 J * Aiken ~Aiken@ppp219-137.static.internode.on.net
1320268006 M * daniel_hozac combined with CAP_NET_RAW? not really a different there.
1320268079 M * greg I have this flag
1320268079 M * greg cat bcapabilities  CAP_NET_RAW
1320268079 M * greg but it's not working...
1320268110 M * greg It should be in bcapabilities ?
1320268192 M * daniel_hozac yes.
1320268290 M * greg i removed hide_netif
1320268290 M * greg restart vserver
1320268290 M * greg and I got
1320268320 M * greg ip a ls | grep -v inet
1320268320 M * greg # ip a ls | grep -v inet 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue state UNKNOWN      link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000     link/ether 00:02:b3:19:d1:48 brd ff:ff:ff:ff:ff:ff
1320268320 M * greg and snort not working
1320268347 M * daniel_hozac sure.
1320268349 M * greg in log 
1320268349 M * greg Nov  2 21:09:30 ids-new snort[20939]: pcap DAQ configured to passive. Nov  2 21:09:30 ids-new snort[20939]: Acquiring network traffic from "eth1". Nov  2 21:09:30 ids-new snort[20939]: Initializing daemon mode Nov  2 21:09:30 ids-new snort[20940]: Daemon initialized, signaled parent pid: 20939 Nov  2 21:09:30 ids-new snort[20940]: FATAL ERROR: Can't start DAQ
1320268410 M * greg I've got eth0 for ssh/mysql/log adn eth1 for snort traffic (port mirror)
1320268410 M * greg it worked ;) but we had to update kernel
1320269461 M * greg ok thx for your help (BDW gr8 soft)
1320269584 J * ffrank ~illtiz@fiesta.cs.tu-berlin.de
1320269645 M * ffrank hi. using vserver 2.3.0.36.29.6 and utils 0.30.216~r2772-6, i cannot seem to get ad hoc mounts to work, as described here: http://www.kkoncepts.net/node/2
1320269690 M * ffrank mounting through vnamespace works, as does vnamespace -e ... ls <mount-point>, but from inside the vserver, the mount is not visible and the mount point empty
1320270207 Q * ffrank Quit: leaving
1320270223 J * ffrank ~illtiz@fiesta.cs.tu-berlin.de
1320270545 Q * greg Quit: http://www.mibbit.com ajax IRC Client
1320270685 Q * bonbons Quit: Leaving
1320271232 J * thierryp ~thierry@home.parmentelat.net
1320271754 Q * ntrs Ping timeout: 480 seconds
1320271902 Q * thierryp Remote host closed the connection
1320272244 J * ntrs ~ntrs@vault08.rosehosting.com
1320277220 J * clopez ~clopez@238.10.117.91.dynamic.mundo-r.com
1320278019 Q * dowdle Remote host closed the connection