--- Log opened wto maj 11 00:00:03 2004 --- Day changed wto maj 11 2004 00:00:02< virtuoso> Bertl: From time to time it seems more like a script with many random messages. :) 00:00:14< Bertl> hmm, damn! 00:00:34< Bertl> you know the 'chinese room'? 00:00:49< virtuoso> No, what's that? 00:00:59< Doener`> maybe you should add some random typing errors in the nicknames 00:01:18< Bertl> a philosophical example for the problem of understanding vs. automation ... 00:01:48< Bertl> a thought experiment so to say ... 00:02:01< Bertl> http://members.aol.com/lshauser/turingho.html 00:02:15< Bertl> .oO( thank you google! ;) 00:02:51< virtuoso> Looks somewhat familiar. 00:03:57< Bertl> maybe it's just a script running on my side, doing all the stuff ;) 00:05:10< Bertl> http://www.ptproject.ilstu.edu/chinovrv.htm (this is betetr) 00:05:54< Bertl> Doener`: good idea, I'll add the typos immediately ... 00:06:16 * virtuoso . o O ( B3r7l ) 00:07:00>> Bertl is now known as B3R71 00:07:09>> B3R71 is now known as B3r71 00:09:36>> yarihm [~yarihm@217-162-206-157.dclient.hispeed.ch] has quit [Ping timeout: 480 seconds] 00:11:07>> yarihm [~yarihm@217-162-206-157.dclient.hispeed.ch] has joined #vserver 00:11:21< B3r71> wb yarhim! 00:13:26>> _id [~id@pD9E610BE.dip.t-dialin.net] has quit [Ping timeout: 480 seconds] 00:15:24>> infowolfe [~infowolfe@pcp04891550pcs.frnkmd01.md.comcast.net] has quit [Remote host closed the connection] 00:16:38< B3r71> okay, enough fun for today ... have a nice one, cu tomorrow ... 00:16:54>> B3r71 is now known as Bertl_zZ 00:16:54< virtuoso> cya 00:23:10>> mlgd [~mlgd@194.149.164.113] has joined #vserver 00:23:18< mlgd> hello 00:24:23>> _id [~id@pD95E9A49.dip.t-dialin.net] has joined #vserver 00:24:31< mlgd> hi _id 00:39:39>> mlgd [~mlgd@194.149.164.113] has quit [Quit: Leaving] 00:41:22>> hiaslboy_oO is now known as hiaslboy_zZ 00:43:46>> monrad [~monrad@213083190226.sonofon.dk] has quit [Quit: Leaving] 01:47:04>> beezle [~beezle@pD953C428.dip.t-dialin.net] has joined #vserver 01:47:13< beezle> hello 01:47:25< beezle> anyone here who can maybe help? 01:48:06 * pflanze does not really have time 01:48:37< beezle> well, i just ask... i patched my kernel and installed util-vserver. i also can "boot" the vserver, but if i enter it, i can see all the processes from the hosting system and also kill them... 01:49:08< beezle> same if i logon over ssh directly to the vserver 01:51:13< beezle> what am i doing wrong...? 01:51:27< pflanze> how do you enter it? 01:51:35< beezle> vserver deep10 enter 01:52:00< pflanze> and you see only the filesystem from the vserver? 01:52:06< pflanze> but all processes? 01:52:07< beezle> ya, chroot works 01:52:08< beezle> ps ax 01:52:09< beezle> ya 01:52:13< pflanze> strange. 01:52:16< beezle> also killall sshd is bad *g* 01:52:25< pflanze> are you using the old tools and a new patch? 01:52:31< beezle> ya... tried all the day. even developer patch 01:52:37< beezle> 1.3.9 01:52:39< beezle> and 0.29 01:53:48< pflanze> the alpha tools are recommended for the new patches 01:53:56< beezle> but one question, if i patch the kernel (with cat patch-2.4.25-vs1.3.9.diff |patch -p0 -E right?) what changes should there be in the "make menuconfig". i only see ip_vs in networking 01:54:06< pflanze> yep 01:54:09< pflanze> that's all 01:54:11< beezle> but in the diff theres something like vroot and so on. 01:54:13< beezle> hm kay 01:54:39< beezle> son scheiss echt 01:54:54< pflanze> nah, vserver is fine 01:55:05< pflanze> well, actually CONFIG_IP_VS is not vserver related at all! 01:55:27< pflanze> it's another option that vserver offers 01:55:36< beezle> ya, but if it doesn't work at all ;) 01:55:36< beezle> +Virtual Root device support 01:55:37< beezle> +CONFIG_BLK_DEV_VROOT 01:55:40< beezle> this i mean 01:55:42< pflanze> yep 01:55:59< beezle> i use gentoo btw.. 01:56:18< beezle> you got also a vserver runnin? 01:57:18< beezle> just if you have a second... maybe i need grsecurity you know? 01:57:33< pflanze> no you don't 01:57:46< beezle> ah damnit i'm gonna try the gentoo-vservers kernel 01:57:49< beezle> but thx :) 01:58:06< pflanze> have you tried vps aux? 01:58:10< pflanze> from the host 01:58:23< pflanze> and chcontext --ctx 123 ps aux 01:58:49< beezle> vps aux shows all procs 01:58:57< beezle> just marked whats runnin where 01:59:30< pflanze> it shows processes from different contexts? 01:59:40< pflanze> marked as such? 01:59:41< beezle> ya 01:59:43< pflanze> fine 01:59:54< pflanze> so try the above chcontest 01:59:59< pflanze> chcontext 02:00:06< beezle> also sshd is running no the vserver on another ip and i can login, but the same ps aux 02:00:07< beezle> well 02:00:14< beezle> mom 02:00:20< beezle> got private flag on it.. 02:00:44< beezle> damn it, how can i reboot the server now!? 02:00:55< pflanze> you might be logging into the host's sshd 02:01:00< beezle> ya 02:01:22< beezle> deep9 sys-kernel # vserver deep10 restart 02:01:22< beezle> WARNING: can not find configuration, assuming legacy method 02:01:22< beezle> Server deep10 is running 02:01:22< beezle> Stopping the virtual server deep10 02:01:22< beezle> Server deep10 is running 02:01:24< beezle> ipv4root is now 193.201.53.27 02:01:24< beezle> chcontext: vc_new_s_context(): Operation not permitted 02:01:42< beezle> its because of the private flag. but to remove it i have to reboot the vserver right? 02:01:51< pflanze> which private flag? 02:02:29< beezle> S_FLAGS="lock nproc private" 02:02:45< beezle> i was just playin around... but now i cant to chcontext or anything else *g* 02:03:05< beezle> only rebooting the whole server 02:03:23< beezle> just 1 min then i'll tell you about chcontent 02:03:27< beezle> context 02:04:55 * pflanze wonders why those flags should take effect on the host 02:05:05< beezle> hm 02:05:08< beezle> dunno :) 02:05:20< beezle> but if i remove that flag i can do everything again 02:06:14< beezle> the same @chontext ps axu 02:06:38< beezle> when i try vproc -d /proc/meminfo 02:06:54< beezle> deep10 root # ps ax 02:06:54< beezle> Error: /proc must be mounted 02:06:54< beezle> To mount /proc at boot you need an /etc/fstab line like: 02:06:54< beezle> /proc /proc proc defaults 02:06:54< beezle> In the meantime, mount /proc /proc -t proc 02:07:16< beezle> with vproc -e /prov/meminfo i see all procs again 02:07:38< beezle> it doesn't really create a context hm? 02:08:54 * pflanze never used vproc 02:08:59< beezle> hehe 02:09:08< pflanze> what's that even? 02:09:13< pflanze> vps? 02:09:15< pflanze> nah 02:09:40< beezle> i was just surfing around and searching for reasons... vproc. you can deny access for /proc/... for the vservers 02:09:52< beezle> -d protects a proc -e makes it visible 02:10:04< pflanze> yep 02:10:16< pflanze> I know you can limit proc access, but never used it 02:10:25< pflanze> I don't see host processes from inside vservers 02:10:42< beezle> what kinda linux do you have? 02:12:02>> dionv_afk [~dionv@masq-van7ant.skynet.ca] has joined #vserver 02:12:23>> dionv_afk is now known as dionv 02:13:08< beezle> strange 02:13:19< pflanze> debian 02:13:41>> virtuoso [~s0t0na@207ppp11.telegraph.spb.ru] has quit [Read error: No route to host] 02:13:44< beezle> in the vserver sources (it's a already patched package in gentoo) i have an extra option "Virtual Root device support (NEW" 02:13:59< beezle> gonna try that one 02:14:06>> virtuoso [~s0t0na@207ppp11.telegraph.spb.ru] has joined #vserver 02:14:34< pflanze> Why don't you just leave the proc stuff the default? maybe explicitely enabling anything makes it "break". 02:14:45>> dionv [~dionv@masq-van7ant.skynet.ca] has quit [Read error: Connection reset by peer] 02:15:02< beezle> already tried it :/ 02:16:00< pflanze> which tools? vserver --version 02:16:15< pflanze> if it does not show any version it's stable 02:16:39< pflanze> (which I have in production too but with old vs patch) 02:16:52< pflanze> (1.3.8 with alpha tools) 02:17:37< beezle> vserver 0.29.196 -- manages the state of vservers 02:18:30< pflanze> k that's alpha tools 02:18:41< pflanze> albeit an older version of them I think 02:18:51< pflanze> I use 0.29.211 on 1.3.8 02:19:33< pflanze> I also use the new config format (many files and dirs, as opposed to a shell conf file) 02:19:43< beezle> hm, maybe thats the point. just compiling prepatched kernel with 1.3.8 and the i'll install newer util-vserver 02:20:21< beezle> you mean something like "apps fstab interfaces name run run.rev vdir" ? 02:20:40< pflanze> yep 02:20:50< pflanze> as individual files/dirs 02:21:04< beezle> hm, but i don't really get it... theres nothing in interfaces for example 02:21:13< beezle> and not one .config hm? 02:21:20< beezle> .conf i mean 02:21:43< pflanze> just to be sure: you are using kernel 2.4.x+1.3.{8,9} ? 02:22:03< pflanze> (vserver patch 1.3.{8,9} that is) 02:22:16< beezle> 2.4.25 1.3.9 02:22:24< pflanze> k 02:22:32< pflanze> Now you should read the alpha utils page 02:22:41< pflanze> www.linux-vserver.org/?page=alpha+util-vserver 02:23:08< pflanze> could be that you are missing some settings; there's a program that sets up a basic configuration 02:23:50< beezle> hm, thx 4the link, but i installed everything following that howto *g* 02:23:54< beezle> for a vserver? 02:24:02< beezle> vserver asdf build ? 02:24:47< pflanze> yes probably 02:24:57< beezle> and what -m ? 02:24:59< pflanze> I only did it once then did cp -a and modified manually 02:25:47< pflanze> the basic skeleton 02:26:24< pflanze> I use my own debian template 02:26:48< beezle> hm, maybe i should just start at the beginning 02:29:18< pflanze> To be sure that chcontext works I suggested to enter "chcontext --ctx 12345 ps aux" on the host, should be config independent. 02:29:33< pflanze> Should only show the ps process 02:29:48< pflanze> and a faked init 02:29:50< beezle> ya 02:29:52< beezle> it does 02:30:00< beezle> oh 02:30:00< beezle> mom 02:30:15< beezle> it woooooooorks 02:30:18< beezle> ts 02:30:25< beezle> the damn kernel patches *g+ 02:30:37< beezle> just booted the prepatched kernel and see 02:31:39< beezle> very nice 02:31:52< beezle> everything works i think, jippie!! :) thx 02:32:02< pflanze> np 02:33:59< beezle> hm, whats aboud syslog 02:34:09< beezle> you got one runnin on the vserver? 02:34:23< beezle> if i start syslog-ng, Error opening file /proc/kmsg for reading (Operation not permitted) 02:34:50< pflanze> gentoo is known to be very picky with vserver 02:35:07< pflanze> read the mailing list 02:35:14< beezle> kay :) 02:35:26< beezle> ur rigth, just thought maybe u know it just so ;) 02:36:24< pflanze> There's a mail from Bogdan Adica from yesterday that links to a tar with gentoo configs. 02:43:09>> pflanze [~chris@gate.wyona.com] has quit [Quit: night] 02:52:58< kestrel> beezel: you need to remove /proc/kmsg as a source in /etc/syslog-ng/syslog-ng.conf 03:10:06>> anonymouscoward [~nwalsh@shaggy.internode.com.au] has left #vserver [Kopete 0.8.1 : http://kopete.kde.org] 03:46:37>> anonymouscoward [~nwalsh@shaggy.internode.com.au] has joined #vserver 03:48:02< beezle> ya thx, also found it :) 03:48:07< beezle> n8 03:48:12>> beezle is now known as beezle-zZz 04:03:08>> dionv [~dionv@masq-van7ant.skynet.ca] has joined #vserver 04:03:45>> dionv is now known as dionv_zZ 04:13:46 * dionv_zZ is away. Automatically set away [SZon] 04:24:40>> dionv_zZ [~dionv@masq-van7ant.skynet.ca] has quit [Quit: That's it for today] 04:29:22>> dionv [~dionv@masq-van7ant.skynet.ca] has joined #vserver 04:30:49>> dionv [~dionv@masq-van7ant.skynet.ca] has quit [Quit: ] 04:40:57>> dionv [~dionv@masq-van7ant.skynet.ca] has joined #vserver 04:50:17>> dionv is now known as dionv_zZ 05:00:28>> serving [~serving@213.186.191.31] has quit [Ping timeout: 480 seconds] 05:18:44>> Napalm [~napalm@host81-7-20-232.adsl.v21.co.uk] has quit [Quit: ] 07:52:57>> yarihm [~yarihm@217-162-206-157.dclient.hispeed.ch] has quit [Ping timeout: 480 seconds] 07:56:01>> yarihm [~yarihm@217-162-206-157.dclient.hispeed.ch] has joined #vserver 09:28:59>> ensc [~ircensc@ultra.csn.tu-chemnitz.de] has joined #vserver 09:29:18< ensc> hi 09:47:23>> mhepp [~mhepp@r72s22p13.home.nbox.cz] has joined #vserver 09:54:44>> nalfein [~gaertner@212.68.83.129] has quit [Quit: Serverwechsel] 10:23:26>> virtuoso [~s0t0na@207ppp11.telegraph.spb.ru] has quit [Ping timeout: 480 seconds] 10:47:31>> virtuoso [~s0t0na@77ppp10.telegraph.spb.ru] has joined #vserver 10:54:34>> virtuoso_ [~s0t0na@172ppp11.telegraph.spb.ru] has joined #vserver 10:59:47>> virtuoso [~s0t0na@77ppp10.telegraph.spb.ru] has quit [Ping timeout: 480 seconds] 11:01:47>> gst [~gst@eris.sysfrog.org] has joined #vserver 11:04:28>> mlgd [~mlgd@194.206.160.208] has joined #vserver 11:04:33< mlgd> hello 11:09:56>> hiaslboy_zZ is now known as hiaslboy 11:12:20>> Doener_ [~doener@pD9E12C8B.dip.t-dialin.net] has joined #vserver 11:17:43< mlgd> hello doener 11:19:27>> Doener` [~doener@pD9E1236D.dip.t-dialin.net] has quit [Ping timeout: 480 seconds] 11:24:30>> mhepp [~mhepp@r72s22p13.home.nbox.cz] has quit [Quit: mhepp caught signal: Autobus error] 11:24:50>> mhepp [~mhepp@r72s22p13.home.nbox.cz] has joined #vserver 11:29:07>> mlgd [~mlgd@194.206.160.208] has quit [Quit: mIRC.fr Dernier cri !! mirc traduit entièrement en français ! Disponible sur http://www.oubah.com ! n'hésitez pas !] 11:43:35>> virtuoso [~s0t0na@39ppp10.telegraph.spb.ru] has joined #vserver 11:50:32>> virtuoso_ [~s0t0na@172ppp11.telegraph.spb.ru] has quit [Ping timeout: 480 seconds] 11:56:01>> nalfein [~gaertner@212.68.83.129] has joined #vserver 12:01:58>> noel [~noel@pD9FFEB37.dip.t-dialin.net] has joined #vserver 12:03:53>> virtuoso_ [~s0t0na@49ppp10.telegraph.spb.ru] has joined #vserver 12:09:02>> virtuoso [~s0t0na@39ppp10.telegraph.spb.ru] has quit [Ping timeout: 480 seconds] 12:09:48>> virtuoso_ [~s0t0na@49ppp10.telegraph.spb.ru] has quit [Read error: Connection reset by peer] 12:10:56>> virtuoso1 [~s0t0na@131ppp2.telegraph.spb.ru] has joined #vserver 12:17:02>> virtuoso1 [~s0t0na@131ppp2.telegraph.spb.ru] has quit [Read error: Connection reset by peer] 12:18:14>> virtuoso [~s0t0na@32ppp2.telegraph.spb.ru] has joined #vserver 13:04:12>> sladen [paul@starsky.19inch.net] has quit [Ping timeout: 480 seconds] 13:06:03>> virtuoso [~s0t0na@32ppp2.telegraph.spb.ru] has quit [Ping timeout: 480 seconds] 13:24:50>> infowolfe [~infowolfe@pcp04891550pcs.frnkmd01.md.comcast.net] has joined #vserver 13:31:55>> Bertl_zZ is now known as Bertl 13:32:15< Bertl> morning everyone! 13:32:48< mcp> moin herbert 13:34:38< Bertl> morning mcp! 13:54:17>> hiaslboy [matthias@e-16.vc-graz.ac.at] has quit [Ping timeout: 480 seconds] 14:04:57>> beezle-zZz [~beezle@pD953C428.dip.t-dialin.net] has quit [Ping timeout: 480 seconds] 14:20:41>> hiaslboy [matthias@e-16.vc-graz.ac.at] has joined #vserver 14:30:59>> Bertl is now known as Bertl_oO 14:58:14>> Bertl_oO is now known as Bertl 15:07:07>> hiaslboy [matthias@e-16.vc-graz.ac.at] has quit [Read error: Connection reset by peer] 15:39:52>> mhepp [~mhepp@r72s22p13.home.nbox.cz] has quit [Remote host closed the connection] 15:48:09>> mlgd [~mlgd@194.206.160.208] has joined #vserver 15:48:12< mlgd> hello 15:53:05>> yarihm [~yarihm@217-162-206-157.dclient.hispeed.ch] has quit [Ping timeout: 480 seconds] 15:55:04>> yarihm [~yarihm@217-162-206-157.dclient.hispeed.ch] has joined #vserver 16:06:50< shuri> morning 16:19:13< Bertl> morning shuri! 16:23:15>> camauro [camauro@paris.ethz.ch] has joined #vserver 16:23:21< Bertl> hi camauro! 16:23:31< camauro> hey everyone 16:23:47< camauro> oh, sorry Bertl, it's me, yarihm ... 1 sec pls 16:23:55>> camauro is now known as yarihm2 16:23:59< yarihm2> :) 16:24:24< yarihm2> ... yes, i tend to answer bots - just for the record 16:24:35< Bertl> good to know ;) 16:25:16< yarihm2> Bertl: yeah :) but you are lame, you should set your bot to say hello not the second one joins ... then i wouldn't even have noticed that it was a bot :) 16:25:49< yarihm2> however ... i still have my problem with the bind9-package on a debian-vserver 16:26:03< Bertl> I'm working on the details, especially the typos in the names ;) 16:26:30< yarihm2> it seems to be a problem that happens to others too, but not to enough that it was a widely discussed issue ... 16:26:34< yarihm2> Bertl: sounds good 16:26:35< yarihm2> :) 16:26:57< Bertl> well, the question is, what exactly is the problem at all? 16:27:09< yarihm2> Bertl: now that you ask ... 16:27:33< yarihm2> named: -u not supported on Linux kernels older than 2.3.99-pre3 or 2.2.18 when using threads 16:27:46< yarihm2> but> 16:27:48< yarihm2> com:/# uname -r 16:27:49< yarihm2> 2.4.25-vs1.26 16:28:21< Bertl> fine, but you will agree, that obviously bind is wrong here, right? 16:28:42< yarihm2> now ... i remember having tested it on the host-instance of the OS with the same problem. is there a way to contact paul sladen, it might be an issue with his package maybe - no accusation 16:29:59< yarihm2> Bertl: sure sure! it obviously is ... what shall i say? www.paul.sladen.org is down at the moment (it wasn't 10 mins ago i think) so i can't look up the contact but i'm unsure whether i should bother him with this anyway 16:30:26< Bertl> yeah, paul said he has to do some hardware fixing ... 16:31:16< yarihm2> you mean that's why the site is down or that's why i shouldn't bother with this? 16:32:03< Bertl> no, I'd say send him an email ... but I'd also say, try to investigate this issue ... 16:32:23< yarihm2> yeah ... first investigate and then send mail ... 16:32:30< yarihm2> -> always better ;) 16:32:45< Bertl> as we concluded, bind is wrong here, so maybe use strace to find out why it thinks that the kernel is too old ;) 16:32:56< yarihm2> though i have no clue why bind produces this error ... 16:33:46< yarihm2> Bertl: that sounds very good ... i'm just not a coder ... strings is the prog that filters out ascii-text from binary-code, no? you gotta know, i'm not a very skilled user 16:34:20< Bertl> strace is a tool to investigate the system calls a program does ... 16:34:45< Bertl> read the man page and use it with -fF -s 10000 on the named 16:35:06< yarihm2> Bertl: ok ... lemme see (to me "investigate" means "read the manpage, read the FAQ, ask google, look in mailinglist-archives") 16:36:52>> monrad [~monrad@213083190226.sonofon.dk] has joined #vserver 16:39:56< Bertl> hello monrad! 16:40:15< yarihm2> Bertl: ok ... did so, now examining the output ... 16:40:18< monrad> hi 16:43:23>> serving [~serving@213.186.191.31] has joined #vserver 16:43:35< Bertl> greetings serving? 16:45:28< yarihm2> Bertl: is there something i should look for in particular? there are several calls of uname but i can't tell what they return 16:45:52< yarihm2> Bertl: at least not what they return for the version-number of the kernel 16:46:02< Bertl> any chance to upload the output somewhere? 16:46:02< yarihm2> 119 uname({sys="Linux", node="com", ...}) = 0 16:46:28< yarihm2> Bertl: i think so ... one mom pls (its rather long though( 16:48:54< yarihm2> https://limes2.dnsalias.net/namestrace 16:50:27< yarihm2> Bertl: it seems like the chroot-command would work, there is no error-code after this system-call 16:52:15< Bertl> Not Found 16:52:15< Bertl> The requested URL /namestrace was not found on this server. 16:52:17< Bertl> Apache/1.3.27 Server at limes2.underdogs.ch Port 443 16:52:21< mlgd> hello bertl 16:52:30>> gst [~gst@eris.sysfrog.org] has quit [Ping timeout: 480 seconds] 16:52:35< yarihm2> Bertl: huh? 16:52:52< yarihm2> Bertl: ah, sorry, it's namedstrace, not namestrace 16:53:03>> mlgd [~mlgd@194.206.160.208] has quit [Quit: mIRC.fr Dernier cri !! mirc traduit entièrement en français ! Disponible sur http://www.oubah.com ! n'hésitez pas !] 16:53:06< yarihm2> https://limes2.dnsalias.net/namedstrace 16:53:12>> mlgd [~mlgd@194.206.160.208] has joined #vserver 16:53:17< mlgd> hello bertl 16:53:25< Bertl> hi mlgd! hi mlgd! 16:53:37< mlgd> :) 16:53:55< mlgd> yarihm2 : do you have installed vserver on Debian with kernel 2.4.25 ? 16:54:02< yarihm2> mlgd: yeah 16:54:07< mlgd> how ? 16:54:22< mlgd> Debian sarge ? 16:54:29< yarihm2> mlgd: uhm ... patch the kernel, install util-vserver ... 16:54:32< yarihm2> mlgd: no, woody 16:54:39< mlgd> :( 16:54:44< yarihm2> mlgd: why? 16:54:45< mlgd> i patch the kernel 16:54:50< mlgd> i compile the kernel 16:55:05< mlgd> but when i install the package, i have 2 errors 16:55:12< mlgd> depmod: *** Unresolved symbols in /lib/modules/2.4.26+ctx/kernel/fs/ext2/ext2.o 16:55:12< mlgd> depmod: *** Unresolved symbols in /lib/modules/2.4.26+ctx/kernel/fs/ext3/ext3.o 16:55:41< mlgd> i have tryed with kernel 2.4.26, it's the same think for 2.4.25 16:56:14< Bertl> the debian patch is broken ... 16:56:24< mlgd> bertl : what ? 16:56:38< yarihm2> mlgd: i use the patch from linux-vserver.org 16:56:43< mlgd> it's the reason 16:57:16< mlgd> what's the version ? 16:57:26< mlgd> 1.3.9 16:58:01< yarihm2> Bertl: gnn ... there was a thread on the vserver-mailing-list but it is on paul's machine ... grrr ... 16:58:07< Bertl> there is a debian aptch for 1.39? 16:58:24< Bertl> yarihm2: there are two archives of the ml 16:59:12>> micah_ [micah@micha.hampshire.edu] has joined #vserver 16:59:49< Bertl> welcome micah_! 17:00:11< Bertl> okay, I'm back in a few minutes, just need to get something to drink ... 17:00:23>> Bertl is now known as Bertl_AFK 17:03:48< yarihm2> ok, gotta leave, next lecture ... cu l8ers 17:03:58< yarihm2> Bertl_AFK: thanx for the help ... 17:04:00>> yarihm2 [camauro@paris.ethz.ch] has quit [Quit: leaving] 17:06:20>> micah [micah@micha.hampshire.edu] has quit [Ping timeout: 480 seconds] 17:06:25< mlgd> yarihm2 : i have error that i execute the patch from linux-vserver.org 17:09:32>> Bertl_AFK is now known as Bertl 17:10:02< Bertl> mlgd: hmm, what patch? 17:10:21< Bertl> and especially ontop of what kernel? 17:12:11< mlgd> this : http://www.13thfloor.at/vserver/s_release/v1.27/patch-2.4.26-vs1.27.diff 17:12:38< Bertl> you are not trying to apply this to a debian kernel, right? 17:13:14< mlgd> i try 17:13:34< Bertl> hmm, why that? 17:14:12< mlgd> which then? 17:14:14< Bertl> I put updated debian patches here ... 17:14:16< Bertl> http://vserver.13thfloor.at/Stuff/Debian/ 17:14:34< Bertl> they are basically untested, as the debian maintainer doesn't test them :( 17:14:41< Shotygun> *trying to tease Bert* Bert when you gonna fix up Fedora kernel packages? =D 17:15:03< Bertl> Shotygun: right after I did the gentoo kernel ;) 17:15:10< Shotygun> =) 17:15:22< Bertl> http://vserver.13thfloor.at/Stuff/Debian/patch-2.4.26-1-vs1.27.diff 17:15:22>> infowolfe [~infowolfe@pcp04891550pcs.frnkmd01.md.comcast.net] has quit [Ping timeout: 480 seconds] 17:15:24>> micah [micah@micha.hampshire.edu] has joined #vserver 17:15:26< Bertl> http://vserver.13thfloor.at/Stuff/Debian/delta-2.4.26-vs1.27-vs1.27.1.diff 17:15:40< Shotygun> I think you are being too kind with them, being distro-specific is the last thing you should do. 17:15:44< Bertl> (those two patches should work for debian) 17:16:01< mlgd> i try now 17:16:22< Bertl> Shotygun: you've read my mail, what shall I say more ... 17:16:31< Shotygun> Indeed.. 17:17:17< Bertl> maybe there _is_ a point, when debian folks are pissed off, and either it get's maintained or they start using the vanilla kernels ... 17:17:37>> micah_ [micah@micha.hampshire.edu] has quit [Ping timeout: 480 seconds] 17:18:18< Shotygun> I wonder how the vserver patch will go over gentoo's, they got nice kernel package made up but unfortunately I havn't got the time to deal with anything right now, I'm now fighting with sales people getting myself new cabinet over the ISP.. 17:18:35< mlgd> bertl : it's a little patch 17:18:54< Shotygun> Sometimes sales men can be a real ... 17:19:01< mlgd> bertl : must I apply another patch? 17:19:12< Bertl> mlgd: two patches 17:19:32< Bertl> a big one and a little one, in the order I pasted them here 17:19:55< Bertl> (means first the big one, then the little one, although it doesn't really matter) 17:20:04< mlgd> oups: sorry i apply the last 17:20:07< mlgd> only 17:20:40< mlgd> ;) 17:20:41< Bertl> mlgd: and this is the stable branch, not the development ... 17:21:34< mlgd> bertl: very good 17:21:38< mlgd> i try 17:24:15< Shotygun> Bert OOT: Any ideas about a way that I can make a linux/*bsd firewall/router and have a specific set of rules locked over a virtual device/alias? Or more like what I'm trying to say this any ideas how can I offer users to customize rules at the firewall that will apply only over their own machines? 17:25:14< Bertl> what about separate chains? 17:25:26< Bertl> (or tables as this is called with iptables ;) 17:26:07< Shotygun> Yeah tables =) I never really messed with sepearted chains/tables because I had no use for them, can I allocate input/output table per virtual device? 17:26:33< Shotygun> I tried to allocate a rule per virtual device using -i over the default INPUT table and it refused to accept virtuals. 17:26:45< Bertl> no, but you can make a table for each customer, add a rule to select the packages and process the customer table 17:28:53< Shotygun> To create predefined rules over the gui? 17:29:19< mlgd> bertl : the patch has been installed correctly 17:29:28< mlgd> bertl : i try to compile 17:34:42< rmoriz> hi 17:35:19< rmoriz> Bertl: is there an ETA for working ipv6 within a vserver context? 17:35:33< Bertl> hmm, in 2.4 or 2.6? 17:35:47< rmoriz> both :) 17:36:23< Bertl> well, something completely different, do you know my donations page? 17:36:29< Bertl> 8-) 17:36:51< rmoriz> Bertl: yes. but do you know my personal account balance? :< 17:37:08< Bertl> no, not yet ... 17:37:39< rmoriz> it's below 0 ;/ 17:37:48< Bertl> to be honest, there are a dozen other important things atm, and it's somewhere on position 22 or 23 on my todo list ... 17:38:36< rmoriz> sorry. it was not ment aggressive etc. just a question :) 17:39:02< Bertl> if somebody is interested in working on the next generation networking, then I'm here to help ... 17:39:33< Bertl> but as I see it, it will take about 4-6month until I get around doing this ... 17:40:12< Bertl> might be sooner, if I suddenly discover my ipv6 side ;) 17:40:38< rmoriz> i managed to get an native ipv6 uplink for my box 17:43:09< Bertl> sounds good ... 17:46:01< Bertl> I'd suggest you try to raise the issue on the ml, this way I can state my position, and maybe somebody is interested in sponsoring ipv6 development ... which could easily repriortize my list ... 17:47:00< albeiro> how much ? 17:47:46< Bertl> hmm, you mean how much for ipv6 support? 17:50:38< albeiro> yes, just asking (don't have so much , but i wonder) 17:51:26< Bertl> well, basically sponsorship is about freeing up some time I otherwise have to run after some job to earn my living ... 17:52:01>> gst [~gst@wireless.sysfrog.org] has joined #vserver 17:52:25< Bertl> so I have no bloody idea how long it will take, espeically as it is interwoven with the other planned network changes ... 17:52:29< Bertl> hi gst! 17:53:10< albeiro> ok, i wish you someone will start sponsor it 17:53:31< Bertl> thank you ... 17:54:46< albeiro> you could make notice it vserver site / ml 17:55:32< Bertl> yeah, thought about that, maybe I should really do that ... 17:56:02< gst> hi 17:56:08< albeiro> heh, you will not be heard sitting quietly 17:56:47< Bertl> albeiro: right, I'll post something ... 18:09:58>> maharaja [maja@ipax.tk] has quit [Remote host closed the connection] 18:11:45< Bertl> gst: do you have any questions? 18:12:10< Bertl> (if not, feel free to lurk around as long as you want) 18:15:53< mlgd> bye 18:15:56>> mlgd [~mlgd@194.206.160.208] has quit [Quit: mIRC.fr Dernier cri !! mirc traduit entièrement en français ! Disponible sur http://www.oubah.com ! n'hésitez pas !] 18:15:57< Bertl> cya 18:27:19>> taxcollector [~taxcollec@192.16.167.161] has joined #vserver 18:27:31< Bertl> greetings taxcollector! 18:27:54< taxcollector> Salutations! 18:30:06>> maharaja [maja@ipax.tk] has joined #vserver 18:30:15< Bertl> hi maja! 18:33:37< Shotygun> Bert now you added random greeting to your evil on join script? 18:34:42< Shotygun> Oh damn you wrote maja and not maharaja, perhaps it's a sophisticated script with soundex support.. hmm.. =D 18:35:05< Bertl> hello Shotygun! this is the on-join script, please state thy preference: would you a) like to be greeted on every join, b) greeted only once a day, or c) wait for a personal greeting? 18:35:21 * Shotygun thinks 18:35:38< Shotygun> Tough decision, no d) ? 18:36:09< Bertl> d) will be implemented when a), b) and c) isn't sufficient ... 18:36:48 * Shotygun presses ctrl+c and puts an note in the suggestion box to add 'd)'. 18:37:36< Bertl> hello Shotygun! this is the on-join script, please state thy preference: would you a) like to be greeted on every join, b) greeted only once a day, or c) wait for a personal greeting, or d) be kicked on sight ;)? 18:38:44< Shotygun> *mumble* *being forced to click on 'a' and satisfy Bert's evil masterplan* *clicks 'a'* 18:39:18< Bertl> hello Shotygun! this is your first greeting after you selected a) 18:39:35< Shotygun> I demand justice! This is not user-friendly behaviour! *annoyed* 18:44:38< Shotygun> bbl 18:53:43< Bertl> okay .. leaving now, will be back later ... 18:53:48>> Bertl is now known as Bertl_oO 19:04:17>> Netsplit jupiter.oftc.net <-> europa.oftc.net quits: noel 19:05:32>> Netsplit over, joins: noel 19:18:10< gst> Bertl_oO: tnx, no questions yet :] 19:34:48>> mlgd [~mlgd@194.149.164.113] has joined #vserver 19:35:08< mlgd> bertl : it's all right with this patch on kernel 2.4.26 19:59:12>> taxcollector [~taxcollec@192.16.167.161] has quit [Quit: ] 20:11:13< eyck> em, 20:11:15< eyck> ifiter_ioctl.c:236: REQUIRE(iter->pos < (unsigned int) iter->ifc.ifc_len) failed 20:11:17< eyck> ? 20:11:27< eyck> ( nocapset bind9 inside vserver ) 20:18:06< eyck> with binary from deb http://www.paul.sladen.org/debian woody/updates main 20:41:27< mlgd> how to configure ssh on root server and virtual server ? 20:42:03>> yarihm [~yarihm@217-162-206-157.dclient.hispeed.ch] has quit [Ping timeout: 480 seconds] 20:44:01>> yarihm [~yarihm@217-162-206-157.dclient.hispeed.ch] has joined #vserver 20:47:54< eyck> mlgd: preferably, use different port for root server, or be very carefull and bind root server's sshd only to one IP 20:51:52< mlgd> and apache ? 20:52:30< eyck> mlgd: there's no reason to keep apache on root server... 20:52:35< eyck> why would you want to? 20:52:42< eyck> root server is supposed to be empty. 20:53:13< eyck> empty - the opposite of full. ( (c) Emanuelle Jean-Baptiste Zorg ) 20:54:28< mlgd> eyck :) 20:54:59< mlgd> but how configure for each vserver with only one public IP ? 20:55:48< eyck> with IPROOT="only.one.ip" 21:10:43< mlgd> thank's, i try 21:16:07< mlgd> bye 21:16:09>> mlgd [~mlgd@194.149.164.113] has quit [Quit: ] 21:16:17< eyck> bye bye 21:16:22< eyck> what was that all about? 22:00:43< Doener_> who knows... but i wonder if he just pasted that line into his .conf file... 22:10:52>> pflanze [~chris@gate.wyona.com] has joined #vserver 22:10:55< pflanze> hello 23:22:21>> taxcollector [~taxcollec@192.16.167.161] has joined #vserver 23:31:10>> Bertl_oO is now known as Bertl 23:31:26< Bertl> evening everyone! 23:31:37< taxcollector> Evening! 23:33:19< micah> oh know, its the tax collector 23:33:25< micah> evening Bertl! 23:35:07< Bertl> hi micah! 23:35:32< Bertl> hello Ryan! 23:35:46< taxcollector> Hey Herbert! 23:38:07>> hiaslboy [matthias@e-16.vc-graz.ac.at] has joined #vserver 23:38:09>> monrad [~monrad@213083190226.sonofon.dk] has quit [Quit: Leaving] 23:38:58< Bertl> evening hiaslboy! 23:39:28< hiaslboy> Hi Bertl :-) 23:42:57< Bertl> taxcollector: thanks again for the proof reading so far ... I hope I can capitalise on your expertise for some time (before you walk away from linux-vserver ;) 23:43:27< taxcollector> For sure; glad to be of service. Hopefully I will be actively using linux-vserver for some time 23:43:50< Bertl> that of course would be the win/win we are all looking for, right? 23:44:00< taxcollector> :) 23:44:55< Bertl> what are your plans regarding linux-vserver? (just realized that I didn't even ask you, right?) 23:45:27< Bertl> (otoh maybe I just forgot ... ) 23:45:35< taxcollector> Nope, you hadn't asked yet... 23:45:59< taxcollector> Mainly we want to permit developers to more easily deploy their web services... 23:46:21< taxcollector> it can get ungainly when a central httpd.conf has to be edited and maintained by the sys admins 23:46:36< taxcollector> (In fact you mention this particular reason in your paper.) 23:46:52< Bertl> sounds great, planet lab is doing so, and IIRC possibility forge too? 23:47:35< taxcollector> Cool; I hadn't heard of planetlab before now. Just checked out their web page. 23:47:51< Bertl> actually the web isolation is one of the better tested things ... I guess 23:48:34< Bertl> there was a time, where linux-vserver was used for only this purpose (to separate the administration of web space) 23:48:47< taxcollector> It will also be nice for developers to be able to install abitrary rpms and do simple admin stuff that they would usually have to bug an admin to do 23:49:28< Bertl> sure, thing like apache plugins and database stuff (if the site is DB backed) 23:49:35< taxcollector> Yup. 23:50:00< Bertl> btw, the 13thfloor.at is such a linux-vserver (has ever been actually ;) 23:50:20< taxcollector> Wow; I didn't know that. 23:50:37< Bertl> that really does ease my administration a lot ... 23:51:08< Bertl> (for example when movin from one physical machine to another) 23:52:09< taxcollector> I hope to provide a solid vserver patch for the RHEL kernel as that is what is required here... 23:52:57< taxcollector> I looked at freevps, but preferred the community involvement here 23:53:20< taxcollector> and appeared that the patch was smaller too 23:53:31< Bertl> although I'm not convinced that distribution specific patches are a good way, I can assure you that I'm willing to help where help is needed 23:53:49< taxcollector> No, I agree with you there... 23:53:59< taxcollector> it is somewhat of a forced requirement 23:54:25< Bertl> hmm, hopefully not for service/support reasons? 23:54:33< taxcollector> I'd prefer to use 2.6.x but there is that parallel file system we are using that requires it 23:54:58< taxcollector> Nah, if it was just support I would just reboot into a supported kernel if something was wrong 23:55:01< Bertl> ah the 'proprietary' module/fs you where talking about ... 23:55:06< taxcollector> Right 23:55:30< Bertl> not all stuff is lost in the void of my mind ;) 23:55:35< taxcollector> :) 23:59:56< Bertl> okay, guess I'll call it a day ... --- Log closed ¶ro maj 12 00:00:08 2004