The Linux Questions Thread: a bunch of pitfalls, but technically it's possible

The Something Awful Forums > Discussion > Serious Hardware/Software Crap > The Linux Questions Thread: a bunch of pitfalls, but technically it's possible

«‹›1026 »

Sergeant Hobo: Jan 7, 2007; Zhu Li, do the thing!

I have BIND (using only caching DNS functions) and Shorewall on my gateway box (yes, after all this time, I'm finally back to working on it). If I connect directly into it via SSH, I can successfully do the following:

code:

]# host [url]www.google.com[/url] 127.0.0.1
Using domain server:
Name: 127.0.0.1
Address: 127.0.0.1#53
Aliases:

[url]www.google.com[/url] is an alias for [url]www.l.google.com.[/url]
[url]www.l.google.com[/url] has address 64.233.167.104
[url]www.l.google.com[/url] has address 64.233.167.99
[url]www.l.google.com[/url] has address 64.233.167.147

However, if I connect another computer on the internal side, I can get an IP address via DHCP but I cannot get to Google, either by https://www.google.com or http://64.233.167.104.. It sounds like this is an error in BIND rather than Shorewall so here's my named.conf:

code:

//
// /etc/named.conf
//

options {
        directory "/var/named";
        pid-file "/var/run/named/named.pid";
        auth-nxdomain yes;
        datasize default;
        allow-recursion { 127.0.0.1; };
// Uncomment these to enable IPv6 connections support
// IPv4 will still work
        listen-on { 127.0.0.1; };
//      listen-on-v6 { any; };
};

zone "localhost" IN {
        type master;
        file "localhost.zone";
        allow-update { none; };
        allow-transfer { any; };
};

zone "0.0.127.in-addr.arpa" IN {
        type master;
        file "127.0.0.zone";
        allow-update { none; };
        allow-transfer { any; };
};

zone "." IN {
        type hint;
        file "root.hint";
};


//zone "example.org" IN {
//      type slave;
//      file "example.zone";
//      masters {
//              192.168.1.100;
//      };
//      allow-query { any; };
//      allow-transfer { any; };
//};

logging {
        channel xfer-log {
                file "/var/log/named.log";
                print-category yes;
                print-severity yes;
                print-time yes;
                severity info;
        };
        category xfer-in { xfer-log; };
        category xfer-out { xfer-log; };
        category notify { xfer-log; };
};

I should also note that I'm on Arch and I followed this guide. Any help to fix this is appreciated (after which the fun with Squid can begin :hellyeah:

# ? Mar 21, 2008 22:14

Adbot: ADBOT LOVES YOU

# ? Apr 29, 2024 17:30

covener: Jan 10, 2004; You know, for kids!

Sergeant Hobo posted:

However, if I connect another computer on the internal side, I can get an IP address via DHCP but I cannot get to Google, either by https://www.google.com or http://64.233.167.104.. It sounds like this is an error in BIND rather than Shorewall so here's my named.conf:

Backwards? If you only had a bind problem, http://64.233.167.104 would work.

# ? Mar 21, 2008 23:48

Sergeant Hobo: Jan 7, 2007; Zhu Li, do the thing!

So I'm guessing I'm missing something in Shorewall?

# ? Mar 22, 2008 00:05

Alowishus: Jan 8, 2002; My name is Mud

Well you may have two problems... perhaps get things working by IP first to take BIND out of the equation.

But the most obvious thing to me is that you have BIND configured to only listen on 127.0.0.1 Your other computer isn't going to be able to talk to it that way.

Edit: and as for Shorewall, are you sure that IP forwarding is enabled in the kernel? Shorewall will do it for you if you have the right setting in shorewall.conf, otherwise you have to do it yourself and then set it permanently /etc/sysctl.conf.

To check:

code:

cat /proc/sys/net/ipv4/ip_forward

You want to see '1'.

Alowishus fucked around with this message at 00:09 on Mar 22, 2008

# ? Mar 22, 2008 00:07

Sergeant Hobo: Jan 7, 2007; Zhu Li, do the thing!

Alowishus posted:

Edit: and as for Shorewall, are you sure that IP forwarding is enabled in the kernel? Shorewall will do it for you if you have the right setting in shorewall.conf, otherwise you have to do it yourself and then set it permanently /etc/sysctl.conf.

To check:
code:
cat /proc/sys/net/ipv4/ip_forward
You want to see '1'.

I know I enabled IP_FORWARDING in shorewall.conf. Just to be sure, cat /proc/sys/net/ipv4/ip_forward does give back 1.

quote:

But the most obvious thing to me is that you have BIND configured to only listen on 127.0.0.1 Your other computer isn't going to be able to talk to it that way.

OK, that makes sense. I basically need to change it to listen on both itself and the external interface then? I've never configured BIND before much less anything even remotely related to DNS.

# ? Mar 22, 2008 00:20

Alowishus: Jan 8, 2002; My name is Mud

Sergeant Hobo posted:

OK, that makes sense. I basically need to change it to listen on both itself and the external interface then?

It needs to listen on your *internal* interface, not external. I assume this is a two-NIC machine, right? It doesn't even have to listen on 127.0.0.1, but having it do so surely helps with troubleshooting. But also recall that Shorewall treats traffic from the firewall itself ($FW) completely differently than traffic coming from an internal network... so behavior on the firewall itself isn't always a good indicator of anything.

Anyway... change your listen-on and allow-recursion directives to include your internal IP, like:

code:

allow-recursion { 127.0.0.1; 192.168.1.1; };
listen-on { 127.0.0.1; 192.168.1.1; };

(Of course I'm making assumptions about your internal network numbering... adjust accordingly.)

Alowishus fucked around with this message at 00:38 on Mar 22, 2008

# ? Mar 22, 2008 00:36

Sergeant Hobo: Jan 7, 2007; Zhu Li, do the thing!

OK, now when I run nslookup in Windows on the internal interface (you are right about the machine with BIND having 2 NICs), it says:

"UnKnown can't find https://www.google.com: Query refused"

Time to go double-check my Shorewall rules file?

EDIT: Or would it be better at this point to go with something like dnsmasq? I only really chose BIND cause I thought it was "the best" for lack of a better explanation. At a glance, it almost looks like dnsmasq is going to work better for me for the scope of what I'm doing rather than DHCPD + BIND.

Sergeant Hobo fucked around with this message at 01:07 on Mar 22, 2008

# ? Mar 22, 2008 00:52

DEAD MAN'S SHOE: Nov 23, 2003; We will become evil and the stars will come alive

More Ubuntu permission fun: xsane won't detect my scanner unless I am root. Naturally this is a pain in the arse. How do I allow user access to this device?

# ? Mar 22, 2008 02:01

Ashex: Jun 25, 2007; These pipes are cleeeean!!!

I had a hardware failure about a month ago, and I finally got the replacement part installed. My problem is that it was the motherboard, I have 4 hard drives, no recollection of what order they were installed in. I had the sata cables number, but I had to pull two drives out to get data off them.

I've since decided to just pull the databases off of it and do a fresh install since everything is out of date now except for them. I booted off a live cd, mounted the root partition to /mnt/root, and did a chroot /mnt/root.

After I got in, I tried to run mysqldump --all-databases, and it spits out an error:

code:

"ERROR 2002 (HY000): Can't connect to local MySQL server though socket '/var/run/mysqld/mysql.sock' (2)"

when I run /etc/init.d/mysql start, there's no output, and when i type ps, I get no output. Anyone have any ideas as to what's going on and the quickest/dirtiest way to recover the mysql databases?

# ? Mar 22, 2008 06:36

Grey Area: Sep 9, 2000; Battle Without Honor or Humanity

I'm playing with chroot, but I can't seem to get it to work.

code:

[root@alfa chroot]# ls -l bin
totalt 772
-rwxr-xr-x 1 root root 786240 22 mar 10.10 bash
[root@alfa chroot]# ldd bin/bash
        libtermcap.so.2 => /lib64/libtermcap.so.2 (0x00000039a6000000)
        libdl.so.2 => /lib64/libdl.so.2 (0x00000039a4800000)
        libc.so.6 => /lib64/libc.so.6 (0x00000039a4400000)
        /lib64/ld-linux-x86-64.so.2 (0x00000039a4000000)
[root@alfa chroot]# ls -l lib64
totalt 3836
-rwxr-xr-x 1 root root   10000 21 mar 12.46 libcom_err.so.2
-rwxr-xr-x 1 root root 1329816 21 mar 12.46 libcrypto.so.6
-rwxr-xr-x 1 root root   30760 21 mar 12.46 libcrypt.so.1
-rwxr-xr-x 1 root root 1687464 21 mar 12.46 libc.so.6
-rwxr-xr-x 1 root root   23360 21 mar 12.46 libdl.so.2
-rwxr-xr-x 1 root root    9472 21 mar 12.46 libkeyutils.so.1
-rwxr-xr-x 1 root root  114352 21 mar 12.46 libnsl.so.1
-rwxr-xr-x 1 root root   53880 30 nov 04.44 libnss_files-2.5.so
lrwxrwxrwx 1 root root      19 21 mar 12.46 libnss_files.so.2 -> libnss_files-2.5.so
-rwxr-xr-x 1 root root  141344 21 mar 12.46 libpthread.so.0
-rwxr-xr-x 1 root root   92736 21 mar 12.46 libresolv.so.2
-rwxr-xr-x 1 root root   95464 21 mar 12.46 libselinux.so.1
-rwxr-xr-x 1 root root  247528 21 mar 12.46 libsepol.so.1
-rwxr-xr-x 1 root root   15584 22 mar 10.07 libtermcap.so.2
-rwxr-xr-x 1 root root   18152 21 mar 12.46 libutil.so.1
[root@alfa chroot]# chroot . /bin/bash
chroot: cannot run command `/bin/bash': No such file or directory

This is on CentOS 5.1 with kernel 2.6.18-53.1.13.el5xen. SELinux is off, so it can't be that

# ? Mar 22, 2008 10:54

Mr. Eric Praline: Aug 13, 2004; I didn't like the others, they were all too flat.

I'm probably being too simplistic here, but try

chroot /full/path/to/chroot/ /bin/bash

# ? Mar 22, 2008 17:30

Grey Area: Sep 9, 2000; Battle Without Honor or Humanity

chryst posted:

I'm probably being too simplistic here, but try

chroot /full/path/to/chroot/ /bin/bash

No good. Here is the output of mount if it helps.

code:

[root@alfa ~]# mount
/dev/md0 on / type ext3 (rw,acl,user_xattr)
proc on /proc type proc (rw)
sysfs on /sys type sysfs (rw)
devpts on /dev/pts type devpts (rw,gid=5,mode=620)
/dev/mapper/llvg0-lvvar on /var type ext3 (rw,acl,grpquota,user_xattr,usrquota)
/dev/mapper/llvg0-lvhome on /home type ext3 (rw,acl,grpquota,user_xattr,usrquota)
tmpfs on /dev/shm type tmpfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
proc on /home/chroot/proc type proc (rw)

I'm trying to chroot into /home/chroot

Grey Area fucked around with this message at 18:27 on Mar 22, 2008

# ? Mar 22, 2008 18:20

covener: Jan 10, 2004; You know, for kids!

Grey Area posted:

This is on CentOS 5.1 with kernel 2.6.18-53.1.13.el5xen. SELinux is off, so it can't be that

your missing the ELF loader, ld-linux*.so. (strace probably shows execve returning -1/ENOENT, man execve fills you in on the rest). Your ldd-vs-ls hints at this too.

# ? Mar 22, 2008 19:44

Grey Area: Sep 9, 2000; Battle Without Honor or Humanity

covener posted:

your missing the ELF loader, ld-linux*.so. (strace probably shows execve returning -1/ENOENT, man execve fills you in on the rest). Your ldd-vs-ls hints at this too.

Oh drat, I was sure I had checked that. Thanks a lot.

What I'm trying to do is run do chrooted SFTP using rssh. I'm following this guide, and it even mentions that I need the ld-loader, but I managed to miss it... :facepalm:

Anyway, I can now chroot as root, but when I try to SFTP in as a user with rssh as shell, it opens the root directory (i.e. /home/chroot in actuality) and I get this in /var/log/messages:

code:

Mar 22 22:47:44 alfa rssh[23491]: setting log facility to LOG_USER
Mar 22 22:47:44 alfa rssh[23491]: allowing scp to all users
Mar 22 22:47:44 alfa rssh[23491]: allowing sftp to all users
Mar 22 22:47:44 alfa rssh[23491]: setting umask to 027
Mar 22 22:47:44 alfa rssh[23491]: chrooting all users to /home/chroot
Mar 22 22:47:44 alfa rssh[23491]: chroot cmd line: /usr/libexec/rssh_chroot_helper 2 \
"/usr/libexec/openssh/sftp-server"
Mar 22 20:47:44 alfa rssh_chroot_helper[23491]: new session for jrsshtest, UID=815
Mar 22 20:47:44 alfa rssh_chroot_helper[23491]: user's home dir is /home/jrsshtest
Mar 22 20:47:44 alfa rssh_chroot_helper[23491]: couldn't find /home/jrsshtest in chroot jail
Mar 22 20:47:44 alfa rssh_chroot_helper[23491]: chrooted to /home/chroot
Mar 22 20:47:44 alfa rssh_chroot_helper[23491]: changing working directory to / (inside jail)

(There is a problem with timezones there, but I'll fix that later.) But

code:

[root@alfa chroot]# pwd
/home/chroot
[root@alfa chroot]# ls -ld home
drwxr-xr-x 3 root root 4096 21 mar 13.03 home
[root@alfa chroot]# ls -l home
totalt 4
drwxr-xr-x 2 jrsshtest jrsshtest 4096 21 mar 13.03 jrsshtest

So I don't see why rssh can't find the /home/jrsshtest directory.
I can navigate to the home folder just fine using sftp, but it doesn't go directly to $HOME.

/home/chroot/etc/passwd:

code:

root:x:0:0:root:/root:/bin/bash
jrsshtest:x:815:815::/home/jrsshtest:/usr/bin/rssh

edit: fixed table-breaking syslog line.

# ? Mar 22, 2008 22:23

Sergeant Hobo: Jan 7, 2007; Zhu Li, do the thing!

So I ended up trying dnsmasq and it worked. Don't know what was going on but as long as it works. Thanks for all the help.

# ? Mar 23, 2008 01:02

other people: Jun 27, 2004; Associate Christ

Recently when I insert my fancy pants Sandisk EXTREME III SDHC card I am getting ugly errors like this:

code:

[1548915.840211] usb 2-6: new high speed USB device using ehci_hcd and address 5
[1548920.948351] usb 2-6: configuration #1 chosen from 1 choice
[1548920.948568] scsi7 : SCSI emulation for USB Mass Storage devices
[1548920.948680] usb-storage: device found at 5
[1548920.948682] usb-storage: waiting for device to settle before scanning
[1548925.941769] scsi 7:0:0:0: Direct-Access     SanDisk  SDDR-113         1.00 PQ: 0 ANSI: 0
[1548926.275691] sd 7:0:0:0: [sdd] 7959552 512-byte hardware sectors (4075 MB)
[1548926.276562] sd 7:0:0:0: [sdd] Write Protect is off
[1548926.276572] sd 7:0:0:0: [sdd] Mode Sense: 03 00 00 00
[1548926.276578] sd 7:0:0:0: [sdd] Assuming drive cache: write through
[1548926.278683] sd 7:0:0:0: [sdd] 7959552 512-byte hardware sectors (4075 MB)
[1548926.279557] sd 7:0:0:0: [sdd] Write Protect is off
[1548926.279567] sd 7:0:0:0: [sdd] Mode Sense: 03 00 00 00
[1548926.279574] sd 7:0:0:0: [sdd] Assuming drive cache: write through
[1548926.279579]  sdd: sdd1
[1548926.280622] sd 7:0:0:0: [sdd] Attached SCSI removable disk
[1548926.280664] sd 7:0:0:0: Attached scsi generic sg3 type 0
[1548926.280890] usb-storage: device scan complete
[1548926.462545] FAT: Directory bread(block 8192) failed
[1548926.462554] FAT: Directory bread(block 8193) failed
[1548926.462562] FAT: Directory bread(block 8194) failed
[1548926.462569] FAT: Directory bread(block 8195) failed

repeated all the way to:
[1548958.503151] FAT: Directory bread(block 8255) failed

It appears mounted but there is nothing in the directory. If I unmount and remount it starts working normally and I can see all the files and read/write etc.

I don't normally use this card in any other computer but I just plugged it into a macbook (with the same card reader, I only have one that does sdhc) a few times and it mounted fine each time.

Is this some ominous sign that my card is about to fail? Please say no and don't be lying.

# ? Mar 23, 2008 04:51

waffle iron: Jan 16, 2004

Kaluza-Klein posted:

Recently when I insert my fancy pants Sandisk EXTREME III SDHC card I am getting ugly errors like this:
code:
[...]
It appears mounted but there is nothing in the directory. If I unmount and remount it starts working normally and I can see all the files and read/write etc.

I don't normally use this card in any other computer but I just plugged it into a macbook (with the same card reader, I only have one that does sdhc) a few times and it mounted fine each time.

Is this some ominous sign that my card is about to fail? Please say no and don't be lying.

I would copy all the data off of the drive and use fsck on it or badblocks.

# ? Mar 23, 2008 05:03

other people: Jun 27, 2004; Associate Christ

waffle iron posted:

I would copy all the data off of the drive and use fsck on it or badblocks.

Badblocks came back clean, but fsck.msdos does not:

code:

Gohan patrick # fsck.msdos -V -v /dev/usbdrive
dosfsck 2.11 (12 Mar 2005)
dosfsck 2.11, 12 Mar 2005, FAT32, LFN
Checking we can access the last sector of the filesystem
There are differences between boot sector and its backup.
Differences: (offset:original/backup)
  65:01/00, 72:49/4f, 73:4b/20, 74:4f/4e, 75:4e/41, 76:20/4d, 77:44/45
  , 78:34/20, 79:30/20, 80:00/20, 81:00/20
1) Copy original to backup
2) Copy backup to original
3) No action
? 3
Boot sector contents:
System ID "        "
Media byte 0xf8 (hard disk)
       512 bytes per logical sector
     32768 bytes per cluster
      6252 reserved sectors
First FAT starts at byte 3201024 (sector 6252)
         2 FATs, 32 bit entries
    496640 bytes per FAT (= 970 sectors)
Root directory start at cluster 2 (arbitrary size)
Data area starts at byte 4194304 (sector 8192)
    124112 data clusters (4066902016 bytes)
63 sectors/track, 128 heads
      8192 hidden sectors
   7951360 sectors total
Starting check/repair pass.
Checking for unused clusters.
Checking free cluster summary.
Starting verification pass.
Checking for unused clusters.
/dev/usbdrive: 14 files, 14/124112 clusters
Gohan patrick #

I formatted the card with my camera because I thought it would fix that boot sector backup error, but it didn't. Should I copy one over the other? If so, which one?

Or is it safe/better to format the card with mkfs.vfat?

# ? Mar 23, 2008 06:05

Alowishus: Jan 8, 2002; My name is Mud

Sergeant Hobo posted:

So I ended up trying dnsmasq and it worked. Don't know what was going on but as long as it works. Thanks for all the help.

Awesome... simplicity wins!

Sorry it was such a process.

# ? Mar 23, 2008 17:32

Ashex: Jun 25, 2007; These pipes are cleeeean!!!

Can someone verify real quick the proper way to chroot into a system?
Is it such:

mount -t proc proc /chroot/proc
mount --bind /dev /chroot/dev
chroot /chroot /bin/bash

# ? Mar 23, 2008 17:46

Sergeant Hobo: Jan 7, 2007; Zhu Li, do the thing!

Alowishus posted:

Awesome... simplicity wins! Sorry it was such a process.

No problem, it was mostly learning for me. I (re-)learned the KISS principle so yeah.

# ? Mar 23, 2008 17:48

Mr. Eric Praline: Aug 13, 2004; I didn't like the others, they were all too flat.

Kaluza-Klein posted:

Or is it safe/better to format the card with mkfs.vfat?

Safer and better. In fact, you should try fsck.vfat, and attempt to mount as vfat before you format stuff. Just to make sure that's not the problem. It's been a long time since I've used FAT, and can't recall the differences offhand, but I do remember weirdness with semi-compatibility similar to yours before I discovered VFAT.

# ? Mar 23, 2008 18:45

Ferg: May 6, 2007; Lipstick Apathy

Ashex posted:

Can someone verify real quick the proper way to chroot into a system?
Is it such:

mount -t proc proc /chroot/proc
mount --bind /dev /chroot/dev
chroot /chroot /bin/bash

You're doing it all fancy like, I do it this way:

code:

mount /dev/sda1 /mnt/chroot
chroot /mnt/chroot /bin/bash

You might be doing the same thing your way, but that's how I do it.

# ? Mar 23, 2008 20:33

Ashex: Jun 25, 2007; These pipes are cleeeean!!!

Ferg posted:

You're doing it all fancy like, I do it this way:
code:
mount /dev/sda1 /mnt/chroot
chroot /mnt/chroot /bin/bash
You might be doing the same thing your way, but that's how I do it.

That's how I tried it earlier (back a few posts about mysql) and got a bunch of errors. I'm going to try a proper chroot with mounting proc and all the other crap so it's completely functional. When I did it your way I was able to run everything else, so I got the dpkg selections so I could rebuild the system.

# ? Mar 23, 2008 20:40

Sergeant Hobo: Jan 7, 2007; Zhu Li, do the thing!

OK, I've been running my laptop here through my newly Shorewalled gateway box and things have been fine (aside from a slight slowness which could probably be attributed to running the gateway with a 2.0 GHz Athlon XP and 512 MB of RAM but I digress). I'm about ready to take the plunge and go straight for Squid and its accompanying documentation (which will happen tomorrow when I've gotten adequate sleep).

Anyone have any helpful hints prior to me doing this? Anything especially troubling to look out for, etc?

# ? Mar 24, 2008 02:10

rookieone: May 25, 2004; A small town never forgets

I'm currently running some version of Kubuntu on my spare desktop PC that I only use as a file dump/SMB box/torrent&usenet machine and I was thinking about putting some kind of server distro on there because I don't need a GUI actually.

I want it to run SABNZBD, some torrent client (most likely Torrentflux but maybe Rtorrent&screen) and some other stuff like a DAAPD (for iTunes), SMB and AMP (which I'll need for Torrentflux anyway).

Will the latest Debian release be plenty enough or would I be better off going with the server version of Ubuntu ? I'm mostly concerned about the quality and choice in the official/semi-official repositories even though I somewhat know how to compile my own stuff should I need to.

# ? Mar 24, 2008 13:32

Twlight: Feb 18, 2005; I brag about getting free drinks from my boss to make myself feel superior; Fun Shoe

I'm having some trouble using IPtables with CentOS 5. I'd like to use the firewall but it seems when I turn it on I can't access internal web pages. (This server is running Cacti/Nagios) so when I try and open their web interfaces I cannot establish the connection.

Here are the Iptables rules

code:

*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [896:94521]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A INPUT -s 192.168.1.106 -d 192.168.7.111 -p tcp -m tcp --dport 22 -j ACCEPT
-A INPUT -d 192.168.7.111 -p tcp -m tcp --dport 80 -j ACCEPT
-A INPUT -s 192.168.1.106 -d 192.168.7.111 -j ACCEPT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp -m icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p esp -j ACCEPT
-A RH-Firewall-1-INPUT -p ah -j ACCEPT
-A RH-Firewall-1-INPUT -d 224.0.0.251 -p udp -m udp --dport 5353 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
COMMIT

I tried removing all the rules and starting from scratch with the -F flag but they just keep coming back

How can I remove everything them restart from scratch?

Edit: I figured it out, I wasn't saving the file with

code:

service iptables save

sorry!

Twlight fucked around with this message at 17:44 on Mar 24, 2008

# ? Mar 24, 2008 17:36

Ashex: Jun 25, 2007; These pipes are cleeeean!!!

rookieone posted:

I'm currently running some version of Kubuntu on my spare desktop PC that I only use as a file dump/SMB box/torrent&usenet machine and I was thinking about putting some kind of server distro on there because I don't need a GUI actually.

I want it to run SABNZBD, some torrent client (most likely Torrentflux but maybe Rtorrent&screen) and some other stuff like a DAAPD (for iTunes), SMB and AMP (which I'll need for Torrentflux anyway).

Will the latest Debian release be plenty enough or would I be better off going with the server version of Ubuntu ? I'm mostly concerned about the quality and choice in the official/semi-official repositories even though I somewhat know how to compile my own stuff should I need to.

Why reinstall? Just turn off the X server so it doesn't start. And you should look at torrentflux-b4rt for all that.

code:

sudo update-rc.d -f kdm remove

That will disable the gui so you have a console system. Just keep it up to date and you will be fine. To figure out what version of ubuntu your running, just run lsb_release -rd

And having the latest and greatest of everything is heavily overrated, as long as your system is up to date you should be fine. Especially for what you're doing. Now if you're running a system older then 6.06, you should probably upgrade. If you do, just get Ubuntu Server edition.

# ? Mar 24, 2008 18:21

Mr. Eric Praline: Aug 13, 2004; I didn't like the others, they were all too flat.

Ashex posted:

Why reinstall? Just turn off the X server so it doesn't start. And you should look at torrentflux-b4rt for all that.
code:
sudo update-rc.d -f kdm remove
That will disable the gui so you have a console system. Just keep it up to date and you will be fine. To figure out what version of ubuntu your running, just run lsb_release -rd

And having the latest and greatest of everything is heavily overrated, as long as your system is up to date you should be fine. Especially for what you're doing. Now if you're running a system older then 6.06, you should probably upgrade. If you do, just get Ubuntu Server edition.

Latest and greatest isn't overrated for an Ubuntu desktop. Every minor release has genuine fixes and features that really do make a difference.

If you're running a console/server system though, stick to security updates, and otherwise don't roll forward until things are well tested, or you really need them.

# ? Mar 24, 2008 19:11

Ashex: Jun 25, 2007; These pipes are cleeeean!!!

chryst posted:

Latest and greatest isn't overrated for an Ubuntu desktop. Every minor release has genuine fixes and features that really do make a difference.

As long as he's running at least 6.06, he's getting those fixes and features, since it is lts, and later versions are supported through 2008 at least.

# ? Mar 24, 2008 23:49

covener: Jan 10, 2004; You know, for kids!

Ashex posted:

As long as he's running at least 6.06, he's getting those fixes and features, since it is lts, and later versions are supported through 2008 at least.

Not too experience with ubuntu, but are you losing some distinction between security updates, fixes, and features in an LTS release?

# ? Mar 25, 2008 00:45

tehk: Mar 10, 2006; [-4] Flaw: Heart Broken - Tehk is extremely lonely. The Gay Empire's ultimate weapon finds it hard to have time for love.

covener posted:

Not too experience with ubuntu, but are you losing some distinction between security updates, fixes, and features in an LTS release?

You are correct, he will not get any new features. He will however get security updates and minor fixes. I would just do a early install of Hardy server edition and ride that for the LTS cycle. Since it doesnt sound like the current setup is worth saving and an upgrade would only take a few minutes.

DISREGARD THIS - You are better off just using the tarball and installing the dependencies instead with the rate of updates SABNZBd+ is getting
~~Also note that there is a script to make a SabNZBd+ install easy as pie since I do not think there is a package yet.~~

tehk fucked around with this message at 10:36 on Mar 25, 2008

# ? Mar 25, 2008 00:56

ribena: Nov 24, 2004; Hag.

tehk posted:

Also note that there is a script to make a SabNZBd+ install easy as pie since I do not think there is a package yet.

There was/is a package in REVU which didn't make it in time for Hardy, sadly. Hopefully the guy will still be interested in packaging SAB for Intrepid, otherwise I might just do it myself.

# ? Mar 25, 2008 03:08

maskenfreiheit: Dec 30, 2004

Edit: doublepost

maskenfreiheit fucked around with this message at 01:37 on Mar 13, 2017

# ? Mar 25, 2008 03:09

Ashex: Jun 25, 2007; These pipes are cleeeean!!!

tehk posted:

You are correct, he will not get any new features. He will however get security updates and minor fixes. I would just do a early install of Hardy server edition and ride that for the LTS cycle. Since it doesnt sound like the current setup is worth saving and an upgrade would only take a few minutes.

If you're just running it as a torrent/file/usenet server, any new features aren't going to be thing you'd be interested.

But I digress, the hardy release is going to have several very nice features that will benefit servers

Ashex fucked around with this message at 04:31 on Mar 25, 2008

# ? Mar 25, 2008 04:14

Cannister: Sep 6, 2006; Steadfast & Ignorant

I recently decided to give Linux a real shot after both Vista and XP (respectively) kicked the bucket on me. I installed Fedora 8 and am trying to get my normal workflow requirements satisfied as far as software is concerned.

I am an amateur photographer and I shoot a Canon Rebel XT. F-Spot's photo importer takes it's sweet time downloading files, which is kind of an issue.
The main problem though is the editing process. I found a program (UFRaw) to read the .CR2 Raw files that the camera saves photos as, but it's quite awkward to work with and is nowhere near as versatile as Photoshop's RAW editor. It also has the tendancy to load each new photo that I open with the edited settings (exposure, contrast curve, color temperature) of the last photo I edited, instead of the camera defaults, but I'm sure that's my fault.

So are there any dSLR users here who know good RAW workflow editing software for Fedora?

# ? Mar 25, 2008 11:10

rookieone: May 25, 2004; A small town never forgets

thanks for all the input guys.

I was indeed planning on going with Hardy because it has the LTS but there is no server-only CD out there as far as I know, so I'd have to wait until April for the official hardy release. I suppose I could just download the beta CD and do a server install though.

I know that I don't NEED to reinstall but I will be changing the HD for / and /home so I can just as well go with the latest and greatest. And since this machine isn't mission critical it's nice to be up-to-date all the time. The only thing I'm reluctant to install are the kernel revisions because I've been burnt more than once on those before.

How is torrentflux-b4rt as a Newsgroups client compared to SABNZBD+ ? Does it do all the Par, unrar and delete magic or will it only download stuff ? BTW I won't install SABNZBD from a script ever since that same moron on the Ubuntu forums you linked to decided to roll his own script (v1 so to speak) incorporating a mandatory theme with injected ads (it auto-updated itself at every reboot) as part of his script. YAY !

# ? Mar 25, 2008 13:18

Kidane: Dec 15, 2004; DANGER TO MANIFOLD

Couple miscellaneous questions regarding postfix:

I need to pipe all email sent to the user jira@domain.com to a script called, oh let's say /usr/local/bin/autojira.pl. How the heck do I do this? Google hasn't really given me any insight and everything I have seen has been setting up postfix with SpamAssassin which entails piping ALL email out to a script.

Secondly, and this one is really stupid but -- I just installed postfix and I in the process of configuring it but I noticed it's not listening on ports 110 or 143. Do I need to install a separate POP or IMAP server?

Sorry guys, my Google-fu is lacking this morning.

# ? Mar 25, 2008 15:07

Kidane: Dec 15, 2004; DANGER TO MANIFOLD

Welp!

After creating the jira@ account in the usual manner, all I had to do was create a .forward in /home/jira containing:

code:

"|IFS=' ' && exec /usr/bin/procmail -f- || exit 75 jira"

Then a .procmailrc containing:

code:

:0 bhW

| /usr/local/bin/autojira.pl

Right now I have some test code in place of my actual code, because I wanted to see what the raw email looks like and figure out how much parsing I needed to do but I basically have a while ( <> ) loop that prints any incoming email to a file in /home/jira. It works great, which confuses me a little bit.

# ? Mar 25, 2008 15:36

Adbot: ADBOT LOVES YOU

# ? Apr 29, 2024 17:30

Zophixan: Mar 21, 2006

Hey everyone, I've been using Ubuntu for a while, and was thinking of changing to Gentoo. I used sabayon before but couldn't get my head around compiling from source (there aren't ebuilds for everything!).
Could someone post a guide to compiling from source for me?

# ? Mar 25, 2008 15:42

The Something Awful Forums > Discussion > Serious Hardware/Software Crap > The Linux Questions Thread: a bunch of pitfalls, but technically it's possible

«‹›1026 »