From jack@solucorp.qc.ca Tue Jan 29 01:39:05 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g0T6d4Ah029729 for ; Tue, 29 Jan 2002 01:39:04 -0500 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g0T6K8R18807 for ; Tue, 29 Jan 2002 01:20:08 -0500 Received: from remtk.solucorp.qc.ca (g36-101.citenet.net [206.123.36.101]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g0T6M5B52863 for ; Tue, 29 Jan 2002 01:22:05 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g0T6LRJ03481 for vserver@dns.solucorp.qc.ca; Tue, 29 Jan 2002 01:21:27 -0500 From: Jacques Gelinas Date: Tue, 29 Jan 2002 01:21:27 -0500 To: Vserver mailing list Subject: vserver 0.10 change log X-mailer: tlmpmail 0.1 Message-ID: <20020129012127.151a5d49e79f@remtk.solucorp.qc.ca> X-IMAPbase: 1012314422 1321 Status: RO X-Status: X-Keywords: X-UID: 1 vserver 0.10 Change log 1. Enhancements 1.1. /usr/lib/vserver/vdu: New This is a limited clone of the du command. It skips file with more than one link. It is used to evaluate the disk usage of an unified vserver. Using the normal du for this task is misleading since it will count all unified files. 1.2. /usr/sbin/newvserver: more stats The utility now reports more statistic about the amount of file and directory copied/linked. 1.3. CAP_SYS_CHROOT capability It is now possible to remove this capability from a vserver (No process, not even root, in a vserver can use the chroot system call). Just place !CAP_SYS_CHROOT in the S_CAPS variable of the vserver configuration file. To support this feature, the /usr/sbin/vserver script had to be reworked a bit since entering a vserver context involves using chroot. So we had to kind of enter the context, then kill CAP_SYS_CHROOT 1.4. chroot and security issues: plugged The new ctx-6 kernel solves the issues with chroot. With previous kernel, root inside a vserver with the CAP_SYS_CHROOT capability was able to escape out of the vserver and enter the root server. We solve this using a single line in fs/namei.c:vfs_permission(). All chroot escape involves walking you way toward the real root using relative chdir (chdir("..")). The trick was to make the /vservers directory into a "no man land" by issuing the following command: chmod 000 /vservers Setting these permission bits (well turning them all off) make the directory inaccessible for any other user than root. The change in the kernel ctx-6 makes such a directory unusable even by root in a different security context (not 0). The /usr/sbin/vserver will create the /vservers appropriately. If the directory exist, it will check the permissions and signal the admin if they are not 000. 1.5. New kernel ctx-6 The new kernel patch-2.4.17ctx-6 introduce many enhancements. This is still binary compatible, so moving to this kernel does not involve any configuration changes. Updating to vserver 0.10 is recommended, but there is no special upgrade step. The features are: + /dev/pts is now private in each vserver. One vserver can't see or interfere with the other pseudo-tty of the other server, including the root server. + Network device: A vserver can only see the network device associated with its ipv4 root. + system V ipc: The sysv ipc resources are now private per security context. + The fakeinit concept allow usage of a normal /sbin/init in a vserver. + A signal handling bug was solved. The most noticeable feature is that cntrl-C now work when using "vserver name enter". Other networking issue are probably solved by this. You can get the patch and binaries as usual from ftp://ftp.solucorp.qc.ca/pub/vserver. The pub/vserver/patches also contains a relative patch from ctx-5 to ctx-6. You can review what was done this way. This kernel plugs probably most security issues. There is still to many things visible in /proc as seen from a vserver. A new file system called vproc will be written to provide a limited view. While this kernel should prevent a vserver administrator to gain access to the vserver, there are still ways to produce some DOS by exhausting all resources. The nproc feature works correctly and control the amount of processes used by a vserver. Some more work is needed to address all the other resource limits (files, memory, ...) 1.6. No NIS domain in a vserver A vserver may be run with a different NIS domain name than the root server. Or it could run with the same. To keep the same domain name, one just had to set the S_DOMAINNAME variable to the vserver configuration file to nothing. There were no way to tell that you did not want a NIS domain name in a vserver when there was one set in the root server. You can now enter "none" as the S_DOMAINNAME value to achieve this. 1.7. Per vserver /sbin/init The ctx-6 kernel supports the fakeinit context flag. This flag is entered in the S_FLAGS line of the vserver configuration file (/etc/vservers/xx.conf). Once you set this flag, the vserver will be started and stop using /sbin/init, found in the vserver environment. This is a normal /sbin/init as supplied by the distribution. You should take care of cleaning up /etc/inittab in the vserver environment. Using this feature, it is possible to use various run level in the vserver, switch between them and so on. You can also use respawn /etc/inittab services as well. Here is what fakeinit does in the kernel: This assigned the current process so it works like the process number 1. Using this trick, a normal /sbin/init may be run in a vserver. The /usr/sbin/vserver command will use /sbin/init to start and stop a vserver. A properly configured /etc/inittab is needed though. + Processes loosing their parent are re-parent to this process. + getppid() done by child process of this process returns 1. + getpid() done by this process returns 1. + This process is not shown in /proc since process number 1 is always shown. + An "initpid" entry is available in /proc/*/status to tell which process is the fake init process. One nice thing about this feature is that the /usr/sbin/vserver is somewhat distribution independent. It simply runs /sbin/init to start a vserver and then "/sbin/init 6" to stop it (and then kills the remaining process). There are some drawbacks (for now) though and input are welcome. First, the vserver start-up is no more synchronous. The /usr/sbin/vserver used to run "/etc/rc.d/rc 3" and wait until it ends. Now, it runs /sbin/init, but /sbin/init won't end until the vserver ends. So /usr/sbin/vserver has to let go /sbin/init in background. This is a little annoying. When a vserver is started like this, we don't see all the service started as before. Without fakeinit, we see each service getting started and a OK/FAIL message for each. Now, it goes completely silent. I have not investigated this behavior. I suspect /sbin/init is opening a new tty (console) and runs the start-up scripts using that newly open console. Since /sbin/init runs all the start-up code, we don't know when it is done so we can't run the post-start section of the /etc/vservers/xx.sh script properly. Note that both start-up strategy still work: fakeinit and the original. So you current vserver installation will work as before without any fiddling. Once we have iron out the fakeinit drawback, this will become the default way of doing things. 1.8. Some capability missing The chcontext and reducecap utility were incomplete. Many capabilities were not handled. They are now complete. 2. Bug fixes 2.1. /usr/sbin/vserver-stat: some fixes The vserver-stat utility had various output glitches. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From jack@solucorp.qc.ca Thu Jan 31 11:04:37 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g0VG4aAh018070 for ; Thu, 31 Jan 2002 11:04:36 -0500 Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g0VFhQR26212 for ; Thu, 31 Jan 2002 10:43:26 -0500 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g0VFO7630786 for ; Thu, 31 Jan 2002 15:24:07 GMT Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 16WJNf-0008Dg-00 for ; Thu, 31 Jan 2002 15:44:07 +0000 Date: Thu, 31 Jan 2002 15:44:07 +0000 From: Sam Vilain To: Vserver mailing list Subject: p->p_opptr = child_reaper; X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Status: RO X-Status: X-Keywords: X-UID: 2 exit.c seems to be different in 2.4.18-pre7 than in 2.4.17: for_each_task(p) { if (p->p_opptr == father) { /* We dont want people slaying init */ p->exit_signal = SIGCHLD; p->self_exec_id++; /* Make sure we're not reparenting to ourselves */ if (p == reaper) p->p_opptr = child_reaper; else p->p_opptr = reaper; if (p->pdeath_signal) send_sig(p->pdeath_signal, p, 0); } } This patch doesn't apply: *************** *** 167,171 **** p->exit_signal = SIGCHLD; p->self_exec_id++; ! p->p_opptr = child_reaper; if (p->pdeath_signal) send_sig(p->pdeath_signal, p, 0); } --- 176,180 ---- p->exit_signal = SIGCHLD; p->self_exec_id++; ! p->p_opptr = reaper; if (p->pdeath_signal) send_sig(p->pdeath_signal, p, 0); } Can anyone tell me what's happening here? Sam. From jack@solucorp.qc.ca Thu Jan 31 11:09:36 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g0VG9ZAh018091 for ; Thu, 31 Jan 2002 11:09:35 -0500 Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g0VFfwR26195 for ; Thu, 31 Jan 2002 10:41:59 -0500 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g0VFMY630723 for ; Thu, 31 Jan 2002 15:22:34 GMT Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 16WJMB-0008Db-00 for ; Thu, 31 Jan 2002 15:42:35 +0000 Date: Thu, 31 Jan 2002 15:42:34 +0000 From: Sam Vilain To: Vserver mailing list Subject: s_context in /proc/NNNN/stat? X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Status: RO X-Status: X-Keywords: X-UID: 3 I was thinking it would probably be useful to include the security context in /proc/NNN/stat so that psutils and other similar tools could have a selection and display switch for it. Would that be the right way to do it? Sam. From jack@solucorp.qc.ca Fri Feb 1 16:44:07 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g11Li6Ah028716 for ; Fri, 1 Feb 2002 16:44:06 -0500 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g11LOcR02189 for ; Fri, 1 Feb 2002 16:24:38 -0500 Received: from remtk.solucorp.qc.ca (g39-165.citenet.net [206.123.39.165]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g11LRDB98019 for ; Fri, 1 Feb 2002 16:27:13 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g11LHfm04206 for vserver@dns.solucorp.qc.ca; Fri, 1 Feb 2002 16:17:41 -0500 From: Jacques Gelinas Date: Fri, 1 Feb 2002 16:17:41 -0500 To: Vserver mailing list Subject: re: s_context in /proc/NNNN/stat? X-mailer: tlmpmail 0.1 Message-ID: <20020201161741.126af2ec96a3@remtk.solucorp.qc.ca> Status: RO X-Status: X-Keywords: X-UID: 4 On Thu, 31 Jan 2002 15:42:34 -0500, Sam Vilain wrote > I was thinking it would probably be useful to include the security context > in /proc/NNN/stat so that psutils and other similar tools could have a > selection and display switch for it. > > Would that be the right way to do it? We have it in /proc/NNNN/status, as well as few other things such as the ipv4root. It that enough ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From jack@solucorp.qc.ca Fri Feb 1 22:32:04 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g123W3Ah030584 for ; Fri, 1 Feb 2002 22:32:04 -0500 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g123FPR10691 for ; Fri, 1 Feb 2002 22:15:25 -0500 Received: from remtk.solucorp.qc.ca (g36-123.citenet.net [206.123.36.123]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g123I2B15230 for ; Fri, 1 Feb 2002 22:18:02 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g122lEG05070 for vserver@dns.solucorp.qc.ca; Fri, 1 Feb 2002 21:47:14 -0500 From: Jacques Gelinas Date: Fri, 1 Feb 2002 21:47:14 -0500 To: Vserver mailing list Subject: re: Ethernet binding problems X-mailer: tlmpmail 0.1 Message-ID: <20020201214714.830fd117ae8d@remtk.solucorp.qc.ca> Status: RO X-Status: X-Keywords: X-UID: 5 On Thu, 31 Jan 2002 13:15:18 -0500, Matthew Brichacek wrote > Hello, I have been using vserver for a few days to set up a test lab. > The servers themselves are running fine, however I am getting some very > erratic behavior out of the ethernet. When I reboot and bond all the > servers to myri0 it will only bond 5 (sometimes), the other 5 I can > enter by hand (sometimes) other times I get the errors: > > ifconfig myri0:10 192.168.1.210 up > SIOCSIFFLAGS: Cannot assign requested address > SIOCSIFFLAGS: Cannot assign requested address Are you using kernel 2.4.17ctx-6 ? There is a bug/feature in this kernel: A vserver only see the network device it has been assigned to. So far so good, this is the feature. Now this feature was implemented in the kernel using the ipv4root as the key. So it is not per se a vserver concept. For example, if you do this on the console. /sbin/ifconfig you see everything. then you do /usr/sbin/chbind --ip 1.2.3.4 /bin/sh /sbin/ifconfig exit you end up seeing nothing. The chbind call is tying this process to the IP 1.2.3.4 and now the kernel only reports about the interface matching this one: None. Now, how is this affecting you. I guess that you wanted access to ssh or some telnet services in the vserver, so you disabled the sshd or xinetd services on the root server and enabled v_sshd or v_xinetd. Then you log to the root server using one ssh or telnet. the v_xx service are tying a service to a single IP, allowing the various vservers to bind to the same service. By binding sshd to a single IP, all shells started by sshd inherit this binding. With ctx-6, they can't see all the interfaces. So if you try to start a new vserver, or restart an old one, you will see those messages. I have fixed this problem by disabling this functionality for security context 0. So the root server still see all device and vserver only see their own stuff. The solution for now is to start vservers from the console, or do /usr/sbin/chbind --ip 0.0.0.0 /bin/sh /usr/sbin/vserver server start Note that root in security context 0 already had the ability to change its ipv4root binding unlike root in vserver which are locked with this IP. > i will get the same errors with eth0 and eth1 also. Am i reaching a > limitation in the TCP/IP stack? It doesn't seem like it since I can > still add them by hand when the machine feels like letting me. Is there > a kernel config option I am missing? (all packages/kernel built > manually) I have attached a copy of my 01.conf (it's the same for all > except the IP and hostname change) and my .config. If you need anything > else please let me know. It's a cosmetic bug :-) Sorry! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From jack@solucorp.qc.ca Sat Feb 2 06:31:31 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g12BVUAh000694 for ; Sat, 2 Feb 2002 06:31:30 -0500 Received: from mail1-gui.server.ntli.net (mail1-gui.server.ntli.net [194.168.222.13]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g12BHTR17974 for ; Sat, 2 Feb 2002 06:17:29 -0500 Received: from irishsea.home.craig-wood.com ([62.253.119.64]) by mail1-gui.server.ntli.net (Post.Office MTA v3.1 release PO203a ID# 0-33929U70000L2S50) with ESMTP id AAA14596; Sat, 2 Feb 2002 11:17:23 +0000 Received: (from ncw@localhost) by irishsea.home.craig-wood.com (8.11.6/8.11.6) id g12BHMU32259; Sat, 2 Feb 2002 11:17:22 GMT Date: Sat, 2 Feb 2002 11:17:22 +0000 From: Nick Craig-Wood To: Jacques Gelinas Cc: Vserver mailing list Subject: Re: Ethernet binding problems Message-ID: <20020202111722.A32169@axis.demon.co.uk> References: <20020201214714.830fd117ae8d@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20020201214714.830fd117ae8d@remtk.solucorp.qc.ca>; from jack@solucorp.qc.ca on Fri, Feb 01, 2002 at 09:47:14PM -0500 Status: RO X-Status: X-Keywords: X-UID: 6 On Fri, Feb 01, 2002 at 09:47:14PM -0500, Jacques Gelinas wrote: > Now, how is this affecting you. I guess that you wanted access to ssh or > some telnet services in the vserver, so you disabled the sshd or xinetd > services on the root server and enabled v_sshd or v_xinetd. Then you > log to the root server using one ssh or telnet. the v_xx service are tying > a service to a single IP, allowing the various vservers to bind to the same > service. > > By binding sshd to a single IP, all shells started by sshd inherit this > binding. With ctx-6, they can't see all the interfaces. So if you try > to start a new vserver, or restart an old one, you will see those messages. > > I have fixed this problem by disabling this functionality for security context > 0. So the root server still see all device and vserver only see > their own stuff. For the specific case of sshd you can use ListenAddress in /etc/ssh/sshd_config instead of v_sshd which I guess would fix the above problem too. ListenAddress Specifies the local addresses sshd should listen on. The follow- ing forms may be used: ListenAddress host|IPv4_addr|IPv6_addr ListenAddress host|IPv4_addr:port ListenAddress [host|IPv6_addr]:port If port is not specified, sshd will listen on the address and all prior Port options specified. The default is to listen on all local addresses. Multiple ListenAddress options are permitted. Additionally, any Port options must precede this option for non port qualified addresses. -- Nick Craig-Wood ncw1@axis.demon.co.uk From jack@solucorp.qc.ca Sat Feb 2 10:27:16 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g12FRGAh001440 for ; Sat, 2 Feb 2002 10:27:16 -0500 Received: from n010080.nbs.netland.nl (n010123.nbs.netland.nl [217.170.46.123] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g12FFwR21428 for ; Sat, 2 Feb 2002 10:15:58 -0500 Received: from office.netland.nl (shocks.nbs.arts-betel.org [192.168.11.25] (may be forged)) by n010080.nbs.netland.nl (8.11.0/8.11.0) with ESMTP id g12FFvP24981 for ; Sat, 2 Feb 2002 16:15:57 +0100 Message-ID: <3C5C02A8.7000604@office.netland.nl> Date: Sat, 02 Feb 2002 16:15:52 +0100 From: Ron Arts Reply-To: raarts@office.netland.nl Organization: Netland Internet Services User-Agent: Mozilla/5.0 (Windows; U; Win 9x 4.90; en-US; rv:0.9.7) Gecko/20011221 X-Accept-Language: nl, en MIME-Version: 1.0 To: Vserver mailing list Subject: vserver-stat output corrupted - increasing loadavg values References: <20020201161741.126af2ec96a3@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Status: RO X-Status: X-Keywords: X-UID: 7 Hi, I'm running vserver (very enthusiastic about it BTW). I'm experiencing ever increasing loadavg values. It does not seem to do any harm, also the machine does not seem to be actually slowing down, very responsive, no diskactivity. vserver-stat output: CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME 0 33 52Mb 4Kb 24m03.25 9m52.21 17h23m58 root server 4 36 1Gb 298Kb 5m12.08 m39.72 17h11m49 db 5 23 860Mb 68Kb 5m11.24 m40.88 17h11m41 mir1 7 18 1Gb 20Kb 5m24.91 m39.97 17h11m31 web 8 18 1Gb 14Kb m02.73 m00.16 11m18.18 www1 9 18 1Gb 14Kb m01.36 m00.16 11m08.99 www2 11 212174386176b 420Kb m01.70 m01.80 8m54.12 pro1 vtop output: 3:54pm up 17:25, 1 user, load average: 48.83, 36.04, 17.78 168 processes: 167 sleeping, 1 running, 0 zombie, 0 stopped CPU0 states: 0.0% user, 0.0% system, 0.0% nice, 100.0% idle CPU1 states: 0.4% user, 6.2% system, 0.0% nice, 92.5% idle Mem: 384832K av, 377360K used, 7472K free, 0K shrd, 43440K buff Swap: 522072K av, 35492K used, 486580K free 45392K cached PID USER PRI NI SIZE RSS SHARE STAT %CPU %MEM TIME COMMAND 16944 root 14 0 1132 1132 836 R 7.1 0.2 0:02 top 1 root 8 0 524 524 496 S 0.0 0.1 0:05 init 2 root 9 0 0 0 0 SW 0.0 0.0 0:00 keventd 3 root 19 19 0 0 0 SWN 0.0 0.0 0:00 ksoftirqd_CPU0 4 root 19 19 0 0 0 SWN 0.0 0.0 0:00 ksoftirqd_CPU1 5 root 9 0 0 0 0 SW 0.0 0.0 0:24 kswapd 6 root 9 0 0 0 0 SW 0.0 0.0 0:00 bdflush 7 root 9 0 0 0 0 SW 0.0 0.0 0:01 kupdated 78 root 9 0 0 0 0 SW 0.0 0.0 0:00 khubd 184 root 9 0 0 0 0 SW 0.0 0.0 0:00 kjournald 185 root 9 0 0 0 0 DW 0.0 0.0 0:10 kjournald Previously all was running well, but it started when I renamed 4 vservers (renamed top level directory, and /etv/ververs/ config filenames). I did not change anything else inside any vservers. After rebooting the machine the vserver-stat output was still corrupted, but the loadavg did not increase any more. I'm running 2.4.17ctx-6 Any ideas? Ron From jack@solucorp.qc.ca Mon Feb 4 11:55:07 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g14Gt5Ah027745 for ; Mon, 4 Feb 2002 11:55:06 -0500 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g14GQMR10083 for ; Mon, 4 Feb 2002 11:26:22 -0500 Received: from remtk.solucorp.qc.ca (g39-9.citenet.net [206.123.39.9]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g14GQb683383 for ; Mon, 4 Feb 2002 11:26:37 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g14G1Fu03835 for vserver@dns.solucorp.qc.ca; Mon, 4 Feb 2002 11:01:15 -0500 From: Jacques Gelinas Date: Mon, 4 Feb 2002 11:01:15 -0500 To: Vserver mailing list Subject: re: [useradd] Adding user fails in vserver X-mailer: tlmpmail 0.1 Message-ID: <20020204110115.9ac72b21840a@remtk.solucorp.qc.ca> Status: RO X-Status: X-Keywords: X-UID: 8 On Mon, 4 Feb 2002 10:10:17 -0500, Thomas Preissler wrote > Hello, > > I just figured out, that adding a user with "useradd " > fails with "useradd: cannot rewrite password file". > > vs1:~ # lsattr /etc/passwd > ------------ /etc/passwd > > Is this already known and how do I avoid this? First time I hear this. I HAS to work. What are you getting if you do /usr/lib/vserver/showattr /vserver/name/etc/passwd normally, there should not be any extended attribute on this file. It should print 00000000. Note that showattr is simply a stripped down lsattr We have added one new extended attribute and the stock lsattr does not show it. showattr simply dumps the bits. I just tried it on a unified rh7.2 and mdk8.1 vserver and both are working. Which distribution is this ? version ? I assume this vserver is unified. Send me (as an attachement) the output of the following command rpm -qf /etc/passwd --dump Normally, this file should be duplicated when you create a vserver. So each vserver should be able to use whatever tool it wants to maintain it. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From jack@solucorp.qc.ca Mon Feb 4 12:00:14 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g14H0DAh027807 for ; Mon, 4 Feb 2002 12:00:14 -0500 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g14GQOR10086 for ; Mon, 4 Feb 2002 11:26:24 -0500 Received: from remtk.solucorp.qc.ca (g39-9.citenet.net [206.123.39.9]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g14GQc683386 for ; Mon, 4 Feb 2002 11:26:39 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g14GMrO03864 for vserver@dns.solucorp.qc.ca; Mon, 4 Feb 2002 11:22:53 -0500 From: Jacques Gelinas Date: Mon, 4 Feb 2002 11:22:53 -0500 To: Vserver mailing list Subject: re: vserver-stat output corrupted - increasing loadavg values X-mailer: tlmpmail 0.1 Message-ID: <20020204112253.af653811b683@remtk.solucorp.qc.ca> Status: RO X-Status: X-Keywords: X-UID: 9 On Sat, 2 Feb 2002 16:15:52 -0500, Ron Arts wrote > Hi, > > I'm running vserver (very enthusiastic about it BTW). > I'm experiencing ever increasing loadavg values. It does not > seem to do any harm, also the machine does not seem to be > actually slowing down, very responsive, no diskactivity. Indeed, vtop shows a very high load, yet, shows that both cpus are pretty much doing nothing. I have seen this sometime. This is probably a kernel bug. Basicaly, the loadavg is computed from all the processes READY at a given time. In general, a process is either Sleeping or Ready to run. For some reason, a process get in a Ready state yet, is not really ready to run. It is locked somewhere in the kernel, in a driver for example. So the loadavg account for this process, but given it is not really ready, it does not use any CPU at all. To see this, using the /usr/sbin/vps command /usr/sbin/vps ax You will see 46 lines with the status R instead of S. These are the offending processes. Now why they are blocked this way, I can't tell. But knowing which processes are stuck may help. > vtop output: > > 3:54pm up 17:25, 1 user, load average: 48.83, 36.04, 17.78 > 168 processes: 167 sleeping, 1 running, 0 zombie, 0 stopped > CPU0 states: 0.0% user, 0.0% system, 0.0% nice, 100.0% idle > CPU1 states: 0.4% user, 6.2% system, 0.0% nice, 92.5% idle > Mem: 384832K av, 377360K used, 7472K free, 0K shrd, 43440K buff > Swap: 522072K av, 35492K used, 486580K free 45392K cached > > PID USER PRI NI SIZE RSS SHARE STAT %CPU %MEM TIME COMMAND > 16944 root 14 0 1132 1132 836 R 7.1 0.2 0:02 top > 1 root 8 0 524 524 496 S 0.0 0.1 0:05 init > Previously all was running well, but it started when I renamed 4 vservers > (renamed top level directory, and /etv/ververs/ config filenames). > I did not change anything else inside any vservers. When you rename a vserver and it is running, you must also rename the /var/run/vservers/name.ctx file. Unless you do so, the vserver script will think the vserver is not running. > After rebooting the machine the vserver-stat output was still corrupted, > but the loadavg did not increase any more. Are you using vserver 0.10. Some fixes were made to the vserver-stat utility (guillaume ?) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From jack@solucorp.qc.ca Mon Feb 4 15:34:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g14KYbAh029251 for ; Mon, 4 Feb 2002 15:34:38 -0500 Received: from mail.SerNet.DE (mail.SerNet.DE [193.159.217.66]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g14KAHR15104 for ; Mon, 4 Feb 2002 15:10:17 -0500 Received: from intern.SerNet.DE by mail.SerNet.DE with esmtp (Exim 2.12 #1) for vserver@dns.solucorp.qc.ca id 16XpRR-0003cJ-00; Mon, 4 Feb 2002 21:10:17 +0100 Received: by intern.SerNet.DE id 16XpRR-0003nN-00; Mon, 04 Feb 2002 21:10:17 +0100 From: Krischan Jodies To: Subject: Re: [useradd] Adding user fails in vserver Date: Mon, 4 Feb 2002 21:06:49 +0100 References: <20020204110115.9ac72b21840a@remtk.solucorp.qc.ca> In-Reply-To: <20020204110115.9ac72b21840a@remtk.solucorp.qc.ca> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit Message-Id: Organization: Service Network GmbH, Goettingen, Germany Status: RO X-Status: X-Keywords: X-UID: 10 Am Montag, 4. Februar 2002 17:01 schrieb Jacques Gelinas: > First time I hear this. I HAS to work. I have an idea what the reason could be: Maybe the different distributions use buggy sources for their useradd. We have the same problem on a SuSE 7.3. Our vserver /etc Directorys are completly unique for every vserver, we do not unify in the common way, instead we mount --bind /usr /bin /sbin /lib from a master partition in every vserver. So there are no special flags on any file in the vserver. dynip:~ # ./showattr /etc/passwd /etc/passwd 00000000 Lutz Pressler noticed the same problem in another place: krischan@dynip:~> mail Mail version 8.1 6/6/93. Type ? for help. "/var/mail/krischan": 1 message 1 new >N 1 root@dynip.sernet.de Mon Feb 04 19:45 14/486 "test" & q Unable to lock mailbox: Permission denied I straced useradd and found this difference between a "normal" linux useradd and ctx-6: [normal linux] umask(0777) = 022 open("/etc/passwd+", O_WRONLY|O_CREAT|O_TRUNC, 0666) = 5 umask(022) [...] [ctx-6] umask(0777) = 022 open("/etc/passwd+", O_WRONLY|O_CREAT|O_TRUNC|O_LARGEFILE, 0666) = -1 EACCES (Permission denied) umask(022) = 0777 write(2, "useradd: cannot rewrite password"..., 38useradd: cannot rewrite password file ) = 38 open() while using umask 0777 delivers EACCES even if you are root. A little test program strips the problem down: #include #include #include #include #include #include int main () { int fd; umask(0777); if ((fd = open("testfile",O_WRONLY|O_CREAT|O_TRUNC, 0666)) < 0) { printf("%s\n",strerror(errno)); } printf("%d\n",fd); } If you try it on in the main server: server[0]:~ # rm testfile server[0]:~ # ./test 3 server[0]:~ # ./test 3 server[0]:~ # uname -a Linux server 2.4.17ctx-6 #1 Wed Jan 30 14:31:55 CET 2002 i686 unknown server[0]:~ # -> root may open the file with permission 0000 wether the file exists or not. in the vserver: dynip[30]:~ # ./test Permission denied -1 dynip[30]:~ # ls -l testfile ---------- 1 root root 0 Feb 4 20:39 testfile dynip[30]:~ # rm testfile rm: remove write-protected file `testfile'? y dynip[30]:~ # ./test Permission denied -1 dynip[30]:~ # -> root must not open the file with permission 0000 under any circumstances It looks a little different in the main server when you are not root: test@server:~> rm testfile rm: remove write-protected file `testfile'? y test@server:~> ./test 3 test@server:~> ./test Permission denied -1 test@server:~> -> It works for a normal user if the file did not exist before. So the point in a vserver environment is, that root gets permission denied even when the file did _not_ exist before and is tried to be opened with file mode 0000. The not working code in the mail command tries a similar open before it fails: open("/var/mail/.dynip.4f490", O_WRONLY|O_CREAT|O_TRUNC|O_EXCL|O_SYNC, 0) = -1 EACCES (Permission denied) (unchanged umask but mode 0) Any idea which dropped capability this might be? Perhaps it has something to do with your chroot hack? Please try a strace on your redhat / mandrake useradd to see what happens when /etc/passwd+ is openend with umask 0777. I will attach my straces of useradd and mail. I would assume, that if this idea really is right, the bug is located in the programs that open files without sufficent permission to write into them (and afterwards are surprised that they really can't write) and not the kernel/ctx-patch. (But of course we would be happy if you find a way to fix this anyways :-)) Thanks, Krischan -- Service Network GmbH, mailto:kjodies@SerNet.DE, http://www.SerNet.DE phone: +49-551-370000-0, fax: +49-551-370000-9 From jack@solucorp.qc.ca Mon Feb 4 18:06:34 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g14N6XAh030282 for ; Mon, 4 Feb 2002 18:06:34 -0500 Received: from n010080.nbs.netland.nl (n010123.nbs.netland.nl [217.170.46.123] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g14MiMR18368 for ; Mon, 4 Feb 2002 17:44:22 -0500 Received: from office.netland.nl (shocks.nbs.arts-betel.org [192.168.11.25] (may be forged)) by n010080.nbs.netland.nl (8.11.0/8.11.0) with ESMTP id g14MiL627597 for ; Mon, 4 Feb 2002 23:44:21 +0100 Message-ID: <3C5F0EC0.8020005@office.netland.nl> Date: Mon, 04 Feb 2002 23:44:16 +0100 From: Ron Arts Reply-To: raarts@office.netland.nl Organization: Netland Internet Services User-Agent: Mozilla/5.0 (Windows; U; Win 9x 4.90; en-US; rv:0.9.7) Gecko/20011221 X-Accept-Language: nl, en MIME-Version: 1.0 To: Vserver mailing list Subject: Re: vserver-stat output corrupted - increasing loadavg values References: <20020204112253.af653811b683@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Status: RO X-Status: X-Keywords: X-UID: 11 Jacques Gelinas wrote: > When you rename a vserver and it is running, you must also rename the > /var/run/vservers/name.ctx file. Unless you do so, the vserver script will > think the vserver is not running. > > >>After rebooting the machine the vserver-stat output was still corrupted, >>but the loadavg did not increase any more. >> > > Are you using vserver 0.10. Some fixes were made to the vserver-stat utility > (guillaume ?) > Yes, I am using 0.10, and I stopped all vservers before renaming. Ron From jack@solucorp.qc.ca Mon Feb 4 18:14:13 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g14NECAh030352 for ; Mon, 4 Feb 2002 18:14:12 -0500 Received: from n010080.nbs.netland.nl (n010123.nbs.netland.nl [217.170.46.123] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g14MuHR18605 for ; Mon, 4 Feb 2002 17:56:17 -0500 Received: from office.netland.nl (shocks.nbs.arts-betel.org [192.168.11.25] (may be forged)) by n010080.nbs.netland.nl (8.11.0/8.11.0) with ESMTP id g14MuH628104 for ; Mon, 4 Feb 2002 23:56:17 +0100 Message-ID: <3C5F118C.6000408@office.netland.nl> Date: Mon, 04 Feb 2002 23:56:12 +0100 From: Ron Arts Reply-To: raarts@office.netland.nl Organization: Netland Internet Services User-Agent: Mozilla/5.0 (Windows; U; Win 9x 4.90; en-US; rv:0.9.7) Gecko/20011221 X-Accept-Language: nl, en MIME-Version: 1.0 To: vserver@dns.solucorp.qc.ca Subject: Re: [useradd] Adding user fails in vserver References: <20020204110115.9ac72b21840a@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Status: RO X-Status: X-Keywords: X-UID: 12 Krischan Jodies wrote: > Am Montag, 4. Februar 2002 17:01 schrieb Jacques Gelinas: > > >>First time I hear this. I HAS to work. >> > > I have an idea what the reason could be: Maybe the different distributions > use buggy sources for their useradd. > [ removed ] > (unchanged umask but mode 0) > > Any idea which dropped capability this might be? Perhaps it has something to > do with your chroot hack? > > Please try a strace on your redhat / mandrake useradd to see what happens > when /etc/passwd+ is openend with umask 0777. I will attach my straces of > useradd and mail. > > I would assume, that if this idea really is right, the bug is located in the > programs that open files without sufficent permission to write into them (and > afterwards are surprised that they really can't write) and not the > kernel/ctx-patch. (But of course we would be happy if you find a way to fix > this anyways :-)) > > Thanks, > > Krischan > I experience the same problem on a plain redhat-7.2 distribution and 2.4.17ctx6. Also straced useradd, and came to the same conclusion: umask(0777) gives problems when creating files. I don't think its an application problem. Maybe an interaction between ctx6 and some other kernel feature? I enabled BSD process accounting, PCMCIA (wireless LAN), Quota, EXT3 amongh others, but otherwise a fairly minimal kernel. Ron Arts From jack@solucorp.qc.ca Tue Feb 5 00:12:20 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g155CJAh008886 for ; Tue, 5 Feb 2002 00:12:20 -0500 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g154kFR25476 for ; Mon, 4 Feb 2002 23:46:16 -0500 Received: from remtk.solucorp.qc.ca (g36-99.citenet.net [206.123.36.99]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g154ka640317 for ; Mon, 4 Feb 2002 23:46:36 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g154lGM05006 for vserver@dns.solucorp.qc.ca; Mon, 4 Feb 2002 23:47:16 -0500 From: Jacques Gelinas Date: Mon, 4 Feb 2002 23:47:16 -0500 To: vserver@dns.solucorp.qc.ca Subject: Re: [useradd] Adding user fails in vserver X-mailer: tlmpmail 0.1 Message-ID: <20020204234716.24974c002753@remtk.solucorp.qc.ca> Status: RO X-Status: X-Keywords: X-UID: 13 On Mon, 4 Feb 2002 23:56:12 -0500, Ron Arts wrote > I experience the same problem on a plain redhat-7.2 distribution and > 2.4.17ctx6. Also straced useradd, and came to the same conclusion: umask(0777) > gives problems when creating files. I don't think its an application > problem. I confirmed this was a ctx-6 issue today. I will do ctx-7 tomorrow. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From jack@solucorp.qc.ca Tue Feb 5 03:00:28 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1580SAh013498 for ; Tue, 5 Feb 2002 03:00:28 -0500 Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g157aLR28036 for ; Tue, 5 Feb 2002 02:36:21 -0500 Received: (qmail 20266 invoked from network); 5 Feb 2002 07:43:41 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 5 Feb 2002 07:43:41 -0000 Received: (qmail 13068 invoked from network); 5 Feb 2002 07:38:39 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 5 Feb 2002 07:38:39 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: Vserver mailing list Date: Tue, 5 Feb 2002 18:52:49 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [useradd] Adding user fails in vserver Message-ID: <3C602A01.12243.C5777F@localhost> Priority: normal In-reply-to: <20020204234716.24974c002753@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Status: RO X-Status: X-Keywords: X-UID: 14 I still don't understand why we need chmod 0 tricks. Isn't the following good enough? /* chroot call - still leaves the cwd pointing outside vserver */ if(chroot(root_dir)) { perror("chroot failed"); exit(1) }; /* fix the cwd */ if(chdir("/") { perror("chdir failed"); exit(1) }; /* it should be safe at this point, right? */ /* and of course, now you can also */ /* drop the CAP_SYS_CHROOT for the truly paranoid */ Ed On Monday, 4 February 2002 at 23:47, Jacques Gelinas wrote: > On Mon, 4 Feb 2002 23:56:12 -0500, Ron Arts wrote > > > I experience the same problem on a plain redhat-7.2 distribution and > > 2.4.17ctx6. Also straced useradd, and came to the same conclusion: umask(0777) > > gives problems when creating files. I don't think its an application > > problem. > > I confirmed this was a ctx-6 issue today. I will do ctx-7 tomorrow. > > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > From jack@solucorp.qc.ca Tue Feb 5 09:19:59 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g15EJwAh015979 for ; Tue, 5 Feb 2002 09:19:59 -0500 Received: from nninfo2.comm.it ([213.92.77.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g15DuaR03284 for ; Tue, 5 Feb 2002 08:56:36 -0500 Received: from MICROXP ([62.110.198.130]) by nninfo2.comm.it (8.9.3/8.9.3) with SMTP id OAA16319 for ; Tue, 5 Feb 2002 14:57:36 +0100 From: "Dave" To: "Vserver mailing list" Subject: Connection Ip address of a context Date: Tue, 5 Feb 2002 14:56:00 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <3C602A01.12243.C5777F@localhost> Status: RO X-Status: X-Keywords: X-UID: 15 Hi, i wonder how difficult it is to modify the kernel so that it uses the context ip address ad a source address when connecting to external services. Right now, the host server ip address is used, and this prevents accurate traffic accounting. Dave. From jack@solucorp.qc.ca Tue Feb 5 12:36:20 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g15HaJAh017587 for ; Tue, 5 Feb 2002 12:36:20 -0500 Received: from ns1.mtl.toxik.net (modemcable200.184-201-24.mtl.mc.videotron.ca [24.201.184.200]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g15H7GR08439 for ; Tue, 5 Feb 2002 12:07:17 -0500 Received: (qmail 20349 invoked by alias); 5 Feb 2002 17:05:38 -0000 Received: from koala.mtl.toxik.net (HELO toxik.com) (192.168.1.112) by ns1.mtl.toxik.net with SMTP; 5 Feb 2002 17:05:38 -0000 Message-ID: <3C600FEF.5030206@toxik.com> Date: Tue, 05 Feb 2002 12:01:35 -0500 From: Toxik - Martial Rioux Organization: Toxik Technologies Inc. User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.4) Gecko/20011126 Netscape6/6.2.1 X-Accept-Language: en-us, fr-ca MIME-Version: 1.0 To: raarts@office.netland.nl CC: Vserver mailing list Subject: Re: vserver-stat output corrupted - increasing loadavg values References: <20020201161741.126af2ec96a3@remtk.solucorp.qc.ca> <3C5C02A8.7000604@office.netland.nl> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Status: RO X-Status: X-Keywords: X-UID: 16 Hi, This morning I got the same vserver-stat output problem. I just send a patch to vserver-stat maintainer (Guillaum) and I hope he will integrate in the next vserver-stat release. If you have any questions feel free to contact me directly. Ron Arts wrote: > Hi, > > I'm running vserver (very enthusiastic about it BTW). > I'm experiencing ever increasing loadavg values. It does not > seem to do any harm, also the machine does not seem to be > actually slowing down, very responsive, no diskactivity. > > vserver-stat output: > > CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME > 0 33 52Mb 4Kb 24m03.25 9m52.21 17h23m58 root > server > 4 36 1Gb 298Kb 5m12.08 m39.72 17h11m49 db > 5 23 860Mb 68Kb 5m11.24 m40.88 17h11m41 mir1 > 7 18 1Gb 20Kb 5m24.91 m39.97 17h11m31 web > 8 18 1Gb 14Kb m02.73 m00.16 11m18.18 www1 > 9 18 1Gb 14Kb m01.36 m00.16 11m08.99 www2 > 11 212174386176b 420Kb m01.70 m01.80 8m54.12 pro1 > > vtop output: > > 3:54pm up 17:25, 1 user, load average: 48.83, 36.04, 17.78 > 168 processes: 167 sleeping, 1 running, 0 zombie, 0 stopped > CPU0 states: 0.0% user, 0.0% system, 0.0% nice, 100.0% idle > CPU1 states: 0.4% user, 6.2% system, 0.0% nice, 92.5% idle > Mem: 384832K av, 377360K used, 7472K free, 0K shrd, 43440K > buff > Swap: 522072K av, 35492K used, 486580K free 45392K > cached > > PID USER PRI NI SIZE RSS SHARE STAT %CPU %MEM TIME COMMAND > 16944 root 14 0 1132 1132 836 R 7.1 0.2 0:02 top > 1 root 8 0 524 524 496 S 0.0 0.1 0:05 init > 2 root 9 0 0 0 0 SW 0.0 0.0 0:00 keventd > 3 root 19 19 0 0 0 SWN 0.0 0.0 0:00 > ksoftirqd_CPU0 > 4 root 19 19 0 0 0 SWN 0.0 0.0 0:00 > ksoftirqd_CPU1 > 5 root 9 0 0 0 0 SW 0.0 0.0 0:24 kswapd > 6 root 9 0 0 0 0 SW 0.0 0.0 0:00 bdflush > 7 root 9 0 0 0 0 SW 0.0 0.0 0:01 kupdated > 78 root 9 0 0 0 0 SW 0.0 0.0 0:00 khubd > 184 root 9 0 0 0 0 SW 0.0 0.0 0:00 kjournald > 185 root 9 0 0 0 0 DW 0.0 0.0 0:10 kjournald > > Previously all was running well, but it started when I renamed 4 vservers > (renamed top level directory, and /etv/ververs/ config filenames). > I did not change anything else inside any vservers. > > After rebooting the machine the vserver-stat output was still corrupted, > but the loadavg did not increase any more. > > I'm running 2.4.17ctx-6 > Any ideas? > > Ron > > > -- Martial Rioux Infrastructures and Technologies Toxik Technologies Inc. - Montreal, QC, Canada www.toxik.com - Phone: (514) 528-6945 Ext 223 ˇ Fax: (514) 221-3329 From jack@solucorp.qc.ca Tue Feb 5 13:36:33 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g15IaWAh018198 for ; Tue, 5 Feb 2002 13:36:33 -0500 Received: from aquarius.diginode.net (aquarius.diginode.net [216.13.250.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g15I8VR10539 for ; Tue, 5 Feb 2002 13:08:31 -0500 Received: (qmail 7109 invoked from network); 5 Feb 2002 18:06:52 -0000 Received: from zerowing.pop-star.net (208.181.22.52) by aquarius.diginode.net with SMTP; 5 Feb 2002 18:06:52 -0000 Subject: Re: Connection Ip address of a context From: Andy Kwong To: Dave Cc: Vserver mailing list In-Reply-To: References: Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 05 Feb 2002 10:09:44 -0800 Message-Id: <1012932585.21392.9.camel@zerowing.pop-star.net> Mime-Version: 1.0 Status: RO X-Status: X-Keywords: X-UID: 17 That's strange because I've been using ctx-3 for months and I swear outgoing connections within a context binds to the correct context IP. On Tue, 2002-02-05 at 05:56, Dave wrote: > Hi, > > i wonder how difficult it is to modify the kernel so that it uses the > context ip address ad a source address when connecting to external services. > > Right now, the host server ip address is used, and this prevents accurate > traffic accounting. > > Dave. > From jack@solucorp.qc.ca Tue Feb 5 14:13:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g15JDYAh018531 for ; Tue, 5 Feb 2002 14:13:35 -0500 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g15IhUR11910 for ; Tue, 5 Feb 2002 13:43:30 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g15IidG03099 for vserver@dns.solucorp.qc.ca; Tue, 5 Feb 2002 13:44:39 -0500 From: Jacques Gelinas Date: Tue, 5 Feb 2002 13:44:39 -0500 To: Vserver mailing list Subject: re: Connection Ip address of a context X-mailer: tlmpmail 0.1 Message-ID: <20020205134439.f9122576dc1e@remtk.solucorp.qc.ca> Status: RO X-Status: X-Keywords: X-UID: 18 On Tue, 5 Feb 2002 14:56:00 -0500, Dave wrote > Hi, > > i wonder how difficult it is to modify the kernel so that it uses the > context ip address ad a source address when connecting to external services. > > Right now, the host server ip address is used, and this prevents accurate > traffic accounting. ??? This is what it is doing right now. Something must be missing. Do you have an example (an application) I can use to replicate the problem. For example, if you do this /usr/sbin/chbind --ip 1.2.3.4 /bin/sh telnet some_host you will find it is not working since it is trying to bind to 1.2.3.4 (which is for most people, not a valid interface). --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From jack@solucorp.qc.ca Tue Feb 5 14:20:01 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g15JK0Ah018575 for ; Tue, 5 Feb 2002 14:20:01 -0500 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g15IofR12111 for ; Tue, 5 Feb 2002 13:50:41 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g15Ipog03117 for vserver@dns.solucorp.qc.ca; Tue, 5 Feb 2002 13:51:50 -0500 From: Jacques Gelinas Date: Tue, 5 Feb 2002 13:51:50 -0500 To: Vserver mailing list Subject: Re: [useradd] Adding user fails in vserver X-mailer: tlmpmail 0.1 Message-ID: <20020205135150.c56b4dddd00a@remtk.solucorp.qc.ca> Status: RO X-Status: X-Keywords: X-UID: 19 On Tue, 5 Feb 2002 18:52:49 -0500, edward@paradigm4.com.au wrote > I still don't understand why we need chmod 0 tricks. > Isn't the following good enough? > > /* chroot call - still leaves the cwd pointing outside vserver */ > if(chroot(root_dir)) { perror("chroot failed"); exit(1) }; > /* fix the cwd */ > if(chdir("/") { perror("chdir failed"); exit(1) }; > /* it should be safe at this point, right? */ > /* and of course, now you can also */ > /* drop the CAP_SYS_CHROOT for the truly paranoid */ > The problem is not the first chroot (the one used to "enter" the vserver). the problem is doing a second chroot while keeping the current directory behind. Once the chroot is done, you are free to do chdir (".."). Since the test is perform only if the current directory == the process root directory, chdir("..") works and let you out of the original vserver root directory. Note that using the dcache in linux, it is possible to tell very efficiently if a chdir("..") yields outside a process root. We can compare directory path directly. So fixing chroot is possible. But I needed a way to fix the issue once for all. Not everyone agree on kernel mailing list that chroot has to be fixed. My one line fix does not change chroot. For sure, you can drop CAP_SYS_CHROOT, but some service may stop working. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From jack@solucorp.qc.ca Tue Feb 5 16:14:50 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g15LEoAh019608 for ; Tue, 5 Feb 2002 16:14:50 -0500 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g15KkWR15467 for ; Tue, 5 Feb 2002 15:46:33 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g15KlfB04269 for vserver@dns.solucorp.qc.ca; Tue, 5 Feb 2002 15:47:41 -0500 From: Jacques Gelinas Date: Tue, 5 Feb 2002 15:47:41 -0500 To: Vserver mailing list Subject: re: Performance, memory, etc X-mailer: tlmpmail 0.1 Message-ID: <20020205154741.a46a01df852e@remtk.solucorp.qc.ca> Status: RO X-Status: X-Keywords: X-UID: 20 On Tue, 5 Feb 2002 10:43:46 -0500, Matthew Brichacek wrote > I was able to get 100 servers running on a machine with 511MB ram and > dual P3 933's. After about 100 servers the machine only had about 20 > megs of RAM left, can a machine like this go higher? I am running a > purely proof of concept test right now and each vserver is running > apache and cron at bootup. I didn't try to get any more than 100 > vservers up since I was running out of disk space fast. Have you setup your server unified ? 100 vservers should cost no more than 2-3 gigs The unification has another side effect. All libs and application are shared. I mean, /usr/sbin/httpd and /lib/libc.so.6 are loaded only once in ram. Only the data is different. I have never tried this though. Since vservers have almost no overhead, the question is how many apache can a server run ? > Just out of curiosity, what kind of results have any of you gotten with > running a large amount of vservers on one machine? I am not so much > concerned about how they perform as I am about just getting some raw > numbers about how many vservers a machine will run. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Feb 5 22:54:36 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g163sZAh025277 for ; Tue, 5 Feb 2002 22:54:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g163Td723748 for vserver.list; Tue, 5 Feb 2002 22:29:39 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g163TbR23744 for ; Tue, 5 Feb 2002 22:29:37 -0500 Received: (qmail 9243 invoked from network); 6 Feb 2002 03:37:14 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 6 Feb 2002 03:37:14 -0000 Received: (qmail 15317 invoked from network); 6 Feb 2002 03:32:00 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 6 Feb 2002 03:32:00 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: Vserver mailing list Date: Wed, 6 Feb 2002 14:46:10 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: [vserver] Re: [useradd] Adding user fails in vserver Message-ID: <3C6141B2.23586.1B74DA@localhost> Priority: normal In-reply-to: <20020205135150.c56b4dddd00a@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 21 On Tuesday, 5 February 2002 at 13:51, Jacques Gelinas wrote: > On Tue, 5 Feb 2002 18:52:49 -0500, edward@paradigm4.com.au wrote > > /* chroot call - still leaves the cwd pointing outside vserver */ > > if(chroot(root_dir)) { perror("chroot failed"); exit(1) }; > > /* fix the cwd */ > > if(chdir("/") { perror("chdir failed"); exit(1) }; > > /* it should be safe at this point, right? */ > > The problem is not the first chroot (the one used to "enter" the vserver). the > problem is doing a second chroot while keeping the current directory behind. It is my understanding that all the considered chroot exploits ( we are not talking about using devices and mounting tricks as this capability is disabled in vserver ) are based on either using file handle that was open before the first chroot, or the current directory from before the first chroot. Unless I'm missing something, the solution is simple - do not leave any file handles open when you do chroot and do chdir("/") immediately after. Problem solved. > Once the chroot is done, you are free to do chdir (".."). Since the test is perform > only if the current directory == the process root directory, chdir("..") works and let > you out of the original vserver root directory. If you did chdir("/") after the first chroot, subsequent chroot and chdir("..") will not get you out. Ed p.s. speaking of open file handles, what about stdin, stdout and stderr of a process before chroot and after. How is that handled? From vserver.error@solucorp.qc.ca Wed Feb 6 04:41:17 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g169fHAh026780 for ; Wed, 6 Feb 2002 04:41:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g168m5g29350 for vserver.list; Wed, 6 Feb 2002 03:48:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from web4.internetx.de (web4.internetx.de [195.127.139.92]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g168m3R29346 for ; Wed, 6 Feb 2002 03:48:04 -0500 Received: from thomasp.internetx.de ([195.127.139.8]) by web4.internetx.de (8.12.2/8.12.2) with ESMTP id g168m2GG007104 for ; Wed, 6 Feb 2002 09:48:02 +0100 Received: (from tomtom@localhost) by thomasp.internetx.de (8.11.3/8.11.3/SuSE Linux 8.11.1-0.5) id g168lJ806366 for vserver@dns.solucorp.qc.ca; Wed, 6 Feb 2002 09:47:19 +0100 Date: Wed, 6 Feb 2002 09:47:18 +0100 From: Thomas Preissler To: vserver@dns.solucorp.qc.ca Subject: [vserver] virtual ip in vserver Message-ID: <20020206094718.H3899@thomasp.internetx.de> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.2.5i Organization: InterNetX, Regensburg, Germany X-Uptime: 9:24am up 15:41, 12 users, load average: 0.01, 0.09, 0.07 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 22 Hello, we want to set up a big virtual machine for our customer. My question is, how can define, that a vserver has additional ip-addresses? Like in Master-VServer - nearly the same. Thanks in advance. Tom Mit freundlichen Grüssen/Regards, TEAM INTERNETX / UnixSysAdmin _______________________________________ InterNetX GmbH, DNS Service Center Maxstrasse 6, D-93047 Regensburg Thomas Preißler, Preissler@internetx.de Tel. +49 941 5955916 Fax. 5955968 From vserver.error@solucorp.qc.ca Wed Feb 6 15:27:30 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g16KRSAh031047 for ; Wed, 6 Feb 2002 15:27:29 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g16KFxB11993 for vserver.list; Wed, 6 Feb 2002 15:15:59 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g16KFxR11989 for ; Wed, 6 Feb 2002 15:15:59 -0500 Received: from remtk.solucorp.qc.ca (g39-4.citenet.net [206.123.39.4]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g16KGb626781 for ; Wed, 6 Feb 2002 15:16:37 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g16KFk812455 for vserver@dns.solucorp.qc.ca; Wed, 6 Feb 2002 15:15:46 -0500 From: Jacques Gelinas Date: Wed, 6 Feb 2002 15:15:45 -0500 To: Vserver mailing list Subject: [vserver] kernel 2.4.17ctx-7 available X-mailer: tlmpmail 0.1 Message-ID: <20020206151545.3a1b00a4ec39@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 23 The kernel 2.4.17ctx-7 is available at ftp.solucorp.qc.ca/pub/vserver. You will find the usual binary release (SMP and uniprocessor) as usual, the file patch-2.4.17ctx-7 (relative to vanilla 2.4.17) and the file patches/patch-2.4.17-ctx6-ctx7 Here is a change log The "no man land" feature of ctx-6 to plug chroot security issues was too agressive. It now only applies to directories, not files. This solves the useradd issue. "ps axf" works again. getppid() had been fixed to support the fakeinit concept (one /sbin/init per vserver) and it was improperly handling process with no parent (ppid == 0). It was always return 1 instead of 0 for those processes. This was confusing "ps axf" for one. /dev/pts was not readable "globally" by security context 1. With all this behind us, we will concentrate on stuff like resource allocation (per vserver ulimit) and multi-ip support. Please beat this one :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 6 15:51:09 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g16Kp8Ah006356 for ; Wed, 6 Feb 2002 15:51:09 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g16KZd512381 for vserver.list; Wed, 6 Feb 2002 15:35:39 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail1-gui.server.ntli.net (mail1-gui.server.ntli.net [194.168.222.13]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g16KZcR12377 for ; Wed, 6 Feb 2002 15:35:38 -0500 Received: from irishsea.home.craig-wood.com ([62.253.119.64]) by mail1-gui.server.ntli.net (Post.Office MTA v3.1 release PO203a ID# 0-33929U70000L2S50) with ESMTP id AAA6785 for ; Wed, 6 Feb 2002 20:35:36 +0000 Received: (from ncw@localhost) by irishsea.home.craig-wood.com (8.11.6/8.11.6) id g16KZZj04173 for vserver@dns.solucorp.qc.ca; Wed, 6 Feb 2002 20:35:35 GMT Date: Wed, 6 Feb 2002 20:35:35 +0000 From: Nick Craig-Wood To: Vserver mailing list Subject: Re: [vserver] Re: [useradd] Adding user fails in vserver Message-ID: <20020206203535.A4082@axis.demon.co.uk> References: <20020205135150.c56b4dddd00a@remtk.solucorp.qc.ca> <3C6141B2.23586.1B74DA@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <3C6141B2.23586.1B74DA@localhost>; from edward@paradigm4.com.au on Wed, Feb 06, 2002 at 02:46:10PM +1100 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 24 On Wed, Feb 06, 2002 at 02:46:10PM +1100, edward@paradigm4.com.au wrote: > It is my understanding that all the considered chroot exploits ( we > are not talking about using devices and mounting tricks as this > capability is disabled in vserver ) are based on either using file > handle that was open before the first chroot, or the current > directory from before the first chroot. > > Unless I'm missing something, the solution is simple - do not leave > any file handles open when you do chroot and do chdir("/") > immediately after. Problem solved. I'm afraid not. I wrote a proof of concept exploit which will break any chroot provided the user that runs it has CAP_CHROOT. I'll email the exploit to you if you want. > > Once the chroot is done, you are free to do chdir (".."). Since > > the test is perform only if the current directory == the process > > root directory, chdir("..") works and let you out of the original > > vserver root directory. > > If you did chdir("/") after the first chroot, subsequent chroot and > chdir("..") will not get you out. Unfortunately it will. Assume you've done all your chrooting magic. Now cd / (in the chroot). Chroot into /tmp. Your current working directory is now above your root directory. You can now cd .. with impunity and when you've got where you want to be, chroot ".". -- Nick Craig-Wood ncw@axis.demon.co.uk From vserver.error@solucorp.qc.ca Wed Feb 6 19:54:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g170sFAh017273 for ; Wed, 6 Feb 2002 19:54:15 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g170WIg17186 for vserver.list; Wed, 6 Feb 2002 19:32:18 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.conostix.com (perycles.synoptic.be [195.207.52.190] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g170WGR17182 for ; Wed, 6 Feb 2002 19:32:17 -0500 Received: from localhost (fpmip@localhost) by mail.conostix.com (8.11.6/8.11.2) with ESMTP id g170WH905584 for ; Thu, 7 Feb 2002 01:32:17 +0100 Date: Thu, 7 Feb 2002 01:32:17 +0100 (CET) From: vserver@fruru.com X-X-Sender: fpmip@mail.conostix.com To: vserver@solucorp.qc.ca Subject: Re: [vserver] RE: Performance, memory, etc In-Reply-To: <02d601c1af69$13fa1d30$b5a401d5@home4v9eek8u3l> Message-ID: X-Swedish-Chef: Bork-Bork-Bork X-Plan: World Domination MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 25 On Wed, 6 Feb 2002, John Lyons wrote: > > > Would it be possible to have two/three/multiple IPv4 roots in a vserver ? > > That way we could do virtual hosting per vserver. > > I didn't think that anyone was doing virtual hosting based on IP's anymore? not for web serving, no. > (Or have I misunderstood your question?) i don't think so, but the world is larger than webservers only ;-) > > We're using name based virtual hosting ie 1 ip to multiple domains. Can't > see a lot of need for 1 ip per domain? Cheers Tycho -- Tycho Fruru tycho.fruru@conostix.com Users' impressions of different operating systems, expressed as emoticons: Linux: :) Windows: XP From vserver.error@solucorp.qc.ca Wed Feb 6 22:25:52 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g173PpAh027867 for ; Wed, 6 Feb 2002 22:25:52 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1735OS19945 for vserver.list; Wed, 6 Feb 2002 22:05:24 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1735LR19941 for ; Wed, 6 Feb 2002 22:05:22 -0500 Received: (qmail 3792 invoked from network); 7 Feb 2002 03:13:08 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 7 Feb 2002 03:13:08 -0000 Received: (qmail 17771 invoked from network); 7 Feb 2002 03:07:46 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 7 Feb 2002 03:07:46 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Thu, 7 Feb 2002 14:21:53 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] Re: [useradd] Adding user fails in vserver Message-ID: <3C628D81.17099.3B7A31@localhost> Priority: normal In-reply-to: <20020206133010.c2a3faecfc2c@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 26 On Wednesday, 6 February 2002 at 13:30, Jacques Gelinas wrote: > You have a clean state. No open directory. You current > directory point to /vservers/v1 > > You do chroot ("/vservers/v1"); > > At this point, all is clean. > > Then root inside the vserver v1 do this > > int fd = open ("/",O_RDONLY); > > Now fd point to /vservers/v1 effectivly > > chroot ("/tmp"); > > Now we are in a chroot inside a chroot. Note that on the kernel > side, the current process has its root in /vservers/v1/tmp, but > there is no such a thing as nested chroot. I mean, all the kernel > knows from now on is that this process has /vservers/v1/tmp > as its root and it can't tell the difference between a process > like this one and another process having done > > chroot ("/vservers/v1/tmp") > > right from the root server. > > Now, the process simply do > > fchdir (fd) > > Its current directory is now /vservers/v1. So even if the chroot > system call had force the current directory to /tmp (/vservers/v1/tmp) > now, the process current directory is behind the process root. From > now on, the process can perform file operation behind its root. > But it is locked into using relative addressing. Whenever it does Yep, I understand now. That sucks. What's the point of chroot then if it's so easy to break out ( provided you have CAP_SYS_CHROOT of course ). I have to admit I was somewhat reluctant to apply vfs_permission change to the 2.2.20ctx patch because I was fearing that it may break some progs and I didn't understand the issue fully. Now that I do, I'll have to add the fix asap. thanks Ed From vserver.error@solucorp.qc.ca Wed Feb 6 22:31:31 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g173VUAh027910 for ; Wed, 6 Feb 2002 22:31:30 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g173BlH20032 for vserver.list; Wed, 6 Feb 2002 22:11:47 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g173BjR20027 for ; Wed, 6 Feb 2002 22:11:45 -0500 Received: (qmail 4323 invoked from network); 7 Feb 2002 03:19:34 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 7 Feb 2002 03:19:34 -0000 Received: (qmail 17798 invoked from network); 7 Feb 2002 03:14:14 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 7 Feb 2002 03:14:14 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Thu, 7 Feb 2002 14:28:21 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] Re: [useradd] Adding user fails in vserver Message-ID: <3C628F05.15252.416602@localhost> Priority: normal In-reply-to: <20020206203535.A4082@axis.demon.co.uk> References: <3C6141B2.23586.1B74DA@localhost>; from edward@paradigm4.com.au on Wed, Feb 06, 2002 at 02:46:10PM +1100 X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 27 On Wednesday, 6 February 2002 at 20:35, Nick Craig-Wood wrote: > I wrote a proof of concept exploit which will break any chroot > provided the user that runs it has CAP_CHROOT. I'll email the exploit > to you if you want. yes please do. > > If you did chdir("/") after the first chroot, subsequent chroot and > > chdir("..") will not get you out. > > Unfortunately it will. Assume you've done all your chrooting magic. > Now cd / (in the chroot). Chroot into /tmp. Your current working > directory is now above your root directory. You can now cd .. with > impunity and when you've got where you want to be, chroot ".". Thanks, Jacques already explained it to me. Ed From vserver.error@solucorp.qc.ca Wed Feb 6 23:05:33 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1745WAh028128 for ; Wed, 6 Feb 2002 23:05:32 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g173e3X20432 for vserver.list; Wed, 6 Feb 2002 22:40:03 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hunt.vizional.com (hunt.vizional.com [216.52.247.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g173e3R20428 for ; Wed, 6 Feb 2002 22:40:03 -0500 Received: (qmail 28619 invoked from network); 7 Feb 2002 03:28:04 -0000 Received: from unknown (HELO POST.sm1.vizional.com) (216.52.247.254) by hunt.vizional.com with SMTP; 7 Feb 2002 03:28:04 -0000 X-MimeOLE: Produced By Microsoft Exchange V6.0.4712.0 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----_=_NextPart_001_01C1AF89.1D819074" Subject: [vserver] Kill script Date: Wed, 6 Feb 2002 19:39:58 -0800 Message-ID: <484A0FDBBF168642A08EDA7BDAC18FE210D9A1@POST.sm1.vizional.com> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Kill script Thread-Index: AcGviR2zRghQf+DtRi+d2m9gddnOmg== From: "Philip Snyder" To: Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 28 This is a multi-part message in MIME format. ------_=_NextPart_001_01C1AF89.1D819074 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Here's something I hacked together. By no means does it encompass the entire wealth of the kill command... but it makes killing a process in context much more straight forward. Hope someone else finds this of use as well. Will add multiple process & signal support soon. -Philip <>=20 ------_=_NextPart_001_01C1AF89.1D819074 Content-Type: application/octet-stream; name="vkill" Content-Transfer-Encoding: base64 Content-Description: vkill Content-Disposition: attachment; filename="vkill" IyEvdXNyL2Jpbi9wZXJsIC13CiMKIyBraWxsIHdyYXBwZXIgZm9yIHZzZXJ2ZXIuIAojIFBoaWxp cCBTbnlkZXIgPHBzbnlkZXJAdml6aW9uYWwuY29tPgojIDIwMDIvMDIvMDYgMTk6MDAgUFNUCiMK CgokUFJPQyA9ICRBUkdWWzBdOwoKIyBHcmFiIHRoZSBvdXRwdXQgZnJvbSBhIGNvbnRleHQgcXVl cnkgYWdhaW5zdCB0aGlzIHByb2Nlc3MgaWQKb3BlbihQSCwgIi91c3Ivc2Jpbi9jaGNvbnRleHQg LS1jdHggMSBjYXQgL3Byb2MvJFBST0Mvc3RhdHVzIDI+JjEgfCIpOwoKIyBMb29wIHRocm91Z2gg dGhlIG91dHB1dAp3aGlsZSAoPFBIPikgewoKICAjIFNlYXJjaGluZyBmb3IgYSBsaW5lIHRoYXQg bG9va3MgbGlrZSB0aGlzOgogICMgc19jb250ZXh0OiAjCiAgaWYgKC9ec19jb250ZXh0OiAoWzAt OV0rKS8pIHsKCiAgICBwcmludCAiUHJvY2VzcyBpZCAkUFJPQyB3YXMgZm91bmQgaW4gc2VjdXJp dHkgY29udGV4dCAkMS5cbiI7CgogICAgIyBNYWtlIHN1cmUgdGhlIHByb2Nlc3MgaXMgaW4gYSB2 c2VydmVyIGNvbnRleHQKICAgIGlmICgkMSA+IDApIHsKCiAgICAgICMgU2luY2Ugd2UgaGF2ZSB0 aGUgY29udGV4dCBhbmQgdGhlIHByb2Nlc3MgaWQsIHdlIGNhbiBraWxsIGl0CiAgICAgIHByaW50 ICIgKyBLaWxsaW5nLi4uICI7CiAgICAgIGAvdXNyL3NiaW4vY2hjb250ZXh0IC0tY3R4ICQxIGtp bGwgJFBST0NgOwogICAgICBwcmludCAiW2RvbmVdXG4iOwoKICAgIH0gZWxzZSB7CgogICAgICAj IE5vdCBpbiB2c2VydmVyIGNvbnRleHQsIHNvIGl0cyBhIHByb2Nlc3Mgb24gdGhlIGFjdHVhbCBz ZXJ2ZXIKICAgICAgcHJpbnQgIiArIEtpbGxpbmcuLi4gIjsKICAgICAgYGtpbGwgJFBST0NgOwog ICAgICBwcmludCAiW2RvbmVdXG4iOwoKICAgIH0KICAgIGV4aXQ7CiAgfQp9CgpwcmludCAiUHJv Y2VzcyBpZCAkUFJPQyBub3QgZm91bmQuXG4iOwpleGl0Cg== ------_=_NextPart_001_01C1AF89.1D819074-- From vserver.error@solucorp.qc.ca Fri Feb 8 04:45:01 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g189j0Ah022281 for ; Fri, 8 Feb 2002 04:45:01 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g189KqW19852 for vserver.list; Fri, 8 Feb 2002 04:20:52 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.trekia.se (stratos.trekia.se [212.105.83.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g189KjR19845 for ; Fri, 8 Feb 2002 04:20:51 -0500 Received: from localhost (jonas@localhost) by mail.trekia.se (8.11.1/8.11.1) with ESMTP id g189KSk20937 for ; Fri, 8 Feb 2002 10:20:29 +0100 X-Authentication-Warning: stratos.trekia.se: jonas owned process doing -bs Date: Fri, 8 Feb 2002 10:20:28 +0100 (CET) From: =?ISO-8859-1?Q?Jonas_Bj=F6rklund?= X-X-Sender: jonas@stratos To: vserver@solucorp.qc.ca Subject: [vserver] memory Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 29 Hi, I installed vserver yesterday. I'm very impressed! I did have some problem with the init scripts since I'm not running RedHat. But now it's working. I have a question, is it possbile to limit the memory for each vserver? From vserver.error@solucorp.qc.ca Fri Feb 8 05:12:52 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18ACpAh022396 for ; Fri, 8 Feb 2002 05:12:51 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g189n6H20468 for vserver.list; Fri, 8 Feb 2002 04:49:06 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g189n5R20464 for ; Fri, 8 Feb 2002 04:49:06 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id A6EBFFFC for ; Fri, 8 Feb 2002 10:48:59 +0100 (CET) Subject: [vserver] vserver vs. freevsd From: klavs klavsen To: vserver@solucorp.qc.ca Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-zxQPHZJ6n4RGAUaz+YjW" X-Mailer: Evolution/1.0.1 Date: 08 Feb 2002 10:48:59 +0100 Message-Id: <1013161739.2346.9.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 30 --=-zxQPHZJ6n4RGAUaz+YjW Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I'm looking for a secure environment to run 1 virtual server, on 1 real machine - for the purpose of protecting the machine against dumb users, hacked services and so forth. vserver requires a kernel patch. freevsd doesn't. I'm unfortunately not clever enough to figure out, if that means that freevsd is less safe than vserver, or if vserver is just troublesome as it can't use the standard kernel. I hoped you could help me with the (dis)advantages of vserver over freevsd. Thankyou in advance. --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-zxQPHZJ6n4RGAUaz+YjW Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8Y58L4c1kHlhtW8oRAo9WAKCmIITJklhqAw25VlJve4AOGuog/QCgiC5o ASyDxyQKE3h///zLoQr3QM0= =2S0s -----END PGP SIGNATURE----- --=-zxQPHZJ6n4RGAUaz+YjW-- From vserver.error@solucorp.qc.ca Fri Feb 8 06:07:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18B7dAh022636 for ; Fri, 8 Feb 2002 06:07:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18Aj4G21802 for vserver.list; Fri, 8 Feb 2002 05:45:04 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g18Aj2R21798 for ; Fri, 8 Feb 2002 05:45:03 -0500 Received: (qmail 24698 invoked from network); 8 Feb 2002 10:53:07 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 8 Feb 2002 10:53:07 -0000 Received: (qmail 22807 invoked from network); 8 Feb 2002 10:47:43 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 8 Feb 2002 10:47:43 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Fri, 8 Feb 2002 22:01:39 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=ISO-8859-1 Subject: Re: [vserver] memory Message-ID: <3C644AC3.13398.24D5ED@localhost> Priority: normal In-reply-to: X-mailer: Pegasus Mail for Win32 (v3.12c) Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from Quoted-printable to 8bit by dns.solucorp.qc.ca id g18Aj2R21798 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 31 On Friday, 8 February 2002 at 10:20, Jonas Björklund wrote: > I have a question, is it possbile to limit the memory for each vserver? Not directly atm ( work in progress ) but you can limit the number of processes in each vserver ( NPROC parameter ) and you can limit the memory that a single vserver process can have e.g. # limit RSS, DSS of a single process to 8MB and VM size of a process to 16MB ulimit -m 8192 -d 8192 -v 16384 # you can also limit the stack size ulimit -s 8192 # and the max. amount of "locked" memory ( not allowed to be swapped out ) ulimit -l 8192 # start your vserver vserver start ... adjust the values as you see fit. Ed From vserver.error@solucorp.qc.ca Fri Feb 8 06:42:24 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18BgNAh022777 for ; Fri, 8 Feb 2002 06:42:24 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18BC3822225 for vserver.list; Fri, 8 Feb 2002 06:12:03 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nninfo2.comm.it ([213.92.77.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18BC2R22221 for ; Fri, 8 Feb 2002 06:12:03 -0500 Received: from MICROXP ([62.110.198.130]) by nninfo2.comm.it (8.9.3/8.9.3) with SMTP id MAA13821 for ; Fri, 8 Feb 2002 12:13:02 +0100 From: "Dave" To: Subject: RE: [vserver] vserver vs. freevsd Date: Fri, 8 Feb 2002 12:11:55 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <1013161739.2346.9.camel@amd.vsen.dk> Importance: Normal Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 33 > vserver requires a kernel patch. freevsd doesn't. I'm unfortunately not > clever enough to figure out, if that means that freevsd is less safe > than vserver, or if vserver is just troublesome as it can't use the > standard kernel. I'm a former FreeVSD developer, and all I can say is stay away from it. The company that was supporting the project has decided to close the source and to release it as a commercial product. There have been very few updates in the last year. Also, freevsd does require a lot of patches in the standard library and the basic administration tools (fileutils) and is much harder to maintain than what I've seen on vserver. Also, vserver is much more secure and flexible than freevsd from what I've seen till now. I'm currently working on a new project which will take the best of the two worlds, but there won't be anything to play with for a few weeks from now. Till then, i'd use vserver if I had to start from scratch. Dave. From vserver.error@solucorp.qc.ca Fri Feb 8 07:15:19 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18CFJAh022913 for ; Fri, 8 Feb 2002 07:15:19 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18BnP723149 for vserver.list; Fri, 8 Feb 2002 06:49:25 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rhenium.btinternet.com (rhenium.btinternet.com [194.73.73.93]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18BnOR23143 for ; Fri, 8 Feb 2002 06:49:25 -0500 Received: from host213-1-132-69.btinternet.com ([213.1.132.69] helo=john-new) by rhenium.btinternet.com with esmtp (Exim 3.22 #8) id 16Z9Wo-0000qB-00 for vserver@solucorp.qc.ca; Fri, 08 Feb 2002 11:49:19 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Fri, 8 Feb 2002 11:49:00 -0000 From: "John Lyons" To: Subject: RE: [vserver] vserver vs. freevsd Date: Fri, 8 Feb 2002 11:48:59 -0000 Message-ID: <025801c1b096$98f5c0b0$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 34 > I'm a former FreeVSD developer, and all I can say is stay > away from it. LOL, I've got visions of an AA meeting. Dave stands up and admits he's a recovering FreeVSD developer and it's a 'bit shakey' We all clap, and offer words of encouragement :-) (Sorry I have a strange imagination!) I've been trying to tempt some of the FreeVSD users to try vserver as I felt that it had the potential to be so much better and easier to use that FreeVSD. > I'm currently working on a new project which will take the > best of the two worlds, but there won't be anything to play with for a few > weeks from now. Till then, i'd use vserver if I had to start from scratch. Will this be Opensource? Sounds interesting :-) From vserver.error@solucorp.qc.ca Fri Feb 8 07:40:43 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18CegAh023028 for ; Fri, 8 Feb 2002 07:40:43 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18CJr623682 for vserver.list; Fri, 8 Feb 2002 07:19:53 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18CJqR23678 for ; Fri, 8 Feb 2002 07:19:52 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id E2E86FFC for ; Fri, 8 Feb 2002 13:19:47 +0100 (CET) Subject: RE: [vserver] vserver vs. freevsd From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: <024f01c1b091$c7d50ee0$0100a8c0@johnnew> References: <024f01c1b091$c7d50ee0$0100a8c0@johnnew> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-Llgbzl/nRBFKTF0axIYE" X-Mailer: Evolution/1.0.1 Date: 08 Feb 2002 13:19:47 +0100 Message-Id: <1013170788.1697.15.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 35 --=-Llgbzl/nRBFKTF0axIYE Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-02-08 at 12:14, John Lyons wrote: >=20 > > I'm looking for a secure environment to run 1 virtual server, > > on 1 real > > machine - for the purpose of protecting the machine against > > dumb users, hacked services and so forth. >=20 > Vserver is THE solution not freevsd. Based on what arguments/features? =20 > > vserver requires a kernel patch. freevsd doesn't. I'm > > unfortunately not clever enough to figure out, if that means that freev= sd > is less safe > > than vserver, or if vserver is just troublesome as it can't use the > > standard kernel. >=20 > OK, if you're not experienced enough to patch the kernel forget FreeVSD. = The > mailing list for freevsd is full of people trying to install, configure a= nd > use it who are having all sorts of problems. I have no problem with compiling/patching kernels. Sorry if I somehow gave that impression. I just want the safest possible setup for my need. was also thining of asking alter, how LIDS works with the vserver patch. =20 > My advice to you would be to try the binary kernel first. > I found that it didn't have the network driver loaded that I wanted and I > didn't want to load it as a module. In Dec 2001 I'd never built a kernel = but > within an hour of starting I'd patched the kernel, built it, installed > vserver and was well on my way to getting my first vserver running. There's a binary kernel for vserver? well i'll just compile my own, if I decide that vserver is the best for me :-) =20 > There are several tutorials on this eg > http://www.linuxgazette.com/issue68/ghosh.html >=20 > Stick with vserver it beats freevsd hands down for ease of use. ease of use, isn't enough, if it doesn't have the necessary features. freevsd comes with some webpage management utilities. sounds pretty nice. =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-Llgbzl/nRBFKTF0axIYE Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8Y8Jj4c1kHlhtW8oRAiUzAKCoWeZIvRiAA7pkX9efAAXaiqs+CACfTYjM hewA2FrDiXQKvnktCqGXHyM= =4SAT -----END PGP SIGNATURE----- --=-Llgbzl/nRBFKTF0axIYE-- From vserver.error@solucorp.qc.ca Fri Feb 8 07:50:25 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18CoOAh023058 for ; Fri, 8 Feb 2002 07:50:25 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18CRWn23906 for vserver.list; Fri, 8 Feb 2002 07:27:32 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18CRVR23902 for ; Fri, 8 Feb 2002 07:27:31 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 8438DFFC for ; Fri, 8 Feb 2002 13:27:31 +0100 (CET) Subject: RE: [vserver] vserver vs. freevsd From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-B+ZuHa/8vX62SJNMmNsp" X-Mailer: Evolution/1.0.1 Date: 08 Feb 2002 13:27:31 +0100 Message-Id: <1013171251.1697.24.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 36 --=-B+ZuHa/8vX62SJNMmNsp Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-02-08 at 12:11, Dave wrote: > > vserver requires a kernel patch. freevsd doesn't. I'm unfortunately not > > clever enough to figure out, if that means that freevsd is less safe > > than vserver, or if vserver is just troublesome as it can't use the > > standard kernel. >=20 > I'm a former FreeVSD developer, and all I can say is stay away from it. T= he > company that was supporting the project has decided to close the source a= nd > to release it as a commercial product. There have been very few updates i= n > the last year. but they already have a commercial counterpart for it ..(proVSD) they intend to close down the OpenSource part of the project? damn. few updates are not good. what about vserver? it's v0.10 - that doesn't sound to me like, it has much development going on. If the mailinglists archive were accessible via web, one might see how much is going on, and what troubles people have. If you want, I'm sure, I could talk to www.sslug.dk (danish LUG), as they have such a system - and they also have news access to mailinglists. >=20 > Also, freevsd does require a lot of patches in the standard library and t= he > basic administration tools (fileutils) and is much harder to maintain tha= n > what I've seen on vserver. Also, vserver is much more secure and flexible > than freevsd from what I've seen till now. sounds like a big plus for vserver. couldn't see any patches in the freevsd-1.4.9 rpm, so I didn't know. =20 > I'm currently working on a new project which will take the best of the tw= o > worlds, but there won't be anything to play with for a few weeks from now= . > Till then, i'd use vserver if I had to start from scratch. ok. Not to be a sour grape, but perhaps it would be a good idea to add your ideas/time to vserver instead - to provide 1 great product with features and flexibility - instead of two products with half the developers (or so).=20 Thank you for your info. --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-B+ZuHa/8vX62SJNMmNsp Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8Y8Qz4c1kHlhtW8oRAtd3AJ9dEpG0tyACK8mRQjodI+XZ+j0QjQCeJob0 pHiKJ+6v6lLqeFHR98CzROE= =01rA -----END PGP SIGNATURE----- --=-B+ZuHa/8vX62SJNMmNsp-- From vserver.error@solucorp.qc.ca Fri Feb 8 07:55:21 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18CtLAh023074 for ; Fri, 8 Feb 2002 07:55:21 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18CXBF24054 for vserver.list; Fri, 8 Feb 2002 07:33:11 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from web4.internetx.de (web4.internetx.de [195.127.139.92]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18CXAR24050 for ; Fri, 8 Feb 2002 07:33:10 -0500 Received: from thomasp.internetx.de ([195.127.139.8]) by web4.internetx.de (8.12.2/8.12.2) with ESMTP id g18CX3N4014511 for ; Fri, 8 Feb 2002 13:33:03 +0100 Received: (from tomtom@localhost) by thomasp.internetx.de (8.11.3/8.11.3/SuSE Linux 8.11.1-0.5) id g18CWGw29839 for vserver@solucorp.qc.ca; Fri, 8 Feb 2002 13:32:16 +0100 Date: Fri, 8 Feb 2002 13:32:16 +0100 From: Thomas Preissler To: vserver@solucorp.qc.ca Subject: Re: [vserver] memory Message-ID: <20020208133215.M3899@thomasp.internetx.de> References: Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.2.5i In-Reply-To: ; from jonasb@hem.passagen.se on Fri, Feb 08, 2002 at 10:20:28AM +0100 Organization: InterNetX, Regensburg, Germany X-Uptime: 10:17am up 1 day, 16:35, 23 users, load average: 0.07, 0.15, 0.06 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 37 * Jonas Björklund wrote on 08 Feb 2002: > Hi, > > I installed vserver yesterday. I'm very impressed! I did have some problem > with the init scripts since I'm not running RedHat. But now it's working. Which problems exactly did you have? I can't start my rc-Scripts with init, too. I use plain SuSE 7.2. > > I have a question, is it possbile to limit the memory for each vserver? Oh, you want a "vulimit", isnt it? Greetz, Tom From vserver.error@solucorp.qc.ca Fri Feb 8 08:17:34 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18DHXAh023209 for ; Fri, 8 Feb 2002 08:17:34 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18Co4u24446 for vserver.list; Fri, 8 Feb 2002 07:50:04 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18Co4R24442 for ; Fri, 8 Feb 2002 07:50:04 -0500 Received: from host213-122-198-201.dial.btopenworld.com ([213.122.198.201] helo=john-new) by tungsten.btinternet.com with esmtp (Exim 3.22 #8) id 16ZATa-0003oo-00 for vserver@solucorp.qc.ca; Fri, 08 Feb 2002 12:50:04 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Fri, 8 Feb 2002 12:49:31 -0000 From: "John Lyons" To: Subject: RE: [vserver] vserver vs. freevsd Date: Fri, 8 Feb 2002 12:49:29 -0000 Message-ID: <027001c1b09f$0d8d3090$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <1013170788.1697.15.camel@amd.vsen.dk> Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 38 > > Stick with vserver it beats freevsd hands down for ease of use. > ease of use, isn't enough, if it doesn't have the necessary features. > freevsd comes with some webpage management utilities. sounds pretty > nice. www.webhostingtalk.com discussions on freevsd explain how poor and restricted the web based control panel is. Vserver doesn't have a web based admin package with it yet (I'm trying to sort that out) but with root access to your virtual server you can easily install webmin which has 10 times as many features as the FreeVSD control panel. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 8 08:23:22 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18DNLAh023245 for ; Fri, 8 Feb 2002 08:23:21 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18Cw7x24593 for vserver.list; Fri, 8 Feb 2002 07:58:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.microbsd.net ([65.162.182.40]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18Cw6R24589 for ; Fri, 8 Feb 2002 07:58:07 -0500 Received: from vpan (vpan [65.162.182.40]) by mail.microbsd.net (Postfix) with ESMTP id B6FF02299D for ; Fri, 8 Feb 2002 08:56:33 -0500 (EST) Subject: RE: [vserver] Control Panel From: Kerberus To: vserver@solucorp.qc.ca In-Reply-To: <027001c1b09f$0d8d3090$0100a8c0@johnnew> References: <027001c1b09f$0d8d3090$0100a8c0@johnnew> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.1 Date: 08 Feb 2002 08:56:33 -0500 Message-Id: <1013176593.97919.1.camel@vpan.netwolves.com> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 39 Who needs/wants a control panel ?????? I might just have such a beast I developed a while back ! > > www.webhostingtalk.com discussions on freevsd explain how poor and > restricted the web based control panel is. > > Vserver doesn't have a web based admin package with it yet (I'm trying to > sort that out) but with root access to your virtual server you can easily > install webmin which has 10 times as many features as the FreeVSD control > panel. From vserver.error@solucorp.qc.ca Fri Feb 8 08:47:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18DlEAh023357 for ; Fri, 8 Feb 2002 08:47:14 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18Cx4024608 for vserver.list; Fri, 8 Feb 2002 07:59:04 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18Cx3R24604 for ; Fri, 8 Feb 2002 07:59:03 -0500 Received: from host213-122-198-201.dial.btopenworld.com ([213.122.198.201] helo=john-new) by tungsten.btinternet.com with esmtp (Exim 3.22 #8) id 16ZAcI-00050i-00 for vserver@solucorp.qc.ca; Fri, 08 Feb 2002 12:59:03 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Fri, 8 Feb 2002 12:58:43 -0000 From: "John Lyons" To: Subject: RE: [vserver] vserver vs. freevsd Date: Fri, 8 Feb 2002 12:58:43 -0000 Message-ID: <027101c1b0a0$56508ce0$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <1013171251.1697.24.camel@amd.vsen.dk> Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 40 > what about vserver? it's v0.10 - that doesn't sound to me like, it has > much development going on. > There are many more FreeVSD developers and users than vserver, but there aren't many users of FreeVSD that are actually able to contribute to it's development because it's such a complex package and the company behind FreeVSD are very cautious about accepting contributions from people outside the development group. Vserver was developed in house some time ago to facilitate specific development/testing tasks. It was released as open source in Oct last year, v0.1, as a fairly coherent system. There have been 10 versions released in 4 months. That's a much better development rate than Freevsd is going through, although I will concede FreeVSD has been around for longer. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 8 09:11:09 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18EB8Ah023566 for ; Fri, 8 Feb 2002 09:11:08 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18DgVZ25451 for vserver.list; Fri, 8 Feb 2002 08:42:31 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nninfo2.comm.it ([213.92.77.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18DgUR25447 for ; Fri, 8 Feb 2002 08:42:31 -0500 Received: from MICROXP ([62.110.198.130]) by nninfo2.comm.it (8.9.3/8.9.3) with SMTP id OAA21077 for ; Fri, 8 Feb 2002 14:43:35 +0100 From: "Dave" To: Subject: RE: [vserver] vserver vs. freevsd Date: Fri, 8 Feb 2002 14:42:26 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <1013170788.1697.15.camel@amd.vsen.dk> Importance: Normal Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 41 > ease of use, isn't enough, if it doesn't have the necessary features. > freevsd comes with some webpage management utilities. sounds pretty > nice. The webadmin scripts of freevsd have not been updated for 5 releases of freevsd now. They're missing important parts that were developed after. Dave. From vserver.error@solucorp.qc.ca Fri Feb 8 09:32:05 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18EW4Ah023733 for ; Fri, 8 Feb 2002 09:32:04 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18E05f25697 for vserver.list; Fri, 8 Feb 2002 09:00:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.trekia.se (stratos.trekia.se [212.105.83.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18E04R25693 for ; Fri, 8 Feb 2002 09:00:04 -0500 Received: from localhost (jonas@localhost) by mail.trekia.se (8.11.1/8.11.1) with ESMTP id g18E03111282 for ; Fri, 8 Feb 2002 15:00:03 +0100 X-Authentication-Warning: stratos.trekia.se: jonas owned process doing -bs Date: Fri, 8 Feb 2002 15:00:03 +0100 (CET) From: jonasb@hem.passagen.se X-X-Sender: jonas@stratos To: vserver@solucorp.qc.ca Subject: Re: [vserver] memory In-Reply-To: <20020208133215.M3899@thomasp.internetx.de> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 42 Hi, > > I installed vserver yesterday. I'm very impressed! I did have some problem > > with the init scripts since I'm not running RedHat. But now it's working. > > Which problems exactly did you have? > > I can't start my rc-Scripts with init, too. > > I use plain SuSE 7.2. I use Debian. And I changed vserver script: #STARTCMD="/etc/rc.d/rc 3" STARTCMD="/etc/init.d/rc 2" Maybe there is more I have to change. But this is OK for now. I did have someproblems with compiling the kernel and vserver-0.10 but those problems was just because of me. =) > > I have a question, is it possbile to limit the memory for each vserver? > > Oh, you want a "vulimit", isnt it? I don't know. What does vulimit do? And where can I find it? From vserver.error@solucorp.qc.ca Fri Feb 8 09:48:47 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18EmkAh023826 for ; Fri, 8 Feb 2002 09:48:46 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18ENlC26124 for vserver.list; Fri, 8 Feb 2002 09:23:47 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18ENkR26120 for ; Fri, 8 Feb 2002 09:23:47 -0500 Received: from host213-122-194-240.in-addr.btopenworld.com ([213.122.194.240] helo=john-new) by protactinium.btinternet.com with esmtp (Exim 3.22 #8) id 16ZBwH-0005FM-00 for vserver@solucorp.qc.ca; Fri, 08 Feb 2002 14:23:46 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Fri, 8 Feb 2002 14:23:28 -0000 From: "John Lyons" To: Subject: RE: [vserver] Control Panel Date: Fri, 8 Feb 2002 14:23:27 -0000 Message-ID: <028201c1b0ac$2d0e9b40$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <1013176593.97919.1.camel@vpan.netwolves.com> Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 43 > Who needs/wants a control panel ?????? I might just have such > a beast I developed a while back ! If you've got something, yes by all means please let me have a nose. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 8 09:58:11 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18EwAAh023930 for ; Fri, 8 Feb 2002 09:58:10 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18EP6M26170 for vserver.list; Fri, 8 Feb 2002 09:25:06 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from web4.internetx.de (web4.internetx.de [195.127.139.92]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18EP5R26166 for ; Fri, 8 Feb 2002 09:25:05 -0500 Received: from thomasp.internetx.de ([195.127.139.8]) by web4.internetx.de (8.12.2/8.12.2) with ESMTP id g18EP3N4004549 for ; Fri, 8 Feb 2002 15:25:03 +0100 Received: (from tomtom@localhost) by thomasp.internetx.de (8.11.3/8.11.3/SuSE Linux 8.11.1-0.5) id g18EOHo30981 for vserver@solucorp.qc.ca; Fri, 8 Feb 2002 15:24:17 +0100 Date: Fri, 8 Feb 2002 15:24:17 +0100 From: Thomas Preissler To: vserver@solucorp.qc.ca Subject: Re: [vserver] memory Message-ID: <20020208152417.S3899@thomasp.internetx.de> References: <20020208133215.M3899@thomasp.internetx.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from jonasb@hem.passagen.se on Fri, Feb 08, 2002 at 03:00:03PM +0100 Organization: InterNetX, Regensburg, Germany X-Uptime: 10:17am up 1 day, 16:35, 23 users, load average: 0.07, 0.15, 0.06 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 44 * jonasb@hem.passagen.se wrote on 08 Feb 2002: > Hi, > > > > I installed vserver yesterday. I'm very impressed! I did have some problem > > > with the init scripts since I'm not running RedHat. But now it's working. > > > > Which problems exactly did you have? > > > > I can't start my rc-Scripts with init, too. > > > > I use plain SuSE 7.2. > > I use Debian. And I changed vserver script: > > > #STARTCMD="/etc/rc.d/rc 3" > STARTCMD="/etc/init.d/rc 2" > > Maybe there is more I have to change. But this is OK for now. > > I did have someproblems with compiling the kernel and vserver-0.10 but > those problems was just because of me. =) > > > > I have a question, is it possbile to limit the memory for each vserver? > > > > Oh, you want a "vulimit", isnt it? > > I don't know. What does vulimit do? And where can I find it? Sorry. I did not want to confuse you. It was just an idea. From vserver.error@solucorp.qc.ca Fri Feb 8 10:55:36 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18FtZAh024514 for ; Fri, 8 Feb 2002 10:55:36 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18FHiU27181 for vserver.list; Fri, 8 Feb 2002 10:17:44 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g18FHgR27177 for ; Fri, 8 Feb 2002 10:17:43 -0500 Received: (qmail 13273 invoked from network); 8 Feb 2002 15:25:43 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 8 Feb 2002 15:25:43 -0000 Received: (qmail 23530 invoked from network); 8 Feb 2002 15:20:21 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 8 Feb 2002 15:20:21 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sat, 9 Feb 2002 02:34:12 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: RE: [vserver] vserver vs. freevsd Message-ID: <3C648AA4.16984.11E66A8@localhost> Priority: normal References: In-reply-to: <1013171251.1697.24.camel@amd.vsen.dk> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 45 On Friday, 8 February 2002 at 13:27, klavs klavsen wrote: > If the mailinglists archive were accessible via web, one might see how > much is going on, and what troubles people have. If you want, I'm sure, > I could talk to www.sslug.dk (danish LUG), as they have such a system - > and they also have news access to mailinglists. Sounds like a good idea. Ed From vserver.error@solucorp.qc.ca Fri Feb 8 12:13:46 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18HDjAh025614 for ; Fri, 8 Feb 2002 12:13:46 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18GZCL29129 for vserver.list; Fri, 8 Feb 2002 11:35:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g18GZBR29125 for ; Fri, 8 Feb 2002 11:35:11 -0500 Received: (qmail 16081 invoked from network); 8 Feb 2002 16:43:19 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 8 Feb 2002 16:43:19 -0000 Received: (qmail 23663 invoked from network); 8 Feb 2002 16:37:34 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 8 Feb 2002 16:37:33 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sat, 9 Feb 2002 03:51:47 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: RE: [vserver] vserver vs. freevsd Message-ID: <3C649CD3.21197.165709D@localhost> Priority: normal References: <024f01c1b091$c7d50ee0$0100a8c0@johnnew> In-reply-to: <1013170788.1697.15.camel@amd.vsen.dk> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 46 On Friday, 8 February 2002 at 13:19, klavs klavsen wrote: > I have no problem with compiling/patching kernels. Sorry if I somehow > gave that impression. I just want the safest possible setup for my need. > was also thining of asking alter, how LIDS works with the vserver patch. Last time I tried LIDS it clashed with vserver. A lot of work would be needed to adapt/combine both patches which is made even more difficult by LIDS lagging a bit behind in the base kernel ( e.g. their latest 2.4.x is 2.4.16 ). One of the great things about vserver is that it allows you to run more than 1 distro ( or set of servers ) _transparently_ on the same machine. If you are not really interested in that aspect and just want tight ( MAC ) security, you may want to look into SeLinux. http://www.nsa.gov/selinux/ There is also a set of security stuff for 2.4.x which you may find useful: http://www.grsecurity.net/ hth Ed From vserver.error@solucorp.qc.ca Fri Feb 8 14:09:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g18J9VAh026757 for ; Fri, 8 Feb 2002 14:09:33 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g18Ic0l31494 for vserver.list; Fri, 8 Feb 2002 13:38:00 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tincan.org ([216.64.180.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g18IbxR31490 for ; Fri, 8 Feb 2002 13:37:59 -0500 Received: from localhost (raanders@localhost) by tincan.org (8.9.3/8.8.7) with ESMTP id KAA15011 for ; Fri, 8 Feb 2002 10:37:57 -0800 Date: Fri, 8 Feb 2002 10:37:57 -0800 (PST) From: "Roderick A. Anderson" To: vserver@solucorp.qc.ca Subject: [vserver] New to list Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 47 Hi, Wanted to say hi and how happy I am that Jacques got this list up. I've been fiddling with vserver since late November off and on and actually have a machine running it. Two domains in vservers and one in the main. The main server isn't the greatest solution but since the system is located in colo about 30 miles away and I wanted to get it online I didn't spend a lot of time figuring out a really slick setup. The 'vserver' advantage is I can change it pretty easily from a remote location/login. With that I'd like to know is if anyone has got PostgreSQL (Pg) running in any configuration of main and vservers? I ran into a problem with - what I thing I understand - Pg binding to all the addresses. I created a v_postgresql init script but once I started Pg in a vserver, I couldn't restart it in the main server. Haven't had a chance to retry since I upgraded to the latest ctx kernel and rebooted. There was a short thread on the Pg list about this but I got the idea the fix required changes to the Pg code. Not received by the Pg people very well and Jacques says it shouldn't be a problem. Vserver should do the 'Right' thing. Enough rambling. Again, Hi. Rod -- Let Accuracy Triumph Over Victory Zetetic Institute "David's Sling" Marc Stiegler From vserver.error@solucorp.qc.ca Fri Feb 8 20:43:04 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g191h3Ah029707 for ; Fri, 8 Feb 2002 20:43:04 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g191JWb07533 for vserver.list; Fri, 8 Feb 2002 20:19:32 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g191JWR07528 for ; Fri, 8 Feb 2002 20:19:32 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g191JSAi029504 for ; Fri, 8 Feb 2002 20:19:28 -0500 Date: Fri, 8 Feb 2002 20:19:28 -0500 (EST) From: Vlad To: vserver@solucorp.qc.ca Subject: [vserver] shrink wrap it In-Reply-To: <1013170788.1697.15.camel@amd.vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 48 > There's a binary kernel for vserver? well i'll just compile my own, if I > decide that vserver is the best for me :-) > ease of use, isn't enough, if it doesn't have the necessary features. > freevsd comes with some webpage management utilities. sounds pretty > nice. Why is it that every few months people troll up from out of nowhere and expect a full comparison of features between two projects. At $80/box you can go to Best Buy and compare Mandrake and Redhat. However on a free mailing list, especially for a project provided free of charge, it makes for little common sense to show up and start insulting the users and developers of this code. For the record, vserver has the most documentation you will find for a project of this caliber and is very straight forward. There is a detailed installation doc on the web page http://www.solucorp.qc.ca/miscprj/s_context.hc?s1=4&s2=0&s3=0&s4=0&full=0&prjstate=1&nodoc=0 Now on to flaming: Part of dealing with open source projects is doing the research and figuring things out on your own. Perhaps thats why its not in a shrink wrapped box with a choice of 8 different GUI's to hold your hand. It involves research, debugging, and even writing code on your own. Tradeoff is hiring an incompetent consultant or Microsoft, pick your poison. If you expect free help I suggest you ask for it with plenty of detail and outmost respect for the people that you're expecting assistance from. Derogatory comments about development progress or inconvenient mailing list are not a good way to ask for help. Half-assed questions about lids and "standard kernel" just show you didn't even bother to look at the homepage; If you did you'd notice that there is a changelog page: 10 updates in 3 months. and further sarcasm: I think the real problem here is that the project web page doesn't have enough pictures or blinking "NEW" buttons. Reading turns everyone off, and just like back in high school, its easier to just find someone that has read the book already that can summarize it than for you to actually put in some effort. Damn words, they are everywhere! From vserver.error@solucorp.qc.ca Fri Feb 8 21:21:25 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g192LOAh030044 for ; Fri, 8 Feb 2002 21:21:25 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1927vu08335 for vserver.list; Fri, 8 Feb 2002 21:07:57 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from carbon.btinternet.com (carbon.btinternet.com [194.73.73.92]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1927uR08331 for ; Fri, 8 Feb 2002 21:07:57 -0500 Received: from host213-1-171-200.btinternet.com ([213.1.171.200] helo=john-new) by carbon.btinternet.com with esmtp (Exim 3.22 #8) id 16ZMve-0000qN-00 for vserver@solucorp.qc.ca; Sat, 09 Feb 2002 02:07:50 +0000 Received: from 213.1.171.200 by john-new ([213.1.171.200] running VPOP3) with SMTP for ; Sat, 9 Feb 2002 02:07:33 -0000 From: "John Lyons" To: Subject: RE: [vserver] shrink wrap it Date: Sat, 9 Feb 2002 02:07:32 -0000 Message-ID: <001f01c1b10e$895a9cc0$d3bd01d5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 49 > I think the real problem here is that the project web page > doesn't have > enough pictures or blinking "NEW" buttons. Reading turns > everyone off, and > just like back in high school, its easier to just find > someone that has > read the book already that can summarize it than for you to > actually put > in some effort. Damn words, they are everywhere! Well said that man! Vserver is written and supported by people who know what they're talking about. You only have to read this mailing list and compare it to the FreeVSD list to see the differences. This list is populated by developers who are able to discuss kernel code in detail and make an impact (I'm a pleb compared to 99% of vserver gurus here) The freevsd list is full of experienced sys admins and beginners all asking why X feature doesn't work or why their system has stopped working when they did Y. Vserver works and has so much potential because of it's clean look, excellent documentation and simplicity. FreeVSD users download 200 and 300mb skels for their servers because setting up a working virtual server is so complex. There is a danger that new users see a small download file 30 pages of docs and a few FAQ's and think that it's a lightweight package. They couldn't be more wrong. So far Vserver works for me. It does everything I want it to, there are no significant bugs that cause problems and I'm struggling to see what could possibly be done next to the system to improve it. To my mind it works and any further development is tweaking at the edges. (perhaps I'm wrong here as I'm not a teche and don't understand these things but I think it's darn good as it is :-)) Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 From vserver.error@solucorp.qc.ca Fri Feb 8 22:37:06 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g193b5Ah030609 for ; Fri, 8 Feb 2002 22:37:05 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g193PVN09550 for vserver.list; Fri, 8 Feb 2002 22:25:31 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g193PVR09546 for ; Fri, 8 Feb 2002 22:25:31 -0500 Received: from remtk.solucorp.qc.ca (g39-19.citenet.net [206.123.39.19]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g193QJ648868 for ; Fri, 8 Feb 2002 22:26:25 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g193Cm302989 for vserver@solucorp.qc.ca; Fri, 8 Feb 2002 22:12:48 -0500 From: Jacques Gelinas Date: Fri, 8 Feb 2002 22:12:48 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] Control Panel X-mailer: tlmpmail 0.1 Message-ID: <20020208221248.975955d68928@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 50 On Fri, 8 Feb 2002 08:56:33 -0500, Kerberus wrote > Who needs/wants a control panel ?????? I might just have such a beast I > developed a while back ! What should it contain. I mean, vservers do not requires any special admin tools (webmin, linuxconf, name it, works normally there). So I guess someone wants some control panel to see what is going on, start/stop vserver I am planing a linuxconf module for vserver btw, which would handle the root server side of vserver. Ideas welcome. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Feb 8 22:37:06 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g193b6Ah030610 for ; Fri, 8 Feb 2002 22:37:06 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g193PZe09559 for vserver.list; Fri, 8 Feb 2002 22:25:35 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g193PZR09555 for ; Fri, 8 Feb 2002 22:25:35 -0500 Received: from remtk.solucorp.qc.ca (g39-19.citenet.net [206.123.39.19]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g193Qa648891 for ; Fri, 8 Feb 2002 22:26:36 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g192u7402978 for vserver@solucorp.qc.ca; Fri, 8 Feb 2002 21:56:07 -0500 From: Jacques Gelinas Date: Fri, 8 Feb 2002 21:56:07 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] memory X-mailer: tlmpmail 0.1 Message-ID: <20020208215607.14c274f5f985@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 51 On Fri, 8 Feb 2002 13:32:16 -0500, Thomas Preissler wrote > Which problems exactly did you have? > > I can't start my rc-Scripts with init, too. > > I use plain SuSE 7.2. Since kernel 2.4.17ctx-6 and vserver 0.10, if you set the fakeinit parameter in the S_FLAGS entry of a vserver configuration file, like this S_FLAGS="nproc sched fakeinit" the vserver will be started simply by running /sbin/init. The standard /sbin/init of the distribution. So ajust you /vservers/xx/ete/inittab. removing stuff like the console getty and you are all set. Note that if you create the necessary node in /vserver/xx/dev (tty3 for example) you can very well run a virtual console in a vserver, creating a v-workstation :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Feb 8 22:38:10 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g193c9Ah030615 for ; Fri, 8 Feb 2002 22:38:09 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g193PcC09571 for vserver.list; Fri, 8 Feb 2002 22:25:38 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g193PcR09567 for ; Fri, 8 Feb 2002 22:25:38 -0500 Received: from remtk.solucorp.qc.ca (g39-19.citenet.net [206.123.39.19]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g193Qe648898 for ; Fri, 8 Feb 2002 22:26:40 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g193Jwu02992 for vserver@solucorp.qc.ca; Fri, 8 Feb 2002 22:19:58 -0500 From: Jacques Gelinas Date: Fri, 8 Feb 2002 22:19:58 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] shrink wrap it X-mailer: tlmpmail 0.1 Message-ID: <20020208221958.e2e85ca26571@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 52 On Fri, 8 Feb 2002 20:19:28 -0500, Vlad wrote > I think the real problem here is that the project web page doesn't have > enough pictures or blinking "NEW" buttons. Reading turns everyone off, and > just like back in high school, its easier to just find someone that has > read the book already that can summarize it than for you to actually put > in some effort. Damn words, they are everywhere! :-) Well, the web site has a ton of "new" buttons (well they are not blinking). But those buttons shows up based on what you have read so far in the document. So for you, nothing is new because you have read the document. Once in a while, new stuff appears for you when the document is enhanced. The document stores a cookie in your browser and this cookie is used to track the version of every page you have read in the document. This is stored in a MySQL database. When you visit the document, it can tell which page you have read and have been updated, and which page are really new for you. Btw, I have enhanced the presentation of the document with the table of content on the side. Anyway, this tracking was created to help people follow the evolution of the project. Reading the whole thing over and over to grasp what is new id not possible ... I intend to document all my projects using this technology btw. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Feb 8 22:43:13 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g193hCAh030663 for ; Fri, 8 Feb 2002 22:43:13 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g193Pa109565 for vserver.list; Fri, 8 Feb 2002 22:25:36 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g193PaR09561 for ; Fri, 8 Feb 2002 22:25:36 -0500 Received: from remtk.solucorp.qc.ca (g39-19.citenet.net [206.123.39.19]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g193Qc648895 for ; Fri, 8 Feb 2002 22:26:38 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g192qjs02973 for vserver@solucorp.qc.ca; Fri, 8 Feb 2002 21:52:45 -0500 From: Jacques Gelinas Date: Fri, 8 Feb 2002 21:52:45 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] memory X-mailer: tlmpmail 0.1 Message-ID: <20020208215245.ba83481fff39@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 53 On Fri, 8 Feb 2002 22:01:39 -0500, edward@paradigm4.com.au wrote > On Friday, 8 February 2002 at 10:20, Jonas Björklund wrote: > > > I have a question, is it possbile to limit the memory for each vserver? > > Not directly atm ( work in progress ) > but you can limit the number of processes in each vserver ( NPROC parameter ) > and you can limit the memory that a single vserver process can have > > e.g. > > # limit RSS, DSS of a single process to 8MB and VM size of a process to 16MB > ulimit -m 8192 -d 8192 -v 16384 > # you can also limit the stack size > ulimit -s 8192 > # and the max. amount of "locked" memory ( not allowed to be swapped out ) > ulimit -l 8192 > # start your vserver > vserver start ... > > adjust the values as you see fit. Note that you can configure that in the per-vserver configuration file (/etc/vservers/*.conf). There is the ULIMIT line ULIMIT="-m 8192 -d 8192 -v 16384" and it will be used anytime to start the vserver. You can also use the S_NICE entry to control the nice level of every process in a vserver (the ceiling in fact since a process may request to be even nicer (less priority)). --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Feb 8 22:49:47 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g193nkAh030690 for ; Fri, 8 Feb 2002 22:49:47 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g193Pf409579 for vserver.list; Fri, 8 Feb 2002 22:25:41 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g193PfR09574 for ; Fri, 8 Feb 2002 22:25:41 -0500 Received: from remtk.solucorp.qc.ca (g39-19.citenet.net [206.123.39.19]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g193Qf648901 for ; Fri, 8 Feb 2002 22:26:42 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1939rY02985 for vserver@solucorp.qc.ca; Fri, 8 Feb 2002 22:09:53 -0500 From: Jacques Gelinas Date: Fri, 8 Feb 2002 22:09:53 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] RE: Performance, memory, etc X-mailer: tlmpmail 0.1 Message-ID: <20020208220953.7da211c5c377@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 54 On Wed, 6 Feb 2002 22:30:00 -0500, vserver@fruru.com wrote > Would it be possible to have two/three/multiple IPv4 roots in a vserver ? > That way we could do virtual hosting per vserver. > > Also, I've noticed that some applications (postgresql 7.2 :-) positively > want to bind to 127.0.0.1 which is hardcoded in the source. This doesn't > work with the current vservers. This is true. One solution would be to have one private loopback per vserver. (127.0.0.N) and translate dynamically from 127.0.0.1 to the vserver one. This is very easy to do for outgoing and incoming. There is a catch though. The current ipv4root of the vserver is mapping a bind(0.0.0.0), to a bind(ip-of-the-vserver). After this little modification in the kernel, the rest of the kernel simply work as usual. Now if a vserver is allowed to have several IP, including a private loopback, someone expect that if a service does a bind(0,0,0.0), it will handle every incoming connection, to any of its allocated IP. So the current vserver solution, which translate to 5 lines of code in the kernel won't work anymore. Someone post a patch I have to review about this btw. Sorry, I am very late but I really wanted to fix some security issues first as vservers are already in production in various places... One solution to the multiple IP per vserver would be to change the semantic a bit. Instead of assigning one IP per vserver, we would assign one network device per vserver. One network interface including all its IP aliases. So doing a bind(0,0,0.0) would translate to handle every connection touching the network device. Those who have been in linux for a long time propably remember the old dummy device, which was used for a long time as the "IP aliases of the poor" until linux supports normal IP aliases. Well, with this idea, the dummy devices may become very popular, again. The next steps in the vserver project are per vserver resources limitation multiple IP solution vserver monitoring, intrusion detection, ... some security framework/administration tools The later includes some normalisation of the rollout concept. The idea is that instead of having one vserver, you would have multiple instance of a vserver. Once instance is production, the other is developpement, the other is old-production and the admin would be able to decide which is which. Well, stuff like that. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Feb 8 23:44:51 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g194ipAh031046 for ; Fri, 8 Feb 2002 23:44:51 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g194a2K10855 for vserver.list; Fri, 8 Feb 2002 23:36:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g194a0R10849 for ; Fri, 8 Feb 2002 23:36:01 -0500 Received: (qmail 16310 invoked from network); 9 Feb 2002 04:44:15 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 9 Feb 2002 04:44:15 -0000 Received: (qmail 25006 invoked from network); 9 Feb 2002 04:38:38 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 9 Feb 2002 04:38:38 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sat, 9 Feb 2002 15:52:38 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] New to list Message-ID: <3C6545C6.21424.309A3A@localhost> Priority: normal In-reply-to: X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 55 On Friday, 8 February 2002 at 10:37, Roderick A. Anderson wrote: > With that I'd like to know is if anyone has got PostgreSQL (Pg) running > in any configuration of main and vservers? I ran into a problem with - > what I thing I understand - Pg binding to all the addresses. I created > a v_postgresql init script but once I started Pg in a vserver, I > couldn't restart it in the main server. Haven't had a chance to retry > since I upgraded to the latest ctx kernel and rebooted. I had similar problem too, I think it was something to do with the way Pg uses ipc/shared memory. I haven't tried it with the latest kernel yet which is supposed to make ipc private. Ed From vserver.error@solucorp.qc.ca Fri Feb 8 23:46:10 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g194k9Ah031062 for ; Fri, 8 Feb 2002 23:46:10 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g194a6X10865 for vserver.list; Fri, 8 Feb 2002 23:36:06 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g194a4R10861 for ; Fri, 8 Feb 2002 23:36:05 -0500 Received: (qmail 16319 invoked from network); 9 Feb 2002 04:44:18 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 9 Feb 2002 04:44:18 -0000 Received: (qmail 25009 invoked from network); 9 Feb 2002 04:38:39 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 9 Feb 2002 04:38:39 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sat, 9 Feb 2002 15:52:38 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] shrink wrap it Message-ID: <3C6545C6.21433.309A30@localhost> Priority: normal References: <1013170788.1697.15.camel@amd.vsen.dk> In-reply-to: X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 56 On Friday, 8 February 2002 at 20:19, Vlad wrote: > Part of dealing with open source projects is doing the research and > figuring things out on your own. Perhaps thats why its not in a shrink > wrapped box with a choice of 8 different GUI's to hold your hand. It I think Jacques will disagree with you on this. I believe he's seeing ease of use as important part of this project, hence the new admin utilities that require linuxconf (not to my personal taste but if it helps people, why not). > If you expect free help I suggest you ask for it with plenty of detail and outmost respect for > the people that you're expecting assistance from. Yes, that's the right way. > Derogatory comments about development progress or inconvenient mailing > list are not a good way to ask for help. That is also true, but why not help anyway. Not everyone has the same communication skills. I believe that encouraging people to learn more with positive feedback instead of exchanging flames is more benefical to everyone. > I think the real problem here is that the project web page doesn't have > enough pictures or blinking "NEW" buttons. Reading turns everyone off, and > just like back in high school, its easier to just find someone that has > read the book already that can summarize it than for you to actually put > in some effort. Damn words, they are everywhere! :) From vserver.error@solucorp.qc.ca Fri Feb 8 23:51:17 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g194pGAh031106 for ; Fri, 8 Feb 2002 23:51:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g194a2P10859 for vserver.list; Fri, 8 Feb 2002 23:36:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g194a1R10850 for ; Fri, 8 Feb 2002 23:36:01 -0500 Received: (qmail 16311 invoked from network); 9 Feb 2002 04:44:15 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 9 Feb 2002 04:44:15 -0000 Received: (qmail 25007 invoked from network); 9 Feb 2002 04:38:39 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 9 Feb 2002 04:38:39 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sat, 9 Feb 2002 15:52:38 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: RE: [vserver] shrink wrap it Message-ID: <3C6545C6.32448.309A45@localhost> Priority: normal In-reply-to: <001f01c1b10e$895a9cc0$d3bd01d5@johnnew> References: X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 57 On Saturday, 9 February 2002 at 2:07, John Lyons wrote: > Vserver works and has so much potential because of it's clean look, > excellent documentation and simplicity. FreeVSD users download 200 and 300mb > skels for their servers because setting up a working virtual server is so > complex. > > There is a danger that new users see a small download file 30 pages of docs > and a few FAQ's and think that it's a lightweight package. They couldn't be > more wrong. Well, it _is_ a lightweight package, in a good sense. You mentioned the simplicity yourself which makes it easy to audit and understand what's going on. Before I came across vserver in Nov. last year, I tried freevsd, usermode linux, selinux. but neither was suitable for me. Vserver is a great and simple idea and the implementation is getting better and better. Ed From vserver.error@solucorp.qc.ca Sat Feb 9 06:36:46 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19BakAh003496 for ; Sat, 9 Feb 2002 06:36:46 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g19BExH19506 for vserver.list; Sat, 9 Feb 2002 06:14:59 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.trekia.se (stratos.trekia.se [212.105.83.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g19BEvR19502 for ; Sat, 9 Feb 2002 06:14:58 -0500 Received: from localhost (jonas@localhost) by mail.trekia.se (8.11.1/8.11.1) with ESMTP id g19BEZq21322 for ; Sat, 9 Feb 2002 12:14:35 +0100 X-Authentication-Warning: stratos.trekia.se: jonas owned process doing -bs Date: Sat, 9 Feb 2002 12:14:35 +0100 (CET) From: jonasb@hem.passagen.se X-X-Sender: jonas@stratos To: vserver@solucorp.qc.ca Subject: RE: [vserver] RE: Performance, memory, etc In-Reply-To: <20020208220953.7da211c5c377@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 58 Hi! > Instead of assigning one IP per vserver, we would assign one network > device per vserver. I think it would be better to add several IP's instead of a network. Some hostingproviders don't give you IP adresses in the same net. Thanks and keep up the good work! From vserver.error@solucorp.qc.ca Sat Feb 9 07:34:56 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19CYtAh003734 for ; Sat, 9 Feb 2002 07:34:55 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g19CHTp20531 for vserver.list; Sat, 9 Feb 2002 07:17:29 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g19CHSR20527 for ; Sat, 9 Feb 2002 07:17:29 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id AD1E3FFC for ; Sat, 9 Feb 2002 13:17:21 +0100 (CET) Subject: Re: [vserver] shrink wrap it From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-beZ1x6QEFWQKqm/1S56K" X-Mailer: Evolution/1.0.1 Date: 09 Feb 2002 13:17:20 +0100 Message-Id: <1013257041.1698.34.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 59 --=-beZ1x6QEFWQKqm/1S56K Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Sat, 2002-02-09 at 02:19, Vlad wrote: >=20 > > There's a binary kernel for vserver? well i'll just compile my own, if = I > > decide that vserver is the best for me :-) > > ease of use, isn't enough, if it doesn't have the necessary features. > > freevsd comes with some webpage management utilities. sounds pretty > > nice. >=20 > Why is it that every few months people troll up from out of nowhere and=20 > expect a full comparison of features between two projects. > At $80/box you can go to Best Buy and compare Mandrake and Redhat. I didn't expect anything. I just figured, that users of the vserver project would have a reasoning for using it, that I would like to know, as I'm looking into the project myself. Also users of one project such as vserver, are almost certain to have reviewed other solutions that try to solve the same problems, and thus I hoped that these people would share their reasoning for choosing vserver. I can't see the harm in asking people why they chose one, over the other. > However on a free=20 > mailing list, especially for a project provided free of charge, it makes=20 > for little common sense to show up and start insulting the users and=20 > developers of this code.=20 I'm sorry if I insulted you, that was not my intent. I think you've heavily misunderstood what I was asking about. >=20 > For the record, vserver has the most documentation you will find for a=20 > project of this caliber and is very straight forward. There is a detailed= =20 > installation doc on the web page=20 > http://www.solucorp.qc.ca/miscprj/s_context.hc?s1=3D4&s2=3D0&s3=3D0&s4=3D= 0&full=3D0&prjstate=3D1&nodoc=3D0 Nice to know. =20 > Now on to flaming: >=20 > Part of dealing with open source projects is doing the research and=20 > figuring things out on your own. Perhaps thats why its not in a shrink=20 > wrapped box with a choice of 8 different GUI's to hold your hand. It=20 > involves research, debugging, and even writing code on your own.=20 I must disagree. If that were so, there wouldn't be as many Linux users as there are today.If a project reaches a broad user-base (including "dumb" users), it will almost certainly gain from that, in many ways. I'm not the great programmer. I've dabbled a little, but haven't coded much the last few years (except for shell scripts and sysadmin perl scripts), as I've been working as a sysadmin. My reason for looking for a project like vserver, is to find an easy and secure way to implement a very secure system. F.ex. if I install a server for a costumer, it would be nice to know, that their services run on a vserver partition, so that if a hacker got in, the measures on the root-server would be able to detect that, and the hacker would not be able to stop this detection.This way I can sleep easy, even though I've given the costumer full access to the vserver. Otherwise I would have to be over them, hoping they remembered to update for each vulnerability and so on. Ease of mind, is a very important thing for me as a System Administrator and Consultant - this also means a lot to the User/Costumer. When I leave the costumer, I know they are gonna do dumb things, I just want to deliver a system, that somehow protects them as well as possible against this. So that they would get an email saying - Whoops.. call a qualified technician - you're in trouble. it's measures like this, that will enable small companys to make use of Open Source Systems, and it is usability like this that will lead to Open Source Conquering the world :-) >Tradeoff=20 > is hiring an incompetent consultant or Microsoft, pick your poison. If yo= u=20 > expect free help I suggest you ask for it with plenty of detail and=20 > outmost respect for the people that you're expecting assistance from.=20 > Derogatory comments about development progress or inconvenient mailing=20 > list are not a good way to ask for help. For the record, I've been a member of SSLUG for many years, and I've helped many people. SSLUG is ONLY about helping people for free. We do't discuss development or anything like that here. try doing this search on google ""klavs klavsen" site:www.sslug.dk" you'lle get more than 1400 hits. Each of them being me helping someone with their specific problem. So please drop the crap about, if you expect free help. I hope only to get, what I myself give out, as should anyone. Apperantly I didn't write humbly enough for your liking. If you think my questions could/should be taken as an insult, I suggest you stop, and try asking me if I meant to insult you. Don't just expect that I did. What you appereantly think is an insult, I see as a straight forward question. Half-assed questions about lids=20 > and "standard kernel"=20 that's not half assed. LIDS does have very good functionality, that one might think could be very good to combine with the qualities of f.ex. vserver. As I can see from the other answers, I'm not the only one thinking this.=20 >just show you didn't even bother to look at the=20 > homepage; If you did you'd notice that there is a changelog page: 10=20 > updates in 3 months.=20 I have seen the homepage. I also know that it took the Linux kernel many years to get where it is now! ie. stability and performance quality software takes time to develop. And I couldn't see any place, saying when this project started, and it only was at 0.10 because it was release as a stable project with release 0.1. don't know why anyone would think a v0.10 should be considered stable and production ready software. Most people change versions to a v1.x when it's stable. >=20 > and further sarcasm: >=20 > I think the real problem here is that the project web page doesn't have=20 > enough pictures or blinking "NEW" buttons. Reading turns everyone off, an= d=20 > just like back in high school, its easier to just find someone that has=20 > read the book already that can summarize it than for you to actually put=20 > in some effort. Damn words, they are everywhere! Haven't you gotten enough of yourself. i have. damn you are not really a people person are you?. What kind of half assed, crap remark is that? =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-beZ1x6QEFWQKqm/1S56K Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD4DBQA8ZRNQ4c1kHlhtW8oRAjGAAJdxCgKy5u0PfmF4IAoQmodGln03AJ0VC1Ic p6v5/y2b959V8DRNIZHE/g== =N7pG -----END PGP SIGNATURE----- --=-beZ1x6QEFWQKqm/1S56K-- From vserver.error@solucorp.qc.ca Sat Feb 9 07:50:57 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19CouAh003864 for ; Sat, 9 Feb 2002 07:50:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g19CQf920676 for vserver.list; Sat, 9 Feb 2002 07:26:41 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g19CQeR20672 for ; Sat, 9 Feb 2002 07:26:41 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 9AC60FFC for ; Sat, 9 Feb 2002 13:26:40 +0100 (CET) Subject: RE: [vserver] vserver vs. freevsd From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: <3C648AA4.16984.11E66A8@localhost> References: <3C648AA4.16984.11E66A8@localhost> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-Pekds/dGwm+ok5OYnneU" X-Mailer: Evolution/1.0.1 Date: 09 Feb 2002 13:26:40 +0100 Message-Id: <1013257600.1699.38.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 60 --=-Pekds/dGwm+ok5OYnneU Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-02-08 at 16:34, edward@paradigm4.com.au wrote: > On Friday, 8 February 2002 at 13:27, klavs klavsen wrote: >=20 > > If the mailinglists archive were accessible via web, one might see how > > much is going on, and what troubles people have. If you want, I'm sure, > > I could talk to www.sslug.dk (danish LUG), as they have such a system - > > and they also have news access to mailinglists. >=20 > Sounds like a good idea. glad you liked it. Are the messages from the mailinglist stored in any way at present? I'll talk to SSLUG and get the details of their solution. do you want to start with the web-archives of the mailinglist, or would you like more features? do you have any current plans of doing anything like this, has there been done any work already? Can the solution be hosted on the server that hosts the vserver homepage? If so, who has admin rights to this machine - we'll need to collaborate with someone, who can actully get to the machine and install it.=20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-Pekds/dGwm+ok5OYnneU Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8ZRWA4c1kHlhtW8oRAtGHAJ42UJhGSOIhL3Nl72Z3TmKNKkMF/QCfUjDG iFh+w1icK6iInS9BbWasr9U= =yhD3 -----END PGP SIGNATURE----- --=-Pekds/dGwm+ok5OYnneU-- From vserver.error@solucorp.qc.ca Sat Feb 9 07:55:59 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19CtwAh003878 for ; Sat, 9 Feb 2002 07:55:58 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g19CVdM20754 for vserver.list; Sat, 9 Feb 2002 07:31:39 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g19CVcR20750 for ; Sat, 9 Feb 2002 07:31:38 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 79ABBFFC for ; Sat, 9 Feb 2002 13:31:38 +0100 (CET) Subject: RE: [vserver] shrink wrap it From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: <3C6545C6.32448.309A45@localhost> References: <3C6545C6.32448.309A45@localhost> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-BkTqI87jaIvVmYzx2uPu" X-Mailer: Evolution/1.0.1 Date: 09 Feb 2002 13:31:38 +0100 Message-Id: <1013257898.1698.42.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 61 --=-BkTqI87jaIvVmYzx2uPu Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Sat, 2002-02-09 at 05:52, edward@paradigm4.com.au wrote: > Well, it _is_ a lightweight package, in a good sense. > You mentioned the simplicity yourself which makes it easy to audit and un= derstand > what's going on. >=20 > Before I came across vserver in Nov. last year, I tried freevsd, usermode= linux, selinux. > but neither was suitable for me. Vserver is a great and simple idea and t= he implementation is=20 > getting better and better. Great. I figured there would be people on the list, who had evaluated all the other solutions for their specific purpose, and that they have a reasoning, as to why they choose vserver. I would very much like to know your purpose for using a product like vserver, and what makes it the best for you. =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-BkTqI87jaIvVmYzx2uPu Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8ZRaq4c1kHlhtW8oRAljaAJ4jRwahkIIJGtykYkAgICfhaf9yVQCdEaQr 6JsGnZisqMTyhuUZ/MCy67c= =jjFu -----END PGP SIGNATURE----- --=-BkTqI87jaIvVmYzx2uPu-- From vserver.error@solucorp.qc.ca Sat Feb 9 10:05:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19F5dAh004634 for ; Sat, 9 Feb 2002 10:05:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g19EYNe22897 for vserver.list; Sat, 9 Feb 2002 09:34:23 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g19EYNR22893 for ; Sat, 9 Feb 2002 09:34:23 -0500 Received: from host213-122-123-136.in-addr.btopenworld.com ([213.122.123.136] helo=john-new) by gadolinium.btinternet.com with esmtp (Exim 3.22 #8) id 16ZYa5-0000C3-00 for vserver@solucorp.qc.ca; Sat, 09 Feb 2002 14:34:21 +0000 Received: from 213.122.123.136 by john-new ([213.122.123.136] running VPOP3) with SMTP for ; Sat, 9 Feb 2002 14:34:02 -0000 From: "John Lyons" To: Subject: RE: [vserver] shrink wrap it Date: Sat, 9 Feb 2002 14:33:59 -0000 Message-ID: <002f01c1b176$d180c8e0$b38c7ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <1013257898.1698.42.camel@amd.vsen.dk> Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 62 > Great. I figured there would be people on the list, who had evaluated > all the other solutions for their specific purpose, and that > they have a reasoning, as to why they choose vserver. We were looking for something that would allow us to deliver dedicated server style hosting packages on a shared hosting platform. Ensim and FreeVSD were considered, Ensim was dismissed from day 1 as it's a paid for package. We couldn't compete with FreeBSD and FreeVSD hosts if we had to take a large software cost into account. I'd monitored the mailing list for FreeVSD for over 12 months and tried on many occasions to get it working over the last 12 months. I'm not an experienced sys admin, I've been using Linux servers for 3 years, I don't have a desktop Linux box but I do run 10 Linux servers quite well. My biggest worries with FreeVSD were:- What happens when FreeVSD needs upgrading to the next version, am I going to struggle? If the host server starts playing up am I going to be able to fix it? Do I understand enough about the nuts and bolts of FreeVSD to be able to trouble shoot if something goes wrong? I've read the documentation cover to cover and read most messages on the mailing list for 12 months. It may be that I'm just thick :) but I still don't fell confident with it. The answers to the above questions ruled out using it on a mission critical system. > I would very much like to know your purpose for using a product like > vserver, and what makes it the best for you. I installed vserver for the first time in Dec. It worked first time and I'd got a vserver running after 20 mins work and reading the docs. Problems like needing CAP_NET_RAW in the conf file were fixed after a quick mail to the mailing list, a big DOH!, & slap on the forehead. Within 48 hours of starting to use vserver I'd patched and compiled my first kernel, something I'd never dared to do before. What's most important is that there are examples in the documentation to explain what each addition to the kernel does. I understand how and why vserver works and with my limited knowledge and experience that's a good thing! I now have two non production servers. One runs 5 live vs's the other backs them up to provide hardware failover. I'm 3 weeks into basic testing trials with 5 customer. A fuller scale trial starts with another 5 customers in 3 weeks time after I hope to have upgraded both servers to ctx-10. In the next 4 to 8 weeks we're hoping that we'll have done enough testing to launch the vserver as the basis for a new hosting package. So far so good, no serious bugs found and all is going well. If you're a serious/experienced sys admin it'll take you 30 to 60 mins to down load and install vserver on a test machine and then you can get a feel for it. (I'd put money on you not being able to do that with FreeVSD) Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Sat Feb 9 13:55:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19ItdAh006622 for ; Sat, 9 Feb 2002 13:55:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g19IaTA27044 for vserver.list; Sat, 9 Feb 2002 13:36:29 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g19IaMR27040 for ; Sat, 9 Feb 2002 13:36:23 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 38CC7FFC for ; Sat, 9 Feb 2002 19:36:14 +0100 (CET) Subject: RE: [vserver] shrink wrap it From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: <002f01c1b176$d180c8e0$b38c7ad5@johnnew> References: <002f01c1b176$d180c8e0$b38c7ad5@johnnew> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-NljUGPRArTEGrgFTjsyE" X-Mailer: Evolution/1.0.1 Date: 09 Feb 2002 19:36:10 +0100 Message-Id: <1013279775.1688.8.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 63 --=-NljUGPRArTEGrgFTjsyE Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Thank you John, for taking the time. On Sat, 2002-02-09 at 15:33, John Lyons wrote: > We were looking for something that would allow us to deliver dedicated > server style hosting packages on a shared hosting platform. Ensim and > FreeVSD were considered, Ensim was dismissed from day 1 as it's a paid fo= r > package. We couldn't compete with FreeBSD and FreeVSD hosts if we had to > take a large software cost into account. >=20 > I'd monitored the mailing list for FreeVSD for over 12 months and tried o= n > many occasions to get it working over the last 12 months. I'm not an > experienced sys admin, I've been using Linux servers for 3 years, I don't > have a desktop Linux box but I do run 10 Linux servers quite well. >=20 > My biggest worries with FreeVSD were:- >=20 > What happens when FreeVSD needs upgrading to the next version, am I going= to > struggle? > If the host server starts playing up am I going to be able to fix it? > Do I understand enough about the nuts and bolts of FreeVSD to be able to > trouble shoot if something goes wrong? I get your worries. It shouldn't be so hard. It didn't look so hard to me, but then again, the RPM's I downloaded didn't contain a kernel patch, or even a kernel. But after what I've heard from you guys, and seeing as I haven't gotten (almost) any response from freevsd mailinglist, it does seem as freevsd is dying. >=20 > I've read the documentation cover to cover and read most messages on the > mailing list for 12 months. It may be that I'm just thick :) but I still > don't fell confident with it. The answers to the above questions ruled ou= t > using it on a mission critical system. >=20 > > I would very much like to know your purpose for using a product like > > vserver, and what makes it the best for you. >=20 > I installed vserver for the first time in Dec. It worked first time and I= 'd > got a vserver running after 20 mins work and reading the docs. Problems > like needing CAP_NET_RAW in the conf file were fixed after a quick mail t= o > the mailing list, a big DOH!, & slap on the forehead. Within 48 hours of > starting to use vserver I'd patched and compiled my first kernel, somethi= ng > I'd never dared to do before. >=20 > What's most important is that there are examples in the documentation to > explain what each addition to the kernel does. I understand how and why > vserver works and with my limited knowledge and experience that's a good > thing! I agree. >=20 > I now have two non production servers. One runs 5 live vs's the other bac= ks > them up to provide hardware failover. I'm 3 weeks into basic testing tria= ls > with 5 customer. A fuller scale trial starts with another 5 customers in = 3 > weeks time after I hope to have upgraded both servers to ctx-10. In the n= ext > 4 to 8 weeks we're hoping that we'll have done enough testing to launch t= he > vserver as the basis for a new hosting package. So far so good, no seriou= s > bugs found and all is going well. sounds good. Nice to know. =20 > If you're a serious/experienced sys admin it'll take you 30 to 60 mins to > down load and install vserver on a test machine and then you can get a fe= el > for it. (I'd put money on you not being able to do that with FreeVSD) well.. I've setup and administered cnn.dk, bt.dk, berlingske.dk (last 2 are biggest newspapers in DK - bt.dk alone has approx 3 mill. pageviews a week) and 17 other sites for the last 3 years :-) - does give you some experience.I've just quit my job, to be an independant Open Source Consultant.. having fun. Do you know, if I can run OpenLDAP, Samba, Apache+php and MySQL on a vserver? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-NljUGPRArTEGrgFTjsyE Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8ZWwa4c1kHlhtW8oRAudVAJ9euRr81mc48v/hIcS2rHBOR7ukfQCgsJS3 yyuU0mSOxytR7O9mZbGm6FA= =lBfk -----END PGP SIGNATURE----- --=-NljUGPRArTEGrgFTjsyE-- From vserver.error@solucorp.qc.ca Sat Feb 9 14:31:18 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19JVHAh006990 for ; Sat, 9 Feb 2002 14:31:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g19Iq3S27323 for vserver.list; Sat, 9 Feb 2002 13:52:03 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tincan.org ([216.64.180.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g19Iq3R27318 for ; Sat, 9 Feb 2002 13:52:03 -0500 Received: from localhost (raanders@localhost) by tincan.org (8.9.3/8.8.7) with ESMTP id KAA09588 for ; Sat, 9 Feb 2002 10:51:56 -0800 Date: Sat, 9 Feb 2002 10:51:56 -0800 (PST) From: "Roderick A. Anderson" To: vserver@solucorp.qc.ca Subject: RE: [vserver] shrink wrap it In-Reply-To: <1013257898.1698.42.camel@amd.vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 64 On 9 Feb 2002, klavs klavsen wrote: > I would very much like to know your purpose for using a product like > vserver, and what makes it the best for you. Well you'll like this. It was the first thing I'd seen outside and IBM mainframe that did this. And I happened across it while reading Linux Weekly News. I've used Linuxconf - and get down right ticked off when I can't - since Redhat Linux 4.2 I think and I knew of Jacques quick response to problems and suggestions for it. What the heck. Couldn't be any easier. Spent several hours over a couple of days reading the documentation and musing how to upgrade my Redhat Linux 7.2 kernel so it matched the, then 2.4.16 kernel, vserver was using. Got really frustrated and mail Jacques (on a week-end no less) then said what the heck and installed it. Heard back Jacques with a lucid explanation why I was making it too difficult. Made a few configuration changes and had it working. A few more messages - pre mailing list - to work some of ideas into my thick head and was informed of the standing joke at Solucorp. 'No more than 3 vservers per developer per day.' If it is that easy and useful how wrong could I go? In another message I mention I have three domains - two on vservers and I'm looking at how to use it for small companies that need/want their departments to have each have their own servers but the load is low enough to make another chunk of hardware too expensive. Loads of other ideas including student machines - sys admin training - that they can screw up totally but not affect the main or other students servers. You might get the idea I REALLY like vserver and you'd be right. Regards, Rod -- Let Accuracy Triumph Over Victory Zetetic Institute "David's Sling" Marc Stiegler From vserver.error@solucorp.qc.ca Sat Feb 9 14:50:01 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19Jo0Ah007146 for ; Sat, 9 Feb 2002 14:50:01 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g19JZBB27952 for vserver.list; Sat, 9 Feb 2002 14:35:11 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g19JZAR27948 for ; Sat, 9 Feb 2002 14:35:10 -0500 Received: (qmail 6130 invoked by uid 0); 9 Feb 2002 19:35:08 -0000 Received: from pd9e39c08.dip.t-dialin.net (HELO starbase) (217.227.156.8) by mail.gmx.net (mp010-rz3) with SMTP; 9 Feb 2002 19:35:08 -0000 Date: Sat, 9 Feb 2002 20:33:14 +0100 From: Christian To: vserver@solucorp.qc.ca Subject: Re: [vserver] RE: Performance, memory, etc Message-Id: <20020209203314.150a9556.chth@gmx.net> In-Reply-To: <20020208220953.7da211c5c377@remtk.solucorp.qc.ca> References: <20020208220953.7da211c5c377@remtk.solucorp.qc.ca> X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 65 On Fri, 8 Feb 2002 22:09:53 -0500 Jacques Gelinas wrote: > Someone post a patch I have to review about this btw. Sorry, I am very > late but I really wanted to fix some security issues first as vservers > are already in production in various places... Yep .. that was me, actually its outdated and i have other priorities. Since it seems in the last posts that people want to use it comercially i would like to say that some financial foundation would increase its priority dramatically (i have no regular income this time). Unless someone else adopts the idea i will do it anyways .. but it might take some time. > One solution to the multiple IP per vserver would be to change the > semantic a bit. Instead of assigning one IP per vserver, we would assign > one network device per vserver. One network interface including all its > IP aliases. So doing a bind(0,0,0.0) would translate to handle every > connection touching the network device. Those who have been in linux for > a long time propably remember the old dummy device, which was used for a > long time as the "IP aliases of the poor" until linux supports normal IP > aliases. Well, with this idea, the dummy devices may become very > popular, again. binding more than one ip is often needed for Proxy-Servers, Backside-Databases, Maintainance-Networks, Intranets which usually reside on another nic and dummy devices are just a workaround like using iptables/NAT currently. I dont think that the 'single-device' is a flexible idea. My idea was that there are two (or maybe more.. but a small static amount) of ip/mask pairs, the first ip is the default ip whcih is used for bind(0.0.0.0) but all other ips which are match the masked ip are bindable too. additionally a nested chbind within a vserver can be used to constrain the ip/ranges further (i didnt tested recently if recursive vservers work .. would be fine either). From vserver.error@solucorp.qc.ca Sat Feb 9 15:56:00 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19KtxAh007591 for ; Sat, 9 Feb 2002 15:56:00 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g19KYUc28915 for vserver.list; Sat, 9 Feb 2002 15:34:30 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g19KYSR28911 for ; Sat, 9 Feb 2002 15:34:29 -0500 Received: from host213-122-127-145.in-addr.btopenworld.com ([213.122.127.145] helo=john-new) by tungsten.btinternet.com with esmtp (Exim 3.22 #8) id 16ZeCZ-0003Tl-00 for vserver@solucorp.qc.ca; Sat, 09 Feb 2002 20:34:28 +0000 Received: from 213.122.127.145 by john-new ([213.122.127.145] running VPOP3) with SMTP for ; Sat, 9 Feb 2002 20:34:10 -0000 From: "John Lyons" To: Subject: RE: [vserver] shrink wrap it Date: Sat, 9 Feb 2002 20:34:09 -0000 Message-ID: <001a01c1b1a9$213a1ad0$917f7ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal In-Reply-To: <1013279775.1688.8.camel@amd.vsen.dk> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: A X-Keywords: X-UID: 66 > Do you know, if I can run OpenLDAP, Samba, Apache+php and MySQL on a > vserver? I've got apache, php, Mysql running from both RPM's and source. Can't see a problem with Samba but I've never used OpenLDAP so I can't comment. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Sat Feb 9 18:54:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19NsVAh009244 for ; Sat, 9 Feb 2002 18:54:37 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g19NVfB31774 for vserver.list; Sat, 9 Feb 2002 18:31:41 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g19NVeR31770 for ; Sat, 9 Feb 2002 18:31:40 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g19NVeAi008837 for ; Sat, 9 Feb 2002 18:31:41 -0500 Date: Sat, 9 Feb 2002 18:31:40 -0500 (EST) From: Vlad To: vserver@solucorp.qc.ca Subject: RE: [vserver] shrink wrap it In-Reply-To: <001a01c1b1a9$213a1ad0$917f7ad5@johnnew> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 67 lib/util_sock.c:open_socket_in(824) bind failed on port 139 socket_addr=0.0.0.0 (Address already in use) OpenLDAP 2.0.21 works alright. Actually the only thing that has ever failed me inside vserver has been the default bind, but after recompiling that kicked in as well. Samba is a bit tricky, although I think its definately something I broke since it tries to bind to the wrong address... nmbd is a pain. lib/util_sock.c:open_socket_in(824) bind failed on port 139 socket_addr=0.0.0.0 (Address already in use) lib/util_sock.c:open_socket_in(824) bind failed on port 137 socket_addr=xxx.xxx.xxx.xxx (Cannot assign requested address) -Vlad (yes, I know what it says but there is absolutely nothing running on 139, even nmap can't find it) On Sat, 9 Feb 2002, John Lyons wrote: > > I've got apache, php, Mysql running from both RPM's and source. Can't see a > problem with Samba but I've never used OpenLDAP so I can't comment. > From vserver.error@solucorp.qc.ca Sat Feb 9 21:51:54 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1A2prAh010430 for ; Sat, 9 Feb 2002 21:51:53 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1A2BU801892 for vserver.list; Sat, 9 Feb 2002 21:11:30 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1A2BSR01888 for ; Sat, 9 Feb 2002 21:11:29 -0500 Received: (qmail 22052 invoked from network); 10 Feb 2002 02:19:47 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 10 Feb 2002 02:19:47 -0000 Received: (qmail 27093 invoked from network); 10 Feb 2002 02:13:59 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 10 Feb 2002 02:13:59 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sun, 10 Feb 2002 13:27:59 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: [vserver] RE: mailing list archives Message-ID: <3C66755F.880.152EA5@localhost> Priority: normal References: <3C648AA4.16984.11E66A8@localhost> In-reply-to: <1013257600.1699.38.camel@amd.vsen.dk> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 68 On Saturday, 9 February 2002 at 13:26, klavs klavsen wrote: > On Fri, 2002-02-08 at 16:34, edward@paradigm4.com.au wrote: > > On Friday, 8 February 2002 at 13:27, klavs klavsen wrote: > > > > > If the mailinglists archive were accessible via web, one might see how > > > much is going on, and what troubles people have. If you want, I'm sure, > > > I could talk to www.sslug.dk (danish LUG), as they have such a system - > > > and they also have news access to mailinglists. > > > > Sounds like a good idea. > glad you liked it. Are the messages from the mailinglist stored in any > way at present? I have no idea. Are they? I'll talk to SSLUG and get the details of their > solution. do you want to start with the web-archives of the mailinglist, > or would you like more features? web accessible/searchable archives would be useful but I'd settle for mail accessible archives too ( something in the lines of ezmlm-idx ) > Can the solution be hosted on the server that hosts the vserver > homepage? If so, who has admin rights to this machine - we'll need to > collaborate with someone, who can actully get to the machine and install You'd have to get solucorp.qc.ca guys to answer this one. I'm on the other end of the globe. I could organize hosting mail archives and/or mailing list on one of our servers down under, but considering that most people on this list live in western/northern hemisphere, it wouldn't be efficient, so something hosted in Europe or US would be more appropriate. Ed From vserver.error@solucorp.qc.ca Sat Feb 9 21:55:21 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1A2tKAh010480 for ; Sat, 9 Feb 2002 21:55:20 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1A2QYT02105 for vserver.list; Sat, 9 Feb 2002 21:26:34 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1A2QXR02101 for ; Sat, 9 Feb 2002 21:26:33 -0500 Received: (qmail 22505 invoked from network); 10 Feb 2002 02:34:59 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 10 Feb 2002 02:34:59 -0000 Received: (qmail 27110 invoked from network); 10 Feb 2002 02:29:13 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 10 Feb 2002 02:29:13 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sun, 10 Feb 2002 13:43:12 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: RE: [vserver] shrink wrap it Message-ID: <3C6678F0.20183.231EF4@localhost> Priority: normal References: <002f01c1b176$d180c8e0$b38c7ad5@johnnew> In-reply-to: <1013279775.1688.8.camel@amd.vsen.dk> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: A X-Keywords: X-UID: 69 On Saturday, 9 February 2002 at 19:36, klavs klavsen wrote: > Do you know, if I can run OpenLDAP, Samba, Apache+php and MySQL on a > vserver? LDAP, Apache+PHP and MySQL should be totally transparent. Samba is a bit tricky because of the netbios broadcasts ( nmbd only ). Mind you, you don't _have_ to restrict the IP address of vserver with "chbind", especially if you are only running one of them. Something you have to understand is that vserver is not a rigid "must use every feature" package. There's security contexts, separating processes namespaces so they don't see each other and cannot interact with each other. And there's "chbind" feature which allows you to restrict local ip address for all ipv4 connectivity inside vserver and transparently convert ( functionally) "Listen 0.0.0.0" to "Listen 1.2.3.4" ( if you did chbind --ip 1.2.3.4 ) so you don't have to change config files inside each vserver. hth Ed From vserver.error@solucorp.qc.ca Sat Feb 9 22:15:06 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1A3F5Ah010641 for ; Sat, 9 Feb 2002 22:15:05 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1A2sqa02537 for vserver.list; Sat, 9 Feb 2002 21:54:52 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1A2soR02533 for ; Sat, 9 Feb 2002 21:54:51 -0500 Received: (qmail 23963 invoked from network); 10 Feb 2002 03:03:15 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 10 Feb 2002 03:03:15 -0000 Received: (qmail 27172 invoked from network); 10 Feb 2002 02:57:29 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 10 Feb 2002 02:57:29 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sun, 10 Feb 2002 14:11:28 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: RE: [vserver] shrink wrap it Message-ID: <3C667F90.3638.3CFF5E@localhost> Priority: normal References: <3C6545C6.32448.309A45@localhost> In-reply-to: <1013257898.1698.42.camel@amd.vsen.dk> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 70 On Saturday, 9 February 2002 at 13:31, klavs klavsen wrote: > I would very much like to know your purpose for using a product like > vserver, and what makes it the best for you. many purposes, actually: - transparent independant virtual servers with possibly different distros on the same machine; - sandbox environment for running untrusted binaries; - perfect framework for IDS setup ( security+integrity tools running in the root server with no network access and all network services inside their respective vservers ) - use your imagination... Why do I like it so much? - It's simple and elegant; - It's easy to audit ( try auditing selinux sources ); - It is a complete solution, not something that relies on twitching the userland, e.g. creating "pseudo-root admin" like freevsd; - There is no practical performance loss ( compare this with VMware and usermode linux ); - "unify" feature provides a way for very efficient use of memory. Running 100 webservers is not using much more RAM than running 1 webserver because the binaries and libraries are hard linked and only loaded into memory once for all those 100 servers; - it is as stable as the base stock kernel; - it still has many things to be added and I can contribute some of those. As far as I'm concerned, this is the future. I wouldn't run any public accessible network service unless it's under vserver. Ed From vserver.error@solucorp.qc.ca Sun Feb 10 10:58:52 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1AFwqAh010709 for ; Sun, 10 Feb 2002 10:58:52 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1AFbTf17984 for vserver.list; Sun, 10 Feb 2002 10:37:29 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1AFbRR17980 for ; Sun, 10 Feb 2002 10:37:28 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id B95D91000 for ; Sun, 10 Feb 2002 16:37:25 +0100 (CET) Subject: [vserver] chroot breaking From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: <3C66755F.880.152EA5@localhost> References: <3C648AA4.16984.11E66A8@localhost> <3C66755F.880.152EA5@localhost> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-9LNj0bC+kTHUrbm8lkRC" X-Mailer: Evolution/1.0.1 Date: 10 Feb 2002 16:37:25 +0100 Message-Id: <1013355446.1685.14.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 71 --=-9LNj0bC+kTHUrbm8lkRC Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I have a security question, in regards to vserver. I read this article about chrooting your services http://www.gnujobs.com/Articles/23/chroot.html and if you did so, as I understand it - it would be kind of achieving the same as vserver - from a hackers standpoint - without all the smart benefits.(no disrespect meant). In the comments I saw this article about breaking a chroot. http://www.bpfh.net/simes/computing/chroot-break.html My question is, if anyone know or have tried wether or not the chroot functionality of vserver can be broken like this? or does the kernel changes help ensure, this never happens? This just to know how well I should sleep at night, with vserver installed :-) /Klavs =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-9LNj0bC+kTHUrbm8lkRC Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8ZpO14c1kHlhtW8oRAr6qAJoCpjFGtXNeeq86yq5Ne33cRa/trQCfaSij 08fw1IxPPfVtCTsZfuDCGtk= =bjfS -----END PGP SIGNATURE----- --=-9LNj0bC+kTHUrbm8lkRC-- From vserver.error@solucorp.qc.ca Sun Feb 10 11:12:03 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1AGBxAh010797 for ; Sun, 10 Feb 2002 11:12:02 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1AFqH718219 for vserver.list; Sun, 10 Feb 2002 10:52:17 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1AFqGR18215 for ; Sun, 10 Feb 2002 10:52:16 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 467691000 for ; Sun, 10 Feb 2002 16:52:15 +0100 (CET) Subject: RE: [vserver] shrink wrap it From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: <3C6678F0.20183.231EF4@localhost> References: <002f01c1b176$d180c8e0$b38c7ad5@johnnew> <3C6678F0.20183.231EF4@localhost> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-3vGNyT+EQBECuHT4+XHW" X-Mailer: Evolution/1.0.1 Date: 10 Feb 2002 16:52:14 +0100 Message-Id: <1013356335.1665.29.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 72 --=-3vGNyT+EQBECuHT4+XHW Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Sun, 2002-02-10 at 03:43, edward@paradigm4.com.au wrote: > On Saturday, 9 February 2002 at 19:36, klavs klavsen wrote: >=20 > > Do you know, if I can run OpenLDAP, Samba, Apache+php and MySQL on a > > vserver? >=20 > LDAP, Apache+PHP and MySQL should be totally transparent. sounds good. >=20 > Samba is a bit tricky because of the netbios broadcasts > ( nmbd only ).=20 Please bear with me.. but why? because listening for broadcast packages requires some speciel ability of some sort?=20 shouldn't it just be covered by listening for packages on port 137 - and then broadcasts to that port should be forwarded to the process also? > Mind you, you don't _have_ to restrict the IP address of vserver with "ch= bind",=20 > especially if you are only running one of them. I have 2 scenario questions: if the server only has One IP, and=20 1) all the services listening on that IP, ran under each vserver - would there be security issues? 2) 1 of the services (ssh for instance) ran on the root-server - would there be security issues? =20 > Something you have to understand is that vserver is not a=20 > rigid "must use every feature" package. luckily. I like to have choices. =20 > There's security contexts, separating processes namespaces so they don't = see > each other and cannot interact with each other. but only if they don't run on the same vserver?=20 Can I run - 2 or more chroot'ed services on 1 vserver? or can vserver it self restrict/chroot each service - kinda like LIDS does? >=20 > And there's "chbind" feature which allows you to restrict local ip addres= s for all ipv4 connectivity > inside vserver and transparently convert ( functionally) "Listen 0.0.0.0"= to "Listen 1.2.3.4" ( if you=20 > did chbind --ip 1.2.3.4 ) so you don't have to change config files inside= each vserver. sounds like a smart way to do it. Am looking forward to actually trying vserver.=20 I hope I can help with the progress of vserver.=20 If there were a Todo list, with status of each bullit - one could get a quick idea of weather or not ones expertice could help the project in any way.=20 btw. can or will vserver be implemented in the standard kernel source tree? that would expand it's knowledge and usage to a much broader user-base and just like it did for ReiserFS help the project gain developers and bug-hunters. Are there any reasons why vserver should not be a part of the standard kernel source? I don't know so much about this, only know what I can read from LWN and such. =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-3vGNyT+EQBECuHT4+XHW Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8Zpcu4c1kHlhtW8oRAjPdAKCj1xioWR09iHIGTIPbVpNBbRrhpACgmf9g 2mU68r0wFAtiVpcW9mUwUpQ= =EVh1 -----END PGP SIGNATURE----- --=-3vGNyT+EQBECuHT4+XHW-- From vserver.error@solucorp.qc.ca Sun Feb 10 12:53:49 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1AHrnAh011413 for ; Sun, 10 Feb 2002 12:53:49 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1AHZeV20039 for vserver.list; Sun, 10 Feb 2002 12:35:40 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1AHZdR20035 for ; Sun, 10 Feb 2002 12:35:39 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g1AHZQpb004617 for ; Sun, 10 Feb 2002 18:35:26 +0100 Date: Sun, 10 Feb 2002 18:35:26 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: vserver@solucorp.qc.ca Subject: Re: [vserver] chroot breaking In-Reply-To: <1013355446.1685.14.camel@amd.vsen.dk> Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 73 On 10 Feb 2002, klavs klavsen wrote: > Hi guys, > > I have a security question, in regards to vserver. > > I read this article about chrooting your services > http://www.gnujobs.com/Articles/23/chroot.html > and if you did so, as I understand it - it would be kind of achieving > the same as vserver - from a hackers standpoint - without all the smart > benefits.(no disrespect meant). > > In the comments I saw this article about breaking a chroot. > http://www.bpfh.net/simes/computing/chroot-break.html > > My question is, if anyone know or have tried wether or not the chroot > functionality of vserver can be broken like this? or does the kernel > changes help ensure, this never happens? > > This just to know how well I should sleep at night, with vserver > installed :-) The new stuff in the ctx-7 patch fixes all chroot breakouts that I know of. the way described in http://www.bpfh.net/simes/computing/chroot-break.html is plugged. What I'm talking about is breaking out of a vserver, that should be fixed in ctx-7. But if you have a new chroot in a vserver that chroot could be broken out of but the attacker would still not be able to get out of the vserver. chroot() is unsafe by nature. but if you can limit the directoryaccess as done in vfs_permission in the ctx-6 and 7 patches then you can limit them from getting out, but this can currently only be done in one stage. So a second chroot in a vserver is quite insecure. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Sun Feb 10 14:38:16 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1AJcFAh012455 for ; Sun, 10 Feb 2002 14:38:15 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1AJNOC22009 for vserver.list; Sun, 10 Feb 2002 14:23:24 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1AJNNR22005 for ; Sun, 10 Feb 2002 14:23:24 -0500 Received: from host213-122-118-182.in-addr.btopenworld.com ([213.122.118.182] helo=john-new) by gadolinium.btinternet.com with esmtp (Exim 3.22 #8) id 16ZzZH-0002G4-00 for vserver@solucorp.qc.ca; Sun, 10 Feb 2002 19:23:20 +0000 Received: from 127.0.0.1 by john-new ([127.0.0.1] running VPOP3) with SMTP for ; Sun, 10 Feb 2002 19:23:03 -0000 From: "John Lyons" To: Subject: RE: [vserver] shrink wrap it Date: Sun, 10 Feb 2002 19:22:56 -0000 Message-ID: <000301c1b268$5bd03840$42847ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal In-Reply-To: <1013356335.1665.29.camel@amd.vsen.dk> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 74 > if the server only has One IP, and > > 1) all the services listening on that IP, ran under each > vserver - would there be security issues? I'm not sure if I understand this question correctly. But I think you're suggesting running multiple vservers under the same IP address? If so this isn't possible. From my understanding of the system each vserver needs it's own unique IP address. > Can I run - 2 or more chroot'ed services on 1 vserver? or can > vserver it self restrict/chroot each service - kinda like LIDS does? If you need to run 2 or 3 chrooted services just run each service in it's own vserver rather than trying to subdivide a vserver down into smaller chunks. (Fine of course unless your customer has a vserver and wants to run a service in a chroot environment) Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Sun Feb 10 16:37:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1ALblAh013352 for ; Sun, 10 Feb 2002 16:37:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1ALLjD24059 for vserver.list; Sun, 10 Feb 2002 16:21:45 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from priv-edtnes15-hme0.telusplanet.net (defout.telus.net [199.185.220.240]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1ALLjR24055 for ; Sun, 10 Feb 2002 16:21:45 -0500 Received: from iris ([142.179.16.5]) by priv-edtnes15-hme0.telusplanet.net (InterMail vM.5.01.04.01 201-253-122-122-101-20011014) with SMTP id <20020210212139.LVC25967.priv-edtnes15-hme0.telusplanet.net@iris> for ; Sun, 10 Feb 2002 14:21:39 -0700 Message-ID: <041301c1b278$acd0a8a0$8201a8c0@iris> From: "Andy Kwong" To: Subject: [vserver] Vserver and /var/run Date: Sun, 10 Feb 2002 13:19:50 -0800 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0410_01C1B235.9E62CB10" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 75 This is a multi-part message in MIME format. ------=_NextPart_000_0410_01C1B235.9E62CB10 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable On line 80 in /usr/sbin/vserver it is - rm -fr var/run/* Shouldn't it be - rm -f var/run/*.pid This is because it is removing /var/run/named/ and other directories = that some programs need to write their pid files to. ------=_NextPart_000_0410_01C1B235.9E62CB10 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
On line 80 in /usr/sbin/vserver it is=20 -
 
          &nbs= p;    =20 rm -fr var/run/*
 
Shouldn't it be -
 
          &nbs= p;    =20 rm -f var/run/*.pid
 
This is because it is removing = /var/run/named/ and=20 other directories that some programs need to write their pid files=20 to.
------=_NextPart_000_0410_01C1B235.9E62CB10-- From vserver.error@solucorp.qc.ca Mon Feb 11 05:38:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1BAcYAh019881 for ; Mon, 11 Feb 2002 05:38:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1BAG2E04761 for vserver.list; Mon, 11 Feb 2002 05:16:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1BAG1R04757 for ; Mon, 11 Feb 2002 05:16:02 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id DAFC31000 for ; Mon, 11 Feb 2002 11:16:00 +0100 (CET) Subject: Re: [vserver] chroot breaking From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-3HSm6sYBs1bGwUYcZCty" X-Mailer: Evolution/1.0.2 Date: 11 Feb 2002 11:16:00 +0100 Message-Id: <1013422561.2830.2.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 76 --=-3HSm6sYBs1bGwUYcZCty Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Sun, 2002-02-10 at 18:35, Martin Josefsson wrote: > > My question is, if anyone know or have tried wether or not the chroot > > functionality of vserver can be broken like this? or does the kernel > > changes help ensure, this never happens? > >=20 > > This just to know how well I should sleep at night, with vserver > > installed :-) >=20 > The new stuff in the ctx-7 patch fixes all chroot breakouts that I know > of. the way described in > http://www.bpfh.net/simes/computing/chroot-break.html is plugged. ctx-7? isn't the latest release ctx-6? you mean that it will be fixed once ctx-7 hits the street? >=20 > What I'm talking about is breaking out of a vserver, that should be fixed > in ctx-7. But if you have a new chroot in a vserver that chroot could be > broken out of but the attacker would still not be able to get out of the > vserver. ok. Thanks. looking forward to getting a secure vserver. > /Martin >=20 > Never argue with an idiot. They drag you down to their level, then beat y= ou with experience. I love that quote :-) =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-3HSm6sYBs1bGwUYcZCty Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8Z5ng4c1kHlhtW8oRAhnQAKCS3WpPbyqruj0AcYqOq6+d0KEbBgCfXp6s mB8n4ktoz/iOqYzlCaXi0mg= =A0UH -----END PGP SIGNATURE----- --=-3HSm6sYBs1bGwUYcZCty-- From vserver.error@solucorp.qc.ca Mon Feb 11 05:49:21 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1BAnKAh019948 for ; Mon, 11 Feb 2002 05:49:21 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1BASMe05203 for vserver.list; Mon, 11 Feb 2002 05:28:22 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1BASKR05199 for ; Mon, 11 Feb 2002 05:28:21 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id F32241000 for ; Mon, 11 Feb 2002 11:28:13 +0100 (CET) Subject: Re: [vserver] chroot breaking From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-8qfjQvHLwbvHHw/6N3Hb" X-Mailer: Evolution/1.0.2 Date: 11 Feb 2002 11:28:13 +0100 Message-Id: <1013423294.2834.4.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 77 --=-8qfjQvHLwbvHHw/6N3Hb Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Sun, 2002-02-10 at 18:35, Martin Josefsson wrote: >=20 > The new stuff in the ctx-7 patch fixes all chroot breakouts that I know > of. the way described in > http://www.bpfh.net/simes/computing/chroot-break.html is plugged. >=20 I missed that even though only ctx-6 was mentioned under the news, there ac= tually was a ctx-7 patch in the ftp-directory.=20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-8qfjQvHLwbvHHw/6N3Hb Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8Z5y94c1kHlhtW8oRAhzRAJ9aJzoUy/m4dYi3uoJwb132rxJ/uwCglH30 EtjzMwDfzuhs0rGEb71l4gQ= =TFe2 -----END PGP SIGNATURE----- --=-8qfjQvHLwbvHHw/6N3Hb-- From vserver.error@solucorp.qc.ca Mon Feb 11 12:42:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1BHgDAh022781 for ; Mon, 11 Feb 2002 12:42:14 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1BH87Q13790 for vserver.list; Mon, 11 Feb 2002 12:08:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from n010095.nbs.netland.nl (fw-office.netland.nl [217.170.32.40]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1BH86R13783 for ; Mon, 11 Feb 2002 12:08:06 -0500 Received: from office.netland.nl (ts.office.netland.nl [192.168.170.55]) by n010095.nbs.netland.nl (8.11.0/8.11.0) with ESMTP id g1BH86G08193 for ; Mon, 11 Feb 2002 18:08:06 +0100 Message-ID: <3C67FA76.6000208@office.netland.nl> Date: Mon, 11 Feb 2002 18:08:06 +0100 From: Ron Arts Organization: Netland Internet Services BV User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.6) Gecko/20011120 X-Accept-Language: nl, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and /var/run References: <041301c1b278$acd0a8a0$8201a8c0@iris> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 78 Right!! So that's probably what was killing my /var/run/mysqld directory! I did not look into it thoroughly yet, glad you beat me to it ;-) thanks Andy. Ron Andy Kwong wrote: > On line 80 in /usr/sbin/vserver it is - > > > > rm -fr var/run/* > > > > Shouldn't it be - > > > > rm -f var/run/*.pid > > > > This is because it is removing /var/run/named/ and other directories > that some programs need to write their pid files to. > -- Netland Internet Services bedrijfsmatige internetoplossingen http://www.netland.nl Kruislaan 419 1098 VA Amsterdam info: 020-5628282 servicedesk: 020-5628280 fax: 020-5628281 From vserver.error@solucorp.qc.ca Mon Feb 11 13:11:02 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1BIB2Ah023019 for ; Mon, 11 Feb 2002 13:11:02 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1BHtFS15055 for vserver.list; Mon, 11 Feb 2002 12:55:15 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tincan.org ([216.64.180.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1BHtFR15047 for ; Mon, 11 Feb 2002 12:55:15 -0500 Received: from localhost (raanders@localhost) by tincan.org (8.9.3/8.8.7) with ESMTP id KAA02918 for ; Mon, 11 Feb 2002 10:17:35 -0800 Date: Mon, 11 Feb 2002 10:17:35 -0800 (PST) From: "Roderick A. Anderson" To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and /var/run In-Reply-To: <041301c1b278$acd0a8a0$8201a8c0@iris> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 79 On Sun, 10 Feb 2002, Andy Kwong wrote: > On line 80 in /usr/sbin/vserver it is - > > rm -fr var/run/* > > Shouldn't it be - > > rm -f var/run/*.pid > > This is because it is removing /var/run/named/ and other directories > that some programs need to write their pid files to. Interesting. Could it be working because it comes after most of the other services - or at least in runlevel 3. My Redhat Linux 7.1ish system only has v_sshd, linuxconf-setup, and local after vserver for kills. Rod -- Let Accuracy Triumph Over Victory Zetetic Institute "David's Sling" Marc Stiegler From vserver.error@solucorp.qc.ca Mon Feb 11 13:20:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1BIKYAh023104 for ; Mon, 11 Feb 2002 13:20:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1BHwl915091 for vserver.list; Mon, 11 Feb 2002 12:58:47 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from aquarius.diginode.net (aquarius.diginode.net [216.13.250.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1BHwkR15087 for ; Mon, 11 Feb 2002 12:58:46 -0500 Received: (qmail 20727 invoked from network); 11 Feb 2002 17:55:33 -0000 Received: from zerowing.pop-star.net (208.181.22.52) by aquarius.diginode.net with SMTP; 11 Feb 2002 17:55:33 -0000 Subject: Re: [vserver] Vserver and /var/run From: Andy Kwong To: vserver@solucorp.qc.ca In-Reply-To: <3C67FA76.6000208@office.netland.nl> References: <041301c1b278$acd0a8a0$8201a8c0@iris> <3C67FA76.6000208@office.netland.nl> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 11 Feb 2002 09:59:57 -0800 Message-Id: <1013450397.19534.14.camel@zerowing.pop-star.net> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 80 And on line 208 as well. On Mon, 2002-02-11 at 09:08, Ron Arts wrote: > Right!! So that's probably what was killing my /var/run/mysqld > directory! I did not look into it thoroughly yet, glad you > beat me to it ;-) > > thanks Andy. > > Ron > > Andy Kwong wrote: > > > On line 80 in /usr/sbin/vserver it is - > > > > > > > > rm -fr var/run/* > > > > > > > > Shouldn't it be - > > > > > > > > rm -f var/run/*.pid > > > > > > > > This is because it is removing /var/run/named/ and other directories > > that some programs need to write their pid files to. > > > > > -- > Netland Internet Services > bedrijfsmatige internetoplossingen > > http://www.netland.nl Kruislaan 419 1098 VA Amsterdam > info: 020-5628282 servicedesk: 020-5628280 fax: 020-5628281 > From vserver.error@solucorp.qc.ca Mon Feb 11 15:38:27 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1BKcNAh024350 for ; Mon, 11 Feb 2002 15:38:25 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1BKK1118846 for vserver.list; Mon, 11 Feb 2002 15:20:01 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tincan.org ([216.64.180.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1BKK1R18842 for ; Mon, 11 Feb 2002 15:20:01 -0500 Received: from localhost (raanders@localhost) by tincan.org (8.9.3/8.8.7) with ESMTP id MAA06342 for ; Mon, 11 Feb 2002 12:42:20 -0800 Date: Mon, 11 Feb 2002 12:42:20 -0800 (PST) From: "Roderick A. Anderson" To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and /var/run In-Reply-To: <3C67FA76.6000208@office.netland.nl> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 81 On Mon, 11 Feb 2002, Ron Arts wrote: > Right!! So that's probably what was killing my /var/run/mysqld > directory! Now my previous response sounds really silly. I was thinking of taking the system up and down not taking vserver up and down ... Rod -- Let Accuracy Triumph Over Victory Zetetic Institute "David's Sling" Marc Stiegler From vserver.error@solucorp.qc.ca Tue Feb 12 03:22:36 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1C8MZAh030336 for ; Tue, 12 Feb 2002 03:22:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1C82fZ30197 for vserver.list; Tue, 12 Feb 2002 03:02:41 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nninfo2.comm.it ([213.92.77.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1C82eR30193 for ; Tue, 12 Feb 2002 03:02:40 -0500 Received: from MICROXP ([62.110.198.130]) by nninfo2.comm.it (8.9.3/8.9.3) with SMTP id JAA03542 for ; Tue, 12 Feb 2002 09:03:46 +0100 From: "Dave" To: Subject: RE: [vserver] vserver vs. freevsd Date: Tue, 12 Feb 2002 09:01:46 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <025801c1b096$98f5c0b0$0100a8c0@johnnew> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 82 > (Sorry I have a strange imagination!) Sure you do :-) > Will this be Opensource? > Sounds interesting :-) I will be for as much as possible. I'm not sure about the fancy features as I'm developing them from scratch, but the functionality will be there (i.e. distributed physical and virtual server control). Dave. From vserver.error@solucorp.qc.ca Tue Feb 12 06:58:01 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1CBw0Ah000448 for ; Tue, 12 Feb 2002 06:58:01 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1CBWft01170 for vserver.list; Tue, 12 Feb 2002 06:32:41 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from n010095.nbs.netland.nl (fw-office.netland.nl [217.170.32.40]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1CBWeR01166 for ; Tue, 12 Feb 2002 06:32:40 -0500 Received: from office.netland.nl (ts.office.netland.nl [192.168.170.55]) by n010095.nbs.netland.nl (8.11.0/8.11.0) with ESMTP id g1CBWdG25504 for ; Tue, 12 Feb 2002 12:32:39 +0100 Message-ID: <3C68FD57.4040706@office.netland.nl> Date: Tue, 12 Feb 2002 12:32:39 +0100 From: Ron Arts Organization: Netland Internet Services BV User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.6) Gecko/20011120 X-Accept-Language: nl, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and /var/run References: <041301c1b278$acd0a8a0$8201a8c0@iris> <3C67FA76.6000208@office.netland.nl> <1013450397.19534.14.camel@zerowing.pop-star.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 83 By the way, I replaced both instances with find /var/run/ -name \*.pid -exec rm -f {} \; Also changed `sleep 2` into `sleep 5` when stopping vservers. 2 seconds weas not enough for my MySQL setup. Ron Andy Kwong wrote: > And on line 208 as well. > > On Mon, 2002-02-11 at 09:08, Ron Arts wrote: > >>Right!! So that's probably what was killing my /var/run/mysqld >>directory! I did not look into it thoroughly yet, glad you >>beat me to it ;-) >> >>thanks Andy. >> >>Ron >> >>Andy Kwong wrote: >> >> >>>On line 80 in /usr/sbin/vserver it is - >>> >>> >>> >>> rm -fr var/run/* >>> >>> >>> >>>Shouldn't it be - >>> >>> >>> >>> rm -f var/run/*.pid >>> >>> >>> >>>This is because it is removing /var/run/named/ and other directories >>>that some programs need to write their pid files to. >>> >>> >> >>-- >>Netland Internet Services >>bedrijfsmatige internetoplossingen >> >>http://www.netland.nl Kruislaan 419 1098 VA Amsterdam >>info: 020-5628282 servicedesk: 020-5628280 fax: 020-5628281 >> >> > -- Netland Internet Services bedrijfsmatige internetoplossingen http://www.netland.nl Kruislaan 419 1098 VA Amsterdam info: 020-5628282 servicedesk: 020-5628280 fax: 020-5628281 From vserver.error@solucorp.qc.ca Tue Feb 12 13:08:28 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1CI8RAh003458 for ; Tue, 12 Feb 2002 13:08:27 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1CHnxr08865 for vserver.list; Tue, 12 Feb 2002 12:49:59 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from aquarius.diginode.net (aquarius.diginode.net [216.13.250.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1CHnwR08858 for ; Tue, 12 Feb 2002 12:49:58 -0500 Received: (qmail 10281 invoked from network); 12 Feb 2002 17:47:13 -0000 Received: from zerowing.pop-star.net (208.181.22.52) by aquarius.diginode.net with SMTP; 12 Feb 2002 17:47:13 -0000 Subject: Re: [vserver] Vserver and /var/run From: Andy Kwong To: vserver@solucorp.qc.ca In-Reply-To: <3C68FD57.4040706@office.netland.nl> References: <041301c1b278$acd0a8a0$8201a8c0@iris> <3C67FA76.6000208@office.netland.nl> <1013450397.19534.14.camel@zerowing.pop-star.net> <3C68FD57.4040706@office.netland.nl> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 12 Feb 2002 09:51:15 -0800 Message-Id: <1013536278.20982.2.camel@zerowing.pop-star.net> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 84 Yes, that makes good sense. On Tue, 2002-02-12 at 03:32, Ron Arts wrote: > By the way, I replaced both instances with > > find /var/run/ -name \*.pid -exec rm -f {} \; > > Also changed `sleep 2` into `sleep 5` when stopping > vservers. 2 seconds weas not enough for my MySQL setup. > > Ron > > Andy Kwong wrote: > > > And on line 208 as well. > > > > On Mon, 2002-02-11 at 09:08, Ron Arts wrote: > > > >>Right!! So that's probably what was killing my /var/run/mysqld > >>directory! I did not look into it thoroughly yet, glad you > >>beat me to it ;-) > >> > >>thanks Andy. > >> > >>Ron > >> > >>Andy Kwong wrote: > >> > >> > >>>On line 80 in /usr/sbin/vserver it is - > >>> > >>> > >>> > >>> rm -fr var/run/* > >>> > >>> > >>> > >>>Shouldn't it be - > >>> > >>> > >>> > >>> rm -f var/run/*.pid > >>> > >>> > >>> > >>>This is because it is removing /var/run/named/ and other directories > >>>that some programs need to write their pid files to. > >>> > >>> > >> > >>-- > >>Netland Internet Services > >>bedrijfsmatige internetoplossingen > >> > >>http://www.netland.nl Kruislaan 419 1098 VA Amsterdam > >>info: 020-5628282 servicedesk: 020-5628280 fax: 020-5628281 > >> > >> > > > > > -- > Netland Internet Services > bedrijfsmatige internetoplossingen > > http://www.netland.nl Kruislaan 419 1098 VA Amsterdam > info: 020-5628282 servicedesk: 020-5628280 fax: 020-5628281 > From vserver.error@solucorp.qc.ca Wed Feb 13 07:24:36 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DCOZAh016049 for ; Wed, 13 Feb 2002 07:24:36 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DBxef27274 for vserver.list; Wed, 13 Feb 2002 06:59:40 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DBxdR27270 for ; Wed, 13 Feb 2002 06:59:39 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id C1B3A1000 for ; Wed, 13 Feb 2002 12:59:32 +0100 (CET) Subject: [vserver] vserver mailinglist available via web From: klavs klavsen To: vserver@solucorp.qc.ca Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-oDwzSbIjxH4xj3pNP/xE" X-Mailer: Evolution/1.0.2 Date: 13 Feb 2002 12:59:31 +0100 Message-Id: <1013601573.1694.21.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: A X-Keywords: X-UID: 85 --=-oDwzSbIjxH4xj3pNP/xE Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, As I mentioned, I was hoping the vserver crew/site would like the email postings on the mailinglist to be available via the web. Some of the advantages of this, would be 1) users could search the archives for answers (google indexes them), before posting. 2) it would be appearent to people what's going on in the list(s)..I like openness, hope you do too. Openness also might inspire people to help? ..=20 well, I checked out my local LUG (www.sslug.dk - 6000+ members) and their mailinglist archives they convert to html via: http://www.oac.uci.edu/indiv/ehood/mhonarc.html Is this something you want? or should I just drop the idea? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-oDwzSbIjxH4xj3pNP/xE Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8alUj4c1kHlhtW8oRAqDSAJ9trqr75zFg1HGEg9FZchEOu9sggACgm9Ki 5ya0jZZ5ANmis61dJ0tn9sI= =4Hn6 -----END PGP SIGNATURE----- --=-oDwzSbIjxH4xj3pNP/xE-- From vserver.error@solucorp.qc.ca Wed Feb 13 08:31:49 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DDVmAh016500 for ; Wed, 13 Feb 2002 08:31:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DD4Ob28296 for vserver.list; Wed, 13 Feb 2002 08:04:24 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DD4NR28292 for ; Wed, 13 Feb 2002 08:04:24 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g1DD47iW008605 for ; Wed, 13 Feb 2002 14:04:07 +0100 Date: Wed, 13 Feb 2002 14:04:07 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: vserver@solucorp.qc.ca Subject: [vserver] Possible to see all ipaddresses off all interfaces in a vserver Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 86 Hi, I noticed that it's possible to see all ipaddresses on all interfaces in an vserver when it should only be possible to see the ipv4root address. ifconfig works as it should but ip from the iproute2 package uses netlink IIRC and there I can see all addresses of all interfaces. I'll see if I can take a look at it later this evening. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Wed Feb 13 09:50:00 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DEo0Ah017153 for ; Wed, 13 Feb 2002 09:50:00 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DEKo829524 for vserver.list; Wed, 13 Feb 2002 09:20:50 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tincan.org ([216.64.180.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DEKnR29520 for ; Wed, 13 Feb 2002 09:20:49 -0500 Received: from localhost (raanders@localhost) by tincan.org (8.9.3/8.8.7) with ESMTP id GAA21727 for ; Wed, 13 Feb 2002 06:20:48 -0800 Date: Wed, 13 Feb 2002 06:20:48 -0800 (PST) From: "Roderick A. Anderson" To: vserver@solucorp.qc.ca Subject: Re: [vserver] Possible to see all ipaddresses off all interfaces in a vserver In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 87 On Wed, 13 Feb 2002, Martin Josefsson wrote: > Hi, > > I noticed that it's possible to see all ipaddresses on all interfaces in > an vserver when it should only be possible to see the ipv4root address. Seems to me the lastest kernel and package make this so. Here is the results of ifconfig in a virtaul server eth0 Link encap:Ethernet HWaddr 00:80:AD:71:22:2C UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:701060 errors:0 dropped:0 overruns:0 frame:0 TX packets:48393 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:76531350 (72.9 Mb) TX bytes:7184647 (6.8 Mb) Interrupt:11 Base address:0xe800 eth0:vs1 Link encap:Ethernet HWaddr 00:80:AD:71:22:2C inet addr:216.64.180.227 Bcast:216.64.180.255 Mask:255.255.255.255 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:11 Base address:0xe800 lo Link encap:Local Loopback UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:877 errors:0 dropped:0 overruns:0 frame:0 TX packets:877 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:75810 (74.0 Kb) TX bytes:75810 (74.0 Kb) > ifconfig works as it should but ip from the iproute2 package uses netlink > IIRC and there I can see all addresses of all interfaces. OOPS! Is the above relavant? Regards, Rod -- Let Accuracy Triumph Over Victory Zetetic Institute "David's Sling" Marc Stiegler From vserver.error@solucorp.qc.ca Wed Feb 13 10:34:57 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DFYtAh017518 for ; Wed, 13 Feb 2002 10:34:56 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DFMM731915 for vserver.list; Wed, 13 Feb 2002 10:22:22 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DFMMR31911 for ; Wed, 13 Feb 2002 10:22:22 -0500 Received: from remtk.solucorp.qc.ca (g36-97.citenet.net [206.123.36.97]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1DFO0651741 for ; Wed, 13 Feb 2002 10:24:03 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1D62A702721 for vserver@solucorp.qc.ca; Wed, 13 Feb 2002 01:02:10 -0500 From: Jacques Gelinas Date: Wed, 13 Feb 2002 01:02:10 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] shrink wrap it X-mailer: tlmpmail 0.1 Message-ID: <20020213010210.2c01ebd43fd6@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 88 On Sat, 9 Feb 2002 19:36:10 -0500, klavs klavsen wrote > > Do you know, if I can run OpenLDAP, Samba, Apache+php and MySQL on a > vserver? OpenLDAP. apache+php, and MySQL work with vanilla configuration. There is something with Samba. I have not yet figure it out. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 13 12:10:53 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DHAqAh018499 for ; Wed, 13 Feb 2002 12:10:53 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DGj7u01139 for vserver.list; Wed, 13 Feb 2002 11:45:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DGj7R01135 for ; Wed, 13 Feb 2002 11:45:07 -0500 Received: from remtk.solucorp.qc.ca (g36-120.citenet.net [206.123.36.120]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1DGkt663554 for ; Wed, 13 Feb 2002 11:46:55 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1DGaYU05431 for vserver@solucorp.qc.ca; Wed, 13 Feb 2002 11:36:34 -0500 From: Jacques Gelinas Date: Wed, 13 Feb 2002 11:36:34 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver mailinglist available via web X-mailer: tlmpmail 0.1 Message-ID: <20020213113634.dea999265b06@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 89 On Wed, 13 Feb 2002 12:59:31 -0500, klavs klavsen wrote > Hi guys, > > As I mentioned, I was hoping the vserver crew/site would like the email > postings on the mailinglist to be available via the web. We are now working on it (with klavs). Since I kept a copy of the list since day one, this will make an interesting read for new comers. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 13 12:52:50 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DHqoAh019154 for ; Wed, 13 Feb 2002 12:52:50 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DHU1C02150 for vserver.list; Wed, 13 Feb 2002 12:30:01 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DHU0R02119 for ; Wed, 13 Feb 2002 12:30:00 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g1DHTqiW009740 for ; Wed, 13 Feb 2002 18:29:52 +0100 Date: Wed, 13 Feb 2002 18:29:52 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: vserver@solucorp.qc.ca Subject: Re: [vserver] Possible to see all ipaddresses off all interfaces in a vserver In-Reply-To: Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 90 On Wed, 13 Feb 2002, Roderick A. Anderson wrote: > Here is the results of ifconfig in a virtaul server > > eth0 Link encap:Ethernet HWaddr 00:80:AD:71:22:2C > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > RX packets:701060 errors:0 dropped:0 overruns:0 frame:0 > TX packets:48393 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:100 > RX bytes:76531350 (72.9 Mb) TX bytes:7184647 (6.8 Mb) > Interrupt:11 Base address:0xe800 > > eth0:vs1 Link encap:Ethernet HWaddr 00:80:AD:71:22:2C > inet addr:216.64.180.227 Bcast:216.64.180.255 Mask:255.255.255.255 > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > Interrupt:11 Base address:0xe800 > > lo Link encap:Local Loopback > UP LOOPBACK RUNNING MTU:16436 Metric:1 > RX packets:877 errors:0 dropped:0 overruns:0 frame:0 > TX packets:877 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:0 > RX bytes:75810 (74.0 Kb) TX bytes:75810 (74.0 Kb) > > > > ifconfig works as it should but ip from the iproute2 package uses netlink > > IIRC and there I can see all addresses of all interfaces. > > > OOPS! Is the above relavant? It shows that it works for the ifconfig case :) ifconfig and iproute2 doesn't use the same method of communication with the kernel. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Wed Feb 13 13:58:38 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DIwbAh019999; Wed, 13 Feb 2002 13:58:37 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DIWin04821 for vserver.list; Wed, 13 Feb 2002 13:32:44 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hotmail.com (f101.pav1.hotmail.com [64.4.31.101]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DIWhR04817 for ; Wed, 13 Feb 2002 13:32:44 -0500 Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Wed, 13 Feb 2002 10:32:42 -0800 Received: from 66.120.42.35 by pv1fd.pav1.hotmail.msn.com with HTTP; Wed, 13 Feb 2002 18:32:38 GMT X-Originating-IP: [66.120.42.35] From: "Carl Leonard" To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver mailinglist available via web Date: Wed, 13 Feb 2002 10:32:38 -0800 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 13 Feb 2002 18:32:42.0927 (UTC) FILETIME=[D2F5F3F0:01C1B4BC] Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: A X-Keywords: X-UID: 91 Could we take a few steps to try and protect the email addresses of the list members? Just about every publically accessible web page will eventually get hit by the spammers running thier web bot address suckers. I get enough spam as it is. Here is my suggestion for how to block virtually all of them. Make a front page that states that there is a password to get in. Put the username and password on the page. It could just be vservers and vservers. The bots pass on all password protected pages. -----Original Message----- From: Jacques Gelinas [mailto:jack@solucorp.qc.ca] Sent: Wednesday, February 13, 2002 8:37 AM To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver mailinglist available via web On Wed, 13 Feb 2002 12:59:31 -0500, klavs klavsen wrote >Hi guys, > >As I mentioned, I was hoping the vserver crew/site would like the email >postings on the mailinglist to be available via the web. We are now working on it (with klavs). Since I kept a copy of the list since day one, this will make an interesting read for new comers. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc _________________________________________________________________ Join the world’s largest e-mail service with MSN Hotmail. http://www.hotmail.com From vserver.error@solucorp.qc.ca Wed Feb 13 14:35:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DJZdAh020399; Wed, 13 Feb 2002 14:35:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DJA0I05608 for vserver.list; Wed, 13 Feb 2002 14:10:00 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DJA0R05594 for ; Wed, 13 Feb 2002 14:10:00 -0500 Received: from remtk.solucorp.qc.ca (g39-193.citenet.net [206.123.39.193]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1DJBn677359 for ; Wed, 13 Feb 2002 14:11:49 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1DJ9ju01020 for vserver@solucorp.qc.ca; Wed, 13 Feb 2002 14:09:45 -0500 From: Jacques Gelinas Date: Wed, 13 Feb 2002 14:09:45 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Possible to see all ipaddresses off all interfaces in a vserver X-mailer: tlmpmail 0.1 Message-ID: <20020213140945.2598770b5128@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 92 On Wed, 13 Feb 2002 14:04:07 -0500, Martin Josefsson wrote > Hi, > > I noticed that it's possible to see all ipaddresses on all interfaces in > an vserver when it should only be possible to see the ipv4root address. > > ifconfig works as it should but ip from the iproute2 package uses netlink > IIRC and there I can see all addresses of all interfaces. Here is a fix, relative to 2.4.17ctx-7. You still see the list of device, but only the IP address of your ipv4root. *** net/ipv4/devinet.bak Thu Jan 31 14:37:27 2002 --- net/ipv4/devinet.c Wed Feb 13 13:33:31 2002 *************** *** 918,923 **** --- 918,926 ---- read_lock(&in_dev->lock); for (ifa = in_dev->ifa_list, ip_idx = 0; ifa; ifa = ifa->ifa_next, ip_idx++) { + if (current->s_context != 0 + && current->ipv4root != 0 + && current->ipv4root != ifa->ifa_local) continue; if (ip_idx < s_ip_idx) continue; if (inet_fill_ifaddr(skb, ifa, NETLINK_CB(cb->skb).pid, --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 13 15:58:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DKwvAh021223; Wed, 13 Feb 2002 15:58:58 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DKX3w07185 for vserver.list; Wed, 13 Feb 2002 15:33:03 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DKX3R07181 for ; Wed, 13 Feb 2002 15:33:03 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DKX2Ai020890 for ; Wed, 13 Feb 2002 15:33:03 -0500 Date: Wed, 13 Feb 2002 15:33:02 -0500 (EST) From: Vlad To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver mailinglist available via web In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=ISO-8859-1 Content-Transfer-Encoding: 8BIT Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 93 Sure, I'll do that. But thats not going to stop people from harvesting email addresses. :) -Vlad On Wed, 13 Feb 2002, Carl Leonard wrote: > Could we take a few steps to try and protect the email addresses > of the list members? Just about every publically accessible web > page will eventually get hit by the spammers running thier web bot > address suckers. I get enough spam as it is. > > Here is my suggestion for how to block virtually all of them. > Make a front page that states that there is a password to get > in. Put the username and password on the page. It could just > be vservers and vservers. The bots pass on all password protected > pages. > > > > -----Original Message----- > From: Jacques Gelinas [mailto:jack@solucorp.qc.ca] > Sent: Wednesday, February 13, 2002 8:37 AM > To: vserver@solucorp.qc.ca > Subject: re: [vserver] vserver mailinglist available via web > > > On Wed, 13 Feb 2002 12:59:31 -0500, klavs klavsen wrote > >Hi guys, > > > >As I mentioned, I was hoping the vserver crew/site would like the email > >postings on the mailinglist to be available via the web. > > We are now working on it (with klavs). Since I kept a copy of the list > since day one, this will make an interesting read for new comers. > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > > > _________________________________________________________________ > Join the world’s largest e-mail service with MSN Hotmail. > http://www.hotmail.com > From vserver.error@solucorp.qc.ca Wed Feb 13 16:40:54 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DLeqAh021640; Wed, 13 Feb 2002 16:40:53 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DLO2X08272 for vserver.list; Wed, 13 Feb 2002 16:24:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.thedeacon.org (thedeacon.org [64.71.202.149]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DLO1R08268 for ; Wed, 13 Feb 2002 16:24:01 -0500 Received: from thedeacon.org (cyrix-m3.thedeacon.org [172.23.172.133]) by mail.thedeacon.org (Postfix) with SMTP id F3D91241CD for ; Wed, 13 Feb 2002 14:23:54 -0700 (MST) Received: from 204.118.209.253 (SquirrelMail authenticated user deacon) by webmail.thedeacon.org with HTTP; Wed, 13 Feb 2002 14:26:25 -0700 (MST) Message-ID: <3436.204.118.209.253.1013635585.squirrel@webmail.thedeacon.org> Date: Wed, 13 Feb 2002 14:26:25 -0700 (MST) Subject: [vserver] Patches against 2.4.18-ac and XFS? From: "Paul Kreiner" To: X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.3 [cvs]) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 94 Hi all, Just a query - I've been maintaining my own patches to keep vserver in sync with -ac kernels ('cause I like their stability better than the vanilla tree) and also running on XFS-patched kernels. For instance, I've currently got patches against 2.4.17-xfs, 2.4.18-pre9- ac2, and 2.4.18-pre9-ac2-xfs. Note that I don't use vunify, so I doubt that XFS would work with it out-of-the-box, but the rest of the vserver functionality is there. Would this be something useful to anyone else on the list? Cheers, _Paul K. From vserver.error@solucorp.qc.ca Wed Feb 13 16:56:29 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1DLuSAh021775; Wed, 13 Feb 2002 16:56:28 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DLaIu08569 for vserver.list; Wed, 13 Feb 2002 16:36:18 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from aquarius.diginode.net (aquarius.diginode.net [216.13.250.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1DLaHR08565 for ; Wed, 13 Feb 2002 16:36:17 -0500 Received: (qmail 26935 invoked from network); 13 Feb 2002 21:33:26 -0000 Received: from zerowing.pop-star.net (208.181.22.52) by aquarius.diginode.net with SMTP; 13 Feb 2002 21:33:26 -0000 Subject: Re: [vserver] Patches against 2.4.18-ac and XFS? From: Andy Kwong To: vserver@solucorp.qc.ca In-Reply-To: <3436.204.118.209.253.1013635585.squirrel@webmail.thedeacon.org> References: <3436.204.118.209.253.1013635585.squirrel@webmail.thedeacon.org> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 13 Feb 2002 13:37:31 -0800 Message-Id: <1013636251.21359.35.camel@zerowing.pop-star.net> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 95 Hi Paul, Thanks for your merging work. It should be useful for some of us that are testing out vserver functionality. I am having problems with 2.4.17-ctx7 and mounting and umounting ext3 fs on loop devices (it hard locks), which the newer kernels might help. Do you have a address where it can be downloaded? Thanks. On Wed, 2002-02-13 at 13:26, Paul Kreiner wrote: > Hi all, > > Just a query - I've been maintaining my own patches to keep vserver in sync > with -ac kernels ('cause I like their stability better than the vanilla > tree) and also running on XFS-patched kernels. > > For instance, I've currently got patches against 2.4.17-xfs, 2.4.18-pre9- > ac2, and 2.4.18-pre9-ac2-xfs. Note that I don't use vunify, so I doubt > that XFS would work with it out-of-the-box, but the rest of the vserver > functionality is there. > > Would this be something useful to anyone else on the list? > > Cheers, > > _Paul K. > > From vserver.error@solucorp.qc.ca Wed Feb 13 19:18:24 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1E0IMAh023119; Wed, 13 Feb 2002 19:18:23 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1DNh2B11172 for vserver.list; Wed, 13 Feb 2002 18:43:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.thedeacon.org (thedeacon.org [64.71.202.149]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1DNh1R11168 for ; Wed, 13 Feb 2002 18:43:01 -0500 Received: from thedeacon.org (cyrix-m3.thedeacon.org [172.23.172.133]) by mail.thedeacon.org (Postfix) with SMTP id 38155241CD; Wed, 13 Feb 2002 16:43:00 -0700 (MST) Received: from 204.118.209.253 (SquirrelMail authenticated user deacon) by webmail.thedeacon.org with HTTP; Wed, 13 Feb 2002 16:45:30 -0700 (MST) Message-ID: <3710.204.118.209.253.1013643930.squirrel@webmail.thedeacon.org> Date: Wed, 13 Feb 2002 16:45:30 -0700 (MST) Subject: Re: [vserver] Patches against 2.4.18-ac and XFS? From: "Paul Kreiner" To: In-Reply-To: <1013636251.21359.35.camel@zerowing.pop-star.net> References: <1013636251.21359.35.camel@zerowing.pop-star.net> X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal Cc: X-Mailer: SquirrelMail (version 1.2.3 [cvs]) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 96 Andy, Browse to thedeacon.org/vserver. Currently just my 2.4.18-pre9-ac2 patch is up, but I'll add my XFS patches when I get a chance to build & test them. _Paul K. Andy Kwong writes: > Thanks for your merging work. It should be useful for some of us that > are testing out vserver functionality. I am having problems with > 2.4.17-ctx7 and mounting and umounting ext3 fs on loop devices (it hard > locks), which the newer kernels might help. Do you have a address where > it can be downloaded? > > Thanks. From vserver.error@solucorp.qc.ca Wed Feb 13 22:30:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1E3UYAh024932; Wed, 13 Feb 2002 22:30:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1E3ATw14434 for vserver.list; Wed, 13 Feb 2002 22:10:29 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1E3ATR14430 for ; Wed, 13 Feb 2002 22:10:29 -0500 Received: from remtk.solucorp.qc.ca (g39-32.citenet.net [206.123.39.32]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1E3CL619627 for ; Wed, 13 Feb 2002 22:12:22 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1E1bVe04540 for vserver@solucorp.qc.ca; Wed, 13 Feb 2002 20:37:31 -0500 From: Jacques Gelinas Date: Wed, 13 Feb 2002 20:37:31 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Patches against 2.4.18-ac and XFS? X-mailer: tlmpmail 0.1 Message-ID: <20020213203731.a39125587e48@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 97 On Wed, 13 Feb 2002 14:26:25 -0500, Paul Kreiner wrote > Hi all, > > Just a query - I've been maintaining my own patches to keep vserver in sync > with -ac kernels ('cause I like their stability better than the vanilla > tree) and also running on XFS-patched kernels. > > For instance, I've currently got patches against 2.4.17-xfs, 2.4.18-pre9- > ac2, and 2.4.18-pre9-ac2-xfs. Note that I don't use vunify, so I doubt > that XFS would work with it out-of-the-box, but the rest of the vserver > functionality is there. xfs supports extended attributes, so I guess very little must be added to support immutable-linkage-invert. > Would this be something useful to anyone else on the list? I think so. Send me the URL and I will put it in the FAQ. I will release ctx-8 and vserver-0.11 this week. It comes with a little helper for such projects: The system call numbers are extracted from the running kernel. Those utilities (chbind, chcontext and friends) used the current system call number (226 and 227) by default, but can probe the kernel to find out the current value of those syscall. To make it short, the utility now works with older ctx kernel and with newer, even if the system call number have changed. No need to recompile the utilities. This should help until the vserver concept make its way in the standard kernel. Note also that ftp.solucorp.qc.ca/pub/vserver/patches always contains relative patches (ctx-6 to ctx-7 and so on), so you should be able to track the change very easily. Thanks! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Feb 14 03:47:10 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1E8l9Ah027105; Thu, 14 Feb 2002 03:47:09 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1E8RIb19181 for vserver.list; Thu, 14 Feb 2002 03:27:18 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1E8RIR19177 for ; Thu, 14 Feb 2002 03:27:18 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id CC88C1000 for ; Thu, 14 Feb 2002 09:27:16 +0100 (CET) Subject: re: [vserver] vserver mailinglist available via web From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-x3NsR3BDEyyJ1UmpUzYr" X-Mailer: Evolution/1.0.2 Date: 14 Feb 2002 09:27:14 +0100 Message-Id: <1013675236.1696.2.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: A X-Keywords: X-UID: 98 --=-x3NsR3BDEyyJ1UmpUzYr Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi Carl,=20 On Wed, 2002-02-13 at 19:32, Carl Leonard wrote: > Could we take a few steps to try and protect the email addresses > of the list members? Just about every publically accessible web > page will eventually get hit by the spammers running thier web bot > address suckers. I get enough spam as it is. well, at sslug.dk they just add the domain sslug.dk to the email address. I've been a member there for a long time, and have not received spam mail. >=20 > Here is my suggestion for how to block virtually all of them. > Make a front page that states that there is a password to get > in. Put the username and password on the page. It could just > be vservers and vservers. The bots pass on all password protected > pages. well, for extra security that's a good idea, but it does have the drawback, that google no longer will index the archive - so vserver has to maintain their own search engine. with google, you just enter the words and add the site:www.sslug.dk - voila. easier for everyone. =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-x3NsR3BDEyyJ1UmpUzYr Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8a3Ti4c1kHlhtW8oRAoqGAKCznhEjz8Kb47ZgtI5oY3yDlOajRQCffS6/ pdZgKFowBrbYmv2KrZVCkR4= =jv8y -----END PGP SIGNATURE----- --=-x3NsR3BDEyyJ1UmpUzYr-- From vserver.error@solucorp.qc.ca Thu Feb 14 08:46:52 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1EDkpAh001547; Thu, 14 Feb 2002 08:46:52 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1EDPng24183 for vserver.list; Thu, 14 Feb 2002 08:25:49 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1EDPlR24179 for ; Thu, 14 Feb 2002 08:25:48 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 9F45F1000 for ; Thu, 14 Feb 2002 14:25:41 +0100 (CET) Subject: [vserver] many services - 1 IP. From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-iYD8Ap+2RSZ79BWIC+52" X-Mailer: Evolution/1.0.2 Date: 14 Feb 2002 14:25:40 +0100 Message-Id: <1013693141.1695.20.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: A X-Keywords: X-UID: 99 --=-iYD8Ap+2RSZ79BWIC+52 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I need to install and maintain 6 kind of servers. 1, with samba and openldap, 1 with Postfix, courier-imap, OpenLdap and Apache and so forth. what i wanted to do, is to have them all installed on 1 physical machine, under each vserver. I was thinking, that it would be a good idea to chroot each service on each server, so that a vulnerability in one, doesn't put the other services on that machine in danger. Unfortunately chroot is not safe (see earlier mail on this list).=20 I've read the docs on the site, but it's not really clear to me if can do this, and how this compares to doing the same with chroot (except for the fact that chroot is not safe and vserver is :-) My questions therefore are these: Can I "chroot" each service on each vserver - without having to create a new vserver (with a new IP) for each service?=20 In the case of postfix and courier-imap can two "chroot" jails share the same files (the maildir)? A final question, if I install ssh on each vserver - and the services are chrooted - will the ssh-users still be able to configure them? - they would with a normal chroot, so that shouldn't be a problem? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-iYD8Ap+2RSZ79BWIC+52 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8a7rU4c1kHlhtW8oRAnZOAJ9wmUdCwy8D3s0x643qdEgrGAPNLACeIdYV UAzHIs1tkCrc7jobM7WHc+g= =H6tq -----END PGP SIGNATURE----- --=-iYD8Ap+2RSZ79BWIC+52-- From vserver.error@solucorp.qc.ca Thu Feb 14 09:12:06 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1EEC5Ah001817; Thu, 14 Feb 2002 09:12:05 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1EDoAN24629 for vserver.list; Thu, 14 Feb 2002 08:50:10 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1EDo9R24625 for ; Thu, 14 Feb 2002 08:50:09 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 87D911000 for ; Thu, 14 Feb 2002 14:50:08 +0100 (CET) Subject: [vserver] Re: many services - 1 IP. From: klavs klavsen To: Vserver Mailinglist In-Reply-To: <1013693141.1695.20.camel@amd.vsen.dk> References: <1013693141.1695.20.camel@amd.vsen.dk> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-HbNidnhWoH962TVskQjl" X-Mailer: Evolution/1.0.2 Date: 14 Feb 2002 14:50:08 +0100 Message-Id: <1013694608.1696.33.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 100 --=-HbNidnhWoH962TVskQjl Content-Type: text/plain Content-Transfer-Encoding: quoted-printable I saw on the preliminary mailinglist archive, that lsm.immunix.org has been discussed as a addon to the vserver kernel.patch.=20 I couldn't find the lsm mentioned on www.immunix.org, only stackguard, subdomain and such. I was wondering what your ideas is with this, if any? SubDomain for instance, could perhaps solve the issue of secure chroot within vserver? if vserver doesn not already support it somehow. wonder how SubDomain handles file-sharing between two apps - like the maildirs in my example. Thank you, for your already greatly appreciated input. I was thinking of taking my questions, and adding them to the FAQ or writing my own.. to give people with the curiosity like me, some more answers to their questions.. this would also help show exactly what usage the vserver patch enables. The mailinglist archive will be a great help. On Thu, 2002-02-14 at 14:25, klavs klavsen wrote: > Hi guys, >=20 > I need to install and maintain 6 kind of servers. >=20 > 1, with samba and openldap, 1 with Postfix, courier-imap, OpenLdap and > Apache and so forth. >=20 > what i wanted to do, is to have them all installed on 1 physical > machine, under each vserver. >=20 > I was thinking, that it would be a good idea to chroot each service on > each server, so that a vulnerability in one, doesn't put the other > services on that machine in danger. Unfortunately chroot is not safe > (see earlier mail on this list).=20 >=20 > I've read the docs on the site, but it's not really clear to me if can > do this, and how this compares to doing the same with chroot (except for > the fact that chroot is not safe and vserver is :-) >=20 > My questions therefore are these: >=20 > Can I "chroot" each service on each vserver - without having to create a > new vserver (with a new IP) for each service?=20 >=20 > In the case of postfix and courier-imap can two "chroot" jails share the > same files (the maildir)? >=20 > A final question, if I install ssh on each vserver - and the services > are chrooted - will the ssh-users still be able to configure them? - > they would with a normal chroot, so that shouldn't be a problem? >=20 > --=20 > Regards, > Klavs Klavsen >=20 > -------------| This mail has been sent to you by: |------------ > Klavs Klavsen - OpenSource Consultant=20 > kl@vsen.dk - http://www.vsen.dk >=20 > Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 > Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA > --------------------[ I believe that... ]----------------------- > It is a myth that people resist change. People resist what other > people make them do, not what they themselves choose to do... > That's why companies that innovate successfully year after year > seek their peopl's ideas, let them initiate new projects and > encourage more experiments. -- Rosabeth Moss Kanter >=20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-HbNidnhWoH962TVskQjl Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8a8CQ4c1kHlhtW8oRAtCOAKCdFRjurwIk5MjuHkqIQphKij6nZACgoqjV 8/x5O7WT379C4xDV/Uylfkg= =C3AG -----END PGP SIGNATURE----- --=-HbNidnhWoH962TVskQjl-- From vserver.error@solucorp.qc.ca Thu Feb 14 09:51:45 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1EEpiAh002187; Thu, 14 Feb 2002 09:51:44 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1EENBq25240 for vserver.list; Thu, 14 Feb 2002 09:23:11 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1EENAR25236 for ; Thu, 14 Feb 2002 09:23:10 -0500 Received: from host213-122-196-218.in-addr.btopenworld.com ([213.122.196.218] helo=john-new) by tungsten.btinternet.com with esmtp (Exim 3.22 #8) id 16bMmu-0001ey-00 for vserver@solucorp.qc.ca; Thu, 14 Feb 2002 14:23:04 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Thu, 14 Feb 2002 14:22:46 -0000 From: "John Lyons" To: Subject: [vserver] apache rpm install Date: Thu, 14 Feb 2002 14:22:44 -0000 Message-ID: <006101c1b563$12ab71e0$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <1013694608.1696.33.camel@amd.vsen.dk> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 101 I'm trying to put together a number of vservers to run apache, php and mysql. Easy normally, but I'm making things hard for myself :-) I could install these from source on each vs but that wastes disk and memory as each apache would have it's own separate binary and future upgrades would be a 'by hand' process on each vs. Also I don't think I can unify from a source install as there's no rpm file list to be queried. I could install from rpms but that would remove the flexibility to compile apache and php with the goodies that we all like to add :-) My guess was that I could get a src.rpm package, modify it to compile in the features that I need, create a compiled rpm package that I can then install on each vs using the vs tools which will then be capable of being unified. Am I on the right lines here and would anyone care to point me in the direction of a guide to a DIY src.rpm build. I've compiled packages from source and installed rpm's but building an rpm is new ground for me and googles not coming up with the goods :-( Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Thu Feb 14 10:38:08 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1EFc7Ah002627; Thu, 14 Feb 2002 10:38:08 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1EF6sX25996 for vserver.list; Thu, 14 Feb 2002 10:06:54 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1EF6sR25992 for ; Thu, 14 Feb 2002 10:06:54 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1EF6sAi002368 for ; Thu, 14 Feb 2002 10:06:54 -0500 Date: Thu, 14 Feb 2002 10:06:54 -0500 (EST) From: Vlad To: Vserver Mailinglist Subject: Re: [vserver] many services - 1 IP. In-Reply-To: <1013693141.1695.20.camel@amd.vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 102 I think thats the basis for chroot - it binds the new context to an ip address... otherwise you might as well just set up a generic chroot for each service.. What you can try and do is create your vservers in private address space (192.168, 10.0.) and then do port forwards from the 1 real ip address.. -Vlad On 14 Feb 2002, klavs klavsen wrote: > Hi guys, > > I need to install and maintain 6 kind of servers. > > 1, with samba and openldap, 1 with Postfix, courier-imap, OpenLdap and > Apache and so forth. > > what i wanted to do, is to have them all installed on 1 physical > machine, under each vserver. > > I was thinking, that it would be a good idea to chroot each service on > each server, so that a vulnerability in one, doesn't put the other > services on that machine in danger. Unfortunately chroot is not safe > (see earlier mail on this list). > > I've read the docs on the site, but it's not really clear to me if can > do this, and how this compares to doing the same with chroot (except for > the fact that chroot is not safe and vserver is :-) > > My questions therefore are these: > > Can I "chroot" each service on each vserver - without having to create a > new vserver (with a new IP) for each service? > > In the case of postfix and courier-imap can two "chroot" jails share the > same files (the maildir)? > > A final question, if I install ssh on each vserver - and the services > are chrooted - will the ssh-users still be able to configure them? - > they would with a normal chroot, so that shouldn't be a problem? > > From vserver.error@solucorp.qc.ca Thu Feb 14 14:41:51 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1EJfoAh012664; Thu, 14 Feb 2002 14:41:50 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1EJNsq31620 for vserver.list; Thu, 14 Feb 2002 14:23:54 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1EJNsR31616 for ; Thu, 14 Feb 2002 14:23:54 -0500 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g1EJ3LQ26306 for ; Thu, 14 Feb 2002 19:03:21 GMT Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 16bRTx-000721-00 for ; Thu, 14 Feb 2002 19:23:49 +0000 Date: Thu, 14 Feb 2002 19:23:48 +0000 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] RE: Performance, memory, etc In-Reply-To: <02d601c1af69$13fa1d30$b5a401d5@home4v9eek8u3l> References: <02d601c1af69$13fa1d30$b5a401d5@home4v9eek8u3l> X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 103 On Wed, 6 Feb 2002 23:50:37 -0000 "John Lyons" wrote: > I didn't think that anyone was doing virtual hosting based on IP's > anymore? We're using name based virtual hosting ie 1 ip to multiple > domains. Can't see a lot of need for 1 ip per domain? You need it for SSL. One hostname per certificate per IP; the certificate, which is passed before any HTTP/1.1 host information is exchanged, contains the host name. Browser response when the two don't match varies from spitting up a nasty looking warning page to refusing to load the site. Sam. From vserver.error@solucorp.qc.ca Fri Feb 15 03:56:10 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1F8u9Ah019860; Fri, 15 Feb 2002 03:56:09 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1F8SrL12796 for vserver.list; Fri, 15 Feb 2002 03:28:53 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1F8SrR12792 for ; Fri, 15 Feb 2002 03:28:53 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 6A6A51000 for ; Fri, 15 Feb 2002 09:28:53 +0100 (CET) Subject: Re: [vserver] many services - 1 IP. From: klavs klavsen To: Vserver Mailinglist In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-L73po2vmM3ahNTExyvq1" X-Mailer: Evolution/1.0.2 Date: 15 Feb 2002 09:28:53 +0100 Message-Id: <1013761733.1733.13.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: A X-Keywords: X-UID: 104 --=-L73po2vmM3ahNTExyvq1 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi Vlad, On Thu, 2002-02-14 at 16:06, Vlad wrote: > I think thats the basis for chroot - it binds the new context to an ip=20 > address... otherwise you might as well just set up a generic chroot for=20 > each service..=20 damn. you sure? I'm not so sure. bastille-linux chroots your bind service for instance, and it doesn't change the config or the IP it runs on. and Shouldn't you be able to bind a specific chroot jail to a specific port/IP instead of a specific Unique IP? (the last is just plain dumb if you have many services). =20 > What you can try and do is create your vservers in private address space=20 > (192.168, 10.0.) and then do port forwards from the 1 real ip address.. =20 that's a work around.. but I would be very sorry to have to do that, as it adds complexity to my firewall script.. If it doesn't need to be there.. Remove it :-) > On 14 Feb 2002, klavs klavsen wrote: >=20 > > Hi guys, > >=20 > > I need to install and maintain 6 kind of servers. > >=20 > > 1, with samba and openldap, 1 with Postfix, courier-imap, OpenLdap and > > Apache and so forth. > >=20 > > what i wanted to do, is to have them all installed on 1 physical > > machine, under each vserver. > >=20 > > I was thinking, that it would be a good idea to chroot each service on > > each server, so that a vulnerability in one, doesn't put the other > > services on that machine in danger. Unfortunately chroot is not safe > > (see earlier mail on this list).=20 > >=20 > > I've read the docs on the site, but it's not really clear to me if can > > do this, and how this compares to doing the same with chroot (except fo= r > > the fact that chroot is not safe and vserver is :-) > >=20 > > My questions therefore are these: > >=20 > > Can I "chroot" each service on each vserver - without having to create = a > > new vserver (with a new IP) for each service?=20 > >=20 > > In the case of postfix and courier-imap can two "chroot" jails share th= e > > same files (the maildir)? > >=20 > > A final question, if I install ssh on each vserver - and the services > > are chrooted - will the ssh-users still be able to configure them? - > > they would with a normal chroot, so that shouldn't be a problem? > >=20 > >=20 >=20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-L73po2vmM3ahNTExyvq1 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8bMbF4c1kHlhtW8oRAtoKAKCk9Lxd/y3IrbKXc18iGKNtasHrrwCfbnAc PMf2ggTMQJs95+469ocR/7U= =CVzJ -----END PGP SIGNATURE----- --=-L73po2vmM3ahNTExyvq1-- From vserver.error@solucorp.qc.ca Fri Feb 15 04:03:08 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1F937Ah021078; Fri, 15 Feb 2002 04:03:07 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1F8PPs12767 for vserver.list; Fri, 15 Feb 2002 03:25:25 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1F8POR12760 for ; Fri, 15 Feb 2002 03:25:24 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id F1F7B1000 for ; Fri, 15 Feb 2002 09:25:20 +0100 (CET) Subject: Re: [vserver] apache rpm install From: klavs klavsen To: Vserver Mailinglist In-Reply-To: <006101c1b563$12ab71e0$0100a8c0@johnnew> References: <006101c1b563$12ab71e0$0100a8c0@johnnew> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-Bkf1DqPywY1FxPK0iArh" X-Mailer: Evolution/1.0.2 Date: 15 Feb 2002 09:25:20 +0100 Message-Id: <1013761521.1733.9.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 105 --=-Bkf1DqPywY1FxPK0iArh Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi John, On Thu, 2002-02-14 at 15:22, John Lyons wrote: >=20 > I'm trying to put together a number of vservers to run apache, php and > mysql. Easy normally, but I'm making things hard for myself :-) Don't we all. > I could install from rpms but that would remove the flexibility to compil= e > apache and php with the goodies that we all like to add :-) yup. =20 > My guess was that I could get a src.rpm package, modify it to compile in = the > features that I need, create a compiled rpm package that I can then insta= ll > on each vs using the vs tools which will then be capable of being unified= . what I would do, is get a src.rpm - pick out the .spec file.. with rpm2cpio apache.src.rpm | cpio -t (find the exact path of the apache.spec and run rpm2cpio apache.src.rpm | cpio -ivd ./patch/to/apache.spec modify it to suit your needs.. build it. I usually call my apache packages for apache-KTK-version (this way my upgrade scripts won't think that my apache packages is the one that is in a newer version on some update-mirror site..=20 > Am I on the right lines here and would anyone care to point me in the > direction of a guide to a DIY src.rpm build. I've compiled packages from > source and installed rpm's but building an rpm is new ground for me and > googles not coming up with the goods :-( you can just build a src.rpm by: rpm --rebuild apache.src.rpm (I think you can only change Compiler options, don't know if you can change -configure options - without disassembling the package and packing it again.. :-) --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-Bkf1DqPywY1FxPK0iArh Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8bMXw4c1kHlhtW8oRAimEAJ9IGfIcnCPluRAT+H/2dtdSB+/gVQCglqNS gRfg7jR+HUGQB92CJyXt7eg= =D6EM -----END PGP SIGNATURE----- --=-Bkf1DqPywY1FxPK0iArh-- From vserver.error@solucorp.qc.ca Fri Feb 15 06:13:22 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FBDLAh021953; Fri, 15 Feb 2002 06:13:22 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FAww915311 for vserver.list; Fri, 15 Feb 2002 05:58:58 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FAwvR15307 for ; Fri, 15 Feb 2002 05:58:57 -0500 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g1FAcOQ01610 for ; Fri, 15 Feb 2002 10:38:24 GMT Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 16bg4t-0007wX-00 for ; Fri, 15 Feb 2002 10:58:55 +0000 Date: Fri, 15 Feb 2002 10:58:55 +0000 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] RE: Performance, memory, etc In-Reply-To: <20020208220953.7da211c5c377@remtk.solucorp.qc.ca> References: <20020208220953.7da211c5c377@remtk.solucorp.qc.ca> X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: A X-Keywords: X-UID: 106 Jacques Gelinas wrote: > This is true. One solution would be to have one private loopback per > vserver. (127.0.0.N) and translate dynamically from 127.0.0.1 to the > vserver one. [...] > The current ipv4root of the vserver is mapping a bind(0.0.0.0), to a > bind(ip-of-the-vserver). After this little modification in the kernel, > the rest of the kernel simply work as usual. Just a thought, perhaps changing any call to bind(127.0.0.0/8) to bind(ip_root) would be a nice quick hack; --- net/ipv4/af_inet.c Fri Feb 15 10:33:10 2002 +++ net/ipv4/af_inet.c.orig Fri Feb 15 10:31:16 2002 @@ -489,7 +489,7 @@ s_addr = addr->sin_addr.s_addr; if (current->ipv4root != 0){ // printk ("ipv4root0 %08lx %08x\n",current->ipv4root,s_addr); - if (s_addr == 0 || (s_addr>>24 & 0xFF) == 127 ){ + if (s_addr == 0){ s_addr = current->ipv4root; }else if (s_addr != current->ipv4root){ return -EADDRNOTAVAIL; Is this breaking network sanity too much? :-) Sam. From vserver.error@solucorp.qc.ca Fri Feb 15 08:27:18 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FDRHAh022890; Fri, 15 Feb 2002 08:27:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FD9N817677 for vserver.list; Fri, 15 Feb 2002 08:09:23 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from priv-edtnes11-hme0.telusplanet.net (fepout3.telus.net [199.185.220.238]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FD9NR17673 for ; Fri, 15 Feb 2002 08:09:23 -0500 Received: from iris ([142.179.16.5]) by priv-edtnes11-hme0.telusplanet.net (InterMail vM.5.01.04.01 201-253-122-122-101-20011014) with SMTP id <20020210212504.PIMW3650.priv-edtnes11-hme0.telusplanet.net@iris> for ; Sun, 10 Feb 2002 14:25:04 -0700 Message-ID: <042301c1b279$26787520$8201a8c0@iris> From: "Andy Kwong" To: Subject: [vserver] Re: Vserver and /var/run Date: Sun, 10 Feb 2002 13:23:14 -0800 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0420_01C1B236.17F9A7A0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 107 This is a multi-part message in MIME format. ------=_NextPart_000_0420_01C1B236.17F9A7A0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable And on line 208 as well. ----- Original Message -----=20 From: Andy Kwong=20 To: vserver@solucorp.qc.ca=20 Sent: Sunday, February 10, 2002 1:19 PM Subject: Vserver and /var/run On line 80 in /usr/sbin/vserver it is - rm -fr var/run/* Shouldn't it be - rm -f var/run/*.pid This is because it is removing /var/run/named/ and other directories = that some programs need to write their pid files to. ------=_NextPart_000_0420_01C1B236.17F9A7A0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
And on line 208 as well.
----- Original Message -----
From:=20 Andy=20 Kwong
Sent: Sunday, February 10, 2002 = 1:19=20 PM
Subject: Vserver and = /var/run

On line 80 in /usr/sbin/vserver it is = -
 
          &nbs= p;    =20 rm -fr var/run/*
 
Shouldn't it be -
 
          &nbs= p;    =20 rm -f var/run/*.pid
 
This is because it is removing = /var/run/named/=20 and other directories that some programs need to write their pid files = to.
------=_NextPart_000_0420_01C1B236.17F9A7A0-- From vserver.error@solucorp.qc.ca Fri Feb 15 08:49:04 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FDn3Ah023047; Fri, 15 Feb 2002 08:49:03 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FDXqr18221 for vserver.list; Fri, 15 Feb 2002 08:33:52 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FDXqR18217 for ; Fri, 15 Feb 2002 08:33:52 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id C53071000 for ; Fri, 15 Feb 2002 14:33:41 +0100 (CET) Subject: Re: [vserver] many services - 1 IP. From: klavs klavsen To: Vserver Mailinglist In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-FwhIK+3Y3f9LVGrT6wJR" X-Mailer: Evolution/1.0.2 Date: 15 Feb 2002 14:33:41 +0100 Message-Id: <1013780021.1731.48.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 108 --=-FwhIK+3Y3f9LVGrT6wJR Content-Type: multipart/mixed; boundary="=-e+oBEx9OYf7Ys0oDg3ru" --=-e+oBEx9OYf7Ys0oDg3ru Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-02-15 at 14:06, Vlad wrote: >=20 > That was bad wording on my part; I was talking about basis for vserver,=20 > not chroot. You are right, you can chroot bind easilly=20 > (http://www.linux.org/docs/ldp/howto/Chroot-BIND8-HOWTO.html) but that=20 > requires hacking the source a bit. ok.=20 =20 > The reason it works for bastille is because they chroot bind, they=20 > don't create a separate server for it. So in order to allow someone to=20 > administer the service you have to give them an account on the root=20 > server.. and there is no way to use that to run multiple name servers on=20 > the same machine, just makes sure that if your bind gets hacked they don'= t=20 > get rootshell.=20 Yup. And that's what I wanted under each vserver (with a seperate IP for each vserver).. so that when I have my 6 vservers, each service on the vserver is protected against holes in the other services.. and I don't want to run 1 service on each vserver. :-( I don't understand what you mean by binding chroot to a=20 > port... but it doesn't sound pretty..=20 =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-e+oBEx9OYf7Ys0oDg3ru Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part Content-Transfer-Encoding: base64 LS0tLS1CRUdJTiBQR1AgU0lHTkFUVVJFLS0tLS0KVmVyc2lvbjogR251UEcgdjEuMC42IChHTlUv TGludXgpCkNvbW1lbnQ6IEZvciBpbmZvIHNlZSBodHRwOi8vd3d3LmdudXBnLm9yZwoKaUQ4REJR QThiUTB6NGMxa0hsaHRXOG9SQWlIM0FKOTY0cmlEMTRVNmFPNnlJcUxkbEVEc2VGTnZ6d0NkR0Vh Rgo2cFF4NG5QRUs3bFZkaWdXVVhDUlB2TT0KPUNaeU8KLS0tLS1FTkQgUEdQIFNJR05BVFVSRS0t LS0tCg== --=-e+oBEx9OYf7Ys0oDg3ru-- --=-FwhIK+3Y3f9LVGrT6wJR Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8bQ414c1kHlhtW8oRAmZ+AJ950PW2T79v+eG4XRLiPY1/LuIHOgCgt7rG xzbGVdG99Ufp48ngX4UnQFw= =I0K5 -----END PGP SIGNATURE----- --=-FwhIK+3Y3f9LVGrT6wJR-- From kl@vsen.dk Fri Feb 15 09:05:52 2002 Return-Path: Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FE5pAh023270 for ; Fri, 15 Feb 2002 09:05:51 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id A6D6F1000; Fri, 15 Feb 2002 15:05:45 +0100 (CET) Subject: Re: [vserver] many services - 1 IP. From: klavs klavsen To: Vlad , Vserver Mailinglist In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-FWVrwiSmmdPLv1llKRgW" X-Mailer: Evolution/1.0.2 Date: 15 Feb 2002 15:05:45 +0100 Message-Id: <1013781945.1733.59.camel@amd.vsen.dk> Mime-Version: 1.0 Status: RO X-Status: A X-Keywords: X-UID: 109 --=-FWVrwiSmmdPLv1llKRgW Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-02-15 at 14:45, Vlad wrote: >=20 > Oohhh... I get it now.. Somehow in your response the main part of the=20 > problem got lost. I just went back to your original message: :-) =20 > And yeah, thats correct. You can use chroot within the virtual server, an= d=20 > you can do it securely. There was a bug where you could use chroot=20 > within vserver to escape out of the vserver and back into the root server= .=20 > That has been fixed for a while. ;) but chroot is still buggy (even if it's running under a vserver) so that one could break out of a chroot jail and get to other services on the same vserver? >=20 > To save you some time, if you do go with bind inside virtual server make=20 > sure you compile it without linux caps; they will fail inside vserver. ok. I'm kinda sad, that this means one can't use standard rpm's.. cause I'm gonna setup these systems in small shops, where they don't have the knowledge/expertise to compile themselves, and therefore standard distribution rpm compatability would be great to have.. I guess, I'm gonna have to think of something.. :-( Then I will have install the services on the costumer machines, without vserver (unless they explicitly want it with its advantages and disadvantages), this would mean that I have to copy config files over ONLY.. from the vserver to the costumer server - whereas otherwise I would be able to just copy the vserver directory :-( and then I would have to maintain a secured base linux system, for the costumer server. I'm just gonna use my vserver box's root server for that. Well it seems the path is becoming more clear to me now :-) it's difficult to make a standard installation, that doesn't remove flexibility and ease of use and doesn't compromise security either. P.S. I've sent this mail to the vserver-mailinglist also, so that others might gain from our discussion :-) --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-FWVrwiSmmdPLv1llKRgW Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8bRW54c1kHlhtW8oRAugtAKCQFKixspp0F7Ikr2+cQ3/DuzdHhwCfdTVi fgH5Kvx2Az4Jbu7OstChR4k= =5xD4 -----END PGP SIGNATURE----- --=-FWVrwiSmmdPLv1llKRgW-- From vserver.error@solucorp.qc.ca Fri Feb 15 09:20:02 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FEK1Ah023444; Fri, 15 Feb 2002 09:20:02 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FE5pi18916 for vserver.list; Fri, 15 Feb 2002 09:05:51 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FE5oR18912 for ; Fri, 15 Feb 2002 09:05:50 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id A6D6F1000; Fri, 15 Feb 2002 15:05:45 +0100 (CET) Subject: Re: [vserver] many services - 1 IP. From: klavs klavsen To: Vlad , Vserver Mailinglist In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-FWVrwiSmmdPLv1llKRgW" X-Mailer: Evolution/1.0.2 Date: 15 Feb 2002 15:05:45 +0100 Message-Id: <1013781945.1733.59.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 110 --=-FWVrwiSmmdPLv1llKRgW Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-02-15 at 14:45, Vlad wrote: >=20 > Oohhh... I get it now.. Somehow in your response the main part of the=20 > problem got lost. I just went back to your original message: :-) =20 > And yeah, thats correct. You can use chroot within the virtual server, an= d=20 > you can do it securely. There was a bug where you could use chroot=20 > within vserver to escape out of the vserver and back into the root server= .=20 > That has been fixed for a while. ;) but chroot is still buggy (even if it's running under a vserver) so that one could break out of a chroot jail and get to other services on the same vserver? >=20 > To save you some time, if you do go with bind inside virtual server make=20 > sure you compile it without linux caps; they will fail inside vserver. ok. I'm kinda sad, that this means one can't use standard rpm's.. cause I'm gonna setup these systems in small shops, where they don't have the knowledge/expertise to compile themselves, and therefore standard distribution rpm compatability would be great to have.. I guess, I'm gonna have to think of something.. :-( Then I will have install the services on the costumer machines, without vserver (unless they explicitly want it with its advantages and disadvantages), this would mean that I have to copy config files over ONLY.. from the vserver to the costumer server - whereas otherwise I would be able to just copy the vserver directory :-( and then I would have to maintain a secured base linux system, for the costumer server. I'm just gonna use my vserver box's root server for that. Well it seems the path is becoming more clear to me now :-) it's difficult to make a standard installation, that doesn't remove flexibility and ease of use and doesn't compromise security either. P.S. I've sent this mail to the vserver-mailinglist also, so that others might gain from our discussion :-) --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-FWVrwiSmmdPLv1llKRgW Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8bRW54c1kHlhtW8oRAugtAKCQFKixspp0F7Ikr2+cQ3/DuzdHhwCfdTVi fgH5Kvx2Az4Jbu7OstChR4k= =5xD4 -----END PGP SIGNATURE----- --=-FWVrwiSmmdPLv1llKRgW-- From vserver.error@solucorp.qc.ca Fri Feb 15 09:38:49 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FEcmAh023592; Fri, 15 Feb 2002 09:38:49 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FEAXH19043 for vserver.list; Fri, 15 Feb 2002 09:10:33 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FEAWR19039 for ; Fri, 15 Feb 2002 09:10:32 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 85DE01000 for ; Fri, 15 Feb 2002 15:10:31 +0100 (CET) Subject: [vserver] what about a Todo list? From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-AWdsY+rMrkk9243w0p2v" X-Mailer: Evolution/1.0.2 Date: 15 Feb 2002 15:10:31 +0100 Message-Id: <1013782231.1731.65.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 111 --=-AWdsY+rMrkk9243w0p2v Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I was thinking that if the vserver site, had a Todo list of wanted features/bug-fixes.. people would more easily be able to see wether or not they could/would contribute to the project.=20 It also helps to show how far the project has come, and how far it has travelled (even more so, if you kept the already finished Todo's at the bottom). It would certainly help me, to see if there were any part of the vserver project where I could contribute.. and also it would enable me to see, if my needs/ideas were already on the Todo list, so that I could perhaps team up with people who has the same goal. What do you think? I'd like to help making it, and the FAQ I talked about earlier if you think that's a good idea. I would like it to be a collaborate effort, as that will make it better - and also ensure the work gets used :-) --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-AWdsY+rMrkk9243w0p2v Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8bRbX4c1kHlhtW8oRAmX2AJ4mumJjFt/lLi9LSVqViPy7suTTdwCfUeKW NQur+jStuXWBr/yliLCApLY= =24XM -----END PGP SIGNATURE----- --=-AWdsY+rMrkk9243w0p2v-- From vserver.error@solucorp.qc.ca Fri Feb 15 10:41:36 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FFfZAh024168; Fri, 15 Feb 2002 10:41:36 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FFTcg20646 for vserver.list; Fri, 15 Feb 2002 10:29:38 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FFTcR20642 for ; Fri, 15 Feb 2002 10:29:38 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FFTcAi024053 for ; Fri, 15 Feb 2002 10:29:38 -0500 Date: Fri, 15 Feb 2002 10:29:38 -0500 (EST) From: Vlad To: Vserver Mailinglist Subject: Re: [vserver] what about a Todo list? In-Reply-To: <1013782231.1731.65.camel@amd.vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 112 > I was thinking that if the vserver site, had a Todo list of wanted > features/bug-fixes.. people would more easily be able to see wether or > not they could/would contribute to the project. http://www.solucorp.qc.ca/miscprj/s_context.hc?s1=6&s2=0&s3=0&s4=0&full=0&prjstate=1&nodoc=0 > It also helps to show how far the project has come, and how far it has > travelled (even more so, if you kept the already finished Todo's at the > bottom). http://www.solucorp.qc.ca/changes.hc?projet=vserver&version=all > I'd like to help making it, and the FAQ I talked about earlier if you > think that's a good idea. I would like it to be a collaborate effort, as > that will make it better - and also ensure the work gets used :-) http://www.solucorp.qc.ca/howto.hc?projet=vserver If you have something to contribute to the project why don't you just email the stuff to Jacques? From vserver.error@solucorp.qc.ca Fri Feb 15 11:16:47 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FGGkAh024466; Fri, 15 Feb 2002 11:16:46 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FFtYL21215 for vserver.list; Fri, 15 Feb 2002 10:55:34 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chichen.dd.lt.qc.ca (modemcable036.49-203-24.mtl.mc.videotron.ca [24.203.49.36]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FFtYR21211 for ; Fri, 15 Feb 2002 10:55:34 -0500 Received: from canyon.logisoftech.com (canyon.localdomain [192.168.4.2]) by chichen.dd.lt.qc.ca (8.9.3/8.8.7) with ESMTP id JAA05420; Fri, 15 Feb 2002 09:55:42 -0500 Date: Fri, 15 Feb 2002 11:41:35 -0500 (EST) From: "Bourque, Guillaume" To: Vserver Mailinglist cc: klavs klavsen Subject: Re: [vserver] many services - 1 IP. In-Reply-To: <1013781945.1733.59.camel@amd.vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=ISO-8859-1 Content-Transfer-Encoding: 8BIT Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 113 Hello ! >ok. I'm kinda sad, that this means one can't use standard rpm's.. cause >I'm gonna setup these systems in small shops, where they don't have the >knowledge/expertise to compile themselves, and therefore standard >distribution rpm compatability would be great to have.. Almost every package work's correclty out of the box in vservers environnement and for bind you can use djbdns, that's what I did and it is working very well for me ! BTW dbjdns is so fast ! Cheer's -- --------------------- La qualité avant tout ! ---------------------- Guillaume Bourque Conseiller technologique LogiSoft Technologies inc. Tél. (514) 576-7638 Fax: (450) 649-6134 -------------------- http://www.logisoftech.com -------------------- From vserver.error@solucorp.qc.ca Fri Feb 15 11:27:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FGRlAh024587; Fri, 15 Feb 2002 11:27:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FG96D21455 for vserver.list; Fri, 15 Feb 2002 11:09:06 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lakemtao03.cox.net (mtao3.east.cox.net [68.1.17.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FG95R21451 for ; Fri, 15 Feb 2002 11:09:05 -0500 Received: from gregg ([68.3.68.74]) by lakemtao03.cox.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with SMTP id <20020215160905.NKGR5816.lakemtao03.cox.net@gregg> for ; Fri, 15 Feb 2002 11:09:05 -0500 Message-ID: <012a01c1b63b$19bd5a10$010510ac@gregg> From: "Gregg" To: Subject: [vserver] vserver help Date: Fri, 15 Feb 2002 09:09:08 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: A X-Keywords: X-UID: 114 Hello, I'm new to this group. I just installed vserver yesterday. The installation went fine, I didn't have any difficulties. I used the newvserver to make a test server, I gave it an IP address and called it test. It created the folder under vserver, and copied a bunch of files there. It started fine. Next I entered the vserver using the command vserver test enter. That worked well also, I got this following message: Server test is running ipv4root is now 172.16.5.16 New security context is 2 I checked to see what services where running, and there were very few services running. root 1 0.0 0.5 1384 160 ? S Feb14 0:04 init [3] root 1181 0.0 0.1 1380 32 ? S Feb14 0:00 minilogd root 2615 1.6 4.2 2480 1280 pts/0 S 08:56 0:00 /bin/sh root 2616 0.0 2.3 2600 712 pts/0 R 08:57 0:00 ps aux I tried starting v_httpd and I get the following error. Invalid IP number or host name: eth0 chbind version 0.10 chbind [ --silent ] [ --ip ip_num ] command argument Which is weird, because when I enter the server it says ipv4root is now xx.xx.xx.xx This is a test server, so I'm using internal IPs. I've gone over the documentations a few times online, but I can't seem to figure this out. I also did a few tests. In the test vserver I created an account called admin. I was also able to create an admin account in the main server. Then I created an account called admin2 in the main server, and tried creating that same account in the test vserver, and it says that that account is already created. Isn't the vserver supposed to be able to handle it's own accounts, regardless of what the main server has, or what other vservers have? I know this is a long message, with a bunch of questions, hopefully someone can shed some light for me. Thanks, Gregg From vserver.error@solucorp.qc.ca Fri Feb 15 12:19:45 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FHJiAh025102; Fri, 15 Feb 2002 12:19:44 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FH5rD22653 for vserver.list; Fri, 15 Feb 2002 12:05:53 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FH5qR22645 for ; Fri, 15 Feb 2002 12:05:52 -0500 Received: from host213-1-137-88.btinternet.com ([213.1.137.88] helo=john-new) by protactinium.btinternet.com with esmtp (Exim 3.22 #8) id 16blnw-0002Z8-00 for vserver@solucorp.qc.ca; Fri, 15 Feb 2002 17:05:49 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Fri, 15 Feb 2002 17:05:32 -0000 From: "John Lyons" To: Subject: RE: [vserver] vserver help Date: Fri, 15 Feb 2002 17:05:31 -0000 Message-ID: <01c001c1b642$f9f0a900$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <012a01c1b63b$19bd5a10$010510ac@gregg> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 115 > I tried starting v_httpd and I get the following error. > Invalid IP number or host name: eth0 > chbind version 0.10 > chbind [ --silent ] [ --ip ip_num ] command argument v_httpd and all of the v_* init scripts are used to start services on the host server rather than within a vserver. Use the normal init scripts for httpd sshd etc when you're in a vs. > In the test vserver I created an > account called > admin. I was also able to create an admin account in the > main server. Then > I created an account called admin2 in the main server, and > tried creating > that same account in the test vserver, and it says that that > account is > already created. Isn't the vserver supposed to be able to > handle it's own > accounts, regardless of what the main server has, or what > other vservers > have? If you've got admin and admin2 users in the host server when you build your first vs then the users from the host (or reference) server will be coppied into the vserver. From reading the above it doesn't sound like this is what's caused the problem but it's worth knowing. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 15 12:23:56 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FHNtAh025138; Fri, 15 Feb 2002 12:23:56 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FH5IL22635 for vserver.list; Fri, 15 Feb 2002 12:05:18 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FH5IR22631 for ; Fri, 15 Feb 2002 12:05:18 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FH5JAi024985 for ; Fri, 15 Feb 2002 12:05:19 -0500 Date: Fri, 15 Feb 2002 12:05:19 -0500 (EST) From: Vlad To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver help In-Reply-To: <012a01c1b63b$19bd5a10$010510ac@gregg> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 116 > I tried starting v_httpd and I get the following error. > Invalid IP number or host name: eth0 > chbind version 0.10 > chbind [ --silent ] [ --ip ip_num ] command argument Never got that error. Go into your vserver folder then cwd into etc/xinet.d and edit the file. Change disable to no. Restart that service (or start xinetd) inside your vserver. Then you can telnet inside and play with it that way. Same with ssh/etc. > I also did a few tests. In the test vserver I created an account called > admin. I was also able to create an admin account in the main server. Then > I created an account called admin2 in the main server, and tried creating > that same account in the test vserver, and it says that that account is > already created. Isn't the vserver supposed to be able to handle it's own > accounts, regardless of what the main server has, or what other vservers > have? I know this is a long message, with a bunch of questions, hopefully You're right, each vserver has its own files/authentication. Look inside your vservers etc/passwd and see if any of the users you are adding are showing up... you just might be adding all this stuff to your root server accidentally. -Vlad From vserver.error@solucorp.qc.ca Fri Feb 15 12:28:32 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FHSWAh025187; Fri, 15 Feb 2002 12:28:32 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FHFls22887 for vserver.list; Fri, 15 Feb 2002 12:15:47 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tincan.org ([216.64.180.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FHFkR22883 for ; Fri, 15 Feb 2002 12:15:47 -0500 Received: from localhost (raanders@localhost) by tincan.org (8.9.3/8.8.7) with ESMTP id JAA14260 for ; Fri, 15 Feb 2002 09:15:39 -0800 Date: Fri, 15 Feb 2002 09:15:39 -0800 (PST) From: "Roderick A. Anderson" To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver help In-Reply-To: <012a01c1b63b$19bd5a10$010510ac@gregg> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 117 On Fri, 15 Feb 2002, Gregg wrote: > I tried starting v_httpd and I get the following error. > Invalid IP number or host name: eth0 > chbind version 0.10 > chbind [ --silent ] [ --ip ip_num ] command argument My understanding is v_httpd is run in the main server and the normal httpd is run in the vservers. And it seems to work for me. Best, Rod -- Let Accuracy Triumph Over Victory Zetetic Institute "David's Sling" Marc Stiegler From vserver.error@solucorp.qc.ca Fri Feb 15 14:01:47 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FJ1kAh026154; Fri, 15 Feb 2002 14:01:47 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FIiBH24482 for vserver.list; Fri, 15 Feb 2002 13:44:11 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FIiAR24478 for ; Fri, 15 Feb 2002 13:44:10 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 559A61000 for ; Fri, 15 Feb 2002 19:44:06 +0100 (CET) Subject: Re: [vserver] many services - 1 IP. From: klavs klavsen To: Vserver Mailinglist In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-Ghc6XmWvvEfHs7AWM2Ha" X-Mailer: Evolution/1.0.2 Date: 15 Feb 2002 19:44:06 +0100 Message-Id: <1013798646.2630.11.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 118 --=-Ghc6XmWvvEfHs7AWM2Ha Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-02-15 at 17:41, Bourque, Guillaume wrote: > Hello ! >=20 > >ok. I'm kinda sad, that this means one can't use standard rpm's.. cause > >I'm gonna setup these systems in small shops, where they don't have the > >knowledge/expertise to compile themselves, and therefore standard > >distribution rpm compatability would be great to have.. >=20 > Almost every package work's correclty out of the box in vservers > environnement and for bind you can use djbdns, that's what I did and it i= s > working very well for me ! BTW dbjdns is so fast ! Nice to know. Sorry I made it seem so gloomy.. Now I just have to figure Samba out.. heard there were some problems with the broadcasts.. :-) =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-Ghc6XmWvvEfHs7AWM2Ha Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8bVb24c1kHlhtW8oRArLCAJ0bKFvjiMAjrug5ghA7VQzo4YnZ1gCgmQZ7 uEHa/sKgyea1fXJndpzYvF8= =riJF -----END PGP SIGNATURE----- --=-Ghc6XmWvvEfHs7AWM2Ha-- From vserver.error@solucorp.qc.ca Fri Feb 15 14:06:52 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FJ6pAh026179; Fri, 15 Feb 2002 14:06:51 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FIlhE24626 for vserver.list; Fri, 15 Feb 2002 13:47:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FIlgR24622 for ; Fri, 15 Feb 2002 13:47:42 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 2244F1000 for ; Fri, 15 Feb 2002 19:47:41 +0100 (CET) Subject: Re: [vserver] what about a Todo list? From: klavs klavsen To: Vserver Mailinglist In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-LrWHPKiZfVkiESj+/6rX" X-Mailer: Evolution/1.0.2 Date: 15 Feb 2002 19:47:40 +0100 Message-Id: <1013798861.2630.15.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 119 --=-LrWHPKiZfVkiESj+/6rX Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-02-15 at 16:29, Vlad wrote: >=20 > > I was thinking that if the vserver site, had a Todo list of wanted > > features/bug-fixes.. people would more easily be able to see wether or > > not they could/would contribute to the project.=20 >=20 > http://www.solucorp.qc.ca/miscprj/s_context.hc?s1=3D6&s2=3D0&s3=3D0&s4=3D= 0&full=3D0&prjstate=3D1&nodoc=3D0 But they seem all to be checked (ie. done)..? >=20 > > It also helps to show how far the project has come, and how far it has > > travelled (even more so, if you kept the already finished Todo's at the > > bottom). >=20 > http://www.solucorp.qc.ca/changes.hc?projet=3Dvserver&version=3Dall that does the trick I guess :-) > > I'd like to help making it, and the FAQ I talked about earlier if you > > think that's a good idea. I would like it to be a collaborate effort, a= s > > that will make it better - and also ensure the work gets used :-) >=20 > http://www.solucorp.qc.ca/howto.hc?projet=3Dvserver >=20 > If you have something to contribute to the project why don't you just=20 > email the stuff to Jacques? >=20 I'll write down my questions and the answers I've found and email them :-) --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-LrWHPKiZfVkiESj+/6rX Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8bVfM4c1kHlhtW8oRAv5zAJ9e5MiuOsWhc/trwht5BMP2D6tyXwCdE2r5 qhidpAKJecGXLXDXQ1fYZT0= =ms7l -----END PGP SIGNATURE----- --=-LrWHPKiZfVkiESj+/6rX-- From vserver.error@solucorp.qc.ca Fri Feb 15 15:18:53 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FKIoAh026786; Fri, 15 Feb 2002 15:18:52 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FJsVf25964 for vserver.list; Fri, 15 Feb 2002 14:54:31 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lakemtao03.cox.net (mtao3.east.cox.net [68.1.17.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FJsVR25960 for ; Fri, 15 Feb 2002 14:54:31 -0500 Received: from gregg ([68.3.68.74]) by lakemtao03.cox.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with SMTP id <20020215195431.PYXT5816.lakemtao03.cox.net@gregg> for ; Fri, 15 Feb 2002 14:54:31 -0500 Message-ID: <017101c1b65a$98313c80$010510ac@gregg> From: "Gregg" To: References: <01c001c1b642$f9f0a900$0100a8c0@johnnew> Subject: Re: [vserver] vserver help Date: Fri, 15 Feb 2002 12:54:35 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 120 > > I tried starting v_httpd and I get the following error. > > Invalid IP number or host name: eth0 > > chbind version 0.10 > > chbind [ --silent ] [ --ip ip_num ] command argument > > v_httpd and all of the v_* init scripts are used to start services on the > host server rather than within a vserver. Use the normal init scripts for > httpd sshd etc when you're in a vs. > Thanks, I think that was my problem. I got most of the services working now. HTTPD, mysqld. I'm having problems with sendmail however. It starts fine, then after a minute or two, it just dies. I've tried everything I know how. Any ideas on what could be wrong? > > If you've got admin and admin2 users in the host server when you build your > first vs then the users from the host (or reference) server will be coppied > into the vserver. From reading the above it doesn't sound like this is > what's caused the problem but it's worth knowing. Ok, let's see if I got this right. If I got the user admin set in the host server, when I create a vserver, it will be coppied to the vserver. Now, what if I were to delete the user admin in the vserver, will that affect the user admin in the host server? What about the root user in the vserver, if you change the root password in the vserver, does that also change the password for the root in the host server? I think I'm finally getting this down. Thanks for the help guys. From vserver.error@solucorp.qc.ca Fri Feb 15 16:42:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FLgcAh027608; Fri, 15 Feb 2002 16:42:38 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FLFfU27846 for vserver.list; Fri, 15 Feb 2002 16:15:41 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FLFdR27842 for ; Fri, 15 Feb 2002 16:15:40 -0500 Received: from host213-1-182-135.btinternet.com ([213.1.182.135] helo=john-new) by protactinium.btinternet.com with esmtp (Exim 3.22 #8) id 16bphf-0006xn-00 for vserver@solucorp.qc.ca; Fri, 15 Feb 2002 21:15:36 +0000 Received: from 213.1.182.135 by john-new ([213.1.182.135] running VPOP3) with SMTP for ; Fri, 15 Feb 2002 21:15:16 -0000 From: "John Lyons" To: Subject: RE: [vserver] vserver help Date: Fri, 15 Feb 2002 21:15:15 -0000 Message-ID: <000801c1b665$dd8ad560$87b601d5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-reply-to: <017101c1b65a$98313c80$010510ac@gregg> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 121 > I'm having problems with sendmail however. It starts fine, > then after a > minute or two, it just dies. I've tried everything I know > how. Any ideas on what could be wrong? I've got the same problem with one of my vservers. I've started working through logs, and got as far as invalid data format for the emails in /var/log/maillog. Checking the status via /etc/init.d/sendmail gave subsystem locked errors. I've seen this before on non vserver systems so I don't think it's a problem related to the vserver. > Ok, let's see if I got this right. If I got the user admin > set in the host > server, when I create a vserver, it will be copied to the > vserver. Correct because if you use your host server as the reference server all config files will be copied over. Now, > what if I were to delete the user admin in the vserver, will > that affect the user admin in the host server? No because after the vserver has been built the passwd files are two different files in two difference parts of the filesystem. It's just the act of creating the vs that copies conf files thereby transferring settings. > What about the root user in the vserver, if you change the > root password in > the vserver, does that also change the password for the root > in the host server? No. One of the things that I've been looking to do is to expand on the vserver build script so that when the vserver is built you automatically change the root/admin user passwords for the new vserver and change conf files that are specific to that vs. eg making an entry in /etc/mail and httpd.conf to provide basic services for the customers first domain. (All one step beyond vserver core system but useful for hosts using it in a commercial environment, probably something with sed) Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 15 17:27:04 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FMR3Ah028046; Fri, 15 Feb 2002 17:27:03 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FMFrY29068 for vserver.list; Fri, 15 Feb 2002 17:15:53 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FMFrR29064 for ; Fri, 15 Feb 2002 17:15:53 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1FMH9810939 for vserver@solucorp.qc.ca; Fri, 15 Feb 2002 17:17:09 -0500 From: Jacques Gelinas Date: Fri, 15 Feb 2002 17:17:09 -0500 To: vserver@solucorp.qc.ca Subject: [vserver] RE: Performance, memory, etc X-mailer: tlmpmail 0.1 Message-ID: <20020215171709.baafe21dfd7c@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 122 On Fri, 15 Feb 2002 10:58:55 -0500, Sam Vilain wrote > Jacques Gelinas wrote: > > > This is true. One solution would be to have one private loopback per > > vserver. (127.0.0.N) and translate dynamically from 127.0.0.1 to the > > vserver one. > [...] > > The current ipv4root of the vserver is mapping a bind(0.0.0.0), to a > > bind(ip-of-the-vserver). After this little modification in the kernel, > > the rest of the kernel simply work as usual. > > Just a thought, perhaps changing any call to bind(127.0.0.0/8) to > bind(ip_root) would be a nice quick hack; > > --- net/ipv4/af_inet.c Fri Feb 15 10:33:10 2002 > +++ net/ipv4/af_inet.c.orig Fri Feb 15 10:31:16 2002 > @@ -489,7 +489,7 @@ > s_addr = addr->sin_addr.s_addr; > if (current->ipv4root != 0){ > // printk ("ipv4root0 %08lx %08x\n",current->ipv4root,s_addr); > - if (s_addr == 0 || (s_addr>>24 & 0xFF) == 127 ){ > + if (s_addr == 0){ > s_addr = current->ipv4root; > }else if (s_addr != current->ipv4root){ > return -EADDRNOTAVAIL; > > Is this breaking network sanity too much? :-) Maybe. If you bind on 127.0.0.1, you do this to tell apart private connection public connection. Now just by binding to 127.0.0.1, you end up opening to the world. While not such a big issue, if an application relies/expects this behavior, their security model is screwed. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Feb 15 17:32:10 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FMW8Ah028137; Fri, 15 Feb 2002 17:32:09 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FMH8q29084 for vserver.list; Fri, 15 Feb 2002 17:17:08 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FMH8R29080 for ; Fri, 15 Feb 2002 17:17:08 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1FMIPK10944 for vserver@dns.solucorp.qc.ca; Fri, 15 Feb 2002 17:18:25 -0500 From: Jacques Gelinas Date: Fri, 15 Feb 2002 17:18:25 -0500 To: Vserver mailing list Subject: [vserver] mailing list archive X-mailer: tlmpmail 0.1 Message-ID: <20020215171825.79a20b7bf437@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 123 Just to say the mailing list is now archived at http://vserver.vlad.net. It contains every messages sent to the list since day one. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Feb 15 17:50:18 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FMoGAh028279; Fri, 15 Feb 2002 17:50:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FMaUO29520 for vserver.list; Fri, 15 Feb 2002 17:36:30 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lakemtao01.cox.net (mtao1.east.cox.net [68.1.17.244]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FMaTR29516 for ; Fri, 15 Feb 2002 17:36:30 -0500 Received: from gregg ([68.3.68.74]) by lakemtao01.cox.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with SMTP id <20020215223627.ENZA3264.lakemtao01.cox.net@gregg> for ; Fri, 15 Feb 2002 17:36:27 -0500 Message-ID: <01be01c1b671$38ddbc60$010510ac@gregg> From: "Gregg" To: References: <000801c1b665$dd8ad560$87b601d5@johnnew> Subject: Re: [vserver] vserver help Date: Fri, 15 Feb 2002 15:36:33 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 124 > I've got the same problem with one of my vservers. I've started working > through logs, and got as far as invalid data format for the emails in > /var/log/maillog. Checking the status via /etc/init.d/sendmail gave > subsystem locked errors. > I've seen this before on non vserver systems so I don't think it's a problem > related to the vserver. Ok, I checked my log files, and this is what I found. NOQUEUE: SYSERR(root): opendaemonsocket: daemon MTA: cannot bind: Cannot assign requested address daemon MTA: problem creating SMTP socket Fine, I figured it had something to do with the host server, so I stopped sendmail and mysql on the host server, and loaded sendmail on a vserver, and guess what? It started. Now I can see that the sendmail is running, but it says the following sendmail: rejecting new messages: min free: 100 I went back and checked on the log files, and I got the following: starting daemon (8.11.6): SMTP+queueing@01:00:00 sendmail[2458]: rejecting new messages: min free: 100 sendmail[2046]: alias database /etc/aliases rebuilt by root sendmail[2046]: /etc/aliases: 40 aliases, longest 10 bytes, 395 bytes total sendmail[2080]: starting daemon (8.11.6): SMTP+queueing@00:01:00 sendmail[2080]: rejecting new messages: min free: 100 I know it's probably some configuration deal that I have wrong, so it's not that important I guess, but if anyone has had this similar problem, please share your thoughts! :) Now, back to the host server, I don't have mysqld running or sendmail, which is fine, because I probably wouldn't use the host server for hosting a site or anything anyway. But, when I stop a vserver I get a few error messages. Here's what I get. Sorry if it's too long. Stopping the virtual server test Server test is running ipv4root is now 172.16.5.16 New security context is 2 Stopping MySQL: [FAILED] Stopping httpd: [ OK ] Stopping sshd: [ OK ] Shutting down sendmail: [ OK ] Stopping xinetd: [ OK ] Stopping crond: [ OK ] Shutting down kernel logger: [FAILED] Shutting down system logger: [ OK ] Starting killall: Stopping MySQL: [FAILED] [FAILED] sleep 2 Killing all processes kill -TERM /vservers/test/bin/bash[1173] kill -TERM /vservers/test/usr/libexec/mysqld[1213] kill -TERM /vservers/test/usr/libexec/mysqld[1217] kill -TERM /vservers/test/usr/libexec/mysqld[1218] kill -TERM /vservers/test/usr/libexec/mysqld[1227] kill -TERM /vservers/test/sbin/minilogd[2429] kill -TERM /vservers/test/bin/bash[1173] kill -TERM /vservers/test/usr/libexec/mysqld[1213] kill -TERM /vservers/test/usr/libexec/mysqld[1217] kill -TERM /vservers/test/usr/libexec/mysqld[1218] kill -TERM /vservers/test/usr/libexec/mysqld[2466] It is weird that it's failing to stop the MySQL, because obviously it is running, because in the kill all it's killing the mysqld processes. Any clues? The other one that is failing to stop is kernel logger, which I don't know why that is failing either. Again, these may not be important, I just want to know if there's something I did wrong, or if there is something else I could do. > One of the things that I've been looking to do is to expand on the vserver > build script so that when the vserver is built you automatically change the > root/admin user passwords for the new vserver and change conf files that are > specific to that vs. eg making an entry in /etc/mail and httpd.conf to > provide basic services for the customers first domain. (All one step beyond > vserver core system but useful for hosts using it in a commercial > environment, probably something with sed) > That would be a useful script indeed. I did have to go in and change httpd.conf for my two test vservers by hand, and I'm sure there are many other config files that I missed! :) Thanks again for the help Gregg From vserver.error@solucorp.qc.ca Fri Feb 15 18:39:55 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1FNdrAh028620; Fri, 15 Feb 2002 18:39:54 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1FNP8E30524 for vserver.list; Fri, 15 Feb 2002 18:25:08 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1FNP6R30520 for ; Fri, 15 Feb 2002 18:25:07 -0500 Received: from host213-122-43-56.in-addr.btopenworld.com ([213.122.43.56] helo=john-new) by protactinium.btinternet.com with esmtp (Exim 3.22 #8) id 16briz-0001id-00 for vserver@solucorp.qc.ca; Fri, 15 Feb 2002 23:25:05 +0000 Received: from 213.122.43.56 by john-new ([213.122.43.56] running VPOP3) with SMTP for ; Fri, 15 Feb 2002 23:24:47 -0000 From: "John Lyons" To: Subject: RE: [vserver] vserver help Date: Fri, 15 Feb 2002 23:24:45 -0000 Message-ID: <001c01c1b677$f4ed2430$87b601d5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-reply-to: <01be01c1b671$38ddbc60$010510ac@gregg> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 125 > sendmail: rejecting new messages: min free: 100 > starting daemon (8.11.6): SMTP+queueing@01:00:00 > sendmail[2458]: rejecting new messages: min free: 100 I'm wondering if you're able to see the full message? Is it something like min free memory, disk space or something else? Are you low on disk space or memory or are you running quotas? > Stopping MySQL: [FAILED] > Shutting down kernel logger: [FAILED] > Starting killall: Stopping MySQL: [FAILED] > [FAILED] > Any clues? Not much I can think of here, I never could get mysql starting and stopping properly with needing to run it as the admin or mysql user. There was a thread here a few days ago about the vserver script running an rm command on /var/run which was killing mysql incorrectly. (The messages are now on a web forum somewhere?) I'm guessing it's all tied in with the bug in the vserver script. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 15 19:24:43 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1G0OeAh028895; Fri, 15 Feb 2002 19:24:42 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1G09iq31391 for vserver.list; Fri, 15 Feb 2002 19:09:44 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from localhost.localdomain (pia153-99.pioneernet.net [66.114.153.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1G09hR31387 for ; Fri, 15 Feb 2002 19:09:43 -0500 Received: from openwebmail (casonmaster [127.0.0.1]) by localhost.localdomain (8.11.6/8.11.6) with ESMTP id g1G0BbR29114 for ; Fri, 15 Feb 2002 16:11:37 -0800 From: "Wray Cason" To: vserver@solucorp.qc.ca Subject: RE: [vserver] vserver help Date: Fri, 15 Feb 2002 16:11:37 -0800 Message-Id: <20020215161137.A49139@auxiliumcomputing.com> In-Reply-To: <001c01c1b677$f4ed2430$87b601d5@johnnew> References: <01be01c1b671$38ddbc60$010510ac@gregg> X-Mailer: Open WebMail 1.53 20020112 X-OriginatingIP: 192.168.0.2 (auxiliumcomputing) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 126 > > sendmail: rejecting new messages: min free: 100 > > starting daemon (8.11.6): SMTP+queueing@01:00:00 > > sendmail[2458]: rejecting new messages: min free: 100 > > I'm wondering if you're able to see the full message? Is it > something like min free memory, disk space or something else? > Are you low on disk space or memory or are you running quotas? > > > Stopping MySQL: [FAILED] > > Shutting down kernel logger: [FAILED] > > Starting killall: Stopping MySQL: [FAILED] > > [FAILED] > > Any clues? > > Not much I can think of here, I never could get mysql starting > and stopping properly with needing to run it as the admin or > mysql user. I had the same problem with mysqld. I found that the mysql user didn't have access to the var/run directory. It would start showing the following error in the mysqld.log. 020215 09:33:57 mysqld started 020215 9:33:57 /usr/libexec/mysqld: Can't create/write to file '/var/run/mysqld/mysqld.pid' (Errcode: 2) /usr/libexec/mysqld: ready for connections I allowed the mysql user to write to /var/run and manually created the /var/run/mysqld directory and now it can shut itself down properly. > > There was a thread here a few days ago about the vserver script > running an rm command on /var/run which was killing mysql incorrectly. > (The messages are now on a web forum somewhere?) > > I'm guessing it's all tied in with the bug in the vserver > script. > > Regards > > John Lyons > DomainCity > http://www.domaincity.co.uk > support@domaincity.co.uk > ICQ 74187012 > > *********************************************************************** > Please quote your account number in the subject line of all > emails. Failure to do so may result in your enquiries taking -- Wray Cason "Wrayman" Auxilium Computing wrayman@auxiliumcomputing.com 206-595-2080 From vserver.error@solucorp.qc.ca Fri Feb 15 19:35:50 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1G0ZlAh028983; Fri, 15 Feb 2002 19:35:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1G0Lfp31543 for vserver.list; Fri, 15 Feb 2002 19:21:41 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tincan.org ([216.64.180.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1G0LeR31539 for ; Fri, 15 Feb 2002 19:21:40 -0500 Received: from localhost (raanders@localhost) by tincan.org (8.9.3/8.8.7) with ESMTP id QAA22531 for ; Fri, 15 Feb 2002 16:21:37 -0800 Date: Fri, 15 Feb 2002 16:21:37 -0800 (PST) From: "Roderick A. Anderson" To: vserver@solucorp.qc.ca Subject: [vserver] newvserver and existing directory Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 127 I just tried to use newvserver and got pretty much a failure. I suspect it is an issue I've run into and discussed with Jacques but I'm not sure he had a chance to get around to fixing it. Build a vserver for an already existing directory. This is on a 2.4.17ctx-7 kernel and vserver-0.10-1. I've created - far too many - partitions to place my vservers in. Make the users take the hit if they fill the partition up. The partition is mounted (/vservers/vs3). Did a quick check and can't find where the problem is. Maybe unify won't work on separate partitions. Any thoughts? TIA, Rod -- Let Accuracy Triumph Over Victory Zetetic Institute "David's Sling" Marc Stiegler From vserver.error@solucorp.qc.ca Fri Feb 15 20:00:41 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1G10dAh029195; Fri, 15 Feb 2002 20:00:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1G0irf31855 for vserver.list; Fri, 15 Feb 2002 19:44:53 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rhenium.btinternet.com (rhenium.btinternet.com [194.73.73.93]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1G0ipR31851 for ; Fri, 15 Feb 2002 19:44:52 -0500 Received: from host213-122-63-223.in-addr.btopenworld.com ([213.122.63.223] helo=john-new) by rhenium.btinternet.com with esmtp (Exim 3.22 #8) id 16bsy7-00042w-00 for vserver@solucorp.qc.ca; Sat, 16 Feb 2002 00:44:48 +0000 Received: from 213.122.63.223 by john-new ([213.122.63.223] running VPOP3) with SMTP for ; Sat, 16 Feb 2002 00:44:30 -0000 From: "John Lyons" To: Subject: RE: [vserver] newvserver and existing directory Date: Sat, 16 Feb 2002 00:44:28 -0000 Message-ID: <002801c1b683$17d9df50$87b601d5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-reply-to: X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 128 > problem is. Maybe unify won't work on separate partitions. >From the changelog "The /usr/lib/vserver/vbuild utility has been enhanced to stay in one file system only." I don't know whether this is the cause of the problem but it's certianly worth investigating further. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 15 21:44:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1G2icAh029830; Fri, 15 Feb 2002 21:44:38 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1G2L5d01038 for vserver.list; Fri, 15 Feb 2002 21:21:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.paradigm4.com.au (rucc1.paradigm4.com.au [203.30.104.9]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1G2L3R01034 for ; Fri, 15 Feb 2002 21:21:03 -0500 Received: (qmail 30673 invoked from network); 16 Feb 2002 02:30:32 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 16 Feb 2002 02:30:32 -0000 Received: (qmail 14705 invoked from network); 16 Feb 2002 02:23:56 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 16 Feb 2002 02:23:56 -0000 From: edward@DigitalAngel.com.au To: vserver@solucorp.qc.ca Date: Sat, 16 Feb 2002 13:37:36 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] mailing list archive Message-ID: <3C6E60A0.31387.813481@localhost> Priority: normal In-reply-to: <20020215171825.79a20b7bf437@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 129 Excellent. I already dug out some message from a while ago to do with the scheduler changes and I have a question. Did the scheduling code of vserver get changed since then? The latest CTX-7 patch still appears to be messing with goodness() rgds Ed From: Rik van Riel (riel_at_conectiva.com.br) Date: Tue Oct 23 2001 - 15:32:11 EDT > Should I port my fairsched patch to a newer 2.4 kernel and > add vserver support for it ? My approach only changes the > priority recalculation in the scheduler and achieves pretty > much the same effect _without_ needing to change goodness(). > > regards, > > Rik On Friday, 15 February 2002 at 17:18, Jacques Gelinas wrote: > Just to say the mailing list is now archived at http://vserver.vlad.net. It contains > every messages sent to the list since day one. From vserver.error@solucorp.qc.ca Sat Feb 16 01:00:52 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1G60pAh031082; Sat, 16 Feb 2002 01:00:51 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1G5k4p03741 for vserver.list; Sat, 16 Feb 2002 00:46:04 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lakemtao03.cox.net (mtao3.east.cox.net [68.1.17.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1G5k3R03737 for ; Sat, 16 Feb 2002 00:46:03 -0500 Received: from gregg ([68.3.68.74]) by lakemtao03.cox.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with SMTP id <20020216054603.XIHO5816.lakemtao03.cox.net@gregg> for ; Sat, 16 Feb 2002 00:46:03 -0500 Message-ID: <005d01c1b6ad$36fc5af0$010510ac@gregg> From: "Gregg" To: References: <001c01c1b677$f4ed2430$87b601d5@johnnew> Subject: Re: [vserver] vserver help Date: Fri, 15 Feb 2002 22:46:00 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-Mimeole: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: A X-Keywords: X-UID: 130 > I'm wondering if you're able to see the full message? Is it something like > min free memory, disk space or something else? > Are you low on disk space or memory or are you running quotas? Actually, that is the entire message sendmail is giving me, nothing else. It's the same message it writes in maillog sendmail[2458]: rejecting new messages: min free: 100 That part I haven't figured out yet. > Not much I can think of here, I never could get mysql starting and stopping > properly with needing to run it as the admin or mysql user. > > There was a thread here a few days ago about the vserver script running an > rm command on /var/run which was killing mysql incorrectly. (The messages > are now on a web forum somewhere?) > > I'm guessing it's all tied in with the bug in the vserver script. Well, I did find the thread about the /var/run commands,(THANK YOU FOR THE WEB ARCHIVE) and I did go over it, and I had to modify the mysqld shutdown a bit, but it's shutting down properly without giving errors!! YAY! The only thing that is giving errors when shutting down is the kernel logger, which I haven't figured out why yet. I've been playing with linux for a while now, I'm not an expert at all, but I'm learning slowly. I have tried the FreeVSD, but that was a total mess. The vserver project seems so much more stable and easy to work with, and I did not realize how new it is. I do have some questions that I hope are not too stupid for this list. I installed the vserver on a RH 7.2. I followed the instructions from the documentation. I installed the kernel-2.4.17ctx-7.tar.gz exactly as in the documenation, which seems to work fine, but lilo still wants to boot the original kernel first, so I always have to select the 2.4.17 kernel when booting, how can I get the 2.4.17 to boot first? Next question is about the patches. Was I supposed to patch the kernel? Or was the one I downloaded already patched? Are the patches for people that wish to patch their own kernel, and not use the one distributed? I'm just curious, since I never build a kernel from scratch, or even patched one. Thanks again for the help, I think the vservers are running well except for the sendmail thing, which I will continue to look into. Gregg From vserver.error@solucorp.qc.ca Sat Feb 16 02:02:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1G72FAh031546; Sat, 16 Feb 2002 02:02:15 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1G6nkB04548 for vserver.list; Sat, 16 Feb 2002 01:49:46 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1G6njR04544 for ; Sat, 16 Feb 2002 01:49:45 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1G6noAi031469 for ; Sat, 16 Feb 2002 01:49:50 -0500 Date: Sat, 16 Feb 2002 01:49:50 -0500 (EST) From: Vlad To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver help In-Reply-To: <005d01c1b6ad$36fc5af0$010510ac@gregg> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 131 > I installed the kernel-2.4.17ctx-7.tar.gz exactly as in the documenation, > which seems to work fine, but lilo still wants to boot the original kernel > first, so I always have to select the 2.4.17 kernel when booting, how can I > get the 2.4.17 to boot first? edit your /etc/lilo.conf and make vserver the default; ie default = linux-virtual image=/boot/vmlinuz-2.4.17ctx-7 label=linux-virtual read-only root=/dev/hda1 then just run lilo and it will place a star next to the default kernel I believe. > Was I supposed to patch the kernel? Or was the one I downloaded already > patched? Are the patches for people that wish to patch their own kernel, and > not use the one distributed? I'm just curious, since I never build a kernel > from scratch, or even patched one. You don't have to patch the kernel, you can use the one you downloaded from the web site. It is already patched and compiled for you. If you want to enable some special things then you have to download the kernel source and patch it with the supplied patches. They are all available at the project web site. -Vlad From vserver.error@solucorp.qc.ca Sat Feb 16 12:05:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1GH5vAh004046; Sat, 16 Feb 2002 12:05:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1GGifj14232 for vserver.list; Sat, 16 Feb 2002 11:44:41 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1GGieR14228 for ; Sat, 16 Feb 2002 11:44:40 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g1GGiYqA001010 for ; Sat, 16 Feb 2002 17:44:34 +0100 Date: Sat, 16 Feb 2002 17:44:34 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: vserver@solucorp.qc.ca Subject: [vserver] [PATCH] per vserver socket-listings in /proc Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: MULTIPART/MIXED; BOUNDARY="801277839-1444118976-1013877874=:985" Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 132 This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. Send mail to mime@docserver.cac.washington.edu for more info. --801277839-1444118976-1013877874=:985 Content-Type: TEXT/PLAIN; charset=US-ASCII Hi, I've attached a small patch to enable per vserver /proc socket-listings, for example in /proc/net/tcp ... I've added support for unix, ipv4, ipv6 sockets. It's been stable in my testing here but YMMV. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. --801277839-1444118976-1013877874=:985 Content-Type: TEXT/PLAIN; charset=US-ASCII; name=vserver-socket-diff Content-Transfer-Encoding: BASE64 Content-ID: Content-Description: Content-Disposition: attachment; filename=vserver-socket-diff ZGlmZiAtdXJOIGxpbnV4Lm9yaWcvaW5jbHVkZS9uZXQvc29jay5oIGxpbnV4 L2luY2x1ZGUvbmV0L3NvY2suaA0KLS0tIGxpbnV4Lm9yaWcvaW5jbHVkZS9u ZXQvc29jay5oCUZyaSBEZWMgMjEgMTg6NDI6MDQgMjAwMQ0KKysrIGxpbnV4 L2luY2x1ZGUvbmV0L3NvY2suaAlTYXQgRmViIDE2IDE1OjI1OjE2IDIwMDIN CkBAIC02NjgsNyArNjY4LDEwIEBADQogDQogCS8qIFJQQyBsYXllciBwcml2 YXRlIGRhdGEgKi8NCiAJdm9pZAkJCSp1c2VyX2RhdGE7DQotICANCisNCisJ LyogQ29udGV4dCBvZiBwcm9jZXNzIGNyZWF0aW5nIHRoaXMgc29ja2V0ICov DQorCWludAkJCXNfY29udGV4dDsNCisNCiAJLyogQ2FsbGJhY2tzICovDQog CXZvaWQJCQkoKnN0YXRlX2NoYW5nZSkoc3RydWN0IHNvY2sgKnNrKTsNCiAJ dm9pZAkJCSgqZGF0YV9yZWFkeSkoc3RydWN0IHNvY2sgKnNrLGludCBieXRl cyk7DQpkaWZmIC11ck4gbGludXgub3JpZy9pbmNsdWRlL25ldC90Y3AuaCBs aW51eC9pbmNsdWRlL25ldC90Y3AuaA0KLS0tIGxpbnV4Lm9yaWcvaW5jbHVk ZS9uZXQvdGNwLmgJVGh1IE5vdiAyMiAyMDo0NzoyMiAyMDAxDQorKysgbGlu dXgvaW5jbHVkZS9uZXQvdGNwLmgJU2F0IEZlYiAxNiAxNjowMDoxMyAyMDAy DQpAQCAtMTkwLDYgKzE5MCw3IEBADQogCXN0cnVjdCBpbjZfYWRkcgkJdjZf ZGFkZHI7DQogCXN0cnVjdCBpbjZfYWRkcgkJdjZfcmN2X3NhZGRyOw0KICNl bmRpZg0KKwlpbnQJCQlzX2NvbnRleHQ7DQogfTsNCiANCiBleHRlcm4ga21l bV9jYWNoZV90ICp0Y3BfdGltZXdhaXRfY2FjaGVwOw0KZGlmZiAtdXJOIGxp bnV4Lm9yaWcvbmV0L2lwdjQvYWZfaW5ldC5jIGxpbnV4L25ldC9pcHY0L2Fm X2luZXQuYw0KLS0tIGxpbnV4Lm9yaWcvbmV0L2lwdjQvYWZfaW5ldC5jCVNh dCBGZWIgMTYgMTY6MzM6NDMgMjAwMg0KKysrIGxpbnV4L25ldC9pcHY0L2Fm X2luZXQuYwlTYXQgRmViIDE2IDE1OjIxOjMyIDIwMDINCkBAIC0zOTMsNiAr MzkzLDggQEANCiAJc2stPnByb3RpbmZvLmFmX2luZXQubWNfaW5kZXgJPSAw Ow0KIAlzay0+cHJvdGluZm8uYWZfaW5ldC5tY19saXN0CT0gTlVMTDsNCiAN CisJc2stPnNfY29udGV4dCA9IGN1cnJlbnQtPnNfY29udGV4dDsNCisNCiAj aWZkZWYgSU5FVF9SRUZDTlRfREVCVUcNCiAJYXRvbWljX2luYygmaW5ldF9z b2NrX25yKTsNCiAjZW5kaWYNCmRpZmYgLXVyTiBsaW51eC5vcmlnL25ldC9p cHY0L3Jhdy5jIGxpbnV4L25ldC9pcHY0L3Jhdy5jDQotLS0gbGludXgub3Jp Zy9uZXQvaXB2NC9yYXcuYwlXZWQgSnVsIDExIDAxOjExOjQzIDIwMDENCisr KyBsaW51eC9uZXQvaXB2NC9yYXcuYwlTYXQgRmViIDE2IDE1OjU0OjQxIDIw MDINCkBAIC02NTcsNyArNjU3LDcgQEANCiAJCXN0cnVjdCBzb2NrICpzazsN CiANCiAJCWZvciAoc2sgPSByYXdfdjRfaHRhYmxlW2ldOyBzazsgc2sgPSBz ay0+bmV4dCwgbnVtKyspIHsNCi0JCQlpZiAoc2stPmZhbWlseSAhPSBQRl9J TkVUKQ0KKwkJCWlmIChzay0+ZmFtaWx5ICE9IFBGX0lORVQgfHwgKGN1cnJl bnQtPnNfY29udGV4dCAhPSAxICYmIHNrLT5zX2NvbnRleHQgIT0gY3VycmVu dC0+c19jb250ZXh0KSkNCiAJCQkJY29udGludWU7DQogCQkJcG9zICs9IDEy ODsNCiAJCQlpZiAocG9zIDw9IG9mZnNldCkNCmRpZmYgLXVyTiBsaW51eC5v cmlnL25ldC9pcHY0L3RjcF9pcHY0LmMgbGludXgvbmV0L2lwdjQvdGNwX2lw djQuYw0KLS0tIGxpbnV4Lm9yaWcvbmV0L2lwdjQvdGNwX2lwdjQuYwlGcmkg RGVjIDIxIDE4OjQyOjA1IDIwMDENCisrKyBsaW51eC9uZXQvaXB2NC90Y3Bf aXB2NC5jCVNhdCBGZWIgMTYgMTY6MDg6MzAgMjAwMg0KQEAgLTIwNzMsNiAr MjA3Myw5IEBADQogCQkJaW50IHVpZDsNCiAJCQlzdHJ1Y3QgdGNwX29wdCAq dHAgPSAmKHNrLT50cF9waW5mby5hZl90Y3ApOw0KIA0KKwkJCWlmIChjdXJy ZW50LT5zX2NvbnRleHQgIT0gMSAmJiBzay0+c19jb250ZXh0ICE9IGN1cnJl bnQtPnNfY29udGV4dCkNCisJCQkJY29udGludWU7DQorCQkJDQogCQkJaWYg KCFUQ1BfSU5FVF9GQU1JTFkoc2stPmZhbWlseSkpDQogCQkJCWdvdG8gc2tp cF9saXN0ZW47DQogDQpAQCAtMjEyNiw3ICsyMTI5LDcgQEANCiANCiAJCXJl YWRfbG9jaygmaGVhZC0+bG9jayk7DQogCQlmb3Ioc2sgPSBoZWFkLT5jaGFp bjsgc2s7IHNrID0gc2stPm5leHQsIG51bSsrKSB7DQotCQkJaWYgKCFUQ1Bf SU5FVF9GQU1JTFkoc2stPmZhbWlseSkpDQorCQkJaWYgKCFUQ1BfSU5FVF9G QU1JTFkoc2stPmZhbWlseSkgfHwgKGN1cnJlbnQtPnNfY29udGV4dCAhPSAx ICYmIHNrLT5zX2NvbnRleHQgIT0gY3VycmVudC0+c19jb250ZXh0KSkNCiAJ CQkJY29udGludWU7DQogCQkJcG9zICs9IFRNUFNaOw0KIAkJCWlmIChwb3Mg PD0gb2Zmc2V0KQ0KQEAgLTIxNDEsNyArMjE0NCw3IEBADQogCQlmb3IgKHR3 ID0gKHN0cnVjdCB0Y3BfdHdfYnVja2V0ICopdGNwX2VoYXNoW2krdGNwX2Vo YXNoX3NpemVdLmNoYWluOw0KIAkJICAgICB0dyAhPSBOVUxMOw0KIAkJICAg ICB0dyA9IChzdHJ1Y3QgdGNwX3R3X2J1Y2tldCAqKXR3LT5uZXh0LCBudW0r Kykgew0KLQkJCWlmICghVENQX0lORVRfRkFNSUxZKHR3LT5mYW1pbHkpKQ0K KwkJCWlmICghVENQX0lORVRfRkFNSUxZKHR3LT5mYW1pbHkpIHx8IChjdXJy ZW50LT5zX2NvbnRleHQgIT0gMSAmJiB0dy0+c19jb250ZXh0ICE9IGN1cnJl bnQtPnNfY29udGV4dCkpDQogCQkJCWNvbnRpbnVlOw0KIAkJCXBvcyArPSBU TVBTWjsNCiAJCQlpZiAocG9zIDw9IG9mZnNldCkNCmRpZmYgLXVyTiBsaW51 eC5vcmlnL25ldC9pcHY0L3RjcF9taW5pc29ja3MuYyBsaW51eC9uZXQvaXB2 NC90Y3BfbWluaXNvY2tzLmMNCi0tLSBsaW51eC5vcmlnL25ldC9pcHY0L3Rj cF9taW5pc29ja3MuYwlNb24gT2N0ICAxIDE4OjE5OjU3IDIwMDENCisrKyBs aW51eC9uZXQvaXB2NC90Y3BfbWluaXNvY2tzLmMJU2F0IEZlYiAxNiAxNjow NzozOCAyMDAyDQpAQCAtMzgxLDYgKzM4MSw4IEBADQogCQl0dy0+dHNfcmVj ZW50X3N0YW1wPSB0cC0+dHNfcmVjZW50X3N0YW1wOw0KIAkJdHctPnBwcmV2 X2RlYXRoID0gTlVMTDsNCiANCisJCXR3LT5zX2NvbnRleHQJPSBzay0+c19j b250ZXh0Ow0KKw0KICNpZiBkZWZpbmVkKENPTkZJR19JUFY2KSB8fCBkZWZp bmVkKENPTkZJR19JUFY2X01PRFVMRSkNCiAJCWlmKHR3LT5mYW1pbHkgPT0g UEZfSU5FVDYpIHsNCiAJCQltZW1jcHkoJnR3LT52Nl9kYWRkciwNCmRpZmYg LXVyTiBsaW51eC5vcmlnL25ldC9pcHY0L3VkcC5jIGxpbnV4L25ldC9pcHY0 L3VkcC5jDQotLS0gbGludXgub3JpZy9uZXQvaXB2NC91ZHAuYwlXZWQgT2N0 IDE3IDIzOjE2OjM5IDIwMDENCisrKyBsaW51eC9uZXQvaXB2NC91ZHAuYwlT YXQgRmViIDE2IDE1OjU1OjIyIDIwMDINCkBAIC05ODMsNyArOTgzLDcgQEAN CiAJCXN0cnVjdCBzb2NrICpzazsNCiANCiAJCWZvciAoc2sgPSB1ZHBfaGFz aFtpXTsgc2s7IHNrID0gc2stPm5leHQsIG51bSsrKSB7DQotCQkJaWYgKHNr LT5mYW1pbHkgIT0gUEZfSU5FVCkNCisJCQlpZiAoc2stPmZhbWlseSAhPSBQ Rl9JTkVUIHx8IChjdXJyZW50LT5zX2NvbnRleHQgIT0gMSAmJiBzay0+c19j b250ZXh0ICE9IGN1cnJlbnQtPnNfY29udGV4dCkpDQogCQkJCWNvbnRpbnVl Ow0KIAkJCXBvcyArPSAxMjg7DQogCQkJaWYgKHBvcyA8PSBvZmZzZXQpDQpk aWZmIC11ck4gbGludXgub3JpZy9uZXQvaXB2Ni9yYXcuYyBsaW51eC9uZXQv aXB2Ni9yYXcuYw0KLS0tIGxpbnV4Lm9yaWcvbmV0L2lwdjYvcmF3LmMJVGh1 IFNlcCAyMCAyMzoxMjo1NiAyMDAxDQorKysgbGludXgvbmV0L2lwdjYvcmF3 LmMJU2F0IEZlYiAxNiAxNjoyMToxOSAyMDAyDQpAQCAtNzk3LDcgKzc5Nyw3 IEBADQogCQlzdHJ1Y3Qgc29jayAqc2s7DQogDQogCQlmb3IgKHNrID0gcmF3 X3Y2X2h0YWJsZVtpXTsgc2s7IHNrID0gc2stPm5leHQsIG51bSsrKSB7DQot CQkJaWYgKHNrLT5mYW1pbHkgIT0gUEZfSU5FVDYpDQorCQkJaWYgKHNrLT5m YW1pbHkgIT0gUEZfSU5FVDYgfHwgKGN1cnJlbnQtPnNfY29udGV4dCAhPSAx ICYmIHNrLT5zX2NvbnRleHQgIT0gY3VycmVudC0+c19jb250ZXh0KSkNCiAJ CQkJY29udGludWU7DQogCQkJcG9zICs9IExJTkVfTEVOKzE7DQogCQkJaWYg KHBvcyA8PSBvZmZzZXQpDQpkaWZmIC11ck4gbGludXgub3JpZy9uZXQvaXB2 Ni90Y3BfaXB2Ni5jIGxpbnV4L25ldC9pcHY2L3RjcF9pcHY2LmMNCi0tLSBs aW51eC5vcmlnL25ldC9pcHY2L3RjcF9pcHY2LmMJRnJpIERlYyAyMSAxODo0 MjowNSAyMDAxDQorKysgbGludXgvbmV0L2lwdjYvdGNwX2lwdjYuYwlTYXQg RmViIDE2IDE2OjIwOjMxIDIwMDINCkBAIC0yMDA1LDcgKzIwMDUsNyBAQA0K IAkJCWludCB1aWQ7DQogCQkJc3RydWN0IHRjcF9vcHQgKnRwID0gJihzay0+ dHBfcGluZm8uYWZfdGNwKTsNCiANCi0JCQlpZiAoc2stPmZhbWlseSAhPSBQ Rl9JTkVUNikNCisJCQlpZiAoc2stPmZhbWlseSAhPSBQRl9JTkVUNiB8fCAo Y3VycmVudC0+c19jb250ZXh0ICE9IDEgJiYgc2stPnNfY29udGV4dCAhPSBj dXJyZW50LT5zX2NvbnRleHQpKQ0KIAkJCQljb250aW51ZTsNCiAJCQlwb3Mg Kz0gTElORV9MRU4rMTsNCiAJCQlpZiAocG9zID49IG9mZnNldCkgew0KQEAg LTIwNTUsNyArMjA1NSw3IEBADQogDQogCQlyZWFkX2xvY2soJmhlYWQtPmxv Y2spOw0KIAkJZm9yKHNrID0gaGVhZC0+Y2hhaW47IHNrOyBzayA9IHNrLT5u ZXh0LCBudW0rKykgew0KLQkJCWlmIChzay0+ZmFtaWx5ICE9IFBGX0lORVQ2 KQ0KKwkJCWlmIChzay0+ZmFtaWx5ICE9IFBGX0lORVQ2IHx8IChjdXJyZW50 LT5zX2NvbnRleHQgIT0gMSAmJiBzay0+c19jb250ZXh0ICE9IGN1cnJlbnQt PnNfY29udGV4dCkpDQogCQkJCWNvbnRpbnVlOw0KIAkJCXBvcyArPSBMSU5F X0xFTisxOw0KIAkJCWlmIChwb3MgPD0gb2Zmc2V0KQ0KQEAgLTIwNzAsNyAr MjA3MCw3IEBADQogCQlmb3IgKHR3ID0gKHN0cnVjdCB0Y3BfdHdfYnVja2V0 ICopdGNwX2VoYXNoW2krdGNwX2VoYXNoX3NpemVdLmNoYWluOw0KIAkJICAg ICB0dyAhPSBOVUxMOw0KIAkJICAgICB0dyA9IChzdHJ1Y3QgdGNwX3R3X2J1 Y2tldCAqKXR3LT5uZXh0LCBudW0rKykgew0KLQkJCWlmICh0dy0+ZmFtaWx5 ICE9IFBGX0lORVQ2KQ0KKwkJCWlmICh0dy0+ZmFtaWx5ICE9IFBGX0lORVQ2 IHx8IChjdXJyZW50LT5zX2NvbnRleHQgIT0gMSAmJiB0dy0+c19jb250ZXh0 ICE9IGN1cnJlbnQtPnNfY29udGV4dCkpDQogCQkJCWNvbnRpbnVlOw0KIAkJ CXBvcyArPSBMSU5FX0xFTisxOw0KIAkJCWlmIChwb3MgPD0gb2Zmc2V0KQ0K ZGlmZiAtdXJOIGxpbnV4Lm9yaWcvbmV0L2lwdjYvdWRwLmMgbGludXgvbmV0 L2lwdjYvdWRwLmMNCi0tLSBsaW51eC5vcmlnL25ldC9pcHY2L3VkcC5jCUZy aSBTZXAgIDcgMjA6MDE6MjEgMjAwMQ0KKysrIGxpbnV4L25ldC9pcHY2L3Vk cC5jCVNhdCBGZWIgMTYgMTY6MjA6NTYgMjAwMg0KQEAgLTk1Miw3ICs5NTIs NyBAQA0KIAkJc3RydWN0IHNvY2sgKnNrOw0KIA0KIAkJZm9yIChzayA9IHVk cF9oYXNoW2ldOyBzazsgc2sgPSBzay0+bmV4dCwgbnVtKyspIHsNCi0JCQlp ZiAoc2stPmZhbWlseSAhPSBQRl9JTkVUNikNCisJCQlpZiAoc2stPmZhbWls eSAhPSBQRl9JTkVUNiB8fCAoY3VycmVudC0+c19jb250ZXh0ICE9IDEgJiYg c2stPnNfY29udGV4dCAhPSBjdXJyZW50LT5zX2NvbnRleHQpKQ0KIAkJCQlj b250aW51ZTsNCiAJCQlwb3MgKz0gTElORV9MRU4rMTsNCiAJCQlpZiAocG9z IDw9IG9mZnNldCkNCmRpZmYgLXVyTiBsaW51eC5vcmlnL25ldC91bml4L2Fm X3VuaXguYyBsaW51eC9uZXQvdW5peC9hZl91bml4LmMNCi0tLSBsaW51eC5v cmlnL25ldC91bml4L2FmX3VuaXguYwlGcmkgRGVjIDIxIDE4OjQyOjA2IDIw MDENCisrKyBsaW51eC9uZXQvdW5peC9hZl91bml4LmMJU2F0IEZlYiAxNiAx NTo1NzozNCAyMDAyDQpAQCAtNDc4LDYgKzQ3OCw4IEBADQogDQogCXNrLT53 cml0ZV9zcGFjZQkJPQl1bml4X3dyaXRlX3NwYWNlOw0KIA0KKwlzay0+c19j b250ZXh0ID0gY3VycmVudC0+c19jb250ZXh0Ow0KKw0KIAlzay0+bWF4X2Fj a19iYWNrbG9nID0gc3lzY3RsX3VuaXhfbWF4X2RncmFtX3FsZW47DQogCXNr LT5kZXN0cnVjdCA9IHVuaXhfc29ja19kZXN0cnVjdG9yOw0KIAlzay0+cHJv dGluZm8uYWZfdW5peC5kZW50cnk9TlVMTDsNCkBAIC0xNzQwLDYgKzE3NDIs OSBAQA0KIAlyZWFkX2xvY2soJnVuaXhfdGFibGVfbG9jayk7DQogCWZvcmFs bF91bml4X3NvY2tldHMgKGkscykNCiAJew0KKwkJaWYgKGN1cnJlbnQtPnNf Y29udGV4dCAhPSAxICYmIHMtPnNfY29udGV4dCAhPSBjdXJyZW50LT5zX2Nv bnRleHQpDQorCQkJY29udGludWU7DQorDQogCQl1bml4X3N0YXRlX3Jsb2Nr KHMpOw0KIA0KIAkJbGVuKz1zcHJpbnRmKGJ1ZmZlcitsZW4sIiVwOiAlMDhY ICUwOFggJTA4WCAlMDRYICUwMlggJTVsZCIsDQo= --801277839-1444118976-1013877874=:985-- From vserver.error@solucorp.qc.ca Sat Feb 16 13:44:03 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1GIi2Ah004525; Sat, 16 Feb 2002 13:44:03 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1GISTu16050 for vserver.list; Sat, 16 Feb 2002 13:28:29 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from anchor-post-33.mail.demon.net (anchor-post-33.mail.demon.net [194.217.242.91]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1GISTR16046 for ; Sat, 16 Feb 2002 13:28:29 -0500 Received: from axis.demon.co.uk ([158.152.18.3] helo=irishsea.home.craig-wood.com) by anchor-post-33.mail.demon.net with esmtp (Exim 3.34 #1) id 16c9ZU-0004ZV-0X for vserver@solucorp.qc.ca; Sat, 16 Feb 2002 18:28:29 +0000 Received: (from ncw@localhost) by irishsea.home.craig-wood.com (8.11.6/8.11.6) id g1GBGuG31022 for vserver@solucorp.qc.ca; Sat, 16 Feb 2002 11:16:56 GMT Date: Sat, 16 Feb 2002 11:16:56 +0000 From: Nick Craig-Wood To: vserver@solucorp.qc.ca Subject: Re: [vserver] RE: Performance, memory, etc Message-ID: <20020216111656.A30792@axis.demon.co.uk> Mail-Followup-To: Nick Craig-Wood , vserver@solucorp.qc.ca References: <20020215171709.baafe21dfd7c@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20020215171709.baafe21dfd7c@remtk.solucorp.qc.ca>; from jack@solucorp.qc.ca on Fri, Feb 15, 2002 at 05:17:09PM -0500 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 133 On Fri, Feb 15, 2002 at 05:17:09PM -0500, Jacques Gelinas wrote: > On Fri, 15 Feb 2002 10:58:55 -0500, Sam Vilain wrote > > Jacques Gelinas wrote: > > > > > This is true. One solution would be to have one private loopback per > > > vserver. (127.0.0.N) and translate dynamically from 127.0.0.1 to the > > > vserver one. > > [...] > > > The current ipv4root of the vserver is mapping a bind(0.0.0.0), to a > > > bind(ip-of-the-vserver). After this little modification in the kernel, > > > the rest of the kernel simply work as usual. > > > > Just a thought, perhaps changing any call to bind(127.0.0.0/8) to > > bind(ip_root) would be a nice quick hack; > > > > +++ net/ipv4/af_inet.c.orig Fri Feb 15 10:31:16 2002 > > @@ -489,7 +489,7 @@ > > s_addr = addr->sin_addr.s_addr; > > if (current->ipv4root != 0){ > > // printk ("ipv4root0 %08lx %08x\n",current->ipv4root,s_addr); > > - if (s_addr == 0 || (s_addr>>24 & 0xFF) == 127 ){ > > + if (s_addr == 0){ > > s_addr = current->ipv4root; > > }else if (s_addr != current->ipv4root){ > > return -EADDRNOTAVAIL; > > > > Is this breaking network sanity too much? :-) > > Maybe. > > If you bind on 127.0.0.1, you do this to tell apart private connection > public connection. Now just by binding to 127.0.0.1, you end up opening > to the world. While not such a big issue, if an application relies/expects this > behavior, their security model is screwed. Indeed. I propose a slight modification to the 127.0.0.N idea proposed earlier - if the ipv4root is a.b.c.d then use 127.b.c.d as the localhost address - this makes the code easier (one less thing to keep track of). if (s_addr == 0){ s_addr = current->ipv4root; }else if ((s_addr>>24 & 0xFF) == 127 ){ s_addr = (current->ipv4root & 0x00FFFFFF) | 0x7F000000; }else if (s_addr != current->ipv4root){ return -EADDRNOTAVAIL; Note that the localhost is usually defined as 127.0.0.1/8 (ie a network and you can ping 127.0.0.2 and get a reply) so you might need to re-ifconfig it as 127.0.0.1/32 and ifconfig seperate 127.b.c.d/32's for each vserver to stop the vservers being able to speak to each others 127.x.y.z addresses - I'm not sure I haven't tried it. -- Nick Craig-Wood From vserver.error@solucorp.qc.ca Sat Feb 16 14:18:10 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1GJI9Ah004722; Sat, 16 Feb 2002 14:18:10 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1GJ2qI16680 for vserver.list; Sat, 16 Feb 2002 14:02:52 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from actmail.com (actmail.com [209.221.151.8]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1GJ2pR16676 for ; Sat, 16 Feb 2002 14:02:51 -0500 Received: from gollum.actmail.com [12.230.128.123] by actmail.com with ESMTP (SMTPD32-6.06) id A3C24BD0450; Sat, 16 Feb 2002 11:32:18 -0800 Message-Id: <5.1.0.14.2.20020216105939.031c89f8@pop.actmail.com> X-Sender: rogerw@actmail.com@pop.actmail.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sat, 16 Feb 2002 11:03:45 -0800 To: vserver@solucorp.qc.ca From: Roger Weiss Subject: [vserver] Multiple IP per virtual server In-Reply-To: <20020209203314.150a9556.chth@gmx.net> References: <20020208220953.7da211c5c377@remtk.solucorp.qc.ca> <20020208220953.7da211c5c377@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 134 We are looking at running the Plesk control panel on a virtual server. While Plesk uses a single IP (name based virtual hosting) if one wants a domain to have it's own SSL certificate it needs a separate IP address. Any way of doing this with a virtual server? ::Roger From vserver.error@solucorp.qc.ca Sat Feb 16 20:11:41 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1H1BeAh006860; Sat, 16 Feb 2002 20:11:41 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1H0j8522141 for vserver.list; Sat, 16 Feb 2002 19:45:08 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tincan.org ([216.64.180.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1H0j7R22136 for ; Sat, 16 Feb 2002 19:45:07 -0500 Received: from localhost (raanders@localhost) by tincan.org (8.9.3/8.8.7) with ESMTP id QAA16497 for ; Sat, 16 Feb 2002 16:44:59 -0800 Date: Sat, 16 Feb 2002 16:44:59 -0800 (PST) From: "Roderick A. Anderson" To: vserver@solucorp.qc.ca Subject: RE: [vserver] newvserver and existing directory In-Reply-To: <002801c1b683$17d9df50$87b601d5@johnnew> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 135 On Sat, 16 Feb 2002, John Lyons wrote: > > > problem is. Maybe unify won't work on separate partitions. > > >From the changelog > "The /usr/lib/vserver/vbuild utility has been enhanced to stay in one file > system only." > > I don't know whether this is the cause of the problem but it's certianly > worth investigating further. I did some further research and found if I don't use unify it installs - semi. I gave anotehr vserver as the template and it put most of the server in a subdirectory by the name of the template server. I think I can sort this out. Rod -- Let Accuracy Triumph Over Victory Zetetic Institute "David's Sling" Marc Stiegler From vserver.error@solucorp.qc.ca Mon Feb 18 11:24:37 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1IGOVAh016894; Mon, 18 Feb 2002 11:24:33 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1IG3gv32333 for vserver.list; Mon, 18 Feb 2002 11:03:42 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from s1.uklinux.net (mail.uklinux.net [80.84.72.21]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1IG3dR32329 for ; Mon, 18 Feb 2002 11:03:40 -0500 Received: from localhost (lance@localhost) by s1.uklinux.net (8.11.6/8.11.6) with ESMTP id g1IG3Ye07066 for ; Mon, 18 Feb 2002 16:03:35 GMT Envelope-To: Date: Mon, 18 Feb 2002 16:03:31 +0000 (GMT) From: lance To: Vserver mailing list Subject: [vserver] vserver questions Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 136 I've just installed the latest version of vserver (0.10 with kernel 2.4.17 ctx-7 ) and have a couple of questions :) Firstly using the default creation method for the vserver - vserver xxx build neither 'w' nor 'last' work unless you touch /var/run/utmp and /var/log/wtmp ??? Is this a design feature or just an ommission ?? 2. If you enter the vserver using vserver xxx enter, then the connection doesnt show up in 'w' ?? 3. running netstat in the verserver shows all of the ports, not just those bound to the vserver ??? even though :- Network device: A vserver can only see the network device associated with its ipv4 root. Regards Lance From vserver.error@solucorp.qc.ca Mon Feb 18 11:36:38 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1IGaWAh017037; Mon, 18 Feb 2002 11:36:34 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1IGN7I32719 for vserver.list; Mon, 18 Feb 2002 11:23:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from n010095.nbs.netland.nl (fw-office.netland.nl [217.170.32.40]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1IGN6R32715 for ; Mon, 18 Feb 2002 11:23:06 -0500 Received: from office.netland.nl (ts.office.netland.nl [192.168.170.55]) by n010095.nbs.netland.nl (8.11.0/8.11.0) with ESMTP id g1IGN6907731 for ; Mon, 18 Feb 2002 17:23:06 +0100 Message-ID: <3C712A6A.6040802@office.netland.nl> Date: Mon, 18 Feb 2002 17:23:06 +0100 From: Ron Arts Organization: Netland Internet Services BV User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.6) Gecko/20011120 X-Accept-Language: nl, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver help References: <001c01c1b677$f4ed2430$87b601d5@johnnew> <005d01c1b6ad$36fc5af0$010510ac@gregg> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 137 Gregg: > > Actually, that is the entire message sendmail is giving me, nothing else. > It's the same message it writes in maillog > sendmail[2458]: rejecting new messages: min free: 100 > That part I haven't figured out yet. > Off topic, but: this message means you don't have enough diskspace in /var/spool/mqueue (100 means 100 blocks, and a block will probably be 1K on your system) Sendmail will not accept email if it can't store them in the mailqueue. Either give it more space or (not advisable) lower the option: # minimum number of free blocks on filesystem O MinFreeBlocks=100 in /etc/sendmail.cf Ron -- Netland Internet Services bedrijfsmatige internetoplossingen http://www.netland.nl Kruislaan 419 1098 VA Amsterdam info: 020-5628282 servicedesk: 020-5628280 fax: 020-5628281 From vserver.error@solucorp.qc.ca Mon Feb 18 21:14:37 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1J2EZAh020940; Mon, 18 Feb 2002 21:14:36 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1J1tmj11462 for vserver.list; Mon, 18 Feb 2002 20:55:48 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp-send.myrealbox.com (smtp-send.myrealbox.com [192.108.102.143]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1J1tmR11458 for ; Mon, 18 Feb 2002 20:55:48 -0500 Received: from dad kgehring@smtp-send.myrealbox.com [207.34.100.242] by smtp-send.myrealbox.com with Novell NIMS $Revision: 2.88 $ on Novell NetWare; Mon, 18 Feb 2002 18:55:35 -0700 Message-ID: <000b01c1b8e8$9c130460$0100a8c0@dad> From: "Ken Gehring" To: References: <041301c1b278$acd0a8a0$8201a8c0@iris> Subject: [vserver] Vserver and wlan Date: Mon, 18 Feb 2002 18:56:02 -0700 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0008_01C1B8AD.E95B1CC0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 138 This is a multi-part message in MIME format. ------=_NextPart_000_0008_01C1B8AD.E95B1CC0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Has anyone tried to get the vserver working with a wireless lan (wlan)? I keep getting "Can't set ipv4 root" Any ideas or suggestions? Ken ------=_NextPart_000_0008_01C1B8AD.E95B1CC0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Has anyone tried to get the vserver = working with a=20 wireless lan (wlan)?
 
I keep getting "Can't set ipv4 = root"
 
Any ideas or suggestions?
 
Ken
 
------=_NextPart_000_0008_01C1B8AD.E95B1CC0-- From vserver.error@solucorp.qc.ca Tue Feb 19 09:48:17 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1JEmGAh027589; Tue, 19 Feb 2002 09:48:16 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1JEMFW24687 for vserver.list; Tue, 19 Feb 2002 09:22:15 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1JEMDR24683 for ; Tue, 19 Feb 2002 09:22:14 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 8ECF61000 for ; Tue, 19 Feb 2002 15:22:01 +0100 (CET) Subject: [vserver] man pages From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-TiMyM98DMXeaw4Pinou6" X-Mailer: Evolution/1.0.2 Date: 19 Feb 2002 15:22:00 +0100 Message-Id: <1014128521.1649.34.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 139 --=-TiMyM98DMXeaw4Pinou6 Content-Type: multipart/mixed; boundary="=-wiU1HncxnNq1MtZhALsg" --=-wiU1HncxnNq1MtZhALsg Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I'm in the process of writing man pages for the vserver programs, as I rather enjoy man pages, and would very much like to have them for my own use. If you'd like, I hope they can get included into the vserver programs package. I've written the first, of chcontext, and I hoped you would look it over and comment, before I continue. --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-wiU1HncxnNq1MtZhALsg Content-Type: application/x-bzip Content-Disposition: attachment; filename=chcontext.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWdnai8MAASVfgANQcefgF/9v3+6////gUAVb0ccHXZCmtLGbrqEkgTRMCTJ6Ceoj TTTEZNGgyGnqAxA1MptMUaU9qaINDQAAAA0AAASmhE00CCnqnptTakzU0xDQANDJk09Q2ocwJiaD CZMmTIwmCaaZGJgCGASJTCCGmqejFDR6IMgDQBo0HqAepIE/nqez4U7pDJJmXht3T+004K3scbtR 6pIf3rYU0YjBhaNLz0YggSzpDCuc6AbBum9mnLD1zQ22vu3d+J5UobknE19Dk8J6jiOiKRpt3QUV BzqtBD+60zMLQFN5tBOke07u17y4hXxRbFO6XveqF/qndMFTCsY/B3qWrJK1eyVEPh460PQqeknc YK2xo1NTCqBCrDQUEC0QrGqE17rHDXBR+2rMKc1zmYyaq8FBVWQtIOk3qSFrtMjYDSVioCckIoFK KOuBUSEnfEbtOUrDlKdwMhGayoKZQMvnq976F2vKpChCJwmFzXX40U0q9hPlLffjwfkQoEXudmkU bKX2SHKpnDPV0cPSkLKBYUZ8uP/Erywy0+EK8qon09zuXn7Hud70D4U2Y+O9IIx6dUiGwlxrk7i7 dlLSgc7s5HybcczQ3HfIeBUVfdx13Qsrc4mxo4NaDvgwN1f0oyf/I92FRR2xs0BnQMh2mjM+0wcg 1Qeb2OlptboArdaTbCLZ/jWQgoFBmh6ov1SW9JjOoF0WiPt+/T7BuX4O5h5151LpLQzMg5pi66oH g3Qot80fabZw8aEoxdmr5k1KIEyZHrzgkYwmCdeGtCY73sQyMYxfPLEJhgA17xasIL3PS2cPqqc0 phyWsgPgVCV3HrkKm0Hv57sZF6rfeWeKYqMxBjabA6Yg4taQ2DbZOMQgv+ruySEBycHTJCF59bkY dd+RhlTZUyzx06jcoOuDnrH6UmnBMW4uQmjHthmuhdDJ8tJK52KqiNCxMEv5BGmMMpNNBjtbGt5j N3PI45trp5yj5eW+mFcEWxXqLyS7mb23jnHekqrcOxhjIzNXhbzWUimpGDtVAkI1q5AqbS0j6ANw rIjwosg2fokmSVZ6bsudePQ2OXHhA8pmdmPuTITJD5u4iEkhdJN8emt+wlqkniOvPmN0wmth1VJG ijjGnxTrMcVhWREO8r6LEzMzAypp2vckLfn33zKM4DiQmdccTUeeRWTs7IhCY+Q6g4BuNZ5biwwg vNpJK8bR2XmCrK1noJWSpNRyu2Bv5DJwwbAKXdCII58dKtLNj7sc2oIo46f0LJAl+Ly0CCjwJyM+ eiQlSStEwkM6IJ3VsgRdRFGEv5MikpwWCE5BbMmXHy90GRlqBwmdbUQ3a+F6knYgWaWFPFx4PUXs kdrCVO26SMWjVPC2FZHzhjnbYPtnbXNaDfpai9wEtRoVrydGqqM3yC/y4M8EvQXCu5709kuhsEyH RIWWDOdYVEW8W9zCdxX57M2MghMHJrZTtW8HWZajUW2BR4Z0hPasi+NKSncHRuhy+mErhxNcDSy+ hpZnITlaaAkyTM0B1WxxsKLMllE+W/kmGjTd0hsaJbsC8UN0kM0zF0cUSx2IIqp16dTFAAlsflMR JmmUISjskSKIFQxSRrYQmqTyB1cGm4KBsrWyRfFJa9xhxWll8QVhWa86ftsJ1hTthI1OvikZnzm5 SWfddxRcrKmMFBZKLLvazAOBGxydUtzUWtss0bC+QJXZgelb3ONLJ9Rs/4u5IpwoSGztReGA --=-wiU1HncxnNq1MtZhALsg-- --=-TiMyM98DMXeaw4Pinou6 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8cl+I4c1kHlhtW8oRAkKbAJ9hf1+bjIQP6j4zmtrglPgbQ4Ha4gCePDwu eJ/DzbaZlq6X5t2Zu7WMHfY= =wMiN -----END PGP SIGNATURE----- --=-TiMyM98DMXeaw4Pinou6-- From vserver.error@solucorp.qc.ca Tue Feb 19 12:15:12 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1JHFBAh028817; Tue, 19 Feb 2002 12:15:12 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1JGv2Z27744 for vserver.list; Tue, 19 Feb 2002 11:57:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1JGv0R27740 for ; Tue, 19 Feb 2002 11:57:01 -0500 Received: from tpx20.vsen.dk (unknown [192.168.1.50]) by www.vsen.dk (Postfix) with ESMTP id C69B91000 for ; Tue, 19 Feb 2002 17:56:57 +0100 (CET) Subject: [vserver] precompiled vserver kernels From: Klavs Klavsen To: vserver@solucorp.qc.ca Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-EDIsMImqgl88HKEuAJ34" X-Mailer: Evolution/1.0.2 Date: 19 Feb 2002 18:56:46 +0100 Message-Id: <1014141417.1299.13.camel@tpx20.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 140 --=-EDIsMImqgl88HKEuAJ34 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I just downloaded one of your precompiled kernels. The one I got a hold of, was missing the /boot/System.map-2.4.17ctx-7 file, which is what makes programs like lsof work. Is it just a mishap, or is there an idea behind it? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-EDIsMImqgl88HKEuAJ34 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8cpHe4c1kHlhtW8oRAgBsAJ9OGxLcW5wHPaio9TgTuvpuAaRFzACePAI0 UWj6dNdu4Xrf65bRPgKpngI= =2qIt -----END PGP SIGNATURE----- --=-EDIsMImqgl88HKEuAJ34-- From vserver.error@solucorp.qc.ca Tue Feb 19 14:48:12 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1JJmBAh030317; Tue, 19 Feb 2002 14:48:12 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1JJXpk31080 for vserver.list; Tue, 19 Feb 2002 14:33:51 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lakemtao02.cox.net (mtao2.east.cox.net [68.1.17.243]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1JJXpR31076 for ; Tue, 19 Feb 2002 14:33:51 -0500 Received: from gregg ([68.3.68.74]) by lakemtao02.cox.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with SMTP id <20020219193351.OQTF6405.lakemtao02.cox.net@gregg> for ; Tue, 19 Feb 2002 14:33:51 -0500 Message-ID: <028501c1b97c$5decd550$010510ac@gregg> From: "Gregg" To: References: <001c01c1b677$f4ed2430$87b601d5@johnnew> <005d01c1b6ad$36fc5af0$010510ac@gregg> <3C712A6A.6040802@office.netland.nl> Subject: Re: [vserver] vserver help Date: Tue, 19 Feb 2002 12:33:54 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 141 > Off topic, but: > > this message means you don't have enough diskspace in /var/spool/mqueue > (100 means 100 blocks, and a block will probably be 1K on your system) > Sendmail will not accept email if it can't store them in the mailqueue. > > Either give it more space or (not advisable) lower the option: > > # minimum number of free blocks on filesystem > O MinFreeBlocks=100 > > in /etc/sendmail.cf I think that was it, it's accepting email now! I don't know why I didn't think of that. Thanks. From vserver.error@solucorp.qc.ca Wed Feb 20 01:00:52 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1K60oAh021309; Wed, 20 Feb 2002 01:00:51 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1K5baC09788 for vserver.list; Wed, 20 Feb 2002 00:37:36 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1K5baR09784 for ; Wed, 20 Feb 2002 00:37:36 -0500 Received: from remtk.solucorp.qc.ca (g39-185.citenet.net [206.123.39.185]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1K5eW683080 for ; Wed, 20 Feb 2002 00:40:32 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1K5Z7k04834 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 00:35:07 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 00:35:07 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] man pages X-mailer: tlmpmail 0.1 Message-ID: <20020220003507.ee2fea109780@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 142 On Tue, 19 Feb 2002 15:22:00 -0500, klavs klavsen wrote > Hi guys, > > I'm in the process of writing man pages for the vserver programs, as I > rather enjoy man pages, and would very much like to have them for my own > use. > > If you'd like, I hope they can get included into the vserver programs > package. > > I've written the first, of chcontext, and I hoped you would look it over > and comment, before I continue. Yes go ahead. The first page sounds ok to me. It will go in the package. Thanks a lot! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 01:00:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1K60vAh021313; Wed, 20 Feb 2002 01:00:58 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1K5bYI09782 for vserver.list; Wed, 20 Feb 2002 00:37:34 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1K5bYR09778 for ; Wed, 20 Feb 2002 00:37:34 -0500 Received: from remtk.solucorp.qc.ca (g39-185.citenet.net [206.123.39.185]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1K5eU683077 for ; Wed, 20 Feb 2002 00:40:30 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1K5ank04836 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 00:36:49 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 00:36:49 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] precompiled vserver kernels X-mailer: tlmpmail 0.1 Message-ID: <20020220003649.d89ed9bf9b6a@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 143 On Tue, 19 Feb 2002 18:56:46 -0500, Klavs Klavsen wrote > Hi guys, > > I just downloaded one of your precompiled kernels. > > The one I got a hold of, was missing the /boot/System.map-2.4.17ctx-7 > file, which is what makes programs like lsof work. > > Is it just a mishap, or is there an idea behind it? I must admit I never use lsof or utility relying on the map. I will include it in the next release. I tought utility like lsof were relying on /proc/*/fd --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 01:18:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1K6IXAh021413; Wed, 20 Feb 2002 01:18:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1K5ukl10451 for vserver.list; Wed, 20 Feb 2002 00:56:46 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from sokol.paradigm4.com.au ([202.45.126.119]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1K5ujR10447 for ; Wed, 20 Feb 2002 00:56:45 -0500 Received: (qmail 2147 invoked from network); 20 Feb 2002 06:00:20 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 20 Feb 2002 06:00:20 -0000 Received: (qmail 27775 invoked from network); 20 Feb 2002 05:59:40 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 20 Feb 2002 05:59:40 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Wed, 20 Feb 2002 17:13:04 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: re: [vserver] precompiled vserver kernels Message-ID: <3C73D920.13245.C2CC86@localhost> Priority: normal In-reply-to: <20020220003649.d89ed9bf9b6a@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 144 /boot/System.map ( or whatever you specify on the command line ) is used by klogd as well, when it starts up. On Wednesday, 20 February 2002 at 0:36, Jacques Gelinas wrote: > On Tue, 19 Feb 2002 18:56:46 -0500, Klavs Klavsen wrote > > Hi guys, > > > > I just downloaded one of your precompiled kernels. > > > > The one I got a hold of, was missing the /boot/System.map-2.4.17ctx-7 > > file, which is what makes programs like lsof work. > > > > Is it just a mishap, or is there an idea behind it? > > I must admit I never use lsof or utility relying on the map. I will include > it in the next release. I tought utility like lsof were relying on /proc/*/fd > > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > From vserver.error@solucorp.qc.ca Wed Feb 20 12:55:54 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1KHtsAh028085; Wed, 20 Feb 2002 12:55:54 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KHZ6f24282 for vserver.list; Wed, 20 Feb 2002 12:35:06 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KHZ5R24278 for ; Wed, 20 Feb 2002 12:35:05 -0500 Received: from remtk.solucorp.qc.ca (g36-87.citenet.net [206.123.36.87]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1KHc8616413 for ; Wed, 20 Feb 2002 12:38:08 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1KH7ke05737 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 12:07:46 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 12:07:46 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Kill script X-mailer: tlmpmail 0.1 Message-ID: <20020220120746.e5f05d1661aa@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 145 On Wed, 6 Feb 2002 19:39:58 -0500, Philip Snyder wrote > Here's something I hacked together. By no means does it encompass the > entire wealth of the kill command... but it makes killing a process in > context much more straight forward. Hope someone else finds this of use > as well. Will add multiple process & signal support soon. This is nice. I have included it in the package and update the documentation on the web. Now, it is possible to add the following features without argument, it reports its usage. Currently, it fails with some perl errors. Support multiple processes in a loop so we can kill several processes at once. Support an optional signal. Thanks! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 15:19:57 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1KKJvAh029305; Wed, 20 Feb 2002 15:19:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KK6IE27375 for vserver.list; Wed, 20 Feb 2002 15:06:18 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KK6IR27371 for ; Wed, 20 Feb 2002 15:06:18 -0500 Received: from remtk.solucorp.qc.ca (g39-8.citenet.net [206.123.39.8]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1KK9J629096 for ; Wed, 20 Feb 2002 15:09:20 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1KJiA306721 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 14:44:10 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 14:44:10 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Vserver and wlan X-mailer: tlmpmail 0.1 Message-ID: <20020220144410.2b9128ee6919@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 146 On Mon, 18 Feb 2002 18:56:02 -0500, Ken Gehring wrote > Has anyone tried to get the vserver working with a wireless lan (wlan)? > > I keep getting "Can't set ipv4 root" Have you installed/reboot the proper kernel. The set_ipv4root always succeed. I mean you can do /usr/sbin/chbind --ip 1.2.3.4 /bin/sh and it will work. It is unrelated to the network device. The system call simply copy the address whatever it is. It does not check if this address correspond to a valid network interface at all (but if it does not match, the process and childing bound to this address won't be able to use IP networking at all). --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 15:19:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1KKJvAh029304; Wed, 20 Feb 2002 15:19:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KK68r27358 for vserver.list; Wed, 20 Feb 2002 15:06:08 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KK68R27354 for ; Wed, 20 Feb 2002 15:06:08 -0500 Received: from remtk.solucorp.qc.ca (g39-8.citenet.net [206.123.39.8]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1KK9B629072 for ; Wed, 20 Feb 2002 15:09:11 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1KK2kx06741 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 15:02:46 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 15:02:46 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and /var/run X-mailer: tlmpmail 0.1 Message-ID: <20020220150246.8e34ba6ff1c3@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 147 On Tue, 12 Feb 2002 12:32:39 -0500, Ron Arts wrote > By the way, I replaced both instances with > > find /var/run/ -name \*.pid -exec rm -f {} \; I changed this to rm -f `find var/run -type f` touch var/run/utmp > Also changed `sleep 2` into `sleep 5` when stopping > vservers. 2 seconds weas not enough for my MySQL setup. I have changed that to sleep 5. Are you using fakeinit ? (per vserver init process) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 15:20:01 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1KKK0Ah029312; Wed, 20 Feb 2002 15:20:00 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KK6Om27381 for vserver.list; Wed, 20 Feb 2002 15:06:24 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KK6OR27377 for ; Wed, 20 Feb 2002 15:06:24 -0500 Received: from remtk.solucorp.qc.ca (g39-8.citenet.net [206.123.39.8]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1KK9R629122 for ; Wed, 20 Feb 2002 15:09:27 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1KK57H06743 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 15:05:07 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 15:05:07 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] shrink wrap it X-mailer: tlmpmail 0.1 Message-ID: <20020220150507.c894b0db052f@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 148 On Sun, 10 Feb 2002 16:52:14 -0500, klavs klavsen wrote > btw. can or will vserver be implemented in the standard kernel source > tree? that would expand it's knowledge and usage to a much broader > user-base and just like it did for ReiserFS help the project gain > developers and bug-hunters. Are there any reasons why vserver should not > be a part of the standard kernel source? I don't know so much about > this, only know what I can read from LWN and such. This is the goal, but we are still find new stuff to add/enhance. More milage is needed imho. But for sure, I see this technology as almost mandatory in any linux installation :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 15:20:56 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1KKKtAh029336; Wed, 20 Feb 2002 15:20:55 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KK6U727405 for vserver.list; Wed, 20 Feb 2002 15:06:30 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KK6UR27401 for ; Wed, 20 Feb 2002 15:06:30 -0500 Received: from remtk.solucorp.qc.ca (g39-8.citenet.net [206.123.39.8]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1KK9X629141 for ; Wed, 20 Feb 2002 15:09:33 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1KIXl806676 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 13:33:47 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 13:33:47 -0500 To: vserver@solucorp.qc.ca Subject: [vserver] vservers inside vservers, multiple IP X-mailer: tlmpmail 0.1 Message-ID: <20020220133347.efe1321e47f4@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 149 On Sat, 9 Feb 2002 20:33:14 -0500, Christian wrote > binding more than one ip is often needed for Proxy-Servers, > Backside-Databases, Maintainance-Networks, Intranets which usually reside > on another nic and dummy devices are just a workaround like using > iptables/NAT currently. I dont think that the 'single-device' is a > flexible idea. My idea was that there are two (or maybe more.. but a small > static amount) of ip/mask pairs, the first ip is the default ip whcih is > used for bind(0.0.0.0) but all other ips which are match the masked ip are > bindable too. additionally a nested chbind within a vserver can be used to > constrain the ip/ranges further (i didnt tested recently if recursive > vservers work .. would be fine either). Nest vserver do not work for now because of the lock flag in the new_s_context system call. The idea is that many resources will be constrained on a per vserver (per security context in fact) basis. The lock flag prevent a process in a given security context to "hide" itself in another security context. But if you remove the lock flag (in the configuration file), a vserver inside a vserver is possible and will provide the same level of performance. The chbind system call has also its limitation. Once you have chbind to one IP, you are not allowed to select another, except for root in security context 0. Now, this idea of a vserver inside a vserver is introducing a nice solution. I have already talked about the concept of vserver instance. As a recap, the concept is to have several copies of a vserver running side by side. One is the production server, the other is a backup vserver (old version of the service), and few others are test vservers. With unification, one can easily create a new copy of a vserver for test purpose. For example, you have this internet project running on a vserver. You have many many cgi/php/perl stuff running there. It works for several months. Lately have reworked the whole project and did many changes here and there. New SQL schema, new scripts, new apache version and so on. Rollout time. Using vservere, you can clone the production server in one minute, then install your new version and test it out. Once you have iron out all the installation and automated it, you clone stop the production server, rename it to backup, clone it and apply your updates. you start this new vserver as the new production server. All this is fine and I suspect many will start using vservers like this to apply large updates in a controlled way. But there is a flaw. You must be root in the root server to do this. Now if we apply your idea, we could end up with a virtual root server, having the ability to create new vservers and assign some IPs, out of a fixed list. Now there are some problems with unification since a vserver is not allowed to operate on immutable bit (by default, configurable). The solution here would be to grant the first vserver (the virtual root vserver) the right to play with immutable bit, but the this vserver would not use unification. Anyone interest in this concept of multiple-vserver-instances or vservers managed by vservers ? It sounds way cool --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 15:21:02 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1KKL2Ah029340; Wed, 20 Feb 2002 15:21:02 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KK6Rd27393 for vserver.list; Wed, 20 Feb 2002 15:06:27 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KK6QR27389 for ; Wed, 20 Feb 2002 15:06:26 -0500 Received: from remtk.solucorp.qc.ca (g39-8.citenet.net [206.123.39.8]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1KK9U629135 for ; Wed, 20 Feb 2002 15:09:30 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1KJZcM06716 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 14:35:38 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 14:35:38 -0500 To: vserver@solucorp.qc.ca Subject: [vserver] many services - 1 IP. X-mailer: tlmpmail 0.1 Message-ID: <20020220143538.8a7dfaf8db68@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 150 On Fri, 15 Feb 2002 15:05:45 -0500, klavs klavsen wrote > > And yeah, thats correct. You can use chroot within the virtual server, and > > you can do it securely. There was a bug where you could use chroot > > within vserver to escape out of the vserver and back into the root server. > > That has been fixed for a while. ;) > but chroot is still buggy (even if it's running under a vserver) so that > one could break out of a chroot jail and get to other services on the > same vserver? chroot is generally used like that if (fork()==0){ chroot ("/somedir"); setuid (some_user); do the task } chroot is only usable by root. Just using chroot to isolate a root process is indeed not powerful enough. Forget about the chroot. If the intruder is root, he can do a lot to the machine (reboot it, halt it) without breaking the chroot. bind in newer distribution runs as user named. So combining the special user ID + chroot is very robust. the issue of chroot and vserver was important because a vserver has to allow root process inside the vserver and as such has to allow chroot system call in many cases. But in general, to jail a process using chroot, you switch to another user ID. then chroot is reliable and robust. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 15:22:02 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1KKM1Ah029344; Wed, 20 Feb 2002 15:22:01 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KK6P627387 for vserver.list; Wed, 20 Feb 2002 15:06:25 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KK6PR27383 for ; Wed, 20 Feb 2002 15:06:25 -0500 Received: from remtk.solucorp.qc.ca (g39-8.citenet.net [206.123.39.8]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1KK9T629126 for ; Wed, 20 Feb 2002 15:09:29 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1KJqUq06730 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 14:52:30 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 14:52:30 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver questions X-mailer: tlmpmail 0.1 Message-ID: <20020220145230.114f7623c475@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 151 On Mon, 18 Feb 2002 16:03:31 -0500, lance wrote > > I've just installed the latest version of vserver (0.10 with kernel > 2.4.17 ctx-7 ) and have a couple of questions :) > > Firstly using the default creation method for the vserver - vserver xxx > build > > neither 'w' nor 'last' work unless you touch /var/run/utmp and > /var/log/wtmp ??? Is this a design feature or just an ommission ?? Ommission, feature. I can add this. /var/run/utmp will be re-created empty when you start the vserver. > 2. If you enter the vserver using vserver xxx enter, then the connection > doesnt show up in 'w' ?? Yes this is right. This is not really a login. It is a way to enter a vserver without relying on any service. > 3. running netstat in the verserver shows all of the ports, not just those > bound to the vserver ??? Yes. This will be solved by a replacement to /proc using a less verbose version of /proc, called vproc. > even though :- Network device: A vserver can only see the network device > associated with its ipv4 root. Yes, this is work in progress :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 15:23:53 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1KKNrAh029349; Wed, 20 Feb 2002 15:23:53 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KK6FY27369 for vserver.list; Wed, 20 Feb 2002 15:06:15 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KK6ER27365 for ; Wed, 20 Feb 2002 15:06:14 -0500 Received: from remtk.solucorp.qc.ca (g39-8.citenet.net [206.123.39.8]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1KK9F629088 for ; Wed, 20 Feb 2002 15:09:16 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1KJt8P06732 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 14:55:08 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 14:55:08 -0500 To: vserver@solucorp.qc.ca Subject: [vserver] vserver and schedular X-mailer: tlmpmail 0.1 Message-ID: <20020220145508.3d257361901e@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 152 On Sat, 16 Feb 2002 13:37:36 -0500, edward@DigitalAngel.com.au wrote > Excellent. > > I already dug out some message from a while ago > to do with the scheduler changes and I have a question. > > Did the scheduling code of vserver get changed since then? > The latest CTX-7 patch still appears to be messing with goodness() Yes nothing was changed in this area. Someone told me he was working on a different solution. Can't remember who. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 15:25:49 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1KKPmAh029365; Wed, 20 Feb 2002 15:25:49 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KK66827352 for vserver.list; Wed, 20 Feb 2002 15:06:06 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KK66R27348 for ; Wed, 20 Feb 2002 15:06:06 -0500 Received: from remtk.solucorp.qc.ca (g39-8.citenet.net [206.123.39.8]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1KK9A629066 for ; Wed, 20 Feb 2002 15:09:10 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1KJwAk06734 for vserver@solucorp.qc.ca; Wed, 20 Feb 2002 14:58:11 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 14:58:10 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Re: Vserver and /var/run X-mailer: tlmpmail 0.1 Message-ID: <20020220145810.937f817c40f2@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 153 On Sun, 10 Feb 2002 13:23:14 -0500, Andy Kwong wrote > And on line 208 as well. > On line 80 in /usr/sbin/vserver it is - > > rm -fr var/run/* > > Shouldn't it be - > > rm -f var/run/*.pid > > This is because it is removing /var/run/named/ and other directories that some programs > need to write their pid files to. I have changed this to remove files only --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 16:16:08 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1KLG7Ah029735; Wed, 20 Feb 2002 16:16:08 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KKvmu28800 for vserver.list; Wed, 20 Feb 2002 15:57:48 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KKvmR28796 for ; Wed, 20 Feb 2002 15:57:48 -0500 Received: from remtk.solucorp.qc.ca (g36-94.citenet.net [206.123.36.94]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1KL0q633897 for ; Wed, 20 Feb 2002 16:00:52 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1KKnE207865 for vserver@dns.solucorp.qc.ca; Wed, 20 Feb 2002 15:49:14 -0500 From: Jacques Gelinas Date: Wed, 20 Feb 2002 15:49:14 -0500 To: Vserver mailing list Subject: [vserver] bind and vserver, more info X-mailer: tlmpmail 0.1 Message-ID: <20020220154914.63e5c4796d11@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 154 I have looked at bind. I found out why it is failing. When named starts, it tries to reduce its own capabilities. Good. Unfortunatly, it selects a very tiny set of capability, but one too many. named tries to get CAP_SYS_RESOURCE and by default, vservers do not have this capability. If you put the following line in the vserver configuration file (/etc/vservers/xx.conf) S_CAPS="CAP_SYS_RESOURCE" then named start up fine. But this is annoying. CAP_SYS_RESOURCE allows a process to raise its "ulimit" resources. Normally, a process can only reduce its limits. On most linux distro, root has unlimited resource. Ideally, a vserver should have some rather high resources (but not unlimited) (number of file handle, memory, etc...) and each process is allowed to reduce it further. Given that named is normally run as root, as as such has plenty of resource, I can only see the process reducing its resources. Anyone has experience with named and its way of handling resources ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 20 19:22:51 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1L0MoAh024755; Wed, 20 Feb 2002 19:22:50 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1KNx2a32218 for vserver.list; Wed, 20 Feb 2002 18:59:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from s1.uklinux.net (mail.uklinux.net [80.84.72.21]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1KNx0R32214 for ; Wed, 20 Feb 2002 18:59:01 -0500 Received: from localhost (lance@localhost) by s1.uklinux.net (8.11.6/8.11.6) with ESMTP id g1KNx0125577 for ; Wed, 20 Feb 2002 23:59:00 GMT Envelope-To: Date: Wed, 20 Feb 2002 23:58:59 +0000 (GMT) From: lance To: Subject: re: [vserver] vserver questions In-Reply-To: <20020220145230.114f7623c475@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 155 On Wed, 20 Feb 2002, Jacques Gelinas wrote: > On Mon, 18 Feb 2002 16:03:31 -0500, lance wrote > > > > I've just installed the latest version of vserver (0.10 with kernel > > 2.4.17 ctx-7 ) and have a couple of questions :) > > > > Firstly using the default creation method for the vserver - vserver xxx > > build > > > > neither 'w' nor 'last' work unless you touch /var/run/utmp and > > /var/log/wtmp ??? Is this a design feature or just an ommission ?? > > Ommission, feature. I can add this. > > /var/run/utmp will be re-created empty when you start the vserver. Thanks. > > 3. running netstat in the verserver shows all of the ports, not just those > > bound to the vserver ??? > > Yes. This will be solved by a replacement to /proc using a less verbose version > of /proc, called vproc. > > > even though :- Network device: A vserver can only see the network device > > associated with its ipv4 root. > > Yes, this is work in progress :-) Aha thanks for clearing that up - have you thoughts on how to segregate firewalling between the different vservers ?? Could it be done with a per instance chain (or table) that the vserver can modify ?? Lance From vserver.error@solucorp.qc.ca Wed Feb 20 19:22:51 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1L0MoAh024756; Wed, 20 Feb 2002 19:22:51 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1L01tf32275 for vserver.list; Wed, 20 Feb 2002 19:01:55 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from s1.uklinux.net (mail.uklinux.net [80.84.72.21]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1L01sR32271 for ; Wed, 20 Feb 2002 19:01:54 -0500 Received: from localhost (lance@localhost) by s1.uklinux.net (8.11.6/8.11.6) with ESMTP id g1L01rB25942 for ; Thu, 21 Feb 2002 00:01:53 GMT Envelope-To: Date: Thu, 21 Feb 2002 00:01:52 +0000 (GMT) From: lance To: Subject: [vserver] vps question Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 156 Is there any way of showing, using vps or similar, in the root shell, what vservers processes are owned by ?? Or would it be possible to give each vserver a range of process ids to use ?? If not this would be very useful, especially for installations with large numbers of vservers running ... Lance From vserver.error@solucorp.qc.ca Wed Feb 20 20:11:17 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1L1BFAh025273; Wed, 20 Feb 2002 20:11:16 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1L0ngX00654 for vserver.list; Wed, 20 Feb 2002 19:49:42 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from sokol.paradigm4.com.au ([202.45.126.119]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1L0nfR00649 for ; Wed, 20 Feb 2002 19:49:42 -0500 Received: (qmail 28214 invoked from network); 21 Feb 2002 00:53:20 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 21 Feb 2002 00:53:20 -0000 Received: (qmail 29350 invoked from network); 21 Feb 2002 00:52:36 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 21 Feb 2002 00:52:36 -0000 From: B612@DigitalAngel.com.au To: vserver@solucorp.qc.ca Date: Thu, 21 Feb 2002 12:06:03 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] vps question Message-ID: <3C74E2AB.17086.23E356@localhost> Priority: normal In-reply-to: X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 157 > Is there any way of showing, using vps or similar, in the root shell, > what vservers processes are owned by ?? Have you tried vtop? From vserver.error@solucorp.qc.ca Wed Feb 20 20:11:23 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1L1BNAh025277; Wed, 20 Feb 2002 20:11:23 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1L0nhp00658 for vserver.list; Wed, 20 Feb 2002 19:49:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from sokol.paradigm4.com.au ([202.45.126.119]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1L0nfR00650 for ; Wed, 20 Feb 2002 19:49:42 -0500 Received: (qmail 28216 invoked from network); 21 Feb 2002 00:53:21 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 21 Feb 2002 00:53:21 -0000 Received: (qmail 29351 invoked from network); 21 Feb 2002 00:52:37 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 21 Feb 2002 00:52:36 -0000 From: B612@DigitalAngel.com.au To: vserver@solucorp.qc.ca Date: Thu, 21 Feb 2002 12:06:03 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] vserver and schedular Message-ID: <3C74E2AB.9246.23E34C@localhost> Priority: normal In-reply-to: <20020220145508.3d257361901e@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 158 How would you feel if I took Rik van Riel's patches http://surriel.com/patches/2.3/2.3.99-3-schedpatch3 http://surriel.com/patches/2.2.15-fairsched and adapted them for the latest kernel + vserver? Would you be interested? I am going to include this as an option in the next 2.2.20 ctx patch that I'm maintaining as I'm still not happy with the current scheduler. I'm also going to try adapting the 'large-nice' patch: http://surriel.com/patches/2.4/2.4.3ac4-largenice as yet another kernel compile-time option. Ed > On Sat, 16 Feb 2002 13:37:36 -0500, edward@DigitalAngel.com.au wrote > > Excellent. > > > > I already dug out some message from a while ago > > to do with the scheduler changes and I have a question. > > > > Did the scheduling code of vserver get changed since then? > > The latest CTX-7 patch still appears to be messing with goodness() > > Yes nothing was changed in this area. Someone told me he was working > on a different solution. Can't remember who. > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > From vserver.error@solucorp.qc.ca Wed Feb 20 22:49:54 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1L3nrAh007109; Wed, 20 Feb 2002 22:49:54 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1L3TAX03476 for vserver.list; Wed, 20 Feb 2002 22:29:10 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp-send.myrealbox.com (smtp-send.myrealbox.com [192.108.102.143]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1L3T9R03468 for ; Wed, 20 Feb 2002 22:29:09 -0500 Received: from dad kgehring@smtp-send.myrealbox.com [207.34.98.240] by smtp-send.myrealbox.com with Novell NIMS $Revision: 2.88 $ on Novell NetWare; Wed, 20 Feb 2002 20:29:02 -0700 Message-ID: <000b01c1ba88$011a3d60$0100a8c0@dad> From: "Ken Gehring" To: References: <3C74E2AB.9246.23E34C@localhost> Subject: [vserver] Having a small problem Date: Wed, 20 Feb 2002 20:29:42 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 159 Well it almost works. I've done the following Starting with a 2.4.17 kernel tree I've applied the patch patch-2.4.17ctx-7 with the command patch -p1 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1L9YBAh011507; Thu, 21 Feb 2002 04:34:13 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1L9Ia308643 for vserver.list; Thu, 21 Feb 2002 04:18:36 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1L9IZR08639 for ; Thu, 21 Feb 2002 04:18:35 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 174D61000 for ; Thu, 21 Feb 2002 10:18:34 +0100 (CET) Subject: Re: [vserver] many services - 1 IP. From: klavs klavsen To: Vserver Mailinglist In-Reply-To: <20020220143538.8a7dfaf8db68@remtk.solucorp.qc.ca> References: <20020220143538.8a7dfaf8db68@remtk.solucorp.qc.ca> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-Oop66tT0uROQ0TXpnfRi" X-Mailer: Evolution/1.0.2 Date: 21 Feb 2002 10:18:33 +0100 Message-Id: <1014283114.1660.38.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 160 --=-Oop66tT0uROQ0TXpnfRi Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Wed, 2002-02-20 at 20:35, Jacques Gelinas wrote: > bind in newer distribution runs as user named. So combining the special > user ID + chroot is very robust. >=20 > the issue of chroot and vserver was important because a vserver has to > allow root process inside the vserver and as such has to allow chroot sys= tem call > in many cases. But in general, to jail a process using chroot, you switch= to > another user ID. then chroot is reliable and robust. Thankyou for that tip :-)=20 This is something for the FAQ I think. I'll put together some points, as soon as I've finished the Man-pages :-) --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-Oop66tT0uROQ0TXpnfRi Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8dLtp4c1kHlhtW8oRAu6SAKCW/suaI3odhSAg9F4lgFxsOidvPgCeJwIV UtE1gh9UHjKu4dEK0HFYZ0k= =DXsw -----END PGP SIGNATURE----- --=-Oop66tT0uROQ0TXpnfRi-- From vserver.error@solucorp.qc.ca Thu Feb 21 04:40:47 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1L9ekAh011553; Thu, 21 Feb 2002 04:40:47 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1L9PCS08772 for vserver.list; Thu, 21 Feb 2002 04:25:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1L9PBR08768 for ; Thu, 21 Feb 2002 04:25:11 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 932AF1000 for ; Thu, 21 Feb 2002 10:25:11 +0100 (CET) Subject: Re: [vserver] Having a small problem From: klavs klavsen To: Vserver Mailinglist In-Reply-To: <000b01c1ba88$011a3d60$0100a8c0@dad> References: <3C74E2AB.9246.23E34C@localhost> <000b01c1ba88$011a3d60$0100a8c0@dad> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-YFVVIcVNo1zJ75guLktE" X-Mailer: Evolution/1.0.2 Date: 21 Feb 2002 10:25:11 +0100 Message-Id: <1014283511.1664.42.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 161 --=-YFVVIcVNo1zJ75guLktE Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Thu, 2002-02-21 at 04:29, Ken Gehring wrote: > Made a new vserver (v00) and still all OK >=20 > When I go to start the vserver I get the following >=20 > Can't set the ipv4 root > : Function not implemented >=20 >=20 > Everything seems to be OK in the config files, I just seem to be missing > something small. >=20 > Any ideas???? >=20 try checking with uname -a - that you've actually booted on the right kernel. if it doesn't say "2.4.17ctx-7" somewhere in the line, then it's not a ctx enabled kernel (unless you changed the kernel-version at compile time). --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-YFVVIcVNo1zJ75guLktE Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8dLz34c1kHlhtW8oRAonVAJ9bX5ODfy4QXkaW0NYrMm6AlWvOQQCggWvy 05eUjtNT3IvLNaRndNHg+1E= =7ZCL -----END PGP SIGNATURE----- --=-YFVVIcVNo1zJ75guLktE-- From vserver.error@solucorp.qc.ca Thu Feb 21 10:58:43 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1LFwgAh014327; Thu, 21 Feb 2002 10:58:42 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1LFhFj15018 for vserver.list; Thu, 21 Feb 2002 10:43:15 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.SerNet.DE (mail.SerNet.DE [193.159.217.66]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1LFhDR15014 for ; Thu, 21 Feb 2002 10:43:14 -0500 Received: from intern.SerNet.DE by mail.SerNet.DE with esmtp (Exim 2.12 #1) for vserver@solucorp.qc.ca id 16dvNH-0007hQ-00; Thu, 21 Feb 2002 16:43:11 +0100 Received: by intern.SerNet.DE id 16dvNH-00057h-00; Thu, 21 Feb 2002 16:43:11 +0100 Content-Type: text/plain; charset="iso-8859-1" From: Krischan Jodies To: vserver@solucorp.qc.ca Subject: Re: [vserver] vps question Date: Thu, 21 Feb 2002 16:39:05 +0100 References: In-Reply-To: MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: Organization: Service Network GmbH, Goettingen, Germany Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 162 Am Donnerstag, 21. Februar 2002 01:01 schrieben Sie: > Is there any way of showing, using vps or similar, in the root shell, > what vservers processes are owned by ?? Have a look at my little wrapper :-) ftp://ftp.sernet.de/pub/vserver/vps2 Krischan -- Service Network GmbH, mailto:kjodies@SerNet.DE, http://www.SerNet.DE phone: +49-551-370000-0, fax: +49-551-370000-9 From vserver.error@solucorp.qc.ca Thu Feb 21 11:44:55 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1LGisAh014803; Thu, 21 Feb 2002 11:44:54 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1LGNU415790 for vserver.list; Thu, 21 Feb 2002 11:23:30 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp-send.myrealbox.com (smtp-send.myrealbox.com [192.108.102.143]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1LGNTR15786 for ; Thu, 21 Feb 2002 11:23:29 -0500 Received: from dad kgehring@smtp-send.myrealbox.com [207.34.100.84] by smtp-send.myrealbox.com with Novell NIMS $Revision: 2.88 $ on Novell NetWare; Thu, 21 Feb 2002 09:23:28 -0700 Message-ID: <000201c1baf4$3370c6a0$0100a8c0@dad> From: "Ken Gehring" To: References: <3C74E2AB.9246.23E34C@localhost> <000b01c1ba88$011a3d60$0100a8c0@dad> <1014283511.1664.42.camel@amd.vsen.dk> Subject: Re: [vserver] Having a small problem Date: Thu, 21 Feb 2002 09:23:29 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 163 Yes it is using the ctx kernel. I double checked, recompiled and made sure that lilo was booting from the correct kernel. If someone has a kernel with the IDE SCSI emulation compiled in (not as a module) I'd like to try it out to make sure it is not a kernel problem. Ken ----- Original Message ----- From: klavs klavsen To: Vserver Mailinglist Sent: Thursday, February 21, 2002 2:25 AM Subject: Re: [vserver] Having a small problem On Thu, 2002-02-21 at 04:29, Ken Gehring wrote: > Made a new vserver (v00) and still all OK > > When I go to start the vserver I get the following > > Can't set the ipv4 root > : Function not implemented > > > Everything seems to be OK in the config files, I just seem to be missing > something small. > > Any ideas???? > try checking with uname -a - that you've actually booted on the right kernel. if it doesn't say "2.4.17ctx-7" somewhere in the line, then it's not a ctx enabled kernel (unless you changed the kernel-version at compile time). -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Fri Feb 22 01:42:34 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1M6gXAh022376; Fri, 22 Feb 2002 01:42:34 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1M6M2m29889 for vserver.list; Fri, 22 Feb 2002 01:22:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1M6M2R29885 for ; Fri, 22 Feb 2002 01:22:02 -0500 Received: from remtk.solucorp.qc.ca (g36-124.citenet.net [206.123.36.124]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1M6PK647435 for ; Fri, 22 Feb 2002 01:25:20 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1LJiNa02497 for vserver@solucorp.qc.ca; Thu, 21 Feb 2002 14:44:23 -0500 From: Jacques Gelinas Date: Thu, 21 Feb 2002 14:44:23 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] [PATCH] per vserver socket-listings in /proc X-mailer: tlmpmail 0.1 Message-ID: <20020221144423.7eb8e75c6934@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 164 On Sat, 16 Feb 2002 17:44:34 -0500, Martin Josefsson wrote > Hi, > > I've attached a small patch to enable per vserver /proc socket-listings, > for example in /proc/net/tcp ... > > I've added support for unix, ipv4, ipv6 sockets. > > It's been stable in my testing here but YMMV. Cool, I have added it. This will be in kernel ctx-8 tomorrow. Thanks! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Feb 22 03:12:36 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1M8CZAh023068; Fri, 22 Feb 2002 03:12:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1M7wnt31364 for vserver.list; Fri, 22 Feb 2002 02:58:49 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1M7wmR31360 for ; Fri, 22 Feb 2002 02:58:49 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 0AE681000 for ; Fri, 22 Feb 2002 08:58:43 +0100 (CET) Subject: Re: [vserver] Having a small problem From: klavs klavsen To: Vserver Mailinglist In-Reply-To: <000201c1baf4$3370c6a0$0100a8c0@dad> References: <3C74E2AB.9246.23E34C@localhost> <000b01c1ba88$011a3d60$0100a8c0@dad> <1014283511.1664.42.camel@amd.vsen.dk> <000201c1baf4$3370c6a0$0100a8c0@dad> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-EMO/AA9bRvZtXeEa/aIg" X-Mailer: Evolution/1.0.2 Date: 22 Feb 2002 08:58:41 +0100 Message-Id: <1014364723.1648.0.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 165 --=-EMO/AA9bRvZtXeEa/aIg Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Have you tried the Stock kernel from the vserver site? On Thu, 2002-02-21 at 17:23, Ken Gehring wrote: > Yes it is using the ctx kernel. I double checked, recompiled > and made sure that lilo was booting from the correct kernel. >=20 > If someone has a kernel with the IDE SCSI emulation compiled > in (not as a module) I'd like to try it out to make sure it is > not a kernel problem. >=20 > Ken >=20 > ----- Original Message -----=20 > From: klavs klavsen > To: Vserver Mailinglist > Sent: Thursday, February 21, 2002 2:25 AM > Subject: Re: [vserver] Having a small problem >=20 > On Thu, 2002-02-21 at 04:29, Ken Gehring wrote: > > Made a new vserver (v00) and still all OK > >=20 > > When I go to start the vserver I get the following > >=20 > > Can't set the ipv4 root > > : Function not implemented > >=20 > >=20 > > Everything seems to be OK in the config files, I just seem to be missin= g > > something small. > >=20 > > Any ideas???? > >=20 > try checking with uname -a - that you've actually booted on the right > kernel. >=20 > if it doesn't say "2.4.17ctx-7" somewhere in the line, then it's not a > ctx enabled kernel (unless you changed the kernel-version at compile > time). >=20 > --=20 > Regards, > Klavs Klavsen >=20 > -------------| This mail has been sent to you by: |------------ > Klavs Klavsen - OpenSource Consultant=20 > kl@vsen.dk - http://www.vsen.dk >=20 > Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 > Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA > --------------------[ I believe that... ]----------------------- > It is a myth that people resist change. People resist what other > people make them do, not what they themselves choose to do... > That's why companies that innovate successfully year after year > seek their peopl's ideas, let them initiate new projects and > encourage more experiments. -- Rosabeth Moss Kanter >=20 >=20 >=20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-EMO/AA9bRvZtXeEa/aIg Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8dfox4c1kHlhtW8oRAkK3AJsHp/MFrMdSXLW6zXrShnJC68gOVwCfS3AE Ht8xw/MJodUVC6Vh+UBAn24= =x3ea -----END PGP SIGNATURE----- --=-EMO/AA9bRvZtXeEa/aIg-- From vserver.error@solucorp.qc.ca Fri Feb 22 04:20:34 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1M9KSAh024738; Fri, 22 Feb 2002 04:20:28 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1M8hsw32034 for vserver.list; Fri, 22 Feb 2002 03:43:54 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from web4.internetx.de (web4.internetx.de [195.127.139.92]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1M8hqR32030 for ; Fri, 22 Feb 2002 03:43:52 -0500 Received: from thomasp.internetx.de ([195.127.139.8]) by web4.internetx.de (8.12.2/8.12.2) with ESMTP id g1M8hkeG014087 for ; Fri, 22 Feb 2002 09:43:46 +0100 Received: (from tomtom@localhost) by thomasp.internetx.de (8.11.3/8.11.3/SuSE Linux 8.11.1-0.5) id g1M8guv15658 for vserver@solucorp.qc.ca; Fri, 22 Feb 2002 09:42:56 +0100 Date: Fri, 22 Feb 2002 09:42:55 +0100 From: Thomas Preissler To: vserver@solucorp.qc.ca Subject: Re: [vserver] vservers inside vservers, multiple IP Message-ID: <20020222094255.S936@thomasp.internetx.de> References: <20020220133347.efe1321e47f4@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.2.5i In-Reply-To: <20020220133347.efe1321e47f4@remtk.solucorp.qc.ca>; from jack@solucorp.qc.ca on Wed, Feb 20, 2002 at 01:33:47PM -0500 Organization: InterNetX, Regensburg, Germany X-Uptime: 10:36pm up 1:48, 6 users, load average: 0.01, 0.02, 0.00 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 166 * Jacques Gelinas wrote on 20 Feb 2002: > On Sat, 9 Feb 2002 20:33:14 -0500, Christian wrote > > > binding more than one ip is often needed for Proxy-Servers, > > Backside-Databases, Maintainance-Networks, Intranets which usually reside > > on another nic and dummy devices are just a workaround like using > > iptables/NAT currently. I dont think that the 'single-device' is a > > flexible idea. My idea was that there are two (or maybe more.. but a small > > static amount) of ip/mask pairs, the first ip is the default ip whcih is > > used for bind(0.0.0.0) but all other ips which are match the masked ip are > > bindable too. additionally a nested chbind within a vserver can be used to > > constrain the ip/ranges further (i didnt tested recently if recursive > > vservers work .. would be fine either). > > Nest vserver do not work for now because of the lock flag in the new_s_context > system call. The idea is that many resources will be constrained on a per > vserver (per security context in fact) basis. The lock flag prevent a process > in a given security context to "hide" itself in another security context. > > But if you remove the lock flag (in the configuration file), a vserver inside a vserver > is possible and will provide the same level of performance. The chbind > system call has also its limitation. Once you have chbind to one IP, you are not > allowed to select another, except for root in security context 0. > > Now, this idea of a vserver inside a vserver is introducing a nice solution. I have > already talked about the concept of vserver instance. As a recap, the concept > is to have several copies of a vserver running side by side. One is the production > server, the other is a backup vserver (old version of the service), and few others > are test vservers. With unification, one can easily create a new copy of a vserver > for test purpose. > > For example, you have this internet project running on a vserver. You have many > many cgi/php/perl stuff running there. It works for several months. Lately > have reworked the whole project and did many changes here and there. New > SQL schema, new scripts, new apache version and so on. Rollout time. > > Using vservere, you can clone the production server in one minute, then install > your new version and test it out. Once you have iron out all the installation > and automated it, you clone stop the production server, rename it to backup, clone > it and apply your updates. you start this new vserver as the new production server. > > All this is fine and I suspect many will start using vservers like this to apply > large updates in a controlled way. But there is a flaw. You must be root > in the root server to do this. > > Now if we apply your idea, we could end up with a virtual root server, having > the ability to create new vservers and assign some IPs, out of a fixed list. > > Now there are some problems with unification since a vserver is not allowed > to operate on immutable bit (by default, configurable). The solution here would > be to grant the first vserver (the virtual root vserver) the right to play with immutable > bit, but the this vserver would not use unification. > > Anyone interest in this concept of multiple-vserver-instances or vservers > managed by vservers ? It sounds way cool Yes, we are *interested*. We are a big provider and this feature would be very useful. We have many customers, who work as reseller, so it would be great, that we can set up multiple vserver an one machine, one vserver for one reseller, and the reseller himself can set up vserver to give his customers a virtual machine, too. So everyone can work as root on his machine. That is the main advantage. Give me this feature, I'll test it! Bei Fragen und Problemen können Sie sich gerne an mich wenden. Mit freundlichen Grüssen/Regards, TEAM INTERNETX / UnixSysAdmin ________________________________________ InterNetX GmbH, DNS Service Center Maxstrasse 6, D-93047 Regensburg Thomas Preissler, Preissler@internetx.de Tel. +49 941 5955916 Fax. 5955968 From vserver.error@solucorp.qc.ca Fri Feb 22 05:24:02 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MAO1Ah025072; Fri, 22 Feb 2002 05:24:01 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MA87a01238 for vserver.list; Fri, 22 Feb 2002 05:08:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MA86R01234 for ; Fri, 22 Feb 2002 05:08:06 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 40CA61000 for ; Fri, 22 Feb 2002 11:08:04 +0100 (CET) Subject: [vserver] rebootmgr function? From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-NlhPY2oEOKAwy0MMZ2A1" X-Mailer: Evolution/1.0.2 Date: 22 Feb 2002 11:08:03 +0100 Message-Id: <1014372484.1649.4.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 167 --=-NlhPY2oEOKAwy0MMZ2A1 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I'm writing the man pages for the different vserver binaries, and I'm at rebootmgr. If I run it from my box, with a valid vserver name it just freezes.. (how long am I suppose to wait? vserver stop;vserver start - finished quickly). if i run it with a invalid vserver name is says: bind: No such file or directory. What's the purpose of this program? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-NlhPY2oEOKAwy0MMZ2A1 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8dhiD4c1kHlhtW8oRAnMWAKClfm0eq6FpGaZgFdk6W1DpuIKZzQCfVkLb 3nRL9P55jm+eGWtvgjcv31U= =kqeN -----END PGP SIGNATURE----- --=-NlhPY2oEOKAwy0MMZ2A1-- From vserver.error@solucorp.qc.ca Fri Feb 22 05:42:50 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MAgnAh025183; Fri, 22 Feb 2002 05:42:49 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MAPC101746 for vserver.list; Fri, 22 Feb 2002 05:25:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MAPBR01741 for ; Fri, 22 Feb 2002 05:25:11 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 790251000 for ; Fri, 22 Feb 2002 11:25:06 +0100 (CET) Subject: [vserver] man pages - reducecap questions From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-cFykInqOiKnCqdPWyKcU" X-Mailer: Evolution/1.0.2 Date: 22 Feb 2002 11:25:05 +0100 Message-Id: <1014373506.1649.11.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 168 --=-cFykInqOiKnCqdPWyKcU Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I'm running through reducecap with strings. i can see three options (I've only found one of them mentioned in the docs). --secure (mentioned - removes all unsafe capabilities) --show (shows current capabilities) --flag (gives me a segmentation fault)=20 what's the idea with --flag? what are you suppose to feed it? is it possible to define which capabilities to remove? other than just what secure removes? can you enter --secure (and then add extra capabilities to the --secure standard set?)=20 I'm gonna figure out, which capabilities --secure actually removes and put them in the manual :-) Anything else I need? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-cFykInqOiKnCqdPWyKcU Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8dhyB4c1kHlhtW8oRApVwAJ0f3yUd7S9AT0qp/0WRl/c2jtKMWwCfVL47 nYWYjM6+8KU5lQmqeRA4Afo= =olIt -----END PGP SIGNATURE----- --=-cFykInqOiKnCqdPWyKcU-- From vserver.error@solucorp.qc.ca Fri Feb 22 07:39:07 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MCd6Ah025813; Fri, 22 Feb 2002 07:39:07 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MC7Za03828 for vserver.list; Fri, 22 Feb 2002 07:07:35 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rhenium.btinternet.com (rhenium.btinternet.com [194.73.73.93]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MC7ZR03824 for ; Fri, 22 Feb 2002 07:07:35 -0500 Received: from host213-122-197-214.in-addr.btopenworld.com ([213.122.197.214] helo=john-new) by rhenium.btinternet.com with esmtp (Exim 3.22 #8) id 16eEU4-0007X8-00 for vserver@solucorp.qc.ca; Fri, 22 Feb 2002 12:07:29 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Fri, 22 Feb 2002 12:07:10 -0000 From: "John Lyons" To: Subject: RE: [vserver] rebootmgr function? Date: Fri, 22 Feb 2002 12:07:08 -0000 Message-ID: <007e01c1bb99$749ea930$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <1014372484.1649.4.camel@amd.vsen.dk> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 169 > What's the purpose of this program? It allows each vserver use to reboot the vserver themselves from within their vserver. It should be running on the host server only. It listens for reboot requests from each vs. I don't think it's designed to be called directly. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 22 07:46:04 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MCk3Ah025868; Fri, 22 Feb 2002 07:46:04 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MCUsx04258 for vserver.list; Fri, 22 Feb 2002 07:30:54 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MCUpR04254 for ; Fri, 22 Feb 2002 07:30:52 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id B3D341000 for ; Fri, 22 Feb 2002 13:30:48 +0100 (CET) Subject: [vserver] man pages for all vserver programs From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-OCqirz27NpKTZ9WgMsoI" X-Mailer: Evolution/1.0.2 Date: 22 Feb 2002 13:30:47 +0100 Message-Id: <1014381049.1649.30.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 170 --=-OCqirz27NpKTZ9WgMsoI Content-Type: multipart/mixed; boundary="=-PFW12iP9PDiLw6QhETJ9" --=-PFW12iP9PDiLw6QhETJ9 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I finished the man pages for the vserver binaries. I couldn't find a proper man-editor, and had to use manedit. This means, that the formatting of the man pages could have been a lot better. I've done my best with the program available :-) If you know of a good editor, or have the time/need to improve upon the formatting yourself, please do so :-) I hope they are all correct. I found some extra --options for reducecap, by using strings and looking in the source code. I hope I didn't misunderstand the --flag option? Well here's the Man-pages for all you vserver users. Please take a look, and check for mistakes. If they are all ok, I believe Jacques has already said he'll include them with the next vserver-utilities version. --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-PFW12iP9PDiLw6QhETJ9 Content-Type: application/x-bzip Content-Disposition: attachment; filename=vtop.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWbq71FIAAHFfgAAQUefgV+9v326////gQAI9mV2SVhpGplPEgGmQ0AANAAAAASpk TEwkxT0ap4ptQMgAbRNPSNB4oGmpplMpkwpptTT1AAAADIAaAanqSNGgaNNAA0DCNGgZNPUGgY7E rACokFJaLC6ASSjOECiMQBIBMw4qGRX/2jxpIftlgt/DhNwU48RW7KiSK3WSlBs3uaVMif9iVeVj clEupc2JW0k6LioWM8B+jnvDs79+deuvV5Olgzr2YPpGikmjCx8gDY8OZLbE8/MuAgO08MZFjqz/ UDY9j8mHBmCU5SAnSydTg9g7oVatu5PXju8T4jeoGAJQi4JHI3LQNNXUB3sd73p+aQHdktBVBl77 bOrg3TlihTACaxvWFn46BKguBKG0TK4rtZzOQFivetr1qcVTKYkaoSN8PelktF8BlbdE9LfmgPru 1zXjTQWal1y1GZxDB3aykQnBIFFKDk3S4wx6IqmxfVFxKIoiE3y1nNknmCVrJi6M1+wVCeVYMjbk isYewilP5g6wcKbSSuZzyaOxWCRwEPApFt+D9o/QN+5xmEoX6wtWMYqosjVq2eWJJI8ipECoUqIK T9mEYlQKNSRNVKpkJmuMwIOYCyaIOvbEaKfot1tYF6VktkDPWP0rEny1Wh5ydN2bGiejUqs9Y+Im hG4MZlbPBc5scLyaKJjGGuuBB5wudMZhAMUlTj7Sx4Cuyf9aKaHjFYZawpZ3VLWSQCMGE8kbkKFC YPiRtNs5tJEd3lz23JZjfusLaMVlA/wvwBDfbDpcCDjJ04TAhYkh/i7kinChIXV3qKQ= --=-PFW12iP9PDiLw6QhETJ9 Content-Type: application/x-bzip Content-Disposition: attachment; filename=vserver.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWfOUv4IAAKXfgAAQUefoV/9v326////gUAM9cjrarLbbQNCaJlNqmM0p6npqnk9T ap5NI9TJoZqNN5RHqPQJJCnjUyJoptPUNTTQNAAGmQAB6g0BEZTyjUeiGjQAAAAANADTRUaBoABo 0AAAAAAAcwCYCZGAEYmJhMJghpiaYHIrACKoKmaYjndkYsEClAbiBGKOCsASAfC+H480xF+O8hP7 ZCR6joEJUFFzw3yNJHZ++LnJgYwlH/LgojnF+EKggjxVa1N5oynZjdhtwKkIpiRtUJM5ssQMLhGm 04wYOryY5YIXGxMdRBJCVpg6FvKSsGWAonQGPEDx8uGrm+Uey3DYCK22jjoZDoRZPjeYAfCBunAg Gs2GzfNp6deencACZUIU8rqrl45Xv/Kd1lXfMbJ1+pAe0VLPbL/hlYb1a58V2kW1AuzFcR5tcRqA Hh+CD7uDjHVv0A+al6Jt+b0JdeOtYpMjOb9M0vtHdxbWL7ALQzRuX1kEImlGSHClg4GNOuYAGnfc zVt39sxwIm7g8X93gQhOGEyzWvEyFF/kBKXPX8UMpifAAjct2PnFnz+xCivD41lzzhQONlOG8tNV bgwasXK6JQbO0qFzuRjOmmKh5lwMh6aoAquoLNF4vALXIOkm1xNhw602pxngMRkRYzImPM6VqQBN YgVEdDIDE2NmRhS121QsbAZGvQx4AAPQMErjBZRdZSp6Z0BC8G0kJc915E5wsFrxeoFnUVNOMyCU nqWXlmAna56ajz/FIWgxSOdah057CStgEBWOQFu7QKYKHoEN4yIqaGFUoCnGyjeeVhJEwoCIoUGM +gTkTcJkVQcy+skmkLDzWo4Bkcut25MclINTNK8tsCKPYxPdgoNwkUuaxPhnJ2gaiISuDpVtjygV wWc7+ciKAPrMZTAR1UAhqLUZRsXCRhi3YLSshaSmV5CA33AImgHtXK+T9QONWNbI6pxYx5CFdg83 atwyZMDAmWTLirB2NzVHsvo7Rdjpna3NQnb1rmByy8LFdRNJgeSEPoYUSmmyG2tw5jAyFOY9DK8z jwWFYGAP0DWPLBGMSwOje/N4Oe2C1uO0NNlYkmxoCUEtocDRdUkzHTG0V3mTQo/iYVzIy2uLl/4u 5IpwoSHnKX8E --=-PFW12iP9PDiLw6QhETJ9 Content-Type: application/x-bzip Content-Disposition: attachment; filename=vserver-stat.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWcf9FYEAAJp/gEzwBABZ5+BX72//dL////BAAly0qzWlDSNEyapsp5TTwU0ekyPU Yj1ANPUDRmp6jIAaQAp+o0FNpGyJo0AABoekAGjT1Ac0yMhkwQ0YTBGmjRiBpkyMAAQSmk1BoIaD Snog9RoBoaNBkPSAGg8pRWzCZFQndDihdPx+dGlVULr3rdHXLBmrqKZbZ60yQJMNReOc0xMzgBKD oQXGPT7ILjzAkyT1wx4+e5Yl2FXRUuRaUzaqIbVvEf0Z5Hy2oa3sMTzmIgDqRCD4JY58Un4BTTMB 4kVhK3ywZ5eY8OrlAJ/EMTZtOBSNRW5JAQDNJExC2vw4iIrowu9+d12uDQ2zN0ZuM0GdhAQYCEUt /YDqC8NLrlY0Diz2PVWrtGlYMicMupN3pAxA8ad4itJVLbc8ThbNQRU1MtHDFaqJlSy4IoE9JFFa tEia25pY6HTrEs0azniRGFZKUEHV9OJ6b2qPkHkEupSHKf6m61kUIQ/nMCCRHzf06W3XNyOcJ2Jq D6kPuSHSWPhfBjMEIUJojEo6cDgjVuMDfmdoX3rqievsYQTkeevPFtNkh0Xy4jI0JjftkBm5csrG bNobH5GnBd19hhVabFaxyTV/92PFDCJAhTlFJXOrbY+lLW30LMTi8IxRS2wGYwAZToYmZCUz3VlI R3pZcm79Ge6dQ7PO5NIlIVqaP4qKE7M6qsqVQqWS6kIvKnS1FhcqAHWUjKt75R8uOydhmwVqv3pP xo1yvbiHItSGeKRF/LoHpc00xYsSkB5Etf+omtNlvZK4JTDnTNlvJozLTLtDfbjuycGyNXoUtFlB VEKWzIzLY5hLoYRRIMQNZLSWo6IPdAONgskCRB468mOvGDzTtn4rdXcj0RlzAQGIcB+jnZ7X2yJv HGzTuxKua//i7kinChIY/6KwIA== --=-PFW12iP9PDiLw6QhETJ9 Content-Type: application/x-bzip Content-Disposition: attachment; filename=vrpm.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWcx7E1IAAJvfgAAQWefwV/9v326////kQALbGLp27dztglEIExNTZE9NJ6T1NDNQ aaBoBpkaaANEyaTCaE2oapoekABkNA2iNPUaYmglNESJ5RkA9TTEAZGQGhoZAAAlNQImNUyPRGg0 MgAAAaAAyLr6Izyfueg9kNbmJ1tK1Qwk6abkcnmhiwcIJAM/9pvYV9B8izh1lwVuIwdp+9KNERst te7pW6pjo/sgnZy9V4arQPLzILxYJqFUh1mMU4G8L5Fky7gYQyTDC46MFbOFXuoYvgSI9xJKZP73 6xBmmcxPZpzgc/449+PJjnstQS0L9VG7C1aWNvuh55UB0pEzHsES5VcyPyubJmmnvIgNkoJJ5j97 Me6f1i7pNGl9FaxG96BLQm9NP9jco9tXi449ji3M7LsbzGt6BdDwERF2sNMBApEeNeoxICo9ogXb fALvrMC8yGTR9TcEts1OFMgBN2Jsv8zDqZ81zpZoNjIb4TsipOp3TWpBtcG6D8b8hBGWxSHbFg9k c1UTf5T7Hj5m+oEcOj4x7X0Du7phrh1DPQJMCYh3Oa+UBoYMzLSg8b7ntnMVWSIYftRCJnLZwS6y 2r3hhN5n7JJObi/nKtKKRTrdmajdTMStTiy0iJLOEnExXoQ8CGVVtNejgTwaXK78ttuqRRAk14gG Im+DZ536GFLDS6Gxkd1KmFhMF4wP4mVq0yGD+C2mGTgSy4OrxgxUIRCYNUrIt3dbxkUVM9I7uqRE EOIdQDoh3a5FcVwuHFXwGe0SmZ4G4zQnjKLxYsmuoX6bBJRUjknSYaygYL7qizNVtE55MD0JITYk XUA7ZJRpHESF4sVsiiqsZeUAeIVwjpjmGeOwps04jxWSanYMVY18ehjCVVFAVIVmUpz6647q+T9A 3LNeZLUNfBjC47VYNqxA5jIokwreozm1BM5j11DijAaceO6/DdxwINcqrBta3VfLKm52btnqBnIs 0UY0wo1sX71pa8o6F/i7kinChIZj2JqQ --=-PFW12iP9PDiLw6QhETJ9 Content-Type: application/x-bzip Content-Disposition: attachment; filename=vpstree.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWUuSBdMAAHFfgAAQUefgV+9v326////gQAI9sVZrUhKmgQaKeQT9QTQwQMQyGmI0 MmgaIaJhASeieiPUADQGgeoZB6QOaYmAjTAjCMAAAATCMBKaST01Mp6mno0mmJoaANAADQZMRZng BQ4nV1W4sJAsoxaMYJAloPHOZM+zS33aHAMB04YQYBHHEKXdIHASnSEHLi1iwTFWCH2wSaUSUpBK YUyjZXoUIIpNpDm5ag069UaMsMlzAoVlvcS2tLdnnbJBQNg43KeyLYU4hQb6yWqPfer4Wpr/pDN2 9mgWvOoKqFTxtcRmMd14Z9rcjMexmw1uGASEfdZtZO9DzvRAPUmaWnrk4M1QpE5gqmvTl9l27lhi VYAiqapTk+MgUg+0tJrLFYnb+nROg8wZHYdTp1Xc7DNM4zTfbeD1PTKEvM7rfim3ANualaZRi40S LV2yN5wGdrUpiojN6iUZGDEE7I1PfUyVd29JwWJwOSeYokOJFMaMJraiJWqqqGe5gf1CoKbKp2lb sTsx0EltaK5rRMOYyh5m12QG2VyJLYENxArjffpOQY7Dy6SrjcK2Na1jCptFurXO0mjIUE0B1AeC WlPNMoBPdkltUwa8lbhUnQt4Cl/deGOl8h9y6p4I4ZrglqnCO3K8DhAMjIzlK/MSxZd13bnIyEzF xQrZrLdNb4KWmH1QZy7KfDVWRifG2yIKtwFhwljrmnziikiD/6oRc1jFqtoCzRrVlUhTAEgQPyMr c2YApnjRGKxATX72bRQaWVXoHyJWkjGpyqA2D2lPkcFHE1FwqFEzX/8XckU4UJBLkgXT --=-PFW12iP9PDiLw6QhETJ9 Content-Type: application/x-bzip Content-Disposition: attachment; filename=vps.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWd0oBmAAAHFfgAAQUefgV+9v326////gQAI9mFjpgSoGknoSeU3pNTIaYEDygaDN Q0NAGpoZAQhHonoTQNA0B6gaDQfqjQin6mlMnqbSA0YRpoBo0AAaA0AShFPTQmp6elPTKYgaAAAa DQDIXoZwFDCstizwQVQXOIYDMCqCr9nfpNzT/fifFocxTQuzXri0CVKBbLogoidRxi5kkawNBAl4 hH7aJoJuqKRVSqeGwQhATAL1DK/68Dv878c9MOTJnUFabqFTF1RwukmUEyIeqnurdNfzig3Ul6iv qx074w4/Gazo5+wYy1QUTqlxR+xugTLmludpbo2t2nog0CQr2MLmyvWd+OsDYp1j1+88g7XLQX1i qXwTVc3DVgWT8IEzL1LJE9ojEHxYuGBqs6brSCxDk05c2tJVYrWlkELIfLt71PXqB9Z9UKH+6wly HhPGKOIzkjLZlAojKiHZILgtSyUGEmp2N5KzZiy5W4YvKIjCqUwoyGtKIElqqoRq720BUFNtUyRn tVkQ5SK4fuT8A8YzFDPTXa4fY0yxkKexSYrssO41hwSgbRFrrzE573ucVvw216KEikIiuVHCAZIM CcISkGRNV6IC2zYsAKNwIBB8iqK1XSS0vwU+R2KqjBMX5DBjaYp1XThvoqKiqYcO7ejhc9zMnIQi LWrpIls9MmvpR40E1PGFcMlizKZKpEIHrsPpElMBiKU6fD6sorshtwCTka1i7awwjRGKwGp4CjBi G43C5Hh8BmlJgiH6M+TNWR4sGgxCatSmC9yxWBtCzJ2+sAkyqjYKgSDVb/i7kinChIbpQDMA --=-PFW12iP9PDiLw6QhETJ9 Content-Type: application/x-bzip Content-Disposition: attachment; filename=reducecap.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWVwdf/8AANLfgAAQWefgV//v3+6////gUASOt2FrNbQYpZUEogRomI2hGp6mTUMa TEaaZMhppk09IBKI0E9U2k9SaeqHomT1AMIGmQaAPUHqBKBEA1TxBNNJpp6TRpiMjQADINNCJok0 PUyMgxMIMRpoNqaDTRoANA5oyYmACYjAjTAgxGCZMAjFWVPj6Az+EG75xVEfpiNa1a1m6ZpOwIwR Pv4erZ1FDhoIBFQyAAiACNFQnf8JizlvBdi8oKeXejTInuMWEZTJHdFvYrQ1ltie4muUYG65ib08 xsxxqN2OPOlctt+UEzK6r4aRME2uMwal8lCr/vKbVYiylpQ0zsmjwRlgNSfbKcDAx34GFaylZ3DP iKq5KPIvZnqp0XkJDDVFFT3WFDHpozNbOYFYOrrtuXPVF7vA2KbPHZLsz8HDzoJ0Ih2Yzk2nIdbp ubUgW3vxjP5iHIyKoQrtzoBOoemgn0VdUnkuLa5HG+kgUo7WjvzN38p7+v7PRWsb9UDUScFWrt1e o9/QdUOrYbt5ujx83kgiOFlEpmn/KmSSMngKqIFJ8JYy1m8vThlNVqScx3pk5JWxu7vdfeyo+EQt qnyixWcUkEcdRdo3L66gLkqmu1W3fDLcdssdZu0fWRIrwzXeiyM1LLaT1aGVeRA2bYbYSdXvuylt Wm1oJwetzP2+cXgvljU+9b4ZrPGopc3FmqpDFFBjaSepjGuuQRMLxqReYwYWaNFkaVkspmEYyUtX UBKEIPRDNEHCjZ6bF8tFIwfYMiwjwKGgOEjsfu3xq2vCRFGDHVWAlD0vVTxDnrD037dxu6uvTXWK rGZMDkVDJYUFVhiSsvAQgjFuZzZURH3HM8+z8TPnosOO6JB7qxGEDHfMM3/EZp7cExVIE7hX31RU S4dlI0l/V39wT6ImIoKqJuSvWiOlQjNCkrOvSQW9LV0uutJC/IMi9nBZNKhzw5CJpNNNeqFdGVKK DrNd/YvlqWkh1KrX7LGylXEbamJ9bQieOh4KYLXNEYXgsK0tkFKuquB8WGcydXjEUqfHdUNLYC2X iWzNRXqd+K43zLMwGT7gmFZAvUNqT0wmxyBUt4tgrrE81mWuzyzmUw3WruZFRBRzGjYJh00X7Zwi cZQ8iufhMi5MkShKGCcBrUhg+Cd0Wg7VtaVxBlrEFDlLjF2hdC395d3BMX87CcKmAlAuthi5M0H4 NxV0zxdluER+RddoaJIWmDbXT0SwdgZiaDIKcsIyDrV3qJE0erHqjBpsxqTJU7bUzqIsX0lzzGLB cK4YMk5GKFswarLtKVzUVuLAevy8imyBBJLxRS5iYCUxsaCUYTy23yTHv4UcDkL7+XxFFTY3CO6S wqhZo7LYc5cx8Wrjc2O8uRg0KiHKVCjXsQ5WTD5wkkZknlqJqQ3tSZBS1nKVX8wgV7+plDDDpLEL lZppB1PiSasB1N9bStEtzKu2xN1cqZ7I4Yzmlya3Wj0xmzTqibdFUmu4KjKk6UWOclVHLIJQJk6G UMZiZvSQ8ngOQ24tekIVXItu5E4/I/Fp495mVISyDfNHmJwSlQ6skgxI11DB4DOskNysiKCio1mk NedFxQV1wvtOX/i7kinChILg6//4 --=-PFW12iP9PDiLw6QhETJ9 Content-Type: application/x-bzip Content-Disposition: attachment; filename=rebootmgr.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWVZzzTkAAIvfgAAQUefgV/9v326////gQAL9a1KaUqmGiNTTVP001J6nimTJkbJB 6mmmg9Qep6h6mQDUxBqYjVMGmkbU0aAAAAaANDmEwCYATCYTTAAAJk00DCU0QQEGUxEbSNHqZGgG gDQZDRK2DtQz+SREZq6r9fCGbNNMtBrDmBIEnys7DRfP5pbh/bi+p5JWXeio/fGoQOBwNqnUIlzs qGzWxWH3ON8bgllS3WXqDtdcQro6cm2it1aqsXZEGnGcoHjqCKbjdA0MjQ2k06FRNOma0eRi3P7Y rHcnLUQKx40Bip+GalJGCJo7BjGfgnOWHPjp6AYjy3Ko+r/dOV+I++23uly+rtIdm0KV3EBXNiKX jp3heQRVc0l6ahm1UMXXfFeLmBYAcHFx94IPbf4IoKxHs0cjB9Wl6aL9aKkvjca2NIgcmZK3TI7I 27M0YawL31KkvzmOYFM0rcob8HWcBKrSwOxNI7a5fBUYqyALq9XaxnaC8SftkRYNcN2xIicGvAR2 00axj+TX9st9dc7PeGVtDdeJUhxrP69VjSi4m1C2KHccQYiRvsqqzps1Yl6bXR2lH2rXiRNy2jEt FWsoSeM0Uureg1nBAdLbKZleRgmGAWhQxMCkI9EmTOrCv1BqhSMn4nOWNTG6l5nobkUepDWRB3Rr 0cezInZLdsvma9wcJzzxKkBwH77h6Y7YZWuapb3OBmZa79xe8Z9YDb7+QljCjWmUIYEmkMLIQY1w O1g2MrmPKRi5oRDliZ1A+4UhkJlLCbwCKfxSKIUznKDqZ5sLfk7Ym42vOJcjriOtYXpbHHhIOZiw g2ypGjB9NJ9TcNcWhxiuk5wypVP+iyekT300CJ3BCImUJjlJ+FU6i73zenG9oR05sdF2mmULbDNI dzVWNl3+Fj5VWERVQIgWTAKbuI8hA5Aw332otKb8+HEcX2Ahzm1IemsHsnWsp6knCSKF7NG/lsbB ibVWV1zWuTvwRb0tEXWbceOV1zaNEuWcbs/FWVcdDNvkaw7x+BJzmTCfjJ+mk6Ixs/xdyRThQkFZ zzTk --=-PFW12iP9PDiLw6QhETJ9 Content-Type: application/x-bzip Content-Disposition: attachment; filename=chcontext.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWZPG/J0AAZLfgANQeefgV/9v3+6////kYAau+jg4dQO5qbtpSzNDTCSgEE0wjRo0 UzKZBoDTQaM0Q0yADU9IMRATVP1Q/VNNND1DQABoGgAB6hxkyaaYTIyBgRiaMEYQaNMAAgkKChoR lPITTNQNBoNDTQAGgNNNBxkyaaYTIyBgRiaMEYQaNMAAgkSBGkZCTYpqek8TUMTTRgmg2iHqNHqa eo8DtO9hQ10vnafXvh4PCKNAxNfHunsIZGibtmg/g+G68OeCznPw4X8NzloUm09Q62Yi7CZSJcrv CNANAZbEqsJBhsPODYN5Y4G4ghHz3tZ9lKmjHsza9HVgd9u4VpmcN92GrZmRre5JpOw0Xu6ZFBnE y1NOrooWdiN8OOhSfjGVrVqk0lWSYFcZTYy2mv2LdHHUrlkGPKjBhkwcI3+Zdj6XXTWhcLR5HVEo GpwhMTOSPHijFZPESTfKcgR2ikV3RtpYGlis20Jfn02nvpVhI36XIYOCDyCLPFqF9arLovBRwbNr gyXMNndC0cxqEh0yuqakVkmdwSlh18kGNNVCaZTWFaW3FAwFlY4AuZkwNJf1J5IuNzVjCVapBWW1 dktSuCUVKUw3BCJCeKOMA78eBBaed7vqNyv1h2d3J25McvFvoQvOkmQgRWYw0M0Ztkp+hXME6EWb HGnWN17XUx8AQMJoNbTVOU8VzrJDQwytcMen5o6LwS3PKybRu80dpJK0ym/WH8elJcdrCmJWLs+L lzevpck1rXfJBTXhx3yCEOfVEfiR5Vm4Ff3zRL0DW9O92iUdp9rp2ntqSAyMuT+JHr2001xBizDP mEfvNg/T3FvE78wOFtBLqgFWdFyBiGuvlS/KWtQYPcZNOe9s721+ADPMkzFsIxp8t5CCoVGtGlyR HMZR164D+hoaGM7EB5LiO3u/D2D8ntjzEj0+BVXoMxLzWF6cZn+vzqj/JHxwe4PnYqNFZ3SsfYyj TowaaZ+ca9cFBGFJEym3OxUpPviZJMxliw8s9YZKoNA17hbksoLuhsbO/sFXrnRLnwZAdA/FgFL7 +E0sbWWCIj5S8jmaMyRhlkS81BVYGiBjZ6mQONJyGvbtRYloFliAoww9sibYwNxwGwCQQeXCoiu1 dQtp4mdrnv6QyMRtEdTCPNOU+PROAIFdUEjCKTtZ97tCEiDyQWIEkvSd7DGjCjq6iok8GaGROROO oZplJYkUM9EB1q9spy1xBr0kSLSv5RMBDYdmt6zUgM58YrISRBcjZhIDoZkuinIc2GlLiKmpqAx8 crRbkFqeC7JWCgjirgInzGJC+IC5KzGuZmDDbAdDbBt1n0bcpLnry9Bq0G9OtQlWhRI5mmNNpRZI uGhFVptjO1YudzRp8Q/FhIgOMatgqrRTLWc9CSzsklyFTY6ihnS75nHit2BQRHfusZobaYwbavje RDYzdq68MxZRJQbGo9fM2PA2yWFumIqPZslGmmM4nKEjvDpOB6MSRkQFyPCTQZDGMaOZ3CjLWpmb 6bkUdWYOyl1SksSOAnAWVgplDGSKcGvauqpZOLJmVphCheKOcbqwboQag0VpRpwSSy01NjdJlaND aIbZIimBacCMKIK1CODVcAt3OznjWZBJAhzCtChcPf7oMo2o06giTlcCv13+zRXU3gM+4xY96HTR Wo0ke9oCcxsijBkKJrcr8hDcGm5jGazqfXPXUTq806lS2a5oEoF6rcTS1UQmdELf7tDM8DoYcpYK z0WpzAPSy5A0RQnnPMj1TloZFn9PJdSMabi3lxErzDUIghC4LEvPZbIkc5UNVxeiLFHtbxJKKhDY 4vqWLquSXvVOREYaaQz4sVXuZzdAeIz43yKolCjgVqrMJsmzVAe/CODCqDUA9zlT6rh01DPZb2En sGC4s8LWynXmrE4u6VN44Zspyzd8qE60tOQ536J4uzRRhGGV362TYVx1NKs+GIihQsAixokLJm9g STWFdoPBwWuFRcLWlMvBiUuaWb8pUFgoJBUshquTtlRNkCfF8SkMHWREGoJY4wqoOrDxl+VxdRgb IKi3KJX6mag7yOLm7JdTUJYMbJabEYriRYQioh6UCYln+sG/YOLHZnA1/xdyRThQkJPG/J0= --=-PFW12iP9PDiLw6QhETJ9 Content-Type: application/x-bzip Content-Disposition: attachment; filename=chbind.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWTDs16EAAJBfgAAQUefgV/9v326////gQAL9a1LaW2gwlEImg9I1MnqMxTQ9T0mm TRoZDT1GTQ9QaBAE0mmmjRNqmmnlBoAADQNMhzCYBMAJhMJpgAAEyaaBhKamiJ6p+oMKnoyCYm0A AAAAmJTc+ENC6I7vKafq0OwXKRoqTMYD+gkCV3LpVmWvFtdsOFnFN80l5+5Id9Zjal++yG+q2xo3 4naru+BnD75B2wcFrKOdR0zlE2ygMzuM2rVeJSc/OS7NcxoDnBGEVpYGSPVwqKrhhEGGKC2uLabF N3R6x6H45qUE0ZCYwQVluWNGB6I9AbFLPEemPfBjRWpEMf/4LCVuMc15/jZtXEz6dYxnigUyRhel zS6B2Mhp671bqieqBlVbqzdCOBMmT8nHbmi1NWKWBF+tnYPBo8dS9sdZHsw2sZBBJnuhNzIjzfTy 3ow2gUhYqo+t5Aw1JXpTucMnoq+yHZEnAr7vOnwKpBzB4U5BG0+8dHpEIt3XccNVr+OpxSEaARQh Z5FHtcY/0ZeqGkfcCwk8syoOrrVREOCaIKfcNJWV1rrGvEZk8IQZBYJH+wVqslVmvxNRN/DJfu9+ 4yY5QSwn3m+geOM16LnqO9IBQl++wvHGLzQA0Bc4kmETKfChOG+sPsAUAT1GtNiFourdCFBjYizp +UQ03HNx7Z5jLcSwEdQylCRbqAb0iV+IrSGhmRhZcGEL5WottiYHFDDBmMIySjpi2E9gOooM6kZw vYMgOEMFqsNYhAgxjbq3MVHiZKZKgmZIahAdmTJFHi7CJfSiVJlI22VQhRk26UJ9sAwjaWQRytmh 4lWZnigVTA0gqujb+M6IbCkmJyCguyrDJZU7pgdQpytkBoYF5o6u85BcgjwVzc8AXKtnpsiAwRBY JIdwr0ve8SFI3hmvNqAr+QcE1mSUJG/O+Yq/hvxSb7GOtGVUD8CSLoQZ2ozQExh4sRKOjhEquAgD 1yKMw6gMxHmVyicdt2bTmQtwvNkLdjo9hE+MNLiQLBjVoVBbsqXcuJVw2tP+LuSKcKEgYdmvQg== --=-PFW12iP9PDiLw6QhETJ9-- --=-OCqirz27NpKTZ9WgMsoI Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8djn34c1kHlhtW8oRAo3FAKCHDoY500hnhUwGbk8xn8x0qW75yACff2YJ ClYXznfYubJL22EZXdRVVP0= =kI6e -----END PGP SIGNATURE----- --=-OCqirz27NpKTZ9WgMsoI-- From vserver.error@solucorp.qc.ca Fri Feb 22 14:47:30 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MJlTAh029188; Fri, 22 Feb 2002 14:47:30 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MJToM13187 for vserver.list; Fri, 22 Feb 2002 14:29:50 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp-send.myrealbox.com (smtp-send.myrealbox.com [192.108.102.143]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MJTnR13183 for ; Fri, 22 Feb 2002 14:29:50 -0500 Received: from dad kgehring@smtp-send.myrealbox.com [207.34.91.144] by smtp-send.myrealbox.com with Novell NIMS $Revision: 2.88 $ on Novell NetWare; Fri, 22 Feb 2002 12:29:56 -0700 Message-ID: <000201c1bbd7$6cdefb80$0100a8c0@dad> From: "Ken Gehring" To: References: <3C74E2AB.9246.23E34C@localhost><000b01c1ba88$011a3d60$0100a8c0@dad> <1014283511.1664.42.camel@amd.vsen.dk> <000201c1baf4$3370c6a0$0100a8c0@dad> <1014364723.1648.0.camel@amd.vsen.dk> Subject: Re: [vserver] Having a small problem Date: Fri, 22 Feb 2002 12:18:33 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 171 Well now I seem to be having another problem With the stock kernel and a compiled kernel the system will not complete a boot. It gets to the point of mounting the file systems and can't do an fsck on the file systems. The / and /boot partitions are ext3 partitions. Does vserver support ext3? Ken ----- Original Message ----- From: klavs klavsen To: Vserver Mailinglist Sent: Friday, February 22, 2002 12:58 AM Subject: Re: [vserver] Having a small problem Have you tried the Stock kernel from the vserver site? On Thu, 2002-02-21 at 17:23, Ken Gehring wrote: > Yes it is using the ctx kernel. I double checked, recompiled > and made sure that lilo was booting from the correct kernel. > > If someone has a kernel with the IDE SCSI emulation compiled > in (not as a module) I'd like to try it out to make sure it is > not a kernel problem. > > Ken > > ----- Original Message ----- > From: klavs klavsen > To: Vserver Mailinglist > Sent: Thursday, February 21, 2002 2:25 AM > Subject: Re: [vserver] Having a small problem > > On Thu, 2002-02-21 at 04:29, Ken Gehring wrote: > > Made a new vserver (v00) and still all OK > > > > When I go to start the vserver I get the following > > > > Can't set the ipv4 root > > : Function not implemented > > > > > > Everything seems to be OK in the config files, I just seem to be missing > > something small. > > > > Any ideas???? > > > try checking with uname -a - that you've actually booted on the right > kernel. > > if it doesn't say "2.4.17ctx-7" somewhere in the line, then it's not a > ctx enabled kernel (unless you changed the kernel-version at compile > time). > > -- > Regards, > Klavs Klavsen > > -------------| This mail has been sent to you by: |------------ > Klavs Klavsen - OpenSource Consultant > kl@vsen.dk - http://www.vsen.dk > > Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA > Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA > --------------------[ I believe that... ]----------------------- > It is a myth that people resist change. People resist what other > people make them do, not what they themselves choose to do... > That's why companies that innovate successfully year after year > seek their peopl's ideas, let them initiate new projects and > encourage more experiments. -- Rosabeth Moss Kanter > > > -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Fri Feb 22 15:17:45 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MKHiAh029428; Fri, 22 Feb 2002 15:17:44 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MK23M13932 for vserver.list; Fri, 22 Feb 2002 15:02:03 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tincan.org ([216.64.180.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MK22R13928 for ; Fri, 22 Feb 2002 15:02:03 -0500 Received: from localhost (raanders@localhost) by tincan.org (8.9.3/8.8.7) with ESMTP id MAA12626 for ; Fri, 22 Feb 2002 12:02:00 -0800 Date: Fri, 22 Feb 2002 12:02:00 -0800 (PST) From: "Roderick A. Anderson" To: vserver@solucorp.qc.ca Subject: [vserver] Really base(ic) RHL 7.2 system Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 172 I've come to this list kind of late in my experience so I have a server running vserver kernel-2.4.16ctx-4 (I think). I installed vmlinuz-2.4.17ctx-7 but can't remeber if I restarted the server using it (not the default setting). While setting the system up I made some less than optimal - for a unified vserver - configurations choices. I think I can recover from these without taking the system down. But before doing that I want get my stuff in order. My plan is to create a very basic server setup that I can use to build other vservers. I'm trying to figure out what is the minimum list of packages I need to install to have a barely working vserver. Has anyone already done this or can you point me at sources of information on the topic? TIA, Rod -- Let Accuracy Triumph Over Victory Zetetic Institute "David's Sling" Marc Stiegler From vserver.error@solucorp.qc.ca Fri Feb 22 15:51:28 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MKpOAh029763; Fri, 22 Feb 2002 15:51:26 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MKVN714744 for vserver.list; Fri, 22 Feb 2002 15:31:23 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ahriman.bucharest.roedu.net (ahriman.bucharest.roedu.net [141.85.128.71]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1MKVMR14740 for ; Fri, 22 Feb 2002 15:31:23 -0500 Received: (qmail 19077 invoked by uid 1000); 22 Feb 2002 20:37:46 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 22 Feb 2002 20:37:46 -0000 Date: Fri, 22 Feb 2002 22:37:46 +0200 (EET) From: Mihai RUSU X-X-Sender: To: Subject: [vserver] My first post Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 173 Hi I'm new to vserver and this is my first post. First I want to congratulate the people behind this project. I am very interested about a virtual server solution implemented in the kernel and vserver with its kernel patches seems the right thing for me. I will need to deploy a vserver based solution for a scalable (not too big for some while at least) virtual web site hosting (with cgi/perl/php/sql access). In this situation the stability of the kernel is one of the key components (as for a production server). Are there known issues with the patched vserver kernels? Can someone on this list confirm me a success story (with a production server) ? Thanks ---------------------------- Mihai RUSU Disclaimer: Any views or opinions presented within this e-mail are solely those of the author and do not necessarily represent those of any company, unless otherwise specifically stated. From vserver.error@solucorp.qc.ca Fri Feb 22 17:06:33 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MM6WAh030338; Fri, 22 Feb 2002 17:06:32 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MLX5g16066 for vserver.list; Fri, 22 Feb 2002 16:33:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MLX4R16062 for ; Fri, 22 Feb 2002 16:33:05 -0500 Received: from host213-122-152-164.in-addr.btopenworld.com ([213.122.152.164] helo=john-new) by gadolinium.btinternet.com with esmtp (Exim 3.22 #8) id 16eNJP-0003Ca-00 for vserver@solucorp.qc.ca; Fri, 22 Feb 2002 21:33:03 +0000 Received: from 213.122.152.164 by john-new ([213.122.152.164] running VPOP3) with SMTP for ; Fri, 22 Feb 2002 21:32:44 -0000 From: "John Lyons" To: Subject: RE: [vserver] Having a small problem Date: Fri, 22 Feb 2002 21:32:43 -0000 Message-ID: <001c01c1bbe8$76ffb1c0$a4987ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <000201c1bbd7$6cdefb80$0100a8c0@dad> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 174 > The / and /boot partitions are ext3 partitions. > > Does vserver support ext3? Yes, I've got our systems running on ext3 Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 22 17:09:43 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MM9gAh030359; Fri, 22 Feb 2002 17:09:43 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MLecC16232 for vserver.list; Fri, 22 Feb 2002 16:40:38 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MLebR16228 for ; Fri, 22 Feb 2002 16:40:37 -0500 Received: from host213-122-152-164.in-addr.btopenworld.com ([213.122.152.164] helo=john-new) by gadolinium.btinternet.com with esmtp (Exim 3.22 #8) id 16eNQh-00045V-00 for vserver@solucorp.qc.ca; Fri, 22 Feb 2002 21:40:36 +0000 Received: from 213.122.152.164 by john-new ([213.122.152.164] running VPOP3) with SMTP for ; Fri, 22 Feb 2002 21:40:12 -0000 From: "John Lyons" To: Subject: RE: [vserver] Really base(ic) RHL 7.2 system Date: Fri, 22 Feb 2002 21:40:10 -0000 Message-ID: <001d01c1bbe9$81a2f8c0$a4987ad5@johnnew> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_001E_01C1BBE9.81A2F8C0" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 175 This is a multi-part message in MIME format. ------=_NextPart_000_001E_01C1BBE9.81A2F8C0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit > build other vservers. I'm trying to figure out what is the > minimum list > of packages I need to install to have a barely working vserver. Has > anyone already done this or can you point me at sources of information > on the topic? LOL, I've been here before. I've attached a list of packages that I've REMOVED from a RH7.2 default installation. I'm not saying that the list is perfect, there may be packages that you need to keep but it's not a bad starting point. To be fair if you're unifying the vservers later anyway there's not too much of an issue if you leave packages there that you don't need as they won't be taking up space. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** ------=_NextPart_000_001E_01C1BBE9.81A2F8C0 Content-Type: text/plain; name="rpm-e.txt" Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename="rpm-e.txt" dosfstools mkbootdisk setserial netconfig ed raidtools ghostscript-fonts mpage dhcpcd newt-devel slang-devel zlib-devel libpng-devel db1-devel gmp-devel krb5-devel libjpeg-devel libtermcap-devel lockdev-devel openssl-devel kudzu-devel audiofile-devel bzip2-devel rp-pppoe cdrecord-devel curl-devel cyrus-sasl-devel db3-devel e2fsprogs-devel expat-devel gd-devel gdbm-devel gpm-devel krbafs-devel libao-devel libogg-devel libtiff-devel libvorbis-devel mm-devel ncurses-devel openldap-devel pam-devel pciutils-devel pcre-devel python-devel readline-devel rpm-devel VFlib2-devel esound-devel gsm-devel mpg321 cdrecord swig rusers-server rusers telnet telnet-server mouseconfig sndconfig minicom rwho docbook-dtd40-sgml docbook-style-dsssl docbook-dtd41-sgml docbook-dtd31-sgml docbook-utils docbook-dtd30-sgml vorbis nkf cdp finger-server talk-server ttfonts-ja wvdial cipe tamago printconf vim-minimal vim-common foomatic up2date rhn_register texinfo urw-fonts a2ps alchemist XFree86-xfs XFree86-libs VFlib2 XFree86-libs lclint cvs statserial sox cdparanoia-alpha9.8-2 pnm2ppa wu-ftpd sendmail sendmail-cf radvd libvorbis libogg LPRng finger kudzu mt-st quota gsm reiserfs-utils mpg321 libao ppp esound arts audiofile awesfx cdda2wav lv micq lrzsz watanabe-vf playmidi cdlabelgen aumix efax hotplug units rsh-server rwall-server mailcap metamail openldap-clients nss_ldap anacron talk mkisofs flex isdn4k-utils sgml-tools perl-SGMLSpm openjade sgml-common ------=_NextPart_000_001E_01C1BBE9.81A2F8C0-- From vserver.error@solucorp.qc.ca Fri Feb 22 17:28:19 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MMSIAh030505; Fri, 22 Feb 2002 17:28:18 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MLpU116548 for vserver.list; Fri, 22 Feb 2002 16:51:30 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MLpTR16544 for ; Fri, 22 Feb 2002 16:51:29 -0500 Received: from host213-122-152-164.in-addr.btopenworld.com ([213.122.152.164] helo=john-new) by protactinium.btinternet.com with esmtp (Exim 3.22 #8) id 16eNbD-0006xJ-00 for vserver@solucorp.qc.ca; Fri, 22 Feb 2002 21:51:27 +0000 Received: from 213.122.152.164 by john-new ([213.122.152.164] running VPOP3) with SMTP for ; Fri, 22 Feb 2002 21:51:08 -0000 From: "John Lyons" To: Subject: RE: [vserver] My first post Date: Fri, 22 Feb 2002 21:51:07 -0000 Message-ID: <002101c1bbeb$09363260$a4987ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 176 > a production server). Are there known issues with the patched vserver > kernels? Can someone on this list confirm me a success story (with a > production server) ? We're not quite up to production servers yet, we've been running ctx-5 since Dec 2001, they've had light usage from 6 different clients, including all of the usual building/compiling installing packages etc. So far both host servers have been up 70+ days each without problems. As I say only light usage but so far so good. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 22 17:50:30 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MMoTAh030646; Fri, 22 Feb 2002 17:50:30 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MMRjP17625 for vserver.list; Fri, 22 Feb 2002 17:27:45 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tincan.org ([216.64.180.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MMRiR17621 for ; Fri, 22 Feb 2002 17:27:45 -0500 Received: from localhost (raanders@localhost) by tincan.org (8.9.3/8.8.7) with ESMTP id OAA15524 for ; Fri, 22 Feb 2002 14:27:42 -0800 Date: Fri, 22 Feb 2002 14:27:42 -0800 (PST) From: "Roderick A. Anderson" To: vserver@solucorp.qc.ca Subject: Re: [vserver] Having a small problem In-Reply-To: <000201c1bbd7$6cdefb80$0100a8c0@dad> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 177 On Fri, 22 Feb 2002, Ken Gehring wrote: > Does vserver support ext3? It must I have a system with ext3 files systems. I used a prebuilt kernel but seem to remember seeing mention of a patch to make ext3 work. Rod -- Let Accuracy Triumph Over Victory Zetetic Institute "David's Sling" Marc Stiegler From vserver.error@solucorp.qc.ca Fri Feb 22 18:19:49 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MNJmAh030868; Fri, 22 Feb 2002 18:19:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MMs9O18054 for vserver.list; Fri, 22 Feb 2002 17:54:09 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MMs7R18050 for ; Fri, 22 Feb 2002 17:54:08 -0500 Received: from host213-122-76-91.in-addr.btopenworld.com ([213.122.76.91] helo=john-new) by protactinium.btinternet.com with esmtp (Exim 3.22 #8) id 16eOZq-0004tg-00 for vserver@solucorp.qc.ca; Fri, 22 Feb 2002 22:54:07 +0000 Received: from 213.122.76.91 by john-new ([213.122.76.91] running VPOP3) with SMTP for ; Fri, 22 Feb 2002 22:53:48 -0000 From: "John Lyons" To: Subject: RE: [vserver] Having a small problem Date: Fri, 22 Feb 2002 22:53:47 -0000 Message-ID: <002f01c1bbf3$ca029b20$a4987ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 178 > It must I have a system with ext3 files systems. I used a prebuilt > kernel but seem to remember seeing mention of a patch to make > ext3 work. >From memory there was a bug in the software that caused probs with ext3 file systems but that was fixed quite a few weeks ago. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri Feb 22 18:58:20 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1MNwJAh031256; Fri, 22 Feb 2002 18:58:20 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1MNbF618783 for vserver.list; Fri, 22 Feb 2002 18:37:15 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp-send.myrealbox.com (smtp-send.myrealbox.com [192.108.102.143]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1MNbER18779 for ; Fri, 22 Feb 2002 18:37:14 -0500 Received: from dad kgehring@smtp-send.myrealbox.com [207.34.91.150] by smtp-send.myrealbox.com with Novell NIMS $Revision: 2.88 $ on Novell NetWare; Fri, 22 Feb 2002 16:37:12 -0700 Message-ID: <000b01c1bbf9$fe51a960$0100a8c0@dad> From: "Ken Gehring" To: References: <002f01c1bbf3$ca029b20$a4987ad5@johnnew> Subject: Re: [vserver] Having a small problem Date: Fri, 22 Feb 2002 16:38:10 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 179 OK, Lets backtrack a bit here. I'm going to start over with this from the begining Can someone check this procedure for getting vserver up and running. I have a system with a Highpoint raid array controller a wireless lan card (Linksys wpc11 in a pic controller) and an internal modem. 1) Install Redhat 7.1, install kernel 2.4.17 compile the kernel with support for the raid controller, ppp and ext3 file system. Wireless lan is set up as modules from the wlan-ng project. (all this works so far). 2) Convert /boot and / to ext3 with tune2fs tune2fs -j /dev/hda1 tune2fs -j /dev/hda6 Edit fstab to reflect the change froom ext2 to ext3 file systems. Reboot and all is still ok 3) Apply the patch-2.4.17ctx to the 2.4.14 kernel tree while in the /usr/src directory patch -p0 To: Sent: Friday, February 22, 2002 3:53 PM Subject: RE: [vserver] Having a small problem > > > It must I have a system with ext3 files systems. I used a prebuilt > > kernel but seem to remember seeing mention of a patch to make > > ext3 work. > > From memory there was a bug in the software that caused probs with ext3 file > systems but that was fixed quite a few weeks ago. > > Regards > > John Lyons > DomainCity > http://www.domaincity.co.uk > support@domaincity.co.uk > ICQ 74187012 > > *********************************************************************** > Please quote your account number in the subject line of all emails. > Failure to do so may result in your enquiries taking longer to process. > *********************************************************************** > > From vserver.error@solucorp.qc.ca Fri Feb 22 20:14:14 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1N1EDAh031827; Fri, 22 Feb 2002 20:14:14 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1N0rmS19962 for vserver.list; Fri, 22 Feb 2002 19:53:48 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1N0rmR19958 for ; Fri, 22 Feb 2002 19:53:48 -0500 Received: from host213-122-138-217.in-addr.btopenworld.com ([213.122.138.217] helo=john-new) by tungsten.btinternet.com with esmtp (Exim 3.22 #8) id 16eQRe-00018V-00 for vserver@solucorp.qc.ca; Sat, 23 Feb 2002 00:53:47 +0000 Received: from 213.122.138.217 by john-new ([213.122.138.217] running VPOP3) with SMTP for ; Sat, 23 Feb 2002 00:53:29 -0000 From: "John Lyons" To: Subject: RE: [vserver] Having a small problem Date: Sat, 23 Feb 2002 00:53:28 -0000 Message-ID: <003801c1bc04$8209b590$a4987ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <000b01c1bbf9$fe51a960$0100a8c0@dad> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 180 > 1) Install Redhat 7.1, install kernel 2.4.17 compile the > kernel with support for the raid controller, ppp and ext3 > file system. Wireless lan is set up as modules from the > wlan-ng project. (all this works so far). > 3) Apply the patch-2.4.17ctx to the 2.4.14 kernel tree while > in the /usr/src directory > patch -p0 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1N1N9Ah031905; Fri, 22 Feb 2002 20:23:09 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1N12QJ20137 for vserver.list; Fri, 22 Feb 2002 20:02:26 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp-send.myrealbox.com (smtp-send.myrealbox.com [192.108.102.143]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1N12QR20133 for ; Fri, 22 Feb 2002 20:02:26 -0500 Received: from dad kgehring@smtp-send.myrealbox.com [207.34.91.150] by smtp-send.myrealbox.com with Novell NIMS $Revision: 2.88 $ on Novell NetWare; Fri, 22 Feb 2002 18:02:24 -0700 Message-ID: <000701c1bc05$e56bf340$0100a8c0@dad> From: "Ken Gehring" To: References: <003801c1bc04$8209b590$a4987ad5@johnnew> Subject: Re: [vserver] Having a small problem Date: Fri, 22 Feb 2002 18:03:23 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 181 Oops, a typo (thanks for pointing it out). Yes, the 2.4.17 kernel tree is used throughout. Sorry about that. After applying the patch, I've checked the config file to insure that everything is still where it is supposed to be. I also ran "make menuconfig" and checked the stuff (raid ext3 .....) that is important to me. It is all there. The point that I'm at right now is that the new kernel just doesn't seem to like the ext3 file system. It keeps thinking that it is an ext3 file system and the system boot fsck can't get past it. It seems that I'm missing something here. Ken ----- Original Message ----- From: John Lyons To: Sent: Friday, February 22, 2002 5:53 PM Subject: RE: [vserver] Having a small problem > > > 1) Install Redhat 7.1, install kernel 2.4.17 compile the > > kernel with support for the raid controller, ppp and ext3 > > file system. Wireless lan is set up as modules from the > > wlan-ng project. (all this works so far). > > > 3) Apply the patch-2.4.17ctx to the 2.4.14 kernel tree while > > in the /usr/src directory > > patch -p0 > Are you applying the patch to 2.4.14 or 2.4.17 (You say .14 above) > > Also you suggest that you've compiled .17 in 1) with support for raid. Have > you checked your config after applying that patch that you've still got raid > support selected in your conf file. ie applying the patch hasn't taken you > back to a kernel setup without raid support? > > Seems like a daft question, but you've added raid support in 1) but then > taken a new kernel source and patched it without stating that you've then > added raid, ppp and ext3 to the new kernel > > Regards > > John Lyons > DomainCity > http://www.domaincity.co.uk > support@domaincity.co.uk > ICQ 74187012 > > *********************************************************************** > Please quote your account number in the subject line of all emails. > Failure to do so may result in your enquiries taking longer to process. > *********************************************************************** > > > From vserver.error@solucorp.qc.ca Fri Feb 22 21:42:26 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1N2gPAh032588; Fri, 22 Feb 2002 21:42:25 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1N2MJf21499 for vserver.list; Fri, 22 Feb 2002 21:22:19 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1N2MJR21495 for ; Fri, 22 Feb 2002 21:22:19 -0500 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g1N2Sqo19003 for ; Fri, 22 Feb 2002 18:28:52 -0800 X-Authentication-Warning: main.cyber-office.net: raanders owned process doing -bs Date: Fri, 22 Feb 2002 18:28:52 -0800 (PST) From: "Roderick A. Anderson" X-X-Sender: To: Subject: RE: [vserver] Really base(ic) RHL 7.2 system In-Reply-To: <001d01c1bbe9$81a2f8c0$a4987ad5@johnnew> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 182 On Fri, 22 Feb 2002, John Lyons wrote: > LOL, I've been here before. > > I've attached a list of packages that I've REMOVED from a RH7.2 default > installation. > I'm not saying that the list is perfect, there may be packages that you need > to keep but it's not a bad starting point. Took a quick look and it looks like the stuff I was thinking of 'not' installing with one exception, sendmail? A reason for no sendmail in a virtual server? Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Sat Feb 23 07:17:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1NCHkAh010903; Sat, 23 Feb 2002 07:17:47 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1NBoYW29363 for vserver.list; Sat, 23 Feb 2002 06:50:34 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1NBoXR29359 for ; Sat, 23 Feb 2002 06:50:33 -0500 Received: from host213-122-77-166.in-addr.btopenworld.com ([213.122.77.166] helo=john-new) by gadolinium.btinternet.com with esmtp (Exim 3.22 #8) id 16eahE-00065k-00 for vserver@solucorp.qc.ca; Sat, 23 Feb 2002 11:50:33 +0000 Received: from 213.122.77.166 by john-new ([213.122.77.166] running VPOP3) with SMTP for ; Sat, 23 Feb 2002 11:50:14 -0000 From: "John Lyons" To: Subject: RE: [vserver] Really base(ic) RHL 7.2 system Date: Sat, 23 Feb 2002 11:50:13 -0000 Message-ID: <000501c1bc60$4160cdb0$a64d7ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 183 > Took a quick look and it looks like the stuff I was thinking of 'not' > installing with one exception, sendmail? A reason for no > sendmail in a > virtual server? We're trying out exim as it seems to be a better package for us. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Sat Feb 23 09:01:11 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1NE0tAh011706; Sat, 23 Feb 2002 09:00:56 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1NDbDA30670 for vserver.list; Sat, 23 Feb 2002 08:37:13 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Tempo.Update.UU.SE (Tempo.Update.UU.SE [130.238.19.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1NDbCR30665 for ; Sat, 23 Feb 2002 08:37:13 -0500 Received: from Tempo.Update.UU.SE (jerker@localhost [127.0.0.1]) by Tempo.Update.UU.SE (8.12.1/8.12.1/Update-Iltempogigante) with ESMTP id g1NDbCgp029459 for ; Sat, 23 Feb 2002 14:37:12 +0100 Received: from localhost (jerker@localhost) by Tempo.Update.UU.SE (8.12.1/8.12.1/Update-Iltempogigante-submit) with ESMTP id g1NDbBnF029455 for ; Sat, 23 Feb 2002 14:37:11 +0100 X-Authentication-Warning: Tempo.Update.UU.SE: jerker owned process doing -bs Date: Sat, 23 Feb 2002 14:37:11 +0100 (CET) From: Jerker Nyberg To: vserver@solucorp.qc.ca Subject: Re: [vserver] Really base(ic) RHL 7.2 system In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 184 Hello Roderick, I have only been experimenting with vserver a little, but I did something like that, built an small system from the Red Hat 7.2 installation from scratch a few months ago. I include the installation-script in the end of this mail. It is ugly, I know, but it seemed to get the job done for me anyway. :-) What really would like to do is to run the Red Hat kickstart-installation in a virtual server some way, but I guess this will do until then. Or at least have a tool that will take a name of a package and then install all the packages it is depending on first. As you can see below I just experimented my way through the dependencies. The script would like all the Red Hat 7.2 RPMs (or symlinks to them) in "/disk1/rh72allrpms/". The reference-server (that the others get unified to) is called "experiment". You can change those in the script. You may need to change the script to use it with the latest vserver, I used vserver-0.7-1 and kernel-2.4.16ctx-4. I used the script like this (it will take some time to run it). ./create.rpm.sh experiment 10 127.0.0.10 ./create.rpm.sh vserver1 11 127.0.0.11 ./create.rpm.sh vserver2 12 127.0.0.12 ./create.rpm.sh vserver3 13 127.0.0.13 ./create.rpm.sh vserver4 14 127.0.0.14 ./create.rpm.sh vserver5 15 127.0.0.15 /etc/init.d/vserver start And after I created a correct /etc/hosts on the host system I could do "ssh vserver1 -l root" and using "vserver1" as password. If you add any new RPMs in the script you can just run it again with the same arguments. Regards, Jerker Nyberg. Uppsala Sweden. On Fri, 22 Feb 2002, Roderick A. Anderson wrote: > I've come to this list kind of late in my experience so I have a server > running vserver kernel-2.4.16ctx-4 (I think). I installed > vmlinuz-2.4.17ctx-7 but can't remeber if I restarted the server using it > (not the default setting). > While setting the system up I made some less than optimal - for a > unified vserver - configurations choices. I think I can recover from > these without taking the system down. But before doing that I want get > my stuff in order. > My plan is to create a very basic server setup that I can use to > build other vservers. I'm trying to figure out what is the minimum list > of packages I need to install to have a barely working vserver. Has > anyone already done this or can you point me at sources of information > on the topic? - - - #!/bin/bash if test "$#" != "3" ; then echo Usage: $0 name_of_server_root number IP-address exit fi VSNAME=$1 S_CONTEXT=$2 IPROOT=$3 REFERENCE=experiment VSROOT=/vservers/$1 RPMDIR=/disk1/rh72allrpms/ INSTALLEDRPMS=/root/installed.rpms.txt if test ! -e /etc/vservers/${1}.conf ; then echo Createing /etc/vservers/${1}.conf cat >/etc/vservers/${1}.conf </dev/null for i in $* ; do if rpm -q --root=$VSROOT $i &>/dev/null; then #echo "redan installerat $i" echo -n "" else if test "$RPMTOINSTALL" != "" ; then RPMTOINSTALL=$RPMTOINSTALL" "$i else RPMTOINSTALL=$i fi fi done if test "$RPMTOINSTALL" != "" ; then if echo $RPMTOINSTALL | grep ' ' &>/dev/null; then RPMLISTA='{'`echo $RPMTOINSTALL | sed 's/ /,/g'`'}' else RPMLISTA=$RPMTOINSTALL fi eval rpm -ivh $ARGUMENT --root=$VSROOT $RPMDIR/${RPMLISTA}-{0,1,2,3,4,5,6,7,8,9}*.rpm #echo rpm -ivh $ARGUMENT --root=$VSROOT $RPMDIR/${RPMLISTA}-{0,1,2,3,4,5,6,7,8,9}*.rpm echo $RPMTOINSTALL >>$VSROOT/$INSTALLEDRPMS fi popd &>/dev/null c} function create_device () { if test ! -e $VSROOT/$1 ; then mknod $VSROOT/$1 $2 $3 $4 chmod $5 $VSROOT/$1 fi } if test ! -d $VSROOT ; then mkdir $VSROOT fi if test ! -d $VSROOT/var/lib/rpm ; then mkdir -p $VSROOT/var/lib/rpm fi install_rpm glibc basesystem glibc-common setup filesystem install_rpm bash mktemp libtermcap termcap install_rpm info ncurses install_rpm shadow-utils install_rpm fileutils install_rpm textutils install_rpm grep sed gawk install_rpm iputils install_rpm iproute install_rpm which install_rpm zlib db1 db2 db3 popt glib bzip2-libs install_rpm cracklib cracklib-dicts words install_rpm chkconfig install_rpm diffutils install_rpm mount install_rpm procps install_rpm pwdb install_rpm mingetty install_rpm e2fsprogs install_rpm logrotate install_rpm sysklogd install_rpm psmisc install_rpm modutils install_rpm SysVinit pam initscripts util-linux sh-utils ## install_rpm rpm install_rpm perl gdbm # install_rpm openssl install_rpm openssh openssh-server openssh-clients ## install_rpm readline install_rpm gmp install_rpm python # install_rpm file install_rpm findutils install_rpm mm install_rpm apache mailcap ## install_rpm mod_php mod_perl ## install_rpm less install_rpm libstdc++ install_rpm groff install_rpm man ## install_rpm telnet ## install_rpm indexhtml install_rpm lynx ## install_rpm emacs emacs-nox ## install_rpm net-tools ## install_rpm gzip tar install_rpm binutils cpp install_rpm losetup install_rpm mkinitrd install_rpm kernel install_rpm glibc-devel kernel-headers install_rpm libstdc++ libstdc++-devel install_rpm gcc gcc-c++ ## install_rpm ftp ncftp ## install_rpm xinetd # install_rpm telnet-server ## install_rpm wu-ftpd ## install_rpm cyrus-sasl-plain cyrus-sasl-md5 cyrus-sasl install_rpm procmail install_rpm krb5-libs install_rpm openldap install_rpm sendmail ## install_rpm passwd ## install_rpm newt newt-devel install_rpm slang slang-devel install_rpm authconfig ## install_rpm slocate ## chroot $VSROOT &>/dev/null <$VSROOT/etc/hosts <$VSROOT/etc/sysconfig/network <$VSROOT/etc/fstab <$VSROOT/etc/mtab < Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1NGXrAh012614; Sat, 23 Feb 2002 11:33:54 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1NFr3r00735 for vserver.list; Sat, 23 Feb 2002 10:53:03 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1NFr3R00731 for ; Sat, 23 Feb 2002 10:53:03 -0500 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g1NFxdv21448 for ; Sat, 23 Feb 2002 07:59:39 -0800 X-Authentication-Warning: main.cyber-office.net: raanders owned process doing -bs Date: Sat, 23 Feb 2002 07:59:39 -0800 (PST) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] Really base(ic) RHL 7.2 system In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 185 On Sat, 23 Feb 2002, Jerker Nyberg wrote: > I have only been experimenting with vserver a little, but I did something > like that, built an small system from the Red Hat 7.2 installation from > scratch a few months ago. > > I include the installation-script in the end of this mail. It is ugly, I > know, but it seemed to get the job done for me anyway. :-) Looks pretty nice with a quick glance. I really appreciate you sharing this. One of the 'problems' with being cutting edge is sometimes you have to make the knife and wetstone. :-) Cheers, Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Sun Feb 24 04:27:45 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1O9RiAh015199; Sun, 24 Feb 2002 04:27:45 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1O8wjb17167 for vserver.list; Sun, 24 Feb 2002 03:58:45 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from n010080.nbs.netland.nl (n010123.nbs.netland.nl [217.170.46.123] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1O8whR17163 for ; Sun, 24 Feb 2002 03:58:44 -0500 Received: from office.netland.nl (shocks [192.168.11.25]) by n010080.nbs.netland.nl (8.11.0/8.11.0) with ESMTP id g1O8wgw01629 for ; Sun, 24 Feb 2002 09:58:43 +0100 Message-ID: <3C78AB3B.2000402@office.netland.nl> Date: Sun, 24 Feb 2002 09:58:35 +0100 From: Ron Arts Organization: Netland Internet Services User-Agent: Mozilla/5.0 (Windows; U; Win 9x 4.90; en-US; rv:0.9.8) Gecko/20020204 X-Accept-Language: nl, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and wlan References: <041301c1b278$acd0a8a0$8201a8c0@iris> <000b01c1b8e8$9c130460$0100a8c0@dad> Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=sha1; boundary="------------ms040202020205030405080802" Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 186 This is a cryptographically signed message in MIME format. --------------ms040202020205030405080802 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Ken Gehring wrote: > Has anyone tried to get the vserver working with a wireless lan (wlan)? > > > > I keep getting "Can't set ipv4 root" > > > > Any ideas or suggestions? > > > > Ken > > > Ken, I'm running it on a wlan. No problems at all. Ron --------------ms040202020205030405080802 Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIJZzCC AxkwggKCoAMCAQICAwbOTzANBgkqhkiG9w0BAQQFADCBkjELMAkGA1UEBhMCWkExFTATBgNV BAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYDVQQKEwZUaGF3dGUx HTAbBgNVBAsTFENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9QZXJzb25hbCBGcmVl bWFpbCBSU0EgMjAwMC44LjMwMB4XDTAyMDIyMDIxMDE1MFoXDTAzMDIyMDIxMDE1MFowXDEN MAsGA1UEBBMEQXJ0czERMA8GA1UEKhMIUm9uIFIuQS4xFjAUBgNVBAMTDVJvbiBSLkEuIEFy dHMxIDAeBgkqhkiG9w0BCQEWEXJhYXJ0c0BuZXRsYW5kLm5sMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEA7vEsfUlWImQyVwQzmllJxPF1C39glLXkQrBwHvjrAmE3TgDVJXYN 7JCSTn8T2NUU4LTv8kzv7BC7+UrMKwYil3pAEhExGadcHSQ9zQSk7nhy1ElUzup0CtAgmCKC 48j2Mj9xwcb5hzXBLv+HoGDxhPjGpU2IHl7e++XY5x+B4ilgiv4br7mZQuZ/uoEIXcHd3ewO uKaj61L3U7+dxp35jS6tbc3M7drrJZ3i9CFvIowRk0AMWI+9GfAjdqFzYdt0meojqngTUgqf 1yB7KvXhXsFUWt/HHurRs5dQanAPkmOmq4y/0xqEoBg+zWi1y/rYvFVsCUiBD4kaG3PCbRY6 UQIDAQABoy4wLDAcBgNVHREEFTATgRFyYWFydHNAbmV0bGFuZC5ubDAMBgNVHRMBAf8EAjAA MA0GCSqGSIb3DQEBBAUAA4GBAKXLn6h6nxmhVK5MNaMuZRPFpSV3AO3kjXLOIQ/yZy/RhURJ 5FasQJRaWTMxAoxLpySWpKjBKtW7YprkLQUvZhuttqPrFXugfi3Up0tbZxjfyuIFxoa/RiGn t1o9uSHyEikJQuFVq7JIK+fGnzqie9vMnwzIM1tUeP1VKLRbLp5RMIIDGTCCAoKgAwIBAgID Bs5PMA0GCSqGSIb3DQEBBAUAMIGSMQswCQYDVQQGEwJaQTEVMBMGA1UECBMMV2VzdGVybiBD YXBlMRIwEAYDVQQHEwlDYXBlIFRvd24xDzANBgNVBAoTBlRoYXd0ZTEdMBsGA1UECxMUQ2Vy dGlmaWNhdGUgU2VydmljZXMxKDAmBgNVBAMTH1BlcnNvbmFsIEZyZWVtYWlsIFJTQSAyMDAw LjguMzAwHhcNMDIwMjIwMjEwMTUwWhcNMDMwMjIwMjEwMTUwWjBcMQ0wCwYDVQQEEwRBcnRz MREwDwYDVQQqEwhSb24gUi5BLjEWMBQGA1UEAxMNUm9uIFIuQS4gQXJ0czEgMB4GCSqGSIb3 DQEJARYRcmFhcnRzQG5ldGxhbmQubmwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDu8Sx9SVYiZDJXBDOaWUnE8XULf2CUteRCsHAe+OsCYTdOANUldg3skJJOfxPY1RTgtO/y TO/sELv5SswrBiKXekASETEZp1wdJD3NBKTueHLUSVTO6nQK0CCYIoLjyPYyP3HBxvmHNcEu /4egYPGE+MalTYgeXt775djnH4HiKWCK/huvuZlC5n+6gQhdwd3d7A64pqPrUvdTv53GnfmN Lq1tzczt2uslneL0IW8ijBGTQAxYj70Z8CN2oXNh23SZ6iOqeBNSCp/XIHsq9eFewVRa38ce 6tGzl1BqcA+SY6arjL/TGoSgGD7NaLXL+ti8VWwJSIEPiRobc8JtFjpRAgMBAAGjLjAsMBwG A1UdEQQVMBOBEXJhYXJ0c0BuZXRsYW5kLm5sMAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQEE BQADgYEApcufqHqfGaFUrkw1oy5lE8WlJXcA7eSNcs4hD/JnL9GFREnkVqxAlFpZMzECjEun JJakqMEq1btimuQtBS9mG622o+sVe6B+LdSnS1tnGN/K4gXGhr9GIae3Wj25IfISKQlC4VWr skgr58afOqJ728yfDMgzW1R4/VUotFsunlEwggMpMIICkqADAgECAgEMMA0GCSqGSIb3DQEB BAUAMIHRMQswCQYDVQQGEwJaQTEVMBMGA1UECBMMV2VzdGVybiBDYXBlMRIwEAYDVQQHEwlD YXBlIFRvd24xGjAYBgNVBAoTEVRoYXd0ZSBDb25zdWx0aW5nMSgwJgYDVQQLEx9DZXJ0aWZp Y2F0aW9uIFNlcnZpY2VzIERpdmlzaW9uMSQwIgYDVQQDExtUaGF3dGUgUGVyc29uYWwgRnJl ZW1haWwgQ0ExKzApBgkqhkiG9w0BCQEWHHBlcnNvbmFsLWZyZWVtYWlsQHRoYXd0ZS5jb20w HhcNMDAwODMwMDAwMDAwWhcNMDIwODI5MjM1OTU5WjCBkjELMAkGA1UEBhMCWkExFTATBgNV BAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYDVQQKEwZUaGF3dGUx HTAbBgNVBAsTFENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9QZXJzb25hbCBGcmVl bWFpbCBSU0EgMjAwMC44LjMwMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMzKmY8cJ JUU+0m54J2eBxdqIGYKXDuNEKYpjNSptcDz63K737nRvMLwzkH/5NHGgo22Y8cNPomXbDfpL 8dbdYaX5hc1VmjUanZJ1qCeu2HL5ugL217CR3hzpq+AYA6h8Q0JQUYeDPPA5tJtUihOH/7Ob nUlmAC0JieyUa+mhaQIDAQABo04wTDApBgNVHREEIjAgpB4wHDEaMBgGA1UEAxMRUHJpdmF0 ZUxhYmVsMS0yOTcwEgYDVR0TAQH/BAgwBgEB/wIBADALBgNVHQ8EBAMCAQYwDQYJKoZIhvcN AQEEBQADgYEAcxtvJmWL/xU0S1liiu1EvknH6A27j7kNaiYqYoQfuIdjdBxtt88aU5FL4c3m ONntUPQ6bDSSrOaSnG7BIwHCCafvS65y3QZn9VBvLli4tgvBUFe17BzX7xe21Yibt6KIGu05 Wzl9NPy2lhglTWr0ncXDkS+plrgFPFL83eliA0gxggMnMIIDIwIBATCBmjCBkjELMAkGA1UE BhMCWkExFTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYD VQQKEwZUaGF3dGUxHTAbBgNVBAsTFENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9Q ZXJzb25hbCBGcmVlbWFpbCBSU0EgMjAwMC44LjMwAgMGzk8wCQYFKw4DAhoFAKCCAWEwGAYJ KoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0BCQUxDxcNMDIwMjI0MDg1ODM3WjAj BgkqhkiG9w0BCQQxFgQUk2+n9qMHSsFB/R6CtJ9OfDYGgGEwUgYJKoZIhvcNAQkPMUUwQzAK BggqhkiG9w0DBzAOBggqhkiG9w0DAgICAIAwDQYIKoZIhvcNAwICAUAwBwYFKw4DAgcwDQYI KoZIhvcNAwICASgwga0GCyqGSIb3DQEJEAILMYGdoIGaMIGSMQswCQYDVQQGEwJaQTEVMBMG A1UECBMMV2VzdGVybiBDYXBlMRIwEAYDVQQHEwlDYXBlIFRvd24xDzANBgNVBAoTBlRoYXd0 ZTEdMBsGA1UECxMUQ2VydGlmaWNhdGUgU2VydmljZXMxKDAmBgNVBAMTH1BlcnNvbmFsIEZy ZWVtYWlsIFJTQSAyMDAwLjguMzACAwbOTzANBgkqhkiG9w0BAQEFAASCAQCI8v2EIlVSiwec ZjrWX/ctdnkafTxxu6tvDcRLJnOW8/v9oqthpzwDAgXKcSs8+5MWmOBVePqACWIPEeRgVdMK L7e9o1sIB+3cy/yeNCsIukBUyuWYH9rZ1GPoQg7NnGZac7PibiE4WXDFRNB0wfansNUMVJXH kENKV4fH4PRFvBCSUFpAO4aBGJZBvhlz7sVx1JWIxrEjP/DLFxSyppSs4SFGqr7Tws8jGi6i qlpBEx1/GKRLmTfq+ce/IE80ixvpv1eSMq2SrUwZLYjKXUGSyy49MmGBzB5Ss+CfkF8wQQpW g6IM01EaAeolpjqA5GfOjbyYzfQRULXs1hMV1031AAAAAAAA --------------ms040202020205030405080802-- From vserver.error@solucorp.qc.ca Mon Feb 25 06:04:45 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1PB4iAh027077; Mon, 25 Feb 2002 06:04:44 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1PAWZX14200 for vserver.list; Mon, 25 Feb 2002 05:32:35 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1PAWXR14196 for ; Mon, 25 Feb 2002 05:32:34 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id B44611000 for ; Mon, 25 Feb 2002 11:32:27 +0100 (CET) Subject: [vserver] unify check/ disk usage From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-GqLzuve3rQ7B5m1YWt4i" X-Mailer: Evolution/1.0.2 Date: 25 Feb 2002 11:32:27 +0100 Message-Id: <1014633148.1664.14.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 187 --=-GqLzuve3rQ7B5m1YWt4i Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, Here comes a long list of questions, sorry for the inconvenience but I hope you can find the time to answer. I'll try to gather all the information from this and earlier emailings into some additions to the FAQ, to help all new vserver users - and possible add some clever tips/usage to old users :-) I was wondering, if any of you know way I could: 1) get the disk usage of a vserver (the real one - discounting unified files). 2) get a list of files, that is not unified (or a list of files that are?) - this way I could easily check for changes in a vserver - such as evidence of hackers and such. 3) I have several vservers running now, and if I add some files to my root server, how can I easily hardlink them to the vservers I want to be able to access it? ln ? (this is to save disk space). btw. I'm looking into how to get Samba running under a vserver, as I consider it one of the rather dangerous services to run and I would therefore like it to be run under a vserver.. any tips or experiences with this? I've heard there were some problems with the smb broadcasts? why is this? Can I do anything about it (add a capability, like what fixes the Bind issue?). Thank you in advance. --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-GqLzuve3rQ7B5m1YWt4i Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8ehK64c1kHlhtW8oRArH9AJ0VHZQRpCQEZq2i79BfSngxUhNhgQCfZZhg zazjSpO0QZ/KiSjGqDTsAuY= =x3g2 -----END PGP SIGNATURE----- --=-GqLzuve3rQ7B5m1YWt4i-- From vserver.error@solucorp.qc.ca Mon Feb 25 06:26:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1PBQYAh027157; Mon, 25 Feb 2002 06:26:34 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1PB09w14766 for vserver.list; Mon, 25 Feb 2002 06:00:09 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1PB09R14762 for ; Mon, 25 Feb 2002 06:00:09 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id BCD391000 for ; Mon, 25 Feb 2002 12:00:08 +0100 (CET) Subject: [vserver] X under a vserver? From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-+6fRiCNVaGEJRxPNiPgf" X-Mailer: Evolution/1.0.2 Date: 25 Feb 2002 12:00:08 +0100 Message-Id: <1014634808.1664.21.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 188 --=-+6fRiCNVaGEJRxPNiPgf Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I have a portable machine, which I also use as a server (a presentation server). I wanted to run X on it, cause I do like to surf from it once in a while, but I don't want this "nasty" habit, to put my server at risk. This made me think of running the X under a vserver - and I've created an vserver called xsrv. I've set the inittab to 5 in it, but that didn't start up the X on F7 as it usually does. I then tried to enter the vserver, and su - klavs and then run startx.. it complained about me not owning the console (which is probably right, as I enter the vserver when I was root. when I run startx as root, it says failed to open /dev/mem (it's a Warning from xf86ReadBIOS), and fails on xf86OpenConsole: Cannot open /dev/tty0 (no such file or directory). Do you have any tips, as how I could get this up and running, as myself - or can it only be done as root in the vserver? or can't it be done at all? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-+6fRiCNVaGEJRxPNiPgf Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8ehk44c1kHlhtW8oRAlPwAKChH/KzC6GYygz+XuWuXwLFlsOJFACglh0G E99zP62MrAg5WhE2VB6UmCA= =uYQp -----END PGP SIGNATURE----- --=-+6fRiCNVaGEJRxPNiPgf-- From vserver.error@solucorp.qc.ca Mon Feb 25 09:30:10 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1PEU9Ah028347; Mon, 25 Feb 2002 09:30:09 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1PE6NE18114 for vserver.list; Mon, 25 Feb 2002 09:06:23 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hotmail.com (oe68.pav1.hotmail.com [64.4.30.203]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1PE6MR18110 for ; Mon, 25 Feb 2002 09:06:22 -0500 Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Mon, 25 Feb 2002 06:06:22 -0800 X-Originating-IP: [207.253.4.2] From: "Patrick LeBoutillier" To: Subject: [vserver] Unification bug? Date: Mon, 25 Feb 2002 09:06:24 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Message-ID: X-OriginalArrivalTime: 25 Feb 2002 14:06:22.0345 (UTC) FILETIME=[9ABFA790:01C1BE05] Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 189 Hi, I have a few vservers that are unified. When installing a Perl module in one of the vservers, I get an error which I can reproduce with the following simpler command. [root@devweb DateManip-5.40]# echo toto >> /usr/lib/perl5/5.6.0/i386-linux/perllocal.pod bash: /usr/lib/perl5/5.6.0/i386-linux/perllocal.pod: Permission denied The file is as follows: [root@devweb DateManip-5.40]# ls -l /usr/lib/perl5/5.6.0/i386-linux/perllocal.pod -rw-r--r-- 8 root root 218 Mar 23 2001 /usr/lib/perl5/5.6.0/i386-linux/perllocal.pod I am logged on as root but can't seem to append to the specified file. But if I open the file and save it with vi, then the problem goes away. Anyone have a clue? Thanks a lot, ------------------------- Patrick LeBoutillier Laval, Quebec, Canada From vserver.error@solucorp.qc.ca Mon Feb 25 12:33:45 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1PHXhAh029934; Mon, 25 Feb 2002 12:33:44 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1PH43V22576 for vserver.list; Mon, 25 Feb 2002 12:04:03 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from localhost.localdomain (pia153-99.pioneernet.net [66.114.153.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1PH43R22572 for ; Mon, 25 Feb 2002 12:04:03 -0500 Received: from openwebmail (casonmaster [127.0.0.1]) by localhost.localdomain (8.11.6/8.11.6) with ESMTP id g1PH6DX29277 for ; Mon, 25 Feb 2002 09:06:14 -0800 From: "Wray Cason" To: "VServer Mailing List" Subject: [vserver] Date: Mon, 25 Feb 2002 09:06:13 -0800 Message-Id: <20020225090613.A63640@auxiliumcomputing.com> X-Mailer: Open WebMail 1.53 20020112 X-OriginatingIP: 192.168.0.2 (auxiliumcomputing) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 190 I have servers with multiple ethernet interfaces. I have found that without a NAT workaround, I can't get proper default routing for all vservers as some are bound to the interface with the actual default gateway and other aren't and therefore can't reach the default gateway. Is this a question that is being addressed? Alternatively, am I missing something? Thanks. -- Wray Cason "Wrayman" Auxilium Computing www.auxiliumcomputing.com wrayman@auxiliumcomputing.com main: 206-595-2080 fax: 425-895-9825 From vserver.error@solucorp.qc.ca Mon Feb 25 13:11:05 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1PIB4Ah030386; Mon, 25 Feb 2002 13:11:05 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1PHtEm23698 for vserver.list; Mon, 25 Feb 2002 12:55:14 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1PHtDR23693 for ; Mon, 25 Feb 2002 12:55:13 -0500 Received: from host213-1-130-224.btinternet.com ([213.1.130.224] helo=john-new) by protactinium.btinternet.com with esmtp (Exim 3.22 #8) id 16fPLD-0006Gm-00 for vserver@solucorp.qc.ca; Mon, 25 Feb 2002 17:55:11 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Mon, 25 Feb 2002 17:54:54 -0000 From: "John Lyons" To: Subject: RE: [vserver] Date: Mon, 25 Feb 2002 17:54:53 -0000 Message-ID: <006801c1be25$8795e6a0$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <20020225090613.A63640@auxiliumcomputing.com> Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 191 > I have servers with multiple ethernet interfaces. I have > found that without > a NAT workaround, I can't get proper default routing for all > vservers as > some are bound to the interface with the actual default > gateway and other > aren't and therefore can't reach the default gateway. Is > this a question > that is being addressed? Alternatively, am I missing > something? Thanks. Sorry, I'm not an expert on this area but you can select which ethernet interface a vs binds to via the /etc/vservers/ conf file. I'd have thought that you can set the default gateway within each vs or it would be picked up from the eth settings? J From vserver.error@solucorp.qc.ca Mon Feb 25 13:39:37 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1PIdZAh030657; Mon, 25 Feb 2002 13:39:36 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1PIJnT24287 for vserver.list; Mon, 25 Feb 2002 13:19:49 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from localhost.localdomain (pia153-99.pioneernet.net [66.114.153.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1PIJmR24283 for ; Mon, 25 Feb 2002 13:19:48 -0500 Received: from openwebmail (casonmaster [127.0.0.1]) by localhost.localdomain (8.11.6/8.11.6) with ESMTP id g1PIM4X02245 for ; Mon, 25 Feb 2002 10:22:04 -0800 From: "Wray Cason" To: vserver@solucorp.qc.ca Subject: RE: [vserver] Date: Mon, 25 Feb 2002 10:22:04 -0800 Message-Id: <20020225102204.A43602@auxiliumcomputing.com> In-Reply-To: <006801c1be25$8795e6a0$0100a8c0@johnnew> References: <20020225090613.A63640@auxiliumcomputing.com> X-Mailer: Open WebMail 1.53 20020112 X-OriginatingIP: 192.168.0.2 (auxiliumcomputing) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 192 > > I have servers with multiple ethernet interfaces. I have > > found that without > > a NAT workaround, I can't get proper default routing for all > > vservers as > > some are bound to the interface with the actual default > > gateway and other > > aren't and therefore can't reach the default gateway. Is > > this a question > > that is being addressed? Alternatively, am I missing > > something? Thanks. > > Sorry, I'm not an expert on this area but you can select which > ethernet interface a vs binds to via the /etc/vservers/ conf > file. I'd have thought that you can set the default gateway > within each vs or it would be picked up from the eth settings? > > J Can default routes be set within each vserver? That would be exactly what I need. That can't be done as far as I know. The base server routing is useless since the vserver is made unaware of all networks except the one it is bound to. -- Wray Cason "Wrayman" Auxilium Computing www.auxiliumcomputing.com wrayman@auxiliumcomputing.com main: 206-595-2080 fax: 425-895-9825 From vserver.error@solucorp.qc.ca Mon Feb 25 14:05:44 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1PJ5hAh030916; Mon, 25 Feb 2002 14:05:44 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1PInHf24955 for vserver.list; Mon, 25 Feb 2002 13:49:17 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1PInHR24951 for ; Mon, 25 Feb 2002 13:49:17 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g1PIn9Eu029853 for ; Mon, 25 Feb 2002 19:49:09 +0100 Date: Mon, 25 Feb 2002 19:49:09 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: vserver@solucorp.qc.ca Subject: RE: [vserver] In-Reply-To: <20020225102204.A43602@auxiliumcomputing.com> Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 193 On Mon, 25 Feb 2002, Wray Cason wrote: > > > I have servers with multiple ethernet interfaces. I have > > > found that without > > > a NAT workaround, I can't get proper default routing for all > > > vservers as > > > some are bound to the interface with the actual default > > > gateway and other > > > aren't and therefore can't reach the default gateway. Is > > > this a question > > > that is being addressed? Alternatively, am I missing > > > something? Thanks. > > > > Sorry, I'm not an expert on this area but you can select which > > ethernet interface a vs binds to via the /etc/vservers/ conf > > file. I'd have thought that you can set the default gateway > > within each vs or it would be picked up from the eth settings? > > > > J > Can default routes be set within each vserver? That would be exactly what I > need. That can't be done as far as I know. The base server routing is > useless since the vserver is made unaware of all networks except the one it > is bound to. No you can't set default routes in vserver what you need is somewhat more advanced routing in the real server. say that you have eth0 which is the default interface for which you have a default gateway configured and now you want a vserver to use eth1 instead, then maybe somethine like this can help. ip rule add from table 200 ip route add dev eth1 table 200 ip route add default via dev eth1 table 200 replace with the ipaddress the vserver is using. is something like 192.168.1.0/24 is maybe 192.168.1.1 ? replace with actual default gateway. if you have several vserver that should use eth1 but diffrent ipaddresses and those addresses are located in the same subnet you can add more 'ip rule' rows, one for each ip. and if you have vserver that use an ipaddress on eth1 that's part of another subnet you have to add all these 3 rules but change the table number from 200 to something diffrent, say 201. I hope this helps. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Mon Feb 25 20:49:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1Q1nYAh002184; Mon, 25 Feb 2002 20:49:34 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1Q1Vvp00770 for vserver.list; Mon, 25 Feb 2002 20:31:57 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp-send.myrealbox.com (smtp-send.myrealbox.com [192.108.102.143]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1Q1VuR00766 for ; Mon, 25 Feb 2002 20:31:56 -0500 Received: from dad kgehring@smtp-send.myrealbox.com [209.115.205.151] by smtp-send.myrealbox.com with Novell NIMS $Revision: 2.88 $ on Novell NetWare; Mon, 25 Feb 2002 18:31:55 -0700 Message-ID: <000901c1be65$8de5b360$0100a8c0@dad> From: "Ken Gehring" To: References: <003801c1bc04$8209b590$a4987ad5@johnnew> <000701c1bc05$e56bf340$0100a8c0@dad> Subject: Re: [vserver] Having a small problem Solved Date: Mon, 25 Feb 2002 18:33:10 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 194 Well, I managed to get the vserver up and running. Thanks to all of you that to the time to help me out. I decided to start from square -1 on this. Back to repartitioning the HD. A clean (squeaky clean in fact) install of RH7.1, upgrading the kernel ........................... worked. I now have a vserver server working and am having fun playing with it. As to why it worked, I have only 1 theory. The original installation had an extended partition on it with the swap and / file systems in it. This appears to be the only change that I can think of that I made to the system. Maybe this might be my first contribution back to the vserver community. I certainly hope it won't be my last. Congrats to you folk that have worked on this. It looks like a very viable and valuable contribution to the Linux community. Ken From vserver.error@solucorp.qc.ca Mon Feb 25 21:05:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1Q25dAh002305; Mon, 25 Feb 2002 21:05:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1Q1cWX00924 for vserver.list; Mon, 25 Feb 2002 20:38:32 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ith.nbwrpg.com (cpe-24-221-148-187.az.sprintbbd.net [24.221.148.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1Q1cUR00920 for ; Mon, 25 Feb 2002 20:38:31 -0500 Received: from ith.nbwrpg.com (ith.nbwrpg.com [10.0.0.254]) by ith.nbwrpg.com (Postfix) with ESMTP id 6EC0BB4B2 for ; Mon, 25 Feb 2002 18:26:24 -0700 (MST) Date: Mon, 25 Feb 2002 18:26:24 -0700 (MST) From: To: Vserver Mailinglist Subject: Re: [vserver] X under a vserver? In-Reply-To: <1014634808.1664.21.camel@amd.vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 195 On 25 Feb 2002, klavs klavsen wrote: > Hi guys, > > I have a portable machine, which I also use as a server (a presentation > server). I wanted to run X on it, cause I do like to surf from it once > in a while, but I don't want this "nasty" habit, to put my server at > risk. This made me think of running the X under a vserver - and I've > created an vserver called xsrv. Ah yes. X is the reason I started using vservers :-). > I've set the inittab to 5 in it, but that didn't start up the X on F7 as > it usually does. I then tried to enter the vserver, and su - klavs and > then run startx.. it complained about me not owning the console (which > is probably right, as I enter the vserver when I was root. I don't have much experience there. I hate having X launch on startup, so I run it from command line. But it shouldn't be an issue at all once you have the vserver running. > when I run startx as root, it says failed to open /dev/mem (it's a > Warning from xf86ReadBIOS), and fails on xf86OpenConsole: Cannot open > /dev/tty0 (no such file or directory). When I set my X vserver up, I got similar problems. What I did was copy over /dev/tty, /dev/tty0, /dev/tty7, and /dev/mem. After that, X died due to lack of a mouse, so it needs /dev/psaux (or whatever the device your mouse is connected to). If you want sound, you'll also want to copy over /dev/dsp. X should run now. At least mine did. Here's my /dev: dsp full mem null psaux ptmx pts random reboot tty tty0 tty4 tty5 tty7 tty8 tty9 urandom xconsole zero Other than the tty devices, psaux, dsp, gpmdata, and mem, I think that's all default. I just copied the extra stuff over from my root server's /dev directory (use cp -a, it seems to work better for device files). One thing that might make some differences is that I am logging into a console devoted to my X vserver (tty4 and tty5, as you can see by their presence above), and I don't know how X runs otherwise. I seem to remember it crashing on me even after having all the device files, but I don't remember if that's cause I was doing a "vserver workstation exec" or for some other reason. > Do you have any tips, as how I could get this up and running, as myself > - or can it only be done as root in the vserver? or can't it be done at > all? The above should work, except for the possible troubles with the lack of a tty to start X from. If you want to set that up, I can show you how I did it. - Yan PS. I'm new to the list, so I'll just take this opportunity to say hi to everyone (or everyone who's still reading). From vserver.error@solucorp.qc.ca Mon Feb 25 21:08:28 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1Q28RAh002401; Mon, 25 Feb 2002 21:08:27 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1Q1fii00996 for vserver.list; Mon, 25 Feb 2002 20:41:44 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ith.nbwrpg.com (cpe-24-221-148-187.az.sprintbbd.net [24.221.148.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1Q1fhR00992 for ; Mon, 25 Feb 2002 20:41:44 -0500 Received: from ith.nbwrpg.com (ith.nbwrpg.com [10.0.0.254]) by ith.nbwrpg.com (Postfix) with ESMTP id 816B2B4B2 for ; Mon, 25 Feb 2002 18:29:43 -0700 (MST) Date: Mon, 25 Feb 2002 18:29:43 -0700 (MST) From: To: Subject: Re: [vserver] Unification bug? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 196 On Mon, 25 Feb 2002, Patrick LeBoutillier wrote: > Hi, > > I have a few vservers that are unified. When installing a Perl module in one > of the vservers, I get an error which I can reproduce with the following > simpler command. > > [root@devweb DateManip-5.40]# echo toto >> > /usr/lib/perl5/5.6.0/i386-linux/perllocal.pod > bash: /usr/lib/perl5/5.6.0/i386-linux/perllocal.pod: Permission denied > > The file is as follows: > [root@devweb DateManip-5.40]# ls -l > /usr/lib/perl5/5.6.0/i386-linux/perllocal.pod > -rw-r--r-- 8 root root 218 Mar 23 2001 > /usr/lib/perl5/5.6.0/i386-linux/perllocal.pod > > I am logged on as root but can't seem to append to the specified file. But > if I open the file and save it with vi, then the problem goes away. > > Anyone have a clue? I think that when you unify a vserver, it sets the immutable tag on the hard links, which prevent them being used to modify the file, but allows for that hard link to be unlinked so that you could replace the file. If I understand correctly, when you're trying to append to the file, the immutable tag is rearing up and preventing you from editing, but when you save the file with vi, vi unlinks the file and writes another file (now a real file without the immutable tag) in its place, taking the problem away. If I understand the unification proccess correctly, the above should be accurate. - Yan From vserver.error@solucorp.qc.ca Mon Feb 25 21:47:25 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1Q2lPAh003228; Mon, 25 Feb 2002 21:47:25 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1Q2Q9N01739 for vserver.list; Mon, 25 Feb 2002 21:26:09 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1Q2Q9R01735 for ; Mon, 25 Feb 2002 21:26:09 -0500 Received: from remtk.solucorp.qc.ca (g39-140.citenet.net [206.123.39.140]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1Q2U6689346 for ; Mon, 25 Feb 2002 21:30:06 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1PMJKE02325 for vserver@solucorp.qc.ca; Mon, 25 Feb 2002 17:19:20 -0500 From: Jacques Gelinas Date: Mon, 25 Feb 2002 17:19:20 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver questions X-mailer: tlmpmail 0.1 Message-ID: <20020225171920.dbe6aceb563b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 197 On Wed, 20 Feb 2002 23:58:59 -0500, lance wrote > On Wed, 20 Feb 2002, Jacques Gelinas wrote: > Aha thanks for clearing that up - have you thoughts on how to segregate > firewalling between the different vservers ?? > > Could it be done with a per instance chain (or table) that the vserver can > modify ?? This is tricky, but something may be done using an extension to the rebootmgr service (maybe). The idea would be for the vserver to supply to the root server some partial rules (what it accepts, what it denies and so on). The rules would be completed (using the vserver IP number) and the firewall would be regenerated. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Feb 25 21:49:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1Q2nvAh003247; Mon, 25 Feb 2002 21:49:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1Q2Q7Z01733 for vserver.list; Mon, 25 Feb 2002 21:26:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1Q2Q6R01729 for ; Mon, 25 Feb 2002 21:26:07 -0500 Received: from remtk.solucorp.qc.ca (g39-140.citenet.net [206.123.39.140]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1Q2U4689336 for ; Mon, 25 Feb 2002 21:30:04 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1PMGvh02323 for vserver@solucorp.qc.ca; Mon, 25 Feb 2002 17:16:57 -0500 From: Jacques Gelinas Date: Mon, 25 Feb 2002 17:16:57 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vps question X-mailer: tlmpmail 0.1 Message-ID: <20020225171657.c8d206948a58@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 198 On Thu, 21 Feb 2002 00:01:52 -0500, lance wrote > > Is there any way of showing, using vps or similar, in the root shell, > what vservers processes are owned by ?? It should be possible to do a wrapper an add at the end of the line, the vserver owning the process. For vpstree and vtop, this is more difficult and ultimatly we will have to hack those tools make them vserver aware. On the todo list --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Feb 26 01:27:51 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1Q6RnAh012084; Tue, 26 Feb 2002 01:27:50 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1Q64gr05169 for vserver.list; Tue, 26 Feb 2002 01:04:42 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from sokol.paradigm4.com.au (server.paradigm4.com.au [202.45.126.119] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1Q64eR05165 for ; Tue, 26 Feb 2002 01:04:41 -0500 Received: (qmail 22452 invoked from network); 26 Feb 2002 06:08:45 -0000 Received: from rucc1.paradigm4.com.au (203.30.104.9) by mx1.paradigm4.com.au with SMTP; 26 Feb 2002 06:08:45 -0000 Received: (qmail 32014 invoked from network); 26 Feb 2002 06:16:10 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 26 Feb 2002 06:16:10 -0000 Received: (qmail 9725 invoked from network); 26 Feb 2002 06:08:13 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 26 Feb 2002 06:08:12 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Tue, 26 Feb 2002 17:21:18 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] X under a vserver? Message-ID: <3C7BC40E.17296.A88186@localhost> Priority: normal References: <1014634808.1664.21.camel@amd.vsen.dk> In-reply-to: X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 199 What's the security implication of having /dev/mem accessible from vserver? On Monday, 25 February 2002 at 18:26, Zardus@nbwrpg.com wrote: > When I set my X vserver up, I got similar problems. What I did was copy > over /dev/tty, /dev/tty0, /dev/tty7, and /dev/mem. After that, X died From vserver.error@solucorp.qc.ca Tue Feb 26 01:29:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1Q6TlAh012095; Tue, 26 Feb 2002 01:29:47 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1Q677j05252 for vserver.list; Tue, 26 Feb 2002 01:07:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from sokol.paradigm4.com.au (server.paradigm4.com.au [202.45.126.119] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1Q675R05248 for ; Tue, 26 Feb 2002 01:07:06 -0500 Received: (qmail 22504 invoked from network); 26 Feb 2002 06:11:16 -0000 Received: from rucc1.paradigm4.com.au (203.30.104.9) by mx1.paradigm4.com.au with SMTP; 26 Feb 2002 06:11:16 -0000 Received: (qmail 32089 invoked from network); 26 Feb 2002 06:18:40 -0000 Received: from p47.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (bofh@203.30.104.47) by server.paradigm4.com.au with SMTP; 26 Feb 2002 06:18:40 -0000 Received: (qmail 9733 invoked from network); 26 Feb 2002 06:10:43 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 26 Feb 2002 06:10:42 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Tue, 26 Feb 2002 17:23:48 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] Unification bug? Message-ID: <3C7BC4A4.4514.AACB76@localhost> Priority: normal References: In-reply-to: X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 200 On Monday, 25 February 2002 at 18:29, Zardus@nbwrpg.com wrote: > immutable tag is rearing up and preventing you from editing, but when you > save the file with vi, vi unlinks the file and writes another file (now I wish that _was_ the default vi behaviour. May be there is some config option that makes it do that but I couldn't find it so I had to use a wrapper script which does the unlinking Ed > a real file without the immutable tag) in its place, taking the problem > away. From vserver.error@solucorp.qc.ca Tue Feb 26 03:38:38 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1Q8cbAh013002; Tue, 26 Feb 2002 03:38:38 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1Q88V210526 for vserver.list; Tue, 26 Feb 2002 03:08:31 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1Q88UR10522 for ; Tue, 26 Feb 2002 03:08:30 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 6D9B11000 for ; Tue, 26 Feb 2002 09:08:29 +0100 (CET) Subject: Re: [vserver] unify check/ disk usage From: klavs klavsen To: Vserver Mailinglist In-Reply-To: <1014633148.1664.14.camel@amd.vsen.dk> References: <1014633148.1664.14.camel@amd.vsen.dk> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-rtBsex8ZZvX3HmnpaPTR" X-Mailer: Evolution/1.0.2 Date: 26 Feb 2002 09:08:27 +0100 Message-Id: <1014710909.1736.2.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 201 --=-rtBsex8ZZvX3HmnpaPTR Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Mon, 2002-02-25 at 11:32, klavs klavsen wrote: > Hi guys, >=20 > Here comes a long list of questions, sorry for the inconvenience but I > hope you can find the time to answer. >=20 > I'll try to gather all the information from this and earlier emailings > into some additions to the FAQ, to help all new vserver users - and > possible add some clever tips/usage to old users :-) >=20 > I was wondering, if any of you know way I could: >=20 > 1) get the disk usage of a vserver (the real one - discounting unified > files). I found vdu (I thought it existed, but couldn't find it in a bin directory - why is it under /usr/lib/vserver/?) However it seems a little off.. my skel server, which has a bare minimum of spaceusage, it says uses 325000K and that sounds like it's not unified at all :-( >=20 > 2) get a list of files, that is not unified (or a list of files that > are?) - this way I could easily check for changes in a vserver - such as > evidence of hackers and such. >=20 > 3) I have several vservers running now, and if I add some files to my > root server, how can I easily hardlink them to the vservers I want to be > able to access it? ln ? (this is to save disk space). can I use the vunify command? >=20 > btw. I'm looking into how to get Samba running under a vserver, as I > consider it one of the rather dangerous services to run and I would > therefore like it to be run under a vserver.. any tips or experiences > with this? I've heard there were some problems with the smb broadcasts? > why is this? Can I do anything about it (add a capability, like what > fixes the Bind issue?). >=20 > Thank you in advance. > --=20 > Regards, > Klavs Klavsen >=20 > -------------| This mail has been sent to you by: |------------ > Klavs Klavsen - OpenSource Consultant=20 > kl@vsen.dk - http://www.vsen.dk >=20 > Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 > Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA > --------------------[ I believe that... ]----------------------- > It is a myth that people resist change. People resist what other > people make them do, not what they themselves choose to do... > That's why companies that innovate successfully year after year > seek their peopl's ideas, let them initiate new projects and > encourage more experiments. -- Rosabeth Moss Kanter >=20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-rtBsex8ZZvX3HmnpaPTR Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8e0J74c1kHlhtW8oRAm11AJsHgoS2zl7HO8CLRIJkmlgX6grOHgCfU6mX F/DTc89KI/4e+4v3Z04wisg= =d+pz -----END PGP SIGNATURE----- --=-rtBsex8ZZvX3HmnpaPTR-- From vserver.error@solucorp.qc.ca Tue Feb 26 10:12:46 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QFCfAh016920; Tue, 26 Feb 2002 10:12:42 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QEpHk18527 for vserver.list; Tue, 26 Feb 2002 09:51:17 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ahriman.bucharest.roedu.net (ahriman.bucharest.roedu.net [141.85.128.71]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1QEpFR18523 for ; Tue, 26 Feb 2002 09:51:15 -0500 Received: (qmail 1026 invoked by uid 1000); 26 Feb 2002 14:57:36 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 26 Feb 2002 14:57:36 -0000 Date: Tue, 26 Feb 2002 16:57:36 +0200 (EET) From: Mihai RUSU X-X-Sender: To: Subject: [vserver] netstat like openwall Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 202 Hi Im curently testing 2.4.17ctx-7 with vserver 0.10. While playing this this I have noticed 2 issues: - netstat -an reports all connections no matter the curently selected context - /sbin/ifconfig shows eth0 for the physical eth device (without any ip) and my chipv4 ip as a ip alias (eth0:1) For the first issue I think there can be done a quick hack based on the sources of openwall patch (www.openwall.org) as follows: - openwall kernels show on netstat only the connections which belong to the current userid - I guess they have a check like current->owner == netstat->conn->owner and that could be done for vserver as current->s_context == netstat->conn->s_context :) (well pseudo code that is) The second issue doesnt matter. ---------------------------- Mihai RUSU Disclaimer: Any views or opinions presented within this e-mail are solely those of the author and do not necessarily represent those of any company, unless otherwise specifically stated. From vserver.error@solucorp.qc.ca Tue Feb 26 10:39:09 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QFd5Ah017145; Tue, 26 Feb 2002 10:39:06 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QFFaD19056 for vserver.list; Tue, 26 Feb 2002 10:15:36 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1QFFZR19052 for ; Tue, 26 Feb 2002 10:15:36 -0500 Received: from host213-122-193-122.in-addr.btopenworld.com ([213.122.193.122] helo=john-new) by protactinium.btinternet.com with esmtp (Exim 3.22 #8) id 16fjKH-0007Iv-00 for vserver@solucorp.qc.ca; Tue, 26 Feb 2002 15:15:34 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Tue, 26 Feb 2002 15:15:10 -0000 From: "John Lyons" To: Subject: RE: [vserver] unify check/ disk usage Date: Tue, 26 Feb 2002 15:15:09 -0000 Message-ID: <006b01c1bed8$619df600$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <1014710909.1736.2.camel@amd.vsen.dk> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 203 > However it seems a little off.. my skel server, which has a > bare minimum > of spaceusage, it says uses 325000K and that sounds like it's not > unified at all :-( > If that's the only vserver on your system then there are no hard links to anything else so the figure is probably correct. Build another unified vs from the sekl and check it again. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Tue Feb 26 10:44:27 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QFiNAh017218; Tue, 26 Feb 2002 10:44:25 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QFMV819261 for vserver.list; Tue, 26 Feb 2002 10:22:31 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1QFMVR19257 for ; Tue, 26 Feb 2002 10:22:31 -0500 Received: from host213-122-193-122.in-addr.btopenworld.com ([213.122.193.122] helo=john-new) by protactinium.btinternet.com with esmtp (Exim 3.22 #8) id 16fjR0-0000K0-00 for vserver@solucorp.qc.ca; Tue, 26 Feb 2002 15:22:31 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Tue, 26 Feb 2002 15:22:13 -0000 From: "John Lyons" To: Subject: RE: [vserver] Unification bug? Date: Tue, 26 Feb 2002 15:22:12 -0000 Message-ID: <006c01c1bed9$5dd86d10$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 204 > but allows > for that hard link to be unlinked so that you could replace > the file. If I understand correctly, Hmm, if this is correct then there are implications here. ie I build 10 unified vservers. That's nice, low disk usage, shared binary files and libs keep the server running well. If each root vs user decides to have a go at removing say apache/php/mysql and installs their own, then on the basis of what you've said above they could easily delete the packages and install their own. I then have 10 servers using a bigger chunk of disk space and using separate binaries/libs so performance suffers. Same would be true if someone subscribed to Up2Date as their vs could very quickly become out of sync with the other vs's. I'm just trying to think of the implications for using this in a commercial environment from the position that we need to maintain a set of almost identical vs's allowing the users to customise conf files for existing packages, add new packages but not to be able to modify the existing packages wrt removing or upgrading. Have I missed something here or am I roughly correct in my concerns? John From vserver.error@solucorp.qc.ca Tue Feb 26 11:07:49 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QG7mAh017420; Tue, 26 Feb 2002 11:07:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QFko319828 for vserver.list; Tue, 26 Feb 2002 10:46:50 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1QFkoR19824 for ; Tue, 26 Feb 2002 10:46:50 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1QFmJI02519 for vserver@solucorp.qc.ca; Tue, 26 Feb 2002 10:48:19 -0500 From: Jacques Gelinas Date: Tue, 26 Feb 2002 10:48:19 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] X-mailer: tlmpmail 0.1 Message-ID: <20020226104819.38d3eee21fe3@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 205 On Mon, 25 Feb 2002 09:06:13 -0500, Wray Cason wrote > I have servers with multiple ethernet interfaces. I have found that without > a NAT workaround, I can't get proper default routing for all vservers as > some are bound to the interface with the actual default gateway and other > aren't and therefore can't reach the default gateway. Is this a question > that is being addressed? Alternatively, am I missing something? Thanks. A vserver is forced to use a single IP, including outgoing traffic. Are you using some public IP for the vservers. If this is the case, I would say the problem is routing at your provider site or on the default gateway. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Feb 26 13:09:37 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QI9ZAh018604; Tue, 26 Feb 2002 13:09:36 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QHbI022176 for vserver.list; Tue, 26 Feb 2002 12:37:18 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1QHbHR22170 for ; Tue, 26 Feb 2002 12:37:17 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g1QHb4gg005297 for ; Tue, 26 Feb 2002 18:37:04 +0100 Date: Tue, 26 Feb 2002 18:37:04 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: vserver@solucorp.qc.ca Subject: Re: [vserver] netstat like openwall In-Reply-To: Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 206 On Tue, 26 Feb 2002, Mihai RUSU wrote: > Hi > > Im curently testing 2.4.17ctx-7 with vserver 0.10. While playing this this > I have noticed 2 issues: > - netstat -an reports all connections no matter the curently selected > context > - /sbin/ifconfig shows eth0 for the physical eth device (without any ip) > and my chipv4 ip as a ip alias (eth0:1) > > For the first issue I think there can be done a quick hack based on the > sources of openwall patch (www.openwall.org) as follows: > - openwall kernels show on netstat only the connections which belong to > the current userid > - I guess they have a check like current->owner == netstat->conn->owner > and that could be done for vserver as current->s_context == > netstat->conn->s_context :) (well pseudo code that is) > > The second issue doesnt matter. Checkout the new ctx8 patch, my patch for this socket stuff is included there. It's implemented so you can only see sockets that belongs to the same context as the context you are executing netstat in. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Tue Feb 26 14:50:32 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QJoSAh019567; Tue, 26 Feb 2002 14:50:28 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QJW9624537 for vserver.list; Tue, 26 Feb 2002 14:32:09 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ith.nbwrpg.com (cpe-24-221-148-187.az.sprintbbd.net [24.221.148.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1QJW8R24533 for ; Tue, 26 Feb 2002 14:32:09 -0500 Received: from ith.nbwrpg.com (ith.nbwrpg.com [10.0.0.254]) by ith.nbwrpg.com (Postfix) with ESMTP id C6639B471 for ; Tue, 26 Feb 2002 12:20:04 -0700 (MST) Date: Tue, 26 Feb 2002 12:20:04 -0700 (MST) From: To: Subject: Re: [vserver] X under a vserver? In-Reply-To: <3C7BC40E.17296.A88186@localhost> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 207 On Tue, 26 Feb 2002 edward@paradigm4.com.au wrote: > What's the security implication of having /dev/mem accessible from vserver? Good question. I didn't investigate it, since my X vserver has no outside access, so I don't know. - Yan From vserver.error@solucorp.qc.ca Tue Feb 26 14:53:13 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QJrDAh019587; Tue, 26 Feb 2002 14:53:13 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QJUF124495 for vserver.list; Tue, 26 Feb 2002 14:30:15 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ith.nbwrpg.com (cpe-24-221-148-187.az.sprintbbd.net [24.221.148.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1QJUER24490 for ; Tue, 26 Feb 2002 14:30:14 -0500 Received: from ith.nbwrpg.com (ith.nbwrpg.com [10.0.0.254]) by ith.nbwrpg.com (Postfix) with ESMTP id 7F2EAB471 for ; Tue, 26 Feb 2002 12:18:05 -0700 (MST) Date: Tue, 26 Feb 2002 12:18:05 -0700 (MST) From: To: Subject: RE: [vserver] Unification bug? In-Reply-To: <006c01c1bed9$5dd86d10$0100a8c0@johnnew> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 208 On Tue, 26 Feb 2002, John Lyons wrote: > Hmm, if this is correct then there are implications here. > > ie I build 10 unified vservers. That's nice, low disk usage, shared binary > files and libs keep the server running well. > > If each root vs user decides to have a go at removing say apache/php/mysql > and installs their own, then on the basis of what you've said above they > could easily delete the packages and install their own. I then have 10 > servers using a bigger chunk of disk space and using separate binaries/libs > so performance suffers. > > Same would be true if someone subscribed to Up2Date as their vs could very > quickly become out of sync with the other vs's. > > I'm just trying to think of the implications for using this in a commercial > environment from the position that we need to maintain a set of almost > identical vs's allowing the users to customise conf files for existing > packages, add new packages but not to be able to modify the existing > packages wrt removing or upgrading. > > Have I missed something here or am I roughly correct in my concerns? As I understand it, the immutable tag itself prevents unlinking as well. However, there's an immutable-mayunlink tag (or maybe its now part of the immutable tag), that enables it. If you don't want them to be able to modify packages, you could try setting the immutable-mayunlink only on the conf files, leave the rest totally locked down. Of course, this is as I understand it. If I have this wrong, someone tell me :-). - Yan From vserver.error@solucorp.qc.ca Tue Feb 26 14:57:57 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QJvvAh019642; Tue, 26 Feb 2002 14:57:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QJc3F24650 for vserver.list; Tue, 26 Feb 2002 14:38:03 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1QJc2R24646 for ; Tue, 26 Feb 2002 14:38:03 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1QJdUE04266 for vserver@dns.solucorp.qc.ca; Tue, 26 Feb 2002 14:39:30 -0500 From: Jacques Gelinas Date: Tue, 26 Feb 2002 14:39:30 -0500 To: Vserver mailing list Subject: [vserver] vserver 0.11 and kernel ctx-8 released X-mailer: tlmpmail 0.1 Message-ID: <20020226143930.23f7bd1e280a@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 209 Here is the change log vserver 0.11 Change log 1. Enhancements 1.1. /usr/sbin/vkill: new< This is a simple script. You do /usr/sbin/vkill PID and it will locate the vserver owning that process, enter its security context and issue the kill. 1.2. /usr/sbin/vserver Various enhancements: + /var/run Only files are erased from /var/run at vserver build and start-up time. Sub-directories are left. Also, /var/run/utmp is created empty at start-up time. + /var/log/wtmp It is created empty at vserver build time. It is ignored after that. + 5 seconds sleep after stopping a vserver, before killing the remaining processes. 5 instead of 2. + S_CAPS not processed when entering a vserver When entering a running vserver, the S_CAPS setting was not enabled for the shell. So if you had given the vserver some capabilities, they were not available when using "enter". 1.3. Dynamic system call number The 2 system calls used by the vserver project are not yet reserved in the kernel. To help people using the vserver patch with other patches, having conflicting system call number, the ctx-8 publish in /proc/self/status the system call numbers. The various utilities (chbind, reducecap and chcontext) are using this information on the fly. So you can move the system call around and the utilities keep working without recompile. 1.4. kernel ctx-8 Here is a small change log: + Dynamic system calls numbering + Per user/per context resources. The ulimit resources for a user used to be shared across vserver. This was plain wrong since user ID N in a vserver is unrelated to user ID N in another vserver. Contributed by Patrick Schaaf + Using 127.0.0.1 in a vserver. Note, this is unrelated to the multi-IP-per-vserver concept. A vserver normally use a single IP to listen and talk. In general, this is not a problem. But it breaks a little semantic. Most services out there simply do a bind on IP 0.0.0.0. This way, they expect to grab any incoming traffic. They also expect that talking to 127.0.0.1 is a good way (configuration less) to talk to themselves. Some services are using localhost (which is redirect to the ipv4root of the vserver) and some are using 127.0.0.1 directly. The ctx-8 kernel now maps 127.0.0.1 to the ipv4root of the vserver on the fly. This solves some issues with samba and should also (not tested) solve the issue with PostgreSQL. + Per vserver network activity. The output of netstat is now filtered by vserver. This includes /proc/net/tcp. This is not done per ipv4root but using the security context. This was contributed (oops sorry, lost the contributor name). 1.5. Man pages for most utilities Thanks to klavs klavsen , we have now a man page for all utilities. Now, we need a man page for the 2 system calls. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Feb 26 16:15:51 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QLFoAh020476; Tue, 26 Feb 2002 16:15:51 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QKoPs26316 for vserver.list; Tue, 26 Feb 2002 15:50:25 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from aquarius.diginode.net (aquarius.diginode.net [216.13.250.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1QKoOR26312 for ; Tue, 26 Feb 2002 15:50:24 -0500 Received: (qmail 18830 invoked from network); 26 Feb 2002 20:49:52 -0000 Received: from zerowing.pop-star.net (208.181.22.52) by aquarius.diginode.net with SMTP; 26 Feb 2002 20:49:52 -0000 Subject: Re: [vserver] vserver 0.11 and kernel ctx-8 released From: Andy Kwong To: vserver@solucorp.qc.ca In-Reply-To: <20020226143930.23f7bd1e280a@remtk.solucorp.qc.ca> References: <20020226143930.23f7bd1e280a@remtk.solucorp.qc.ca> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 26 Feb 2002 12:52:41 -0800 Message-Id: <1014756761.20198.32.camel@zerowing.pop-star.net> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 210 How about including the excellent vps2 utility in the next release of the utilities. It's great having the ctx number next to the pid in the list. On Tue, 2002-02-26 at 11:39, Jacques Gelinas wrote: > Here is the change log > > vserver 0.11 > Change log > > > 1. Enhancements > > > 1.1. /usr/sbin/vkill: new< > > This is a simple script. You do > > > > /usr/sbin/vkill PID > > > > > and it will locate the vserver owning that process, enter its security > context and issue the kill. > > > 1.2. /usr/sbin/vserver > > Various enhancements: > > > + /var/run > > Only files are erased from /var/run at vserver build and start-up > time. Sub-directories are left. Also, /var/run/utmp is created > empty at start-up time. > > > + /var/log/wtmp > > It is created empty at vserver build time. It is ignored after > that. > > > + 5 seconds sleep after stopping a vserver, before killing the > remaining processes. 5 instead of 2. > > > + S_CAPS not processed when entering a vserver > > When entering a running vserver, the S_CAPS setting was not enabled > for the shell. So if you had given the vserver some capabilities, > they were not available when using "enter". > > > > 1.3. Dynamic system call number > > The 2 system calls used by the vserver project are not yet reserved in > the kernel. To help people using the vserver patch with other patches, > having conflicting system call number, the ctx-8 publish in > /proc/self/status the system call numbers. The various utilities > (chbind, reducecap and chcontext) are using this information on the > fly. So you can move the system call around and the utilities keep > working without recompile. > > > > > > 1.4. kernel ctx-8 > > Here is a small change log: > > > + Dynamic system calls numbering > > > + Per user/per context resources. > > The ulimit resources for a user used to be shared across vserver. > This was plain wrong since user ID N in a vserver is unrelated to > user ID N in another vserver. > > Contributed by Patrick Schaaf > > > + Using 127.0.0.1 in a vserver. > > Note, this is unrelated to the multi-IP-per-vserver concept. A > vserver normally use a single IP to listen and talk. In general, > this is not a problem. But it breaks a little semantic. Most > services out there simply do a bind on IP 0.0.0.0. This way, they > expect to grab any incoming traffic. They also expect that talking > to 127.0.0.1 is a good way (configuration less) to talk to > themselves. Some services are using localhost (which is redirect to > the ipv4root of the vserver) and some are using 127.0.0.1 directly. > > The ctx-8 kernel now maps 127.0.0.1 to the ipv4root of the vserver > on the fly. This solves some issues with samba and should also (not > tested) solve the issue with PostgreSQL. > > > + Per vserver network activity. > > The output of netstat is now filtered by vserver. This includes > /proc/net/tcp. This is not done per ipv4root but using the security > context. This was contributed (oops sorry, lost the contributor > name). > > > > 1.5. Man pages for most utilities > > Thanks to klavs klavsen , we have now a man page for all > utilities. Now, we need a man page for the 2 system calls. > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Feb 26 16:27:55 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QLRsAh020635; Tue, 26 Feb 2002 16:27:54 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QKwoO26452 for vserver.list; Tue, 26 Feb 2002 15:58:50 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from maximus.dmz.ebrady.net (dhcp065-024-081-034.columbus.rr.com [65.24.81.34]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1QKwnR26448 for ; Tue, 26 Feb 2002 15:58:49 -0500 Received: from rdebrady (node187121.liebert.com [65.209.187.121]) (authenticated (0 bits)) by maximus.dmz.ebrady.net (8.11.3/8.11.0) with ESMTP id g1QKx3e10243 (using TLSv1/SSLv3 with cipher RC4-MD5 (128 bits) verified NO) for ; Tue, 26 Feb 2002 15:59:06 -0500 Message-ID: <00f601c1bf08$5d4fa9b0$64d4047e@research.liebert.com> From: "Ed Brady" To: Subject: [vserver] Test drive a vserver. Date: Tue, 26 Feb 2002 15:58:34 -0500 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_00F3_01C1BEDE.71F60410" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 211 This is a multi-part message in MIME format. ------=_NextPart_000_00F3_01C1BEDE.71F60410 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable I have been following this list for a little while, and am thinking = about setting up my own vserver to experiment with, however I would like = to "testdrive" a running server to get a feel for vserver's capabilities = before I take the time to set up my own. A couple of questions: 1. Are there very many ISP's using vserver yet? If so, would they give = me full access to my vserver to experiment with? =20 2. Are there any "Open" vservers that I could log into to allow me to = do a preliminary testdrive of the functionality? Ed Brady ------=_NextPart_000_00F3_01C1BEDE.71F60410 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
 
I have been following this list for a = little while,=20 and am thinking about setting up my own vserver to experiment with,=20 however I would like to "testdrive" a running server to get a = feel=20 for vserver's capabilities before I take the time to set up my = own.   A couple of questions:
 
1.  Are there very many ISP's = using vserver=20 yet?  If so, would they give me full access to my vserver to=20 experiment with? 
 
2.  Are there any "Open" vservers = that I could=20 log into to allow me to do a preliminary testdrive of the=20 functionality?
 
 
Ed Brady
 
 
------=_NextPart_000_00F3_01C1BEDE.71F60410-- From vserver.error@solucorp.qc.ca Tue Feb 26 17:34:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1QMYlAh021295; Tue, 26 Feb 2002 17:34:47 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QM9GW28050 for vserver.list; Tue, 26 Feb 2002 17:09:16 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1QM9FR28046 for ; Tue, 26 Feb 2002 17:09:15 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1QMAhm06124 for vserver@solucorp.qc.ca; Tue, 26 Feb 2002 17:10:43 -0500 From: Jacques Gelinas Date: Tue, 26 Feb 2002 17:10:43 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] netstat like openwall X-mailer: tlmpmail 0.1 Message-ID: <20020226171043.9b19f7933cd5@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 212 On Tue, 26 Feb 2002 16:57:36 -0500, Mihai RUSU wrote > Hi > > Im curently testing 2.4.17ctx-7 with vserver 0.10. While playing this this > I have noticed 2 issues: > - netstat -an reports all connections no matter the curently selected > context Fixed in ctx-8 > - /sbin/ifconfig shows eth0 for the physical eth device (without any ip) > and my chipv4 ip as a ip alias (eth0:1) This is fixable by modifying /proc/net/dev. I want to create a new proc (called vproc) to filter other information. > For the first issue I think there can be done a quick hack based on the > sources of openwall patch (www.openwall.org) as follows: > - openwall kernels show on netstat only the connections which belong to > the current userid The patch on ctx-8 uses the security context. The solution in openwall, should work on top of that and would be a per-vserver feature. openwall is part of the LSM I think. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Feb 26 19:02:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1R02EAh022109; Tue, 26 Feb 2002 19:02:15 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1QNZrB29590 for vserver.list; Tue, 26 Feb 2002 18:35:53 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.thedeacon.org (thedeacon.org [64.71.202.149]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1QNZrR29586 for ; Tue, 26 Feb 2002 18:35:53 -0500 Received: from thedeacon.org (cyrix-m3.thedeacon.org [172.23.172.133]) by mail.thedeacon.org (Postfix) with SMTP id 6B7B6241CD for ; Tue, 26 Feb 2002 16:35:47 -0700 (MST) Received: from 204.118.209.253 (SquirrelMail authenticated user deacon) by webmail.thedeacon.org with HTTP; Tue, 26 Feb 2002 16:39:19 -0700 (MST) Message-ID: <4984.204.118.209.253.1014766759.squirrel@webmail.thedeacon.org> Date: Tue, 26 Feb 2002 16:39:19 -0700 (MST) Subject: [vserver] ctx-8 kernel patches against -ac available From: "Paul Kreiner" To: X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.4) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 213 New vserver (ctx-8) kernel patches against 2.4.19-pre1-ac1 are now available in the usual place: http://www.thedeacon.org/patches/ Also available are (ctx-7) patches against 2.4.18-pre9-ac2 and 2.4.18-rc2- ac1, and patches against -ac trees to add XFS support. Try 'em out, give me feedback... they're working in my environment. _Paul K. From vserver.error@solucorp.qc.ca Tue Feb 26 20:22:05 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1R1M3Ah023001; Tue, 26 Feb 2002 20:22:03 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1R11Jh31258 for vserver.list; Tue, 26 Feb 2002 20:01:19 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from figure1.int.wirex.com (cerebus.wirex.com [65.102.14.138]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1R11IR31254 for ; Tue, 26 Feb 2002 20:01:18 -0500 Received: (from chris@localhost) by figure1.int.wirex.com (8.11.6/8.11.6) id g1R18Yu08376; Tue, 26 Feb 2002 17:08:34 -0800 Date: Tue, 26 Feb 2002 17:08:34 -0800 From: Chris Wright To: vserver@solucorp.qc.ca Cc: Mihai RUSU Subject: Re: [vserver] netstat like openwall Message-ID: <20020226170834.E6959@figure1.int.wirex.com> References: <20020226171043.9b19f7933cd5@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020226171043.9b19f7933cd5@remtk.solucorp.qc.ca>; from jack@solucorp.qc.ca on Tue, Feb 26, 2002 at 05:10:43PM -0500 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 214 On Tue, 26 Feb 2002 16:57:36 -0500, Mihai RUSU wrote > > For the first issue I think there can be done a quick hack based on the > > sources of openwall patch (www.openwall.org) as follows: > > - openwall kernels show on netstat only the connections which belong to > > the current userid I thought viewing /proc/net/* was limited by group id (you have to have the special group id set with gid= mount option). * Jacques Gelinas (jack@solucorp.qc.ca) wrote: > The patch on ctx-8 uses the security context. The solution in openwall, > should work on top of that and would be a per-vserver feature. openwall > is part of the LSM I think. Bits and pieces of Openwall are ported to LSM. The SECURE_PROC bit has been waiting for an interface change in the VFS that should be available soon (viro mentioned something like the next week or two for the VFS change). cheers, -chris From vserver.error@solucorp.qc.ca Tue Feb 26 23:52:12 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1R4qAAh024781; Tue, 26 Feb 2002 23:52:11 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1R4Q1Z02703 for vserver.list; Tue, 26 Feb 2002 23:26:01 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1R4Q1R02699 for ; Tue, 26 Feb 2002 23:26:01 -0500 Received: from remtk.solucorp.qc.ca (g36-72.citenet.net [206.123.36.72]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1R4U9680836 for ; Tue, 26 Feb 2002 23:30:09 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1R42fL02579 for vserver@solucorp.qc.ca; Tue, 26 Feb 2002 23:02:41 -0500 From: Jacques Gelinas Date: Tue, 26 Feb 2002 23:02:41 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] unify check/ disk usage X-mailer: tlmpmail 0.1 Message-ID: <20020226230241.23540e711f3f@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 215 On Tue, 26 Feb 2002 09:08:27 -0500, klavs klavsen wrote > On Mon, 2002-02-25 at 11:32, klavs klavsen wrote: > > I'll try to gather all the information from this and earlier emailings > > into some additions to the FAQ, to help all new vserver users - and > > possible add some clever tips/usage to old users :-) > > > > I was wondering, if any of you know way I could: > > > > 1) get the disk usage of a vserver (the real one - discounting unified > > files). > I found vdu (I thought it existed, but couldn't find it in a bin > directory - why is it under /usr/lib/vserver/?) Because it is experimental and I was unsure if it was useful. > However it seems a little off.. my skel server, which has a bare minimum > of spaceusage, it says uses 325000K and that sounds like it's not > unified at all :-( vdu simply counts the space used by all file with a single link. It assumes that any file with more than one link is probably unified, which is almost true (very few files in a linux distribution are hard linked together) > > 2) get a list of files, that is not unified (or a list of files that > > are?) - this way I could easily check for changes in a vserver - such as > > evidence of hackers and such. vdu could use this instead. If the file has the immutable bit on, and has more than one link, it must be unified. I am thinking about a new utility called vfiles. This utility will produced a list of file not unified by comparing a vserver with either a reference vserver or a package list (a package list + versions in a text file). Tonight I wanted to bring a vserver home (how cool :-) ). So I tar it and compress it. Got 500megs. Not so bad. It fits on my notebook. But wait, 90% of the files in there are already available on my workstation at home. No need to bring them. So using vfiles, I would be able to select all the file no unified (including added packages not found in the reference), bring that home, and then use vunify to bring back the vserver to life :-) Using vfiles, we could do various things, such as vbackup, backuping only what it needed. Using vfiles, it becomes very easy to backup a vserver in the root server and then compare that to prove the vserver has not been hacked. But I would like to see something else in this area. For example, a per vserver flag could change the meaning immutable-unlink fiag. It would be possible to turn the vserver flag on and off from the root server. When the per server flag (called it "frozen") is turned on, the ummutable-unlink flag is disregarded. This means, instantly, all unified files turned to immutable only: A vserver is not allowed to changed them anymore. By using immutable flag on other files as well (config, the rpm database), you can lock a vserver completly in few seconds. This way, you know an intruder can't do anything. Now, you can play game with that. Another per vserver flag, called "alarm" may be used. When on, anytime an immutable file is modified (well, anytime a modification is attempted), the process doing that is locked and some external process is triggered paging the admin. You can trap intrusion in real time. All those funny feature could be implement using the Linux Security Module I think. > > 3) I have several vservers running now, and if I add some files to my > > root server, how can I easily hardlink them to the vservers I want to be > > able to access it? ln ? (this is to save disk space). > can I use the vunify command? vunify operates on packages, so it won't unify anything. You can use hard link at any time to share a file. The best solution is often to use the mount --bind option. It allows you to share a directory. For example, at the office, when we create a vserver for a developper, we give him his home directory. So in the per vserver startup script, we do mount --bind /home/jacques /vserver/jack/home/jacques This way, jacques feels at home. He has access to his personal files and he has "root access". Ye! > > btw. I'm looking into how to get Samba running under a vserver, as I > > consider it one of the rather dangerous services to run and I would > > therefore like it to be run under a vserver.. any tips or experiences > > with this? I've heard there were some problems with the smb broadcasts? > > why is this? Can I do anything about it (add a capability, like what > > fixes the Bind issue?). Using kernel ctx-8, samba should work fine in a vserver. The only issue is that the vserver must be either in the DNS or you must use a WINS to reach it (which you probably do anyway). --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Feb 26 23:52:18 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1R4qGAh024785; Tue, 26 Feb 2002 23:52:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1R4Q0D02696 for vserver.list; Tue, 26 Feb 2002 23:26:00 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1R4PxR02692 for ; Tue, 26 Feb 2002 23:25:59 -0500 Received: from remtk.solucorp.qc.ca (g36-72.citenet.net [206.123.36.72]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1R4U8680833 for ; Tue, 26 Feb 2002 23:30:08 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1R4D5I02586 for vserver@solucorp.qc.ca; Tue, 26 Feb 2002 23:13:05 -0500 From: Jacques Gelinas Date: Tue, 26 Feb 2002 23:13:05 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] Unification bug? X-mailer: tlmpmail 0.1 Message-ID: <20020226231305.a7dfd215282d@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 216 On Tue, 26 Feb 2002 15:22:12 -0500, John Lyons wrote > > but allows > > for that hard link to be unlinked so that you could replace > > the file. If I understand correctly, > > Hmm, if this is correct then there are implications here. > > ie I build 10 unified vservers. That's nice, low disk usage, shared binary > files and libs keep the server running well. > > If each root vs user decides to have a go at removing say apache/php/mysql > and installs their own, then on the basis of what you've said above they > could easily delete the packages and install their own. I then have 10 > servers using a bigger chunk of disk space and using separate binaries/libs > so performance suffers. Yes this is true. But you can run vunify at any time to re-unify them. > Same would be true if someone subscribed to Up2Date as their vs could very > quickly become out of sync with the other vs's. There is still a little flaw in vunify. It does a unlink/link operation to unify a file. I have to change this to "link to a temp file/rename it over the original". Using this strategy, you will be able to run vunify without stoping the vservers. Note there is still a little drawback. If I update apache, and restart it and then you vunify it while it is running, the non-unified binary will still be in use. So the vunify effect won't be immediate. Nevertheless, by running vunify once in a while, you should be able to keep your vserver under control (sort of). Note that package manager (rpm for one) always operate like this: unlink/replace. This explains why you can pretty much update any package on linux, even if it is in use. For example, update glibc simply works, even if glibc is always in use on a linux box. > I'm just trying to think of the implications for using this in a commercial > environment from the position that we need to maintain a set of almost > identical vs's allowing the users to customise conf files for existing > packages, add new packages but not to be able to modify the existing > packages wrt removing or upgrading. vunify and vbuild allows you to select the immutability. The default is immutable-file + immutable-unlink. You can select immutable-file only. If you do so, there is no way a vserver admin can change those file. Trying to upgrade the package will fail badly. So using this, you have some control > Have I missed something here or am I roughly correct in my concerns? Yes you understand the issue. I have outlined solutions above, but there may still be some practical issues. Many ASPs are working on vservers setup so the next few months will teach us few new tricks :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 27 04:13:44 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1R9DgAh028142; Wed, 27 Feb 2002 04:13:43 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1R8saL06808 for vserver.list; Wed, 27 Feb 2002 03:54:36 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ahriman.bucharest.roedu.net (ahriman.bucharest.roedu.net [141.85.128.71]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1R8sZR06804 for ; Wed, 27 Feb 2002 03:54:36 -0500 Received: (qmail 22141 invoked by uid 1000); 27 Feb 2002 09:01:13 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 27 Feb 2002 09:01:13 -0000 Date: Wed, 27 Feb 2002 11:01:13 +0200 (EET) From: Mihai RUSU X-X-Sender: To: Subject: Re: [vserver] ctx-8 kernel patches against -ac available In-Reply-To: <4984.204.118.209.253.1014766759.squirrel@webmail.thedeacon.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 217 On Tue, 26 Feb 2002, Paul Kreiner wrote: > New vserver (ctx-8) kernel patches against 2.4.19-pre1-ac1 are now > available in the usual place: > http://www.thedeacon.org/patches/ > cool! > Also available are (ctx-7) patches against 2.4.18-pre9-ac2 and 2.4.18-rc2- > ac1, and patches against -ac trees to add XFS support. > > Try 'em out, give me feedback... they're working in my environment. > Well, would be so kind and try to patch ctx8 into 2.4.9-21SGI_XFS_1.0.2 ? Its the last redhat errata kernel with the XFS release 1.0.2 bits. You can find it in ftp://oss.sgi.com/projectx/xfs/download/Release-1.0.2/kernel_rpms/ i386/contributed-RH-updates/2.4.9-21-RH7.2/ kernel-source-2.4.9-21SGI_XFS_1.0.2.i386.rpm PS: I found it to be the most stable release in production ---------------------------- Mihai RUSU Disclaimer: Any views or opinions presented within this e-mail are solely those of the author and do not necessarily represent those of any company, unless otherwise specifically stated. From vserver.error@solucorp.qc.ca Wed Feb 27 04:21:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1R9LRAh028251; Wed, 27 Feb 2002 04:21:28 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1R96iI07204 for vserver.list; Wed, 27 Feb 2002 04:06:44 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ahriman.bucharest.roedu.net (ahriman.bucharest.roedu.net [141.85.128.71]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1R96hR07200 for ; Wed, 27 Feb 2002 04:06:43 -0500 Received: (qmail 23022 invoked by uid 1000); 27 Feb 2002 09:13:20 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 27 Feb 2002 09:13:20 -0000 Date: Wed, 27 Feb 2002 11:13:20 +0200 (EET) From: Mihai RUSU X-X-Sender: To: Subject: [vserver] ext2/ext3 question Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 218 Hi While patching ctx8 against 2.4.17 I have noticed that it does patch some files in the fs/ext2 and fs/ext3 directories: patching file linux-2.4.17/fs/ext2/ialloc.c patching file linux-2.4.17/fs/ext2/inode.c patching file linux-2.4.17/fs/ext2/ioctl.c patching file linux-2.4.17/fs/ext3/ialloc.c patching file linux-2.4.17/fs/ext3/inode.c patching file linux-2.4.17/fs/ext3/ioctl.c What is this for? If I use some other fs I miss some vserver features? Thanks ---------------------------- Mihai RUSU Disclaimer: Any views or opinions presented within this e-mail are solely those of the author and do not necessarily represent those of any company, unless otherwise specifically stated. From vserver.error@solucorp.qc.ca Wed Feb 27 10:58:30 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1RFwSAh030944; Wed, 27 Feb 2002 10:58:29 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1RFUua14724 for vserver.list; Wed, 27 Feb 2002 10:30:56 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1RFUoR14720 for ; Wed, 27 Feb 2002 10:30:55 -0500 Received: from host213-1-137-176.btinternet.com ([213.1.137.176] helo=john-new) by gadolinium.btinternet.com with esmtp (Exim 3.22 #8) id 16g62a-0001c2-00 for vserver@solucorp.qc.ca; Wed, 27 Feb 2002 15:30:49 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Wed, 27 Feb 2002 15:30:14 -0000 From: "John Lyons" To: Subject: [vserver] New features vfiles Date: Wed, 27 Feb 2002 15:30:12 -0000 Message-ID: <005301c1bfa3$a71266a0$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <20020226230241.23540e711f3f@remtk.solucorp.qc.ca> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 219 > So using vfiles, I would be able to select all the file no > unified (including > added packages not found in the reference), bring that home, and then > use vunify to bring back the vserver to life :-) > > Using vfiles, we could do various things, such as vbackup, backuping > only what it needed. > > Using vfiles, it becomes very easy to backup a vserver in the > root server > and then compare that to prove the vserver has not been hacked. All of the features that you've described are quite fantastic. We're into budget web hosting but we're still paranoid about reliability and uptimes. As we don't have much money to spend on hardware solutions much of what we do is with opensource software and 'seat of the pants' hacks. The host server is always going to be a single point of failure for us. (No Raid or dual PSU's for us) so my hosting infrastructure is based around 2 or 3 live host servers with 1 hot standby server mirroring each live hosts' vservers. Anyone that's been here before knows that backing up every 24 hours is ok, but if we loose a drive on a host 23 hours after the last backup then we're loosing 23 hours of emails in pop accounts and mysql data which can't be recovered. I've looked at network Raid and a few backup packages but they're all more complex that vserver itself! Being able to sync a hot standby server (say using rsync) or some other package and only backing up the live changing data every hour or so would be a fantastic step forward. (I know rsync already will do this but over 10 or 20 vservers file systems the memory usage would be too high to run it very frequently) Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Wed Feb 27 11:05:55 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1RG5sAh031025; Wed, 27 Feb 2002 11:05:55 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1RFmVg15119 for vserver.list; Wed, 27 Feb 2002 10:48:31 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1RFmUR15115 for ; Wed, 27 Feb 2002 10:48:31 -0500 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g1RFtPk13645 for ; Wed, 27 Feb 2002 07:55:25 -0800 X-Authentication-Warning: main.cyber-office.net: raanders owned process doing -bs Date: Wed, 27 Feb 2002 07:55:24 -0800 (PST) From: X-X-Sender: To: Subject: [vserver] Unification for DUMBIES Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 220 I've tried to created a unified vserver with less than satisfactory results. I'm sure it is because of a design decision I made when building the server. I created a partition for each planned vserver. It's my understanding that unification uses hard links and that hard links can't be done across file-systems/partitions. Are these two thoughts correct? If so my plan to to merge the several partitions into one using partd (fortunately they are all contiguous on the hard-drive.) Mount that big partition as /vservers and let it rip. I do see one problem and that is I have other vservers running that were not unified on a different partition and hard-drive. Is there anyway let/force the vserver exist outside the /vservers directory? As always any and all help is appreciated. Best, Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Wed Feb 27 12:26:30 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1RHQTAh031962; Wed, 27 Feb 2002 12:26:29 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1RH8i216866 for vserver.list; Wed, 27 Feb 2002 12:08:44 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from localhost.localdomain (pia153-99.pioneernet.net [66.114.153.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1RH8hR16862 for ; Wed, 27 Feb 2002 12:08:43 -0500 Received: from openwebmail (casonmaster [127.0.0.1]) by localhost.localdomain (8.11.6/8.11.6) with ESMTP id g1RHAsX28767 for ; Wed, 27 Feb 2002 09:10:54 -0800 From: "Wray Cason" To: vserver@solucorp.qc.ca Subject: Re: [vserver] New features vfiles Date: Wed, 27 Feb 2002 09:10:54 -0800 Message-Id: <20020227091054.A43167@auxiliumcomputing.com> In-Reply-To: <005301c1bfa3$a71266a0$0100a8c0@johnnew> References: <20020226230241.23540e711f3f@remtk.solucorp.qc.ca> X-Mailer: Open WebMail 1.53 20020112 X-OriginatingIP: 192.168.0.2 (auxiliumcomputing) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 221 > > Being able to sync a hot standby server (say using rsync) > or some other package and only backing up the live changing > data every hour or so would be a fantastic step forward. (I > know rsync already will do this but over 10 or 20 vservers > file systems the memory usage would be too high to run it very > frequently) This is very similar to a problem I have been wrestling with. My best solution so far is to use mirrordir http://mirrordir.sourceforge.net/mirrordir.php on top of nfs. By running the mirrordir process on the standby system, I can save the production system the stress. Of course, the nfs daemon on the production system is quite busy. This is not an adequate solution in my opinion. Ideally, I want to mirror the production file system in real time. I just don't know if that is possible without investing in some hardware solution. -- Wray Cason "Wrayman" Auxilium Computing www.auxiliumcomputing.com wrayman@auxiliumcomputing.com main: 206-595-2080 fax: 425-895-9825 From vserver.error@solucorp.qc.ca Wed Feb 27 14:01:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1RJ1vAh000417; Wed, 27 Feb 2002 14:01:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1RIZDr18823 for vserver.list; Wed, 27 Feb 2002 13:35:13 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from localhost.localdomain (pia153-99.pioneernet.net [66.114.153.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1RIZCR18819 for ; Wed, 27 Feb 2002 13:35:12 -0500 Received: from openwebmail (casonmaster [127.0.0.1]) by localhost.localdomain (8.11.6/8.11.6) with ESMTP id g1RIbSX02094 for ; Wed, 27 Feb 2002 10:37:28 -0800 From: "Wray Cason" To: vserver@solucorp.qc.ca Subject: RE: [vserver] routing Date: Wed, 27 Feb 2002 10:37:28 -0800 Message-Id: <20020227103728.A81445@auxiliumcomputing.com> In-Reply-To: References: <20020225102204.A43602@auxiliumcomputing.com> X-Mailer: Open WebMail 1.53 20020112 X-OriginatingIP: 192.168.0.2 (auxiliumcomputing) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 222 > > No you can't set default routes in vserver > what you need is somewhat more advanced routing in the real > server. > > say that you have eth0 which is the default interface for > which you have a default gateway configured and now you want > a vserver to use eth1 instead, then maybe somethine like this > can help. > > ip rule add from table 200 > > ip route add dev eth1 table 200 > ip route add default via > dev eth1 table 200 > > replace with the ipaddress the vserver > is using. is something like 192.168.1.0/24 > is maybe 192.168.1.1 ? > replace with actual default gateway. > > if you have several vserver that should use eth1 but diffrent > ipaddresses and those addresses are located in the same subnet > you can add more 'ip rule' rows, one for each ip. > > and if you have vserver that use an ipaddress on eth1 that's > part of another subnet you have to add all these 3 rules but > change the table number from 200 to something diffrent, say > 201. > > I hope this helps. > > /Martin > > Never argue with an idiot. They drag you down to their level, Thank you very much. This was very helpful to me. I have a related question. Please confirm or refute that this is true: A vserver can never, under any circumstances be aware of networks and interfaces in the base computer other than the one it is bound to. As such, if all base interfaces are addressed with private unroutable addresses, and only the vserver has the public address, it is impossible to route all server traffic out through the public address. Thanks. I have found this mailing list to be incredibly helpful and educational. -- Wray Cason "Wrayman" Auxilium Computing www.auxiliumcomputing.com wrayman@auxiliumcomputing.com main: 206-595-2080 fax: 425-895-9825 From vserver.error@solucorp.qc.ca Wed Feb 27 14:53:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1RJraAh001009; Wed, 27 Feb 2002 14:53:38 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1RJU2R19924 for vserver.list; Wed, 27 Feb 2002 14:30:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1RJU1R19919 for ; Wed, 27 Feb 2002 14:30:01 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g1RJTkgg014340 for ; Wed, 27 Feb 2002 20:29:49 +0100 Date: Wed, 27 Feb 2002 20:29:46 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: vserver@solucorp.qc.ca Subject: RE: [vserver] routing In-Reply-To: <20020227103728.A81445@auxiliumcomputing.com> Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 223 On Wed, 27 Feb 2002, Wray Cason wrote: [snip] > Thank you very much. This was very helpful to me. I have a related > question. Please confirm or refute that this is true: > > A vserver can never, under any circumstances be aware of networks and > interfaces in the base computer other than the one it is bound to. As such, > if all base interfaces are addressed with private unroutable addresses, and > only the vserver has the public address, it is impossible to route all > server traffic out through the public address. hmm not entirely sure what you mean... the base server has private addresses and only the vserver has a public ip. that part I think I got but the "impossible to route all server traffic out through the public address" part I don't really get, do you mean all traffic from this vserver? from the base server? or everything (base + all vservers)? /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Wed Feb 27 17:00:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1RM0vAh003315; Wed, 27 Feb 2002 17:00:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1RLfCu22692 for vserver.list; Wed, 27 Feb 2002 16:41:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1RLfAR22688 for ; Wed, 27 Feb 2002 16:41:11 -0500 Received: from tpx20.vsen.dk (unknown [192.168.1.50]) by www.vsen.dk (Postfix) with ESMTP id 34EA31000 for ; Wed, 27 Feb 2002 22:41:08 +0100 (CET) Subject: Re: [vserver] unify check/ disk usage From: Klavs Klavsen To: vserver@solucorp.qc.ca In-Reply-To: <20020226230241.23540e711f3f@remtk.solucorp.qc.ca> References: <20020226230241.23540e711f3f@remtk.solucorp.qc.ca> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-qnwWFkL/F9iWCFaBLzy9" X-Mailer: Evolution/1.0.2 Date: 27 Feb 2002 22:41:07 +0100 Message-Id: <1014846069.1167.28.camel@tpx20.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 224 --=-qnwWFkL/F9iWCFaBLzy9 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Wed, 2002-02-27 at 05:02, Jacques Gelinas wrote: > On Tue, 26 Feb 2002 09:08:27 -0500, klavs klavsen wrote > > On Mon, 2002-02-25 at 11:32, klavs klavsen wrote: >=20 > > > I'll try to gather all the information from this and earlier emailing= s > > > into some additions to the FAQ, to help all new vserver users - and > > > possible add some clever tips/usage to old users :-) > > > > > > I was wondering, if any of you know way I could: > > > > > > 1) get the disk usage of a vserver (the real one - discounting unifie= d > > > files). > > I found vdu (I thought it existed, but couldn't find it in a bin > > directory - why is it under /usr/lib/vserver/?) >=20 > Because it is experimental and I was unsure if it was useful. I believe it is. :-) =20 > > However it seems a little off.. my skel server, which has a bare minimu= m > > of spaceusage, it says uses 325000K and that sounds like it's not > > unified at all :-( >=20 > vdu simply counts the space used by all file with a single link. It assum= es that > any file with more than one link is probably unified, which is almost tru= e > (very few files in a linux distribution are hard linked together) which would mean, that my skel-server is not unified against the base syste= m? 325mb is a lot for config files only, However a du -csh /vserver/skel says 403mb - which means that there are some unified files. Can this have anything to do, with the fact that I've rpm -e a lot of packages within the skel server? (didn't use vrpm). =20 >=20 > > > 2) get a list of files, that is not unified (or a list of files that > > > are?) - this way I could easily check for changes in a vserver - such= as > > > evidence of hackers and such. >=20 > vdu could use this instead. If the file has the immutable bit on, and has > more than one link, it must be unified. the immutable-unlink flag, could be checked with lsattr (if so, what's the = letter for it?)? =20 > I am thinking about a new utility called vfiles. This utility will produc= ed > a list of file not unified by comparing a vserver with either a reference > vserver or a package list (a package list + versions in a text file). sounds interesting, and definetely useful. Would be a good thing to make some switches, just like DU so one can choose how and what the user exactly wants. As I see, it there are a few uses for different kind of output, which basically belongs to the unified / not-unified question.(f.ex. the ability to find files, that are outside, the "not-unified" dirs only, and have been un-unified etc.).I'm sure you can think of many more. >=20 > Tonight I wanted to bring a vserver home (how cool :-) ). So I tar it and= compress > it. Got 500megs. Not so bad. It fits on my notebook. But wait, 90% of the= files > in there are already available on my workstation at home. No need to brin= g them. But are they the exact version? would require, that you the same version of RH, and have applied the same updates. > So using vfiles, I would be able to select all the file no unified (inclu= ding > added packages not found in the reference), bring that home, and then > use vunify to bring back the vserver to life :-) fair enough, but one would have to be able to check against the reference of the home-server. =20 > Using vfiles, we could do various things, such as vbackup, backuping > only what it needed. kinda like rsync. sounds very useful. =20 > Using vfiles, it becomes very easy to backup a vserver in the root server > and then compare that to prove the vserver has not been hacked. One of the very interesting features. However, it should be possible to che= ck this without comparing against a backup - f.ex. by having a list of files that "should be" unified - and then checking if they still are. If they have been unlinked - something weird is up.. and if you know you updated the vserver only, then you could just update the list of unified-files. The list of should-be unified files, are also good to apply a tripwire-like checksum check root against vserver, if one does not have a checksum database installed. =20 > But I would like to see something else in this area. For example, a per > vserver flag could change the meaning immutable-unlink fiag. It would > be possible to turn the vserver flag on and off from the root server. Whe= n > the per server flag (called it "frozen") is turned on, the ummutable-unli= nk > flag is disregarded. This means, instantly, all unified files turned to i= mmutable > only: A vserver is not allowed to changed them anymore. is this not possible now, by removing the immutable-unlink flag, from the necessary vservers only? sorry if I'm a but dumb here, but what's the extra features with the per vserver flag? >=20 > By using immutable flag on other files as well (config, the rpm database)= , you can > lock a vserver completly in few seconds. This way, you know an intruder c= an't > do anything. that's cool. > Now, you can play game with that. Another per vserver flag, called "alarm= " may > be used. When on, anytime an immutable file is modified (well, anytime a > modification is attempted), the process doing that is locked and some > external process is triggered paging the admin. You can trap intrusion in= real > time. sounds like a cool and inexpensive way of doing Instant IDS. > All those funny feature could be implement using the Linux Security Modul= e > I think. I would love to hear what your plans are with the LSM and vserver. I visite= d Openwall but couldn't find any texts about what LSM is, and what it enabl= es. =20 > > > 3) I have several vservers running now, and if I add some files to my > > > root server, how can I easily hardlink them to the vservers I want to= be > > > able to access it? ln ? (this is to save disk space). > > can I use the vunify command? >=20 > vunify operates on packages, so it won't unify anything. You can use > hard link at any time to share a file. The best solution is often to use = the > mount --bind option. It allows you to share a directory. For example, at = the > office, when we create a vserver for a developper, we give him his home > directory. So in the per vserver startup script, we do > mount --bind /home/jacques /vserver/jack/home/jacques >=20 > This way, jacques feels at home. He has access to his personal files and > he has "root access". Ye! >=20 > > > btw. I'm looking into how to get Samba running under a vserver, as I > > > consider it one of the rather dangerous services to run and I would > > > therefore like it to be run under a vserver.. any tips or experiences > > > with this? I've heard there were some problems with the smb broadcast= s? > > > why is this? Can I do anything about it (add a capability, like what > > > fixes the Bind issue?). >=20 > Using kernel ctx-8, samba should work fine in a vserver. The only issue i= s > that the vserver must be either in the DNS or you must use a WINS to reac= h > it (which you probably do anyway). Great. what change enabled this? (i'm curious by nature :-)=20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-qnwWFkL/F9iWCFaBLzy9 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8fVJz4c1kHlhtW8oRAkIpAJ9OudLeAqzY4DhFi0Mkye7bSoTd3wCePado bAqmEyoCLVsIeis2Ocqsf7A= =x0f8 -----END PGP SIGNATURE----- --=-qnwWFkL/F9iWCFaBLzy9-- From vserver.error@solucorp.qc.ca Wed Feb 27 17:05:44 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1RM5iAh003370; Wed, 27 Feb 2002 17:05:44 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1RLkQ422819 for vserver.list; Wed, 27 Feb 2002 16:46:26 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1RLkPR22815 for ; Wed, 27 Feb 2002 16:46:25 -0500 Received: from tpx20.vsen.dk (unknown [192.168.1.50]) by www.vsen.dk (Postfix) with ESMTP id 34CB21000 for ; Wed, 27 Feb 2002 22:46:22 +0100 (CET) Subject: Re: [vserver] ext2/ext3 question From: Klavs Klavsen To: vserver@solucorp.qc.ca In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-lwE9UQ18ETc7X88Ax+VJ" X-Mailer: Evolution/1.0.2 Date: 27 Feb 2002 22:46:22 +0100 Message-Id: <1014846382.1167.35.camel@tpx20.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 225 --=-lwE9UQ18ETc7X88Ax+VJ Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Wed, 2002-02-27 at 10:13, Mihai RUSU wrote: > Hi >=20 > While patching ctx8 against 2.4.17 I have noticed that it does patch some > files in the fs/ext2 and fs/ext3 directories: > patching file linux-2.4.17/fs/ext2/ialloc.c > patching file linux-2.4.17/fs/ext2/inode.c > patching file linux-2.4.17/fs/ext2/ioctl.c > patching file linux-2.4.17/fs/ext3/ialloc.c > patching file linux-2.4.17/fs/ext3/inode.c > patching file linux-2.4.17/fs/ext3/ioctl.c >=20 > What is this for? If I use some other fs I miss some vserver features? My guess, would be the adding of the immutable-unlink flag? and the features that this enables (allowing vserver users to alter the unified files - which then get un-unified). =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-lwE9UQ18ETc7X88Ax+VJ Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8fVOt4c1kHlhtW8oRAoaoAKC13GEGlczXLXugdg8WAaTv4EqbBgCgkOzI 2WKoFc4RzCPsduPj/MxErLc= =ob0I -----END PGP SIGNATURE----- --=-lwE9UQ18ETc7X88Ax+VJ-- From vserver.error@solucorp.qc.ca Wed Feb 27 17:16:19 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1RMGIAh003458; Wed, 27 Feb 2002 17:16:18 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1RLpkW22969 for vserver.list; Wed, 27 Feb 2002 16:51:46 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1RLpjR22965 for ; Wed, 27 Feb 2002 16:51:45 -0500 Received: from tpx20.vsen.dk (unknown [192.168.1.50]) by www.vsen.dk (Postfix) with ESMTP id B46F01000 for ; Wed, 27 Feb 2002 22:51:45 +0100 (CET) Subject: RE: [vserver] unify check/ disk usage From: Klavs Klavsen To: vserver@solucorp.qc.ca In-Reply-To: <006b01c1bed8$619df600$0100a8c0@johnnew> References: <006b01c1bed8$619df600$0100a8c0@johnnew> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-goxUrrWvBcZvszd4PAGP" X-Mailer: Evolution/1.0.2 Date: 27 Feb 2002 22:51:45 +0100 Message-Id: <1014846705.1167.42.camel@tpx20.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 226 --=-goxUrrWvBcZvszd4PAGP Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Tue, 2002-02-26 at 16:15, John Lyons wrote: >=20 > > However it seems a little off.. my skel server, which has a > > bare minimum > > of spaceusage, it says uses 325000K and that sounds like it's not > > unified at all :-( > > >=20 > If that's the only vserver on your system then there are no hard links to > anything else so the figure is probably correct. Build another unified vs > from the sekl and check it again. it did changes something. The vdu output for the test server (share'ed) and build from the skel is 178000K - about half of what the skel server is, and the du -csh gives the same output (as it should :-) As I read this, it means my skel server is not very much unified (only about 70000K is unified), and this appearently went better when building from the skel. Why is this? How can I ensure that for instance all files except files under /etc and /usr/local and /home are unified - and kept this way? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-goxUrrWvBcZvszd4PAGP Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8fVTx4c1kHlhtW8oRAph1AKCr1O3DWV3ob3QTGTp9TfqlKdkzwgCgjv3C qnwl14W8E9n1rPsolj8PRHc= =qIQO -----END PGP SIGNATURE----- --=-goxUrrWvBcZvszd4PAGP-- From vserver.error@solucorp.qc.ca Wed Feb 27 19:51:06 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1S0p5Ah004893; Wed, 27 Feb 2002 19:51:05 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1S0RCj25820 for vserver.list; Wed, 27 Feb 2002 19:27:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from localhost.localdomain (pia153-99.pioneernet.net [66.114.153.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1S0RBR25816 for ; Wed, 27 Feb 2002 19:27:12 -0500 Received: from openwebmail (casonmaster [127.0.0.1]) by localhost.localdomain (8.11.6/8.11.6) with ESMTP id g1S0TPX25672 for ; Wed, 27 Feb 2002 16:29:25 -0800 From: "Wray Cason" To: vserver@solucorp.qc.ca Subject: RE: [vserver] routing Date: Wed, 27 Feb 2002 16:29:25 -0800 Message-Id: <20020227162925.A76746@auxiliumcomputing.com> In-Reply-To: References: <20020227103728.A81445@auxiliumcomputing.com> X-Mailer: Open WebMail 1.53 20020112 X-OriginatingIP: 192.168.0.2 (auxiliumcomputing) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 227 > On Wed, 27 Feb 2002, Wray Cason wrote: > > [snip] > > > Thank you very much. This was very helpful to me. I have a related > > question. Please confirm or refute that this is true: > > > > A vserver can never, under any circumstances be aware of networks and > > interfaces in the base computer other than the one it is bound to. As such, > > if all base interfaces are addressed with private unroutable addresses, and > > only the vserver has the public address, it is impossible to route all > > server traffic out through the public address. > > hmm not entirely sure what you mean... > the base server has private addresses and only the vserver > has a public ip. that part I think I got but the "impossible > to route all server traffic out through the public address" > part I don't really get, do you mean all traffic from this > vserver? from the base server? or everything (base + all vservers)? > > /Martin > > Never argue with an idiot. They drag you down to their level, That latter is exactly what I meant, base + all vservers. I was looking into the possibility of isolating the base system that much more by not putting a public address on it. I would still want to make use of the public network on the vserver for routing purposes. A little more detail might help to clarify. I have 2 servers connected to the my private network as well as the public network. The interfaces on the public network were assigned private addresses. This way they could communicate freely between the two of them without using bandwidth on the private network. Also, they could not be touched from the internet. I then put the public address on a vserver bound to the outside interface and tried to create default routes for everything through that vserver. At this point, I am inclined to believe that this arrangement won't work. -- Wray Cason "Wrayman" Auxilium Computing www.auxiliumcomputing.com wrayman@auxiliumcomputing.com main: 206-595-2080 fax: 425-895-9825 From vserver.error@solucorp.qc.ca Wed Feb 27 21:04:07 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1S246Ah005464; Wed, 27 Feb 2002 21:04:06 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1S1c1m27087 for vserver.list; Wed, 27 Feb 2002 20:38:01 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1S1c0R27083 for ; Wed, 27 Feb 2002 20:38:00 -0500 Received: from remtk.solucorp.qc.ca (g39-244.citenet.net [206.123.39.244]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g1S1gI659668 for ; Wed, 27 Feb 2002 20:42:19 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1RJ0kW02885 for vserver@solucorp.qc.ca; Wed, 27 Feb 2002 14:00:46 -0500 From: Jacques Gelinas Date: Wed, 27 Feb 2002 14:00:46 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vps question X-mailer: tlmpmail 0.1 Message-ID: <20020227140046.d6c685c8e53b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 228 On Thu, 21 Feb 2002 16:39:05 -0500, Krischan Jodies wrote > Am Donnerstag, 21. Februar 2002 01:01 schrieben Sie: > > > Is there any way of showing, using vps or similar, in the root shell, > > what vservers processes are owned by ?? > > Have a look at my little wrapper :-) > ftp://ftp.sernet.de/pub/vserver/vps2 Sounds interesting. I tried it on rh7.2. Works fine. On rh7, it does not print anything. Is it dependant on some perl version ? Once this is fixed, I will include it in the distribution. Thanks! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Feb 27 22:04:41 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1S34dAh005877; Wed, 27 Feb 2002 22:04:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1S2dC328133 for vserver.list; Wed, 27 Feb 2002 21:39:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.thedeacon.org (thedeacon.org [64.71.202.149]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1S2dBR28129 for ; Wed, 27 Feb 2002 21:39:11 -0500 Received: from thedeacon.org (cyrix-m3.thedeacon.org [172.23.172.133]) by mail.thedeacon.org (Postfix) with SMTP id 0182A241CD; Wed, 27 Feb 2002 19:39:07 -0700 (MST) Received: from 172.23.172.156 (SquirrelMail authenticated user deacon) by webmail.thedeacon.org with HTTP; Wed, 27 Feb 2002 19:42:44 -0700 (MST) Message-ID: <2407.172.23.172.156.1014864164.squirrel@webmail.thedeacon.org> Date: Wed, 27 Feb 2002 19:42:44 -0700 (MST) Subject: Re: [vserver] ctx-8 kernel patches against -ac available From: "Paul Kreiner" To: In-Reply-To: References: X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal Cc: X-Mailer: SquirrelMail (version 1.2.4) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 229 Mihai, I've got a full RedHat 2.4.9-21-XFS-ctx8 kernel tarball up on my site. Go ahead and give it a shot and let me know how it works for you -- it boots & runs on my system, but I haven't put it through it's paces yet. _Paul K. --- Mihai RUSU said: > On Tue, 26 Feb 2002, Paul Kreiner wrote: > >> New vserver (ctx-8) kernel patches against 2.4.19-pre1-ac1 are now >> available in the usual place: >> http://www.thedeacon.org/patches/ >> > cool! > > Well, would be so kind and try to patch ctx8 into 2.4.9-21SGI_XFS_1.0.2 > ? Its the last redhat errata kernel with the XFS release 1.0.2 bits. > You can find it in > ftp://oss.sgi.com/projectx/xfs/download/Release-1.0.2/kernel_rpms/ > i386/contributed-RH-updates/2.4.9-21-RH7.2/ > kernel-source-2.4.9-21SGI_XFS_1.0.2.i386.rpm > > PS: I found it to be the most stable release in production > > ---------------------------- > Mihai RUSU From vserver.error@solucorp.qc.ca Thu Feb 28 03:54:29 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1S8sSAh008664; Thu, 28 Feb 2002 03:54:28 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1S8bsP01267 for vserver.list; Thu, 28 Feb 2002 03:37:54 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ahriman.bucharest.roedu.net (ahriman.bucharest.roedu.net [141.85.128.71]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1S8brR01263 for ; Thu, 28 Feb 2002 03:37:54 -0500 Received: (qmail 15635 invoked by uid 1000); 28 Feb 2002 08:44:34 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 28 Feb 2002 08:44:34 -0000 Date: Thu, 28 Feb 2002 10:44:34 +0200 (EET) From: Mihai RUSU X-X-Sender: To: Paul Kreiner cc: Subject: Re: [vserver] ctx-8 kernel patches against -ac available In-Reply-To: <2407.172.23.172.156.1014864164.squirrel@webmail.thedeacon.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 230 On Wed, 27 Feb 2002, Paul Kreiner wrote: > Mihai, > > I've got a full RedHat 2.4.9-21-XFS-ctx8 kernel tarball up on my site. Go > ahead and give it a shot and let me know how it works for you -- it boots & > runs on my system, but I haven't put it through it's paces yet. > > _Paul K. > Wow, you are fast. I said that a little bit in a hurry. The fact is that I have to wait for a hardware aquisition before using an vserver XFS enabled version. Did you also patched the immuatable unlink feature in XFS? Anyway I will give it a try but not right now. ---------------------------- Mihai RUSU Disclaimer: Any views or opinions presented within this e-mail are solely those of the author and do not necessarily represent those of any company, unless otherwise specifically stated. From vserver.error@solucorp.qc.ca Thu Feb 28 03:54:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1S8sdAh008669; Thu, 28 Feb 2002 03:54:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1S8aBP01240 for vserver.list; Thu, 28 Feb 2002 03:36:11 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ahriman.bucharest.roedu.net (ahriman.bucharest.roedu.net [141.85.128.71]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1S8aAR01236 for ; Thu, 28 Feb 2002 03:36:10 -0500 Received: (qmail 15424 invoked by uid 1000); 28 Feb 2002 08:42:50 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 28 Feb 2002 08:42:50 -0000 Date: Thu, 28 Feb 2002 10:42:50 +0200 (EET) From: Mihai RUSU X-X-Sender: To: Subject: Re: [vserver] ext2/ext3 question In-Reply-To: <1014846382.1167.35.camel@tpx20.vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 231 On 27 Feb 2002, Klavs Klavsen wrote: > My guess, would be the adding of the immutable-unlink flag? > and the features that this enables (allowing vserver users to alter the > unified files - which then get un-unified). > Hi Klavs Looking in the patch it seems that you are right. Having said that I dont think I really need that special feature. I dont use RedHat and thus I dont use its package management (rpm). Also any upgrade on that system I would prefer doing it manually. Without that special fs support the user still cannot alter the i flag on files (even as root) , right ? Thanks ---------------------------- Mihai RUSU Disclaimer: Any views or opinions presented within this e-mail are solely those of the author and do not necessarily represent those of any company, unless otherwise specifically stated. From vserver.error@solucorp.qc.ca Thu Feb 28 07:49:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1SCndAh011096; Thu, 28 Feb 2002 07:49:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1SCMd805035 for vserver.list; Thu, 28 Feb 2002 07:22:39 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rhenium.btinternet.com (rhenium.btinternet.com [194.73.73.93]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1SCMcR05031 for ; Thu, 28 Feb 2002 07:22:38 -0500 Received: from host213-1-136-209.btinternet.com ([213.1.136.209] helo=john-new) by rhenium.btinternet.com with esmtp (Exim 3.22 #8) id 16gPa1-0000tz-00 for vserver@solucorp.qc.ca; Thu, 28 Feb 2002 12:22:37 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Thu, 28 Feb 2002 12:22:20 -0000 From: "John Lyons" To: Subject: RE: [vserver] unify check/ disk usage Date: Thu, 28 Feb 2002 12:22:20 -0000 Message-ID: <003001c1c052$916485e0$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <1014846705.1167.42.camel@tpx20.vsen.dk> Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 232 > As I read this, it means my skel server is not very much unified (only > about 70000K is unified), and this appearently went better > when building > from the skel. Why is this? Can't say. I've been using a vserver to install and remove rpm's and build new rpm's from src files so that I could get the 'perfect' hosting vserver. After spending a week or so on and off playing with packages I discovered that building vservers based on it resulted in each vs being something like 300mb. What I'd missed was that /root and /home/admin had raw rpm files in with src files, also /usr/src/redhat had binary files and rpm's in it. Building a new vs was just copying all of those files over and as they weren't part of an rpm they weren't getting unified. They shouldn't have been there in the first place but I'd missed them and expected the unify process to only copy RPM packages over to the new vs not the entire file system. Luckily I'd not 2 unified vs's on the backup server that were still fresh and taking 12mb of space after unification to start again with. My guess is that you've got source installed binaries or log files etc that are being copied from the base server. If your base server has a /var/logs and or /home dir with a lot of data in it every vserver you build will have the same files copied over. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Thu Feb 28 10:55:36 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1SFtVAh012554; Thu, 28 Feb 2002 10:55:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1SFTqX08581 for vserver.list; Thu, 28 Feb 2002 10:29:52 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.thedeacon.org (thedeacon.org [64.71.202.149]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1SFTpR08577 for ; Thu, 28 Feb 2002 10:29:51 -0500 Received: from thedeacon.org (cyrix-m3.thedeacon.org [172.23.172.133]) by mail.thedeacon.org (Postfix) with SMTP id 24A51241CD; Thu, 28 Feb 2002 08:29:51 -0700 (MST) Received: from 204.118.209.253 (SquirrelMail authenticated user deacon) by webmail.thedeacon.org with HTTP; Thu, 28 Feb 2002 08:33:30 -0700 (MST) Message-ID: <3393.204.118.209.253.1014910410.squirrel@webmail.thedeacon.org> Date: Thu, 28 Feb 2002 08:33:30 -0700 (MST) Subject: [vserver] RH 2.4.9-21XFS kernel w/ctx-8 (was: ctx-8 kernel patches against -ac available) From: "Paul Kreiner" To: In-Reply-To: References: X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal Cc: X-Mailer: SquirrelMail (version 1.2.4) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 233 Mihai RUSU said: > On Wed, 27 Feb 2002, Paul Kreiner wrote: > >> Mihai, >> >> I've got a full RedHat 2.4.9-21-XFS-ctx8 kernel tarball up on my site. >> Go ahead and give it a shot and let me know how it works for you -- >> it boots & runs on my system, but I haven't put it through it's paces >> yet. >> >> _Paul K. >> > > Wow, you are fast. I said that a little bit in a hurry. The fact is > that I have to wait for a hardware aquisition before using an vserver > XFS enabled version. Did you also patched the immuatable unlink feature > in XFS? > I haven't tried moving the immutable-link stuff into XFS just yet... although I took a first look at it yesterday. Probably over the next few days I might try it, if people are interested. I have no real need for the unlink stuff in my environment though, so it's not been a priority. _Paul K. From vserver.error@solucorp.qc.ca Thu Feb 28 12:27:50 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1SHRnAh013327; Thu, 28 Feb 2002 12:27:49 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1SH0m810559 for vserver.list; Thu, 28 Feb 2002 12:00:48 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1SH0lR10555 for ; Thu, 28 Feb 2002 12:00:47 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g1SH2IH08874 for vserver@dns.solucorp.qc.ca; Thu, 28 Feb 2002 12:02:18 -0500 From: Jacques Gelinas Date: Thu, 28 Feb 2002 12:02:17 -0500 To: Vserver mailing list Subject: [vserver] vserver 0.12 changelog X-mailer: tlmpmail 0.1 Message-ID: <20020228120217.c9930e3c4c67@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 234 vserver 0.12 Change log 1. Enhancements 1.1. kernel 2.4.18ctx-8 Nothing new vserver wise. The patch-2.4.17ctx-8 was adapted to the new kernel 2.4.18. There were minor adjustment needed in kernel/exit.c and kernel/fork.c. No new features. 2.4.18 introduces new system calls (reserved at least), so we had to move our own at the end. If you have vserver-0.12, it does not matter, as it adapts to the kernel on the fly. You can use the same binary to run a 2.4.17ctx-any kernel or the new 2.4.18ctx-8. 2. Bug fixes 2.1. dynamic system call There was a bug. It was not working for the new_s_context. To move to the new 2.4.18ctx-8 kernel, you need vserver-0.12. vserver-stat was changed to use the new dynamic system call feature --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Feb 28 14:00:46 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1SJ0cAh014047; Thu, 28 Feb 2002 14:00:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1SIiDx12608 for vserver.list; Thu, 28 Feb 2002 13:44:13 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from zeus.bragatel.pt (zeus.bragatel.pt [217.70.64.253] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g1SIi9R12604 for ; Thu, 28 Feb 2002 13:44:13 -0500 Received: (qmail 17753 invoked by uid 507); 28 Feb 2002 18:43:58 -0000 Received: from cliente-bgt-217-70-64-194.bragatel.pt (HELO localhost.localdomain) (217.70.64.194) by zeus.local.bragatel.pt with SMTP; 28 Feb 2002 18:43:58 -0000 Subject: [vserver] Kernel panic From: Luis Santos To: Vserver mailing list In-Reply-To: <20020228120217.c9930e3c4c67@remtk.solucorp.qc.ca> References: <20020228120217.c9930e3c4c67@remtk.solucorp.qc.ca> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 28 Feb 2002 18:43:16 +0000 Message-Id: <1014921796.794.55.camel@localhost.localdomain> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 235 I'm running RH7.1, Kernel 2.4.17 with virtual server patch, virtual server utilities 0.12 in this hardware: Ethernet card: via-rhine Memory: 131060k CPU: Intel Pentium III (Katmai) stepping 03 Disk controller: Adaptec AIC7XXX EISA/VLB/PCI SCSI HBA DRIVER, Rev 6.2.4 Adaptec aic7890/91 Ultra2 SCSI Disk: QUANTUM Model: ATLAS IV 9 WLS Rev: 0B0B When my computer boots, everything is OK. I start a virtual server, enter it, ... , without problems. Then, when kernel starts using swap space, it gives me errors and more errors and stops after some time. I must say that this problem only gets when kernel uses swap space. Tkanks and sorry my poor english. -------------------------------------------------------------------------------------- Feb 28 15:38:24 plutao kernel: Code: Bad EIP value. Feb 28 15:38:27 plutao kernel: <1>Unable to handle kernel paging request at virtual address 00002e00 Feb 28 15:38:27 plutao kernel: printing eip: Feb 28 15:38:27 plutao kernel: 00002e00 Feb 28 15:38:27 plutao kernel: *pde = 00000000 Feb 28 15:38:27 plutao kernel: Oops: 0000 Feb 28 15:38:27 plutao kernel: CPU: 0 Feb 28 15:38:27 plutao kernel: EIP: 0010:[<00002e00>] Not tainted Feb 28 15:38:27 plutao kernel: EFLAGS: 00010202 Feb 28 15:38:27 plutao kernel: eax: 00000002 ebx: c0331e60 ecx: 0000002e edx: c8821000 Feb 28 15:38:27 plutao kernel: esi: 0000002e edi: 00000020 ebp: 000009de esp: c081dc1c Feb 28 15:38:27 plutao kernel: ds: 0018 es: 0018 ss: 0018 Feb 28 15:38:27 plutao kernel: Process vserver (pid: 959, stackpage=c081d000) Feb 28 15:38:27 plutao kernel: Stack: c11c6900 c01265b3 c0331e60 00000000 c081c000 000000fc 000000f0 c02d71c8 Feb 28 15:38:27 plutao kernel: c7ffcd50 c4015020 c7ffcc70 00000001 00000020 000000f0 00000006 0000766a Feb 28 15:38:27 plutao kernel: c0126728 00000006 0000000f c02d71c8 00000006 000000f0 c02d71c8 00000000 Feb 28 15:38:27 plutao kernel: Call Trace: [] [] [] [] [] Feb 28 15:38:27 plutao kernel: [] [] [] [] [] [] Feb 28 15:38:27 plutao kernel: [] [] [] [] [] [] Feb 28 15:38:27 plutao kernel: [] [] [] [] [] [] Feb 28 15:38:27 plutao kernel: [] [] [] [] [] [] Feb 28 15:38:27 plutao kernel: Feb 28 15:38:27 plutao kernel: Code: Bad EIP value. Feb 28 15:38:27 plutao kernel: <1>Unable to handle kernel paging request at virtual address 00003600 Feb 28 15:38:27 plutao kernel: printing eip: Feb 28 15:38:27 plutao kernel: 00003600 Feb 28 15:38:27 plutao kernel: *pde = 00000000 Feb 28 15:38:27 plutao kernel: Oops: 0000 Feb 28 15:38:28 plutao kernel: CPU: 0 Feb 28 15:38:28 plutao kernel: EIP: 0010:[<00003600>] Not tainted Feb 28 15:38:28 plutao kernel: EFLAGS: 00010202 Feb 28 15:38:28 plutao kernel: eax: 00000001 ebx: c0331e60 ecx: 00000036 edx: c8821000 Feb 28 15:38:28 plutao kernel: esi: 00000036 edi: 00000020 ebp: 000009e0 esp: c208fe58 Feb 28 15:38:28 plutao kernel: ds: 0018 es: 0018 ss: 0018 Feb 28 15:38:28 plutao kernel: Process ucc-bin (pid: 786, stackpage=c208f000) Feb 28 15:38:28 plutao kernel: Stack: c11c6840 c01265b3 c0331e60 c02d7338 c208e000 000000fc 000001d2 c02d71c8 Feb 28 15:38:28 plutao kernel: c1020680 c1000000 c7ffc810 00000000 00000020 000001d2 00000006 00007688 Feb 28 15:38:28 plutao kernel: c0126728 00000006 0000000f c02d71c8 00000006 000001d2 c02d71c8 00000000 Feb 28 15:38:28 plutao kernel: Call Trace: [] [] [] [] [] Feb 28 15:38:28 plutao kernel: [] [] [] [] [] [] Feb 28 15:38:28 plutao kernel: Feb 28 15:38:28 plutao kernel: Code: Bad EIP value. From vserver.error@solucorp.qc.ca Thu Feb 28 17:56:07 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g1SMu6Ah016577; Thu, 28 Feb 2002 17:56:06 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g1SMduN17174 for vserver.list; Thu, 28 Feb 2002 17:39:56 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g1SMduR17170 for ; Thu, 28 Feb 2002 17:39:56 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 706B11000 for ; Thu, 28 Feb 2002 23:39:50 +0100 (CET) Subject: Re: [vserver] Kernel panic From: klavs klavsen To: Vserver Mailinglist In-Reply-To: <1014921796.794.55.camel@localhost.localdomain> References: <20020228120217.c9930e3c4c67@remtk.solucorp.qc.ca> <1014921796.794.55.camel@localhost.localdomain> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-w5/iyF2F55ykkNpaWH48" X-Mailer: Evolution/1.0.2 Date: 28 Feb 2002 23:39:39 +0100 Message-Id: <1014935990.1707.0.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 236 --=-w5/iyF2F55ykkNpaWH48 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Try compiling a kernel with the same .config - and without the vserver patch applied. Do you see the same problem? On Thu, 2002-02-28 at 19:43, Luis Santos wrote: > I'm running RH7.1, Kernel 2.4.17 with virtual server patch, virtual > server utilities 0.12 in this hardware: > Ethernet card: via-rhine > Memory: 131060k > CPU: Intel Pentium III (Katmai) stepping 03 > Disk controller: Adaptec AIC7XXX EISA/VLB/PCI SCSI HBA DRIVER, Rev > 6.2.4 > Adaptec aic7890/91 Ultra2 SCSI > Disk: QUANTUM Model: ATLAS IV 9 WLS Rev: 0B0B >=20 > When my computer boots, everything is OK. I start a virtual server, > enter it, ... , without problems. >=20 > Then, when kernel starts using swap space, it gives me errors and more > errors and stops after some time. >=20 > I must say that this problem only gets when kernel uses swap space.=20 > Tkanks and sorry my poor english. >=20 >=20 > -------------------------------------------------------------------------= ------------- >=20 > Feb 28 15:38:24 plutao kernel: Code: Bad EIP value. > Feb 28 15:38:27 plutao kernel: <1>Unable to handle kernel paging > request at virtual address 00002e00 > Feb 28 15:38:27 plutao kernel: printing eip: > Feb 28 15:38:27 plutao kernel: 00002e00 > Feb 28 15:38:27 plutao kernel: *pde =3D 00000000 > Feb 28 15:38:27 plutao kernel: Oops: 0000 > Feb 28 15:38:27 plutao kernel: CPU: 0 > Feb 28 15:38:27 plutao kernel: EIP: 0010:[<00002e00>] Not tainted > Feb 28 15:38:27 plutao kernel: EFLAGS: 00010202 > Feb 28 15:38:27 plutao kernel: eax: 00000002 ebx: c0331e60 ecx: > 0000002e edx: c8821000 > Feb 28 15:38:27 plutao kernel: esi: 0000002e edi: 00000020 ebp: > 000009de esp: c081dc1c > Feb 28 15:38:27 plutao kernel: ds: 0018 es: 0018 ss: 0018 > Feb 28 15:38:27 plutao kernel: Process vserver (pid: 959, > stackpage=3Dc081d000) > Feb 28 15:38:27 plutao kernel: Stack: c11c6900 c01265b3 c0331e60 > 00000000 c081c000 000000fc 000000f0 c02d71c8 > Feb 28 15:38:27 plutao kernel: c7ffcd50 c4015020 c7ffcc70 > 00000001 00000020 000000f0 00000006 0000766a > Feb 28 15:38:27 plutao kernel: c0126728 00000006 0000000f > c02d71c8 00000006 000000f0 c02d71c8 00000000 > Feb 28 15:38:27 plutao kernel: Call Trace: [] [] > [] [] [] > Feb 28 15:38:27 plutao kernel: [] [] [] > [] [] [] > Feb 28 15:38:27 plutao kernel: [] [] [] > [] [] [] > Feb 28 15:38:27 plutao kernel: [] [] [] > [] [] [] > Feb 28 15:38:27 plutao kernel: [] [] [] > [] [] [] > Feb 28 15:38:27 plutao kernel:=20 > Feb 28 15:38:27 plutao kernel: Code: Bad EIP value. > Feb 28 15:38:27 plutao kernel: <1>Unable to handle kernel paging > request at virtual address 00003600 > Feb 28 15:38:27 plutao kernel: printing eip: > Feb 28 15:38:27 plutao kernel: 00003600 > Feb 28 15:38:27 plutao kernel: *pde =3D 00000000=20 > Feb 28 15:38:27 plutao kernel: Oops: 0000 > Feb 28 15:38:28 plutao kernel: CPU: 0 > Feb 28 15:38:28 plutao kernel: EIP: 0010:[<00003600>] Not tainted > Feb 28 15:38:28 plutao kernel: EFLAGS: 00010202 > Feb 28 15:38:28 plutao kernel: eax: 00000001 ebx: c0331e60 ecx: > 00000036 edx: c8821000 > Feb 28 15:38:28 plutao kernel: esi: 00000036 edi: 00000020 ebp: > 000009e0 esp: c208fe58 > Feb 28 15:38:28 plutao kernel: ds: 0018 es: 0018 ss: 0018 > Feb 28 15:38:28 plutao kernel: Process ucc-bin (pid: 786, > stackpage=3Dc208f000) > Feb 28 15:38:28 plutao kernel: Stack: c11c6840 c01265b3 c0331e60 > c02d7338 c208e000 000000fc 000001d2 c02d71c8 > Feb 28 15:38:28 plutao kernel: c1020680 c1000000 c7ffc810 > 00000000 00000020 000001d2 00000006 00007688 > Feb 28 15:38:28 plutao kernel: c0126728 00000006 0000000f > c02d71c8 00000006 000001d2 c02d71c8 00000000 > Feb 28 15:38:28 plutao kernel: Call Trace: [] [] > [] [] [] > Feb 28 15:38:28 plutao kernel: [] [] [] > [] [] [] > Feb 28 15:38:28 plutao kernel:=20 > Feb 28 15:38:28 plutao kernel: Code: Bad EIP value. >=20 >=20 >=20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-w5/iyF2F55ykkNpaWH48 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8frGr4c1kHlhtW8oRArFzAKC6bpMQTvs3T+To6xJSbW/mdm5IPgCeMfQT h1D3XT9wTbUSahk2V0OD6yM= =Z0y8 -----END PGP SIGNATURE----- --=-w5/iyF2F55ykkNpaWH48-- From vserver.error@solucorp.qc.ca Thu Feb 28 21:57:30 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g212vRrw019583; Thu, 28 Feb 2002 21:57:29 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g212IgC20836 for vserver.list; Thu, 28 Feb 2002 21:18:42 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g212IgR20832 for ; Thu, 28 Feb 2002 21:18:42 -0500 Received: from remtk.solucorp.qc.ca (g39-141.citenet.net [206.123.39.141]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g212NA642856 for ; Thu, 28 Feb 2002 21:23:10 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g212JxT02877 for vserver@dns.solucorp.qc.ca; Thu, 28 Feb 2002 21:19:59 -0500 From: Jacques Gelinas Date: Thu, 28 Feb 2002 21:19:59 -0500 To: Vserver mailing list Subject: [vserver] vserver 0.13 change log X-mailer: tlmpmail 0.1 Message-ID: <20020228211959.aa50a9de7619@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 237 vserver 0.13 Change log 1. Bug fixes 1.1. Dynamic system call number, a glitch Since vserver 0.11, the vserver utility are able to probe the kernel to find the number of the system calls new_s_context and set_ipv4root. The same binaries may be used with different kernels (where the new system calls have different numbers). This was done because the two system calls are not official( reserved in the official kernel) and probably won't be until we have covered more grounds... vserver-0.12 uncovered a flaw where the file /proc/self/status was not properly parsed. But there was another gotcha. When used with an older kernel (older than 2.4.17ctx-8), the utility were using the values in /usr/include/asm/unistd.h. Unfortunately, those values are dependent on the kernel currently installed on your computer. If it is a 2.4.18 kernel, the system calls have different number than on older 2.4.17 kernel. To make the story short, the vserver-0.13 utilities are not relying on kernel headers for their default, so work with older kernel as well as the new 2.4.17ctx-8 or 2.4.18ctx-8. They have been tested on 2.4.17ctx-6. Please upgrade. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Feb 28 23:14:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g214Eirw020389; Thu, 28 Feb 2002 23:14:45 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2141hw22567 for vserver.list; Thu, 28 Feb 2002 23:01:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.thedeacon.org (thedeacon.org [64.71.202.149]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2141fR22563 for ; Thu, 28 Feb 2002 23:01:41 -0500 Received: from thedeacon.org (cyrix-m3.thedeacon.org [172.23.172.133]) by mail.thedeacon.org (Postfix) with SMTP id 29D12241CD; Thu, 28 Feb 2002 21:01:36 -0700 (MST) Received: from 172.23.172.143 (SquirrelMail authenticated user deacon) by webmail.thedeacon.org with HTTP; Thu, 28 Feb 2002 21:05:18 -0700 (MST) Message-ID: <33128.172.23.172.143.1014955518.squirrel@webmail.thedeacon.org> Date: Thu, 28 Feb 2002 21:05:18 -0700 (MST) Subject: Re: [vserver] RH 2.4.9-21XFS kernel w/ctx-8 (was: ctx-8 kernel patches against -ac available) From: "Paul Kreiner" To: In-Reply-To: <3393.204.118.209.253.1014910410.squirrel@webmail.thedeacon.org> References: <3393.204.118.209.253.1014910410.squirrel@webmail.thedeacon.org> X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal Cc: X-Mailer: SquirrelMail (version 1.2.4) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 238 Paul Kreiner said: > Mihai RUSU said: [snip] >> Wow, you are fast. I said that a little bit in a hurry. The fact is >> that I have to wait for a hardware aquisition before using an vserver >> XFS enabled version. Did you also patched the immuatable unlink >> feature in XFS? >> > > I haven't tried moving the immutable-link stuff into XFS just yet... > although I took a first look at it yesterday. Probably over the next > few days I might try it, if people are interested. I have no real need > for the unlink stuff in my environment though, so it's not been a > priority. > OK, so after some more digging, it would seem that XFS doesn't support the IMMUTABLE flag, or really anything like it. Refer to: http://oss.sgi.com/projects/xfs/mail_archive/0012/msg00073.html. The source is a bit weird, quite unlike most the source of the other filesystems I've seen in linux ... so vserver unification in XFS probably isn't going to happen anytime soon. :-( _Paul K. From vserver.error@solucorp.qc.ca Thu Feb 28 23:19:51 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g214Jnrw020417; Thu, 28 Feb 2002 23:19:50 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2144ZF22603 for vserver.list; Thu, 28 Feb 2002 23:04:35 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp014.mail.yahoo.com (smtp014.mail.yahoo.com [216.136.173.58]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2144YR22599 for ; Thu, 28 Feb 2002 23:04:35 -0500 Received: from peterkwanchan (AUTH poptime) at 47.chicago-28-29rs.il.dial-access.att.net (HELO petercomputer) (12.84.11.47) by smtp.mail.vip.sc5.yahoo.com with SMTP; 1 Mar 2002 03:54:01 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] 0.13 RPM install problem Date: Thu, 28 Feb 2002 21:54:45 -0600 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <20020227091054.A43167@auxiliumcomputing.com> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 239 Hello, I was trying to install vserver on my server. I ran into a problem installing the vserver-admin rpm. It gives the following error: [root@localhost /root]# rpm -Uvh v* Preparing... ########################################### [100%] 1:vserver-admin ########################################### [100%] Can't load dictionnary file /usr/lib/linuxconf/help.eng/shellmod-msg-1.27.eng (No such file or directory) error: execution of %post scriptlet from vserver-admin-0.13-1 failed, exit status 255 [root@localhost /root]# rpm -ql vserver-admin /usr/sbin/newvserver [root@localhost /root]# newvserver Can't load dictionnary file /usr/lib/linuxconf/help.eng/shellmod-msg-1.27.eng (No such file or directory) [root@localhost /root]# Also, will installing the vserver-0.13-1.i386.rpm file also install the kernel? Or do I still need to get the gzip file? Thanks, Peter _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com From vserver.error@solucorp.qc.ca Fri Mar 1 05:22:23 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g21AMMrw023747; Fri, 1 Mar 2002 05:22:22 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g219sud28393 for vserver.list; Fri, 1 Mar 2002 04:54:56 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g219stR28389 for ; Fri, 1 Mar 2002 04:54:55 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 55D531000 for ; Fri, 1 Mar 2002 10:54:55 +0100 (CET) Subject: Re: [vserver] 0.13 RPM install problem From: klavs klavsen To: Vserver Mailinglist In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-aldS8gldeZFmBOgusWr1" X-Mailer: Evolution/1.0.2 Date: 01 Mar 2002 10:54:54 +0100 Message-Id: <1014976495.1664.6.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 240 --=-aldS8gldeZFmBOgusWr1 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-03-01 at 04:54, Peter Kwan Chan wrote: > Hello, > I was trying to install vserver on my server. I ran into a problem > installing the vserver-admin rpm. It gives the following error: >=20 > [root@localhost /root]# rpm -Uvh v* > Preparing... ########################################### > [100%] > 1:vserver-admin ########################################### > [100%] > Can't load dictionnary file > /usr/lib/linuxconf/help.eng/shellmod-msg-1.27.eng (No such file or > directory) > error: execution of %post scriptlet from vserver-admin-0.13-1 failed, exi= t > status 255 > [root@localhost /root]# rpm -ql vserver-admin > /usr/sbin/newvserver > [root@localhost /root]# newvserver > Can't load dictionnary file > /usr/lib/linuxconf/help.eng/shellmod-msg-1.27.eng (No such file or > directory) > [root@localhost /root]# you need that file from the linuxconf rpm. If you don't want linuxconf you can extact it with "rpm2cpio linuxconf.rpm | cpio -t" (list names) and then "cpio -ivd filename-to-extract" (including full path listed by -t). >=20 > Also, will installing the vserver-0.13-1.i386.rpm file also install the > kernel? Or do I still need to get the gzip file? Nope.download it yourself, and edit your /etc/lilo.conf manually. =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-aldS8gldeZFmBOgusWr1 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8f0/u4c1kHlhtW8oRAhEtAJ9XNZVH06x5+JxY7NPugqHVOVMTXgCfSymi 1WmeiscZHAhniaCCpVnETOY= =LxMQ -----END PGP SIGNATURE----- --=-aldS8gldeZFmBOgusWr1-- From vserver.error@solucorp.qc.ca Fri Mar 1 06:11:24 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g21BBNrw024039; Fri, 1 Mar 2002 06:11:23 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g21Abt029063 for vserver.list; Fri, 1 Mar 2002 05:37:55 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from zeus.bragatel.pt (vs1.bragatel.pt [217.70.64.251]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g21AbsR29059 for ; Fri, 1 Mar 2002 05:37:55 -0500 Received: (qmail 6237 invoked by uid 507); 1 Mar 2002 10:37:53 -0000 Received: from cliente-bgt-217-70-64-194.bragatel.pt (HELO localhost.localdomain) (217.70.64.194) by jupiter.local.bragatel.pt with SMTP; 1 Mar 2002 10:37:53 -0000 Subject: Re: [vserver] Kernel panic From: Luis Santos To: vserver@solucorp.qc.ca In-Reply-To: <1014935990.1707.0.camel@amd.vsen.dk> References: <20020228120217.c9930e3c4c67@remtk.solucorp.qc.ca> <1014921796.794.55.camel@localhost.localdomain> <1014935990.1707.0.camel@amd.vsen.dk> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 01 Mar 2002 10:37:13 +0000 Message-Id: <1014979033.5186.7.camel@localhost.localdomain> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 241 I compiled kernel 2.4.17 with same ".config" but without vserver patch applied. Then i tested kernel with intensive use of swap and kernel did not fail. Note: I also tried kernel 2.4.19-pre1-ac1 with virtual server patch from deacon@thedeacon.org (http://thedeacon.org/patches) and the same problem has ocurred. This kernel also failed when starting using swap. Then i try the same kernel (2.4.19-pre1-ac1) but did not applied virtual server patch. This time, there was no problem and kernel run normally. Thanks, Luis Santos On Qui, 2002-02-28 at 22:39, klavs klavsen wrote: > Try compiling a kernel with the same .config - and without the vserver > patch applied. Do you see the same problem? > > On Thu, 2002-02-28 at 19:43, Luis Santos wrote: > > I'm running RH7.1, Kernel 2.4.17 with virtual server patch, virtual > > server utilities 0.12 in this hardware: > > Ethernet card: via-rhine > > Memory: 131060k > > CPU: Intel Pentium III (Katmai) stepping 03 > > Disk controller: Adaptec AIC7XXX EISA/VLB/PCI SCSI HBA DRIVER, Rev > > 6.2.4 > > Adaptec aic7890/91 Ultra2 SCSI > > Disk: QUANTUM Model: ATLAS IV 9 WLS Rev: 0B0B > > > > When my computer boots, everything is OK. I start a virtual server, > > enter it, ... , without problems. > > > > Then, when kernel starts using swap space, it gives me errors and more > > errors and stops after some time. > > > > I must say that this problem only gets when kernel uses swap space. > > Tkanks and sorry my poor english. > > > > > > -------------------------------------------------------------------------------------- > > > > Feb 28 15:38:24 plutao kernel: Code: Bad EIP value. > > Feb 28 15:38:27 plutao kernel: <1>Unable to handle kernel paging > > request at virtual address 00002e00 > > Feb 28 15:38:27 plutao kernel: printing eip: > > Feb 28 15:38:27 plutao kernel: 00002e00 > > Feb 28 15:38:27 plutao kernel: *pde = 00000000 > > Feb 28 15:38:27 plutao kernel: Oops: 0000 > > Feb 28 15:38:27 plutao kernel: CPU: 0 > > Feb 28 15:38:27 plutao kernel: EIP: 0010:[<00002e00>] Not tainted > > Feb 28 15:38:27 plutao kernel: EFLAGS: 00010202 > > Feb 28 15:38:27 plutao kernel: eax: 00000002 ebx: c0331e60 ecx: > > 0000002e edx: c8821000 > > Feb 28 15:38:27 plutao kernel: esi: 0000002e edi: 00000020 ebp: > > 000009de esp: c081dc1c > > Feb 28 15:38:27 plutao kernel: ds: 0018 es: 0018 ss: 0018 > > Feb 28 15:38:27 plutao kernel: Process vserver (pid: 959, > > stackpage=c081d000) > > Feb 28 15:38:27 plutao kernel: Stack: c11c6900 c01265b3 c0331e60 > > 00000000 c081c000 000000fc 000000f0 c02d71c8 > > Feb 28 15:38:27 plutao kernel: c7ffcd50 c4015020 c7ffcc70 > > 00000001 00000020 000000f0 00000006 0000766a > > Feb 28 15:38:27 plutao kernel: c0126728 00000006 0000000f > > c02d71c8 00000006 000000f0 c02d71c8 00000000 > > Feb 28 15:38:27 plutao kernel: Call Trace: [] [] > > [] [] [] > > Feb 28 15:38:27 plutao kernel: [] [] [] > > [] [] [] > > Feb 28 15:38:27 plutao kernel: [] [] [] > > [] [] [] > > Feb 28 15:38:27 plutao kernel: [] [] [] > > [] [] [] > > Feb 28 15:38:27 plutao kernel: [] [] [] > > [] [] [] > > Feb 28 15:38:27 plutao kernel: > > Feb 28 15:38:27 plutao kernel: Code: Bad EIP value. > > Feb 28 15:38:27 plutao kernel: <1>Unable to handle kernel paging > > request at virtual address 00003600 > > Feb 28 15:38:27 plutao kernel: printing eip: > > Feb 28 15:38:27 plutao kernel: 00003600 > > Feb 28 15:38:27 plutao kernel: *pde = 00000000 > > Feb 28 15:38:27 plutao kernel: Oops: 0000 > > Feb 28 15:38:28 plutao kernel: CPU: 0 > > Feb 28 15:38:28 plutao kernel: EIP: 0010:[<00003600>] Not tainted > > Feb 28 15:38:28 plutao kernel: EFLAGS: 00010202 > > Feb 28 15:38:28 plutao kernel: eax: 00000001 ebx: c0331e60 ecx: > > 00000036 edx: c8821000 > > Feb 28 15:38:28 plutao kernel: esi: 00000036 edi: 00000020 ebp: > > 000009e0 esp: c208fe58 > > Feb 28 15:38:28 plutao kernel: ds: 0018 es: 0018 ss: 0018 > > Feb 28 15:38:28 plutao kernel: Process ucc-bin (pid: 786, > > stackpage=c208f000) > > Feb 28 15:38:28 plutao kernel: Stack: c11c6840 c01265b3 c0331e60 > > c02d7338 c208e000 000000fc 000001d2 c02d71c8 > > Feb 28 15:38:28 plutao kernel: c1020680 c1000000 c7ffc810 > > 00000000 00000020 000001d2 00000006 00007688 > > Feb 28 15:38:28 plutao kernel: c0126728 00000006 0000000f > > c02d71c8 00000006 000001d2 c02d71c8 00000000 > > Feb 28 15:38:28 plutao kernel: Call Trace: [] [] > > [] [] [] > > Feb 28 15:38:28 plutao kernel: [] [] [] > > [] [] [] > > Feb 28 15:38:28 plutao kernel: > > Feb 28 15:38:28 plutao kernel: Code: Bad EIP value. > > > > > > > -- > Regards, > Klavs Klavsen > > -------------| This mail has been sent to you by: |------------ > Klavs Klavsen - OpenSource Consultant > kl@vsen.dk - http://www.vsen.dk > > Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA > Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA > --------------------[ I believe that... ]----------------------- > It is a myth that people resist change. People resist what other > people make them do, not what they themselves choose to do... > That's why companies that innovate successfully year after year > seek their peopl's ideas, let them initiate new projects and > encourage more experiments. -- Rosabeth Moss Kanter > From vserver.error@solucorp.qc.ca Fri Mar 1 12:45:34 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g21HjXrw027978; Fri, 1 Mar 2002 12:45:34 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g21HJk505259 for vserver.list; Fri, 1 Mar 2002 12:19:46 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g21HJkR05255 for ; Fri, 1 Mar 2002 12:19:46 -0500 Received: from remtk.solucorp.qc.ca (g39-51.citenet.net [206.123.39.51]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g21HOL688948 for ; Fri, 1 Mar 2002 12:24:21 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g21FX6p05507 for vserver@solucorp.qc.ca; Fri, 1 Mar 2002 10:33:06 -0500 From: Jacques Gelinas Date: Fri, 1 Mar 2002 10:33:05 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] 0.13 RPM install problem X-mailer: tlmpmail 0.1 Message-ID: <20020301103305.d744deca4206@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 242 On Thu, 28 Feb 2002 21:54:45 -0500, Peter Kwan Chan wrote > Hello, > I was trying to install vserver on my server. I ran into a problem > installing the vserver-admin rpm. It gives the following error: > > [root@localhost /root]# rpm -Uvh v* > Preparing... ########################################### > [100%] > 1:vserver-admin ########################################### > [100%] > Can't load dictionnary file > /usr/lib/linuxconf/help.eng/shellmod-msg-1.27.eng (No such file or > directory) > error: execution of %post scriptlet from vserver-admin-0.13-1 failed, exit > status 255 > [root@localhost /root]# rpm -ql vserver-admin > /usr/sbin/newvserver > [root@localhost /root]# newvserver > Can't load dictionnary file > /usr/lib/linuxconf/help.eng/shellmod-msg-1.27.eng (No such file or > directory) > [root@localhost /root]# Ok found the problem. To operate the vserver-admin package, you need linuxconf-util and linuxconf-lib. Those package are independant from linuxconf itself. Unfortunatly, there is a packaging problem and one file is missing in linuxconf-util. I am fixing that. It can be extracted from the linuxconf rpm like was suggested on another post. I will release new linuxconf packages today to make linuxconf-util truely indepedant from linuxconf. Sorry! This also means the newvserver command won't work for you. But the rest of the vserver functionality is not affected. > Also, will installing the vserver-0.13-1.i386.rpm file also install the > kernel? Or do I still need to get the gzip file? Yes they are packaged independantly. A kernel is always a sensitive issue... --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Mar 1 13:53:41 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g21Irerw028693; Fri, 1 Mar 2002 13:53:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g21IWh906772 for vserver.list; Fri, 1 Mar 2002 13:32:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from figure1.int.wirex.com (cerebus.wirex.com [65.102.14.138]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g21IWfR06768 for ; Fri, 1 Mar 2002 13:32:42 -0500 Received: (from chris@localhost) by figure1.int.wirex.com (8.11.6/8.11.6) id g21IdcS19913; Fri, 1 Mar 2002 10:39:38 -0800 Date: Fri, 1 Mar 2002 10:39:37 -0800 From: Chris Wright To: Luis Santos Cc: vserver@solucorp.qc.ca Subject: Re: [vserver] Kernel panic Message-ID: <20020301103937.A18102@figure1.int.wirex.com> References: <20020228120217.c9930e3c4c67@remtk.solucorp.qc.ca> <1014921796.794.55.camel@localhost.localdomain> <1014935990.1707.0.camel@amd.vsen.dk> <1014979033.5186.7.camel@localhost.localdomain> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <1014979033.5186.7.camel@localhost.localdomain>; from santos@bragatel.pt on Fri, Mar 01, 2002 at 10:37:13AM +0000 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 243 * Luis Santos (santos@bragatel.pt) wrote: > I compiled kernel 2.4.17 with same ".config" but without vserver patch > applied. > > Then i tested kernel with intensive use of swap and kernel did not fail. > > Note: I also tried kernel 2.4.19-pre1-ac1 with virtual server patch from > deacon@thedeacon.org (http://thedeacon.org/patches) and the same problem > has ocurred. This kernel also failed when starting using swap. Then i > try the same kernel (2.4.19-pre1-ac1) but did not applied virtual server > patch. This time, there was no problem and kernel run normally. Try decoding the oops with ksymoops and posting the output. thanks, -chris From vserver.error@solucorp.qc.ca Fri Mar 1 14:31:17 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g21JVHrw029076; Fri, 1 Mar 2002 14:31:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g21J6ML07585 for vserver.list; Fri, 1 Mar 2002 14:06:22 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g21J6MR07581 for ; Fri, 1 Mar 2002 14:06:22 -0500 Received: from remtk.solucorp.qc.ca (g39-131.citenet.net [206.123.39.131]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g21JAw600314 for ; Fri, 1 Mar 2002 14:10:58 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g21J1gK24429 for vserver@solucorp.qc.ca; Fri, 1 Mar 2002 14:01:42 -0500 From: Jacques Gelinas Date: Fri, 1 Mar 2002 14:01:42 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] ext2/ext3 question X-mailer: tlmpmail 0.1 Message-ID: <20020301140142.942349603f4b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 244 On Thu, 28 Feb 2002 10:42:50 -0500, Mihai RUSU wrote > On 27 Feb 2002, Klavs Klavsen wrote: > Looking in the patch it seems that you are right. Having said that I dont > think I really need that special feature. I dont use RedHat and thus I > dont use its package management (rpm). Also any upgrade on that system I > would prefer doing it manually. Without that special fs support the user > still cannot alter the i flag on files (even as root) , right ? Only root in the root server can do it (change the immutable flags). More precisely only a user with CAP_SYS_ADMIN capability can do it and vservers do not have this capability (by default). --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Mar 1 17:30:33 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g21MUWrw031579; Fri, 1 Mar 2002 17:30:33 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g21M15711241 for vserver.list; Fri, 1 Mar 2002 17:01:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g21M15R11237 for ; Fri, 1 Mar 2002 17:01:05 -0500 Received: from remtk.solucorp.qc.ca (g39-131.citenet.net [206.123.39.131]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g21M5g616485 for ; Fri, 1 Mar 2002 17:05:42 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g21JWaY24490 for vserver@solucorp.qc.ca; Fri, 1 Mar 2002 14:32:36 -0500 From: Jacques Gelinas Date: Fri, 1 Mar 2002 14:32:36 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] ext2/ext3 question X-mailer: tlmpmail 0.1 Message-ID: <20020301143236.3a217bc8d6eb@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 245 On Wed, 27 Feb 2002 22:46:22 -0500, Klavs Klavsen wrote > On Wed, 2002-02-27 at 10:13, Mihai RUSU wrote: > > Hi > > > > While patching ctx8 against 2.4.17 I have noticed that it does patch some > > files in the fs/ext2 and fs/ext3 directories: > > patching file linux-2.4.17/fs/ext2/ialloc.c > > patching file linux-2.4.17/fs/ext2/inode.c > > patching file linux-2.4.17/fs/ext2/ioctl.c > > patching file linux-2.4.17/fs/ext3/ialloc.c > > patching file linux-2.4.17/fs/ext3/inode.c > > patching file linux-2.4.17/fs/ext3/ioctl.c > > > > What is this for? If I use some other fs I miss some vserver features? > My guess, would be the adding of the immutable-unlink flag? > and the features that this enables (allowing vserver users to alter the > unified files - which then get un-unified). yes and the patch is pretty limited. It simply maps the immutable-unlink bit to an unused bit in ext2/ext3. It does not affect how the filesystem works. Almost cosmetic --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Mar 1 17:32:27 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g21MWQrw031598; Fri, 1 Mar 2002 17:32:27 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g21M19611247 for vserver.list; Fri, 1 Mar 2002 17:01:09 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g21M19R11243 for ; Fri, 1 Mar 2002 17:01:09 -0500 Received: from remtk.solucorp.qc.ca (g39-131.citenet.net [206.123.39.131]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g21M5j616492 for ; Fri, 1 Mar 2002 17:05:45 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g21Jnbl24495 for vserver@solucorp.qc.ca; Fri, 1 Mar 2002 14:49:37 -0500 From: Jacques Gelinas Date: Fri, 1 Mar 2002 14:49:37 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] unify check/ disk usage X-mailer: tlmpmail 0.1 Message-ID: <20020301144937.e9762568c057@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 246 On Wed, 27 Feb 2002 22:41:07 -0500, Klavs Klavsen wrote > > > However it seems a little off.. my skel server, which has a bare minimum > > > of spaceusage, it says uses 325000K and that sounds like it's not > > > unified at all :-( > > > > vdu simply counts the space used by all file with a single link. It assumes that > > any file with more than one link is probably unified, which is almost true > > (very few files in a linux distribution are hard linked together) > which would mean, that my skel-server is not unified against the base system? > 325mb is a lot for config files only, However a du -csh /vserver/skel > says 403mb - which means that there are some unified files. Can this > have anything to do, with the fact that I've rpm -e a lot of packages > within the skel server? (didn't use vrpm). vrpm is need to apply the same rpm commands to multiple vserver. It is just a helper. No magic If you remove some rpms from the reference server, then there is no way another vserver may be unified on it. The unification work with packages. it finds common package (same version) and then find out which files are not config file and then unified them. So if the base server has less package than a vserver, they can't be unified. > > > > > > 2) get a list of files, that is not unified (or a list of files that > > > > are?) - this way I could easily check for changes in a vserver - such as > > > > evidence of hackers and such. > > > > vdu could use this instead. If the file has the immutable bit on, and has > > more than one link, it must be unified. > the immutable-unlink flag, could be checked with lsattr (if so, what's the letter > for it?)? > > > > I am thinking about a new utility called vfiles. This utility will produced > > a list of file not unified by comparing a vserver with either a reference > > vserver or a package list (a package list + versions in a text file). > sounds interesting, and definetely useful. Would be a good thing to make > some switches, just like DU so one can choose how and what the user > exactly wants. As I see, it there are a few uses for different kind of > output, which basically belongs to the unified / not-unified > question.(f.ex. the ability to find files, that are outside, the > "not-unified" dirs only, and have been un-unified etc.).I'm sure you can > think of many more. > > > > Tonight I wanted to bring a vserver home (how cool :-) ). So I tar it and compress > > it. Got 500megs. Not so bad. It fits on my notebook. But wait, 90% of the files > > in there are already available on my workstation at home. No need to bring them. > But are they the exact version? would require, that you the same version > of RH, and have applied the same updates. Yes. vfiles will be able to compute either by comparing a reference vserver or by comparing a text file with package/version. This file would contain the list of all package in a distribution. All original package in fact. Using this, you would be sure that you can unify the vserver at home, because the tarball will contain all the extra packages. > > Using vfiles, it becomes very easy to backup a vserver in the root server > > and then compare that to prove the vserver has not been hacked. > One of the very interesting features. However, it should be possible to check this > without > comparing against a backup - f.ex. by having a list of files that > "should be" unified - and then checking if they still are. If they have > been unlinked - something weird is up.. and if you know you updated the > vserver only, then you could just update the list of unified-files. > The list of should-be unified files, are also good to apply a > tripwire-like checksum check root against vserver, if one does not have > a checksum database installed. :-) > > But I would like to see something else in this area. For example, a per > > vserver flag could change the meaning immutable-unlink fiag. It would > > be possible to turn the vserver flag on and off from the root server. When > > the per server flag (called it "frozen") is turned on, the ummutable-unlink > > flag is disregarded. This means, instantly, all unified files turned to immutable > > only: A vserver is not allowed to changed them anymore. > is this not possible now, by removing the immutable-unlink flag, from > the necessary vservers only? sorry if I'm a but dumb here, but what's > the extra features with the per vserver flag? No. The immutable flag is stored in the inode. So if you remove the flag, all vserver are loosing the immutable flag. Further, it is a long process. you have to walk the vserver and touch every file. Having a way to turn a global attribute on and off on one vserver only seems the way to go. > > All those funny feature could be implement using the Linux Security Module > > I think. > I would love to hear what your plans are with the LSM and vserver. I visited Openwall > but couldn't find any texts about what LSM is, and what it enables. Ideally, the vserver project should be done on top of LSM. LSM (linux security module) is really a framework where anyone will be able to introduce all kind of weirdness (I mean creativity) to enhance security or even make the system more usable. So instead of having everyone hacking in the kernel and ending with a kernel looking like foo(....){ if (joe's feature is on) return some_error if (jack's feature is on) return some error . ] all those idea will be done as LSM pluggin. The core kernel would only talk to the LSM. Some ideas of the vserver are readily doable with the LSM. Some can't be implemented. Since both LSM and vserver are kind of evolving, it is too soon to try to tie both project. The major problem with vserver is that it is not only introducing new access rules, but also virtualisation. LSM is currently more about introducing new access rules and less about changing the behavior of a system call. It seems like most security enhancement project are moving to LSM these days. This is cool because it will allow more people to try those system. Because of the modular nature, it should be possible to try the NSA secure offering on your box without even rebooting :-) > > Using kernel ctx-8, samba should work fine in a vserver. The only issue is > > that the vserver must be either in the DNS or you must use a WINS to reach > > it (which you probably do anyway). > Great. what change enabled this? (i'm curious by nature :-) vserver can use their ipv4root (their assigned IP) or 127.0.0.1. The kernel remap 127.0.0.1 to the ipv4root in connect and bind system call. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Mar 1 22:17:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g223Hu7t001547; Fri, 1 Mar 2002 22:17:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g222pml16248 for vserver.list; Fri, 1 Mar 2002 21:51:48 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mx1.paradigm4.com.au (server.paradigm4.com.au [202.45.126.119]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g222pkR16244 for ; Fri, 1 Mar 2002 21:51:47 -0500 Received: (qmail 20230 invoked from network); 2 Mar 2002 02:56:04 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 2 Mar 2002 02:56:04 -0000 Received: (qmail 25356 invoked from network); 2 Mar 2002 02:55:35 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 2 Mar 2002 02:55:35 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sat, 2 Mar 2002 14:08:31 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] ext2/ext3 question Message-ID: <3C80DCDF.1433.48311A@localhost> Priority: normal In-reply-to: <20020301140142.942349603f4b@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 247 Isn't it CAP_LINUX_IMMUTABLE capability? On Friday, 1 March 2002 at 14:01, Jacques Gelinas wrote: > Only root in the root server can do it (change the immutable flags). More precisely > only a user with CAP_SYS_ADMIN capability can do it and vservers do not have > this capability (by default). > From vserver.error@solucorp.qc.ca Sun Mar 3 11:43:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g23Ghc7t029987; Sun, 3 Mar 2002 11:43:38 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g23GAx624266 for vserver.list; Sun, 3 Mar 2002 11:10:59 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from skessa.this.is (this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g23GAwR24262; Sun, 3 Mar 2002 11:10:59 -0500 Received: from skessa.this.is (www-data@localhost [127.0.0.1]) by skessa.this.is (8.12.1/8.12.1/Debian -5) with ESMTP id g23GAwM7018157; Sun, 3 Mar 2002 16:10:58 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.1/8.12.1/Debian -5) id g23GAvOV018155; Sun, 3 Mar 2002 16:10:57 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca, Jacques Gelinas Subject: [vserver] kernel install, rpm, Debian Message-ID: <1015171857.3c824b11bd234@this.is> Date: Sun, 03 Mar 2002 16:10:57 +0000 (GMT) From: ragnar@this.is References: <20020301103305.d744deca4206@remtk.solucorp.qc.ca> In-Reply-To: <20020301103305.d744deca4206@remtk.solucorp.qc.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 194.144.127.83 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 248 Hi, I am from the land of Debian so I do not know about the way things are done in RedHat. > > Also, will installing the vserver-0.13-1.i386.rpm file also > > install the kernel? > > Yes they are packaged independantly. But not as kernel.xx.rpm ? Also, I would like to run Debian on the vservers. Any info on the initial install and unification? Best ragnar@this.is From vserver.error@solucorp.qc.ca Sun Mar 3 13:14:54 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g23IEr7t030453; Sun, 3 Mar 2002 13:14:54 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g23Hi4w25774 for vserver.list; Sun, 3 Mar 2002 12:44:04 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.trekia.se (stratos.trekia.se [212.105.83.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g23HhwR25768 for ; Sun, 3 Mar 2002 12:44:04 -0500 Received: from localhost (jonas@localhost) by mail.trekia.se (8.11.1/8.11.1) with ESMTP id g23HhqA02973 for ; Sun, 3 Mar 2002 18:43:52 +0100 X-Authentication-Warning: stratos.trekia.se: jonas owned process doing -bs Date: Sun, 3 Mar 2002 18:43:52 +0100 (CET) From: =?ISO-8859-1?Q?Jonas_Bj=F6rklund?= X-X-Sender: jonas@stratos To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel install, rpm, Debian In-Reply-To: <1015171857.3c824b11bd234@this.is> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 249 Hi, > Also, I would like to run Debian on the vservers. > Any info on the initial install and unification? Yes. I changed: STARTCMD="/etc/rc.d/rc 3" to: STARTCMD="/etc/init.d/rc 2" In /usr/sbin/vserver. Maybe there is more to change but this was enough for me. From vserver.error@solucorp.qc.ca Sun Mar 3 23:44:25 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g244iGo1003983; Sun, 3 Mar 2002 23:44:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g244CiS03341 for vserver.list; Sun, 3 Mar 2002 23:12:44 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ith.nbwrpg.com (cpe-24-221-148-187.az.sprintbbd.net [24.221.148.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g244ChR03337 for ; Sun, 3 Mar 2002 23:12:43 -0500 Received: from ith.nbwrpg.com (ith.nbwrpg.com [10.0.0.254]) by ith.nbwrpg.com (Postfix) with ESMTP id A59D5B738 for ; Sun, 3 Mar 2002 21:00:11 -0700 (MST) Date: Sun, 3 Mar 2002 21:00:11 -0700 (MST) From: To: Subject: Re: [vserver] kernel install, rpm, Debian In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=ISO-8859-1 Content-Transfer-Encoding: 8BIT Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 250 On Sun, 3 Mar 2002, Jonas Björklund wrote: > Hi, > > > Also, I would like to run Debian on the vservers. > > Any info on the initial install and unification? > > Yes. I changed: > > STARTCMD="/etc/rc.d/rc 3" > > to: > > > STARTCMD="/etc/init.d/rc 2" > > In /usr/sbin/vserver. > > Maybe there is more to change but this was enough for me. > There are a few occurances of that. One is also the stop command, and then there's something while building the vserver. You'll probably wanna search through the whole script for "/etc/rc.d" and fix any line that contains it. Are you also planning to run Debian on the root server? If so, you'll need to fix the sysvinit scripts. - Yan From vserver.error@solucorp.qc.ca Mon Mar 4 10:28:37 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g24FSa7Y007419; Mon, 4 Mar 2002 10:28:37 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g24EoaS14390 for vserver.list; Mon, 4 Mar 2002 09:50:36 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g24EoZR14386 for ; Mon, 4 Mar 2002 09:50:35 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id F35881000 for ; Mon, 4 Mar 2002 15:50:33 +0100 (CET) Subject: [vserver] several vservers on 1 IP - possible? From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-EfZQ8ClBIsjzATEBt2S2" X-Mailer: Evolution/1.0.2 Date: 04 Mar 2002 15:50:23 +0100 Message-Id: <1015253434.2005.44.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 251 --=-EfZQ8ClBIsjzATEBt2S2 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I run approx. 10 different services on my own computer. Some of these services are things like a XFrisk server, and other stuff, that I don't really trust as much :-( I would like to be able to seperate each service within a vserver of it's own, however that would mean that I would have to handle portforwarding from my root-server (which holds the IP, that packages for my public IP, gets forwarded to by a router in front), to each vserver IP, depending on which service is running where. Also I need to keep state and forward the packages correctly. This sounds like a pretty elaborate and complex setup :-( I wanted to "chroot" my services by putting 1 in each vserver and let them safely share different files via mount --bind (and then mount the shared stuff readonly for 1 vserver and read-write for another). But my problem is that they can't all have the same IP. I wanted to run an idea by you guys. Would it be possible to perhaps enable this IP-sharing, by assigning port-ranges (within <1024) to vserver's - and one would also have to handle that when a service listens for the answer on a port 1023> - could that be done, by allowing all services to grap unused ports above 1023>? would this give security problems? Also, I got introduced to the HP Secure OS this weekend, and it enables this and uses something that seems like the Contexts concept. HP has released the source code, so I figured some of you hackers wanted to take a look and see if they have any good ideas, that vserver could use? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-EfZQ8ClBIsjzATEBt2S2 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8g4mv4c1kHlhtW8oRAl8XAJ0WwGx4eQ5il+Yj4Yya/5LolDejWwCfdVyn yHkhKX9TWL4yl3IUUpQlU7k= =L0yg -----END PGP SIGNATURE----- --=-EfZQ8ClBIsjzATEBt2S2-- From vserver.error@solucorp.qc.ca Mon Mar 4 13:00:23 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g24I0I7Y008413; Mon, 4 Mar 2002 13:00:19 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g24HRcp17731 for vserver.list; Mon, 4 Mar 2002 12:27:38 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from zeus.bragatel.pt (vs1.bragatel.pt [217.70.64.251]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g24HRbR17727 for ; Mon, 4 Mar 2002 12:27:37 -0500 Received: (qmail 19785 invoked by uid 507); 4 Mar 2002 17:27:23 -0000 Received: from cliente-bgt-217-70-64-194.bragatel.pt (HELO localhost.localdomain) (217.70.64.194) by jupiter.local.bragatel.pt with SMTP; 4 Mar 2002 17:27:23 -0000 Subject: Re: [vserver] Kernel panic: Finally it's working From: Luis Santos To: vserver@solucorp.qc.ca In-Reply-To: <20020301103937.A18102@figure1.int.wirex.com> References: <20020228120217.c9930e3c4c67@remtk.solucorp.qc.ca> <1014921796.794.55.camel@localhost.localdomain> <1014935990.1707.0.camel@amd.vsen.dk> <1014979033.5186.7.camel@localhost.localdomain> <20020301103937.A18102@figure1.int.wirex.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 04 Mar 2002 17:26:19 +0000 Message-Id: <1015262779.699.8.camel@localhost.localdomain> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 252 I compiled kernel 2.4.18 with patch ctx8-2.4.18 and no more problems. Tkanks all for help. Luis Santos ------------------------------ On Thu, 2002-02-28 at 19:43, Luis Santos wrote: > > I'm running RH7.1, Kernel 2.4.17 with virtual server patch, virtual > > server utilities 0.12 in this hardware: > > Ethernet card: via-rhine > > Memory: 131060k > > CPU: Intel Pentium III (Katmai) stepping 03 > > Disk controller: Adaptec AIC7XXX EISA/VLB/PCI SCSI HBA DRIVER, Rev > > 6.2.4 > > Adaptec aic7890/91 Ultra2 SCSI > > Disk: QUANTUM Model: ATLAS IV 9 WLS Rev: 0B0B > > > > When my computer boots, everything is OK. I start a virtual server, > > enter it, ... , without problems. > > > > Then, when kernel starts using swap space, it gives me errors and more > > errors and stops after some time. > > > > I must say that this problem only gets when kernel uses swap space. > > Tkanks and sorry my poor english. > > > > > > -------------------------------------------------------------------------------------- > > > > Feb 28 15:38:24 plutao kernel: Code: Bad EIP value. > > Feb 28 15:38:27 plutao kernel: <1>Unable to handle kernel paging > > request at virtual address 00002e00 > > Feb 28 15:38:27 plutao kernel: printing eip: > > Feb 28 15:38:27 plutao kernel: 00002e00 > > Feb 28 15:38:27 plutao kernel: *pde = 00000000 > > Feb 28 15:38:27 plutao kernel: Oops: 0000 > > Feb 28 15:38:27 plutao kernel: CPU: 0 > > Feb 28 15:38:27 plutao kernel: EIP: 0010:[<00002e00>] Not tainted > > Feb 28 15:38:27 plutao kernel: EFLAGS: 00010202 > > Feb 28 15:38:27 plutao kernel: eax: 00000002 ebx: c0331e60 ecx: > > 0000002e edx: c8821000 > > Feb 28 15:38:27 plutao kernel: esi: 0000002e edi: 00000020 ebp: > > 000009de esp: c081dc1c > > Feb 28 15:38:27 plutao kernel: ds: 0018 es: 0018 ss: 0018 > > Feb 28 15:38:27 plutao kernel: Process vserver (pid: 959, > > stackpage=c081d000) > > Feb 28 15:38:27 plutao kernel: Stack: c11c6900 c01265b3 c0331e60 > > 00000000 c081c000 000000fc 000000f0 c02d71c8 > > Feb 28 15:38:27 plutao kernel: c7ffcd50 c4015020 c7ffcc70 > > 00000001 00000020 000000f0 00000006 0000766a > > Feb 28 15:38:27 plutao kernel: c0126728 00000006 0000000f > > c02d71c8 00000006 000000f0 c02d71c8 00000000 > > Feb 28 15:38:27 plutao kernel: Call Trace: [] [] > > [] [] [] > > Feb 28 15:38:27 plutao kernel: [] [] [] > > [] [] [] > > Feb 28 15:38:27 plutao kernel: [] [] [] > > [] [] [] > > Feb 28 15:38:27 plutao kernel: [] [] [] > > [] [] [] > > Feb 28 15:38:27 plutao kernel: [] [] [] > > [] [] [] > > Feb 28 15:38:27 plutao kernel: > > Feb 28 15:38:27 plutao kernel: Code: Bad EIP value. > > Feb 28 15:38:27 plutao kernel: <1>Unable to handle kernel paging > > request at virtual address 00003600 > > Feb 28 15:38:27 plutao kernel: printing eip: > > Feb 28 15:38:27 plutao kernel: 00003600 > > Feb 28 15:38:27 plutao kernel: *pde = 00000000 > > Feb 28 15:38:27 plutao kernel: Oops: 0000 > > Feb 28 15:38:28 plutao kernel: CPU: 0 > > Feb 28 15:38:28 plutao kernel: EIP: 0010:[<00003600>] Not tainted > > Feb 28 15:38:28 plutao kernel: EFLAGS: 00010202 > > Feb 28 15:38:28 plutao kernel: eax: 00000001 ebx: c0331e60 ecx: > > 00000036 edx: c8821000 > > Feb 28 15:38:28 plutao kernel: esi: 00000036 edi: 00000020 ebp: > > 000009e0 esp: c208fe58 > > Feb 28 15:38:28 plutao kernel: ds: 0018 es: 0018 ss: 0018 > > Feb 28 15:38:28 plutao kernel: Process ucc-bin (pid: 786, > > stackpage=c208f000) > > Feb 28 15:38:28 plutao kernel: Stack: c11c6840 c01265b3 c0331e60 > > c02d7338 c208e000 000000fc 000001d2 c02d71c8 > > Feb 28 15:38:28 plutao kernel: c1020680 c1000000 c7ffc810 > > 00000000 00000020 000001d2 00000006 00007688 > > Feb 28 15:38:28 plutao kernel: c0126728 00000006 0000000f > > c02d71c8 00000006 000001d2 c02d71c8 00000000 > > Feb 28 15:38:28 plutao kernel: Call Trace: [] [] > > [] [] [] > > Feb 28 15:38:28 plutao kernel: [] [] [] > > [] [] [] > > Feb 28 15:38:28 plutao kernel: > > Feb 28 15:38:28 plutao kernel: Code: Bad EIP value. > > From vserver.error@solucorp.qc.ca Mon Mar 4 16:42:21 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g24LgK7Y010428; Mon, 4 Mar 2002 16:42:20 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g24L7k322292 for vserver.list; Mon, 4 Mar 2002 16:07:46 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g24L7iR22285 for ; Mon, 4 Mar 2002 16:07:45 -0500 Received: from host213-122-11-75.in-addr.btopenworld.com ([213.122.11.75] helo=john-new) by gadolinium.btinternet.com with esmtp (Exim 3.22 #8) id 16hzgK-0007Q4-00 for vserver@solucorp.qc.ca; Mon, 04 Mar 2002 21:07:41 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Mon, 4 Mar 2002 21:07:26 -0000 From: "John Lyons" To: Subject: [vserver] Which Kernel Date: Mon, 4 Mar 2002 21:07:23 -0000 Message-ID: <007b01c1c3c0$9600b350$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <1015262779.699.8.camel@localhost.localdomain> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 253 Whats the recommended kernel ctx patch to be using at the moment? Which is most stable? I'm on ctx 5 at the moment but will upgrade to the latest tomorrow assuming I'm not going backwards in terms of stability. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Mon Mar 4 17:48:49 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g24Mmm7Y010889; Mon, 4 Mar 2002 17:48:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g24MLYj23844 for vserver.list; Mon, 4 Mar 2002 17:21:34 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g24MLYR23840 for ; Mon, 4 Mar 2002 17:21:34 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id DD3D41000 for ; Mon, 4 Mar 2002 23:21:32 +0100 (CET) Subject: Re: [vserver] Which Kernel From: klavs klavsen To: Vserver Mailinglist In-Reply-To: <007b01c1c3c0$9600b350$0100a8c0@johnnew> References: <007b01c1c3c0$9600b350$0100a8c0@johnnew> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-JuxixLAVcnOCy4pK7mzp" X-Mailer: Evolution/1.0.2 Date: 04 Mar 2002 23:21:20 +0100 Message-Id: <1015280493.2003.0.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 254 --=-JuxixLAVcnOCy4pK7mzp Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Mon, 2002-03-04 at 22:07, John Lyons wrote: >=20 > Whats the recommended kernel ctx patch to be using at the moment? Which i= s > most stable? ctx-8 for 2.4.18. a guy named Luis Santos, had trouble with 2.4.17 and ctx-7 but no probs with the above mentioned. --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-JuxixLAVcnOCy4pK7mzp Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8g/Ng4c1kHlhtW8oRAn6IAKCk2EKmMQOb3/fcS7Xl8uAu66qYUwCfTulU yiWgDW0aNmgkGLRwbVecEl0= =vubu -----END PGP SIGNATURE----- --=-JuxixLAVcnOCy4pK7mzp-- From vserver.error@solucorp.qc.ca Tue Mar 5 07:39:23 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25CdL7Y015780; Tue, 5 Mar 2002 07:39:22 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25BxuP05868 for vserver.list; Tue, 5 Mar 2002 06:59:56 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25BxtR05864 for ; Tue, 5 Mar 2002 06:59:55 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 7CFF1108C for ; Tue, 5 Mar 2002 12:59:54 +0100 (CET) Subject: [vserver] mount -o ro --bind .. don't work From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-96rBV30EgiAHuFM6kJcd" X-Mailer: Evolution/1.0.2 Date: 05 Mar 2002 12:59:43 +0100 Message-Id: <1015329594.2004.1.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 255 --=-96rBV30EgiAHuFM6kJcd Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, when I try to mount a directory under a vserver read-only it mounts fine, and the mount command tells me it's read-only. However as root in the vserver, I can edit and add files and directores just fine :-) Do any of you have experience with this? Or should I just forget about the mount --bind - and keep duplicate directories?=20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-96rBV30EgiAHuFM6kJcd Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8hLMv4c1kHlhtW8oRAs4ZAJ9v6oHJePK4Pr8Oricp695WUrohmACgk/e8 HBHaG3koiapXrFuNH4jfmbg= =kgST -----END PGP SIGNATURE----- --=-96rBV30EgiAHuFM6kJcd-- From vserver.error@solucorp.qc.ca Tue Mar 5 07:56:25 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25CuO7Y015880; Tue, 5 Mar 2002 07:56:24 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25CRAX06452 for vserver.list; Tue, 5 Mar 2002 07:27:10 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from skessa.this.is (this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25CRAR06448 for ; Tue, 5 Mar 2002 07:27:10 -0500 Received: from skessa.this.is (www-data@localhost [127.0.0.1]) by skessa.this.is (8.12.1/8.12.1/Debian -5) with ESMTP id g25CR9M7011460 for ; Tue, 5 Mar 2002 12:27:09 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.1/8.12.1/Debian -5) id g25CR9gt011458 for vserver@solucorp.qc.ca; Tue, 5 Mar 2002 12:27:09 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca Subject: [vserver] Re: Debian Message-ID: <1015331229.3c84b99d313b7@this.is> Date: Tue, 05 Mar 2002 12:27:09 +0000 (GMT) From: ragnar@this.is References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 194.144.127.80 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-0.8 required=5.0 tests=IN_REP_TO,NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 256 Hi, Sorry to ask the same question again... > > I would like to run Debian on the vservers. > Are you also planning to run Debian on the root server? That is not so important and hardly practical with the fast development progress now. What I would like to do is to run debian as a virtual server with no modification to it's environment, if possible. At least with documented modifications that would not break by an apt-get upgrade. The way debian works we will probably end um with a "port" named vserver-i386. But for now my problem is simpler... I do not know how to install the first "template" server. Best Gudmundur Ragnar ragnar@this.is From vserver.error@solucorp.qc.ca Tue Mar 5 08:41:37 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25Dfa7Y016000; Tue, 5 Mar 2002 08:41:36 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25DC7R07262 for vserver.list; Tue, 5 Mar 2002 08:12:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.SerNet.DE (mail.SerNet.DE [193.159.217.66]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25DC6R07258 for ; Tue, 5 Mar 2002 08:12:06 -0500 Received: from intern.SerNet.DE by mail.SerNet.DE with esmtp (Exim 2.12 #1) for vserver@solucorp.qc.ca id 16iEjb-0000wU-00; Tue, 5 Mar 2002 14:12:03 +0100 Received: by intern.SerNet.DE id 16iEja-00030E-00; Tue, 05 Mar 2002 14:12:02 +0100 Content-Type: text/plain; charset="iso-8859-1" From: Krischan Jodies To: vserver@solucorp.qc.ca Subject: Re: [vserver] mount -o ro --bind .. don't work Date: Tue, 5 Mar 2002 14:07:30 +0100 References: <1015329594.2004.1.camel@amd.vsen.dk> In-Reply-To: <1015329594.2004.1.camel@amd.vsen.dk> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: Organization: Service Network GmbH, Goettingen, Germany Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 257 Am Dienstag, 5. März 2002 12:59 schrieb klavs klavsen: > Hi guys, > > when I try to mount a directory under a vserver read-only it mounts > fine, and the mount command tells me it's read-only. However as root in > the vserver, I can edit and add files and directores just fine :-) > > Do any of you have experience with this? Or should I just forget about > the mount --bind - and keep duplicate directories? We are using only mount --bind, no vunify at all. Whether you have write access or not depends only on the first "real" mount, the second does not matter. Our system looks like this: /dev/hda2 on /map type ext2 (ro) /map/usr on /vservers/mysql/usr type none (ro,bind) /map/sbin on /vservers/mysql/sbin type none (ro,bind) /map/bin on /vservers/mysql/bin type none (ro,bind) /map/lib on /vservers/mysql/lib type none (ro,bind) proc on /vservers/mysql/proc type proc (rw) none on /vservers/mysql/dev/pts type devpts (rw) /map/usr on /vservers/foertsch/usr type none (ro,bind) /map/sbin on /vservers/foertsch/sbin type none (ro,bind) /map/bin on /vservers/foertsch/bin type none (ro,bind) /map/lib on /vservers/foertsch/lib type none (ro,bind) proc on /vservers/foertsch/proc type proc (rw) none on /vservers/foertsch/dev/pts type devpts (rw) [and so on] Another interesting thing is: You can remount -o rw,ro /map any time you want, and read/write access to the mount --binded directories changes accordingly. (Note: All vservers have write access when /map is r/w! Consider shutting down them, when maintaining /map) But switch /map to r/w, switch any /vserver/blah to r/w too and you can't switch /map back to r/o. Krischan -- Service Network GmbH, mailto:kjodies@SerNet.DE, http://www.SerNet.DE phone: +49-551-370000-0, fax: +49-551-370000-9 From vserver.error@solucorp.qc.ca Tue Mar 5 08:45:07 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25Dj67Y016021; Tue, 5 Mar 2002 08:45:07 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25DG5K07349 for vserver.list; Tue, 5 Mar 2002 08:16:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tranq.dorms.spbu.ru (tranq.dorms.spbu.ru [195.19.254.35]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25DG4R07345 for ; Tue, 5 Mar 2002 08:16:05 -0500 Received: from localhost ([127.0.0.1] helo=tranq) by tranq.dorms.spbu.ru with smtp (Exim 3.33 #1 (Debian)) id 16iEnR-0001WG-00 for ; Tue, 05 Mar 2002 16:16:01 +0300 Date: Tue, 5 Mar 2002 16:16:01 +0300 From: Konstantin Starodubtsev To: vserver@solucorp.qc.ca Subject: Re: [vserver] Re: Debian Message-Id: <20020305161601.0151c2f9.klists@rbcmail.ru> In-Reply-To: <1015331229.3c84b99d313b7@this.is> References: <1015331229.3c84b99d313b7@this.is> X-Mailer: Sylpheed version 0.7.2claws2 (GTK+ 1.2.10; i386-debian-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 258 > But for now my problem is simpler... I do not know how to > install the first "template" server. The shortest way is to get and unpack base.tgz from potato distribution. After it enter vserver and do apt-get dist-upgrade in it. Another way is to do like the new woody installer does. It forces installation of all packages under binary-all/base directory in the first pass, and in the second one it configures all packages (dpkg-reconfigure --all). May be you will need to do it several times. From vserver.error@solucorp.qc.ca Tue Mar 5 08:49:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25Dnv7Y016035; Tue, 5 Mar 2002 08:49:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25DIA607380 for vserver.list; Tue, 5 Mar 2002 08:18:10 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25DIAR07376 for ; Tue, 5 Mar 2002 08:18:10 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g25DHxH0012919 for ; Tue, 5 Mar 2002 14:17:59 +0100 Date: Tue, 5 Mar 2002 14:17:59 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: Vserver Mailinglist Subject: Re: [vserver] mount -o ro --bind .. don't work In-Reply-To: <1015329594.2004.1.camel@amd.vsen.dk> Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 259 On 5 Mar 2002, klavs klavsen wrote: > Hi guys, > > when I try to mount a directory under a vserver read-only it mounts > fine, and the mount command tells me it's read-only. However as root in > the vserver, I can edit and add files and directores just fine :-) > > Do any of you have experience with this? Or should I just forget about > the mount --bind - and keep duplicate directories? This is currently a limitation of the VFS in Linux. I began to start fixing it but then I ran into some more serious problems that need a smaller redesign of the VFS and I need to contact Al Viro for advice on how he wants it done (I know he wants this fixed). Maybe I'll get around to mail him soon. I hope so. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Tue Mar 5 09:05:00 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25E4x7Y016096; Tue, 5 Mar 2002 09:04:59 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25DYrS07731 for vserver.list; Tue, 5 Mar 2002 08:34:53 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25DYqR07727 for ; Tue, 5 Mar 2002 08:34:53 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id DC73B108C for ; Tue, 5 Mar 2002 14:34:52 +0100 (CET) Subject: Re: [vserver] Re: Debian From: klavs klavsen To: Vserver Mailinglist In-Reply-To: <1015331229.3c84b99d313b7@this.is> References: <1015331229.3c84b99d313b7@this.is> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-HJX1Hpfur14E06BFXSeI" X-Mailer: Evolution/1.0.2 Date: 05 Mar 2002 14:34:42 +0100 Message-Id: <1015335293.2005.79.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 260 --=-HJX1Hpfur14E06BFXSeI Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Tue, 2002-03-05 at 13:27, ragnar@this.is wrote: > But for now my problem is simpler... I do not know how to > install the first "template" server. A simple approach, that I think would work, would be to cp all the files from another machine, and put them under the vserver directory. then you "just" need to adjust the vserver startup scripts and such. that should do it? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-HJX1Hpfur14E06BFXSeI Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8hMly4c1kHlhtW8oRAiowAKC2+H8zXG9OSeyG63q8u88miI8aaQCfeMEp SGNIIDGoNjoMSoou9chbvQ0= =Yk4N -----END PGP SIGNATURE----- --=-HJX1Hpfur14E06BFXSeI-- From vserver.error@solucorp.qc.ca Tue Mar 5 10:04:45 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25F4h7Y016367; Tue, 5 Mar 2002 10:04:44 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25EWSe08926 for vserver.list; Tue, 5 Mar 2002 09:32:28 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25EWRR08922 for ; Tue, 5 Mar 2002 09:32:27 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id BF496108C for ; Tue, 5 Mar 2002 15:32:27 +0100 (CET) Subject: Re: [vserver] mount -o ro --bind .. don't work From: klavs klavsen To: Vserver Mailinglist In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-ngm0tH/UNCufQCisKhb4" X-Mailer: Evolution/1.0.2 Date: 05 Mar 2002 15:32:17 +0100 Message-Id: <1015338747.2005.83.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 261 --=-ngm0tH/UNCufQCisKhb4 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Tue, 2002-03-05 at 14:17, Martin Josefsson wrote: > On 5 Mar 2002, klavs klavsen wrote: >=20 > > Hi guys, > >=20 > > when I try to mount a directory under a vserver read-only it mounts > > fine, and the mount command tells me it's read-only. However as root in > > the vserver, I can edit and add files and directores just fine :-) > >=20 > > Do any of you have experience with this? Or should I just forget about > > the mount --bind - and keep duplicate directories?=20 >=20 > This is currently a limitation of the VFS in Linux. I began to start > fixing it but then I ran into some more serious problems that need a > smaller redesign of the VFS and I need to contact Al Viro for advice on > how he wants it done (I know he wants this fixed). Maybe I'll get around > to mail him soon. I hope so. I hope so too.. Until then it seems I have to repartition my disk (which for now has one big / and only a /var seperate partition - 3gb disk only), or have duplicates and check for with diff once in a while.. I found this link (with some pointing from friends): http://groups.google.com/groups?hl=3Den&selm=3Dlinux.kernel.Pine.LNX.4.33L.= 0110291504380.22127-100000%40duckman.distro.conectiva it dates 29. oct 2001. according to it, something called a namespace patch has to be integrated more into the kernel.=20 Do you know if this has been done? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-ngm0tH/UNCufQCisKhb4 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8hNbx4c1kHlhtW8oRAtglAJ9i3kOETQYeveDZdf8xsBjYPvv07wCfazII GfVZB2jtsLNjw37E2Cc/RqA= =pfjp -----END PGP SIGNATURE----- --=-ngm0tH/UNCufQCisKhb4-- From vserver.error@solucorp.qc.ca Tue Mar 5 10:27:12 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25FRA7Y016597; Tue, 5 Mar 2002 10:27:11 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25ErI309471 for vserver.list; Tue, 5 Mar 2002 09:53:18 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25ErHR09467 for ; Tue, 5 Mar 2002 09:53:17 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 1300D108C for ; Tue, 5 Mar 2002 15:53:16 +0100 (CET) Subject: Re: [vserver] mount -o ro --bind .. don't work From: klavs klavsen To: Vserver Mailinglist In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-fBrEOdIuVN9QPgQ5OuF2" X-Mailer: Evolution/1.0.2 Date: 05 Mar 2002 15:53:06 +0100 Message-Id: <1015339997.2005.87.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 262 --=-fBrEOdIuVN9QPgQ5OuF2 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Am I right in assuming that I could circumvent the problem by hardlinking from /www/$file to /vservers/test/www/$file for all files and directories, and them making the /vservers/test/www immutable and NOT immutable-unlink - so that even Root in the test-vserver can't change them. only the Real root can? btw. can I use chattr to set/unset the immutable-unlink bit? just like I can use it to set the immutable? I hope so :-) --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-fBrEOdIuVN9QPgQ5OuF2 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8hNvS4c1kHlhtW8oRArCYAKCnefWznjFffdrL/dpgYvJctfKnkwCfd6c+ UbHCOIKHw5xhVuXiO4d1htY= =AjPr -----END PGP SIGNATURE----- --=-fBrEOdIuVN9QPgQ5OuF2-- From vserver.error@solucorp.qc.ca Tue Mar 5 10:29:43 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25FTg7Y016623; Tue, 5 Mar 2002 10:29:43 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25F1DK09711 for vserver.list; Tue, 5 Mar 2002 10:01:13 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.trekia.se (stratos.trekia.se [212.105.83.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25F1CR09707 for ; Tue, 5 Mar 2002 10:01:12 -0500 Received: from localhost (jonas@localhost) by mail.trekia.se (8.11.1/8.11.1) with ESMTP id g25F15d13983 for ; Tue, 5 Mar 2002 16:01:05 +0100 X-Authentication-Warning: stratos.trekia.se: jonas owned process doing -bs Date: Tue, 5 Mar 2002 16:01:05 +0100 (CET) From: =?ISO-8859-1?Q?Jonas_Bj=F6rklund?= X-X-Sender: jonas@stratos To: Vserver Mailinglist Subject: Re: [vserver] Re: Debian In-Reply-To: <1015335293.2005.79.camel@amd.vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 263 Hi, > > But for now my problem is simpler... I do not know how to > > install the first "template" server. > > A simple approach, that I think would work, would be to cp all the files > from another machine, and put them under the vserver directory. then you > "just" need to adjust the vserver startup scripts and such. that should > do it? If the sulotion with base.tgz works it sounds like the best solution. (I haven't test that. But will do!) A copy from another server will take more time. From vserver.error@solucorp.qc.ca Tue Mar 5 10:41:51 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25Ffo7Y016743; Tue, 5 Mar 2002 10:41:50 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25FB1909972 for vserver.list; Tue, 5 Mar 2002 10:11:01 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25FB1R09968 for ; Tue, 5 Mar 2002 10:11:01 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g25FCai03307 for vserver@solucorp.qc.ca; Tue, 5 Mar 2002 10:12:36 -0500 From: Jacques Gelinas Date: Tue, 5 Mar 2002 10:12:36 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Which Kernel X-mailer: tlmpmail 0.1 Message-ID: <20020305101236.9caf8f1ea73e@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 264 On Mon, 4 Mar 2002 21:07:23 -0500, John Lyons wrote > > Whats the recommended kernel ctx patch to be using at the moment? Which is > most stable? > > I'm on ctx 5 at the moment but will upgrade to the latest tomorrow assuming > I'm not going backwards in terms of stability. So far, I received a single message of non-stability (well, you have seen it on the list). I am running 2.4.18ctx-8 on my workstation and 2.4.17ctx-7 on prod servers. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Mar 5 11:40:52 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25Geo7Y017236; Tue, 5 Mar 2002 11:40:51 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25G0mv11112 for vserver.list; Tue, 5 Mar 2002 11:00:48 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25G0lR11108 for ; Tue, 5 Mar 2002 11:00:48 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 385DB108C for ; Tue, 5 Mar 2002 17:00:46 +0100 (CET) Subject: Re: [vserver] mount -o ro --bind .. don't work From: klavs klavsen To: Vserver Mailinglist In-Reply-To: <1015339997.2005.87.camel@amd.vsen.dk> References: <1015339997.2005.87.camel@amd.vsen.dk> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-Pu3Bp+nLNfbzqSvkfTId" X-Mailer: Evolution/1.0.2 Date: 05 Mar 2002 17:00:36 +0100 Message-Id: <1015344047.2004.91.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 265 --=-Pu3Bp+nLNfbzqSvkfTId Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Tue, 2002-03-05 at 15:53, klavs klavsen wrote: > Am I right in assuming that I could circumvent the problem by > hardlinking from /www/$file to /vservers/test/www/$file for all files > and directories, and them making the /vservers/test/www immutable and > NOT immutable-unlink - so that even Root in the test-vserver can't > change them. only the Real root can? I found that the vserver's root can't remove the immutable flag, but when editing from the root-server - you would have to remove the immutable flag to update it.. bad thing.=20 Instead I made a script that cp's all files from /www to /vservers/test/www and then chattr +i -R's the copy.=20 this way it's easy to sync the dir, when you change the original. =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-Pu3Bp+nLNfbzqSvkfTId Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8hOuj4c1kHlhtW8oRAjssAKCjA2TP5LLIGYVQ9Ib4ZhFGN2DOcgCfYGSz KeclJDRLxrtp1MiqHJtwdAs= =QMiW -----END PGP SIGNATURE----- --=-Pu3Bp+nLNfbzqSvkfTId-- From vserver.error@solucorp.qc.ca Tue Mar 5 14:23:05 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25JN37Y018168; Tue, 5 Mar 2002 14:23:04 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25IjBe02719 for vserver.list; Tue, 5 Mar 2002 13:45:11 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from figure1.int.wirex.com (cerebus.wirex.com [65.102.14.138]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25IjAh02715 for ; Tue, 5 Mar 2002 13:45:10 -0500 Received: (from chris@localhost) by figure1.int.wirex.com (8.11.6/8.11.6) id g25Iph318694; Tue, 5 Mar 2002 10:51:43 -0800 Date: Tue, 5 Mar 2002 10:51:42 -0800 From: Chris Wright To: Martin Josefsson Cc: Vserver Mailinglist Subject: Re: [vserver] mount -o ro --bind .. don't work Message-ID: <20020305105142.A18656@figure1.int.wirex.com> References: <1015338747.2005.83.camel@amd.vsen.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from gandalf@wlug.westbo.se on Tue, Mar 05, 2002 at 07:03:09PM +0100 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 266 * Martin Josefsson (gandalf@wlug.westbo.se) wrote: > On 5 Mar 2002, klavs klavsen wrote: > > [snip] > > I hope so too.. Until then it seems I have to repartition my disk (which > > for now has one big / and only a /var seperate partition - 3gb disk > > only), or have duplicates and check for with diff once in a while.. > > > > I found this link (with some pointing from friends): > > http://groups.google.com/groups?hl=en&selm=linux.kernel.Pine.LNX.4.33L.0110291504380.22127-100000%40duckman.distro.conectiva > > > > it dates 29. oct 2001. according to it, something called a namespace > > patch has to be integrated more into the kernel. > > > > Do you know if this has been done? > > Don't really know as I havn't seen the namespace patch but I have had to > modify namespace.c a lot in order to have per mount ro/rw settings, the > problem I have now is that permissions is decided by only looking at the > inode and not which vfsmount the request was made to... that part has to > change, and my patch is extremely ugly right now... The namespace changes are in 2.5, and the permission() changes (to pass essentially dentry/vfsmount pair instead of just inode) is pending for 2.5. I'm not sure how much of this will make it back into 2.4 mainline, but a backport is always possible ;-) cheers, -chris From vserver.error@solucorp.qc.ca Tue Mar 5 14:48:55 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25Jms7Y018348; Tue, 5 Mar 2002 14:48:55 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25JE0Z03382 for vserver.list; Tue, 5 Mar 2002 14:14:00 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25JDxh03378 for ; Tue, 5 Mar 2002 14:13:59 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g25JDoH0014592; Tue, 5 Mar 2002 20:13:50 +0100 Date: Tue, 5 Mar 2002 20:13:50 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: Chris Wright cc: Vserver Mailinglist Subject: Re: [vserver] mount -o ro --bind .. don't work In-Reply-To: <20020305105142.A18656@figure1.int.wirex.com> Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 267 On Tue, 5 Mar 2002, Chris Wright wrote: > * Martin Josefsson (gandalf@wlug.westbo.se) wrote: > > On 5 Mar 2002, klavs klavsen wrote: > > > > [snip] > > > I hope so too.. Until then it seems I have to repartition my disk (which > > > for now has one big / and only a /var seperate partition - 3gb disk > > > only), or have duplicates and check for with diff once in a while.. > > > > > > I found this link (with some pointing from friends): > > > http://groups.google.com/groups?hl=en&selm=linux.kernel.Pine.LNX.4.33L.0110291504380.22127-100000%40duckman.distro.conectiva > > > > > > it dates 29. oct 2001. according to it, something called a namespace > > > patch has to be integrated more into the kernel. > > > > > > Do you know if this has been done? > > > > Don't really know as I havn't seen the namespace patch but I have had to > > modify namespace.c a lot in order to have per mount ro/rw settings, the > > problem I have now is that permissions is decided by only looking at the > > inode and not which vfsmount the request was made to... that part has to > > change, and my patch is extremely ugly right now... > > The namespace changes are in 2.5, and the permission() changes (to pass > essentially dentry/vfsmount pair instead of just inode) is pending for > 2.5. I'm not sure how much of this will make it back into 2.4 mainline, > but a backport is always possible ;-) That sounds wonderful, I hope it will happen soon. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Tue Mar 5 18:20:30 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g25NKT7Y019932; Tue, 5 Mar 2002 18:20:30 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g25MlH908125 for vserver.list; Tue, 5 Mar 2002 17:47:17 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from carbon.btinternet.com (carbon.btinternet.com [194.73.73.92]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g25MlHh08121 for ; Tue, 5 Mar 2002 17:47:17 -0500 Received: from host213-122-81-106.in-addr.btopenworld.com ([213.122.81.106] helo=home4v9eek8u3l) by carbon.btinternet.com with smtp (Exim 3.22 #8) id 16iNiA-0001eK-00 for vserver@solucorp.qc.ca; Tue, 05 Mar 2002 22:47:11 +0000 Message-ID: <039d01c1c497$bebeddd0$6a517ad5@home4v9eek8u3l> From: "John Lyons" To: References: <20020305101236.9caf8f1ea73e@remtk.solucorp.qc.ca> Subject: Re: [vserver] Which Kernel Date: Tue, 5 Mar 2002 22:47:28 -0000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 268 > So far, I received a single message of non-stability (well, you have seen it on > the list). I am running 2.4.18ctx-8 on my workstation and 2.4.17ctx-7 on prod > servers. got 18ctx-8 running, and added support for my SIS ide, and SIS nic in. Got that working fine. (BTW very sexy fixes to ifconfig and netstat and the extra utilities :-)) >From memory the last time I built kernels for the servers I didn't change any fs/Ext3 settings but now I've discovered that the new kernels that have been built haven't got ext3 support. I've recompiled selecting Ext3 support from the fs menu (4 times now!) but on each occasion the servers have restarted without ext3 support. Is this something that I've missed or what? :-( Help please ! J From vserver.error@solucorp.qc.ca Tue Mar 5 19:57:41 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g260ve7Y020796; Tue, 5 Mar 2002 19:57:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g260Lb810351 for vserver.list; Tue, 5 Mar 2002 19:21:37 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.thedeacon.org (thedeacon.org [64.71.202.149]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g260Lbh10347 for ; Tue, 5 Mar 2002 19:21:37 -0500 Received: from thedeacon.org (cyrix-m3.thedeacon.org [172.23.172.133]) by mail.thedeacon.org (Postfix) with SMTP id 64A6A241CD; Tue, 5 Mar 2002 17:21:30 -0700 (MST) Received: from 172.23.172.143 (SquirrelMail authenticated user deacon) by webmail.thedeacon.org with HTTP; Tue, 5 Mar 2002 17:25:35 -0700 (MST) Message-ID: <37474.172.23.172.143.1015374335.squirrel@webmail.thedeacon.org> Date: Tue, 5 Mar 2002 17:25:35 -0700 (MST) Subject: Re: [vserver] Which Kernel From: "Paul Kreiner" To: In-Reply-To: <039d01c1c497$bebeddd0$6a517ad5@home4v9eek8u3l> References: <039d01c1c497$bebeddd0$6a517ad5@home4v9eek8u3l> X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal Cc: X-Mailer: SquirrelMail (version 1.2.5) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 269 John Lyons said: >>From memory the last time I built kernels for the servers I didn't >>change > any fs/Ext3 settings but now I've discovered that the new kernels that > have been built haven't got ext3 support. > > I've recompiled selecting Ext3 support from the fs menu (4 times now!) > but on each occasion the servers have restarted without ext3 support. > > Is this something that I've missed or what? :-( Help please ! I assume you're building ext3 into the kernel directly (not a module)? If it's a module, be sure to insmod it first, of course. Try "cat /proc/filesystems" and see if ext3 is in the list. If it is, then your kernel supports ext3, so that's not the problem. Also, if you don't force '-t ext3' on the mount, it may be mounted as ext2. I've seen this happen if the filesystem was last unmounted as an ext2 fs. If you *still* can't get ext3 working at that point, and ext3 doesn't show up in /proc/filesystems, then something else is going on that needs a deeper look. Perhaps sending a snippet of your kernel .config just before you compile would help. Hope this helps, _Paul K. From vserver.error@solucorp.qc.ca Tue Mar 5 20:51:53 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g261pq7Y021280; Tue, 5 Mar 2002 20:51:52 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g261Qvb11502 for vserver.list; Tue, 5 Mar 2002 20:26:57 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g261Qvh11498 for ; Tue, 5 Mar 2002 20:26:57 -0500 Received: from host213-122-31-8.in-addr.btopenworld.com ([213.122.31.8] helo=home4v9eek8u3l) by tungsten.btinternet.com with smtp (Exim 3.22 #8) id 16iQCm-0007YS-00 for vserver@solucorp.qc.ca; Wed, 06 Mar 2002 01:26:57 +0000 Message-ID: <048b01c1c4ae$110a3600$6a517ad5@home4v9eek8u3l> From: "John Lyons" To: References: <039d01c1c497$bebeddd0$6a517ad5@home4v9eek8u3l> <37474.172.23.172.143.1015374335.squirrel@webmail.thedeacon.org> Subject: Re: [vserver] Which Kernel Date: Wed, 6 Mar 2002 01:27:21 -0000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 270 > I assume you're building ext3 into the kernel directly (not a module) Correct. > Try "cat /proc/filesystems" and see if ext3 is in the list. If it is, > then your kernel supports ext3, so that's not the problem. Not in the list, nodev rootfs nodev bdev nodev proc nodev sockfs nodev tmpfs nodev shm nodev pipefs nodev binfmt_misc ext2 iso9660 nodev nfs nodev autofs nodev devpts >From the boot.log Mar 6 16:28:00 svr9 rc.sysinit: Checking filesystems succeeded Mar 6 16:28:00 svr9 rc.sysinit: Mounting local filesystems: failed Mar 6 16:28:00 svr9 mount: mount: fs type ext3 not supported by kernel > If you *still* can't get ext3 working at that point, and ext3 doesn't show > up in /proc/filesystems, then something else is going on that needs a > deeper look. Perhaps sending a snippet of your kernel .config just before > you compile would help. Chunks from dmesg, confirming that the SIS support that I added is there but that the file system is mounted as ext2 SIS5513: IDE controller on PCI bus 00 dev 01 sis900.c: v1.08.01 9/25/2001 eth0: SiS 900 PCI Fast Ethernet at 0xd400, IRQ 10, 00:e0:18:46:05:41. VFS: Mounted root (ext2 filesystem) readonly. >From my .config # CONFIG_BFS_FS is not set CONFIG_EXT3_FS=y CONFIG_JBD=y # CONFIG_JBD_DEBUG is not set The same machine was used to compile ctx-5 and I can't remember needing to enable Ext3 file system support in that. Just get the feeling that I'm either editing the wrong defconfig file or the file with the new config isn't being used. (I recall having to look for the .config file the last time, just wondering if there's something amiss there?) Only other thing I can think of is that I need to load something? to freshen the modules? I've just untared the kernel source, patched, configured and built and installed. Sould I have done something else before hand to get back to a fresher system? (Sorry just wild stabs in the dark now :-( ) J From vserver.error@solucorp.qc.ca Tue Mar 5 22:24:38 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g263Ob7Y021983; Tue, 5 Mar 2002 22:24:38 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g262tbk13114 for vserver.list; Tue, 5 Mar 2002 21:55:37 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g262tbh13110 for ; Tue, 5 Mar 2002 21:55:37 -0500 Received: from remtk.solucorp.qc.ca (g36-87.citenet.net [206.123.36.87]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2630v636259 for ; Tue, 5 Mar 2002 22:00:57 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g262qk102726 for vserver@solucorp.qc.ca; Tue, 5 Mar 2002 21:52:46 -0500 From: Jacques Gelinas Date: Tue, 5 Mar 2002 21:52:46 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Which Kernel X-mailer: tlmpmail 0.1 Message-ID: <20020305215246.baa3f340d080@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 271 On Tue, 5 Mar 2002 22:47:28 -0500, John Lyons wrote > > So far, I received a single message of non-stability (well, you have seen > it on > > the list). I am running 2.4.18ctx-8 on my workstation and 2.4.17ctx-7 on > prod > > servers. > > got 18ctx-8 running, and added support for my SIS ide, and SIS nic in. Got Can you tell me what is missing. I will add it in my configuration. Is this standard stuff found in 2.4.18 ? > that working fine. (BTW very sexy fixes to ifconfig and netstat and the > extra utilities :-)) Yes this is getting real cool. I like when I do a pstree, an ifconfig and then a netstat on a vserver is it shows so little. It gives a good feeling. > >From memory the last time I built kernels for the servers I didn't change > any fs/Ext3 settings but now I've discovered that the new kernels that have > been built haven't got ext3 support. > > I've recompiled selecting Ext3 support from the fs menu (4 times now!) but > on each occasion the servers have restarted without ext3 support. > > Is this something that I've missed or what? :-( Help please ! You must select it as a builtin driver (not a module) unless you are using a initial ramdisk to preload it. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Mar 5 23:11:11 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g264BA7Y022754; Tue, 5 Mar 2002 23:11:11 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g263tSt14128 for vserver.list; Tue, 5 Mar 2002 22:55:28 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g263tSh14124 for ; Tue, 5 Mar 2002 22:55:28 -0500 Received: from remtk.solucorp.qc.ca (g36-81.citenet.net [206.123.36.81]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2640n641326 for ; Tue, 5 Mar 2002 23:00:49 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g263VVs02749 for vserver@solucorp.qc.ca; Tue, 5 Mar 2002 22:31:31 -0500 From: Jacques Gelinas Date: Tue, 5 Mar 2002 22:31:31 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] ext2/ext3 question X-mailer: tlmpmail 0.1 Message-ID: <20020305223131.b745e2a568a3@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 272 On Sat, 2 Mar 2002 14:08:31 -0500, edward@paradigm4.com.au wrote > Isn't it CAP_LINUX_IMMUTABLE capability? Yes you are right. This capability is not available to vserver administrator. > On Friday, 1 March 2002 at 14:01, Jacques Gelinas wrote: > > > Only root in the root server can do it (change the immutable flags). More precisely > > only a user with CAP_SYS_ADMIN capability can do it and vservers do not have > > this capability (by default). > > > --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Mar 5 23:14:13 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g264EC7Y022802; Tue, 5 Mar 2002 23:14:12 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g263tUi14134 for vserver.list; Tue, 5 Mar 2002 22:55:30 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g263tTh14130 for ; Tue, 5 Mar 2002 22:55:29 -0500 Received: from remtk.solucorp.qc.ca (g36-81.citenet.net [206.123.36.81]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2640o641330 for ; Tue, 5 Mar 2002 23:00:50 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g263kcq02766 for vserver@solucorp.qc.ca; Tue, 5 Mar 2002 22:46:38 -0500 From: Jacques Gelinas Date: Tue, 5 Mar 2002 22:46:38 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Re: Debian X-mailer: tlmpmail 0.1 Message-ID: <20020305224638.38acdbde8fd4@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 273 On Tue, 5 Mar 2002 14:34:42 -0500, klavs klavsen wrote > On Tue, 2002-03-05 at 13:27, ragnar@this.is wrote: > > But for now my problem is simpler... I do not know how to > > install the first "template" server. > A simple approach, that I think would work, would be to cp all the files > from another machine, and put them under the vserver directory. then you > "just" need to adjust the vserver startup scripts and such. that should > do it? Probably. Fix the /dev directory so it only contain the following files full null ptmx pts random tty urandom zero If you leave too much stuff in /dev, an admin in the vserver can break out. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Mar 5 23:22:14 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g264ME7Y022861; Tue, 5 Mar 2002 23:22:14 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2642ll14327 for vserver.list; Tue, 5 Mar 2002 23:02:47 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ith.nbwrpg.com (cpe-24-221-148-187.az.sprintbbd.net [24.221.148.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2642kh14323 for ; Tue, 5 Mar 2002 23:02:47 -0500 Received: from ith.nbwrpg.com (ith.nbwrpg.com [10.0.0.254]) by ith.nbwrpg.com (Postfix) with ESMTP id B9E20B738 for ; Tue, 5 Mar 2002 20:50:00 -0700 (MST) Date: Tue, 5 Mar 2002 20:50:00 -0700 (MST) From: To: Subject: Re: [vserver] Re: Debian In-Reply-To: <20020305224638.38acdbde8fd4@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-0.8 required=5.0 tests=IN_REP_TO,NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 274 On Tue, 5 Mar 2002, Jacques Gelinas wrote: > Probably. Fix the /dev directory so it only contain the following files > > full null ptmx pts random tty urandom zero > > If you leave too much stuff in /dev, an admin in the vserver can break out. > Hey, speaking of breaking out. Can't a vserver admin create the hd* device and mount the root parition to screw around with? I tried this on my vserver and it worked. I have the vserver on a different partition from the root server, but I don't see how having them on one parition would make a difference. Is this a feasable way of breaking out? - Yan From vserver.error@solucorp.qc.ca Wed Mar 6 01:06:17 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2666G7Y023482; Wed, 6 Mar 2002 01:06:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g265lra16303 for vserver.list; Wed, 6 Mar 2002 00:47:53 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.thedeacon.org (thedeacon.org [64.71.202.149]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g265lqh16299 for ; Wed, 6 Mar 2002 00:47:53 -0500 Received: from thedeacon.org (cyrix-m3.thedeacon.org [172.23.172.133]) by mail.thedeacon.org (Postfix) with SMTP id A511C241CD; Tue, 5 Mar 2002 22:47:52 -0700 (MST) Received: from 172.23.172.150 (SquirrelMail authenticated user deacon) by webmail.thedeacon.org with HTTP; Tue, 5 Mar 2002 22:51:58 -0700 (MST) Message-ID: <1101.172.23.172.150.1015393918.squirrel@webmail.thedeacon.org> Date: Tue, 5 Mar 2002 22:51:58 -0700 (MST) Subject: Re: [vserver] Which Kernel From: "Paul Kreiner" To: In-Reply-To: <048b01c1c4ae$110a3600$6a517ad5@home4v9eek8u3l> References: <048b01c1c4ae$110a3600$6a517ad5@home4v9eek8u3l> X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal Cc: X-Mailer: SquirrelMail (version 1.2.5) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 275 John Lyons said: > Not in the list, > > nodev rootfs > nodev bdev > nodev proc > nodev sockfs > nodev tmpfs > nodev shm > nodev pipefs > nodev binfmt_misc > ext2 > iso9660 > nodev nfs > nodev autofs > nodev devpts > >>From the boot.log > Mar 6 16:28:00 svr9 rc.sysinit: Checking filesystems succeeded > Mar 6 16:28:00 svr9 rc.sysinit: Mounting local filesystems: failed > Mar 6 16:28:00 svr9 mount: mount: fs type ext3 not supported by kernel > Yep, so it's not getting compiled in. At least we know that much. > SIS5513: IDE controller on PCI bus 00 dev 01 > sis900.c: v1.08.01 9/25/2001 > eth0: SiS 900 PCI Fast Ethernet at 0xd400, IRQ 10, 00:e0:18:46:05:41. Is the SIS support on your system something you have to add in (patch) the kernel to get, or just a config parameter you turn on? I see you say "patch" elsewhere in your mail, so that's my assumption. Question: can you get the IDE controller to work w/the unpatched 2.4.18? Or do you have to patch to even recognize it? > > VFS: Mounted root (ext2 filesystem) readonly. > >>From my .config > > # CONFIG_BFS_FS is not set > CONFIG_EXT3_FS=y > CONFIG_JBD=y > # CONFIG_JBD_DEBUG is not set So it looks like it should be compiling in. Just a thought, do you do a full "make dep && make clean && make bzImage" after saving your new .config? I've seen skipping the mkdep cause some problems. Also, some silly stuff ... you're remembering to edit lilo.conf and invoke "lilo", right? And you doublechecked you're booting the kernel you've built? > The same machine was used to compile ctx-5 and I can't remember needing > to enable Ext3 file system support in that. Just get the feeling that > I'm either editing the wrong defconfig file or the file with the new > config isn't being used. (I recall having to look for the .config file > the last time, just wondering if there's something amiss there?) So, maybe a little step-by-step here would help pinpoint the trouble... (1) unpack the original 2.4.18 tarball, make config, build it, and boot (if possible). Do you have ext3 support? If not, then it sounds like a prob with your build environment or with 2.4.18 (which I doubt, 'cause there would have been screaming already). (2) If the previous works, then patch ctx8 in, make clean, and build again. Do you get ext3 working now? If not, then perhaps ctx8 broke something. (3) If so, then patch in your network card and hard disk patches, make clean, and build yet again. If it works now, you should be good to go. If not, then the SiS patches are probably at fault. > Only other thing I can think of is that I need to load something? to > freshen the modules? > I've just untared the kernel source, patched, configured and built and > installed. Sould I have done something else before hand to get back to > a fresher system? (Sorry just wild stabs in the dark now :-( ) My first guess is something in your build environment is wacky and/or the .config file you're editing isn't the one being used to build. To test that, try *removing* ext2 support and building/booting the resulting kernel. It should be rather unhappy - if not, and ext2 is still built in, then your .config changes are not being used. The NIC and HDC patches shouldn't touch FS code, so that shouldn't be a problem. The ctx8 patch does touch FS code, but I think if it broke ext3 we'd have heard about it by now. From vserver.error@solucorp.qc.ca Wed Mar 6 07:07:56 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g26C7t7Y025638; Wed, 6 Mar 2002 07:07:56 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g26BlVD24221 for vserver.list; Wed, 6 Mar 2002 06:47:31 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g26BlTh24217 for ; Wed, 6 Mar 2002 06:47:30 -0500 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g26BkBQ02297 for ; Wed, 6 Mar 2002 11:46:11 GMT Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 16iZtC-0001qz-00 for ; Wed, 06 Mar 2002 11:47:22 +0000 Date: Wed, 6 Mar 2002 11:47:21 +0000 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] Re: Debian In-Reply-To: <1015331229.3c84b99d313b7@this.is> References: <1015331229.3c84b99d313b7@this.is> X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 276 On Tue, 05 Mar 2002 12:27:09 +0000 (GMT) ragnar@this.is wrote: > The way debian works we will probably end um with a "port" > named vserver-i386. I don't think that is necessary. All you really need is something like a task-vserver, that conflicts with packages that don't make sense installing in a vserver, and requires other necessary ones. No point in forking unnecessarily. Sam. From vserver.error@solucorp.qc.ca Wed Mar 6 11:38:44 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g26Gch7Y027299; Wed, 6 Mar 2002 11:38:43 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g26GKkN30129 for vserver.list; Wed, 6 Mar 2002 11:20:46 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g26GKjh30125 for ; Wed, 6 Mar 2002 11:20:45 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id A5FDA108C for ; Wed, 6 Mar 2002 17:20:38 +0100 (CET) Subject: [vserver] clarification of chcontext usage. From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-+CDUe9/dHHLxaK/3M6Cj" X-Mailer: Evolution/1.0.2 Date: 06 Mar 2002 17:20:27 +0100 Message-Id: <1015431639.2050.19.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 277 --=-+CDUe9/dHHLxaK/3M6Cj Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, just studied jail a little.. found missing info on chcontext functionality. The answers to the questions below I think would be great additions to the chcontext Man-page. quote from the FAQ (jail vs. vserver)>> The new_s_context is not privileged, so a normal user can use this to, for example, setup a personal security box before executing a not-so-trusted game.<< If I start my services (on main vserver) with chcontext, does this mean that if one of the services (started from the same vserver as the others) got hacked, the hacker wouldn't be able to access any other services?=20 it only seperates processes, so wouldn't the hacker just be able to "screw up" all the files.. And if he local exploit in a program he could achieve vserver "root", and then just stop the processes?=20 if so, are there any security context where using chcontext within a vserver would help any? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-+CDUe9/dHHLxaK/3M6Cj Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8hkHL4c1kHlhtW8oRAgvYAJ9zIjmw/sftvflYiH5jgqlEIvxc8ACgsmF+ IDlIoG0kwdbsJ4x2P8HbOms= =DXoi -----END PGP SIGNATURE----- --=-+CDUe9/dHHLxaK/3M6Cj-- From vserver.error@solucorp.qc.ca Wed Mar 6 12:40:02 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g26He17Y027675; Wed, 6 Mar 2002 12:40:01 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g26HO8c31398 for vserver.list; Wed, 6 Mar 2002 12:24:08 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tranq.dorms.spbu.ru (tranq.dorms.spbu.ru [195.19.254.35]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g26HO7h31387 for ; Wed, 6 Mar 2002 12:24:07 -0500 Received: from localhost ([127.0.0.1] helo=tranq) by tranq.dorms.spbu.ru with smtp (Exim 3.33 #1 (Debian)) id 16if91-0006fW-00 for ; Wed, 06 Mar 2002 20:24:03 +0300 Date: Wed, 6 Mar 2002 20:24:03 +0300 From: Konstantin Starodubtsev To: vserver@solucorp.qc.ca Subject: [vserver] modular vunify Message-Id: <20020306202403.1a03b5a2.klists@rbcmail.ru> In-Reply-To: <20020305224638.38acdbde8fd4@remtk.solucorp.qc.ca> References: <20020305224638.38acdbde8fd4@remtk.solucorp.qc.ca> X-Mailer: Sylpheed version 0.7.2claws2 (GTK+ 1.2.10; i386-debian-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-1.3 required=5.0 tests=IN_REP_TO,SUPERLONG_LINE version=2.01 Status: RO X-Status: X-Keywords: X-UID: 278 I'm porting vserver utilities to Debian. As a part of this job vunify utility was rewritten on perl. The package-manager dependent part was moved to external object module. For example dpkg module is 1582 bytes long and was written in 30-40 minutes. I don't think that modules for other package managers will take much more time to write. The main part of utility is about 5.5Kb and it is not package-manager dependent. You can get it with necessary modules at http://tranq.dorms.spbu.ru/data/vunify.tar.gz It is not 100% compatible with current vunify now as I'm thinking about placing some defaults (hard-coded in current vunify.cc) now in /etc/vservers.conf so it's behaviour sometimes a bit different comparing to old vunify. So, if anyone thinks anything about it then comments, questions and patches are welcome :) The other question appeared during vunify development. We still doesn't have global config file (i.e. /etc/vservers.conf). It can be useful to share system-wide settings between parts of vserver utilities. The most important variable is VSERVERS_HOME - the directory, where vservers are located. I don't want to say, that current standart (/vservers) is bad, though it can violate FHS on some systems. Also deb package is available for Debian linux. It should violate FHS a bit, and doesn't provide correct set of dependancies though it can be better than nothing :) The main changes are: ported vunify, fixed vserver script wrong behaivor during shutdown (btw, why don't we write current runlevel in the /var/run/utmp after vserver startup?), some fixes to fit better into Debian FHS. It is available at http://tranq.dorms.spbu.ru/data/vserver-bin_0.13-1_i386.deb MBR, Konstantin Starodubtsev. From vserver.error@solucorp.qc.ca Wed Mar 6 14:00:21 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g26J0K7Y028200; Wed, 6 Mar 2002 14:00:20 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g26IhFL00622 for vserver.list; Wed, 6 Mar 2002 13:43:15 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from aquarius.diginode.net (aquarius.diginode.net [216.13.250.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g26IhEh00618 for ; Wed, 6 Mar 2002 13:43:15 -0500 Received: (qmail 22549 invoked from network); 6 Mar 2002 18:42:10 -0000 Received: from zerowing.pop-star.net (208.181.22.52) by aquarius.diginode.net with SMTP; 6 Mar 2002 18:42:10 -0000 Subject: Re: [vserver] Re: Debian From: Andy Kwong To: vserver@solucorp.qc.ca In-Reply-To: References: Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 06 Mar 2002 10:45:18 -0800 Message-Id: <1015440318.4373.0.camel@zerowing.pop-star.net> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 279 The vserver root cannot create special files and devices. On Tue, 2002-03-05 at 19:50, Zardus@nbwrpg.com wrote: > On Tue, 5 Mar 2002, Jacques Gelinas wrote: > > > Probably. Fix the /dev directory so it only contain the following files > > > > full null ptmx pts random tty urandom zero > > > > If you leave too much stuff in /dev, an admin in the vserver can break out. > > > > Hey, speaking of breaking out. Can't a vserver admin create the hd* device > and mount the root parition to screw around with? I tried this on my > vserver and it worked. I have the vserver on a different partition from > the root server, but I don't see how having them on one parition would > make a difference. > > Is this a feasable way of breaking out? > > > - Yan > From vserver.error@solucorp.qc.ca Wed Mar 6 19:45:06 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g270j57Y031084; Wed, 6 Mar 2002 19:45:05 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g270MY508917 for vserver.list; Wed, 6 Mar 2002 19:22:34 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ith.nbwrpg.com (cpe-24-221-148-187.az.sprintbbd.net [24.221.148.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g270MXh08913 for ; Wed, 6 Mar 2002 19:22:34 -0500 Received: from ith.nbwrpg.com (ith.nbwrpg.com [10.0.0.254]) by ith.nbwrpg.com (Postfix) with ESMTP id 25B83B7C8 for ; Wed, 6 Mar 2002 17:09:48 -0700 (MST) Date: Wed, 6 Mar 2002 17:09:48 -0700 (MST) From: To: Subject: Re: [vserver] Re: Debian In-Reply-To: <1015440318.4373.0.camel@zerowing.pop-star.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-0.8 required=5.0 tests=IN_REP_TO,NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 280 On 6 Mar 2002, Andy Kwong wrote: > The vserver root cannot create special files and devices. I just did it. I have a regular vserver setup, running on Debian. Now is this a problem only with Debian, or do I have to enable some other security setting? Thanx - Yan From vserver.error@solucorp.qc.ca Thu Mar 7 05:48:31 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g27AmU7Y003716; Thu, 7 Mar 2002 05:48:30 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g279r5Q20506 for vserver.list; Thu, 7 Mar 2002 04:53:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from priv-edtnes12-hme0.telusplanet.net (fepout4.telus.net [199.185.220.239]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g279r4h20502 for ; Thu, 7 Mar 2002 04:53:04 -0500 Received: from iris ([66.183.61.187]) by priv-edtnes12-hme0.telusplanet.net (InterMail vM.5.01.04.01 201-253-122-122-101-20011014) with SMTP id <20020307095259.LTIB567.priv-edtnes12-hme0.telusplanet.net@iris> for ; Thu, 7 Mar 2002 02:52:59 -0700 Message-ID: <000b01c1c5bd$fcb66ff0$8a01a8c0@iris> From: "Andy Kwong" To: References: Subject: Re: [vserver] Re: Debian Date: Thu, 7 Mar 2002 01:53:50 -0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 281 Hum.. Better check you are dropping privileges correctly with your scripts, since you aren't using the default RH based utils. The vserver script handles dropping privileges as well as changing the context and setting the ipv4 root. I just double checked it for -ctx7 and it works ok. Could be an issue introduced in -ctx8, but that's not something I'd put money on. ----- Original Message ----- From: To: Sent: Wednesday, March 06, 2002 4:09 PM Subject: Re: [vserver] Re: Debian > On 6 Mar 2002, Andy Kwong wrote: > > > The vserver root cannot create special files and devices. > > I just did it. I have a regular vserver setup, running on Debian. Now is > this a problem only with Debian, or do I have to enable some other > security setting? > > Thanx > > - Yan > > From vserver.error@solucorp.qc.ca Thu Mar 7 11:28:59 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g27GSu7Y005622; Thu, 7 Mar 2002 11:28:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g27FnC228159 for vserver.list; Thu, 7 Mar 2002 10:49:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g27FnBh28155 for ; Thu, 7 Mar 2002 10:49:12 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g27FmsH0026460 for ; Thu, 7 Mar 2002 16:48:54 +0100 Date: Thu, 7 Mar 2002 16:48:54 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: vserver@solucorp.qc.ca Subject: Re: [vserver] Re: Debian In-Reply-To: Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 282 On Wed, 6 Mar 2002 Zardus@nbwrpg.com wrote: > On 6 Mar 2002, Andy Kwong wrote: > > > The vserver root cannot create special files and devices. > > I just did it. I have a regular vserver setup, running on Debian. Now is > this a problem only with Debian, or do I have to enable some other > security setting? chcontext --ctx 2 --secure bash run that and then try to create a blockdevice with mknod It won't work, just as it's supposed to, tested here on 2.4.19-pre1-ac2-ctx8 /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Thu Mar 7 12:29:56 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g27HTt7Y006043; Thu, 7 Mar 2002 12:29:55 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g27H6m129980 for vserver.list; Thu, 7 Mar 2002 12:06:48 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from foo.uberninja.com (mvincent.lon.rackspace.com [212.100.225.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g27H6lh29976 for ; Thu, 7 Mar 2002 12:06:47 -0500 Received: from office-44.lon.rackspace.com ([212.100.225.44] helo=mvincent) by foo.uberninja.com with smtp (Exim 3.22 #1) id 16j1MU-000B6q-00 for vserver@solucorp.qc.ca; Thu, 07 Mar 2002 17:07:26 +0000 Message-ID: <000a01c1c5fa$cd55e960$2ce164d4@mvincent> From: "Marius Vincent" To: Subject: [vserver] Network card problems Date: Thu, 7 Mar 2002 17:09:09 -0000 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0007_01C1C5FA.CBBC5DA0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 283 This is a multi-part message in MIME format. ------=_NextPart_000_0007_01C1C5FA.CBBC5DA0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi I am trying to install the vserver for the first time. I am running: RH 7.2 hardware: 1.6AMD 512Meg DDR Nvidia onboard crush chipset (this includes onboard NIC and onboard = video, both Nvidia chipsets) Now the problem is that for the life of me I cannot get the onboard NIC = to work with the ctx kernel. The nic was working fine, i just installed the rpm and that installed = the modules. When I install the new kernel and try to reinstall teh rpm, or source = rpm, or even straigth from the source i get problems. This is what i get: depmod: *** Unresolved symbols in = /lib/modules/2.4.17ctx-8/kernel/drivers/net/nvnet.o Then if i try to probe deeper, with depmod, i get: [root@predator nvnet]# more .depend nvnet.o: nvnet.c basetype.h os.h phy.h adapter.h nvnet.h \ /usr/include/linux/module.h /usr/include/linux/config.h \ /usr/include/linux/autoconf.h /usr/include/linux/rhconfig.h \ /boot/kernel.h /usr/include/linux/spinlock.h /usr/include/linux/list.h = \ /usr/include/asm/atomic.h /usr/include/linux/kernel.h \ /usr/include/linux/sched.h /usr/include/asm/param.h \ /usr/include/linux/binfmts.h /usr/include/linux/ptrace.h \ /usr/include/asm/ptrace.h /usr/include/linux/capability.h \ ----------------------snip--------------------------snip-----------------= ----------------- And so on, so I am only showing the first 30% so I dont flood the email = list. Now why does this not work? Anyone I am despirate! -Regards -MV ------=_NextPart_000_0007_01C1C5FA.CBBC5DA0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi
 
I am trying to install the vserver for = the first=20 time.
I am running:
RH 7.2
hardware:
1.6AMD
512Meg DDR
Nvidia onboard crush chipset (this = includes onboard=20 NIC and onboard video, both Nvidia chipsets)
 
Now the problem is that for the life of = me I cannot=20 get the onboard NIC to work with the ctx kernel.
The nic was working fine, i just = installed the rpm=20 and that installed the modules.
When I install the new kernel and try = to reinstall=20 teh rpm, or source rpm, or even straigth from the source i get=20 problems.
This is what i get:
depmod: *** Unresolved symbols in=20 /lib/modules/2.4.17ctx-8/kernel/drivers/net/nvnet.o
 
Then if i try to probe deeper, with = depmod, i=20 get:
[root@predator nvnet]# more = .depend
nvnet.o:=20 nvnet.c basetype.h os.h phy.h adapter.h nvnet.h \
 =20 /usr/include/linux/module.h /usr/include/linux/config.h \
 =20 /usr/include/linux/autoconf.h /usr/include/linux/rhconfig.h \
 =20 /boot/kernel.h /usr/include/linux/spinlock.h /usr/include/linux/list.h=20 \
  /usr/include/asm/atomic.h /usr/include/linux/kernel.h = \
 =20 /usr/include/linux/sched.h /usr/include/asm/param.h \
 =20 /usr/include/linux/binfmts.h /usr/include/linux/ptrace.h \
 =20 /usr/include/asm/ptrace.h /usr/include/linux/capability.h=20 \
----------------------snip--------------------------snip------------= ----------------------
And so on, so I am=20 only showing the first 30% so I dont flood the email = list.
 
Now why does this not = work?
Anyone I am despirate!
 
-Regards
-MV
 
 
------=_NextPart_000_0007_01C1C5FA.CBBC5DA0-- From vserver.error@solucorp.qc.ca Thu Mar 7 13:28:21 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g27ISK7Y006542; Thu, 7 Mar 2002 13:28:21 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g27HvAJ31064 for vserver.list; Thu, 7 Mar 2002 12:57:10 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g27Hv9h31060 for ; Thu, 7 Mar 2002 12:57:09 -0500 Received: from host213-122-51-117.in-addr.btopenworld.com ([213.122.51.117] helo=john-new) by gadolinium.btinternet.com with esmtp (Exim 3.22 #8) id 16j28Z-0004SP-00 for vserver@solucorp.qc.ca; Thu, 07 Mar 2002 17:57:08 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Thu, 7 Mar 2002 17:56:50 -0000 From: "John Lyons" To: Subject: RE: [vserver] Network card problems Date: Thu, 7 Mar 2002 17:56:49 -0000 Message-ID: <00d301c1c601$75272090$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_00D4_01C1C601.75272090" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal In-Reply-To: <000a01c1c5fa$cd55e960$2ce164d4@mvincent> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 284 This is a multi-part message in MIME format. ------=_NextPart_000_00D4_01C1C601.75272090 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Now the problem is that for the life of me I cannot get the onboard NIC to work with the ctx kernel. The nic was working fine, i just installed the rpm and that installed the modules. When I install the new kernel and try to reinstall teh rpm, or source rpm, or even straigth from the source i get problems. Now why does this not work? Anyone I am despirate! I'm not a kernel expert but I've been in your situation before. I had the same problem with SIS network cards. The pre compiled kernel doen't have very many nic drivers either compiled in or set to load as modules, hence you're problem. The fix is to get the kernel source, patch it, create your .config with your own nic drivers included, and recompile. It's worked for me several times in the past but I still can't get ext3 working on my own system despite the fact that I didn't mess with those settings in any of the kernel builds in the past. (That's my own personal unresolved bug btw :-)) i ------=_NextPart_000_00D4_01C1C601.75272090 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
 
Now the problem is that for the life = of me I=20 cannot get the onboard NIC to work with the ctx kernel.
The nic was working fine, i just = installed the=20 rpm and that installed the modules.
When I install the new kernel and try = to=20 reinstall teh rpm, or source rpm, or even straigth from the source i = get=20 problems.
Now why does this not = work?
Anyone I am despirate!
 
I'm = not a kernel=20 expert but I've been in your situation before.
I = had the same=20 problem with SIS network cards.
 
The = pre compiled=20 kernel doen't have very many nic drivers either compiled in or set to = load as=20 modules, hence you're problem.
 
The = fix is to get=20 the kernel source, patch it, create your .config with your own nic = drivers=20 included, and recompile.
 
It's = worked for me=20 several times in the past but I still can't get ext3 working on my own = system=20 despite the fact that I didn't mess with those settings in any of the = kernel=20 builds in the past. (That's my own personal unresolved bug btw=20 :-))
 
i
 
------=_NextPart_000_00D4_01C1C601.75272090-- From vserver.error@solucorp.qc.ca Thu Mar 7 13:42:59 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g27Igx7Y006690; Thu, 7 Mar 2002 13:42:59 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g27IEGk31424 for vserver.list; Thu, 7 Mar 2002 13:14:16 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from foo.uberninja.com (mvincent.lon.rackspace.com [212.100.225.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g27IEFh31420 for ; Thu, 7 Mar 2002 13:14:16 -0500 Received: from office-44.lon.rackspace.com ([212.100.225.44] helo=mvincent) by foo.uberninja.com with smtp (Exim 3.22 #1) id 16j2Q3-000B8D-00 for vserver@solucorp.qc.ca; Thu, 07 Mar 2002 18:15:11 +0000 Message-ID: <002201c1c604$452695d0$2ce164d4@mvincent> From: "Marius Vincent" To: References: <00d301c1c601$75272090$0100a8c0@johnnew> Subject: Re: [vserver] Network card problems Date: Thu, 7 Mar 2002 18:16:56 -0000 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_001F_01C1C604.43B02270" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.8 required=5.0 tests=MAILTO_LINK version=2.01 Status: RO X-Status: X-Keywords: X-UID: 285 This is a multi-part message in MIME format. ------=_NextPart_000_001F_01C1C604.43B02270 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hmmmm.... Alright, then how do I include the network card modules when i do a = kernel recompile? I have the source for for the nvidia NIC, do i just dump the .o into = some directory and "make menuconfig" will pick it up? ----- Original Message -----=20 From: John Lyons=20 To: vserver@solucorp.qc.ca=20 Sent: Thursday, March 07, 2002 5:56 PM Subject: RE: [vserver] Network card problems Now the problem is that for the life of me I cannot get the onboard = NIC to work with the ctx kernel. The nic was working fine, i just installed the rpm and that = installed the modules. When I install the new kernel and try to reinstall teh rpm, or = source rpm, or even straigth from the source i get problems. Now why does this not work? Anyone I am despirate! I'm not a kernel expert but I've been in your situation before. I had the same problem with SIS network cards. The pre compiled kernel doen't have very many nic drivers either = compiled in or set to load as modules, hence you're problem. The fix is to get the kernel source, patch it, create your .config = with your own nic drivers included, and recompile. It's worked for me several times in the past but I still can't get = ext3 working on my own system despite the fact that I didn't mess with = those settings in any of the kernel builds in the past. (That's my own = personal unresolved bug btw :-)) i ------=_NextPart_000_001F_01C1C604.43B02270 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hmmmm....
 
Alright, then how do I include the = network card=20 modules when i do a kernel recompile?
I have the source for for the nvidia = NIC, do i just=20 dump the .o into some directory and "make menuconfig" will pick it=20 up?
 
----- Original Message -----
From:=20 John = Lyons=20
Sent: Thursday, March 07, 2002 = 5:56=20 PM
Subject: RE: [vserver] Network = card=20 problems

 
Now the problem is that for the = life of me I=20 cannot get the onboard NIC to work with the ctx kernel.
The nic was working fine, i just = installed the=20 rpm and that installed the modules.
When I install the new kernel and = try to=20 reinstall teh rpm, or source rpm, or even straigth from the source i = get=20 problems.
Now why does this not = work?
Anyone I am despirate!
 
I'm not a kernel=20 expert but I've been in your situation before.
I = had the same=20 problem with SIS network cards.
 
The pre compiled=20 kernel doen't have very many nic drivers either compiled in or set = to load=20 as modules, hence you're problem.
 
The fix is to=20 get the kernel source, patch it, create your .config with your own = nic=20 drivers included, and recompile.
 
It's worked for=20 me several times in the past but I still can't get ext3 working on = my own=20 system despite the fact that I didn't mess with those settings in = any of the=20 kernel builds in the past. (That's my own personal unresolved bug = btw=20 :-))
 
i
 
------=_NextPart_000_001F_01C1C604.43B02270-- From vserver.error@solucorp.qc.ca Thu Mar 7 15:44:13 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g27KiC7Y007701; Thu, 7 Mar 2002 15:44:13 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g27KL3e01662 for vserver.list; Thu, 7 Mar 2002 15:21:03 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g27KL2h01658 for ; Thu, 7 Mar 2002 15:21:03 -0500 Received: from host213-1-174-97.btinternet.com ([213.1.174.97] helo=john-new) by gadolinium.btinternet.com with esmtp (Exim 3.22 #8) id 16j4No-0004Vo-00 for vserver@solucorp.qc.ca; Thu, 07 Mar 2002 20:21:00 +0000 Received: from 213.1.174.97 by john-new ([213.1.174.97] running VPOP3) with SMTP for ; Thu, 7 Mar 2002 20:20:40 -0000 From: "John Lyons" To: Subject: RE: [vserver] Network card problems Date: Thu, 7 Mar 2002 20:20:36 -0000 Message-ID: <001801c1c615$8cc3ce60$61ae01d5@johnnew> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0019_01C1C615.8CC3CE60" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <002201c1c604$452695d0$2ce164d4@mvincent> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-101.2 required=5.0 tests=IN_REP_TO,MAILTO_LINK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 286 This is a multi-part message in MIME format. ------=_NextPart_000_0019_01C1C615.8CC3CE60 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Ooerr. I can setup stuff that's already available but not add new. google.com is your best bet :-) J -----Original Message----- From: Marius Vincent [mailto:mvincent@uberninja.com] Sent: 07 March 2002 18:17 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Network card problems Hmmmm.... Alright, then how do I include the network card modules when i do a kernel recompile? I have the source for for the nvidia NIC, do i just dump the .o into some directory and "make menuconfig" will pick it up? ----- Original Message ----- From: John Lyons To: vserver@solucorp.qc.ca Sent: Thursday, March 07, 2002 5:56 PM Subject: RE: [vserver] Network card problems Now the problem is that for the life of me I cannot get the onboard NIC to work with the ctx kernel. The nic was working fine, i just installed the rpm and that installed the modules. When I install the new kernel and try to reinstall teh rpm, or source rpm, or even straigth from the source i get problems. Now why does this not work? Anyone I am despirate! I'm not a kernel expert but I've been in your situation before. I had the same problem with SIS network cards. The pre compiled kernel doen't have very many nic drivers either compiled in or set to load as modules, hence you're problem. The fix is to get the kernel source, patch it, create your .config with your own nic drivers included, and recompile. It's worked for me several times in the past but I still can't get ext3 working on my own system despite the fact that I didn't mess with those settings in any of the kernel builds in the past. (That's my own personal unresolved bug btw :-)) i ------=_NextPart_000_0019_01C1C615.8CC3CE60 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Ooerr.=20 I can setup stuff that's already available but not add new.  = google.com is=20 your best bet :-)
 
J
-----Original Message-----
From: Marius Vincent=20 [mailto:mvincent@uberninja.com]
Sent: 07 March 2002=20 18:17
To: vserver@solucorp.qc.ca
Subject: Re: = [vserver]=20 Network card problems

Hmmmm....
 
Alright, then how do I include the = network card=20 modules when i do a kernel recompile?
I have the source for for the nvidia = NIC, do i=20 just dump the .o into some directory and "make menuconfig" will pick = it=20 up?
 
----- Original Message -----
From:=20 John = Lyons=20
Sent: Thursday, March 07, = 2002 5:56=20 PM
Subject: RE: [vserver] = Network card=20 problems

 
Now the problem is that for the = life of me I=20 cannot get the onboard NIC to work with the ctx = kernel.
The nic was working fine, i just = installed=20 the rpm and that installed the modules.
When I install the new kernel and = try to=20 reinstall teh rpm, or source rpm, or even straigth from the source = i get=20 problems.
Now why does this not = work?
Anyone I am = despirate!
 
I'm not a=20 kernel expert but I've been in your situation = before.
I had the same=20 problem with SIS network cards.
 
The pre=20 compiled kernel doen't have very many nic drivers either compiled = in or=20 set to load as modules, hence you're problem.
 
The fix is to=20 get the kernel source, patch it, create your .config with your own = nic=20 drivers included, and recompile.
 
It's worked=20 for me several times in the past but I still can't get ext3 = working on my=20 own system despite the fact that I didn't mess with those settings = in any=20 of the kernel builds in the past. (That's my own personal = unresolved bug=20 btw :-))
 
i
 
------=_NextPart_000_0019_01C1C615.8CC3CE60-- From vserver.error@solucorp.qc.ca Thu Mar 7 16:36:01 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g27La07Y008237; Thu, 7 Mar 2002 16:36:01 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g27LD5B02666 for vserver.list; Thu, 7 Mar 2002 16:13:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from foo.uberninja.com (mvincent.lon.rackspace.com [212.100.225.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g27LD4h02662 for ; Thu, 7 Mar 2002 16:13:04 -0500 Received: from schizoid.gotadsl.co.uk ([213.208.117.83] helo=mvincent1) by foo.uberninja.com with smtp (Exim 3.22 #1) id 16j5D4-000BBM-00 for vserver@solucorp.qc.ca; Thu, 07 Mar 2002 21:13:58 +0000 Message-ID: <001101c1c61d$466a3000$0400000a@mvincent1> From: "Marius Vincent" To: References: <001801c1c615$8cc3ce60$61ae01d5@johnnew> Subject: Re: [vserver] Network card problems Date: Thu, 7 Mar 2002 21:15:57 -0000 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_000E_01C1C61D.45FC2BF0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.8 required=5.0 tests=MAILTO_LINK version=2.01 Status: RO X-Status: X-Keywords: X-UID: 287 This is a multi-part message in MIME format. ------=_NextPart_000_000E_01C1C61D.45FC2BF0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Yeah well I did a source recompile and no go. Just no luck, stupid = RedHat keeps breaking. Prefer BSD systems. They just never die. Anyhow, Can anyone tell me if I stick a Intel e100 NIC in there if it = will work with the current modules? I see there is a eepro100.o module built in to the precompiled kernel, = although I would need the e100.o for it to work correctly. Or can I do a install from source and it will work after I have the crx = kernel installed? Anyone? P.S. As for your ext3 fs problems afer you compile the kernel. I had the = same thing, untill I saw I had to select ext3 journaling fs under the fs = section under "menuconfig" It all worked fine then. :) Except the = modules kept breking when i tried to do a install. *sigh* ----- Original Message -----=20 From: John Lyons=20 To: vserver@solucorp.qc.ca=20 Sent: Thursday, March 07, 2002 8:20 PM Subject: RE: [vserver] Network card problems Ooerr. I can setup stuff that's already available but not add new. = google.com is your best bet :-) J -----Original Message----- From: Marius Vincent [mailto:mvincent@uberninja.com] Sent: 07 March 2002 18:17 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Network card problems Hmmmm.... Alright, then how do I include the network card modules when i do a = kernel recompile? I have the source for for the nvidia NIC, do i just dump the .o into = some directory and "make menuconfig" will pick it up? ----- Original Message -----=20 From: John Lyons=20 To: vserver@solucorp.qc.ca=20 Sent: Thursday, March 07, 2002 5:56 PM Subject: RE: [vserver] Network card problems Now the problem is that for the life of me I cannot get the = onboard NIC to work with the ctx kernel. The nic was working fine, i just installed the rpm and that = installed the modules. When I install the new kernel and try to reinstall teh rpm, or = source rpm, or even straigth from the source i get problems. Now why does this not work? Anyone I am despirate! I'm not a kernel expert but I've been in your situation before. I had the same problem with SIS network cards. The pre compiled kernel doen't have very many nic drivers either = compiled in or set to load as modules, hence you're problem. The fix is to get the kernel source, patch it, create your = .config with your own nic drivers included, and recompile. It's worked for me several times in the past but I still can't = get ext3 working on my own system despite the fact that I didn't mess = with those settings in any of the kernel builds in the past. (That's my = own personal unresolved bug btw :-)) i ------=_NextPart_000_000E_01C1C61D.45FC2BF0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Yeah well I did a source recompile and = no go. Just=20 no luck, stupid RedHat keeps breaking.
Prefer BSD systems. They just never=20 die.
 
Anyhow, Can anyone tell me if I stick a = Intel e100=20 NIC in there if it will work with the current modules?
I see there is a eepro100.o module = built in to the=20 precompiled kernel, although I would need the e100.o for it to work=20 correctly.
Or can I do a install from source and = it will work=20 after I have the crx kernel installed?
 
Anyone?
 
P.S. As for your ext3 fs problems afer = you compile=20 the kernel. I had the same thing, untill I saw I had to select ext3 = journaling=20 fs under the fs section under "menuconfig" It all worked fine then. :) = Except=20 the modules kept breking when i tried to do a install. = *sigh*
 
----- Original Message -----
From:=20 John = Lyons=20
Sent: Thursday, March 07, 2002 = 8:20=20 PM
Subject: RE: [vserver] Network = card=20 problems

Ooerr. I can setup stuff that's already available but not add = new.  google.com is your best bet :-)
 
J
-----Original Message-----
From: Marius Vincent=20 [mailto:mvincent@uberninja.com]
Sent: 07 March 2002=20 18:17
To: vserver@solucorp.qc.ca
S= ubject:=20 Re: [vserver] Network card problems

Hmmmm....
 
Alright, then how do I include the = network card=20 modules when i do a kernel recompile?
I have the source for for the = nvidia NIC, do i=20 just dump the .o into some directory and "make menuconfig" will pick = it=20 up?
 
----- Original Message ----- =
From:=20 John Lyons=20
Sent: Thursday, March 07, = 2002 5:56=20 PM
Subject: RE: [vserver] = Network card=20 problems

 
Now the problem is that for the = life of me=20 I cannot get the onboard NIC to work with the ctx = kernel.
The nic was working fine, i = just installed=20 the rpm and that installed the modules.
When I install the new kernel = and try to=20 reinstall teh rpm, or source rpm, or even straigth from the = source i get=20 problems.
Now why does this not = work?
Anyone I am = despirate!
 
I'm not a=20 kernel expert but I've been in your situation=20 before.
I had the=20 same problem with SIS network cards.
 
The pre=20 compiled kernel doen't have very many nic drivers either = compiled in or=20 set to load as modules, hence you're = problem.
 
The fix is=20 to get the kernel source, patch it, create your .config with = your own=20 nic drivers included, and recompile.
 
It's worked=20 for me several times in the past but I still can't get ext3 = working on=20 my own system despite the fact that I didn't mess with those = settings in=20 any of the kernel builds in the past. (That's my own personal = unresolved=20 bug btw :-))
 
i
 
------=_NextPart_000_000E_01C1C61D.45FC2BF0-- From vserver.error@solucorp.qc.ca Thu Mar 7 20:10:08 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g281A77Y010138; Thu, 7 Mar 2002 20:10:08 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g280kiN06237 for vserver.list; Thu, 7 Mar 2002 19:46:44 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ith.nbwrpg.com (cpe-24-221-148-187.az.sprintbbd.net [24.221.148.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g280khh06231 for ; Thu, 7 Mar 2002 19:46:43 -0500 Received: from ith.nbwrpg.com (ith.nbwrpg.com [10.0.0.254]) by ith.nbwrpg.com (Postfix) with ESMTP id CDC33B738 for ; Thu, 7 Mar 2002 17:33:46 -0700 (MST) Date: Thu, 7 Mar 2002 17:33:46 -0700 (MST) From: To: Subject: Re: [vserver] Re: Debian In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-0.8 required=5.0 tests=IN_REP_TO,NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 288 On Thu, 7 Mar 2002, Martin Josefsson wrote: > On Wed, 6 Mar 2002 Zardus@nbwrpg.com wrote: > > chcontext --ctx 2 --secure bash > > run that and then try to create a blockdevice with mknod > It won't work, just as it's supposed to, tested here on > 2.4.19-pre1-ac2-ctx8 Ok, that doesn't work (mknod: operation not permitted), so I guess its good. However, when I start it using /usr/sbin/vserver, even though --secure is default, it doesn't work. I'm using vserver .11, but I didn't see anything like this in the changelogs for future versions. And iirc, this worked for me with ctx7 as well. - Yan From vserver.error@solucorp.qc.ca Thu Mar 7 21:07:32 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2827U7Y010564; Thu, 7 Mar 2002 21:07:31 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g281RnP06860 for vserver.list; Thu, 7 Mar 2002 20:27:49 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from carbon.btinternet.com (carbon.btinternet.com [194.73.73.92]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g281Rmh06856 for ; Thu, 7 Mar 2002 20:27:48 -0500 Received: from host213-122-85-87.in-addr.btopenworld.com ([213.122.85.87] helo=john-new) by carbon.btinternet.com with esmtp (Exim 3.22 #8) id 16j9Ac-0003Nz-00 for vserver@solucorp.qc.ca; Fri, 08 Mar 2002 01:27:42 +0000 Received: from 213.122.85.87 by john-new ([213.122.85.87] running VPOP3) with SMTP for ; Fri, 8 Mar 2002 01:27:27 -0000 From: "John Lyons" To: Subject: RE: [vserver] Network card problems Date: Fri, 8 Mar 2002 01:27:26 -0000 Message-ID: <006401c1c640$688667d0$61ae01d5@johnnew> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0065_01C1C640.688667D0" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <001101c1c61d$466a3000$0400000a@mvincent1> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 289 This is a multi-part message in MIME format. ------=_NextPart_000_0065_01C1C640.688667D0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit P.S. As for your ext3 fs problems afer you compile the kernel. I had the same thing, untill I saw I had to select ext3 journaling fs under the fs section under "menuconfig" It all worked fine then. :) Except the modules kept breking when i tried to do a install. *sigh* I've only made three changes, SIS ide, SIS nic and Ext3 support. Both SIS additions worked but no support for Ext3 :-( I've got to be missing something obvious, but I can't recall having had to add the Ext3 fs support last time. J ------=_NextPart_000_0065_01C1C640.688667D0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
 
P.S. As for your ext3 fs problems = afer you=20 compile the kernel. I had the same thing, untill I saw I had to select = ext3=20 journaling fs under the fs section under "menuconfig" It all worked = fine then.=20 :) Except the modules kept breking when i tried to do a install.=20 *sigh*
 
I've = only made=20 three changes, SIS ide, SIS nic and Ext3 support. Both SIS additions = worked=20 but no support for Ext3 :-(
I've=20 got to be missing something obvious, but I can't recall having had to = add the=20 Ext3 fs support last time.
 
J
------=_NextPart_000_0065_01C1C640.688667D0-- From vserver.error@solucorp.qc.ca Fri Mar 8 07:29:41 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g28CTe7Y014827; Fri, 8 Mar 2002 07:29:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g28C1j719263 for vserver.list; Fri, 8 Mar 2002 07:01:45 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g28C1hh19259 for ; Fri, 8 Mar 2002 07:01:44 -0500 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g28C0EQ13156 for ; Fri, 8 Mar 2002 12:00:14 GMT Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 16jJ3x-0001EI-00; Fri, 08 Mar 2002 12:01:29 +0000 Date: Fri, 8 Mar 2002 12:01:29 +0000 From: Sam Vilain To: vserver@solucorp.qc.ca Cc: Konstantin Starodubtsev Subject: Re: [vserver] modular vunify In-Reply-To: <20020306202403.1a03b5a2.klists@rbcmail.ru> References: <20020305224638.38acdbde8fd4@remtk.solucorp.qc.ca> <20020306202403.1a03b5a2.klists@rbcmail.ru> X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 290 I also have a Perl solution. My script[1] is not tied to a distribution at all; it merely scans X (where X >= 2) directory structures, and where files are identical in the two structures, it hard links them (and optionally sets immutable and immutable linkage invert inode attributes, btw thanks for the chattr() routine). For this script to work, you'll need to install Pod::Constants and ReadDir, from my modules collection (http://sam.vilain.net/pm/). The script is at http://sam.vilain.net/vserver/unify-dirs You could use it like this: unify-dirs -vil /vservers/*/usr unify-dirs -vil /vservers/*/lib unify-dirs -vil /vservers/*/sbin unify-dirs -vil /vservers/*/bin Sam. On Wed, 6 Mar 2002 20:24:03 +0300 Konstantin Starodubtsev wrote: > I'm porting vserver utilities to Debian. > As a part of this job vunify utility was rewritten on perl. > The package-manager dependent part was moved to external object module. > For example dpkg module is 1582 bytes long and was written in 30-40 minutes. I don't think that modules for other package managers will take much more time to write. The main part of utility is about 5.5Kb and it is not package-manager dependent. You can get it with necessary modules at http://tranq.dorms.spbu.ru/data/vunify.tar.gz> It is not 100% compatible with current vunify now as I'm thinking about placing some defaults (hard-coded in current vunify.cc) now in /etc/vservers.conf so it's behaviour sometimes a bit different comparing to old vunify. So, if anyone thinks anything about it then comments, questions and patches are welcome :)> > The other question appeared during vunify development. We still doesn't have global config file (i.e. /etc/vservers.conf). It can be useful to share system-wide settings between parts of vserver utilities. The most important variable is VSERVERS_HOME - the directory, where vservers are located. I don't want to say, that current standart (/vservers) is bad, though it can violate FHS on some systems.> > Also deb package is available for Debian linux. It should violate FHS a bit, and doesn't provide correct set of dependancies though it can be better than nothing :) The main changes are: > ported vunify, > fixed vserver script wrong behaivor during shutdown (btw, why don't we write current runlevel in the /var/run/utmp after vserver startup?), > some fixes to fit better into Debian FHS.> It is available at http://tranq.dorms.spbu.ru/data/vserver-bin_0.13-1_i386.deb> > MBR, > Konstantin Starodubtsev. > > > -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 From vserver.error@solucorp.qc.ca Fri Mar 8 13:33:46 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g28IXj7Y018059; Fri, 8 Mar 2002 13:33:46 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g28HuhT26766 for vserver.list; Fri, 8 Mar 2002 12:56:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from foo.uberninja.com (mvincent.lon.rackspace.com [212.100.225.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g28Hugh26762 for ; Fri, 8 Mar 2002 12:56:42 -0500 Received: from office-44.lon.rackspace.com ([212.100.225.44] helo=mvincent) by foo.uberninja.com with smtp (Exim 3.22 #1) id 16jOcZ-000Be6-00 for vserver@solucorp.qc.ca; Fri, 08 Mar 2002 17:57:35 +0000 Message-ID: <001101c1c6ca$e8810eb0$2ce164d4@mvincent> From: "Marius Vincent" To: Subject: [vserver] v_httpd, v_sshd Date: Fri, 8 Mar 2002 17:58:49 -0000 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_000E_01C1C6CA.E66A3CA0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 291 This is a multi-part message in MIME format. ------=_NextPart_000_000E_01C1C6CA.E66A3CA0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable What does v_sshd and v_httpd and v_xinetd do exactly? These services is also listed in my virtual servers that i setup. Do I = have to enable say v_sshd in my virtual servers in order to use sshd = properly? I just enable the sshd service and then bind it to the virtual server ip = and it seems to work fine. Except I have not figured out why apache = won't work, although it does start up properly.=20 Any ideas? ------=_NextPart_000_000E_01C1C6CA.E66A3CA0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
What does v_sshd and v_httpd and = v_xinetd do=20 exactly?
 
These services is also listed in my = virtual servers=20 that i setup. Do I have to enable say v_sshd in my virtual servers = in order=20 to use sshd properly?
 
I just enable the sshd service and then = bind it to=20 the virtual server ip and it seems to work fine. Except I have not = figured out=20 why apache won't work, although it does start up properly.
 
Any ideas?
 
 
 
------=_NextPart_000_000E_01C1C6CA.E66A3CA0-- From vserver.error@solucorp.qc.ca Fri Mar 8 14:52:50 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g28Jql7Y018667; Fri, 8 Mar 2002 14:52:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g28JRvY28624 for vserver.list; Fri, 8 Mar 2002 14:27:57 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g28JRvh28620 for ; Fri, 8 Mar 2002 14:27:57 -0500 Received: from host213-122-179-153.in-addr.btopenworld.com ([213.122.179.153] helo=john-new) by tungsten.btinternet.com with esmtp (Exim 3.22 #8) id 16jQ1p-0005Xq-00 for vserver@solucorp.qc.ca; Fri, 08 Mar 2002 19:27:45 +0000 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Fri, 8 Mar 2002 19:27:15 -0000 From: "John Lyons" To: Subject: RE: [vserver] v_httpd, v_sshd Date: Fri, 8 Mar 2002 19:27:13 -0000 Message-ID: <00c101c1c6d7$40ee4570$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_00C2_01C1C6D7.40EE4570" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <001101c1c6ca$e8810eb0$2ce164d4@mvincent> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.4 required=5.0 tests=IN_REP_TO,FREQ_SPAM_PHRASE,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 292 This is a multi-part message in MIME format. ------=_NextPart_000_00C2_01C1C6D7.40EE4570 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit What does v_sshd and v_httpd and v_xinetd do exactly? These services is also listed in my virtual servers that i setup. Do I have to enable say v_sshd in my virtual servers in order to use sshd properly? They shouldn't be installed in your virtual servers. Check that you've not got the vserver rpms installed within your reference server (assuming the ref server is a vs and not your host) The v_ scripts are used to start services on the parent host server and bind them to the host servers IP address automatically otherwise they start up and listen on all IP's thereby breaking those services on the vs's Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** ------=_NextPart_000_00C2_01C1C6D7.40EE4570 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
 
What does v_sshd and v_httpd and = v_xinetd do=20 exactly?
These services is also listed in my = virtual=20 servers that i setup. Do I have to enable say v_sshd in my = virtual=20 servers in order to use sshd properly?
 
They = shouldn't be=20 installed in your virtual servers. Check that you've not got the = vserver rpms=20 installed within your reference server (assuming the ref server = is a=20  vs and not your host)
 
The = v_ scripts are=20 used to start services on the parent host server and bind them to the = host=20 servers IP address automatically otherwise they start up and listen on = all=20 IP's thereby breaking those services on the vs's
 

Regards

John Lyons
DomainCity
http://www.domaincity.co.uk
support@domaincity.co.= uk
ICQ=20 = 74187012

*********************************************************= **************
Please=20 quote your account number in the subject line of all = emails. 
Failure=20 to do so may result in your enquiries taking longer to=20 = process.
*************************************************************= **********

------=_NextPart_000_00C2_01C1C6D7.40EE4570-- From vserver.error@solucorp.qc.ca Fri Mar 8 15:26:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g28KQC7Y018873; Fri, 8 Mar 2002 15:26:13 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g28JrY629060 for vserver.list; Fri, 8 Mar 2002 14:53:34 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from aquarius.diginode.net (aquarius.diginode.net [216.13.250.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g28JrYh29056 for ; Fri, 8 Mar 2002 14:53:34 -0500 Received: (qmail 32290 invoked from network); 8 Mar 2002 19:51:40 -0000 Received: from zerowing.pop-star.net (208.181.22.52) by aquarius.diginode.net with SMTP; 8 Mar 2002 19:51:40 -0000 Subject: Re: [vserver] Network card problems From: Andy Kwong To: vserver@solucorp.qc.ca In-Reply-To: <001101c1c61d$466a3000$0400000a@mvincent1> References: <001801c1c615$8cc3ce60$61ae01d5@johnnew> <001101c1c61d$466a3000$0400000a@mvincent1> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 08 Mar 2002 11:55:40 -0800 Message-Id: <1015617341.7417.9.camel@zerowing.pop-star.net> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-1.3 required=5.0 tests=IN_REP_TO,SUPERLONG_LINE version=2.01 Status: RO X-Status: X-Keywords: X-UID: 293 Just out of curiosity, did you do a "make clean" and "make dep" before you recompile your new kernel? Does the NV patches work with a stock 2.4.18 kernel? On Thu, 2002-03-07 at 13:15, Marius Vincent wrote: > Yeah well I did a source recompile and no go. Just no luck, stupid RedHat keeps breaking. > Prefer BSD systems. They just never die. > > Anyhow, Can anyone tell me if I stick a Intel e100 NIC in there if it will work with the current modules? > I see there is a eepro100.o module built in to the precompiled kernel, although I would need the e100.o for it to work correctly. > Or can I do a install from source and it will work after I have the crx kernel installed? > > Anyone? > > P.S. As for your ext3 fs problems afer you compile the kernel. I had the same thing, untill I saw I had to select ext3 journaling fs under the fs section under "menuconfig" It all worked fine then. :) Except the modules kept breking when i tried to do a install. *sigh* > > ----- Original Message ----- > From: John Lyons > To: vserver@solucorp.qc.ca > Sent: Thursday, March 07, 2002 8:20 PM > Subject: RE: [vserver] Network card problems > > > Ooerr. I can setup stuff that's already available but not add new. google.com is your best bet :-) > > J > -----Original Message----- > From: Marius Vincent [mailto:mvincent@uberninja.com] > Sent: 07 March 2002 18:17 > To: vserver@solucorp.qc.ca > Subject: Re: [vserver] Network card problems > > > Hmmmm.... > > Alright, then how do I include the network card modules when i do a kernel recompile? > I have the source for for the nvidia NIC, do i just dump the .o into some directory and "make menuconfig" will pick it up? > > ----- Original Message ----- > From: John Lyons > To: vserver@solucorp.qc.ca > Sent: Thursday, March 07, 2002 5:56 PM > Subject: RE: [vserver] Network card problems > > > > Now the problem is that for the life of me I cannot get the onboard NIC to work with the ctx kernel. > The nic was working fine, i just installed the rpm and that installed the modules. > When I install the new kernel and try to reinstall teh rpm, or source rpm, or even straigth from the source i get problems. > Now why does this not work? > Anyone I am despirate! > > I'm not a kernel expert but I've been in your situation before. > I had the same problem with SIS network cards. > > The pre compiled kernel doen't have very many nic drivers either compiled in or set to load as modules, hence you're problem. > > The fix is to get the kernel source, patch it, create your .config with your own nic drivers included, and recompile. > > It's worked for me several times in the past but I still can't get ext3 working on my own system despite the fact that I didn't mess with those settings in any of the kernel builds in the past. (That's my own personal unresolved bug btw :-)) > > i > From vserver.error@solucorp.qc.ca Fri Mar 8 19:12:29 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g290CS7Y020945; Fri, 8 Mar 2002 19:12:29 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g28Nghg01051 for vserver.list; Fri, 8 Mar 2002 18:42:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from foo.uberninja.com (mvincent.lon.rackspace.com [212.100.225.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g28Nggh01047 for ; Fri, 8 Mar 2002 18:42:42 -0500 Received: from schizoid.gotadsl.co.uk ([213.208.117.83] helo=mvincent1) by foo.uberninja.com with smtp (Exim 3.22 #1) id 16jU1Q-000BjN-00 for vserver@solucorp.qc.ca; Fri, 08 Mar 2002 23:43:36 +0000 Message-ID: <001801c1c6fb$59864ff0$0400000a@mvincent1> From: "Marius Vincent" To: References: <001801c1c615$8cc3ce60$61ae01d5@johnnew> <001101c1c61d$466a3000$0400000a@mvincent1> <1015617341.7417.9.camel@zerowing.pop-star.net> Subject: Re: [vserver] Network card problems Date: Fri, 8 Mar 2002 23:45:37 -0000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 294 Not at all, I ended up grabbing my intel pro s 10/100 NIC and dumped that in system. I ended up loading the eepro100 module that comes with the precompiled kernel and that worked perfectly! ----- Original Message ----- From: "Andy Kwong" To: Sent: Friday, March 08, 2002 7:55 PM Subject: Re: [vserver] Network card problems > Just out of curiosity, did you do a "make clean" and "make dep" > before you recompile your new kernel? Does the NV patches work with a > stock 2.4.18 kernel? > > On Thu, 2002-03-07 at 13:15, Marius Vincent wrote: > > Yeah well I did a source recompile and no go. Just no luck, stupid RedHat keeps breaking. > > Prefer BSD systems. They just never die. > > > > Anyhow, Can anyone tell me if I stick a Intel e100 NIC in there if it will work with the current modules? > > I see there is a eepro100.o module built in to the precompiled kernel, although I would need the e100.o for it to work correctly. > > Or can I do a install from source and it will work after I have the crx kernel installed? > > > > Anyone? > > > > P.S. As for your ext3 fs problems afer you compile the kernel. I had the same thing, untill I saw I had to select ext3 journaling fs under the fs section under "menuconfig" It all worked fine then. :) Except the modules kept breking when i tried to do a install. *sigh* > > > > ----- Original Message ----- > > From: John Lyons > > To: vserver@solucorp.qc.ca > > Sent: Thursday, March 07, 2002 8:20 PM > > Subject: RE: [vserver] Network card problems > > > > > > Ooerr. I can setup stuff that's already available but not add new. google.com is your best bet :-) > > > > J > > -----Original Message----- > > From: Marius Vincent [mailto:mvincent@uberninja.com] > > Sent: 07 March 2002 18:17 > > To: vserver@solucorp.qc.ca > > Subject: Re: [vserver] Network card problems > > > > > > Hmmmm.... > > > > Alright, then how do I include the network card modules when i do a kernel recompile? > > I have the source for for the nvidia NIC, do i just dump the .o into some directory and "make menuconfig" will pick it up? > > > > ----- Original Message ----- > > From: John Lyons > > To: vserver@solucorp.qc.ca > > Sent: Thursday, March 07, 2002 5:56 PM > > Subject: RE: [vserver] Network card problems > > > > > > > > Now the problem is that for the life of me I cannot get the onboard NIC to work with the ctx kernel. > > The nic was working fine, i just installed the rpm and that installed the modules. > > When I install the new kernel and try to reinstall teh rpm, or source rpm, or even straigth from the source i get problems. > > Now why does this not work? > > Anyone I am despirate! > > > > I'm not a kernel expert but I've been in your situation before. > > I had the same problem with SIS network cards. > > > > The pre compiled kernel doen't have very many nic drivers either compiled in or set to load as modules, hence you're problem. > > > > The fix is to get the kernel source, patch it, create your .config with your own nic drivers included, and recompile. > > > > It's worked for me several times in the past but I still can't get ext3 working on my own system despite the fact that I didn't mess with those settings in any of the kernel builds in the past. (That's my own personal unresolved bug btw :-)) > > > > i > > > > > From vserver.error@solucorp.qc.ca Fri Mar 8 19:19:53 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g290Jq7Y020998; Fri, 8 Mar 2002 19:19:52 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g28Nf1V01019 for vserver.list; Fri, 8 Mar 2002 18:41:01 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from foo.uberninja.com (mvincent.lon.rackspace.com [212.100.225.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g28Nf0h01015 for ; Fri, 8 Mar 2002 18:41:00 -0500 Received: from schizoid.gotadsl.co.uk ([213.208.117.83] helo=mvincent1) by foo.uberninja.com with smtp (Exim 3.22 #1) id 16jTzl-000BjJ-00 for vserver@solucorp.qc.ca; Fri, 08 Mar 2002 23:41:54 +0000 Message-ID: <001101c1c6fb$1c653410$0400000a@mvincent1> From: "Marius Vincent" To: References: <00c101c1c6d7$40ee4570$0100a8c0@johnnew> Subject: Re: [vserver] v_httpd, v_sshd Date: Fri, 8 Mar 2002 23:43:54 -0000 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_000E_01C1C6FB.1BB0FF40" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-99.2 required=5.0 tests=MAILTO_LINK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 295 This is a multi-part message in MIME format. ------=_NextPart_000_000E_01C1C6FB.1BB0FF40 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hmmmm then that only works for v_xinetd Cause I make all my host services binf to the primary host ip only and = that works fine. Thanks for that! ----- Original Message -----=20 From: John Lyons=20 To: vserver@solucorp.qc.ca=20 Sent: Friday, March 08, 2002 7:27 PM Subject: RE: [vserver] v_httpd, v_sshd What does v_sshd and v_httpd and v_xinetd do exactly? These services is also listed in my virtual servers that i setup. Do = I have to enable say v_sshd in my virtual servers in order to use sshd = properly? They shouldn't be installed in your virtual servers. Check that = you've not got the vserver rpms installed within your reference server = (assuming the ref server is a vs and not your host) The v_ scripts are used to start services on the parent host server = and bind them to the host servers IP address automatically otherwise = they start up and listen on all IP's thereby breaking those services on = the vs's Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 = *********************************************************************** Please quote your account number in the subject line of all emails.=20 Failure to do so may result in your enquiries taking longer to = process. = *********************************************************************** ------=_NextPart_000_000E_01C1C6FB.1BB0FF40 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hmmmm then that only works for=20 v_xinetd
Cause I make all my host services binf = to the=20 primary host ip only and that works fine.
 
Thanks for that!
 
----- Original Message -----
From:=20 John = Lyons=20
Sent: Friday, March 08, 2002 = 7:27=20 PM
Subject: RE: [vserver] v_httpd, = v_sshd

 
What does v_sshd and v_httpd = and v_xinetd=20 do exactly?
These services is also listed in my = virtual=20 servers that i setup. Do I have to enable say v_sshd in my = virtual=20 servers in order to use sshd properly?
 
They shouldn't=20 be installed in your virtual servers. Check that you've not got the = vserver=20 rpms installed within your reference server (assuming the ref = server is=20 a  vs and not your host)
 
The v_ scripts=20 are used to start services on the parent host server and bind them = to the=20 host servers IP address automatically otherwise they start up and = listen on=20 all IP's thereby breaking those services on the = vs's
 

Regards

John Lyons
DomainCity
http://www.domaincity.co.uk
support@domaincity.co.= uk
ICQ=20 = 74187012

*********************************************************= **************
Please=20 quote your account number in the subject line of all=20 emails. 
Failure to do so may result in your enquiries = taking longer=20 to=20 = process.
*************************************************************= **********

------=_NextPart_000_000E_01C1C6FB.1BB0FF40-- From vserver.error@solucorp.qc.ca Sat Mar 9 05:41:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g29Afv7Y025314; Sat, 9 Mar 2002 05:41:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g29AFib11251 for vserver.list; Sat, 9 Mar 2002 05:15:44 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g29AFhh11247 for ; Sat, 9 Mar 2002 05:15:43 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 8E237108C for ; Sat, 9 Mar 2002 11:15:35 +0100 (CET) Subject: Re: [vserver] modular vunify From: klavs klavsen To: Vserver Mailinglist In-Reply-To: References: <20020305224638.38acdbde8fd4@remtk.solucorp.qc.ca> <20020306202403.1a03b5a2.klists@rbcmail.ru> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-eTJzFB+tFAkys3VkVctk" X-Mailer: Evolution/1.0.2 Date: 09 Mar 2002 11:15:24 +0100 Message-Id: <1015668935.2037.3.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 296 --=-eTJzFB+tFAkys3VkVctk Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-03-08 at 13:01, Sam Vilain wrote: > I also have a Perl solution. >=20 > My script[1] is not tied to a distribution at all; it merely scans X > (where X >=3D 2) directory structures, and where files are identical in t= he > two structures, it hard links them (and optionally sets immutable and > immutable linkage invert inode attributes, btw thanks for the chattr() > routine). Watch out for the comparison. A file can look exactly alike, according to ls -l, and still not be the same. I would definetely do a sha1 or md5sum check to ensure that they are truely identical.=20 >=20 > For this script to work, you'll need to install Pod::Constants and > ReadDir, from my modules collection (http://sam.vilain.net/pm/). >=20 > The script is at http://sam.vilain.net/vserver/unify-dirs >=20 > You could use it like this: >=20 > unify-dirs -vil /vservers/*/usr > unify-dirs -vil /vservers/*/lib > unify-dirs -vil /vservers/*/sbin > unify-dirs -vil /vservers/*/bin sounds very cool.. perhaps i'll have a look at making it log, which files it vunified - and then the next day, you could run it against the log, and it would tell you if anything changed - a very simple but effective IDS. :-) --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-eTJzFB+tFAkys3VkVctk Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8ieC84c1kHlhtW8oRAti9AJ9GichgkZH5Zl5Da+xwtCvsKrCraQCdF7Gm dpvlLZ0nV2aCsk0YmOhIzhg= =cTyM -----END PGP SIGNATURE----- --=-eTJzFB+tFAkys3VkVctk-- From vserver.error@solucorp.qc.ca Sat Mar 9 06:56:08 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g29Bu77Y025665; Sat, 9 Mar 2002 06:56:08 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g29BSXH12216 for vserver.list; Sat, 9 Mar 2002 06:28:33 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from skessa.this.is (this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g29BSWh12212 for ; Sat, 9 Mar 2002 06:28:32 -0500 Received: from skessa.this.is (www-data@localhost [127.0.0.1]) by skessa.this.is (8.12.1/8.12.1/Debian -5) with ESMTP id g29BSWM7031032 for ; Sat, 9 Mar 2002 11:28:32 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.1/8.12.1/Debian -5) id g29BSWrw031030 for vserver@solucorp.qc.ca; Sat, 9 Mar 2002 11:28:32 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca Subject: [vserver] modular vunify pool Message-ID: <1015673312.3c89f1e076fae@this.is> Date: Sat, 09 Mar 2002 11:28:32 +0000 (GMT) From: ragnar@this.is References: <20020305224638.38acdbde8fd4@remtk.solucorp.qc.ca> <20020306202403.1a03b5a2.klists@rbcmail.ru> In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 194.144.127.84 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-0.8 required=5.0 tests=IN_REP_TO,NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 297 Hi, On Fri, 2002-03-08 at 13:01, Sam Vilain wrote: > My script[1] is not tied to a distribution at all; it merely scans X > (where X >= 2) directory structures, and where files are identical in > the two structures, it hard links them This sound great. But hard link them to where? I think there should be a structure outside of the vservers. If 25 ververs are running 2 or more distributions we will have 2 or more "versions" of the bin "ftp" To explain. if the servers are in /opt/vservers/servers/"ServerDirs" and a unify "cache" :-) in /opt/vservers/unify-pool/usr/bin/ftp/md5sum-filename-1 /opt/vservers/unify-pool/usr/bin/ftp/md5sum-filename-2 That way we could have a cron job do a massive diff test of all files. > and optionally sets immutable and immutable linkage > invert inode attributes, Could this be in a config file for each vserver? Best ragnar From vserver.error@solucorp.qc.ca Sat Mar 9 08:21:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g29DLd7Y026189; Sat, 9 Mar 2002 08:21:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g29CpFi13611 for vserver.list; Sat, 9 Mar 2002 07:51:15 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from correo2.acens.net (correo2.acens.net [217.116.0.34]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g29CpEh13607 for ; Sat, 9 Mar 2002 07:51:14 -0500 Received: (qmail 5294 invoked from network); 9 Mar 2002 12:51:13 -0000 Received: from unknown (HELO localhost.localdomain) (@[217.116.1.3]) (envelope-sender ) by correo2.acens.net (qmail-ldap-1.03) with SMTP for ; 9 Mar 2002 12:51:13 -0000 Subject: [vserver] Problems From: Joaquin Urrutia To: vserver Content-Type: multipart/alternative; boundary="=-wnPvyTdGCALwqqWdtM3t" X-Mailer: Evolution/1.0.2 Date: 09 Mar 2002 13:51:12 +0100 Message-Id: <1015678273.2452.34.camel@titan> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=1.4 required=5.0 tests=PORN_3,SUPERLONG_LINE version=2.01 Status: RO X-Status: X-Keywords: X-UID: 298 --=-wnPvyTdGCALwqqWdtM3t Content-Type: text/plain Content-Transfer-Encoding: 7bit Hi, We have some problems with vservers. Our machine manage 2 network interfaces, 1 private interface ( 10.3.0.0 ) and 1 public interface ( 217.X.X.X ). The routing table we have is: vserver01:~# ip route 217.X.X.X/27 dev eth0 scope link 10.3.0.0/24 dev eth1 scope link 10.0.0.0/12 via 10.3.0.1 dev eth1 127.0.0.0/8 dev lo scope link default via 217.116.2.129 dev eth0 vserver01:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 217.XXX.XXX.X * 255.255.255.224 U 0 0 0 eth0 10.3.0.0 * 255.255.255.0 U 0 0 0 eth1 10.0.0.0 10.0.0.1 255.240.0.0 UG 0 0 0 eth1 127.0.0.0 * 255.0.0.0 U 0 0 0 lo default 217.XXX.XXX.X 0.0.0.0 UG 0 0 0 eth0 Working in local mode (monitor and keyboard directly conected to the machine), we dont have any problem to ping a vserver from root system: vserver01:~# ping 217.XXX.XXX.135 PING 217.XXX.XXX.135 (217.XXX.XXX.135) from 217.XXX.XXX.135 : 56(84) bytes of data. 64 bytes from 217.XXX.XXX.135: icmp_seq=0 ttl=255 time=45 usec 64 bytes from 217.XXX.XXX.135: icmp_seq=1 ttl=255 time=30 usec 64 bytes from 217.XXX.XXX.135: icmp_seq=2 ttl=255 time=31 usec --- 217.XXX.XXX.135 ping statistics --- 3 packets transmitted, 3 packets received, 0% packet loss round-trip min/avg/max/mdev = 0.030/0.035/0.045/0.008 ms But, when we work conected through ssh or telnet (conected to 10.3.0.2), we have some problems: vserver01:~# ping 217.XXX.XXX.135 PING 217.XXX.XXX.135 (217.XXX.XXX.135) from 10.3.0.2 : 56(84) bytes of data. 64 bytes from 217.XXX.XXX.135: icmp_seq=0 ttl=255 time=45 usec 64 bytes from 217.XXX.XXX.135: icmp_seq=1 ttl=255 time=30 usec 64 bytes from 217.XXX.XXX.135: icmp_seq=2 ttl=255 time=31 usec --- 217.XXX.XXX.135 ping statistics --- 3 packets transmitted, 3 packets received, 0% packet loss round-trip min/avg/max/mdev = 0.030/0.035/0.045/0.008 ms Our Network Interfaces: eth0 Link encap:Ethernet HWaddr 00:B0:D0:F0:31:60 inet addr:217.X.X.X Bcast:217.X.X.X Mask:255.255.255.224 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:1306289 errors:0 dropped:0 overruns:0 frame:0 TX packets:1582986 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:411650461 (392.5 Mb) TX bytes:1111851624 (1060.3 Mb) Interrupt:16 eth0:base Link encap:Ethernet HWaddr 00:B0:D0:F0:31:60 inet addr:217.X.X.X Bcast:217.X.X.X Mask:255.255.255.224 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:16 eth0:bt03 Link encap:Ethernet HWaddr 00:B0:D0:F0:31:60 inet addr:217.X.X.X Bcast:217.X.X.X Mask:255.255.255.224 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:16 eth1 Link encap:Ethernet HWaddr 00:B0:D0:F0:31:61 inet addr:10.3.0.2 Bcast:10.3.0.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:168177 errors:0 dropped:0 overruns:0 frame:0 TX packets:195368 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:16153875 (15.4 Mb) TX bytes:23079955 (22.0 Mb) Interrupt:17 Base address:0x2000 Sorry for my english ;) Regards -- ------------------------------- Joaquin Urrutia Gonzalez acens (http://www.acens.com) Equipo de Operacion Tlf: +34 91 1418561 ------------------------------- --=-wnPvyTdGCALwqqWdtM3t Content-Type: text/html; charset=utf-8 Hi,

We have some problems with vservers.

Our machine manage 2 network interfaces, 1 private interface ( 10.3.0.0 ) and 1 public interface ( 217.X.X.X ).

The routing table we have is:
vserver01:~# ip route
217.X.X.X/27 dev eth0  scope link 
10.3.0.0/24 dev eth1  scope link 
10.0.0.0/12 via 10.3.0.1 dev eth1 
127.0.0.0/8 dev lo  scope link 
default via 217.116.2.129 dev eth0 

vserver01:~# route
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
217.XXX.XXX.X   *               255.255.255.224 U     0      0        0 eth0
10.3.0.0        *               255.255.255.0   U     0      0        0 eth1
10.0.0.0        10.0.0.1        255.240.0.0     UG    0      0        0 eth1
127.0.0.0       *               255.0.0.0       U     0      0        0 lo
default         217.XXX.XXX.X   0.0.0.0         UG    0      0        0 eth0

Working in local mode (monitor and keyboard directly conected to the machine), we dont have any problem to ping a vserver from root system:
vserver01:~# ping 217.XXX.XXX.135
PING 217.XXX.XXX.135 (217.XXX.XXX.135) from 217.XXX.XXX.135 : 56(84) bytes of data.
64 bytes from 217.XXX.XXX.135: icmp_seq=0 ttl=255 time=45 usec
64 bytes from 217.XXX.XXX.135: icmp_seq=1 ttl=255 time=30 usec
64 bytes from 217.XXX.XXX.135: icmp_seq=2 ttl=255 time=31 usec

--- 217.XXX.XXX.135 ping statistics ---
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max/mdev = 0.030/0.035/0.045/0.008 ms

But, when we work conected through ssh or telnet (conected to 10.3.0.2), we have some problems:

vserver01:~# ping 217.XXX.XXX.135
PING 217.XXX.XXX.135 (217.XXX.XXX.135)  from 10.3.0.2 : 56(84) bytes of data.
64 bytes from 217.XXX.XXX.135: icmp_seq=0 ttl=255 time=45 usec
64 bytes from 217.XXX.XXX.135: icmp_seq=1 ttl=255 time=30 usec
64 bytes from 217.XXX.XXX.135: icmp_seq=2 ttl=255 time=31 usec

--- 217.XXX.XXX.135 ping statistics ---
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max/mdev = 0.030/0.035/0.045/0.008 ms
Our Network Interfaces:
eth0      Link encap:Ethernet  HWaddr 00:B0:D0:F0:31:60  
          inet addr:217.X.X.X  Bcast:217.X.X.X  Mask:255.255.255.224
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:1306289 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1582986 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:100 
          RX bytes:411650461 (392.5 Mb)  TX bytes:1111851624 (1060.3 Mb)
          Interrupt:16 

eth0:base Link encap:Ethernet  HWaddr 00:B0:D0:F0:31:60  
          inet addr:217.X.X.X  Bcast:217.X.X.X  Mask:255.255.255.224
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          Interrupt:16 

eth0:bt03 Link encap:Ethernet  HWaddr 00:B0:D0:F0:31:60  
          inet addr:217.X.X.X  Bcast:217.X.X.X  Mask:255.255.255.224
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          Interrupt:16 

eth1      Link encap:Ethernet  HWaddr 00:B0:D0:F0:31:61  
          inet addr:10.3.0.2  Bcast:10.3.0.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:168177 errors:0 dropped:0 overruns:0 frame:0
          TX packets:195368 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:100 
          RX bytes:16153875 (15.4 Mb)  TX bytes:23079955 (22.0 Mb)
          Interrupt:17 Base address:0x2000 
Sorry for my english ;)

Regards
-- 
-------------------------------
Joaquin Urrutia Gonzalez	

acens (http://www.acens.com)

Equipo de Operacion
Tlf: +34 91 1418561
-------------------------------
--=-wnPvyTdGCALwqqWdtM3t-- From vserver.error@solucorp.qc.ca Sat Mar 9 23:34:37 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2A4YZ7Y030822; Sat, 9 Mar 2002 23:34:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2A46dS29291 for vserver.list; Sat, 9 Mar 2002 23:06:39 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mx1.paradigm4.com.au (server.paradigm4.com.au [202.45.126.119]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2A46bh29287 for ; Sat, 9 Mar 2002 23:06:38 -0500 Received: (qmail 13105 invoked from network); 10 Mar 2002 04:11:05 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 10 Mar 2002 04:11:05 -0000 Received: (qmail 13725 invoked from network); 10 Mar 2002 04:10:49 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 10 Mar 2002 04:10:49 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sun, 10 Mar 2002 15:15:16 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] vserver 0.11 and kernel ctx-8 released Message-ID: <3C8B7884.6890.251D80@localhost> Priority: normal In-reply-to: <20020226143930.23f7bd1e280a@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=1.2 required=5.0 tests=NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 299 This change is causing problems. Situation 1: You have some common services used by vservers, e.g. dns cache/resolver, database backend etc.., listening on 127.0.0.1 on the same machine. Starting from ctx-8, vservers are unable to connect and use such services, because when they try to connect to 127.0.0.1 it is remapped to their pubic IP addresses. Situation 2: Usually when application needs to create a "private" service it binds to localhost. With previous kernels, it would fail. With ctx-8, it succeeds but instead of listening on localhost, it opens up a port on public interface, which is not what application expects. This could have dire security consequences. I'd rather it failed than succeeded with unexpected result. Could you make this particular bits, i.e. remapping bind and route of 127.0.0.1 optional? Either at kernel build time or at runtime? I understand that it solved some problems for people running samba, but at what expense? hth Ed On Tuesday, 26 February 2002 at 14:39, Jacques Gelinas wrote: > 1.4. kernel ctx-8 > > + Using 127.0.0.1 in a vserver. > > Note, this is unrelated to the multi-IP-per-vserver concept. A > vserver normally use a single IP to listen and talk. In general, > this is not a problem. But it breaks a little semantic. Most > services out there simply do a bind on IP 0.0.0.0. This way, they > expect to grab any incoming traffic. They also expect that talking > to 127.0.0.1 is a good way (configuration less) to talk to > themselves. Some services are using localhost (which is redirect to > the ipv4root of the vserver) and some are using 127.0.0.1 directly. > > The ctx-8 kernel now maps 127.0.0.1 to the ipv4root of the vserver > on the fly. This solves some issues with samba and should also (not > tested) solve the issue with PostgreSQL. From vserver.error@solucorp.qc.ca Sun Mar 10 09:01:43 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2AE1f7Y014569; Sun, 10 Mar 2002 09:01:41 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2ADfsu17526 for vserver.list; Sun, 10 Mar 2002 08:41:54 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from april.netcraft.com.au (april.netcraft.com.au [203.16.231.73]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2ADfqh17522 for ; Sun, 10 Mar 2002 08:41:53 -0500 Received: (from g@localhost) by april.netcraft.com.au (8.11.6/8.11.6) id g2ADfpa30373 for vserver@solucorp.qc.ca; Mon, 11 Mar 2002 00:11:51 +1030 Date: Mon, 11 Mar 2002 00:11:51 +1030 From: "Geoffrey D. Bennett" To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver 0.11 and kernel ctx-8 released Message-ID: <20020311001151.F14847@april.netcraft.com.au> References: <20020226143930.23f7bd1e280a@remtk.solucorp.qc.ca> <3C8B7884.6890.251D80@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <3C8B7884.6890.251D80@localhost>; from edward@paradigm4.com.au on Sun, Mar 10, 2002 at 03:15:16PM +1100 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 300 On Sun, Mar 10, 2002 at 03:15:16PM +1100, edward@paradigm4.com.au wrote: > This change is causing problems. > Situation 1: > > You have some common services used by vservers, e.g. dns > cache/resolver, database backend etc.., listening on 127.0.0.1 on > the same machine. > > Starting from ctx-8, vservers are unable to connect and use such > services, because when they try to connect to 127.0.0.1 it is > remapped to their pubic IP addresses. > Situation 2: > > Usually when application needs to create a "private" service it > binds to localhost. With previous kernels, it would fail. With > ctx-8, it succeeds but instead of listening on localhost, it opens > up a port on public interface, which is not what application > expects. This could have dire security consequences. I'd rather it > failed than succeeded with unexpected result. > > Could you make this particular bits, i.e. remapping bind and route > of 127.0.0.1 optional? Either at kernel build time or at runtime? If anyone's interested in my two cents :), this is how I see it: Old behavour: 127.0.0.1 is shared by all vservers. This is good for sharing local services as pointed out above, but allowing communications between vservers may be bad from a security POV. Current behaviour: 127.0.0.1 gets mapped to the public address. This is really bad, as also pointed out above. Geoffrey's Suggested behaviour #1: Map 127.0.0.1 to something like 127.1.y.z for bind() and connect() -- y.z could just be the context number (since MAX_S_CONTEXT is only 65535). Firewalling rules could then disallow communication between 127.1.a.b and 127.1.c.d where a.b != c.d. This would fix the security problems with both the old behaviour and the current behaviour, but would prevent the implementation of shared local services. Geoffrey's Suggested behaviour #2: As for #1, but: change connect() so that if the address being connected to is 127.0.0.1, then: - attempt to connect to 127.1.y.z instead - if the connection succeeds, good - if the connection fails, attempt to connect to 127.0.0.1 as usual This suggestion is obviously a bit more complicated, but would allow some nice things; for example: - named running in root vserver - most vservers not running named, hence connections to 127.0.0.1:53 going to the root vserver named - some vservers running their own copy of named, "overriding" the root vserver named with their own Have fun, -- Geoffrey D. Bennett, RHCE, RHCX geoffrey@netcraft.com.au Senior Systems Engineer http://www.netcraft.com.au/geoffrey/ NetCraft Australia Pty Ltd http://www.netcraft.com.au/linux/ From vserver.error@solucorp.qc.ca Sun Mar 10 09:54:28 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2AEsR7Y014850; Sun, 10 Mar 2002 09:54:28 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2AEen718550 for vserver.list; Sun, 10 Mar 2002 09:40:49 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from foo.uberninja.com (mvincent.lon.rackspace.com [212.100.225.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2AEemh18546 for ; Sun, 10 Mar 2002 09:40:48 -0500 Received: from schizoid.gotadsl.co.uk ([213.208.117.83] helo=mvincent1) by foo.uberninja.com with smtp (Exim 3.22 #1) id 16k4Vz-000D9P-00 for vserver@solucorp.qc.ca; Sun, 10 Mar 2002 14:41:35 +0000 Message-ID: <001701c1c841$fb00d610$0400000a@mvincent1> From: "Marius Vincent" To: References: <20020226143930.23f7bd1e280a@remtk.solucorp.qc.ca> <3C8B7884.6890.251D80@localhost> <20020311001151.F14847@april.netcraft.com.au> Subject: [vserver] Quota's Date: Sun, 10 Mar 2002 14:43:42 -0000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 301 Due to the fact that the virtual servers think they are mounted on a /dev/hdv partition, I cannot get quota support working. How do I get around this? I need to enable quota's for my users on the virtual server. Regards. -Marius Vincent The UberGeek From vserver.error@solucorp.qc.ca Mon Mar 11 05:06:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2BA6l7Y023628; Mon, 11 Mar 2002 05:06:47 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2B9gQL07455 for vserver.list; Mon, 11 Mar 2002 04:42:26 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from irishsea.home.craig-wood.com (userbb201.dsl.pipex.com [62.190.241.201]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2B9gOh07451 for ; Mon, 11 Mar 2002 04:42:25 -0500 Received: (from ncw@localhost) by irishsea.home.craig-wood.com (8.11.6/8.11.6) id g2B9gFZ00522 for vserver@solucorp.qc.ca; Mon, 11 Mar 2002 09:42:15 GMT Date: Mon, 11 Mar 2002 09:42:15 +0000 From: Nick Craig-Wood To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver 0.11 and kernel ctx-8 released Message-ID: <20020311094215.A32575@axis.demon.co.uk> Mail-Followup-To: Nick Craig-Wood , vserver@solucorp.qc.ca References: <20020226143930.23f7bd1e280a@remtk.solucorp.qc.ca> <3C8B7884.6890.251D80@localhost> <20020311001151.F14847@april.netcraft.com.au> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20020311001151.F14847@april.netcraft.com.au>; from g@netcraft.com.au on Mon, Mar 11, 2002 at 12:11:51AM +1030 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 302 On Mon, Mar 11, 2002 at 12:11:51AM +1030, Geoffrey D. Bennett wrote: > Old behavour: > > 127.0.0.1 is shared by all vservers. This is good for sharing local > services as pointed out above, but allowing communications between > vservers may be bad from a security POV. ...and binding to 127.0.0.1 fails > Current behaviour: > > 127.0.0.1 gets mapped to the public address. This is really bad, as > also pointed out above. ...and binding to 127.0.0.1 succeeds, but it doesn't actually bind to 127.0.0.1. I agree that this is bad. Anyone using 127.0.0.1 or localhost explicitly expects it not to be a public service. > Geoffrey's Suggested behaviour #1: > > Map 127.0.0.1 to something like 127.1.y.z for bind() and connect() -- > y.z could just be the context number (since MAX_S_CONTEXT is only > 65535). Firewalling rules could then disallow communication between > 127.1.a.b and 127.1.c.d where a.b != c.d. This would fix the security > problems with both the old behaviour and the current behaviour, but > would prevent the implementation of shared local services. I prefer the slight modification that a bind to 127.0.0.1 is remapped to 127.b.c.d where b.c.d is the low 24 bits of the ipv4 address. This means that all vservers who can bind to a.b.c.d can bind to 127.b.c.d also which is a more logical grouping than security context. It also means that you can ifconfig the interfaces in advance. If you re-ifconfig lo to have a /32 rather than a /8 you can bring up the new lo interfaces. I have a nameserver bound to 127.0.0.1 on this machine. # lo configured as 127.0.0.1/8 as default ping 127.0.0.2 # works ping 127.1.1.1 # works ifconfig lo 127.0.0.1 netmask 255.255.255.255 up ping 127.0.0.2 # fails ping 127.1.1.1 # fails ifconfig lo:1 127.1.1.1 netmask 255.255.255.255 up ping 127.1.1.1 # works dig something @127.0.0.1 # works dig something @127.1.1.1 # fails > Geoffrey's Suggested behaviour #2: > > As for #1, but: change connect() so that if the address being > connected to is 127.0.0.1, then: > - attempt to connect to 127.1.y.z instead > - if the connection succeeds, good > - if the connection fails, attempt to connect to 127.0.0.1 as usual > > This suggestion is obviously a bit more complicated, but would allow > some nice things; for example: > - named running in root vserver > - most vservers not running named, hence connections to 127.0.0.1:53 > going to the root vserver named > - some vservers running their own copy of named, "overriding" the root > vserver named with their own This would cause big trouble I think - what happens if named dies unexpectedly on your vserver? Now all of a sudden requests are going to the main named but no-one knows! -- Nick Craig-Wood ncw@axis.demon.co.uk From vserver.error@solucorp.qc.ca Mon Mar 11 11:31:12 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2BGVB7Y026029; Mon, 11 Mar 2002 11:31:12 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2BGA4q16496 for vserver.list; Mon, 11 Mar 2002 11:10:04 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2BGA3h16492 for ; Mon, 11 Mar 2002 11:10:03 -0500 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g2BGAJ015566; Mon, 11 Mar 2002 08:10:19 -0800 X-Authentication-Warning: main.cyber-office.net: raanders owned process doing -bs Date: Mon, 11 Mar 2002 08:10:19 -0800 (PST) From: X-X-Sender: To: , Linuxconf Mailing List Subject: [vserver] vmail and vserver conflict? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=1.3 required=5.0 tests=NO_REAL_NAME,SUBJ_ENDS_IN_Q_MARK version=2.01 Status: RO X-Status: X-Keywords: X-UID: 303 After a little nameserver snafu I'm trying to send this again. Hopefully it is the only copy you'll get!! ---------- Forwarded message ---------- Date: Sun, 10 Mar 2002 13:15:11 -0800 (PST) From: raanders@acm.org To: vserver@solucorp.qc.ca, Linuxconf Mailing List Subject: vmail and vserver conflict? I've run into a problem with using vmail (IP-based) in the main server on a vserver machine. (Those on the LC list that this makes no sense to just ignore.) It is poor setup using the main server instead of a vserver but I'm having problems getting more vservers setup and need to get some vmail accounts set up. This appears to be tied to the chbind command and the vserver setup. When I created the new IP alias in the main server is shows up as eth0:vs3 instead the typical eth0:0 etc. My vservers showup the same but those I can explain. Is there anyway to get chbind to use more than one IP in the main server? Is there anyway to back out the chbind stuff short of rebooting and not running the ctx kernel? TIA, Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Tue Mar 12 08:02:04 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2CD237Y004313; Tue, 12 Mar 2002 08:02:03 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2CCKmx08527 for vserver.list; Tue, 12 Mar 2002 07:20:48 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2CCKlh08523 for ; Tue, 12 Mar 2002 07:20:47 -0500 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g2CCJ4Q19542 for ; Tue, 12 Mar 2002 12:19:04 GMT Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 16klGp-0004Qe-00; Tue, 12 Mar 2002 12:20:47 +0000 Date: Tue, 12 Mar 2002 12:20:47 +0000 From: Sam Vilain To: vserver@solucorp.qc.ca Cc: klavs klavsen Subject: Re: [vserver] modular vunify In-Reply-To: <1015668935.2037.3.camel@amd.vsen.dk> References: <20020305224638.38acdbde8fd4@remtk.solucorp.qc.ca> <20020306202403.1a03b5a2.klists@rbcmail.ru> <1015668935.2037.3.camel@amd.vsen.dk> X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 304 klavs klavsen wrote: > > My script[1] is not tied to a distribution at all; it merely scans X > > (where X >= 2) directory structures, and where files are identical in > > the two structures, it hard links them (and optionally sets immutable > > and immutable linkage invert inode attributes, btw thanks for the > > chattr() routine). > Watch out for the comparison. A file can look exactly alike, according > to ls -l, and still not be the same. I would definetely do a sha1 or > md5sum check to ensure that they are truely identical. So would I. Read the source ;-). I'm still not checking for race conditions (last minute updates), but I think I might be able to do this by checking that the ctime hasn't changed since the last checksum started. > sounds very cool.. perhaps i'll have a look at making it log, which > files it vunified - and then the next day, you could run it against the > log, and it would tell you if anything changed - a very simple but > effective IDS. Check out the -v flag, which will only print out the new unifications that are made. It won't print anything when a file that was hard linked and indentical is now a different file, however. Patches are welcome. Even horrid hacks are welcome, but you get more style points for writing good code. Sam. From vserver.error@solucorp.qc.ca Tue Mar 12 08:43:44 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2CDhh7Y004601; Tue, 12 Mar 2002 08:43:43 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2CCCdY08297 for vserver.list; Tue, 12 Mar 2002 07:12:39 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2CCCdh08293 for ; Tue, 12 Mar 2002 07:12:39 -0500 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g2CCAoQ19140 for ; Tue, 12 Mar 2002 12:10:50 GMT Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 16kl8r-0004Pa-00 for ; Tue, 12 Mar 2002 12:12:33 +0000 Date: Tue, 12 Mar 2002 12:12:33 +0000 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] modular vunify pool In-Reply-To: <1015673312.3c89f1e076fae@this.is> References: <20020305224638.38acdbde8fd4@remtk.solucorp.qc.ca> <20020306202403.1a03b5a2.klists@rbcmail.ru> <1015673312.3c89f1e076fae@this.is> X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 305 ragnar@this.is wrote: > > My script[1] is not tied to a distribution at all; it merely scans X > > (where X >= 2) directory structures, and where files are identical in > > the two structures, it hard links them > This sound great. But hard link them to where? To each other. > I think there should be a structure outside of the vservers. Feel free to do so. It will be treated as an equal. > If 25 ververs are running 2 or more distributions > we will have 2 or more "versions" of the bin "ftp" That's the intention. > and a unify "cache" :-) in > /opt/vservers/unify-pool/usr/bin/ftp/md5sum-filename-1 > /opt/vservers/unify-pool/usr/bin/ftp/md5sum-filename-2 I do like the idea of a cache, however it might be just as easy to just use a perl module like DB_File & Storable and store this: inode # -> { [ stat $filename ], SHA1sum } structure in it. > > and optionally sets immutable and immutable linkage > > invert inode attributes, > Could this be in a config file for each vserver? I'm not sure this makes any sense :-) If you want different attributes, run them with a seperate unify command. Sam. From vserver.error@solucorp.qc.ca Tue Mar 12 12:37:43 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2CHbh7Y006304; Tue, 12 Mar 2002 12:37:43 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2CGohn14613 for vserver.list; Tue, 12 Mar 2002 11:50:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2CGogh14609 for ; Tue, 12 Mar 2002 11:50:43 -0500 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g2CGmwQ02548 for ; Tue, 12 Mar 2002 16:48:58 GMT Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 16kpU2-0005Qv-00 for ; Tue, 12 Mar 2002 16:50:42 +0000 Date: Tue, 12 Mar 2002 16:50:42 +0000 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: [vserver] Reiserfs + inode attributes X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 306 Excellent, it looks like inode attributes on reiserfs are in the latest stable kernel pre-release. I feel another patch coming on... Sam. Begin forwarded message: Date: Tue, 12 Mar 2002 14:40:16 +0300 From: Oleg Drokin To: Sam Vilain Subject: inode attributes Hello! On Tue, Mar 12, 2002 at 11:20:00AM +0000, Sam Vilain wrote: > btw, nice to see inode attributes back in the "pending" patches. Any idea> when this patch will make it into the mainstream kernel? It is already. Download 2.4.19-pre3 and enjoy. Bye, Oleg From vserver.error@solucorp.qc.ca Thu Mar 14 08:04:10 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2ED497Y012013; Thu, 14 Mar 2002 08:04:09 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2EBPCf05817 for vserver.list; Thu, 14 Mar 2002 06:25:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from saarland.sz-sb.de (saarland.sz-sb.de [212.88.192.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2EBPBh05813 for ; Thu, 14 Mar 2002 06:25:11 -0500 Received: from camelot.sz-sb.de (dmz1-camelot.sz-sb.de [212.88.192.2]) by saarland.sz-sb.de (8.9.3+Sun/8.9.3) with SMTP id MAA17142 for ; Thu, 14 Mar 2002 12:25:05 +0100 (MET) Message-Id: <200203141125.MAA17142@saarland.sz-sb.de> Received: from ([172.16.151.102]) by camelot.sz-sb.de; Thu, 14 Mar 2002 12:25:04 +0100 (MET) Received: from there (172.16.113.72 [172.16.113.72]) by trierx0.triervf.de with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id G8DHQS01; Thu, 14 Mar 2002 12:25:04 +0100 Content-Type: text/plain; charset="iso-8859-15" From: Daniel Menzel To: vserver@solucorp.qc.ca Subject: [vserver] Samba (nmbd) Problem Date: Thu, 14 Mar 2002 12:24:32 +0100 X-Mailer: KMail [version 1.3.2] MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=1.0 required=5.0 tests=MSG_ID_ADDED_BY_MTA_2 version=2.01 Status: RO X-Status: X-Keywords: X-UID: 307 Hi, I've got some problems intergrating nmbd (smbd) into the vserver using 2.4.18-ctx8 and vserver 0.13. smbd works fine, but nmbd tells me: [2002/03/14 12:02:20, 0] nmbd/nmbd_subnetdb.c:create_subnets(240) create_subnets: No local interfaces ! [2002/03/14 12:02:20, 0] nmbd/nmbd.c:main(861) ERROR: Failed when creating subnet lists. Exiting. which is related to the 255.255.255.255 netmask (according to: http://www.turbolinux.com/products/s390/howto/ctc_samba.html / same problem, other env. ) How can I change the given netmask vserver brings up ? Is it possible at all, or is there another solution ? regards, Daniel From vserver.error@solucorp.qc.ca Thu Mar 14 17:27:33 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2EMRV7Y017295; Thu, 14 Mar 2002 17:27:32 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2EM4bV18473 for vserver.list; Thu, 14 Mar 2002 17:04:37 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2EM4bh18469 for ; Thu, 14 Mar 2002 17:04:37 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 1FD55108C; Thu, 14 Mar 2002 23:04:29 +0100 (CET) Subject: Re: [vserver] modular vunify From: klavs klavsen To: Sam Vilain Cc: Vserver Mailinglist In-Reply-To: References: <20020305224638.38acdbde8fd4@remtk.solucorp.qc.ca> <20020306202403.1a03b5a2.klists@rbcmail.ru> <1015668935.2037.3.camel@amd.vsen.dk> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-okmyca0zagS2ORv0FTdI" X-Mailer: Evolution/1.0.2 Date: 14 Mar 2002 23:04:28 +0100 Message-Id: <1016143470.2018.10.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 308 --=-okmyca0zagS2ORv0FTdI Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Tue, 2002-03-12 at 13:20, Sam Vilain wrote: > klavs klavsen wrote: >=20 > > Watch out for the comparison. A file can look exactly alike, according > > to ls -l, and still not be the same. I would definetely do a sha1 or > > md5sum check to ensure that they are truely identical.=20 >=20 > So would I. Read the source ;-). sorry :-) =20 [SNIP] > > sounds very cool.. perhaps i'll have a look at making it log, which > > files it vunified - and then the next day, you could run it against the > > log, and it would tell you if anything changed - a very simple but > > effective IDS. >=20 > Check out the -v flag, which will only print out the new unifications tha= t > are made. >=20 > It won't print anything when a file that was hard linked and indentical i= s > now a different file, however. >=20 > Patches are welcome. Even horrid hacks are welcome, but you get more > style points for writing good code. I just took a little time to think my idea through. 1 comment to your program (without having scrambled through the entire source - sorry). it takes dir1 and 2 as input. You don't state which is the source and which is the target - where the target is the file that actually gets deleted and hardlinked.. and if indeed dir2 is the target, it ought to verify that the filepath contains /vserver in the start.. (or perhaps checks the vserver conf file, for the vservers dir).=20 perhaps you should think of making it so one could just state the vservers one wanted unified.. like unify-dirs root skel (root being the real / server and skel being a server under /vservers/skel).=20 I came up with these extra options for unify-dirs: -s --save =20 save list of files in /etc/vserver/unified.vservername if no is given. -c --compare compare compare current link status with saved list (see -s :-) -t --test don't actually do any linking. just print out list of files that could be unified. together with -s option one could merely create an initial list, without doing anything else.. What do you think? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-okmyca0zagS2ORv0FTdI Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8kR5s4c1kHlhtW8oRAs0xAJsHbiUks+CPohyC/Kget5KXLSCcqwCfUmZk zfw7Qt+0SXx38RSaAzLSot0= =K18v -----END PGP SIGNATURE----- --=-okmyca0zagS2ORv0FTdI-- From vserver.error@solucorp.qc.ca Thu Mar 14 17:58:28 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2EMwR7Y017469; Thu, 14 Mar 2002 17:58:28 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2ELt2f18339 for vserver.list; Thu, 14 Mar 2002 16:55:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2ELt1h18335 for ; Thu, 14 Mar 2002 16:55:01 -0500 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g2ELten01719; Thu, 14 Mar 2002 13:55:40 -0800 X-Authentication-Warning: main.cyber-office.net: raanders owned process doing -bs Date: Thu, 14 Mar 2002 13:55:40 -0800 (PST) From: X-X-Sender: To: , Linuxconf Mailing List Subject: [vserver] vmail and vserver conflict? (fwd) Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=1.3 required=5.0 tests=SUBJ_HAS_Q_MARK,NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 309 I still hadn't got confirmation as to whether this ever got through. Initially a DNS snafu so I'm sorry if this is a duplicate or triplicate. If it is some please just let me know and I'll stop trying. Rod ---------- Forwarded message ---------- Date: Sun, 10 Mar 2002 13:15:11 -0800 (PST) From: raanders@acm.org To: vserver@solucorp.qc.ca, Linuxconf Mailing List Subject: vmail and vserver conflict? I've run into a problem with using vmail (IP-based) in the main server on a vserver machine. (Those on the LC list that this makes no sense to just ignore.) It is poor setup using the main server instead of a vserver but I'm having problems getting more vservers setup and need to get some vmail accounts set up. This appears to be tied to the chbind command and the vserver setup. When I created the new IP alias in the main server is shows up as eth0:vs3 instead the typical eth0:0 etc. My vservers showup the same but those I can explain. Is there anyway to get chbind to use more than one IP in the main server? Is there anyway to back out the chbind stuff short of rebooting and not running the ctx kernel? TIA, Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Thu Mar 14 21:12:28 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2F2CR7Y019985; Thu, 14 Mar 2002 21:12:27 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2F0j5c21464 for vserver.list; Thu, 14 Mar 2002 19:45:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from correo1.acens.net (correo1.acens.net [217.116.0.33]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2F0j4h21460 for ; Thu, 14 Mar 2002 19:45:05 -0500 Received: (qmail 6578 invoked from network); 15 Mar 2002 00:45:02 -0000 Received: from unknown (HELO localhost.localdomain) (@[217.125.22.103]) (envelope-sender ) by correo1.acens.net (qmail-ldap-1.03) with SMTP for ; 15 Mar 2002 00:45:02 -0000 Subject: Re: [vserver] Samba (nmbd) Problem From: Joaquin Urrutia To: vserver@solucorp.qc.ca In-Reply-To: <200203141125.MAA17142@saarland.sz-sb.de> References: <200203141125.MAA17142@saarland.sz-sb.de> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-hW2CAiKtXNyWHHVbV7AP" X-Mailer: Evolution/1.0.2 Date: 15 Mar 2002 02:01:48 +0100 Message-Id: <1016154109.25610.85.camel@tango> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-1.3 required=5.0 tests=IN_REP_TO,PORN_3 version=2.01 Status: RO X-Status: X-Keywords: X-UID: 310 --=-hW2CAiKtXNyWHHVbV7AP Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable El jue, 14-03-2002 a las 12:24, Daniel Menzel escribi=F3: > Hi, >=20 > I've got some problems intergrating nmbd (smbd) into the vserver using=20 > 2.4.18-ctx8 and vserver 0.13. >=20 > smbd works fine, but nmbd tells me:=20 >=20 > [2002/03/14 12:02:20, 0] nmbd/nmbd_subnetdb.c:create_subnets(240) > create_subnets: No local interfaces ! > [2002/03/14 12:02:20, 0] nmbd/nmbd.c:main(861) > ERROR: Failed when creating subnet lists. Exiting. >=20 > which is related to the 255.255.255.255 netmask (according to: =20 > http://www.turbolinux.com/products/s390/howto/ctc_samba.html / same prob= lem,=20 > other env. ) >=20 > How can I change the given netmask vserver brings up ? Is it possible at = all,=20 > or is there another solution ? We do it changing the "ifconfig" lines in "vserver" script and adding two new parameters to the configuration file like: IPMASK=3D255.255.255.0 IPBROAD=3DXXX.XXX.XXX.255 In vserver script, you can change: /sbin/ifconfig $IPROOTDEV:$1 $IPROOT netmask 255.255.255.255 to: /sbin/ifconfig $IPROOTDEV:$1 $IPROOT netmask $IPMASK broadcast $IPBROAD Doing this, you have to add the new parameters to all the configuration files of all the vservers. One more time, sorry for my english ;) >=20 >=20 > regards, >=20 > Daniel >=20 --=20 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Joaquin Urrutia Powered by GNU/LiNUX Debian Unstable "SID" Kernel 2.4.17-k7 Linux user registered # 175074 PGP publickey -> http://www.j0aco.com/download/joacopublica.gpg joaquin.urrutia@acens.net jooaco@wanadoo.es joaco@j0aco.com =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D --=-hW2CAiKtXNyWHHVbV7AP Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8kUf8g8X/33nMtuwRAqr6AJ0erHLwvD8pG6viYmMZ/tVXpQkeNACg4+YY zY/j7lD9nMzKzsfL8mWItYE= =EPvt -----END PGP SIGNATURE----- --=-hW2CAiKtXNyWHHVbV7AP-- From vserver.error@solucorp.qc.ca Fri Mar 15 05:23:49 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2FANl7Y023697; Fri, 15 Mar 2002 05:23:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2F8mLJ30007 for vserver.list; Fri, 15 Mar 2002 03:48:21 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from saarland.sz-sb.de (saarland.sz-sb.de [212.88.192.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2F8mGh30003 for ; Fri, 15 Mar 2002 03:48:16 -0500 Received: from camelot.sz-sb.de (dmz1-camelot.sz-sb.de [212.88.192.2]) by saarland.sz-sb.de (8.9.3+Sun/8.9.3) with SMTP id JAA08353 for ; Fri, 15 Mar 2002 09:48:15 +0100 (MET) Message-Id: <200203150848.JAA08353@saarland.sz-sb.de> Received: from ([172.16.151.102]) by camelot.sz-sb.de; Fri, 15 Mar 2002 09:48:14 +0100 (MET) Received: from there (172.16.113.72 [172.16.113.72]) by trierx0.triervf.de with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id G0F9YP5K; Fri, 15 Mar 2002 09:48:15 +0100 Content-Type: text/plain; charset="iso-8859-1" From: DMM To: vserver@solucorp.qc.ca Subject: Re: [vserver] Samba (nmbd) Problem Date: Fri, 15 Mar 2002 09:48:06 +0100 X-Mailer: KMail [version 1.3.2] References: <200203141125.MAA17142@saarland.sz-sb.de> <1016154109.25610.85.camel@tango> In-Reply-To: <1016154109.25610.85.camel@tango> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-0.3 required=5.0 tests=IN_REP_TO,MSG_ID_ADDED_BY_MTA_2,PORN_3 version=2.01 Status: RO X-Status: X-Keywords: X-UID: 311 Hi, worked. Thanks a lot... regards, Daniel Am Freitag, 15. März 2002 02:01 schrieben Sie: > El jue, 14-03-2002 a las 12:24, Daniel Menzel escribió: > > Hi, > > > > I've got some problems intergrating nmbd (smbd) into the vserver using > > 2.4.18-ctx8 and vserver 0.13. > > > > smbd works fine, but nmbd tells me: > > > > [2002/03/14 12:02:20, 0] nmbd/nmbd_subnetdb.c:create_subnets(240) > > create_subnets: No local interfaces ! > > [2002/03/14 12:02:20, 0] nmbd/nmbd.c:main(861) > > ERROR: Failed when creating subnet lists. Exiting. > > > > which is related to the 255.255.255.255 netmask (according to: > > http://www.turbolinux.com/products/s390/howto/ctc_samba.html / same > > problem, other env. ) > > > > How can I change the given netmask vserver brings up ? Is it possible at > > all, or is there another solution ? > > We do it changing the "ifconfig" lines in "vserver" script and adding > two new parameters to the configuration file like: > > IPMASK=255.255.255.0 > IPBROAD=XXX.XXX.XXX.255 > > In vserver script, you can change: > > /sbin/ifconfig $IPROOTDEV:$1 $IPROOT netmask 255.255.255.255 > > to: > > /sbin/ifconfig $IPROOTDEV:$1 $IPROOT netmask $IPMASK broadcast $IPBROAD > > Doing this, you have to add the new parameters to all the configuration > files of all the vservers. > > One more time, sorry for my english ;) > > > regards, > > > > Daniel From vserver.error@solucorp.qc.ca Fri Mar 15 17:30:11 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2FMU97Y032016; Fri, 15 Mar 2002 17:30:10 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2FLtAl14120 for vserver.list; Fri, 15 Mar 2002 16:55:10 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2FLt9h14116 for ; Fri, 15 Mar 2002 16:55:10 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16lzfD-0008Cd-00 for ; Fri, 15 Mar 2002 22:55:03 +0100 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16lzfC-0008CO-00 for ; Fri, 15 Mar 2002 22:55:02 +0100 Sender: jon@silicide.dk Message-ID: <3C926DB6.C91981E9@silicide.dk> Date: Fri, 15 Mar 2002 22:55:02 +0100 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] NFS: mount: nfs:/home failed, reason given by server: Permission denied Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 312 but showmount -e works fine. The server i copied the setup from nfs works fine in /var/log/daemon.log i get Mar 15 22:39:00 nfs nfsd[1902]: nfssvc: Operation not permitted on the vserver root 1905 0.0 0.4 1452 604 ? S 22:39 0:00 /usr/sbin/rpc.mou but no process 1902 my /etc/vserver/nfs.conf IPROOT=nfs.silicide.dk IPROOTDEV=eth0 ONBOOT=no S_HOSTNAME=nfs S_FLAGS=fakeinit I havent found any other asking about nfs on the mailing list ? JonB ps: has anyone tried/succeded in getting X to run inside a vserver? From vserver.error@solucorp.qc.ca Fri Mar 15 18:08:16 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2FN8F7Y032339; Fri, 15 Mar 2002 18:08:16 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2FMVvU14714 for vserver.list; Fri, 15 Mar 2002 17:31:57 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2FMVvh14710 for ; Fri, 15 Mar 2002 17:31:57 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16m0Eu-0008Dl-00 for ; Fri, 15 Mar 2002 23:31:56 +0100 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16m0Eu-0008Db-00 for ; Fri, 15 Mar 2002 23:31:56 +0100 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Fri, 15 Mar 2002 23:31:56 +0100 (CET) Received: (qmail 83608 invoked from network); 15 Mar 2002 22:30:41 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 15 Mar 2002 22:30:41 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2FLtAl14120 for vserver.list; Fri, 15 Mar 2002 16:55:10 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2FLt9h14116 for ; Fri, 15 Mar 2002 16:55:10 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16lzfD-0008Cd-00 for ; Fri, 15 Mar 2002 22:55:03 +0100 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16lzfC-0008CO-00 for ; Fri, 15 Mar 2002 22:55:02 +0100 Sender: jon@silicide.dk Message-ID: <3C926DB6.C91981E9@silicide.dk> Date: Fri, 15 Mar 2002 22:55:02 +0100 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] NFS: mount: nfs:/home failed, reason given by server: Permission denied Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 313 but showmount -e works fine. The server i copied the setup from nfs works fine in /var/log/daemon.log i get Mar 15 22:39:00 nfs nfsd[1902]: nfssvc: Operation not permitted on the vserver root 1905 0.0 0.4 1452 604 ? S 22:39 0:00 /usr/sbin/rpc.mou but no process 1902 my /etc/vserver/nfs.conf IPROOT=nfs.silicide.dk IPROOTDEV=eth0 ONBOOT=no S_HOSTNAME=nfs S_FLAGS=fakeinit I havent found any other asking about nfs on the mailing list ? JonB ps: has anyone tried/succeded in getting X to run inside a vserver? From vserver.error@solucorp.qc.ca Sun Mar 17 16:50:01 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2HLo07Y004894; Sun, 17 Mar 2002 16:50:00 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2HKBSM04374 for vserver.list; Sun, 17 Mar 2002 15:11:28 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from priv-edtnes03-hme0.telusplanet.net (fepout1.telus.net [199.185.220.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2HKBSh04369 for ; Sun, 17 Mar 2002 15:11:28 -0500 Received: from iris ([66.183.61.187]) by priv-edtnes03-hme0.telusplanet.net (InterMail vM.5.01.04.01 201-253-122-122-101-20011014) with SMTP id <20020317201128.HLKM25425.priv-edtnes03-hme0.telusplanet.net@iris> for ; Sun, 17 Mar 2002 13:11:28 -0700 Message-ID: <00e501c1cdef$afd22ff0$8a01a8c0@iris> From: "Andy Kwong" To: Subject: [vserver] Rebootmgr and sockets Date: Sun, 17 Mar 2002 12:09:46 -0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 314 Rebootmgr has a problem when it reinitalizes the vserver by calling - /usr/sbin/vserver vservername restart >>/var/log/boot.log 2>&1 In that is the vserver using "fakeinit", the subsequent init process would need the /vservers/vservername/dev/reboot sockets. Normally this is a not a problem when everything is on the same partition, but when individual vservsers are under separate partitions, umount would not be able to unmount partitions when any server has rebooted through the rebootmgr, unless the the offending vserver (the one with the init that has the sockets open) has been restarted on the command line. Any clues on how to fix this? From vserver.error@solucorp.qc.ca Mon Mar 18 21:54:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2J2sl7Y020409; Mon, 18 Mar 2002 21:54:47 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2J1JIx03768 for vserver.list; Mon, 18 Mar 2002 20:19:18 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2J1JIh03764 for ; Mon, 18 Mar 2002 20:19:18 -0500 Received: from remtk.solucorp.qc.ca (g39-209.citenet.net [206.123.39.209]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2J1Qp619892 for ; Mon, 18 Mar 2002 20:26:51 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2IFM8T09330 for vserver@solucorp.qc.ca; Mon, 18 Mar 2002 10:22:08 -0500 From: Jacques Gelinas Date: Mon, 18 Mar 2002 10:22:08 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] v_httpd, v_sshd X-mailer: tlmpmail 0.1 Message-ID: <20020318102208.b9b6a7d256c5@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 315 On Fri, 8 Mar 2002 19:27:13 -0500, John Lyons wrote > > What does v_sshd and v_httpd and v_xinetd do exactly? > These services is also listed in my virtual servers that i setup. Do I > have to enable say v_sshd in my virtual servers in order to use sshd > properly? > > They shouldn't be installed in your virtual servers. Check that you've not > got the vserver rpms installed within your reference server (assuming the > ref server is a vs and not your host) He created his first vserver after he install the vserver package, so they got copied there. They should not be enabled in vserver, only in the root server. > The v_ scripts are used to start services on the parent host server and > bind them to the host servers IP address automatically otherwise they start > up and listen on all IP's thereby breaking those services on the vs's --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Mar 18 21:56:57 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2J2uv7Y020425; Mon, 18 Mar 2002 21:56:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2J1JFG03745 for vserver.list; Mon, 18 Mar 2002 20:19:15 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2J1JEh03741 for ; Mon, 18 Mar 2002 20:19:14 -0500 Received: from remtk.solucorp.qc.ca (g39-209.citenet.net [206.123.39.209]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2J1Ql619880 for ; Mon, 18 Mar 2002 20:26:47 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2IG6LR09537 for vserver@solucorp.qc.ca; Mon, 18 Mar 2002 11:06:21 -0500 From: Jacques Gelinas Date: Mon, 18 Mar 2002 11:06:21 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] rebootmgr function? X-mailer: tlmpmail 0.1 Message-ID: <20020318110621.d1beffed727e@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 316 On Fri, 22 Feb 2002 11:08:03 -0500, klavs klavsen wrote > Hi guys, > > I'm writing the man pages for the different vserver binaries, and I'm at > rebootmgr. > > If I run it from my box, with a valid vserver name it just freezes.. > (how long am I suppose to wait? vserver stop;vserver start > - finished quickly). > > if i run it with a invalid vserver name is says: bind: No such file or > directory. > > What's the purpose of this program? This program is used with the rebootmgr service (/etc/init.d/rebootmgr). This service scan all the available vserver and starts the rebootmgr server with the list. /usr/sbin/rebootmgr creates a unix domain socket in each vserver as /dev/reboot. Each vserver has the /sbin/vreboot and /sbin/vhalt utility. Those utilities open the /dev/reboot socket and send a little messages. rebootmgr interpret the message (halt or reboot) and perform the proper operation on the vserver vserver xx stop vserver xx restart the service should be restarted whenever you add or remove a vserver so it places its socket properly. This rebootmgr may be expanded at some point to allow the vserver some access to specific commands in the root server. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Mar 18 22:05:25 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2J35O7Y020467; Mon, 18 Mar 2002 22:05:24 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2J1JGQ03751 for vserver.list; Mon, 18 Mar 2002 20:19:16 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2J1JFh03747 for ; Mon, 18 Mar 2002 20:19:15 -0500 Received: from remtk.solucorp.qc.ca (g39-209.citenet.net [206.123.39.209]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2J1Qm619886 for ; Mon, 18 Mar 2002 20:26:48 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2IFv6409518 for vserver@solucorp.qc.ca; Mon, 18 Mar 2002 10:57:06 -0500 From: Jacques Gelinas Date: Mon, 18 Mar 2002 10:57:06 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Re: Debian X-mailer: tlmpmail 0.1 Message-ID: <20020318105706.2d549b62eb77@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 317 On Thu, 7 Mar 2002 17:33:46 -0500, wrote > On Thu, 7 Mar 2002, Martin Josefsson wrote: > > > On Wed, 6 Mar 2002 Zardus@nbwrpg.com wrote: > > > > chcontext --ctx 2 --secure bash > > > > run that and then try to create a blockdevice with mknod > > It won't work, just as it's supposed to, tested here on > > 2.4.19-pre1-ac2-ctx8 > > Ok, that doesn't work (mknod: operation not permitted), so I guess its > good. However, when I start it using /usr/sbin/vserver, even though > --secure is default, it doesn't work. I'm using vserver .11, but I didn't > see anything like this in the changelogs for future versions. And iirc, > this worked for me with ctx7 as well. Not sure if it is related. When doing "vserver xx enter", if the vserver is already running, the privileged are not dropped for the newly created shell. This was fixed in 0.13 --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Mar 18 22:07:51 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2J37o7Y020477; Mon, 18 Mar 2002 22:07:50 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2J1JHu03762 for vserver.list; Mon, 18 Mar 2002 20:19:17 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2J1JHh03758 for ; Mon, 18 Mar 2002 20:19:17 -0500 Received: from remtk.solucorp.qc.ca (g39-209.citenet.net [206.123.39.209]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2J1Qo619889 for ; Mon, 18 Mar 2002 20:26:50 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2IFPSj09338 for vserver@solucorp.qc.ca; Mon, 18 Mar 2002 10:25:28 -0500 From: Jacques Gelinas Date: Mon, 18 Mar 2002 10:25:28 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] ext2/ext3 question X-mailer: tlmpmail 0.1 Message-ID: <20020318102528.a3ca73f547e8@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 318 On Wed, 27 Feb 2002 11:13:20 -0500, Mihai RUSU wrote > Hi > > While patching ctx8 against 2.4.17 I have noticed that it does patch some > files in the fs/ext2 and fs/ext3 directories: > patching file linux-2.4.17/fs/ext2/ialloc.c > patching file linux-2.4.17/fs/ext2/inode.c > patching file linux-2.4.17/fs/ext2/ioctl.c > patching file linux-2.4.17/fs/ext3/ialloc.c > patching file linux-2.4.17/fs/ext3/inode.c > patching file linux-2.4.17/fs/ext3/ioctl.c > > What is this for? If I use some other fs I miss some vserver features? This is used for unification. The patch in ext2 and ext3 are used to map the generic immutable-unlink bit to the file system extended attribute. Each file system may encode those generic attribute in a different way. So using vserver on another fs is no problem, unless you are trying to unify (share common binaries between vserver to save disk space) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Mar 19 10:57:54 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2JFvr7Y025848; Tue, 19 Mar 2002 10:57:53 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2JEP1d18860 for vserver.list; Tue, 19 Mar 2002 09:25:01 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from VL-MS-MR002.sc1.videotron.ca (relais.videotron.ca [24.201.245.36]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2JEP1h18856 for ; Tue, 19 Mar 2002 09:25:01 -0500 Received: from canyon.logisoftech.com ([24.203.49.36]) by VL-MS-MR002.sc1.videotron.ca (Netscape Messaging Server 4.15) with ESMTP id GT85DQ02.K43 for ; Tue, 19 Mar 2002 09:25:02 -0500 Date: Tue, 19 Mar 2002 10:08:49 -0500 (EST) From: "Bourque, Guillaume" To: vserver@solucorp.qc.ca Subject: [vserver] Vserver creation with newvserver In-Reply-To: <20020318102208.b9b6a7d256c5@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by dns.solucorp.qc.ca id g2JEP1h18856 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 319 Hi all, As anyone notice that when you run the newvserver utility to build a vserver under Mandrake 8.1 that their is a lot of defunct process during the creation of a vserver. Those processe goes away when the buid is done but I wonder wy the get created ? [root@llubet vservers]# ps -ef | grep defunct | wc -l 701 [root@llubet vservers]# ps -ef ... root 6057 5843 13 11:02 pts/0 00:00:00 [rpmq ] root 6059 5843 4 11:02 pts/0 00:00:00 [rpmq ] root 6060 5843 4 11:02 pts/0 00:00:00 [rpmq ] root 6061 5843 4 11:02 pts/0 00:00:00 [rpmq ] root 6062 5843 9 11:02 pts/0 00:00:00 [rpmq ] root 6063 5843 5 11:02 pts/0 00:00:00 [rpmq ] root 6064 5843 5 11:02 pts/0 00:00:00 [rpmq ] root 6065 5843 8 11:02 pts/0 00:00:00 [rpmq ] root 6066 5843 8 11:02 pts/0 00:00:00 [rpmq ] root 6067 5843 8 11:02 pts/0 00:00:00 [rpmq ] root 6068 5843 8 11:02 pts/0 00:00:00 [rpmq ] root 6069 5843 7 11:02 pts/0 00:00:00 [rpmq ] root 6070 5843 8 11:02 pts/0 00:00:00 [rpmq ] root 6071 5843 8 11:02 pts/0 00:00:00 [rpmq ] root 6072 5843 16 11:02 pts/0 00:00:00 [rpmq ] root 6073 5843 18 11:02 pts/0 00:00:00 [rpmq ] root 6074 5843 16 11:02 pts/0 00:00:00 [rpmq ] root 6075 5843 17 11:02 pts/0 00:00:00 [rpmq ] root 6076 5843 16 11:02 pts/0 00:00:00 [rpmq ] root 6077 5843 16 11:02 pts/0 00:00:00 [rpmq ] root 6078 5843 0 11:02 pts/0 00:00:00 [rpmq ] root 6079 5887 0 11:02 pts/2 00:00:00 ps -ef root 6080 5843 0 11:02 pts/0 00:00:00 /usr/lib/rpm/rpmq -q--list --du ... -- --------------------- La qualité avant tout ! ---------------------- Guillaume Bourque Conseiller technologique LogiSoft Technologies inc. Tél. (514) 576-7638 Fax: (450) 649-6134 -------------------- http://www.logisoftech.com -------------------- From vserver.error@solucorp.qc.ca Wed Mar 20 10:24:13 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2KFOC7Y011839; Wed, 20 Mar 2002 10:24:12 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2KExUR17313 for vserver.list; Wed, 20 Mar 2002 09:59:30 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2KExTh17309 for ; Wed, 20 Mar 2002 09:59:30 -0500 Received: from remtk.solucorp.qc.ca (g39-98.citenet.net [206.123.39.98]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2KF7I643328 for ; Wed, 20 Mar 2002 10:07:18 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2K4hJQ09178 for vserver@solucorp.qc.ca; Tue, 19 Mar 2002 23:43:19 -0500 From: Jacques Gelinas Date: Tue, 19 Mar 2002 23:43:19 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Vserver creation with newvserver X-mailer: tlmpmail 0.1 Message-ID: <20020319234319.bc0137f0ccd4@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 320 On Tue, 19 Mar 2002 10:08:49 -0500, Bourque, Guillaume wrote > Hi all, > > As anyone notice that when you run the newvserver utility to build a > vserver under Mandrake 8.1 that their is a lot of defunct process during > the creation of a vserver. Those processe goes away when the buid is done > but I wonder wy the get created ? rpm is called several time to extract data about package. The defunct process means the utility (vbuild) is not "waiting" to pick the process return code. When vbuild ends, all process are reparent to init and then they go away. I will investigate things. vbuild is using a ipfstream object. I am probably "miss using" this object. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Mar 20 11:55:53 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2KGto7Y012481; Wed, 20 Mar 2002 11:55:52 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2KGWCf19668 for vserver.list; Wed, 20 Mar 2002 11:32:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2KGWCh19664 for ; Wed, 20 Mar 2002 11:32:12 -0500 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g2KGXIp13386 for ; Wed, 20 Mar 2002 08:33:18 -0800 X-Authentication-Warning: main.cyber-office.net: raanders owned process doing -bs Date: Wed, 20 Mar 2002 08:33:18 -0800 (PST) From: X-X-Sender: To: Subject: [vserver] Sendmail on vserver Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=1.2 required=5.0 tests=NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 321 I'm having a problem with sendmail on a vserver. When I send mail to the domain I keep getting refused connections. It looks to me like I have an ipchain issue in the main server but I'm not up enough on ipchains and how vserver handles the IP aliases for vservers. Could some one that has sendmail accepting e-mail in a vserver send me a copy of their /etc/sysconfig/ipchains file? I hesitate to just disable ipchains to see if that is the problem because I've been hit a lot lately. Or an good slap up along the side of the virtual head if I'm missing something really obvious. TIA, Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Wed Mar 20 13:15:14 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2KIFC7Y013227; Wed, 20 Mar 2002 13:15:13 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2KHQNm20838 for vserver.list; Wed, 20 Mar 2002 12:26:23 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2KHQNh20834 for ; Wed, 20 Mar 2002 12:26:23 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id F2BB3108C for ; Wed, 20 Mar 2002 18:26:16 +0100 (CET) Subject: Re: [vserver] Sendmail on vserver From: klavs klavsen To: Vserver Mailinglist In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-bdrx9yiSVS8RbLEXC/ZQ" X-Mailer: Evolution/1.0.2 Date: 20 Mar 2002 18:26:16 +0100 Message-Id: <1016645176.2022.7.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 322 --=-bdrx9yiSVS8RbLEXC/ZQ Content-Type: text/plain Content-Transfer-Encoding: quoted-printable This is not really an appropriate discussion for the vserver list, but here goes :-) On Wed, 2002-03-20 at 17:33, raanders@acm.org wrote: > I'm having a problem with sendmail on a vserver. When I send mail to the= =20 > domain I keep getting refused connections. It looks to me like I have an= =20 > ipchain issue in the main server but I'm not up enough on ipchains and ho= w=20 > vserver handles the IP aliases for vservers. if so, and you have set --log I believe it is on all your -j DENY lines and end the chains with a DENY policy with a log all rule, you should see the packets where your /etc/syslogd.conf logs kern.* (usually /var/log/messages..) you can do "grep -irl kernel /var/log/*" to see which file kernel logs to. =20 > Could some one that has sendmail accepting e-mail in a vserver send me a > copy of their /etc/sysconfig/ipchains file? I hesitate to just disable=20 > ipchains to see if that is the problem because I've been hit a lot lately= .=20 ipchains should not be your only defence - it shouldn't matter wether or not you disable ipchains shortly.. clean up your netstat -nta and netstat -nua output so no process listens, that you can't actually trust. you should consider running portsentry also. If someone portscans you, it will DENY them access to everything including otherwise allowed services on the server. =20 > Or an good slap up along the side of the virtual head if I'm missing=20 > something really obvious. most likely your sendmail is configured wrong.. try doing telnet to your mailserver and see if you can send mail that way.. if you the banner from the mailserver it's probably not an ipchains problem. btw. you should consider changing to something like postfix - it's more secure and it's a lot easier to setup as it uses a human readable configuration file (i know sendmail has it's m4 assimilite config - but's it not really that great if you ask me :-) =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-bdrx9yiSVS8RbLEXC/ZQ Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8mMY44c1kHlhtW8oRAte0AKCuwfYJ+UhK7kk5XKw5r0Vf0jkatgCfb7wp PuwEYV9cekK+fmqDK5e6Zf0= =tn9c -----END PGP SIGNATURE----- --=-bdrx9yiSVS8RbLEXC/ZQ-- From vserver.error@solucorp.qc.ca Wed Mar 20 16:43:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2KLhd7Y015162; Wed, 20 Mar 2002 16:43:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2KLIZc25908 for vserver.list; Wed, 20 Mar 2002 16:18:35 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2KLIZh25904 for ; Wed, 20 Mar 2002 16:18:35 -0500 Received: from remtk.solucorp.qc.ca (g39-184.citenet.net [206.123.39.184]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2KLQQ679206 for ; Wed, 20 Mar 2002 16:26:26 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2KKn0401710 for vserver@dns.solucorp.qc.ca; Wed, 20 Mar 2002 15:49:00 -0500 From: Jacques Gelinas Date: Wed, 20 Mar 2002 15:49:00 -0500 To: Vserver mailing list Subject: [vserver] vserver 0.14 and kernel 2.4.18ctx-9 changelog X-mailer: tlmpmail 0.1 Message-ID: <20020320154900.9bb8079b775a@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 323 vserver 0.14 Change log 1. Enhancements 1.1. chbind: broadcast address chbind accepts the --bcast option. It is supporting the new set_ipv4root which requires an IP number and a broadcast address. If you only specify the --ip option with a device, the broadcast address of the device is used. This is used namely in the /etc/init.d/v_xxxx services. /usr/sbin/chbind --ip eth0 /bin/sh the new chbind works on older kernel. The broadcast address is simply ignored. 1.2. kernel 2.4.18ctx-9: set_ipv4root changed This new kernel enhances set_ipv4root a bit. This is not the multi-ip support yet though. This kernel allows application relying on broadcast to work in vservers. The trick is to assigned both an IP number and a broadcast address to a vserver. The socket handling for UDP was modified a little (one line in net/ipv4/udp.c) so an incoming packet is processed if it matched the vserver IP or the vserver broadcast address. There is no configuration changed to take advantage of that. You need the new kernel and vserver-0.14. Stuff like samba (which was already working in most cases) are now working completely. Even dhcpd works inside a vserver (see the FAQ though). So the set_ipv4root was changed, but the kernel sports a syscall versioning system and vserver-0.14 supports it. So vserver-0.14 works with any "ctx" kernel. The new kernel works also with older vserver utilities except the vserver broadcast address will be improperly assigned. 1.3. vfiles: new utility The vfiles utility is used to extract the list of non-unifiable files in a vserver. The utility works like this /usr/sbin/vfiles reference-server server Using the output of this command, one may archive only the relevant part of a vserver. You can use this to move a vserver from one server to another. Only move few megs. On the target server, use vunify to fill the missing files. You must have a identical reference server on the target server though. Anyway, this is general purpose. Life may tell us if this is really useful :-) 1.4. vps reworked vps was reworked a little. The previous version was not working on some distro. Test it out. 1.5. vserver configuration file There are two new optional entries in /etc/vservers/*.conf: + IPROOTMASK: This is the netmask used to configure the IP alias. By default, it uses the netmask of the IPROOTDEV device. + IPROOTBCAST: This is the broadcast address used to configure the IP alias. Again, it uses the IPROOTDEV device settings by default. You generally do not need to assign those fields. Just upgrading to vserver 0.14 and restarting your vserver and the IP alias will be configure. This was an issue for some service (as seen on the mailing list). Prior version were always setting the netmask to 255.255.255.255. 1.6. vserver-stat and dynamic system calls The utility was using fixed system call numbers unlike the other vserver utilities. Fixed! 1.7. v_xxxx services enhancements /etc/init.d/v_sendmail was added to the list. By default each v_xxxx service perform a chbind on the main eth0 address. For each service, you can setup a file called /etc/vservices/service.conf (one per service). In that file, you can specify a different IP or device. IP=x.y.z.w The extra configuration file is optional. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Mar 20 17:22:10 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2KMM97Y015514; Wed, 20 Mar 2002 17:22:10 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2KM0Nk27177 for vserver.list; Wed, 20 Mar 2002 17:00:23 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.catv.telemach.ro ([212.146.66.245]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2KM0Mh27173 for ; Wed, 20 Mar 2002 17:00:22 -0500 Received: from 127.0.0.1 (localhost.localdomain [127.0.0.1]) by dummy.domain.name (Postfix) with SMTP id 2519917D1D for ; Thu, 21 Mar 2002 00:00:22 +0200 (EET) Received: from catv.telemach.ro (mach2 [212.146.66.245]) by mail.catv.telemach.ro (Postfix) with ESMTP id 8A0DC17D17 for ; Thu, 21 Mar 2002 00:00:21 +0200 (EET) Message-ID: <3C990675.2000206@catv.telemach.ro> Date: Thu, 21 Mar 2002 00:00:21 +0200 From: Razvan Cosma User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.6) Gecko/20011210 X-Accept-Language: en-us MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] sample config file Content-Type: text/plain; charset=ISO-8859-2; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 324 Hello, I have searched the archive and read the docs, but I can't seem to find something very important: what is a vserver.conf file structure? I can not use linuxconf since it does't have support for suse 7.3 an even more, I do not want newserver to create it for me since I have a lot of files spread around my system and I only need a few libs and three files in /etc to get eg. proftpd working. Any hints please? Thank you. From vserver.error@solucorp.qc.ca Wed Mar 20 18:51:05 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2KNp47Y016368; Wed, 20 Mar 2002 18:51:04 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2KNYhh28992 for vserver.list; Wed, 20 Mar 2002 18:34:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2KNYhh28988 for ; Wed, 20 Mar 2002 18:34:43 -0500 Received: from host213-122-2-221.in-addr.btopenworld.com ([213.122.2.221] helo=john-new) by gadolinium.btinternet.com with esmtp (Exim 3.22 #8) id 16npbJ-000179-00 for vserver@solucorp.qc.ca; Wed, 20 Mar 2002 23:34:37 +0000 Received: from 213.122.2.221 by john-new ([213.122.2.221] running VPOP3) with SMTP for ; Wed, 20 Mar 2002 23:34:23 -0000 From: "John Lyons" To: Subject: RE: [vserver] sample config file Date: Wed, 20 Mar 2002 23:34:18 -0000 Message-ID: <009601c1d067$c3e554c0$cf167ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-2" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: <3C990675.2000206@catv.telemach.ro> X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 325 > I have searched the archive and read the docs, but I can't > seem to find > something very important: what is a vserver.conf file > structure? They'll be created when you build a new vserver. This doesn't include the two new settings for the current version. S_CONTEXT=5 IPROOT=123.123.123.123 IPROOTDEV=eth0 ONBOOT=yes S_HOSTNAME=svr5 S_DOMAINNAME=svr5.domain.com S_NICE= S_FLAGS="lock nproc" ULIMIT="-H -u 100" S_CAPS="CAP_NET_RAW CAP_SYS_RESOURCE" Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Thu Mar 21 04:59:27 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2L9xQ7Y021139; Thu, 21 Mar 2002 04:59:26 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2L837O08189 for vserver.list; Thu, 21 Mar 2002 03:03:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2L835h08185 for ; Thu, 21 Mar 2002 03:03:05 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id C007F108C for ; Thu, 21 Mar 2002 09:03:04 +0100 (CET) Subject: [vserver] Updated Manual Pages From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-0AkUrZQCWVfwokKhMogY" X-Mailer: Evolution/1.0.2 Date: 21 Mar 2002 09:03:04 +0100 Message-Id: <1016697784.2028.16.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 326 --=-0AkUrZQCWVfwokKhMogY Content-Type: multipart/mixed; boundary="=-fLDTFGDgGtn2vlmDRwOk" --=-fLDTFGDgGtn2vlmDRwOk Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I updated the new manual pages. ChangeLog: - Added manual page for the new vfiles utility. Please add some good examples to show it's usage if you can think of some :-) I took a look at the sourcecode and added a few comments as to what I could see it actually did, under "Description". - Updated all the other manual pages to say version 0.14, so they follow the vserver utilities version numbers, and added the vfiles(8) under "See Also". If version 0.15 is released and there are no new changes to the utilities, please upgrade the version numbers so the man pages seems current :-) Are we missing (8) manpages for anything now? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=chbind.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWfwcGo8AAKXfgAAQUefkV/9v326////gUANdZDU1tWRUJRNJoU8TCKek3o1Go8ak afqmJpibR6k8oNoJRDUwTUyZU9PQU9R6jIAAGQaDQ0HMAmAmRgBGJiYTCYIaYmmAlNEECJtT1T2q D0T9UD1A9QZNNDQA9QHMAmAmRgBGJiYTCYIaYmmCVsH6Qz5SIiJ2w51V3wMZKhvqkmYtNASBLZ1z YmrHN41ReBw4/1N+iyjIeZIrR78RqLYkqqdJUvBzlkIFYddIK3rZ0uzM/kpXH6VtTT3ajlOTqvmr aSNy6lWE738Qm11MqQ2Z1TvC1i6BOOTrh92RgowoKrDiM0M3JCS3kbP+jxU9Ojyjwpw59qCYXGS2 tlc1nLFMINMp+0QKItDxjV9UEL4K8dP7dVJFXQMXS/5ruz5GH4MOZu0Q22UhRn+nLgP5iGzXPi+9 Li+J1+L8TzgMBKSkvowwdrwm0PVZFMum1A3I/CC78kY/wnrQpRQiBrHSslKt9Yz25IwxAvfYqS++ Q7YUSySt5YY5Ps7p3XuA32BwTHq7uzYqba0UeqUIa7RLwZ+zd7VdHfGItHdO8brc/ZxoNOjWlmAW 5ihmxqzXcZi/jo/t1+VmlvbbYl7xtt9gLc2o8fCIa4oPog1YvcuWtV1sYLMRuUnd2QZC4oOOek1k ZxJbtmJsUwVDmUIdcY7lSC1i7WV/ypeUNLo59VINB6kM+Oes5DFrKJwTjeSxnxsscuUXTMkDRCPc ARiQYsnYzMlrFXxkkyUJDKyJarz7ioDNAgL0QyntMdM0ukNA2DrxjXoB4y4bOxFVGQ1g5DjMOIUZ 2RZcrJXEXDivnMw6y7VJ3mniD7uJ5VSU6SwYZwspZPk+OZGKJBTTHbBK3FEeoPcURChDjhDMmSa+ JQwifFSKJlM8LKghSnvTIva3rdjDMEg2jziXddZNhclk7RCDv1g0lTmpj2NGiZtasBGcWMNLR0fS vbRDwlr+h2gKp31DBXNfwWY/RHXCWhy1m0FQ22wi7ZMIDnGA6h2vWxynFiI8fWWIzYrCpeoY85cO zVHVQkI9vxvqWjw34trjCK4I9DziJQKqZ7J1rKexJxpInQ1sxI5t1pZbXCTFyqk7xrxVJcU1PKS5 tW2FKImHDBYOTTXvugWLUa2dcHMQ/w8LnTMr82v07SWVeH/F3JFOFCQ/BwajwA== --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=chcontext.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWamS8DMAAZPfgANQeefkV/9v3+6////kYAau+uoOHV0Lmpu2lNDQ0hJTQQmJPI00 1PRNJtNQNAAHpDNQ0yADU9CGRCNNU/VD1DTQ9Q0AAAAAA0OaZGQyYIaMJgjTRoxA0yZGAAIJCiaU 2mkZTZEG1A0HpBoxAGg0AGg5pkZDJghowmCNNGjEDTJkYAAgkSBMkZCU8yJpPTQhoxDTQ0NNA0aN NPUgBwO1xkZ83TafXtj3QCSLxyaEuyiwjUwm2Txh1QjvPDogsx0cGFtljloUm290dbmIswmUiXK7 QjQDQGe5KrCQZbjzA2Ded8jgQQj4dDWnspUz7WvHTn6cDwN2CtMXDrO4auxZGt/jmg67RazpkSAj gRNc9P0omZhCek6hU+zhmYyVMwxCJYM4XWy7RX6F362VK5ZBjyowYZMHCN/eWY/466K0LCtIY6ol A9OWUxM7Uheiq1aFDJwabAjrlFruW+lwaXNZvoTHv03z4Us4Y46YIZQCDxhXhXoY1tVubEqjlfN8 A6YON8QhdcxqElzzXVNSLMmeASlx1NqDZTWoTTbOsrUvuKBwL1c5AwZkyNG/qT2pXZg9lk1rJKr1 vbel6WySlUpTdsIQhhPYkDIRHFkQXnnjEanMtGIdfZu4Vasvs58iF0JJ0Yklddhe5n59c1HtWZyT 4ydreacRseR9Mu4EDieLNTloKeXM+2YYMMrPHQUM+7QCW15xE1+3xy2EyVpWc+IfyCUy5rHFMjiF 1/B69G9kmZvNh8RFVmHevnCMfXjIhqJeBXdRZ97pF6Bm37X6bR7TyuntPuqSAzM+b+JHp3012xBd mWneEfvNg/R7y3I/8xOq3ITfOIV3IzIHIZ+iamGUtZBhB5Vpu0NRBtfiA00JMu2EXp7ughBUKjWr S5ojqM48e2A/oaGhjPggNmAj6/vz8w/D6JxFDk0qy4zbEuK8XJeZ/r8qo/Uj9cnwD4WKjRWeErHy so06MGmmfhG3bBQRlSRMpv0sVKT7omSTLyuw8k9oZqoNA16hcEs4MOhubO78xV8U6JdeTIDsH38g pjo4zSvayyREe6XzOZqzNGWeZL56CqwNUDGz0Mg40nIady6ivWcWWICjDD1yJtjA1OAyASCDyZWC 1321Fbz2Gd8Ix5w2lRvUdDJfRNp8WicoIFtUDGSpO944Q8pMQeOVVAZMUni42UcUisVFiTyZqZk5 E47RmuclcihpqgPEsWznLbEG3WRIXbHkEwENx1rY1nUgPB8AswZEGCPmEkOZmTCVO4c2GtMCKmxq Av4ZWjPLmFDyXslYKCOSwAifUXIX6ALmrM2Qupl2G+A7G2DbtPs37JLrrq7Rp0G/N2hKtCiRzNMa bSiyRcFCKrTbGcsTM/olTsIanExEeX1y1irtFQsT1UpK50yW4oaXSYfgeNDlyXDIoIju4WNENtMY NtYviRDYzqY8OGJcokoNjUenmbHgbhLhbxeVHr1yjTTGcjnCR3B4Diee5JZkBgjpJoMxjGNHU8BR lrU0OinBFHVmTspdspK5HETgLKwUzhjKFOxp27KqWThyYq6YQoWijmx1YN0INQaJyk04JJZ67Gxu kytGhtENskRTItOBGVEFahHFquQW97s53rMgkgQ5hWhQwHr++ClrUW5wZJzQyEOHHsepJtIFehwp 9LH7eovckje0Bc726qOTpjLfpPYU7Q48G31HrnrfXaXXOcelPPLhIC1DnWsjK3TimUqhv/7vhzTA 9LPkNwt3l3qTA8z4IGiKE9J6EeictTMs/j5sKRenAt5LiWJhsEQQhcVcxPdbMkdZUNmBeeLFHvbu SUVCGxzDFX9NiS1qpyIjDRSGaX3x6sxvAO8zbT8qqJQScCtVaBNk2bID15RxYVQbAHwcqePAeCoa brekk9wwXJnS1up4tFYnGHSp0Dhm6nPN4zoTrS05Dnjsnd2aKMIyzw/sZNhW+xpVnxuIoULAIsap CzZ0MCSayrvB5OC2AqLja0pmRigpexZtylYWCikFaqOPMn66yeoKNUJFIYPsqINgSveFVB25eExz uMKMjdBUXBRib7WbA7iOTm7JdrUJZMbJa7kXXIiwhFRD1oExLTpYvsHMp4uNTl/xdyRThQkKmS8D MA== --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=rebootmgr.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWTc5LjUAAIzfgAAQUefkV/9v326////gQAL9a1KaaaqhojSZU/U09RiaENqZNog9 TQ0Mg9T0j1MjQajIT1PUwqYNNIyaNNAAAAAGQ5gEwEyMAIxMTCYTBDTE0wEpoggSY0CBpGj0mjTI MmgNBhBK2DvQz+mREaVdV+zmhm0pploNYeYEgSfGzuMtk3qm23jvL7muXYq/ZTfnEoQOBwNyn4ES t/MhxaolW/kw4NeDnWl08yArX3NEqPjY60SfJERX4jGjCVlRYawaE8nwNDI0NwDjwKY455No2GNt HxeqfVRSQKqMQytXMtJJ53jEUR3DGSfDOcsPR5+cGH3Wqg+9/fXnuwH5LbfCW3q7x3axf5V+IIaJ b5Qw4eAXjDKc1yxNIyaZ4l6LGWCuILADxcXH4gg+F/FFBWI9+9wsH2aXTRfveqS7bjOxlEDkzFW5 ZHdGvVoRhnAvfMqS/WgcwKaErcYb8nYcwlVktOpOkd9N3yU0Z8YC8/u/UKHAvMo9dxFg1w3+CMJ4 dGBJ2y0axjxmvKy3qros6wxtobLxKkONZ5PVZKUWlswtSh3HEGQSNtlVWdNWbIXps9HaUfetdKJu W0YlOvW2qyAyKd0oGNZVGCpbOmRININYQDc6Bh3kQgvPe1DopX6g1QpGOEaYOOMzGyuBoytwKOlD WRB4Rjl382JOyWzU98zPsDdSejIVIDcP/rx6ZNcMrXM0trm4mEslGZ2wZOICUUdphz23kRRtbIuN bZSa0kYFYSF/EwqK9y5oRDliZ1A+wUhkJlLCbwCKeKkUQpnKUHUzmwt7XbIbDW84lwOtJ1rC9LU4 8JByMWBi10Fowfbmwrvvkrg8hKkY1YzWOpWR0COk84UrgbWpsqZyk+JU6C74zem+9oRz6GPVdlpj C1wzSHczVjVdqDZbyJUoOugc4JYwCm7gLE0EoIO+NpXNjDLfwEsJhHS8oh6ZweydaynmScJIoXs0 beOxsGJtVY3XNaQfZFor4WGapbK5yqyc3ZXnjwZ6nVSmGG3MQvAawWkSc5EwsNjYcupaanV/xdyR ThQkDc5LjUA= --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=reducecap.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWangDvkAANRfgAAQWefkV//v3+6////gUAS3bdhbBtJhpjW3hKE0QATCGiZNKbRl G1NP1TPUQNPKep6nqAJRMgIJ6VPRNoJo0aAAAyMmg9TTIEpohANVPZTU/UQ0HqBo0AyDIA9QaBE0 U0HpNA0ZDAgNBpiaaAyaaYgDmBMTQYTJkyZGEwTTTIxMAQwKu5h1bQh2Em66CqJHZUZmXNZ+uet9 4rJE6On+tRRQ4OkAiQaQARABGRAnn8Ji9S4Av6qICnh5Qbn6vExc4wmqHeiHRYBwMLk9hNkowd2T J6p5kJjtUhxc86l38s98krWyryTYqngsO4aLy3oVw69U3q4zqZxheWaY99o1Hsp+J0kODnVkZWqc 7t48ZiS0REzF3iyvLiSaTjWFNkXuKWimquEJzAtQe23DJb7KIv9Tipx8eOPS/pw96CeCIdNJy/Zv HpfZk9ghhnHSmfzEPc1CoS7L0AmUPS8mur54xMOXY6OetRIqR+KP5Tfn3Hx/V0Xwbg/6CG0yiFu3 56f2Rj4HOXPid/qd9Hb9v8IIji40FU0/kp1JidUQEmYK04y51adZefLOiVjUoRFc4Jp9mG/3Y4um jKTrlQ6GcpJkiDY6F3a5fXQBc1U15Ufbz57T7Rx1npj9YkSezBbnofBSim2WeLKvsQNu522kYLCu rVHctu5nJwiuTf1GcXdnjpZHNc5V3eNhU8NG22IaIoNConsZoPkgia8yCURNJMXatV1FS4rjMxRR ipgu0DGUpRRDNEKQmfO6wvtqmg1Og6K0MFCoMiGlOy+ud8aIkEYZ7LgSmKZqp4h77Q9PXl3Hdz+O y20VWbewe1UN6kgSccmnXYJMM5focmdWaNxyRTn+1Dp4Lju4SmH0ow4gY9sg3bfppJ8apiqQJXCn NRFRLh85tOPYv93hTllQZAkzbmt1ZoawZ3kid3q2ki/zPbXDC8mLpDMxeAU3nU8soJM2021168lD OmqghUXDxLwTXOIyk7N8Kw0jR34JwJe2DomrM/ymS0kiQF2VKJaIZz9lHGvAgxoys9xSbX5JkI72 SpC2QmEzQruNDqrNZXgWDJ+4JZOOL8Bs0v8Ip2uRFSrhtFgryxWRU+rLUb5iHBX70VEFHaBCSbPC nXynCg7SmJQt/UayGSb0SlKWE3HBSbXGSfSmAPt5QLaAbBkFD3GRo+C6lz/Iy+gTGf3Mk4WMCUi8 GNHSuUdcNFeaIvHDW4nmYYcDymxeZP2YbyTyhwdyjDsI8MmdiFZ1IR5JFWiqMQOOlib1Tpgl6iLR GoyiaUMLrtlrbF0ZQwmDbdlsS2am1y4Irz8iq6RJMV66EyZNaa1Sum+AJhR+DF0v2cKMB4TDDl4j JU2Q4RmSOU3WSNBannMIHNCjXN+1o95wwVEOMoE3vkQ43SvRCKNIjaOhJSHa85EFMo5WIUXqhApx aOoVr6TIhcpJNQWU5yMrXL0cKvLWa/Qs+9zbrZ104pdqWlGwbWFWK7KO9LJUf0TjDDfoOqSnNW3Y qqWMkEmEiUzOGMhN204lo2gUjcq2rR0JqkWnsROvlDhl13Myo6UObDH2knIxtPhqaRPYT1gcP8PC mxuTsyBCZ7toa6VWxhQssSNC+Yu5IpwoSFTwB3yA --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=vfiles.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWUzMN1IAAK/fgAAQcefkV/9v326////gUAOe7q5tk5q2061wlCCGhTZNGhT0n6ps Immn6kxD1Gg0B6agamJNqYJGFGjTQAA9QANGh6gNA1U/0RqntJPVPKPKDQ0AAAAGmJoAOaYmTJow mCYmmATAIYIwIwCU0gE0p6JpP1TeijR6nqGgDQNAA0DRLDqi/VMB85kIQV1WSRzuzoaJzkUwUN4J AJerr8cw3s38wFYj7pqyQRcygL5ON7UzhR9ZGP3p97YI47DTQcnmxvu36WoKS07ivZERsTB7xpqN 75Ja1WWwxVUm+gR1ScLaIznAExJSavDRUNJHuRGnZScb0WrVJxKCoiUTaHASEwRBTQUih4TOPIhn 0bM7335uBgZfmzcblc09l75ykSKhPFVd+REn/k8YXwbWrd3YiBsuKLNnf98ONRL7SPh28DHW74iG TWGX0d+fEf2EerfT2v6YdZ13TXtr42yhGCgCoPkQeC3qMRbsYQB7KRDpaxVzrRw3ldSHSrAxAgDs xwm0KQ9nthdSQnYAJGpKtGFoMOkS3KzSyuQyexV8QwTfvkn7PLGG35i2j60Tdx6p1mj9YwdNg9jg py8HuRiXhd58EglTGIUvorIe+FAWxF5eU3Q+EcqMJlzcpDFJQj9JrU5wlAyIERE7MJGBMbqo6ueR krES02TKtpmTMjaUCDXegBbAjFykyMM7EeEEYCuUTyoL4vNFTGAkQCV8iaBkmqE2OCGMgNSKuPlY pc1346I1nyBpawUDUOJISQcxDHRVNKXDPLaZW5EpM+hXIJijDxyDlRy7M1dzzKTwU423E4jEwUs0 dxtDZRi9TQ/1iyZUKYwtvfCQTMRoFLL1tHNBtOnQrS5zkF26oQnNdlzhkegw+phnEhmVcKKEqLJb 3orjEiiHoDahAXtRGhAZgIIKByziXZDRov3LeKrTVpiXEG5dOo2WbTOjstuMs6jTMD0ml4wLoTwH p3c3C8XCo1C5o2yenpHapn83m24q3h2sXTNuTGgiUFk1dBQR0IqUCZLs8qJLwM/FN8KgDj8JDkRE P7AfRx4j0Vlkjva9TlKZsbKAMQeIgoUQCXcouMhVNDLLGyFail+ophVdq7APtph1vF7YGBFTwpDZ ImAXN9YMRjUKjxY5MS0UqpKJGFbBSE+31bUfzld9lihqOi9KHhR0rovGLLQIoDoL16XkRiVDrHYg mjwcwQ9ItiVfkvm6BXImsIBer/F3JFOFCQTMw3Ug --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=vps.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWZ1W2p4AAHJfgAAQUefkV+9v326////gQAI7MItgEqGhASeI0nlPSDTCB6g00Maj IZAJQgBCNJtFP0ieoDQaAyB6gGnkQanopB6gBoGhoAAAAGgaAcwmATACYTCaYAABMmmgY5kUASEB QulsVgJAN0MEQWACQCfQ2wCzB+hZ3yJOR42jhwq8LceIzs6i1Lr4VrJ1ovcPFFbUV7Xl0S6V62W+ 18x9IqXVFBfuOw7uwOv69my7pp07ehBOnN3ClFspwYXQyCiFzj3U9vG3ryCg3UEF6rtsm334sXpJ bn8Ds5E7xRPeVJXTwEyjsfTHc3MmXYmw1OEAgKtbC5I3rNFlQGtTbXr2ywDdMcxeWKnfE7PcmGm+ sloAkZDOyB3xgGOH4GLivorI7daRLHGLN0Y9Lo1V2oWxOLYvpu96nrzBPCHtpxhy4Ec4wxhsOMlh C0XZXLRam6MYaLDUZGVBypydk8x1c02Xc3mm8rMYVS0a5nclYmK3l9UbRtb6BfVUtrvmlK61ZEPS TW/txfriQHHOWZ6d2Th+tpLTmFlxKUVWP0H6GSiyAWQsqrJ0a1qITNlpm1RqhU+EWpYoQqEUmEo4 4VAjUI5MqSrHSWrLKEF4Ca3S8Hyu/hTPS++sJG3Mhk0y3LZQN6Kioql12/ajhfJsZk9BGYuhXYom ulsW22R40U5PGFcMmpXSYzvxJSOGD7CYyDUtruP6nfuMNFO/SWlF73NlgOWEYuTTBJgkCBTmfjKM ydDntZxUnv6NvPgsNWnfApcjdSKdcmMA7xoLLwsCx3JXQXixOrL/i7kinChITqttTwA= --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=vpstree.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWTHLR0QAAHJfgAAQUefkV+9v326////gQAI9mEUGEqGggibIyaT1GjTCB6Q00Gah oaNA00gAU0yaNU/RJ6gPUABoaeoBp+kg5hMAmAEwmE0wAACZNNAwlT1KGhoAAAAAAADQA0WZsAB1 omqcorjBIFdGEIrgkCXo2vFl5/2zvtEAGg3c+c2gU00CszqDMVs6c4Mo9rAjVwE+1oq8VhY0NqWi GxeRUEFD9hTV3dYHx7OvdXlTll1IE5Z3aYotlDaXQlFDZXHsp6YW9WUUG6chdq7K72+/HyeUtmju OvjTSKJrqpcNH4JmHZOiS1udM21Np6uEAgVbGFqSPWaq6gNim2PX8XIDdcl4urFTPjdotSmi+suT gSsimZB3vgGOH4GLjvorK7dj0yLHnLndk1ukVisQsjcWR/Td71PXnCLid7JaO6cw/N7r3bhpAudR 7NtTIzG973XUVCZKilCCGFUI6LtLSb8NkVAO9QB5INE4hQSKPnmO5JvF5sLTRbsl+gFplKY2ikp4 lUQecRNu29uLw4MHAUVquFKDaGQXHgFlpcJ6q36jgGWeuAsiZViJka1qIXm1xu7JpFHxBYUYFLAr Cf6Va0sAhhEmtGJsJkyxUg5gXS92YbCv7Es9bbTdAZZh21YinTdIDiAUKE1rxyRgPi3KqeYPiCiC 4svRMZUvXKiNC9GIowWMM7XiEBz1NoEvgBgZ10/MbbxquRBL/axSD2tYu3UGFz3sTW5IgI4OEtjb 4PiAkZDhSjBMR49WXDUXYa+LhKqKPUxGyG2SD42EodhoJyqx2USBOGWh/F3JFOFCQMctHRA= --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=vrpm.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWdYRFGEAAJzfgAAQWef0V/9v326////kQALbGLS7sy7cNEET0TKflTxT00NT1PUH lNA/VAxBoeoNAGppo0hplNG1DUDQBoGRoDCDRpppoJTRCmp4ptU0w9QaAAAAAAAASiBJtJ6p5R+o j1BiaAADIA0ADIubjjwk/U9D1Q10xOs5YaMJOmm5G75IYwGwCQCL+szII85YmPdqVpYm6QKT+06U nE8mSu4NDJokM/5QD14/iASKOK3yGICQO4Im7UQqPSTQziZQjMAIGSjtWpipQMSt0WrpIQcozatR veSm7W3Q5EeTw+9ZlAy+3DmqxN6bLyBXgT1N25EnRSlS14tEgIKkDEV4AiiqitgkUnHc9xEAiOcR ulH72b+13mzufpWRyoLKrvBCWYnNm+wm4L+Tt4o8FDlvVdgnQPZcJvWAGBnagaYRCYYNdfoMxAGS 3wnqg4MzReBAlC2k+FNJyvXFim2AHrqJGfdYXTXkmXRWYzGQ3qn11Ucr8lioGnubARqxrEkd9qoP itIZHFXM6MZa2jwJsQJ7Wfvn/W0hezQ6674FdgN4Dw7YtIUOFhAiJVlI4GzNSt4iygzINvmalItk lg5pMlHaED2kXTQdk3F+uWY8Vine7M1NNMxLDNRU0iUl3hJzA7F+M5jRRFjOmjTvq0EhzM/JzrWB Q4bBLB4YCTXJoleoIHBkpVisRjlKpAsDQHCiDKjOaRaKP4C+nMyRBWRBWesHTEIhMH/LyLtDJ7pF LGesd3VYiCHEOoB0Q/08Sdqioz8OcleV2JXJ0oaZkY0zKbIpVa3lS5saXIcsrhbUUCBeZEu544iU ty+1RVUVMClagMwkH3Bg8dYXVnAojUIvi4Gii0j9UYgjRlqpnk8gVqt8JZefiIwE6rAx0hAJqlci /g88VmFddMkjZutrhuA2uQgyq+xAlyoDISlTqQRgwVvSkPJ4wxC1TuLcVmGVteNw5KY1AmxPXbA8 lToROyWsGgeiPUxqgr4yE7ZhMkQvP/F3JFOFCQ1hEUYQ --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=vserver-stat.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWTxn7vQAAJt/gEzwBABZ5+RX72//dL////BAAny0qYo3DSAhpMp5I8UxHknqZqGh 5QPUeoAzU/VGQA1NNJhNTaaKb1EYgAAGgaHpNAGjT1AcNNMjEYTTAQwCaYRgmJkNMjQ0AlNIRlNq aNTap+o9QJk0A00ADQ0AGhkSmzCZFondDiiuf4fOWKtkunrXRHphgzTtLIcdNtMkCTDS0jnloJmc AIRPagqZc/qiVOYEmSW0U087VCXYVeLOqRRzzasUN6lkj6QjjeJ+GtdES2OGgDJw5zXJmY2CX5ga 53kA0XD1EWeV7LRjfjv7YCG8g1Vw0XjKrbSqSAEFaSJwynaKSIm4Ql/8tbrwejt3LozHNZMm4EIc hCOXc2BFQVlnY1PCYZu25dV6rxpUEETBo1Hb5wOGHhRkIryVWuzLB7rKakIrlNYOOCjqpOii9AhG tCIKPPcTgXkohnZFQlmjUjdiNGE8k5iDK7OBc3tnRUPEHZOcMS90u61EUIM9agByRDzb1aF22r12 MEZkyDZE21IZcwtddDxkBEYpgMRvXUP4hLwFQ/YpQovdrFOv6dSg4xytrU9c5hJCg8AghSY6+KAG vVy643M0djZfExrg/G+ZhOpmqsclFf/c3jnYw5kKV0W1c2cdduh3nPFSgZmk2jd4Z+whA3w8G7FW vuJ3zrMsCPahqv6P0bVaWjs9KpoEICuTR/ilJOzOTJ2FISUhUiKc4pWWJHMQDMNYxKa2gfLH4YzP fMMB3Z69Vhwk+LIORdhDPGwRp5dg9jmNkdCyLAHgQ2+qVFitF2+TkQoHnTNq0lEa1jDgG+29W//N e09ihs0SLYxUM72aMrZNHCTNexJG49jRhdhSdtC26RvVHKTPT2eDHvh+2IsON+ShNadqIAJISgfw P3dRHfPlQHjpyET2CUOWDfxdyRThQkDxn7vQ --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=vserver.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWb/ZE6UAAKbfgAAQUefsV/9v326////gUAM+uRmIAoGiBU/0qfooep+qGT9SDE00 NPUAMjTeVB6hoc0xMmTRhMExNMAmAQwRgRgGgRqTaCamm0RmkA0BpoAAAGhzTEyZNGEwTE0wCYBD BGBGASJE0aBGgTEmp+qPKe1TQeo0B6gNMQ9I/KJAXwOHudae6Sk5CIaH4oUmqHQGwfvj089SqDmp aQhr2SUjBeD42FU5A3Saonf97nOVMxONX4yah/oa9YVBFIOq1VHCSMpzYYMN2JUxdL6NkCSOTK4F cAjSaTxYQWE7HPRGw2JjqEUnE9M6A0LOpKwZbxZBQMZwM+nRx15qs0p5ARSlt3cK3xvLa5KsZkA9 Hm6ADw1eQ127HFyYrekAErfCWf2GOFl1aJ6q7t3wcd+Em94Ia62lZLe/QvgDcWOFGZSLKoM56MoN TXEbAAgSah5ODjPz9XED+FPyo/fjaT88tSySaNdK9aJe2W/dsZjoBhGtOk/dtISsWO2HXZI82erv tAcezpLu6/X5WuqVnrLjv+3tIRlGsyuvQcyFK6kBKWmr9UMpiXCAjaLMOkTfP84UTavGZroo4Fpl FMglEpj1GBCm8JsREh35M4oGZVi+K/Sdy0Mh41QBVgoK54PCIWq0dBNmEmHFlk1PIdBi2ZJmskZc 6pYWwCeBBcI6NAZGj1qUW4YuyMHMOE90M8wCzImZSz3i5mlc9T4vMRuHO+FL4bMkqUOJz0qd9gcf lW3b7bYN266a1emsMLKXR3PTwivMZtOE958mvko7JBU4HoHb9HIjZWC6CHcXxOOUlumE3jx08bL7 lFrJBESJDPhsViU/W0sx4L/OF87y591YsAzOWqr45ZqYWNzxnsgkj2MpvvUP4zLcTUKt+udXVzMS OFabeFmPpVdCeD8N6SqPqzNhFN1SHM5xLTpoXsmvCkss7yqk1uRQ62AlOhZWXOzh6QWHbbndbZST WXEi7QrSruxDNpgwTWbW66Ks3u4rIvO9AbXtllCFdiaM7Vg8FXdjaNj4FExIQ5jDDA7znC2JkwaF ShW0zxocL1fdBeFeg8D6YRlIwCqO2vPw7sL1qqVcdml0ibytQiGk0tgfE7F+U02eMsJL5mnFterF iZmeyouX/i7kinChIX+yJ0o= --=-fLDTFGDgGtn2vlmDRwOk Content-Type: application/x-bzip Content-Disposition: attachment; filename=vtop.8.bz2 Content-Transfer-Encoding: base64 QlpoOTFBWSZTWe581BwAAHJfgAAQUefkV+9v326////gQAI9mV2tdyhKiehNNJHplPUfqT1A09NQ HpDQNNqGhoA0QCZPUCNT1NqNAHqABkNNGgYgaaIRpqammm0hkAYmAgxGmmINDCU0pMNCmmQbU9TH qjQA00GgZNADRZXkApcTrbUJmEkm4hiUxAkCX0Z9RHVr+297Q/7JoVVp0yYBPr1hS70BxCUNjF65 OYsIMYl+wCOCQoOc6J6FwCTCLIMCEGl7h1O3OBm0Z7kwTDdykCwvpdWi6q0buvnFCOYeqnTbzOi0 UGukllj1WUbKpuDxnv5uw6d9M4ox7Sp41/YmYbl5YYMuTNqTUaWiASkfSQwSDlmiy4AaCZ2OPVO8 MzRpCGCqdM3n0rtx2GJ6wBJUKlPb8YhI0duSLmqRVrdfHngsccN2V3g2Csl6F8zS+b5Zscpy7gfx Pyx3v/fcQtwfYfyjfMXvlBrVYxNAuQg+vILFUUoxQbF2sFdmKCjvVywYIwCgZiTo5BtKLhWaBIkq m5XoAlBSVVM6RoqKogwCc0/dh1UA8MOgSVyf1pg6pZjGyCYGIpjY7QfoW02Six8kchjRjGIhQzFX Rpgp6nPWixSwYsFYn8KucWAm5Jya0mSyTFqSpBtgV4og8bS5PX8ELZGC8til5Zyy0m3XoKv3BAIl VcbGkFkwO7YB0AdJrrIsc0q1XSJgVsWFA7Dg/IlYe8e1DJAq3gWHGfXqgl4opm/qhJ7mMWq2gLNr nLKppQAJoaJsTKyNkyU81BRAw1VSFJRHFZhuqXavRlIVs4VhrHygjPM/KwA13lGkIDcOu3/F3JFO FCQ7nzUHAA== --=-fLDTFGDgGtn2vlmDRwOk-- --=-0AkUrZQCWVfwokKhMogY Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD4DBQA8mZO44c1kHlhtW8oRAuEkAJ9g+nikCkl8WC4EL2niDSnbM1bQuwCUCYdz FJOz4FuzptpA13h50LY1Yg== =sZdF -----END PGP SIGNATURE----- --=-0AkUrZQCWVfwokKhMogY-- From vserver.error@solucorp.qc.ca Thu Mar 21 04:59:28 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2L9xR7Y021142; Thu, 21 Mar 2002 04:59:27 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2L8ABQ08307 for vserver.list; Thu, 21 Mar 2002 03:10:11 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2L8AAh08303 for ; Thu, 21 Mar 2002 03:10:11 -0500 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 98F55108C for ; Thu, 21 Mar 2002 09:10:10 +0100 (CET) Subject: [vserver] Multiple vservers - 1 IP. From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-nc5fdAcqM1UCIl9xDuPv" X-Mailer: Evolution/1.0.2 Date: 21 Mar 2002 09:10:10 +0100 Message-Id: <1016698210.2020.24.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 327 --=-nc5fdAcqM1UCIl9xDuPv Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I have a question to you clever coding techies out there :-) quote from Changelog 0.14 >> This new kernel enhances set_ipv4root a bit. This is not the multi-ip support yet though. This kernel allows application relying on broadcast to work in vservers. The trick is to assigned both an IP number and a broadcast address to a vserver. The socket handling for UDP was modified a little (one line in net/ipv4/udp.c) so an incoming packet is processed if it matched the vserver IP or the vserver broadcast address. << How much would have to be added to add a recognition of a certain port on the "root" servers ip-address - so I f.ex. could run my proftpd under a vserver (with a 10.x.x.x IP) and then assign port 21 on the root server(which would be the only one with a RFC1918 -valid IP) to this vserver (so that packages were forwarded)? I guess we also need affiliated connections - but wouldn't an iptables that kept state handle that? Would this be a good way of doing it, at all?=20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-nc5fdAcqM1UCIl9xDuPv Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8mZVi4c1kHlhtW8oRAhHmAKCjLSKK64GSitwCCCcqjKlf6F35AACcDxAN 8QbKEuQnMzFPy97TMAN/1Ps= =PoC0 -----END PGP SIGNATURE----- --=-nc5fdAcqM1UCIl9xDuPv-- From vserver.error@solucorp.qc.ca Thu Mar 21 12:41:27 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2LHfQ7Y024860; Thu, 21 Mar 2002 12:41:26 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2LHCqD18863 for vserver.list; Thu, 21 Mar 2002 12:12:52 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gandalf.dungeon.de ([212.36.231.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2LHCph18859 for ; Thu, 21 Mar 2002 12:12:52 -0500 Received: from dragon (dragon.dungeon.de [212.36.227.2]) by gandalf.dungeon.de (Postfix) with ESMTP id E3196B4A1 for ; Thu, 21 Mar 2002 18:12:45 +0100 (MET) Date: Thu, 21 Mar 2002 18:12:45 +0100 From: Sebastian Schaefer To: vserver@solucorp.qc.ca Subject: [vserver] problem (freeze) with netstat Message-ID: <6890000.1016730765@dragon> X-Mailer: Mulberry/2.1.2 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 328 Hi, i'm running kernel 2.4.18ctx9 with vserver-0.14 and i have the following problem: sometimes when i run "netstat -an" on the root server or on a virtual one the system freeze completly... no kernel panic entry nothing... and then i can only reboot... is there anyone who have the same problem ? it's very difficult to find a bug if the system freeze... bye sebastian From vserver.error@solucorp.qc.ca Thu Mar 21 13:05:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2LI5E7Y025130; Thu, 21 Mar 2002 13:05:14 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2LHdOl19406 for vserver.list; Thu, 21 Mar 2002 12:39:24 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2LHdOh19402 for ; Thu, 21 Mar 2002 12:39:24 -0500 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 3.35 #1) id 16o6X6-0006hh-00 for vserver@solucorp.qc.ca; Thu, 21 Mar 2002 13:39:24 -0400 Date: Thu, 21 Mar 2002 13:39:24 -0400 (AST) From: James MacLean To: Subject: [vserver] netstat in vserver kills machine Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 329 Hi folks, First post. Running 0.14 we can repeatedly take down the server by running: netstat -nap --inet in a virtual server. It may not blow up the first time you run it, but try it enough times over a short while and bang :(. Death in the kernel at c02055cb which I believe equates to: c0205220 T tcp_get_info Which I think I followed back to: c012d870 T __alloc_pages Had to copy from the screen :(. JES -- James B. MacLean macleajb@ednet.ns.ca Department of Education http://www.ednet.ns.ca/~macleajb Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Thu Mar 21 13:22:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2LIMX7Y025353; Thu, 21 Mar 2002 13:22:34 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2LHpvc19732 for vserver.list; Thu, 21 Mar 2002 12:51:57 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2LHpuh19728 for ; Thu, 21 Mar 2002 12:51:57 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.1/8.12.1/Debian -5) with ESMTP id g2LHphWa028073; Thu, 21 Mar 2002 18:51:43 +0100 Date: Thu, 21 Mar 2002 18:51:43 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: Sebastian Schaefer cc: vserver@solucorp.qc.ca Subject: Re: [vserver] problem (freeze) with netstat In-Reply-To: <6890000.1016730765@dragon> Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 330 On Thu, 21 Mar 2002, Sebastian Schaefer wrote: > Hi, > > i'm running kernel 2.4.18ctx9 with vserver-0.14 and i have the following > problem: > > sometimes when i run "netstat -an" on the root server or on a virtual one > the system freeze completly... no kernel panic entry nothing... and then i > can only reboot... > > is there anyone who have the same problem ? > it's very difficult to find a bug if the system freeze... Hmm, It was I who wrote that part... It's been stable here since I coded it so I assumed it was stable. I havn't tested ctx9 yet, I'm still running ctx8 (the first version with this new socket stuff) here. Did you have this problem with ctx8? or is it a ctx9 specific problem? /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Thu Mar 21 13:32:17 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2LIWH7Y025446; Thu, 21 Mar 2002 13:32:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2LI3fL19984 for vserver.list; Thu, 21 Mar 2002 13:03:41 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gandalf.dungeon.de ([212.36.231.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2LI3fh19980 for ; Thu, 21 Mar 2002 13:03:41 -0500 Received: from dragon (dragon.dungeon.de [212.36.227.2]) by gandalf.dungeon.de (Postfix) with ESMTP id A0A77B4A1; Thu, 21 Mar 2002 19:03:41 +0100 (MET) Date: Thu, 21 Mar 2002 19:03:41 +0100 From: Sebastian Schaefer To: Martin Josefsson Cc: vserver@solucorp.qc.ca Subject: Re: [vserver] problem (freeze) with netstat Message-ID: <7160000.1016733821@dragon> In-Reply-To: References: X-Mailer: Mulberry/2.1.2 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1; format=flowed Content-Disposition: inline Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g2LI3fh19980 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 331 --On Donnerstag, März 21, 2002 18:51:43 +0100 Martin Josefsson wrote: > Hmm, It was I who wrote that part... It's been stable here since I coded > it so I assumed it was stable. > I havn't tested ctx9 yet, I'm still running ctx8 (the first version with > this new socket stuff) here. > > Did you have this problem with ctx8? or is it a ctx9 specific problem? i didn't test ctx8... but i will now... bye sebastian From vserver.error@solucorp.qc.ca Fri Mar 22 07:41:53 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2MCfa7Y001752; Fri, 22 Mar 2002 07:41:37 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2MCNCl07711 for vserver.list; Fri, 22 Mar 2002 07:23:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Tempo.Update.UU.SE (Tempo.Update.UU.SE [130.238.19.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2MCNBh07707 for ; Fri, 22 Mar 2002 07:23:11 -0500 Received: from Tempo.Update.UU.SE (localhost [127.0.0.1]) by Tempo.Update.UU.SE (8.12.1/8.12.1/Update-Iltempogigante) with ESMTP id g2MCNAfM012154 for ; Fri, 22 Mar 2002 13:23:10 +0100 Received: from localhost (jerker@localhost) by Tempo.Update.UU.SE (8.12.1/8.12.1/Update-Iltempogigante-submit) with ESMTP id g2MCN8Fe012150 for ; Fri, 22 Mar 2002 13:23:09 +0100 X-Authentication-Warning: Tempo.Update.UU.SE: jerker owned process doing -bs Date: Fri, 22 Mar 2002 13:23:08 +0100 (CET) From: Jerker Nyberg To: vserver@solucorp.qc.ca Subject: [vserver] tree-quotas Message-ID: Approved: tree-quota MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 332 I read about tree-quotas in LWN a few months ago. Maybe it can be of use or inspiration for vserver users. I havn't tried it. http://lwn.net/2001/1025/a/tree-quotas.php3 http://cgi.cse.unsw.edu.au/~neilb/wiki/?TreeQuotas Regards, Jerker Nyberg. Uppsala, Sweden. From vserver.error@solucorp.qc.ca Fri Mar 22 08:31:12 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2MDVB7Y002152; Fri, 22 Mar 2002 08:31:11 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2MDHqx08760 for vserver.list; Fri, 22 Mar 2002 08:17:52 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.mtl.toxik.net (modemcable200.184-201-24.mtl.mc.videotron.ca [24.201.184.200]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2MDHqh08756 for ; Fri, 22 Mar 2002 08:17:52 -0500 Received: (qmail 1681 invoked by alias); 22 Mar 2002 13:17:52 -0000 Received: from koala.mtl.toxik.net (HELO toxik.com) (192.168.1.112) by ns1.mtl.toxik.net with SMTP; 22 Mar 2002 13:17:52 -0000 Message-ID: <3C9B2E46.8000902@toxik.com> Date: Fri, 22 Mar 2002 08:14:46 -0500 From: Toxik - Martial Rioux Organization: Toxik Technologies Inc. User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020310 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] tree-quotas References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 333 Hi, In my point of view, to implement quota in vserver context you can use a mix of quota and LVM partition. With this solution you can have two quota level (once for vserver users(quota system) and other for each vserver(LVM partition)). I'm actually testing this solution. I come back with more details soon... Any ideas or comments are welcome. Jerker Nyberg wrote: > I read about tree-quotas in LWN a few months ago. Maybe it can be of use > or inspiration for vserver users. I havn't tried it. > > http://lwn.net/2001/1025/a/tree-quotas.php3 > > http://cgi.cse.unsw.edu.au/~neilb/wiki/?TreeQuotas > > Regards, > Jerker Nyberg. > Uppsala, Sweden. > > -- Martial Rioux Infrastructures and Technologies Toxik Technologies Inc. From vserver.error@solucorp.qc.ca Fri Mar 22 09:04:52 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2ME4p7Y002305; Fri, 22 Mar 2002 09:04:51 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2MDnMa09416 for vserver.list; Fri, 22 Mar 2002 08:49:22 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2MDnMh09408 for ; Fri, 22 Mar 2002 08:49:22 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16oPPw-00069z-00 for ; Fri, 22 Mar 2002 14:49:16 +0100 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16oPPw-00069o-00 for ; Fri, 22 Mar 2002 14:49:16 +0100 Sender: jon@silicide.dk Message-ID: <3C9B365B.E9C2CFBA@silicide.dk> Date: Fri, 22 Mar 2002 14:49:15 +0100 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: NFS-kernelspace still doesnt work, userspace does, was (Re: [vserver] vserver 0.14 and kernel 2.4.18ctx-9 changelog) References: <20020320154900.9bb8079b775a@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 334 I've just testet vserver-0.14, after applying the patch to 2.4.18 I still cant get kernel-space nfs to work, but userspace works fine. They perform about the same. (user space in vserver, kernel space outside vserver, but else same kernel/machine/...) Mar 22 12:49:52 nfs rpc.statd[402]: Version 1.0 Starting Mar 22 12:49:52 nfs nfsd[412]: nfssvc: Operation not permitted Mar 22 12:49:53 nfs update: This kernel does not need update(8). Exiting. Mar 22 12:50:16 nfs nfsd[460]: nfssvc: Operation not permitted I'm running debian woody on an smp p3. JonB From vserver.error@solucorp.qc.ca Fri Mar 22 09:22:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2MEME7Y002382; Fri, 22 Mar 2002 09:22:15 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2ME7El09829 for vserver.list; Fri, 22 Mar 2002 09:07:14 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2ME7Dh09825 for ; Fri, 22 Mar 2002 09:07:13 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16oPhI-0006Bc-00 for ; Fri, 22 Mar 2002 15:07:12 +0100 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16oPhI-0006BS-00 for ; Fri, 22 Mar 2002 15:07:12 +0100 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Fri, 22 Mar 2002 15:07:12 +0100 (CET) Received: (qmail 56686 invoked from network); 22 Mar 2002 14:05:21 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 22 Mar 2002 14:05:21 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2MDnMa09416 for vserver.list; Fri, 22 Mar 2002 08:49:22 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2MDnMh09408 for ; Fri, 22 Mar 2002 08:49:22 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16oPPw-00069z-00 for ; Fri, 22 Mar 2002 14:49:16 +0100 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16oPPw-00069o-00 for ; Fri, 22 Mar 2002 14:49:16 +0100 Sender: jon@silicide.dk Message-ID: <3C9B365B.E9C2CFBA@silicide.dk> Date: Fri, 22 Mar 2002 14:49:15 +0100 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: NFS-kernelspace still doesnt work, userspace does, was (Re: [vserver] vserver 0.14 and kernel 2.4.18ctx-9 changelog) References: <20020320154900.9bb8079b775a@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 335 I've just testet vserver-0.14, after applying the patch to 2.4.18 I still cant get kernel-space nfs to work, but userspace works fine. They perform about the same. (user space in vserver, kernel space outside vserver, but else same kernel/machine/...) Mar 22 12:49:52 nfs rpc.statd[402]: Version 1.0 Starting Mar 22 12:49:52 nfs nfsd[412]: nfssvc: Operation not permitted Mar 22 12:49:53 nfs update: This kernel does not need update(8). Exiting. Mar 22 12:50:16 nfs nfsd[460]: nfssvc: Operation not permitted I'm running debian woody on an smp p3. JonB From vserver.error@solucorp.qc.ca Fri Mar 22 19:21:21 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2N0LE7Y008192; Fri, 22 Mar 2002 19:21:21 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2N05tD21739 for vserver.list; Fri, 22 Mar 2002 19:05:55 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2N05th21735 for ; Fri, 22 Mar 2002 19:05:55 -0500 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g2N07B102851 for ; Fri, 22 Mar 2002 16:07:11 -0800 X-Authentication-Warning: main.cyber-office.net: raanders owned process doing -bs Date: Fri, 22 Mar 2002 16:07:11 -0800 (PST) From: X-X-Sender: To: Subject: [vserver] 2.4.18ctx-9 Kernel Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-98.8 required=5.0 tests=NO_REAL_NAME,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 336 I believe there were other messages reference this kernel locking up. It happened to me some time after 5 PM yesterday. The system had been up about 1.5 hours. No further messages after then. Took my mail out so I may have missed further messages on this topic. I just started logging kernel messages to a file and I have a cron job running every minute to figure out a closer time when/if it freezes. IS there anything else I could/should be running to log the system status? I have backed off to 2.4.17ctx-7 since I have to drive 30+ miles to get to this machine. (I really need to get a test machine a bit closer.) As soon as I get upto date on what has happened today I probably try a later kernel. Thanks for reading my ramblings. Rod -- Without geometry what's the point in life. From vserver.error@solucorp.qc.ca Sat Mar 23 04:24:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2N9Ol7Y012721; Sat, 23 Mar 2002 04:24:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2N99Lv29964 for vserver.list; Sat, 23 Mar 2002 04:09:21 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.catv.telemach.ro ([212.146.66.245]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2N99Ih29960 for ; Sat, 23 Mar 2002 04:09:19 -0500 Received: from 127.0.0.1 (localhost.localdomain [127.0.0.1]) by dummy.domain.name (Postfix) with SMTP id E5A4917D1D for ; Sat, 23 Mar 2002 11:09:17 +0200 (EET) Received: from catv.telemach.ro (mach2 [212.146.66.245]) by mail.catv.telemach.ro (Postfix) with ESMTP id 467D317D17 for ; Sat, 23 Mar 2002 11:09:17 +0200 (EET) Message-ID: <3C9C463D.4050208@catv.telemach.ro> Date: Sat, 23 Mar 2002 11:09:17 +0200 From: Razvan Cosma User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.6) Gecko/20011210 X-Accept-Language: en-us MIME-Version: 1.0 To: vserver Subject: [vserver] syntax error in vserver script Content-Type: text/plain; charset=ISO-8859-2; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 337 Hello, Something in this line /usr/sbin/chbind --silent --ip $IPROOT \ /usr/sbin/chcontext --secure --silent --ctx $S_CONTEXT \ /usr/lib/vserver/vserverkillall is causing the following error: vserver ftp stop Stopping the virtual server ftp Server ftp is running ipv4root is now 10.0.0.1 New security context is 0 Shutting down proftpd: sleep 2 Killing all processes expr: syntax error ^^^^^^^^^^^ I am using vserver-0.13-1, kernel 2.4.17ctx-8 (compiled by me) and only proftpd-1.2.4.tar.bz2 runs in the vserver. Any hints? 10x. From vserver.error@solucorp.qc.ca Sat Mar 23 07:47:09 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NCl77Y013766; Sat, 23 Mar 2002 07:47:08 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NCYoS32651 for vserver.list; Sat, 23 Mar 2002 07:34:50 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mx1.paradigm4.com.au (server.paradigm4.com.au [202.45.126.119]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2NCYnh32646 for ; Sat, 23 Mar 2002 07:34:49 -0500 Received: (qmail 12453 invoked from network); 23 Mar 2002 12:37:44 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 23 Mar 2002 12:37:44 -0000 Received: (qmail 13043 invoked from network); 23 Mar 2002 12:39:55 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 23 Mar 2002 12:39:55 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Sat, 23 Mar 2002 23:43:34 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] syntax error in vserver script Message-ID: <3C9D1326.20230.21220B7@localhost> Priority: normal In-reply-to: <3C9C463D.4050208@catv.telemach.ro> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=1.2 required=5.0 tests=NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 338 On Saturday, 23 March 2002 at 11:09, Razvan Cosma wrote: > Hello, > Something in this line > > /usr/sbin/chbind --silent --ip $IPROOT \ > /usr/sbin/chcontext --secure --silent --ctx $S_CONTEXT \ > /usr/lib/vserver/vserverkillall > > is causing the following error: > > vserver ftp stop > Stopping the virtual server ftp > Server ftp is running > ipv4root is now 10.0.0.1 > New security context is 0 > Shutting down proftpd: > sleep 2 > Killing all processes > expr: syntax error > ^^^^^^^^^^^ > > I am using vserver-0.13-1, kernel 2.4.17ctx-8 (compiled by me) > and only proftpd-1.2.4.tar.bz2 runs in the vserver. Any hints? 10x. > It is this line: CTX=`eval expr $CTX + 0` in /usr/lib/vserver/vserverkillall The following worked for me: Replace the line CTX=`cat /proc/self/status | grep s_context | sed s/s_context://` with CTX=`awk '/^s_context:/{print $2}' /proc/self/status` hth Ed From vserver.error@solucorp.qc.ca Sat Mar 23 08:37:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NDbk7Y013923; Sat, 23 Mar 2002 08:37:47 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NDQhV00995 for vserver.list; Sat, 23 Mar 2002 08:26:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gandalf.dungeon.de ([212.36.231.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NDQgh00991 for ; Sat, 23 Mar 2002 08:26:42 -0500 Received: from dragon (dragon.dungeon.de [212.36.227.2]) by gandalf.dungeon.de (Postfix) with ESMTP id A1CA8B4A3; Sat, 23 Mar 2002 14:26:41 +0100 (MET) Date: Sat, 23 Mar 2002 14:26:41 +0100 From: Sebastian Schaefer To: Martin Josefsson Cc: vserver@solucorp.qc.ca Subject: Re: [vserver] problem (freeze) with netstat Message-ID: <6690000.1016890001@dragon> In-Reply-To: References: X-Mailer: Mulberry/2.1.2 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1; format=flowed Content-Disposition: inline Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g2NDQgh00991 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 339 --On Donnerstag, März 21, 2002 18:51:43 +0100 Martin Josefsson wrote: > Hmm, It was I who wrote that part... It's been stable here since I coded > it so I assumed it was stable. > I havn't tested ctx9 yet, I'm still running ctx8 (the first version with > this new socket stuff) here. > > Did you have this problem with ctx8? or is it a ctx9 specific problem? ctx8 works... no problem with netstat ... mmm bye sebastian From vserver.error@solucorp.qc.ca Sat Mar 23 08:45:32 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NDjV7Y013963; Sat, 23 Mar 2002 08:45:31 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NDYgm01159 for vserver.list; Sat, 23 Mar 2002 08:34:42 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.catv.telemach.ro ([212.146.66.245]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NDYgh01155 for ; Sat, 23 Mar 2002 08:34:42 -0500 Received: from 127.0.0.1 (localhost.localdomain [127.0.0.1]) by dummy.domain.name (Postfix) with SMTP id AF61E17D1D for ; Sat, 23 Mar 2002 15:34:41 +0200 (EET) Received: from catv.telemach.ro (mach2 [212.146.66.245]) by mail.catv.telemach.ro (Postfix) with ESMTP id 5A0C517D17 for ; Sat, 23 Mar 2002 15:34:41 +0200 (EET) Message-ID: <3C9C8471.5070209@catv.telemach.ro> Date: Sat, 23 Mar 2002 15:34:41 +0200 From: Razvan Cosma User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.6) Gecko/20011210 X-Accept-Language: en-us MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] syntax error in vserver script References: <3C9D1326.20230.21220B7@localhost> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 340 It works. Thank you. edward@paradigm4.com.au wrote: > On Saturday, 23 March 2002 at 11:09, Razvan Cosma wrote: > > >> Hello, >>Something in this line >> >>/usr/sbin/chbind --silent --ip $IPROOT \ >> /usr/sbin/chcontext --secure --silent --ctx $S_CONTEXT \ >> /usr/lib/vserver/vserverkillall >> >>is causing the following error: >> >>vserver ftp stop >>Stopping the virtual server ftp >>Server ftp is running >>ipv4root is now 10.0.0.1 >>New security context is 0 >>Shutting down proftpd: >>sleep 2 >>Killing all processes >>expr: syntax error >>^^^^^^^^^^^ >> >>I am using vserver-0.13-1, kernel 2.4.17ctx-8 (compiled by me) >>and only proftpd-1.2.4.tar.bz2 runs in the vserver. Any hints? 10x. >> >> > > It is this line: > > CTX=`eval expr $CTX + 0` > > in /usr/lib/vserver/vserverkillall > > The following worked for me: > > Replace the line > > CTX=`cat /proc/self/status | grep s_context | sed s/s_context://` > > with > > CTX=`awk '/^s_context:/{print $2}' /proc/self/status` > > hth > Ed From vserver.error@solucorp.qc.ca Sat Mar 23 10:32:24 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NFWN7Y014537; Sat, 23 Mar 2002 10:32:24 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NFKsH02933 for vserver.list; Sat, 23 Mar 2002 10:20:54 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NFKrh02929 for ; Sat, 23 Mar 2002 10:20:53 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.2/8.12.2/Debian -5) with ESMTP id g2NFKaSe027188; Sat, 23 Mar 2002 16:20:37 +0100 Date: Sat, 23 Mar 2002 16:20:36 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: James MacLean cc: vserver@solucorp.qc.ca Subject: Re: [vserver] netstat in vserver kills machine In-Reply-To: Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 341 On Thu, 21 Mar 2002, James MacLean wrote: > Hi folks, > > First post. Running 0.14 we can repeatedly take down the server by > running: > > netstat -nap --inet > > in a virtual server. It may not blow up the first time you run it, but try > it enough times over a short while and bang :(. > > Death in the kernel at c02055cb which I believe equates to: > c0205220 T tcp_get_info > > Which I think I followed back to: > c012d870 T __alloc_pages > > Had to copy from the screen :(. Hi James, Did you get an Oops or did you use sysrq to get the trace? /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Sat Mar 23 10:33:08 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NFX77Y014545; Sat, 23 Mar 2002 10:33:07 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NFL4J02943 for vserver.list; Sat, 23 Mar 2002 10:21:04 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NFL4h02939 for ; Sat, 23 Mar 2002 10:21:04 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.2/8.12.2/Debian -5) with ESMTP id g2NFKuSe027193; Sat, 23 Mar 2002 16:20:56 +0100 Date: Sat, 23 Mar 2002 16:20:56 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: Sebastian Schaefer cc: vserver@solucorp.qc.ca Subject: Re: [vserver] problem (freeze) with netstat In-Reply-To: <6690000.1016890001@dragon> Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by dns.solucorp.qc.ca id g2NFL4h02939 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 342 On Sat, 23 Mar 2002, Sebastian Schaefer wrote: > --On Donnerstag, März 21, 2002 18:51:43 +0100 Martin Josefsson > wrote: > > > Hmm, It was I who wrote that part... It's been stable here since I coded > > it so I assumed it was stable. > > I havn't tested ctx9 yet, I'm still running ctx8 (the first version with > > this new socket stuff) here. > > > > Did you have this problem with ctx8? or is it a ctx9 specific problem? > > > ctx8 works... no problem with netstat ... mmm Great! But hmm, I don't see anything that can explain the crashes between ctx8 and ctx9 so it's possible that it's my netstat stuff that's causing it after all. But I fail to see how on earth it can lock up the machine, all it does is to skip some sockets in the creation of the socketlists in /proc Some prople said that it just locked up and at least one person provided information that sait it hung in tcp_get_info which is one of the functions I've modified. Jacques, do you have any ideas? /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Sat Mar 23 11:00:22 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NG0L7Y014789; Sat, 23 Mar 2002 11:00:21 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NFjtR03385 for vserver.list; Sat, 23 Mar 2002 10:45:55 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NFjth03381 for ; Sat, 23 Mar 2002 10:45:55 -0500 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 3.35 #1) id 16oniL-0001Go-00; Sat, 23 Mar 2002 11:45:53 -0400 Date: Sat, 23 Mar 2002 11:45:53 -0400 (AST) From: James MacLean To: Martin Josefsson cc: Subject: Re: [vserver] netstat in vserver kills machine In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 343 I seem to remember it was an Ieee then the machine completely froze... Except for sysrq combos which confirmed the info reported :). Jim On Sat, 23 Mar 2002, Martin Josefsson wrote: > On Thu, 21 Mar 2002, James MacLean wrote: > > > Hi folks, > > > > First post. Running 0.14 we can repeatedly take down the server by > > running: > > > > netstat -nap --inet > > > > in a virtual server. It may not blow up the first time you run it, but try > > it enough times over a short while and bang :(. > > > > Death in the kernel at c02055cb which I believe equates to: > > c0205220 T tcp_get_info > > > > Which I think I followed back to: > > c012d870 T __alloc_pages > > > > Had to copy from the screen :(. > > Hi James, > > Did you get an Oops or did you use sysrq to get the trace? > > /Martin > > Never argue with an idiot. They drag you down to their level, then beat you with experience. > > -- James B. MacLean macleajb@ednet.ns.ca Department of Education http://www.ednet.ns.ca/~macleajb Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Sat Mar 23 11:02:00 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NG207Y014810; Sat, 23 Mar 2002 11:02:00 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NFomf03470 for vserver.list; Sat, 23 Mar 2002 10:50:48 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NFolh03466 for ; Sat, 23 Mar 2002 10:50:47 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.2/8.12.2/Debian -5) with ESMTP id g2NFoVSe027624; Sat, 23 Mar 2002 16:50:31 +0100 Date: Sat, 23 Mar 2002 16:50:31 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: James MacLean cc: vserver@solucorp.qc.ca Subject: Re: [vserver] netstat in vserver kills machine In-Reply-To: Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 344 On Sat, 23 Mar 2002, James MacLean wrote: > > I seem to remember it was an Ieee then the machine completely froze... > > Except for sysrq combos which confirmed the info reported :). Ok thanks, one more thing, do you remember if numlock worked? It sounds like an infinite loop in tcp_get_info :( /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Sat Mar 23 11:17:21 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NGHK7Y014885; Sat, 23 Mar 2002 11:17:20 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NG2Ik03666 for vserver.list; Sat, 23 Mar 2002 11:02:18 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NG2Ih03662 for ; Sat, 23 Mar 2002 11:02:18 -0500 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 3.35 #1) id 16onyE-0002Po-00; Sat, 23 Mar 2002 12:02:18 -0400 Date: Sat, 23 Mar 2002 12:02:18 -0400 (AST) From: James MacLean To: Martin Josefsson cc: Subject: Re: [vserver] netstat in vserver kills machine In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 345 On Sat, 23 Mar 2002, Martin Josefsson wrote: > On Sat, 23 Mar 2002, James MacLean wrote: > > I seem to remember it was an Ieee then the machine completely froze... > > Except for sysrq combos which confirmed the info reported :). > Ok thanks, one more thing, do you remember if numlock worked? > It sounds like an infinite loop in tcp_get_info :( That I can not remember, but since the first time it happened, another staff member rebooted it, I believe he would have tried numlock. I know I tried ctrl-alt-delete and it didn't do anything :). Also, we blew it up a few more times through the day. Once with netstat at ctx 0 (normal root user) and once we were not sure what caused it although we had started an IceCast server on its own vserver. > /Martin Jim -- James B. MacLean macleajb@ednet.ns.ca Department of Education http://www.ednet.ns.ca/~macleajb Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Sat Mar 23 11:31:43 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NGVg7Y014967; Sat, 23 Mar 2002 11:31:43 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NGK7Q04017 for vserver.list; Sat, 23 Mar 2002 11:20:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NGK6h04008 for ; Sat, 23 Mar 2002 11:20:06 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.2/8.12.2/Debian -5) with ESMTP id g2NGJvSe027888; Sat, 23 Mar 2002 17:19:57 +0100 Date: Sat, 23 Mar 2002 17:19:57 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: James MacLean cc: vserver@solucorp.qc.ca Subject: Re: [vserver] netstat in vserver kills machine In-Reply-To: Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 346 On Sat, 23 Mar 2002, James MacLean wrote: > On Sat, 23 Mar 2002, Martin Josefsson wrote: > > > On Sat, 23 Mar 2002, James MacLean wrote: > > > I seem to remember it was an Ieee then the machine completely froze... > > > Except for sysrq combos which confirmed the info reported :). > > Ok thanks, one more thing, do you remember if numlock worked? > > It sounds like an infinite loop in tcp_get_info :( > > That I can not remember, but since the first time it happened, another > staff member rebooted it, I believe he would have tried numlock. > > I know I tried ctrl-alt-delete and it didn't do anything :). > > Also, we blew it up a few more times through the day. Once with netstat at > ctx 0 (normal root user) and once we were not sure what caused it although > we had started an IceCast server on its own vserver. ctx8 which is the first version to include my netstat stuff has been very stable here on my machine, nothing has crashed or anything, I've tried running netstat in a loop and it's been working fine. and another user said that ctx8 worked fine on his machine but ctx9 doesn't and ctx9 doesn't touch this stuff at all so I'd actually expect ctx9 to work as well as ctx8 does. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Sat Mar 23 12:22:04 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NHM37Y015478; Sat, 23 Mar 2002 12:22:04 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NHAuQ04957 for vserver.list; Sat, 23 Mar 2002 12:10:56 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NHAuh04953 for ; Sat, 23 Mar 2002 12:10:56 -0500 Received: from remtk.solucorp.qc.ca (g36-116.citenet.net [206.123.36.116]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2NHJG602357 for ; Sat, 23 Mar 2002 12:19:16 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2NHBsU03483 for vserver@solucorp.qc.ca; Sat, 23 Mar 2002 12:11:54 -0500 From: Jacques Gelinas Date: Sat, 23 Mar 2002 12:11:54 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] netstat in vserver kills machine X-mailer: tlmpmail 0.1 Message-ID: <20020323121154.4f0c53ebb18a@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 347 On Sat, 23 Mar 2002 17:19:57 -0500, Martin Josefsson wrote > On Sat, 23 Mar 2002, James MacLean wrote: > > > On Sat, 23 Mar 2002, Martin Josefsson wrote: > > > > > On Sat, 23 Mar 2002, James MacLean wrote: > > > > I seem to remember it was an Ieee then the machine completely froze... > > > > Except for sysrq combos which confirmed the info reported :). > > > Ok thanks, one more thing, do you remember if numlock worked? > > > It sounds like an infinite loop in tcp_get_info :( > > > > That I can not remember, but since the first time it happened, another > > staff member rebooted it, I believe he would have tried numlock. > > > > I know I tried ctrl-alt-delete and it didn't do anything :). > > > > Also, we blew it up a few more times through the day. Once with netstat at > > ctx 0 (normal root user) and once we were not sure what caused it although > > we had started an IceCast server on its own vserver. > > ctx8 which is the first version to include my netstat stuff has been very > stable here on my machine, nothing has crashed or anything, I've tried > running netstat in a loop and it's been working fine. > > and another user said that ctx8 worked fine on his machine but ctx9 > doesn't and ctx9 doesn't touch this stuff at all so I'd actually expect > ctx9 to work as well as ctx8 does. I have replicated this problem with ctx-9 on two machines, using netstat. Very odd. On one machine, I have hammered on netstat for a while without any problems then few hours later (uptime hours later), I crashed the machine twice in a row using netstat. The trace shows that the kernel is dying in __get_free_page(), called from proc_file_read, just before calling tcp_get_info. My idea was that the new stuff introduced in ctx-8 (private vserver netstat) was doing some corruption. But ctx-8 has never crashed on me. I have reviewed and reviewed tcp_get_info() and it seems all fine to me. Very strange. I wonder if for some reason the kernel ctx-9 has been improperly compiled. In ctx-9, I introduced a new field in "struct sock" for the broadcast address. Anyone has withness a crash with ctx-9 with a kernel they compiled themselves (not using my binary) ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Sat Mar 23 12:33:30 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NHXU7Y015560; Sat, 23 Mar 2002 12:33:30 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NHMY005139 for vserver.list; Sat, 23 Mar 2002 12:22:34 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NHMXh05135 for ; Sat, 23 Mar 2002 12:22:33 -0500 Received: from remtk.solucorp.qc.ca (g36-117.citenet.net [206.123.36.117]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2NHUs602790 for ; Sat, 23 Mar 2002 12:30:54 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2NHE9F03529 for vserver@solucorp.qc.ca; Sat, 23 Mar 2002 12:14:09 -0500 From: Jacques Gelinas Date: Sat, 23 Mar 2002 12:14:09 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] netstat in vserver kills machine X-mailer: tlmpmail 0.1 Message-ID: <20020323121409.468e7b1b4652@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 348 On Sat, 23 Mar 2002 16:50:31 -0500, Martin Josefsson wrote > On Sat, 23 Mar 2002, James MacLean wrote: > > > > > I seem to remember it was an Ieee then the machine completely froze... > > > > Except for sysrq combos which confirmed the info reported :). > > Ok thanks, one more thing, do you remember if numlock worked? > It sounds like an infinite loop in tcp_get_info :( I have seen kernel oops. not an infinite loop in tcp_get_info. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Sat Mar 23 12:33:45 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NHXi7Y015570; Sat, 23 Mar 2002 12:33:44 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NHMZj05145 for vserver.list; Sat, 23 Mar 2002 12:22:35 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NHMZh05141 for ; Sat, 23 Mar 2002 12:22:35 -0500 Received: from remtk.solucorp.qc.ca (g36-117.citenet.net [206.123.36.117]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2NHUu602793 for ; Sat, 23 Mar 2002 12:30:56 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2NHIdu03532 for vserver@solucorp.qc.ca; Sat, 23 Mar 2002 12:18:39 -0500 From: Jacques Gelinas Date: Sat, 23 Mar 2002 12:18:39 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] problem (freeze) with netstat X-mailer: tlmpmail 0.1 Message-ID: <20020323121839.a4110603024b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 349 On Sat, 23 Mar 2002 16:20:56 -0500, Martin Josefsson wrote > On Sat, 23 Mar 2002, Sebastian Schaefer wrote: > > > --On Donnerstag, März 21, 2002 18:51:43 +0100 Martin Josefsson > > wrote: > > > > > Hmm, It was I who wrote that part... It's been stable here since I coded > > > it so I assumed it was stable. > > > I havn't tested ctx9 yet, I'm still running ctx8 (the first version with > > > this new socket stuff) here. > > > > > > Did you have this problem with ctx8? or is it a ctx9 specific problem? > > > > > > ctx8 works... no problem with netstat ... mmm > > Great! > > But hmm, I don't see anything that can explain the crashes between ctx8 > and ctx9 so it's possible that it's my netstat stuff that's causing it > after all. But I fail to see how on earth it can lock up the machine, all > it does is to skip some sockets in the creation of the socketlists in > /proc > > Some prople said that it just locked up and at least one person provided > information that sait it hung in tcp_get_info which is one of the > functions I've modified. > > Jacques, do you have any ideas? The kernel oops does not report it crashes in tcp_get_info, but in __get_free_page called from proc_file_read. Note that I have also seen the bug with cat /proc/net/tcp so we know it is related to tcp_get_info(), but the oops does not occur there. Maybe tcp_get_info is doing something weird (I must admit having read and read the code and I can't see anything weird :-) ) and then some corruption is produced and the kernel crash later. Also the oops is clearly initiated by the netstat process. So it is kind of directly related (or the cat /proc/net/tcp process). --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Sat Mar 23 12:45:08 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NHj77Y015655; Sat, 23 Mar 2002 12:45:07 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NHXZm05355 for vserver.list; Sat, 23 Mar 2002 12:33:35 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gandalf.dungeon.de ([212.36.231.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NHXYh05351 for ; Sat, 23 Mar 2002 12:33:34 -0500 Received: from dragon (dragon.dungeon.de [212.36.227.2]) by gandalf.dungeon.de (Postfix) with ESMTP id 18F42B49C; Sat, 23 Mar 2002 18:33:34 +0100 (MET) Date: Sat, 23 Mar 2002 18:33:34 +0100 From: Sebastian Schaefer To: vserver@solucorp.qc.ca, Martin Josefsson Subject: Re: [vserver] netstat in vserver kills machine Message-ID: <22260000.1016904813@dragon> In-Reply-To: References: X-Mailer: Mulberry/2.1.2 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1; format=flowed Content-Disposition: inline Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g2NHXYh05351 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 350 --On Samstag, März 23, 2002 16:50:31 +0100 Martin Josefsson wrote: > On Sat, 23 Mar 2002, James MacLean wrote: > >> >> I seem to remember it was an Ieee then the machine completely froze... >> >> Except for sysrq combos which confirmed the info reported :). > > Ok thanks, one more thing, do you remember if numlock worked? > It sounds like an infinite loop in tcp_get_info :( > my NumLock worked... bye sebastian From vserver.error@solucorp.qc.ca Sat Mar 23 12:52:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NHqY7Y015700; Sat, 23 Mar 2002 12:52:34 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NHfQO05621 for vserver.list; Sat, 23 Mar 2002 12:41:26 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NHfPh05617 for ; Sat, 23 Mar 2002 12:41:25 -0500 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 3.35 #1) id 16opW9-0000Ht-00 for vserver@solucorp.qc.ca; Sat, 23 Mar 2002 13:41:25 -0400 Date: Sat, 23 Mar 2002 13:41:25 -0400 (AST) From: James MacLean To: Subject: Re: [vserver] netstat in vserver kills machine In-Reply-To: <20020323121154.4f0c53ebb18a@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 351 On Sat, 23 Mar 2002, Jacques Gelinas wrote: > Anyone has withness a crash with ctx-9 with a kernel they compiled themselves > (not using my binary) ? Hi Jacques, All ours are home grown kernels. So, yes, our crashes were on our own kernels only ;). Have not tried any of the pre-made ones. take care, JES -- James B. MacLean macleajb@ednet.ns.ca Department of Education http://www.ednet.ns.ca/~macleajb Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Sat Mar 23 12:53:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NHrd7Y015710; Sat, 23 Mar 2002 12:53:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NHfKp05615 for vserver.list; Sat, 23 Mar 2002 12:41:20 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NHfJh05610 for ; Sat, 23 Mar 2002 12:41:19 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.2/8.12.2/Debian -5) with ESMTP id g2NHfBSe028393; Sat, 23 Mar 2002 18:41:11 +0100 Date: Sat, 23 Mar 2002 18:41:11 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: Sebastian Schaefer cc: vserver@solucorp.qc.ca Subject: Re: [vserver] netstat in vserver kills machine In-Reply-To: <22260000.1016904813@dragon> Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by dns.solucorp.qc.ca id g2NHfJh05610 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 352 On Sat, 23 Mar 2002, Sebastian Schaefer wrote: > > > --On Samstag, März 23, 2002 16:50:31 +0100 Martin Josefsson > wrote: > > > On Sat, 23 Mar 2002, James MacLean wrote: > > > >> > >> I seem to remember it was an Ieee then the machine completely froze... > >> > >> Except for sysrq combos which confirmed the info reported :). > > > > Ok thanks, one more thing, do you remember if numlock worked? > > It sounds like an infinite loop in tcp_get_info :( > > > > my NumLock worked... Ok, then it's probably a livelock of some kind :( /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Sat Mar 23 13:39:23 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NIdM7Y015990; Sat, 23 Mar 2002 13:39:23 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NIJHd06385 for vserver.list; Sat, 23 Mar 2002 13:19:17 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NIJGh06381 for ; Sat, 23 Mar 2002 13:19:16 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.2/8.12.2/Debian -5) with ESMTP id g2NIJ9Se028677 for ; Sat, 23 Mar 2002 19:19:09 +0100 Date: Sat, 23 Mar 2002 19:19:09 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: vserver@solucorp.qc.ca Subject: Re: [vserver] netstat in vserver kills machine In-Reply-To: <20020323121409.468e7b1b4652@remtk.solucorp.qc.ca> Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 353 On Sat, 23 Mar 2002, Jacques Gelinas wrote: [snip] > I have seen kernel oops. not an infinite loop in tcp_get_info. Ok. I've also been going through tcp_get_info() without seeing anything weird, all it does is skip sockets with wrong s_context. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Sat Mar 23 13:43:27 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2NIhR7Y016041; Sat, 23 Mar 2002 13:43:27 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2NIHhw06358 for vserver.list; Sat, 23 Mar 2002 13:17:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2NIHgh06354 for ; Sat, 23 Mar 2002 13:17:42 -0500 Received: from localhost (gandalf@localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.2/8.12.2/Debian -5) with ESMTP id g2NIHZSe028672 for ; Sat, 23 Mar 2002 19:17:35 +0100 Date: Sat, 23 Mar 2002 19:17:35 +0100 (CET) From: Martin Josefsson X-Sender: gandalf@tux.rsn.bth.se To: vserver@solucorp.qc.ca Subject: Re: [vserver] netstat in vserver kills machine In-Reply-To: <20020323121154.4f0c53ebb18a@remtk.solucorp.qc.ca> Message-ID: X-message-flag: Get yourself a real mail client! http://www.washington.edu/pine/ MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 354 On Sat, 23 Mar 2002, Jacques Gelinas wrote: > I have replicated this problem with ctx-9 on two machines, using netstat. Very > odd. On one machine, I have hammered on netstat for a while without any problems > then few hours later (uptime hours later), I crashed the machine twice in a row > using netstat. > > The trace shows that the kernel is dying in __get_free_page(), called from > proc_file_read, just before calling tcp_get_info. My idea was that the new > stuff introduced in ctx-8 (private vserver netstat) was doing some corruption. > But ctx-8 has never crashed on me. ctx-8 has never crashed on me either. I havn't compiled ctx-9 yet. > I have reviewed and reviewed tcp_get_info() and it seems all fine to me. it looks fine to me too, I can't see any problems with it. > Very strange. I wonder if for some reason the kernel ctx-9 has been > improperly compiled. In ctx-9, I introduced a new field in "struct sock" for > the broadcast address. I wonder how big struct sock is now. /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Sun Mar 24 02:40:59 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2O7ex7Y021902; Sun, 24 Mar 2002 02:40:59 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2O7MNN19344 for vserver.list; Sun, 24 Mar 2002 02:22:23 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blackfish.neopeak.com (modemcable033.68-200-24.mtl.mc.videotron.ca [24.200.68.33]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2O7MNh19340 for ; Sun, 24 Mar 2002 02:22:23 -0500 Received: (qmail 7012 invoked by uid 1001); 24 Mar 2002 07:22:14 -0000 Content-Type: text/plain; charset="iso-8859-1" From: Cedric Veilleux To: vserver@solucorp.qc.ca Subject: [vserver] vserver on Gentoo linux Date: Sun, 24 Mar 2002 02:22:14 -0500 X-Mailer: KMail [version 1.4] MIME-Version: 1.0 Message-Id: <200203240222.14637.cveilleux@videotron.ca> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g2O7MNh19340 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 355 Hi, I would like to use vsersvers on a Gentoo linux system. Gentoo linux is a remarkably clean and easy to maintain source distro. The Gentoo package system (portage) keeps lists of installed files for each packages. The format is the following: --- $ cat /var/db/pkg/net-mail/qmail-1.03-r7/CONTENTS dir /var dir /var/qmail dir /var/qmail/bin obj /var/qmail/bin/qmail-queue 070C8E96438FFA9F45E04DECF4E6A76B 1015772773 obj /var/qmail/bin/qmail-lspawn BF64FC5258A1C18832B72FC2BD9B9CCB 1015772773 [...] --- As you can see, configuration files are not distinguished from other files. Although, a list of directories containing configuration files is maintained. On my workstation, this list looks like: -- /etc /var/qmail/control /usr/share/config /usr/kde/2/share/config /usr/kde/3/share/config [...] -- I know the "vbuild" program relies on rpm's to get the list of files. I am not familiar with rpm's nor vservers (yet), so forgive me if I am mistaken. So the vbuild program is the one I should modify to make it use gentoo's portage system to get the list of installed packages and their files, right? Any advice on this subject is of course very appreciated. Thank you, Cedric From vserver.error@solucorp.qc.ca Sun Mar 24 05:58:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2OAwB7Y011743; Sun, 24 Mar 2002 05:58:11 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2OAgQQ01545 for vserver.list; Sun, 24 Mar 2002 05:42:26 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2OAgPh01541 for ; Sun, 24 Mar 2002 05:42:26 -0500 Received: from tpx20.vsen.dk (unknown [192.168.1.50]) by www.vsen.dk (Postfix) with ESMTP id 70334108D for ; Sun, 24 Mar 2002 11:42:14 +0100 (CET) Subject: [vserver] Re: Vserver on Gentoo Linux From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-Z5kE9FwQZ1XiMI6DiQwM" X-Mailer: Evolution/1.0.2 Date: 24 Mar 2002 11:42:13 +0100 Message-Id: <1016966534.1987.1.camel@tpx20.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: A X-Keywords: X-UID: 356 --=-Z5kE9FwQZ1XiMI6DiQwM Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Sun, 2002-03-24 at 08:22, Cedric Veilleux wrote: > know the "vbuild" program relies on rpm's to get the list of files. I > am not familiar with rpm's nor vservers (yet), so forgive me if I am=20 > mistaken.=20 > So the vbuild program is the one I should modify to make it use > gentoo's portage system to get the list of installed packages and > their files, right? >=20 > Any advice on this subject is of course very appreciated. I remember someone on the list a few weeks earlier, had written a patch (or were about to) - so that vbuild could use any packaging system, as long as someone wrote the package-specific details for it - in other words a modular approach. Check the mailinglist archive Vlad did. (btw. the google search is not working yet - sorry :-) It probably wouldn't be the hardest thing to pull out, all rpm commands and exchange them with funtions, that simply choose actual command based upon 1 extra variable stating the package system it needs to use. Have a blast :-) --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-Z5kE9FwQZ1XiMI6DiQwM Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8na2F4c1kHlhtW8oRArCBAJ0YNak9bPXyFCrdn5sRRAgADylEmwCgpAGa wfi5wlRf3K4VG5lh1acrgQ0= =nk7H -----END PGP SIGNATURE----- --=-Z5kE9FwQZ1XiMI6DiQwM-- From vserver.error@solucorp.qc.ca Sun Mar 24 12:20:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2OHKc7Y014086; Sun, 24 Mar 2002 12:20:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2OGxx707049 for vserver.list; Sun, 24 Mar 2002 11:59:59 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2OGxwh07045 for ; Sun, 24 Mar 2002 11:59:58 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2OGxx7Z013928 for ; Sun, 24 Mar 2002 11:59:59 -0500 Date: Sun, 24 Mar 2002 11:59:59 -0500 (EST) From: Vlad To: Vserver Mailinglist Subject: [vserver] mailing list search In-Reply-To: <1016966534.1987.1.camel@tpx20.vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 357 http://www.google.com/addurl.html I've been adding it on weekly basis to google, they just won't pick the damn thing up. A few days ago I configured the cgi to search google for it every time someone looked at any page on that vserver.. Still nothing. I'll give them another month. If they still don't add it I'll setup htdig or something locally. -Vlad > long as someone wrote the package-specific details for it - in other > words a modular approach. Check the mailinglist archive Vlad did. (btw. > the google search is not working yet - sorry :-) From vserver.error@solucorp.qc.ca Sun Mar 24 13:15:29 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2OIFR7Y015075; Sun, 24 Mar 2002 13:15:28 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2OHq5D07890 for vserver.list; Sun, 24 Mar 2002 12:52:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2OHq5h07886 for ; Sun, 24 Mar 2002 12:52:05 -0500 Received: from host213-122-105-240.in-addr.btopenworld.com ([213.122.105.240] helo=john-new) by tungsten.btinternet.com with esmtp (Exim 3.22 #8) id 16pC9v-0006aU-00 for vserver@solucorp.qc.ca; Sun, 24 Mar 2002 17:51:59 +0000 Received: from 213.122.105.240 by john-new ([213.122.105.240] running VPOP3) with SMTP for ; Sun, 24 Mar 2002 17:51:44 -0000 From: "John Lyons" To: Subject: RE: [vserver] mailing list search Date: Sun, 24 Mar 2002 17:51:43 -0000 Message-ID: <003601c1d35c$8fd41f20$f0697ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 358 > I've been adding it on weekly basis to google, they just > won't pick the > damn thing up. A few days ago I configured the cgi to search > google for it > every time someone looked at any page on that vserver.. Still > nothing. > > I'll give them another month. If they still don't add it I'll > setup htdig > or something locally. > Have you tried getting it on Dmoz? Google takes the directory feed from Dmoz so that's a good start. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Sun Mar 24 14:12:37 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2OJCa7Y016260; Sun, 24 Mar 2002 14:12:36 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2OItTX09199 for vserver.list; Sun, 24 Mar 2002 13:55:29 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blackfish.neopeak.com (modemcable033.68-200-24.mtl.mc.videotron.ca [24.200.68.33]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2OItTh09195 for ; Sun, 24 Mar 2002 13:55:29 -0500 Received: (qmail 8613 invoked by uid 1001); 24 Mar 2002 18:55:19 -0000 Content-Type: text/plain; charset="iso-8859-1" From: Cedric Veilleux To: vserver@solucorp.qc.ca Subject: [vserver] Multiple IP's per vserver Date: Sun, 24 Mar 2002 13:55:19 -0500 X-Mailer: KMail [version 1.4] MIME-Version: 1.0 Message-Id: <200203241355.19808.cveilleux@videotron.ca> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g2OItTh09195 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 359 Hi, I have read the whole mailing list archive and did not find much about this subject, although I am sure it has been discussed a lot. I have found in the vserver and s_context intro: << Using port redirection to allow one virtual server to logically bind several IPs. One virtual server could run several web virtual host this way. >> How can this be implemented. Port redirection? A guy named Christian actually made some patches to allow the chbind utility to use a range of ip's instead of just one, which is an excellent approach: << Acually i stoped to maintain the patches, the one above have a small bug (don't unbind ports in a vserver) it was more meant as an example for discussion and inclusion in the main vserver patch. The Idea was to provide tow ip/mask pairs to chbind, so it becomes possible to bind to 2 ip-ranges (the first IP is the default) and masking out which bits in an IP are immutable. Later the vserver-user should be able to constrain the range to a subset of his available IP's. The usage is straightforward (look in chbind.c) chbind got a few more options (--ip1/--mask1/--net2/--mask2) thats all. This days i have no time to work on it(i got married today :) ). In January i will fix the bugs and sync it with te actual vserver release. But i still would like to see it included in the main trunk if there is intrest of it, since i dont want to maintain a 50 lines patch in parallel. >> Thank you, Cedric From vserver.error@solucorp.qc.ca Sun Mar 24 14:54:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2OJsY7Y016693; Sun, 24 Mar 2002 14:54:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2OJaTo10044 for vserver.list; Sun, 24 Mar 2002 14:36:29 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from home.2interactive.com (NS1.2INTERACTIVE.COM [64.170.22.5]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2OJaSh10040 for ; Sun, 24 Mar 2002 14:36:29 -0500 Received: (qmail 24245 invoked from network); 24 Mar 2002 19:35:32 -0000 Received: from unknown (HELO subdimension.com) (66.81.41.102) by 0 with SMTP; 24 Mar 2002 19:35:32 -0000 Date: Sun, 24 Mar 2002 09:11:50 -0900 (AKST) From: James Gibson X-X-Sender: james@camero.fantasia.tld To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver on Gentoo linux In-Reply-To: <200203240222.14637.cveilleux@videotron.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 360 On Sun, 24 Mar 2002, Cedric Veilleux wrote: > Hi, > > I would like to use vsersvers on a Gentoo linux system. Gentoo > linux is a remarkably clean and easy to maintain source distro. Isn't it though? I've been using Gentoo for ~6 months now and I can't go back. =) > > As you can see, configuration files are not distinguished from > other files. Although, a list of directories containing configuration > files is maintained. On my workstation, this list looks like: you are talking about the CONFIG_PROTECT and CONFIG_PROTECT_MASK variables in /etc/make.profile , right? > I know the "vbuild" program relies on rpm's to get the list of > files. I am not familiar with rpm's nor vservers (yet), so forgive me if > I am mistaken. So the vbuild program is the one I should modify to make > it use gentoo's portage system to get the list of installed packages and > their files, right? This sounds about right, and is something I have been meaning to get around to. You should also need to modify the vunify program and I'm not sure what-all else; I will give it a once-through myself tonight. Another good thing would be to create a set of alternate .ebuild files for gentoo ,such as sys-apps/baselayout, in order to make creating the initial vserver easier. Getting a list of all the files installed by packages is rather trivial; something like "cat $GROOT/var/db/pkg/*/*/CONTENTS | awk '/^obj/{print $2;}'" will get you a listing of all the files installed by the gentoo distro under GROOT. You would still need to seperate that list based on your CONFIG_* variables, but that wouldn't be too hard. Klavs' response seems spot-on as well.. I rememeber something a month or so ago about someone patching the vbuild script to handle debian's package manager, and had the forsight to generalize it.. I'll go look around for that, and forward you a copy of the relevant info. James Gibson From vserver.error@solucorp.qc.ca Sun Mar 24 16:01:07 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2OL0p7Y017560; Sun, 24 Mar 2002 16:00:52 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2OKlh311129 for vserver.list; Sun, 24 Mar 2002 15:47:43 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blackfish.neopeak.com (modemcable033.68-200-24.mtl.mc.videotron.ca [24.200.68.33]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2OKlhh11125 for ; Sun, 24 Mar 2002 15:47:43 -0500 Received: (qmail 3887 invoked by uid 1001); 24 Mar 2002 20:47:33 -0000 Content-Type: text/plain; charset="iso-8859-1" From: Cedric Veilleux To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver on Gentoo linux Date: Sun, 24 Mar 2002 15:47:33 -0500 X-Mailer: KMail [version 1.4] References: In-Reply-To: MIME-Version: 1.0 Message-Id: <200203241547.33191.cveilleux@videotron.ca> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g2OKlhh11125 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 361 > > As you can see, configuration files are not distinguished from > > other files. Although, a list of directories containing configuration > > files is maintained. On my workstation, this list looks like: > > you are talking about the CONFIG_PROTECT and CONFIG_PROTECT_MASK > variables in /etc/make.profile , right? > Yes, this is what I was refering to. CONFIG_PROTECT_MASK is not very relevant here since the files under the directories in CONFIG_PROTECT_MASK are config files just as well and should be treated the same way. > > I know the "vbuild" program relies on rpm's to get the list of > > files. I am not familiar with rpm's nor vservers (yet), so forgive me if > > I am mistaken. So the vbuild program is the one I should modify to make > > it use gentoo's portage system to get the list of installed packages and > > their files, right? > > This sounds about right, and is something I have been meaning to get > around to. You should also need to modify the vunify program and I'm not > sure what-all else; I will give it a once-through myself tonight. Another > good thing would be to create a set of alternate .ebuild files for gentoo > ,such as sys-apps/baselayout, in order to make creating the initial > vserver easier. > This sounds like an excellent idea. An ebuild file could be used under gentoo instead of the newvserver script that is used under redhat. How could the new vserver be configured? The newvserver script asks for the vserver name, description, IP address, etc... > > Klavs' response seems spot-on as well.. I rememeber something a month or > so ago about someone patching the vbuild script to handle debian's package > manager, and had the forsight to generalize it.. I'll go look around for > that, and forward you a copy of the relevant info. > Yes, I found a perl version of the vunify tool with a modular system that currently supports debian. There also has been a disucussion about another version of this tool completly independent from the distro, that scans 2 directories to find identical files and hardlink them. The first one has been announced in this message: http://vserver.vlad.net/list/0473.html And the second: http://vserver.vlad.net/list/0485.html Cedric From vserver.error@solucorp.qc.ca Mon Mar 25 10:01:56 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2PF1t7Y025763; Mon, 25 Mar 2002 10:01:55 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2PEkgf30598 for vserver.list; Mon, 25 Mar 2002 09:46:42 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new ([212.69.209.171]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2PEkZh30594 for ; Mon, 25 Mar 2002 09:46:41 -0500 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Mon, 25 Mar 2002 14:00:23 -0000 From: "John Lyons" To: Subject: [vserver] Quotas - a starting point? Date: Mon, 25 Mar 2002 14:00:16 -0000 Message-ID: <00c001c1d405$68b28720$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-reply-to: <200203241547.33191.cveilleux@videotron.ca> Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 362 Just been having a snoop at the new quota support in FreeVSD http://www.dsvr.co.uk/support/reference/genadmin/quotas.phtml $ df -h Filesystem Size Used Avail Use% Mounted on /dev/loop0 2.0G 829M 1.0G 44% /usr/local If anyone can make sense of what they've done it may get things moving for quota support on vservers? Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Mon Mar 25 15:42:06 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2PKg67Y029384; Mon, 25 Mar 2002 15:42:06 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2PKUFx06316 for vserver.list; Mon, 25 Mar 2002 15:30:15 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2PKUEh06312 for ; Mon, 25 Mar 2002 15:30:15 -0500 Received: from remtk.solucorp.qc.ca (g39-252.citenet.net [206.123.39.252]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2PKcv654716 for ; Mon, 25 Mar 2002 15:38:57 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2NJJZ703096 for vserver@solucorp.qc.ca; Sat, 23 Mar 2002 14:19:35 -0500 From: Jacques Gelinas Date: Sat, 23 Mar 2002 14:19:35 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] syntax error in vserver script X-mailer: tlmpmail 0.1 Message-ID: <20020323141935.8c9a59e82946@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 363 On Sat, 23 Mar 2002 11:09:17 -0500, Razvan Cosma wrote > Hello, > Something in this line > > /usr/sbin/chbind --silent --ip $IPROOT \ > /usr/sbin/chcontext --secure --silent --ctx $S_CONTEXT \ > /usr/lib/vserver/vserverkillall In /usr/lib/vserver/vserverkillall, change the grep line like this CTX=`grep ^s_context /proc/self/status | sed s/s_context://` THis will go in the next vserver release, sunday or monday --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Mar 25 15:42:27 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2PKgQ7Y029392; Mon, 25 Mar 2002 15:42:26 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2PKTUT06253 for vserver.list; Mon, 25 Mar 2002 15:29:30 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lakemtao02.cox.net (lakemtao02.cox.net [68.1.17.243]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2PKTUh06249 for ; Mon, 25 Mar 2002 15:29:30 -0500 Received: from gregg ([68.3.68.74]) by lakemtao02.cox.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with SMTP id <20020325193247.LOWW18443.lakemtao02.cox.net@gregg> for ; Mon, 25 Mar 2002 14:32:47 -0500 Message-ID: <02c001c1d433$dd08da10$010510ac@gregg> From: "Gregg" To: References: Subject: [vserver] Off subject Date: Mon, 25 Mar 2002 12:32:52 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-Mimeole: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 364 Sorry for writing something off the subject, but since a lot of you guys out there are setting up these vservers as web hosting servers, I was wondering if there was any good web based control panel available that would let you manage email, ftp, etc etc. Thanks. From vserver.error@solucorp.qc.ca Mon Mar 25 15:46:54 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2PKks7Y029448; Mon, 25 Mar 2002 15:46:54 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2PKUGu06322 for vserver.list; Mon, 25 Mar 2002 15:30:16 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2PKUGh06318 for ; Mon, 25 Mar 2002 15:30:16 -0500 Received: from remtk.solucorp.qc.ca (g39-252.citenet.net [206.123.39.252]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g2PKcw654723 for ; Mon, 25 Mar 2002 15:38:58 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2NJRcC04288 for vserver@solucorp.qc.ca; Sat, 23 Mar 2002 14:27:38 -0500 From: Jacques Gelinas Date: Sat, 23 Mar 2002 14:27:38 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Multiple vservers - 1 IP. X-mailer: tlmpmail 0.1 Message-ID: <20020323142738.a31e7f378254@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 365 On Thu, 21 Mar 2002 09:10:10 -0500, klavs klavsen wrote > quote from Changelog 0.14 > >> > This new kernel enhances set_ipv4root a bit. This is not the multi-ip > support yet though. This kernel allows application relying on broadcast > to work in vservers. The trick is to assigned both an IP number and a > broadcast address to a vserver. The socket handling for UDP was modified > a little (one line in net/ipv4/udp.c) so an incoming packet is processed > if it matched the vserver IP or the vserver broadcast address. > << > > How much would have to be added to add a recognition of a certain port > on the "root" servers ip-address - so I f.ex. could run my proftpd under > a vserver (with a 10.x.x.x IP) and then assign port 21 on the root > server(which would be the only one with a RFC1918 -valid IP) to this > vserver (so that packages were forwarded)? Not sure I understand your question. You want to run proftpd in a vserver but you want incoming ftp connection made to the public IP of the server to be redirect to the vserver running proftpd There are two solution I know to this problem 1-Assign the IPROOT of the vserver to the public IP of the machine. Several vservers may share the same IP. For sure, if one binds a service, the other can't. But I guess your interest here is to use the vserver as a isolution mechanism. 2-Use the redir package at ftp.solucorp.qc.ca/pub/misc. It support ftp redirection, both passive and active sessions. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Mar 25 18:46:42 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2PNkf7Y031100; Mon, 25 Mar 2002 18:46:42 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2PNTM909821 for vserver.list; Mon, 25 Mar 2002 18:29:22 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-158-89.in-addr.btopenworld.com [213.122.158.89]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2PNTIh09817 for ; Mon, 25 Mar 2002 18:29:19 -0500 Received: from 213.122.158.89 by john-new ([213.122.158.89] running VPOP3) with SMTP for ; Mon, 25 Mar 2002 23:26:21 -0000 From: "John Lyons" To: Subject: RE: [vserver] OT Control panels Date: Mon, 25 Mar 2002 22:31:47 -0000 Message-ID: <004f01c1d454$790dbf50$2f61063e@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <02c001c1d433$dd08da10$010510ac@gregg> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.4 required=5.0 tests=IN_REP_TO,FREQ_SPAM_PHRASE,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: A X-Keywords: X-UID: 366 Sad to say but all we've found is webmin. Some free ones are. http://www.ispman.org/ http://webcp.can-host.com/ http://www.kandalaya.org/ Beyond that you're looking at some of the commercial packages but things like cpanel will probably cost you more per vs than the customer is paying you. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Tue Mar 26 00:38:12 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2Q5cB7Y001512; Tue, 26 Mar 2002 00:38:11 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2Q5KQP15582 for vserver.list; Tue, 26 Mar 2002 00:20:26 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2Q5KPh15578 for ; Tue, 26 Mar 2002 00:20:26 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2Q5KP7Z001418 for ; Tue, 26 Mar 2002 00:20:25 -0500 Date: Tue, 26 Mar 2002 00:20:25 -0500 (EST) From: Vlad To: vserver@solucorp.qc.ca Subject: RE: [vserver] OT Control panels In-Reply-To: <004f01c1d454$790dbf50$2f61063e@johnnew> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 367 I dig webmin personally :) The thing that I have configured for some customers is Plesk. I actually know one of the guys that works for them and they have been very helpful. The single domain version is free and since you're on one ip address with vserver you might as well use it. The only tricky part is that for some parts you need to register with plesk.com (also free)... so as long as its a single domain / single ip address you can configure pretty much everything. http://www.plesk.com -Vlad On Mon, 25 Mar 2002, John Lyons wrote: > > Sad to say but all we've found is webmin. > > Some free ones are. > http://www.ispman.org/ > http://webcp.can-host.com/ > http://www.kandalaya.org/ > > Beyond that you're looking at some of the commercial packages but things > like cpanel will probably cost you more per vs than the customer is paying > you. > > Regards > > John Lyons > DomainCity > http://www.domaincity.co.uk > support@domaincity.co.uk > ICQ 74187012 > > *********************************************************************** > Please quote your account number in the subject line of all emails. > Failure to do so may result in your enquiries taking longer to process. > *********************************************************************** > From vserver.error@solucorp.qc.ca Tue Mar 26 11:07:53 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2QG7q7Y007018; Tue, 26 Mar 2002 11:07:52 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2QFpvR31981 for vserver.list; Tue, 26 Mar 2002 10:51:57 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lakemtao04.cox.net (lakemtao04.cox.net [68.1.17.241]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2QFpuh31977 for ; Tue, 26 Mar 2002 10:51:56 -0500 Received: from gregg ([68.3.68.74]) by lakemtao04.cox.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with SMTP id <20020326155156.JQCH21159.lakemtao04.cox.net@gregg> for ; Tue, 26 Mar 2002 10:51:56 -0500 Message-ID: <03fe01c1d4de$30591fe0$010510ac@gregg> From: "Gregg" To: References: <004f01c1d454$790dbf50$2f61063e@johnnew> Subject: Re: [vserver] OT Control panels Date: Tue, 26 Mar 2002 08:52:09 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-Mimeole: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 368 Thanks for all the info guys. The webcp looks very interesting. I do like webmin also, I've installed it before, but it just has too many options, especially for a vserver! :) ----- Original Message ----- From: "John Lyons" To: Sent: Monday, March 25, 2002 3:31 PM Subject: RE: [vserver] OT Control panels > > Sad to say but all we've found is webmin. > > Some free ones are. > http://www.ispman.org/ > http://webcp.can-host.com/ > http://www.kandalaya.org/ > > Beyond that you're looking at some of the commercial packages but things > like cpanel will probably cost you more per vs than the customer is paying > you. > > Regards > > John Lyons > DomainCity > http://www.domaincity.co.uk > support@domaincity.co.uk > ICQ 74187012 > > *********************************************************************** > Please quote your account number in the subject line of all emails. > Failure to do so may result in your enquiries taking longer to process. > *********************************************************************** > From vserver.error@solucorp.qc.ca Tue Mar 26 12:14:45 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2QHEj7Y007685; Tue, 26 Mar 2002 12:14:45 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2QGv3j02088 for vserver.list; Tue, 26 Mar 2002 11:57:03 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2QGv3h02084 for ; Tue, 26 Mar 2002 11:57:03 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2Q2bn911072 for vserver@solucorp.qc.ca; Mon, 25 Mar 2002 21:37:49 -0500 From: Jacques Gelinas Date: Mon, 25 Mar 2002 21:37:49 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] netstat in vserver kills machine X-mailer: tlmpmail 0.1 Message-ID: <20020325213749.079579563b14@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 369 On Sat, 23 Mar 2002 19:17:35 -0500, Martin Josefsson wrote > On Sat, 23 Mar 2002, Jacques Gelinas wrote: > > > I have replicated this problem with ctx-9 on two machines, using netstat. Very > > odd. On one machine, I have hammered on netstat for a while without any problems > > then few hours later (uptime hours later), I crashed the machine twice in a row > > using netstat. > > > > The trace shows that the kernel is dying in __get_free_page(), called from > > proc_file_read, just before calling tcp_get_info. My idea was that the new > > stuff introduced in ctx-8 (private vserver netstat) was doing some corruption. > > But ctx-8 has never crashed on me. > > ctx-8 has never crashed on me either. > > I havn't compiled ctx-9 yet. > > > I have reviewed and reviewed tcp_get_info() and it seems all fine to me. > > it looks fine to me too, I can't see any problems with it. > > > Very strange. I wonder if for some reason the kernel ctx-9 has been > > improperly compiled. In ctx-9, I introduced a new field in "struct sock" for > > the broadcast address. > > I wonder how big struct sock is now. I have tought about this a little. I wonder why the kernel crashes while doing netstat (reading /proc/net/tcp in fact) and seems reliable otherwise. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Mar 26 14:03:26 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2QJ3P7Y008912; Tue, 26 Mar 2002 14:03:26 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2QIoAt04734 for vserver.list; Tue, 26 Mar 2002 13:50:10 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from icvglengw.icreditvision.com (bdsl.66.13.76.76.gte.net [66.13.76.76]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2QIo9h04730 for ; Tue, 26 Mar 2002 13:50:09 -0500 Received: from idouglas ([192.168.100.118]) by icvglengw.icreditvision.com (8.11.2/8.8.7) with SMTP id g2QIuLa19492 for ; Tue, 26 Mar 2002 10:56:21 -0800 From: "Ian Douglas" To: Subject: RE: [vserver] Absence jusqu'au 02/04 Date: Tue, 26 Mar 2002 10:51:34 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MIMEOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 Importance: Normal In-Reply-To: <03311493790895@irisnet.be> Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 370 Can this guy be removed? If we get copies of our own submissions to the list, this guy is just going to keep sending 'away' messages to the list over and over by responding to his own away messages. -id > -----Original Message----- > From: blete@irisnet.be [mailto:NULL@irisnet.be] > Sent: Tuesday, March 26, 2002 10:31 AM > To: vserver.error@solucorp.qc.ca > Subject: [vserver] Absence jusqu'au 02/04 > > > Je suis en congé jusqu'au 02/04. > From vserver.error@solucorp.qc.ca Tue Mar 26 15:28:22 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2QKSL7Y010254; Tue, 26 Mar 2002 15:28:22 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2QKKPA07045 for vserver.list; Tue, 26 Mar 2002 15:20:25 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.mtl.toxik.net (modemcable200.184-201-24.mtl.mc.videotron.ca [24.201.184.200]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2QKKPh07041 for ; Tue, 26 Mar 2002 15:20:25 -0500 Received: (qmail 18445 invoked by alias); 26 Mar 2002 20:20:25 -0000 Received: from koala.mtl.toxik.net (HELO toxik.com) (192.168.1.112) by ns1.mtl.toxik.net with SMTP; 26 Mar 2002 20:20:25 -0000 Message-ID: <3CA0D757.9060406@toxik.com> Date: Tue, 26 Mar 2002 15:17:27 -0500 From: Toxik - Martial Rioux Organization: Toxik Technologies Inc. User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020310 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Vserver mailinglist administrator (Ref: [vserver] Absence jusqu'au 02/04) References: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 371 Hi, Please remove this email address from vserver mailing during the vacation. We receive a lots of unsolicited email. Thanks >-----Original Message----- >From: blete@irisnet.be [mailto:NULL@irisnet.be] >Sent: Tuesday, March 26, 2002 10:31 AM >To: vserver.error@solucorp.qc.ca >Subject: [vserver] Absence jusqu'au 02/04 > > >Je suis en congé jusqu'au 02/04. -- Martial Rioux Infrastructures and Technologies Toxik Technologies Inc. From vserver.error@solucorp.qc.ca Tue Mar 26 18:47:29 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2QNlS7Y013314; Tue, 26 Mar 2002 18:47:28 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2QNUVr12207 for vserver.list; Tue, 26 Mar 2002 18:30:31 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp017.mail.yahoo.com (smtp017.mail.yahoo.com [216.136.174.114]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2QNUUh12203 for ; Tue, 26 Mar 2002 18:30:30 -0500 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 26 Mar 2002 23:30:29 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] Any known bug that would crash the server? Date: Tue, 26 Mar 2002 17:30:13 -0600 Message-ID: <000001c1d51e$304fdd00$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <08061109395236@irisnet.be> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-1.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK version=2.01 Status: RO X-Status: X-Keywords: X-UID: 372 Hello, I have only been using vserver for a couple of days. I use it to isolate an FTP server in a dedicated server I got from a datacenter. The server has been going down mysteriously. Whenever I bring it up, after a few hours (7-11 hours), it will go down for no apparent reason. A remote-reboot will usually bring it back up. Is there any known bug that may cause this? I am collaborating with the tech support to determine if this is a kernel issue or a hardware issue. Thanks, Peter _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com From vserver.error@solucorp.qc.ca Tue Mar 26 19:32:01 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2R0W07Y014025; Tue, 26 Mar 2002 19:32:00 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2R0I6F13394 for vserver.list; Tue, 26 Mar 2002 19:18:06 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2R0I6h13390 for ; Tue, 26 Mar 2002 19:18:06 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2R0K0i03156 for vserver@solucorp.qc.ca; Tue, 26 Mar 2002 19:20:00 -0500 From: Jacques Gelinas Date: Tue, 26 Mar 2002 19:20:00 -0500 To: vserver@solucorp.qc.ca Subject: re: Vserver mailinglist administrator (Ref: [vserver] Absence jusqu'au 02/04) X-mailer: tlmpmail 0.1 Message-ID: <20020326192000.5d6a14d779df@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 373 On Tue, 26 Mar 2002 15:17:27 -0500, Toxik - Martial Rioux wrote > Hi, > > Please remove this email address from vserver mailing during the > vacation. We receive a lots of unsolicited email. I have added "Precedence: bulk" to the mailing list messages. I guess his vacation program will take note. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Mar 26 19:40:24 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2R0eO7Y014146; Tue, 26 Mar 2002 19:40:24 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2R0LTV13472 for vserver.list; Tue, 26 Mar 2002 19:21:29 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2R0LTh13468 for ; Tue, 26 Mar 2002 19:21:29 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2R0NNm03163 for vserver@solucorp.qc.ca; Tue, 26 Mar 2002 19:23:23 -0500 From: Jacques Gelinas Date: Tue, 26 Mar 2002 19:23:23 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Any known bug that would crash the server? X-mailer: tlmpmail 0.1 Message-ID: <20020326192323.f86237cf1b7a@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 374 On Tue, 26 Mar 2002 17:30:13 -0500, Peter Kwan Chan wrote > Hello, > I have only been using vserver for a couple of days. I use it to isolate > an FTP server in a dedicated server I got from a datacenter. The server > has been going down mysteriously. Whenever I bring it up, after a few > hours (7-11 hours), it will go down for no apparent reason. A > remote-reboot will usually bring it back up. > Is there any known bug that may cause this? I am collaborating with the > tech support to determine if this is a kernel issue or a hardware issue. There is an issue with kernel 2.4.18ctx-9. It locks the server completly when accessing /proc/net/tcp (or doing netstat) for one. Other kernels are fine such as 2.4.18ctx-8. We do not know yet why ctx-9 is buggy as it differs very little from ctx-8. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Mar 26 19:43:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2R0hE7Y014233; Tue, 26 Mar 2002 19:43:15 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2R0S8313623 for vserver.list; Tue, 26 Mar 2002 19:28:08 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lakemtao03.cox.net (lakemtao03.cox.net [68.1.17.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2R0S7h13619 for ; Tue, 26 Mar 2002 19:28:08 -0500 Received: from gregg ([68.3.68.74]) by lakemtao03.cox.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with SMTP id <20020327002807.NFMV18064.lakemtao03.cox.net@gregg> for ; Tue, 26 Mar 2002 19:28:07 -0500 Message-ID: <000701c1d526$420b60c0$010510ac@gregg> From: "Gregg" To: References: <08570945395852@irisnet.be> Subject: Re: [vserver] Absence jusqu'au 02/04 Date: Tue, 26 Mar 2002 17:28:03 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 375 This is really getting annoying. ----- Original Message ----- From: "blete@irisnet.be" To: Sent: Tuesday, March 26, 2002 4:57 PM Subject: [vserver] Absence jusqu'au 02/04 > Je suis en congé jusqu'au 02/04. From vserver.error@solucorp.qc.ca Tue Mar 26 19:54:36 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2R0sZ7Y014370; Tue, 26 Mar 2002 19:54:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2R0hcs14097 for vserver.list; Tue, 26 Mar 2002 19:43:38 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp016.mail.yahoo.com (smtp016.mail.yahoo.com [216.136.174.113]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2R0hbh14093 for ; Tue, 26 Mar 2002 19:43:37 -0500 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 27 Mar 2002 00:43:36 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Any known bug that would crash the server? Date: Tue, 26 Mar 2002 18:43:23 -0600 Message-ID: <000501c1d528$6723c490$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <20020326192323.f86237cf1b7a@remtk.solucorp.qc.ca> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-1.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK version=2.01 Status: RO X-Status: X-Keywords: X-UID: 376 I also realize that. I also know that running netstat would lock my particular server. Sorry if this is not vserver-unrelated. I would like to know what could trigger such a reaction in Linux when there is no active user. I don't normally touches netstat, and the server usually goes down only after at least a few hours. Is there any possibility that some processes could be using /proc/net/tcp periodically, thus causing the lock up? The virtual server is an FTP server with only a few connections, and my main server is a standard Redhat 7.1 install. Thanks, Peter -----Original Message----- From: Jacques Gelinas [mailto:jack@solucorp.qc.ca] Sent: Tuesday, March 26, 2002 6:23 PM To: vserver@solucorp.qc.ca Subject: re: [vserver] Any known bug that would crash the server? On Tue, 26 Mar 2002 17:30:13 -0500, Peter Kwan Chan wrote > Hello, > I have only been using vserver for a couple of days. I use it to isolate > an FTP server in a dedicated server I got from a datacenter. The server > has been going down mysteriously. Whenever I bring it up, after a few > hours (7-11 hours), it will go down for no apparent reason. A > remote-reboot will usually bring it back up. > Is there any known bug that may cause this? I am collaborating with the > tech support to determine if this is a kernel issue or a hardware issue. There is an issue with kernel 2.4.18ctx-9. It locks the server completly when accessing /proc/net/tcp (or doing netstat) for one. Other kernels are fine such as 2.4.18ctx-8. We do not know yet why ctx-9 is buggy as it differs very little from ctx-8. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com From vserver.error@solucorp.qc.ca Tue Mar 26 20:39:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2R1dX7Y015536; Tue, 26 Mar 2002 20:39:34 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2R1VUR15245 for vserver.list; Tue, 26 Mar 2002 20:31:30 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mx1.paradigm4.com.au (server.paradigm4.com.au [202.45.126.119]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2R1VSh15241 for ; Tue, 26 Mar 2002 20:31:29 -0500 Received: (qmail 10233 invoked from network); 27 Mar 2002 01:34:31 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 27 Mar 2002 01:34:31 -0000 Received: (qmail 5789 invoked from network); 27 Mar 2002 01:36:36 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 27 Mar 2002 01:36:36 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Wed, 27 Mar 2002 12:40:15 +1100 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: re: Vserver mailinglist administrator (Ref: [vserver] Absence jusqu'au 02/04) Message-ID: <3CA1BDAF.29021.922DC@localhost> Priority: normal In-reply-to: <20020326192000.5d6a14d779df@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=1.2 required=5.0 tests=NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 377 There is a misconfiguration on your end as well. His replies go to vserver.error@solucorp.qc.ca which shouldn't automatically get distributed to this list. hth Ed On Tuesday, 26 March 2002 at 19:20, Jacques Gelinas wrote: > On Tue, 26 Mar 2002 15:17:27 -0500, Toxik - Martial Rioux wrote > > Hi, > > > > Please remove this email address from vserver mailing during the > > vacation. We receive a lots of unsolicited email. > > I have added "Precedence: bulk" to the mailing list messages. I guess his > vacation program will take note. > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > From vserver.error@solucorp.qc.ca Wed Mar 27 01:09:56 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2R69t7Y021537; Wed, 27 Mar 2002 01:09:55 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2R5ulc25072 for vserver.list; Wed, 27 Mar 2002 00:56:47 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cyclone.neutech.fi (cyclone.neutech.fi [194.100.130.66]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2R5ukh25068 for ; Wed, 27 Mar 2002 00:56:46 -0500 Received: (qmail 3955 invoked by uid 1001); 27 Mar 2002 05:56:44 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 27 Mar 2002 05:56:44 -0000 Date: Wed, 27 Mar 2002 07:56:44 +0200 (EET) From: Toni Mattila To: Subject: Re: [vserver] Absence jusqu'au 02/04 In-Reply-To: <14211956298891@irisnet.be> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by dns.solucorp.qc.ca id g2R5ukh25068 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: A X-Keywords: X-UID: 378 Hi, Ca you guys filter this nonsense? Atleast I haven't gotten back from postmaster any explanation. But it seems that the host is running braindead NT-Mail. Regards, Toni Mattila -- I don't have an attitude problem. You have a perception problem. On Wed, 27 Mar 2002, blete@irisnet.be wrote: > Je suis en congé jusqu'au 02/04. > From vserver.error@solucorp.qc.ca Wed Mar 27 01:16:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2R6Gd7Y021765; Wed, 27 Mar 2002 01:16:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2R69Xh25541 for vserver.list; Wed, 27 Mar 2002 01:09:33 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2R69Xh25537 for ; Wed, 27 Mar 2002 01:09:33 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2R6BMi05299 for vserver@solucorp.qc.ca; Wed, 27 Mar 2002 01:11:22 -0500 From: Jacques Gelinas Date: Wed, 27 Mar 2002 01:11:22 -0500 To: vserver@solucorp.qc.ca Subject: re: Vserver mailinglist administrator (Ref: [vserver] Absence jusqu'au 02/04) X-mailer: tlmpmail 0.1 Message-ID: <20020327011122.aefc6d929e5b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 379 On Tue, 26 Mar 2002 19:20:00 -0500, Jacques Gelinas wrote > On Tue, 26 Mar 2002 15:17:27 -0500, Toxik - Martial Rioux wrote > > Hi, > > > > Please remove this email address from vserver mailing during the > > vacation. We receive a lots of unsolicited email. > > I have added "Precedence: bulk" to the mailing list messages. I guess his > vacation program will take note. Does not seem so. I removed him from the list --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Mar 27 01:25:22 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2R6PL7Y021860; Wed, 27 Mar 2002 01:25:22 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2R6CkR25675 for vserver.list; Wed, 27 Mar 2002 01:12:46 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2R6Ckh25671 for ; Wed, 27 Mar 2002 01:12:46 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2R6EaS05307 for vserver@solucorp.qc.ca; Wed, 27 Mar 2002 01:14:36 -0500 From: Jacques Gelinas Date: Wed, 27 Mar 2002 01:14:36 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] Any known bug that would crash the server? X-mailer: tlmpmail 0.1 Message-ID: <20020327011436.040249c3f5b1@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 380 On Tue, 26 Mar 2002 18:43:23 -0500, Peter Kwan Chan wrote > I also realize that. I also know that running netstat would lock my > particular server. > Sorry if this is not vserver-unrelated. I would like to know what could > trigger such a reaction in Linux when there is no active user. I don't > normally touches netstat, and the server usually goes down only after at > least a few hours. Is there any possibility that some processes could be > using /proc/net/tcp periodically, thus causing the lock up? The virtual > server is an FTP server with only a few connections, and my main server > is a standard Redhat 7.1 install. Note, I have withness 2.4.18ctx-9 crashing for other reasons as well. Can't tell if this was related to /proc/net/tcp. For example, it locked while starting the KDE desktop. I suggest you try 2.4.18ctx-8. Many people are running it with success. The changes in 2.4.18ctx-9 only involve UDP broadcast, so affect very few services, --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Mar 27 01:28:22 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2R6SL7Y021870; Wed, 27 Mar 2002 01:28:22 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2R6KIC25895 for vserver.list; Wed, 27 Mar 2002 01:20:18 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2R6KIh25891 for ; Wed, 27 Mar 2002 01:20:18 -0500 Received: from localhost (localhost.localdomain [127.0.0.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2R6KI7Z021814 for ; Wed, 27 Mar 2002 01:20:18 -0500 Date: Wed, 27 Mar 2002 01:20:18 -0500 (EST) From: Vlad To: vserver@solucorp.qc.ca Subject: [vserver] come on In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 381 I find it amazing that anybody actually bothered to send a message after the second email they got from someones vacation program. How many of you actually saw more than two messages from that dude before you added a rule to filter him out? :0 * ^TO.vserver.error@solucorp.qc.ca /dev/null -Vlad From vserver.error@solucorp.qc.ca Wed Mar 27 06:45:05 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2RBj47Y024932; Wed, 27 Mar 2002 06:45:05 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2RBOlf32640 for vserver.list; Wed, 27 Mar 2002 06:24:47 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-3-100.in-addr.btopenworld.com [213.122.3.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2RBOjh32636 for ; Wed, 27 Mar 2002 06:24:46 -0500 Received: from 213.122.3.100 by john-new ([213.122.3.100] running VPOP3) with SMTP for ; Wed, 27 Mar 2002 11:24:28 -0000 From: "John Lyons" To: Subject: RE: [vserver] come on Date: Wed, 27 Mar 2002 11:24:21 -0000 Message-ID: <007d01c1d581$f51b9e90$6d787ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 382 > I find it amazing that anybody actually bothered to send a > message after > the second email they got from someones vacation program. How > many of you > actually saw more than two messages from that dude before you > added a rule > to filter him out? Nice try but I didn't collect my email until this morning. I now have over 180 emails from this plonker. John From vserver.error@solucorp.qc.ca Wed Mar 27 08:19:12 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2RDJB7Y025547; Wed, 27 Mar 2002 08:19:11 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2RD5Am02402 for vserver.list; Wed, 27 Mar 2002 08:05:10 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nbrmr1002.accenture.com (nbrmr1002.accenture.com [170.252.248.71]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2RD59h02398 for ; Wed, 27 Mar 2002 08:05:10 -0500 Received: from amrhm1104.accenture.com (amrhm1104.accenture.com [10.10.100.248]) by nbrmr1002.accenture.com (Switch-2.0.6/Switch-2.0.6) with ESMTP id g2RD6TK04522 for ; Wed, 27 Mar 2002 07:06:29 -0600 (CST) Received: from nbrxd1000.dir.svc.accenture.com ([10.10.198.92]) by nbrhm1300.accenture.com (Lotus Domino Release 5.0.6a) with ESMTP id 2002032706585252:2361 ; Wed, 27 Mar 2002 06:58:52 -0600 Received: from NBRXM1101.dir.svc.accenture.com ([10.10.198.91]) by nbrxd1000.dir.svc.accenture.com with Microsoft SMTPSVC(5.0.2195.3779); Wed, 27 Mar 2002 07:05:07 -0600 X-MimeOLE: Produced By Microsoft Exchange V6.0.5762.3 Subject: [vserver] unsubscribe Date: Wed, 27 Mar 2002 07:05:07 -0600 Message-ID: MIME-Version: 1.0 X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: unsubscribe Thread-Index: AcHVj+pQ1Z6HM5XATpC7vceLOGmBNg== From: To: X-OriginalArrivalTime: 27 Mar 2002 13:05:07.0621 (UTC) FILETIME=[04D5C550:01C1D590] X-MIMETrack: Itemize by SMTP Server on NBRHM1300/Server/Accenture(Release 5.0.6a |January 17, 2001) at 03/27/2002 06:58:52 AM, Serialize by Router on AMRHM1104/Server/Accenture(Release 5.0.9a |January 7, 2002) at 03/27/2002 07:05:10 AM, Serialize complete at 03/27/2002 07:05:10 AM content-class: urn:content-classes:message Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C1D590.04BC7939" X-Archived: msg.XXTkyze_@nbrmr1002 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=1.2 required=5.0 tests=NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 383 This is a multi-part message in MIME format. ------_=_NextPart_001_01C1D590.04BC7939 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="us-ascii" =20 =20 Accenture Data Center Services Email and Collaboration Matthew C. Stoodley Phone - (312)693-3187 Fax - (312)652-3187 Octel - 68/33187 =20 =20 ------_=_NextPart_001_01C1D590.04BC7939 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset="us-ascii" Message
 
 
Accenture
Data Center=20 Services
Email and=20 Collaboration
Matthew C.=20 Stoodley
Phone -=20 (312)693-3187
Fax -=20 (312)652-3187
Octel -=20 68/33187
 
 
------_=_NextPart_001_01C1D590.04BC7939-- From vserver.error@solucorp.qc.ca Wed Mar 27 12:46:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2RHkc7Y027992; Wed, 27 Mar 2002 12:46:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2RHUKF08790 for vserver.list; Wed, 27 Mar 2002 12:30:20 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.fibertel.com.ar (mta2.fibertel.com.ar [24.232.0.162]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2RHUJh08785 for ; Wed, 27 Mar 2002 12:30:19 -0500 Received: from Guri (24.232.135.73) by mail.fibertel.com.ar (5.5.034) id 3C9B703C000F9E9E for vserver@solucorp.qc.ca; Wed, 27 Mar 2002 14:31:45 -0300 From: boixos_nois@yahoo.com To: vserver@solucorp.qc.ca Date: Wed, 27 Mar 2002 14:21:46 -0300 X-Priority: 3 (Normal) In-Reply-To: <20020326192000.5d6a14d779df@remtk.solucorp.qc.ca> Message-Id: Subject: [vserver] unsubscribe MIME-Version: 1.0 Content-Type: text/plain; charset="windows-1252" X-Mailer: Opera 6.01 build 1041 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=1.1 required=5.0 tests=IN_REP_TO,NO_REAL_NAME,FORGED_YAHOO_RCVD version=2.01 Status: RO X-Status: X-Keywords: X-UID: 384 unsubscribe From vserver.error@solucorp.qc.ca Thu Mar 28 15:24:45 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2SKOi7Y009580; Thu, 28 Mar 2002 15:24:45 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2SKAVf13547 for vserver.list; Thu, 28 Mar 2002 15:10:31 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-35-78.in-addr.btopenworld.com [213.122.35.78]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2SKAOh13537 for ; Thu, 28 Mar 2002 15:10:29 -0500 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Thu, 28 Mar 2002 17:56:22 -0000 From: "John Lyons" To: Subject: [vserver] init.d Date: Thu, 28 Mar 2002 17:56:17 -0000 Message-ID: <01e601c1d681$df084170$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <007d01c1d581$f51b9e90$6d787ad5@johnnew> X-Mimeole: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 385 I'm just going through init.d from our stock RH7.2 and there seem to be quite a few services that could safely be removed Are there any reasons why I shouldn't be removing these packages? ypbind apmd iptables killall network nscd single functions identd kdcrotate ffs ntpd random snmpd autofs halt ipchains keytable netfs nfslock portmap rawdevices Regards John From vserver.error@solucorp.qc.ca Thu Mar 28 16:39:55 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2SLds7Y010255; Thu, 28 Mar 2002 16:39:54 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2SLSlW15234 for vserver.list; Thu, 28 Mar 2002 16:28:47 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2SLSkh15230 for ; Thu, 28 Mar 2002 16:28:46 -0500 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g2SLSpr24202 for ; Thu, 28 Mar 2002 13:28:51 -0800 X-Authentication-Warning: main.cyber-office.net: raanders owned process doing -bs Date: Thu, 28 Mar 2002 13:28:51 -0800 (PST) From: X-X-Sender: To: Subject: Re: [vserver] init.d In-Reply-To: <01e601c1d681$df084170$0100a8c0@johnnew> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.8 required=5.0 tests=IN_REP_TO,NO_REAL_NAME,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 386 On Thu, 28 Mar 2002, John Lyons wrote: > > I'm just going through init.d from our stock RH7.2 and there seem to be > quite a few services that could safely be removed > > Are there any reasons why I shouldn't be removing these packages? >From a vserver right? Well I just got POP3 working from a vserver after I put in an ipchains accept rule for port 110 in the vserver. Doing it from the main server didn't seem to make a difference to the vserver. > ipchains Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Thu Mar 28 18:39:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2SNdw7Y011225; Thu, 28 Mar 2002 18:39:58 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2SNTpi17485 for vserver.list; Thu, 28 Mar 2002 18:29:51 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2SNTph17481 for ; Thu, 28 Mar 2002 18:29:51 -0500 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g2SNViG04156 for vserver@solucorp.qc.ca; Thu, 28 Mar 2002 18:31:44 -0500 From: Jacques Gelinas Date: Thu, 28 Mar 2002 18:31:44 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] init.d X-mailer: tlmpmail 0.1 Message-ID: <20020328183144.dc6b0d0fe7cf@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 387 On Thu, 28 Mar 2002 17:56:17 -0500, John Lyons wrote > > I'm just going through init.d from our stock RH7.2 and there seem to be > quite a few services that could safely be removed > > Are there any reasons why I shouldn't be removing these packages? > > > ypbind Used for NIS. Can be removed. Vservers may use NIS to share password with other server as needed. > apmd Not needed. Advanced power management. Only useful in a root server (useful ? I have never seen it works ...) > iptables Only useful in the root server. Used to configure the firewall. By default vservers are not allowed to handle the firewall. > killall Not a service, but there anyway. A pseudo service used in runlevel 6 to kill the remaining processes. You can keep it there. Anyway, it is part of the initscript package, so you can't get rid of it easily > network Used to configure the network. vserver are not allowed to do that. > nscd Used as a dns client cache by the glibc resolver. A vserver can use it to speed up some network access. > single A pseudo service, part of initscript I think. > functions Not a service a all. Part of initscripts. It contains useful bash function used all over the place in the scripts. > identd Support the auth protocol. You keep it if you want. Not useful for internet server. May be useful for intranet server, when using rsh like services. It allows another server to request the username associated with a socket. > kdcrotate Needed if you use kerberos. > ffs Note sure. rpm -qfi /etc/init.d/ffs is your friend. > ntpd Not useful since a vserver can't set the server time. You can get rid of it. > random Not useful. Need to prime the random generator in the kernel. Only the root vserver can do that. > snmpd snmp daemon, useful to monitor stuff on your box. Can be used in a vserver. If you don't know about snmp, you probably don't need it ? > autofs used to automount stuff. A vserver is not allowed to mount stuff by default. So you can get rid of it. > halt Pseudo service to stop the machine. Part of initscript > ipchains Firewall service, not useful in a vserver (a vserver can't use it by default) > keytable Not useful for vserver. Used to configure the server keyboard. > netfs used to perform NFS mount at boot time. A vserver is not allowed to do so. > nfslock NFS lock daemon. For now, a vserver does not work as an NFS server. Not useful for now. > portmap The NFS server (for one) needs it. RPC services are using portmap to register the port they are using. Few services needs that. NFS for one. > rawdevices Only useful to configure raw devices in the root server. > Regards Don't know this service, probably not useful in linux servers at all. I was told it was a new IETF standards to ease communication between human being, but far too many people think it is optional :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Mar 28 19:34:30 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2T0YT7Y011634; Thu, 28 Mar 2002 19:34:29 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2T0OZY18491 for vserver.list; Thu, 28 Mar 2002 19:24:35 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-23-102.in-addr.btopenworld.com [213.122.23.102]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2T0OXh18487 for ; Thu, 28 Mar 2002 19:24:33 -0500 Received: from 192.168.201.1 by john-new ([192.168.201.1] running VPOP3) with SMTP for ; Fri, 29 Mar 2002 00:24:17 -0000 From: "John Lyons" To: Subject: RE: [vserver] init.d Date: Fri, 29 Mar 2002 00:24:16 -0000 Message-ID: <041c01c1d6b8$10215130$4e237ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <20020328183144.dc6b0d0fe7cf@remtk.solucorp.qc.ca> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 388 > > Regards > > Don't know this service, probably not useful in linux servers > at all. I was told > it was a new IETF standards to ease communication between > human being, but > far too many people think it is optional :-) LOL Many many thanks for that. I'm sure your notes here will be useful for lots of other people in the future. They've certainly sorted things out for me. Regards John Lyons From vserver.error@solucorp.qc.ca Sat Mar 30 13:01:04 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2UI137Y029481; Sat, 30 Mar 2002 13:01:03 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2UHgte06619 for vserver.list; Sat, 30 Mar 2002 12:42:55 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hoffman.vilain.net (ppp-225-59-229.friaco.access.uk.tiscali.com [80.225.59.229]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2UHgoh06608 for ; Sat, 30 Mar 2002 12:42:52 -0500 Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 16rMs8-00012G-00 for ; Sat, 30 Mar 2002 17:42:36 +0000 Date: Sat, 30 Mar 2002 17:42:35 +0000 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] tree-quotas Message-Id: <20020330174235.28ea3101.sv@easyspace.com> In-Reply-To: References: Organization: Easyspace Ltd X-Mailer: Sylpheed version 0.7.0 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: PI2{lKxF*i|]%@A&-0AV/%sXN)UJ<+SeG}%8Cn%**KZ[f_OSx{xw&Rstfu?!x^ZJ%LV@4Z% Zr"EZm.GQFy@;"V82_:?cJ`kQ3+ Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 389 Yes, this works by adding an extra inode attribute - a quota ID. However, the author of the Tree Quotas patch has tied this arbitrarily to rules about which directories files are in - which doesn't work well with hard links across the directories. You need to hard link stuff like libc between the vservers to save RAM, if you really want to cram the vservers on your host machines :). But if there was a userland utility to manipulate the quota IDs, and selectable behaviour for the default values, then it might be very useful for vserver users and everyone else. Sam. Jerker Nyberg wrote: > I read about tree-quotas in LWN a few months ago. Maybe it can be of use > or inspiration for vserver users. I havn't tried it. > > http://lwn.net/2001/1025/a/tree-quotas.php3 > > http://cgi.cse.unsw.edu.au/~neilb/wiki/?TreeQuotas > > Regards, > Jerker Nyberg. > Uppsala, Sweden. > > -- Sam Vilain, sv@easyspace.com Easyspace: an accredited ICANN GPG: http://sam.vilain.net/sam.asc registrar & web hosting company 7D74 2A09 B2D3 C30F F78E Have your domain run by techies 278A A425 30A9 05B5 2F13 with a clue. www.easyspace.com From vserver.error@solucorp.qc.ca Sat Mar 30 13:53:57 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2UIrv7Y029674; Sat, 30 Mar 2002 13:53:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2UIbox07691 for vserver.list; Sat, 30 Mar 2002 13:37:50 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lakemtao03.cox.net (lakemtao03.cox.net [68.1.17.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2UIbnh07687 for ; Sat, 30 Mar 2002 13:37:50 -0500 Received: from gregg ([68.3.68.74]) by lakemtao03.cox.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with SMTP id <20020330183747.XARD18064.lakemtao03.cox.net@gregg> for ; Sat, 30 Mar 2002 13:37:47 -0500 Message-ID: <00c701c1d819$fc66c4a0$010510ac@gregg> From: "Gregg" To: References: <20020330174235.28ea3101.sv@easyspace.com> Subject: [vserver] email list ok? Date: Sat, 30 Mar 2002 11:37:45 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 390 I thought something was wrong when I didn't get any email from the email list in a day or two, and today I just get one email, and it was a reply on a subject I had never received. Has anyone else been experiencing problems with the email list? I think it started with all the emails we were getting from the person that was on vacation, and all the away messages. From vserver.error@solucorp.qc.ca Sat Mar 30 15:11:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2UKBv7Y030182; Sat, 30 Mar 2002 15:11:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2UJv0F08927 for vserver.list; Sat, 30 Mar 2002 14:57:00 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from dstmmr1.datastream.net ([208.147.204.24]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g2UJuxh08922 for ; Sat, 30 Mar 2002 14:56:59 -0500 Received: from dsmail.dstm.com (unverified) by dstmmr1.datastream.net (Content Technologies SMTPRS 4.2.5) with ESMTP id ; Sat, 30 Mar 2002 14:56:54 -0500 Received: by DSMAIL with Internet Mail Service (5.5.2650.21) id ; Sat, 30 Mar 2002 14:43:15 -0500 Message-ID: <41ADD51AFBA1D311811300508B553F71026A4E8D@DSMAIL2> From: Mike Savage To: "'vserver@solucorp.qc.ca'" Cc: "'raanders@acm.org'" Subject: Re: [vserver] 2.4.18ctx-9 Kernel Date: Sat, 30 Mar 2002 14:56:51 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g2UJuxh08922 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 391 I too have experienced random kernel oops as well as lockups triggered by performing netstat against the 2.4.18-ctx9 kernel. This was using a 2.4.18-ctx9 kernel, running on a Compaq DL360...dual PIII system with 4 GB RAM. I had compiled the kernel myself, which also included a patch from Compaq using the latest stable driver for the Compaq smart2 array. I then backed down to using 2.4.18-ctx8, also including the Compaq smart2 array driver patch and the system is rock-solid so far. I am currently utilizing two vservers, each running a copy of a J2EE application server I have been working on which uses apache/jboss/tomcat pointing to an Oracle backend. During my load-testing, I have been able to throw heavy workloads at both vservers for tests lasting well over 24 hours. I am currently running a lighter load test over this weekend to evaluate stability over a period of several days...a load that would more closely resemble what the system would see in production. I will post again once I have more data regarding my extended loadtests. On a side note, I was wondering if anyone has been working on any vserver patches against kernel trees that are more experimental in nature, ie, http://infolinux.de/jp8/ maintained by Jörg Prante, or http://kernel.org/pub/linux/kernel/people/mjc/linux-2.4/Changelog.mjc maintained by Michael Cohen. Thank you for your time, J. Michael Savage DBA/Sysadmin Datastream Development Datastream ASP Hosting Services From vserver.error@solucorp.qc.ca Sat Mar 30 15:17:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2UKHZ7Y030206; Sat, 30 Mar 2002 15:17:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2UK2t509082 for vserver.list; Sat, 30 Mar 2002 15:02:55 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from home.2interactive.com (NS1.2INTERACTIVE.COM [64.170.22.5]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2UK2sh09077 for ; Sat, 30 Mar 2002 15:02:54 -0500 Received: (qmail 25959 invoked by uid 505); 30 Mar 2002 20:01:51 -0000 Received: from twistedhammer@subdimension.com by home.2interactive.com by uid 502 with qmail-scanner-1.10 (. Clear:0. Processed in 0.811506 secs); 30 Mar 2002 20:01:51 -0000 X-Qmail-Scanner-Mail-From: twistedhammer@subdimension.com via home.2interactive.com X-Qmail-Scanner: 1.10 (Clear:0. Processed in 0.811506 secs) Received: from unknown (HELO subdimension.com) (66.81.54.149) by 0 with SMTP; 30 Mar 2002 20:01:49 -0000 Date: Sat, 30 Mar 2002 10:40:09 -0900 (AKST) From: James Gibson X-X-Sender: james@camero.fantasia.tld To: vserver@solucorp.qc.ca Subject: Re: [vserver] email list ok? In-Reply-To: <00c701c1d819$fc66c4a0$010510ac@gregg> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-1.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK version=2.01 Status: RO X-Status: X-Keywords: X-UID: 392 I think all is well, just a little subdued from the copius amount of cruft. That subject was from about a week back.. if you keep archives of your lists you can check. it's there. =) James Gibson On Sat, 30 Mar 2002, Gregg wrote: > I thought something was wrong when I didn't get any email from the email > list in a day or two, and today I just get one email, and it was a reply on > a subject I had never received. Has anyone else been experiencing problems > with the email list? I think it started with all the emails we were getting > from the person that was on vacation, and all the away messages. > > > > > From vserver.error@solucorp.qc.ca Sun Mar 31 14:31:09 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2VJV87Y026437; Sun, 31 Mar 2002 14:31:09 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2VJAOP11097 for vserver.list; Sun, 31 Mar 2002 14:10:24 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from himail.edinfo.es (himail.ibcdomains.net [212.49.142.211]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2VJANh11093 for ; Sun, 31 Mar 2002 14:10:24 -0500 Received: (qmail 12908 invoked from network); 31 Mar 2002 19:03:35 -0000 Received: from unknown (HELO iname.com) (80.81.104.202) by himail.ibcdomains.net with SMTP; 31 Mar 2002 19:03:35 -0000 Message-ID: <3CA75F3F.8000307@iname.com> Date: Sun, 31 Mar 2002 21:10:55 +0200 From: Enric Lafont User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.8) Gecko/20020204 X-Accept-Language: es, en-us MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] Kernel locks Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 393 Hi I'm testing vserver now for about three days but without any luck, Maybe I'm doing something wrong ? I've an Athlon 950 Mhz with a Sis530 chipset, a Sis900 100bT ethernet, with a Sis630 Vga, 256 Mb Ram, and a 30 Gb Seagate barracuda harddisk ATA-66, with a Mandrake 8.2 distro installed. I'm doing all my work in various Xterm sessions (so I'm using the X server with Xfce) I've downloaded the kernel-2.4.18ctx-9 from solucorp, installed it, and rebooted. Eventually I get a FULL HANG on the machine, everything gets locked, the only thing I can do is fully restart the machine. The problem is that I can not define a lock pattern that everyone can test. I've recompiled the kernel by miself to tune it to my equipment, but with the same luck, the machine hangs consistentlly. Does anyone knows where is the problem ?, Have anyone have any clue where can be the problem ? The last lock happened this way: 1.- Started the machine, it's main IP is 10.9.8.10 2.- Log in the X session 3.- Opened a Xterm 4.- Stopped VSS0 vservers, it was started automatically by the sysVinit scripts 5.- Started VSS0 vserver, it's binded to 192.168.10.1 (ctx 3), it starts also v_proftpd (standalone), v_httpd and v_ssh 6.- Stopped the Apache server of the main IP (ctx 0) 7.- netstat -nat (ctx 0) just to see that Apache was unbinded from port 80, the netstat did not get executed, the machine was fully locked. This pattern is not fiable, it does not ever happens the same way. I'm going to test other hardware, but while the tests last, I would like to know if someone knows something about why I get the machine locked. I've readed all the mailing list, but no one has a similar problem, and now I'm out of help to look for a solution. Thanks for any help Enric Lafont From vserver.error@solucorp.qc.ca Sun Mar 31 15:05:00 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2VK4x7Y026636; Sun, 31 Mar 2002 15:05:00 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2VJq7O11747 for vserver.list; Sun, 31 Mar 2002 14:52:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp017.mail.yahoo.com (smtp017.mail.yahoo.com [216.136.174.114]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2VJq7h11743 for ; Sun, 31 Mar 2002 14:52:07 -0500 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 31 Mar 2002 19:52:06 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Kernel locks Date: Sun, 31 Mar 2002 13:51:48 -0600 Message-ID: <000201c1d8ed$81921d90$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal In-Reply-To: <3CA75F3F.8000307@iname.com> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 394 2.4.18ctx-9 seems to be the troubling one. I am surprised that you didn't find any information on the mailing list. Lots of people reported problem running 2.4.18ctx-9(including myself). The machine will lock if you execute netstat. I am currently using ctx-8, which is very stable. Peter -----Original Message----- From: Enric Lafont [mailto:rayder@iname.com] Sent: Sunday, March 31, 2002 1:11 PM To: vserver@solucorp.qc.ca Subject: [vserver] Kernel locks Hi I'm testing vserver now for about three days but without any luck, Maybe I'm doing something wrong ? I've an Athlon 950 Mhz with a Sis530 chipset, a Sis900 100bT ethernet, with a Sis630 Vga, 256 Mb Ram, and a 30 Gb Seagate barracuda harddisk ATA-66, with a Mandrake 8.2 distro installed. I'm doing all my work in various Xterm sessions (so I'm using the X server with Xfce) I've downloaded the kernel-2.4.18ctx-9 from solucorp, installed it, and rebooted. Eventually I get a FULL HANG on the machine, everything gets locked, the only thing I can do is fully restart the machine. The problem is that I can not define a lock pattern that everyone can test. I've recompiled the kernel by miself to tune it to my equipment, but with the same luck, the machine hangs consistentlly. Does anyone knows where is the problem ?, Have anyone have any clue where can be the problem ? The last lock happened this way: 1.- Started the machine, it's main IP is 10.9.8.10 2.- Log in the X session 3.- Opened a Xterm 4.- Stopped VSS0 vservers, it was started automatically by the sysVinit scripts 5.- Started VSS0 vserver, it's binded to 192.168.10.1 (ctx 3), it starts also v_proftpd (standalone), v_httpd and v_ssh 6.- Stopped the Apache server of the main IP (ctx 0) 7.- netstat -nat (ctx 0) just to see that Apache was unbinded from port 80, the netstat did not get executed, the machine was fully locked. This pattern is not fiable, it does not ever happens the same way. I'm going to test other hardware, but while the tests last, I would like to know if someone knows something about why I get the machine locked. I've readed all the mailing list, but no one has a similar problem, and now I'm out of help to look for a solution. Thanks for any help Enric Lafont _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com From vserver.error@solucorp.qc.ca Sun Mar 31 15:38:17 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2VKcG7Y026835; Sun, 31 Mar 2002 15:38:16 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2VKMVS12270 for vserver.list; Sun, 31 Mar 2002 15:22:31 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blackfish.neopeak.com (modemcable033.68-200-24.mtl.mc.videotron.ca [24.200.68.33]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2VKMUh12266 for ; Sun, 31 Mar 2002 15:22:30 -0500 Received: (qmail 2553 invoked by uid 1001); 31 Mar 2002 20:22:29 -0000 Content-Type: text/plain; charset="iso-8859-1" From: Cedric Veilleux Organization: Neopeak Internet Solutions To: vserver@solucorp.qc.ca, Enric Lafont Subject: Re: [vserver] Kernel locks Date: Sun, 31 Mar 2002 15:22:29 -0500 X-Mailer: KMail [version 1.4] References: <3CA75F3F.8000307@iname.com> In-Reply-To: <3CA75F3F.8000307@iname.com> MIME-Version: 1.0 Message-Id: <200203311522.29840.cedric@neopeak.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g2VKMUh12266 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 395 There is a known issue with CTX-9. The system freezes when accessing /proc/net/tcp. Netstats reads /proc/net/tcp. On March 31, 2002 02:10 pm, Enric Lafont wrote: > Hi > > I'm testing vserver now for about three days but without any luck, Maybe > I'm doing something wrong ? > > I've an Athlon 950 Mhz with a Sis530 chipset, a Sis900 100bT ethernet, > with a Sis630 Vga, 256 Mb Ram, and a 30 Gb Seagate barracuda harddisk > ATA-66, with a Mandrake 8.2 distro installed. > > I'm doing all my work in various Xterm sessions (so I'm using the X > server with Xfce) > > I've downloaded the kernel-2.4.18ctx-9 from solucorp, installed it, and > rebooted. Eventually I get a FULL HANG on the machine, everything gets > locked, the only thing I can do is fully restart the machine. The > problem is that I can not define a lock pattern that everyone can test. > > I've recompiled the kernel by miself to tune it to my equipment, but > with the same luck, the machine hangs consistentlly. > > Does anyone knows where is the problem ?, Have anyone have any clue > where can be the problem ? > > The last lock happened this way: > 1.- Started the machine, it's main IP is 10.9.8.10 > 2.- Log in the X session > 3.- Opened a Xterm > 4.- Stopped VSS0 vservers, it was started automatically by the sysVinit > scripts > 5.- Started VSS0 vserver, it's binded to 192.168.10.1 (ctx 3), it starts > also v_proftpd (standalone), v_httpd and v_ssh > 6.- Stopped the Apache server of the main IP (ctx 0) > 7.- netstat -nat (ctx 0) just to see that Apache was unbinded from port > 80, the netstat did not get executed, the machine was fully locked. > > This pattern is not fiable, it does not ever happens the same way. > > I'm going to test other hardware, but while the tests last, I would like > to know if someone knows something about why I get the machine locked. > > I've readed all the mailing list, but no one has a similar problem, and > now I'm out of help to look for a solution. > > Thanks for any help > > Enric Lafont -- Cédric Veilleux Neopeak Internet Solutions From vserver.error@solucorp.qc.ca Sun Mar 31 15:44:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2VKid7Y026910; Sun, 31 Mar 2002 15:44:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2VKMvj12285 for vserver.list; Sun, 31 Mar 2002 15:22:57 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.tuts.net (deathstar.tuts.net [194.97.52.114]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2VKMuh12281 for ; Sun, 31 Mar 2002 15:22:57 -0500 Received: (qmail 22154 invoked by uid 668); 31 Mar 2002 20:22:50 -0000 Date: Sun, 31 Mar 2002 22:22:50 +0200 From: Tobias Klausmann To: vserver@solucorp.qc.ca Subject: Re: [vserver] Kernel locks Message-ID: <20020331202250.GA21243@tuts.net> Mail-Followup-To: vserver@solucorp.qc.ca References: <3CA75F3F.8000307@iname.com> <000201c1d8ed$81921d90$ed23bd41@PremiumFood> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <000201c1d8ed$81921d90$ed23bd41@PremiumFood> User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 396 Hi! On Sun, 31 Mar 2002, Peter Kwan Chan wrote: > 2.4.18ctx-9 seems to be the troubling one. I am surprised that you > didn't find any information on the mailing list. Lots of people reported > problem running 2.4.18ctx-9(including myself). The machine will lock if > you execute netstat. I have been hammering two machines running vserver with netstat - not a single lockup. A coworker reports ntp consuming all free FDs when using ctx8 - but I have no more data on that (I'll look into it next week). So far ctx9 has been rock solid for me. All installations (including the ntp-lockup ones) are based on RedHat. Interestingly, the ntp lockups happen on the main server (i.e. ntp is not running in a vserver) and there are no "full" vservers running on that machine, only the security contexts are switched for selected server binaries. Greets, Tobias -- The major difference between bonds and bond traders is that the bonds will eventually mature. From vserver.error@solucorp.qc.ca Sun Mar 31 16:32:18 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2VLWH7Y027154; Sun, 31 Mar 2002 16:32:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2VLHu713280 for vserver.list; Sun, 31 Mar 2002 16:17:56 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from himail.edinfo.es (himail.ibcdomains.net [212.49.142.211]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2VLHsh13275 for ; Sun, 31 Mar 2002 16:17:55 -0500 Received: (qmail 18439 invoked from network); 31 Mar 2002 21:11:26 -0000 Received: from unknown (HELO iname.com) (80.81.104.202) by himail.ibcdomains.net with SMTP; 31 Mar 2002 21:11:26 -0000 Message-ID: <3CA77D36.9040507@iname.com> Date: Sun, 31 Mar 2002 23:18:46 +0200 From: Enric Lafont User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.8) Gecko/20020204 X-Accept-Language: es, en-us MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Kernel locks References: <000201c1d8ed$81921d90$ed23bd41@PremiumFood> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 397 Thanks for the help, I'm going to test now the ctx-8. The problem is that netstat does not hang the machine every time, just some times. And yes, I've read a lot of the mailing list archives, and I've not found any clue of this problem, I've not read them all, but a lot of them. Thanks again to all who helped me. Back to the work again with ctx-8 :-) Enric Peter Kwan Chan wrote: >2.4.18ctx-9 seems to be the troubling one. I am surprised that you >didn't find any information on the mailing list. Lots of people reported >problem running 2.4.18ctx-9(including myself). The machine will lock if >you execute netstat. > >I am currently using ctx-8, which is very stable. > >Peter > From vserver.error@solucorp.qc.ca Sun Mar 31 16:37:11 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g2VLbA7Y027174; Sun, 31 Mar 2002 16:37:10 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g2VLLpE13373 for vserver.list; Sun, 31 Mar 2002 16:21:51 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from himail.edinfo.es (himail.ibcdomains.net [212.49.142.211]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g2VLLoh13369 for ; Sun, 31 Mar 2002 16:21:50 -0500 Received: (qmail 18634 invoked from network); 31 Mar 2002 21:15:22 -0000 Received: from unknown (HELO iname.com) (80.81.104.202) by himail.ibcdomains.net with SMTP; 31 Mar 2002 21:15:22 -0000 Message-ID: <3CA77E21.4090305@iname.com> Date: Sun, 31 Mar 2002 23:22:41 +0200 From: Enric Lafont User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.8) Gecko/20020204 X-Accept-Language: es, en-us MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Kernel locks References: <3CA75F3F.8000307@iname.com> <000201c1d8ed$81921d90$ed23bd41@PremiumFood> <20020331202250.GA21243@tuts.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 398 For me is very similar, netstat does work right, but it mostly fails after a "vserver v1 stop " and when in "ctx 0" , still have not done any test with ntp, but will do as soon as I get something stable to work with. Enric Tobias Klausmann wrote: >Hi! > >On Sun, 31 Mar 2002, Peter Kwan Chan wrote: > >>2.4.18ctx-9 seems to be the troubling one. I am surprised that you >>didn't find any information on the mailing list. Lots of people reported >>problem running 2.4.18ctx-9(including myself). The machine will lock if >>you execute netstat. >> > >I have been hammering two machines running vserver with netstat - >not a single lockup. A coworker reports ntp consuming all free >FDs when using ctx8 - but I have no more data on that (I'll look >into it next week). So far ctx9 has been rock solid for me. > >All installations (including the ntp-lockup ones) are based on >RedHat. Interestingly, the ntp lockups happen on the main server >(i.e. ntp is not running in a vserver) and there are no "full" >vservers running on that machine, only the security contexts are >switched for selected server binaries. > >Greets, >Tobias > From vserver.error@solucorp.qc.ca Mon Apr 1 10:33:26 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g31FXP7Y001512; Mon, 1 Apr 2002 10:33:26 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g31FHKT32064 for vserver.list; Mon, 1 Apr 2002 10:17:20 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g31FHJh32060 for ; Mon, 1 Apr 2002 10:17:20 -0500 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 3.35 #1) id 16s3Yd-0000VS-00 for vserver@solucorp.qc.ca; Mon, 01 Apr 2002 11:17:19 -0400 Date: Mon, 1 Apr 2002 11:17:19 -0400 (AST) From: James MacLean To: Subject: [vserver] That ctx-9 bug Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 399 Just curious if there is any use to porting the CTX patches to the User-Mode Linux code and seeing if one could break it in there? Or would it even work under UML? Just curious, JES -- James B. MacLean macleajb@ednet.ns.ca Department of Education http://www.ednet.ns.ca/~macleajb Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Mon Apr 1 17:43:03 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g31Mh17Y005082; Mon, 1 Apr 2002 17:43:02 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g31MPOB08734 for vserver.list; Mon, 1 Apr 2002 17:25:24 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g31MPMh08730 for ; Mon, 1 Apr 2002 17:25:24 -0500 Received: from aksmtpmdr2.telecom.co.nz (aksmtpmdr2 [146.171.1.21]) by smtpout.telecom.co.nz (Postfix) with SMTP id 2674345EE9 for ; Tue, 2 Apr 2002 10:25:16 +1200 (NZST) Received: from 192.168.192.22 by aksmtpmdr2.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Tue, 02 Apr 2002 10:25:12 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from ganymede ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 16sADG-0004wu-00 for ; Tue, 02 Apr 2002 10:23: 42 +1200 Subject: [vserver] vserver shutdown From: "Fran Firman" To: vserver X-Mailer: Evolution/1.0.2 Date: 02 Apr 2002 10:23:41 +1200 Message-ID: <1017699822.17892.2.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10B601C298290-01-01 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: O X-Status: X-Keywords: X-UID: 400 I have a vserver running debian linux, with sshd and apache in it, as a testing envioroment. Now when I do a vserver vserver-name stop, it seems to shut down ok. I get a few errors regarding umounting a device. New security context is 0 /etc/rc.d/rc: /etc/rc.d/init.d/functions: No such file or directory Sending all processes the TERM signal... done. Sending all processes the KILL signal... done. Initializing random number generator... done. Unmounting remote filesystems... done. Deactivating swap... done. Unmounting local filesystems... umount2: Invalid argument umount: /dev/ubd/0: not found umount: /: Illegal seek done. mount: permission denied Rebooting... sleep 5 Killing all processes expr: syntax error When I then start it back up again, sometimes the webserver and sshd won't start as they can't bind to their ports. thoughts??? Fran. From vserver.error@solucorp.qc.ca Mon Apr 1 18:13:58 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g31NDv7Y005326; Mon, 1 Apr 2002 18:13:58 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g31Mupg09253 for vserver.list; Mon, 1 Apr 2002 17:56:51 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g31Muoh09249 for ; Mon, 1 Apr 2002 17:56:50 -0500 Received: from aksmtpmdr2.telecom.co.nz (aksmtpmdr2 [146.171.1.21]) by smtpout.telecom.co.nz (Postfix) with SMTP id 1FB8745F2F for ; Tue, 2 Apr 2002 10:56:49 +1200 (NZST) Received: from 192.168.192.22 by aksmtpmdr2.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Tue, 02 Apr 2002 10:56:45 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from ganymede ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 16sAhn-00053j-00 for ; Tue, 02 Apr 2002 10:55: 16 +1200 Subject: Re: [vserver] vserver shutdown From: "Fran Firman" To: vserver In-Reply-To: <1017699822.17892.2.camel@ganymede> References: <1017699822.17892.2.camel@ganymede> X-Mailer: Evolution/1.0.2 Date: 02 Apr 2002 10:55:14 +1200 Message-ID: <1017701715.17892.7.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10B63A27106121-01-01 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: O X-Status: X-Keywords: X-UID: 401 I have now figured out what the problem is. The shutdown script is using /etc/rc.d/init.d/functions, which doesn't exist under debian. So the processes are not being removed correctly anyway, and that is why the ports are staying allocated. I'm going to have a look for the functions script to find out what it does, and emulate it under debian, so that it should all work right.. Fran On Tue, 2002-04-02 at 10:23, Fran Firman wrote: > I have a vserver running debian linux, with sshd and apache in it, as a > testing envioroment. > > Now when I do a vserver vserver-name stop, it seems to shut down ok. > > I get a few errors regarding umounting a device. > > New security context is 0 > /etc/rc.d/rc: /etc/rc.d/init.d/functions: No such file or directory > Sending all processes the TERM signal... done. > Sending all processes the KILL signal... done. > Initializing random number generator... done. > Unmounting remote filesystems... done. > Deactivating swap... done. > Unmounting local filesystems... umount2: Invalid argument > umount: /dev/ubd/0: not found > umount: /: Illegal seek > done. > mount: permission denied > Rebooting... sleep 5 > Killing all processes > expr: syntax error > > > When I then start it back up again, sometimes the webserver and sshd > won't start as they can't bind to their ports. > > thoughts??? > > > Fran. > > > > > > From vserver.error@solucorp.qc.ca Tue Apr 2 03:16:31 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g328GU7Y008546; Tue, 2 Apr 2002 03:16:31 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g32820F20048 for vserver.list; Tue, 2 Apr 2002 03:02:00 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3281xh20041 for ; Tue, 2 Apr 2002 03:01:59 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJEn-0001IU-00 for ; Tue, 02 Apr 2002 10:01:53 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJEn-0001IJ-00 for ; Tue, 02 Apr 2002 10:01:53 +0200 Sender: jon@silicide.dk Message-ID: <3CA96571.F43BA324@silicide.dk> Date: Tue, 02 Apr 2002 10:01:53 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] init.d References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: O X-Status: X-Keywords: X-UID: 402 raanders@acm.org wrote: > > On Thu, 28 Mar 2002, John Lyons wrote: > > > > > I'm just going through init.d from our stock RH7.2 and there seem to be > > quite a few services that could safely be removed > > > > Are there any reasons why I shouldn't be removing these packages? > > From a vserver right? Well I just got POP3 working from a vserver after I > put in an ipchains accept rule for port 110 in the vserver. Doing it from > the main server didn't seem to make a difference to the vserver. I would be carefull using ipchains... (and dont you mean iptables ?) I tried setting up ipmasq and thus it used iptables. My server crashed. The HOLE server, bringing down every vserver in it. (see other report for details) JonB From vserver.error@solucorp.qc.ca Tue Apr 2 03:17:55 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g328Ht7Y008554; Tue, 2 Apr 2002 03:17:55 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3288NT20179 for vserver.list; Tue, 2 Apr 2002 03:08:23 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3288Nh20175 for ; Tue, 2 Apr 2002 03:08:23 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJL5-0001JF-00 for ; Tue, 02 Apr 2002 10:08:23 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJL5-0001J4-00 for ; Tue, 02 Apr 2002 10:08:23 +0200 Sender: jon@silicide.dk Message-ID: <3CA966F7.DBB4D3D9@silicide.dk> Date: Tue, 02 Apr 2002 10:08:23 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] init.d References: <20020328183144.dc6b0d0fe7cf@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: O X-Status: X-Keywords: X-UID: 403 > > nfslock > > NFS lock daemon. For now, a vserver does not work as an NFS server. Not useful > for now. You can circumvent this, and get a working NFS server inside a linux vserver. I'm using it both at work, and at home. The trick is to install a user space NFS server, then it works. Notice that when i ran this user space NFS daemon in a vserver, and ipmasq in the root server, then the machine locked up hard. I had it happen 3 times in a row. It can run for a little while while you are using the NFS share. But within 30 seconds mine locked up, bringing down the HOLE machine with all vservers in it. JonB From vserver.error@solucorp.qc.ca Tue Apr 2 03:24:24 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g328OO7Y008599; Tue, 2 Apr 2002 03:24:24 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g328But20264 for vserver.list; Tue, 2 Apr 2002 03:11:56 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g328Buh20259 for ; Tue, 2 Apr 2002 03:11:56 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJOW-0001Ji-00 for ; Tue, 02 Apr 2002 10:11:56 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJOW-0001JX-00 for ; Tue, 02 Apr 2002 10:11:56 +0200 Sender: jon@silicide.dk Message-ID: <3CA967CC.A0F82833@silicide.dk> Date: Tue, 02 Apr 2002 10:11:56 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Kernel locks References: <3CA75F3F.8000307@iname.com> <200203311522.29840.cedric@neopeak.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 404 Cedric Veilleux wrote: > > There is a known issue with CTX-9. The system freezes when accessing > /proc/net/tcp. Netstats reads /proc/net/tcp. hmm, is that why i cant run ipmasq in the root server while running a user space NFS daemon in a vserver ?? If i run without ipmasq it works fine. JonB From vserver.error@solucorp.qc.ca Tue Apr 2 03:26:32 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g328QV7Y008612; Tue, 2 Apr 2002 03:26:32 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g328H5E20425 for vserver.list; Tue, 2 Apr 2002 03:17:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g328H4h20421 for ; Tue, 2 Apr 2002 03:17:04 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJTU-0001KO-00 for ; Tue, 02 Apr 2002 10:17:04 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJTU-0001KE-00 for ; Tue, 02 Apr 2002 10:17:04 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 02 Apr 2002 10:17:04 +0200 (CEST) Received: (qmail 73035 invoked from network); 2 Apr 2002 08:16:34 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 2 Apr 2002 08:16:34 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g32820F20048 for vserver.list; Tue, 2 Apr 2002 03:02:00 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3281xh20041 for ; Tue, 2 Apr 2002 03:01:59 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJEn-0001IU-00 for ; Tue, 02 Apr 2002 10:01:53 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJEn-0001IJ-00 for ; Tue, 02 Apr 2002 10:01:53 +0200 Sender: jon@silicide.dk Message-ID: <3CA96571.F43BA324@silicide.dk> Date: Tue, 02 Apr 2002 10:01:53 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] init.d References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 405 raanders@acm.org wrote: > > On Thu, 28 Mar 2002, John Lyons wrote: > > > > > I'm just going through init.d from our stock RH7.2 and there seem to be > > quite a few services that could safely be removed > > > > Are there any reasons why I shouldn't be removing these packages? > > From a vserver right? Well I just got POP3 working from a vserver after I > put in an ipchains accept rule for port 110 in the vserver. Doing it from > the main server didn't seem to make a difference to the vserver. I would be carefull using ipchains... (and dont you mean iptables ?) I tried setting up ipmasq and thus it used iptables. My server crashed. The HOLE server, bringing down every vserver in it. (see other report for details) JonB From vserver.error@solucorp.qc.ca Tue Apr 2 03:32:54 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g328Wr7Y008635; Tue, 2 Apr 2002 03:32:53 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g328J2c20483 for vserver.list; Tue, 2 Apr 2002 03:19:02 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g328J2h20479 for ; Tue, 2 Apr 2002 03:19:02 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJVO-0001Kg-00 for ; Tue, 02 Apr 2002 10:19:02 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJVO-0001KW-00 for ; Tue, 02 Apr 2002 10:19:02 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 02 Apr 2002 10:19:02 +0200 (CEST) Received: (qmail 74031 invoked from network); 2 Apr 2002 08:17:58 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 2 Apr 2002 08:17:58 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3288NT20179 for vserver.list; Tue, 2 Apr 2002 03:08:23 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3288Nh20175 for ; Tue, 2 Apr 2002 03:08:23 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJL5-0001JF-00 for ; Tue, 02 Apr 2002 10:08:23 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJL5-0001J4-00 for ; Tue, 02 Apr 2002 10:08:23 +0200 Sender: jon@silicide.dk Message-ID: <3CA966F7.DBB4D3D9@silicide.dk> Date: Tue, 02 Apr 2002 10:08:23 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] init.d References: <20020328183144.dc6b0d0fe7cf@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 406 > > nfslock > > NFS lock daemon. For now, a vserver does not work as an NFS server. Not useful > for now. You can circumvent this, and get a working NFS server inside a linux vserver. I'm using it both at work, and at home. The trick is to install a user space NFS server, then it works. Notice that when i ran this user space NFS daemon in a vserver, and ipmasq in the root server, then the machine locked up hard. I had it happen 3 times in a row. It can run for a little while while you are using the NFS share. But within 30 seconds mine locked up, bringing down the HOLE machine with all vservers in it. JonB From vserver.error@solucorp.qc.ca Tue Apr 2 03:37:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g328bc7Y008652; Tue, 2 Apr 2002 03:37:39 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g328Ee620331 for vserver.list; Tue, 2 Apr 2002 03:14:40 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g328Eeh20327 for ; Tue, 2 Apr 2002 03:14:40 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJRA-0001K4-00 for ; Tue, 02 Apr 2002 10:14:40 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJRA-0001Jt-00 for ; Tue, 02 Apr 2002 10:14:40 +0200 Sender: jon@silicide.dk Message-ID: <3CA96870.2D5E8F50@silicide.dk> Date: Tue, 02 Apr 2002 10:14:40 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver shutdown References: <1017699822.17892.2.camel@ganymede> <1017701715.17892.7.camel@ganymede> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 407 Fran Firman wrote: > > I have now figured out what the problem is. > > The shutdown script is using /etc/rc.d/init.d/functions, which doesn't > exist under debian. > > So the processes are not being removed correctly anyway, and that is why > the ports are staying allocated. > > I'm going to have a look for the functions script to find out what it > does, and emulate it under debian, so that it should all work right.. I run it under debian too. I found out that if i did a vserver stop vserver stop I wouldnt have any trouble. JonB From vserver.error@solucorp.qc.ca Tue Apr 2 03:42:59 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g328gw7Y008677; Tue, 2 Apr 2002 03:42:59 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g328P1o20676 for vserver.list; Tue, 2 Apr 2002 03:25:01 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g328P1h20651 for ; Tue, 2 Apr 2002 03:25:01 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJbB-0001Lg-00 for ; Tue, 02 Apr 2002 10:25:01 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJbB-0001LW-00 for ; Tue, 02 Apr 2002 10:25:01 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 02 Apr 2002 10:25:01 +0200 (CEST) Received: (qmail 44114 invoked from network); 2 Apr 2002 08:24:53 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 2 Apr 2002 08:24:53 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g328But20264 for vserver.list; Tue, 2 Apr 2002 03:11:56 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g328Buh20259 for ; Tue, 2 Apr 2002 03:11:56 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJOW-0001Ji-00 for ; Tue, 02 Apr 2002 10:11:56 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJOW-0001JX-00 for ; Tue, 02 Apr 2002 10:11:56 +0200 Sender: jon@silicide.dk Message-ID: <3CA967CC.A0F82833@silicide.dk> Date: Tue, 02 Apr 2002 10:11:56 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Kernel locks References: <3CA75F3F.8000307@iname.com> <200203311522.29840.cedric@neopeak.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 408 Cedric Veilleux wrote: > > There is a known issue with CTX-9. The system freezes when accessing > /proc/net/tcp. Netstats reads /proc/net/tcp. hmm, is that why i cant run ipmasq in the root server while running a user space NFS daemon in a vserver ?? If i run without ipmasq it works fine. JonB From vserver.error@solucorp.qc.ca Tue Apr 2 03:59:52 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g328xp7Y008724; Tue, 2 Apr 2002 03:59:52 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g328cYh20994 for vserver.list; Tue, 2 Apr 2002 03:38:34 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g328cYh20990 for ; Tue, 2 Apr 2002 03:38:34 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJoI-0001NL-00 for ; Tue, 02 Apr 2002 10:38:34 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJoI-0001NB-00 for ; Tue, 02 Apr 2002 10:38:34 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 02 Apr 2002 10:38:34 +0200 (CEST) Received: (qmail 89702 invoked from network); 2 Apr 2002 08:37:41 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 2 Apr 2002 08:37:41 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g328Ee620331 for vserver.list; Tue, 2 Apr 2002 03:14:40 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g328Eeh20327 for ; Tue, 2 Apr 2002 03:14:40 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sJRA-0001K4-00 for ; Tue, 02 Apr 2002 10:14:40 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sJRA-0001Jt-00 for ; Tue, 02 Apr 2002 10:14:40 +0200 Sender: jon@silicide.dk Message-ID: <3CA96870.2D5E8F50@silicide.dk> Date: Tue, 02 Apr 2002 10:14:40 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver shutdown References: <1017699822.17892.2.camel@ganymede> <1017701715.17892.7.camel@ganymede> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 409 Fran Firman wrote: > > I have now figured out what the problem is. > > The shutdown script is using /etc/rc.d/init.d/functions, which doesn't > exist under debian. > > So the processes are not being removed correctly anyway, and that is why > the ports are staying allocated. > > I'm going to have a look for the functions script to find out what it > does, and emulate it under debian, so that it should all work right.. I run it under debian too. I found out that if i did a vserver stop vserver stop I wouldnt have any trouble. JonB From vserver.error@solucorp.qc.ca Tue Apr 2 09:02:35 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g32E2Y7Y011091; Tue, 2 Apr 2002 09:02:35 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g32Dmvc00379 for vserver.list; Tue, 2 Apr 2002 08:48:57 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from dstmmr1.datastream.net ([208.147.204.24]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g32Dmuh00374 for ; Tue, 2 Apr 2002 08:48:56 -0500 Received: from dsmail.dstm.com (unverified) by dstmmr1.datastream.net (Content Technologies SMTPRS 4.2.5) with ESMTP id for ; Tue, 2 Apr 2002 08:48:52 -0500 Received: by DSMAIL with Internet Mail Service (5.5.2650.21) id ; Tue, 2 Apr 2002 08:35:06 -0500 Message-ID: <41ADD51AFBA1D311811300508B553F71026A4EA5@DSMAIL2> From: Mike Savage To: "'vserver@solucorp.qc.ca'" Subject: [vserver] Vserver and multi-IP Date: Tue, 2 Apr 2002 08:48:49 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 410 Does anyone have any info on when multi-IP support will be available? Also, one particular post recently mentioned using port forwarding to achieve multiple IPs...what is meant by this? Network address translation? Turning on IP forwarding in the kernel? Thanks, Mike J. Michael Savage DBA/Sysadmin Datastream Development Datastream ASP Hosting Services (864) 422-7646 From vserver.error@solucorp.qc.ca Tue Apr 2 16:05:05 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g32L527Y014447; Tue, 2 Apr 2002 16:05:03 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g32KrbE10806 for vserver.list; Tue, 2 Apr 2002 15:53:37 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g32KrZh10802 for ; Tue, 2 Apr 2002 15:53:36 -0500 Received: from aksmtpmdr1.telecom.co.nz (aksmtpmdr1 [146.171.1.20]) by smtpout.telecom.co.nz (Postfix) with SMTP id 26B1245EE4 for ; Wed, 3 Apr 2002 08:53:34 +1200 (NZST) Received: from 192.168.192.22 by aksmtpmdr1.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Wed, 03 Apr 2002 08:53:33 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from ganymede ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 16sVG2-0000xU-00 for ; Wed, 03 Apr 2002 08:51: 58 +1200 Subject: Re: [vserver] vserver shutdown From: "Fran Firman" To: vserver In-Reply-To: <3CA96870.2D5E8F50@silicide.dk> References: <1017699822.17892.2.camel@ganymede> <1017701715.17892.7.camel@ganymede> <3CA96870.2D5E8F50@silicide.dk> X-Mailer: Evolution/1.0.2 Date: 03 Apr 2002 08:51:58 +1200 Message-ID: <1017780718.3344.1.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10B4C5C7227498-01-01 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 411 I have also found that downgrading to the 2.4.18-8 instead of -9 has fixed the problem. Now for the testing. BTW the vserver in my case is on a nfs array, and the server it runns on is part of a cluster style system. Fran. On Tue, 2002-04-02 at 20:14, Jon Bendtsen wrote: > Fran Firman wrote: > > > > I have now figured out what the problem is. > > > > The shutdown script is using /etc/rc.d/init.d/functions, which doesn't > > exist under debian. > > > > So the processes are not being removed correctly anyway, and that is why > > the ports are staying allocated. > > > > I'm going to have a look for the functions script to find out what it > > does, and emulate it under debian, so that it should all work right.. > > I run it under debian too. I found out that if i did a > vserver stop > vserver stop > > I wouldnt have any trouble. > > > > JonB > > > > > > > > From vserver.error@solucorp.qc.ca Wed Apr 3 01:59:05 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g336x27Y020173; Wed, 3 Apr 2002 01:59:03 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g336pTV22452 for vserver.list; Wed, 3 Apr 2002 01:51:29 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts23-srv.bellnexxia.net (tomts23.bellnexxia.net [209.226.175.185]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g336pSh22448 for ; Wed, 3 Apr 2002 01:51:28 -0500 Received: from bonano.neopeak.com ([65.92.50.129]) by tomts23-srv.bellnexxia.net (InterMail vM.4.01.03.23 201-229-121-123-20010418) with ESMTP id <20020403065128.DOF20236.tomts23-srv.bellnexxia.net@bonano.neopeak.com> for ; Wed, 3 Apr 2002 01:51:28 -0500 Content-Type: text/plain; charset="iso-8859-1" From: =?iso-8859-1?q?C=E9dric=20Veilleux?= Organization: Neopeak Internet Solutions To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and multi-IP Date: Wed, 3 Apr 2002 01:51:28 -0500 X-Mailer: KMail [version 1.4] References: <41ADD51AFBA1D311811300508B553F71026A4EA5@DSMAIL2> In-Reply-To: <41ADD51AFBA1D311811300508B553F71026A4EA5@DSMAIL2> MIME-Version: 1.0 Message-Id: <200204030151.28553.cedric@neopeak.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g336pSh22448 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 412 All I know is that there is currently no support for multi-IP currently. Someone did write a patch that allows the chbind command to bind a range of IP's to a vserver instead of a single ip, but it is no longer maintained as it never made it in the latest releases... It seems like there is not much interest for such feature and I really don't understand why. I read the whole archive and found very few posts about it. On April 2, 2002 08:48 am, Mike Savage wrote: > Does anyone have any info on when multi-IP support will be available? > Also, one particular post recently mentioned using port forwarding to > achieve multiple IPs...what is meant by this? Network address translation? > Turning on IP forwarding in the kernel? > Thanks, > Mike > > J. Michael Savage > DBA/Sysadmin > Datastream Development > Datastream ASP Hosting Services > > > (864) 422-7646 From vserver.error@solucorp.qc.ca Wed Apr 3 04:30:09 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g339U77Y021996; Wed, 3 Apr 2002 04:30:08 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g339F5928347 for vserver.list; Wed, 3 Apr 2002 04:15:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g339F4h28343 for ; Wed, 3 Apr 2002 04:15:05 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sgr8-00038J-00 for ; Wed, 03 Apr 2002 11:15:02 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sgr8-000388-00 for ; Wed, 03 Apr 2002 11:15:02 +0200 Sender: jon@silicide.dk Message-ID: <3CAAC816.FF4C3378@silicide.dk> Date: Wed, 03 Apr 2002 11:15:02 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and multi-IP References: <41ADD51AFBA1D311811300508B553F71026A4EA5@DSMAIL2> <200204030151.28553.cedric@neopeak.com> Content-Type: text/plain; charset=iso-8859-1 X-Envelope-To: vserver@solucorp.qc.ca Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g339F4h28343 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 413 Cédric Veilleux wrote: > > All I know is that there is currently no support for multi-IP currently. > Someone did write a patch that allows the chbind command to bind a range of > IP's to a vserver instead of a single ip, but it is no longer maintained as > it never made it in the latest releases... I'm not completely sure this is what the original question was about. It might be multiple IP's for the same vserver, or different IP's for the range of vservers. > It seems like there is not much interest for such feature and I really don't > understand why. I read the whole archive and found very few posts about it. Because one can easily circumvent it. Just make more vservers ;-0 Besides, how many IP's are really needed. one has 65k ports to choose from. I've got vservers running on 3 different "net devices". I've tried eth0 and eth1, with different ips. I have one running on lo, for mysql, so only the webserver can access it. Granted, every other vserver can access it too, since i just bound it to 127.0.0.1 I have yet to bind it to cipcb0, or CIPE's net device. JonB From vserver.error@solucorp.qc.ca Wed Apr 3 04:51:15 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g339pE7Y022084; Wed, 3 Apr 2002 04:51:15 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g339W8728901 for vserver.list; Wed, 3 Apr 2002 04:32:08 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g339W7h28897 for ; Wed, 3 Apr 2002 04:32:07 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sh7f-0003CI-00 for ; Wed, 03 Apr 2002 11:32:07 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sh7f-0003C8-00 for ; Wed, 03 Apr 2002 11:32:07 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Wed, 03 Apr 2002 11:32:07 +0200 (CEST) Received: (qmail 79036 invoked from network); 3 Apr 2002 09:30:36 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 3 Apr 2002 09:30:36 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g339F5928347 for vserver.list; Wed, 3 Apr 2002 04:15:05 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g339F4h28343 for ; Wed, 3 Apr 2002 04:15:05 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16sgr8-00038J-00 for ; Wed, 03 Apr 2002 11:15:02 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16sgr8-000388-00 for ; Wed, 03 Apr 2002 11:15:02 +0200 Sender: jon@silicide.dk Message-ID: <3CAAC816.FF4C3378@silicide.dk> Date: Wed, 03 Apr 2002 11:15:02 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and multi-IP References: <41ADD51AFBA1D311811300508B553F71026A4EA5@DSMAIL2> <200204030151.28553.cedric@neopeak.com> Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g339F4h28343 X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 414 Cédric Veilleux wrote: > > All I know is that there is currently no support for multi-IP currently. > Someone did write a patch that allows the chbind command to bind a range of > IP's to a vserver instead of a single ip, but it is no longer maintained as > it never made it in the latest releases... I'm not completely sure this is what the original question was about. It might be multiple IP's for the same vserver, or different IP's for the range of vservers. > It seems like there is not much interest for such feature and I really don't > understand why. I read the whole archive and found very few posts about it. Because one can easily circumvent it. Just make more vservers ;-0 Besides, how many IP's are really needed. one has 65k ports to choose from. I've got vservers running on 3 different "net devices". I've tried eth0 and eth1, with different ips. I have one running on lo, for mysql, so only the webserver can access it. Granted, every other vserver can access it too, since i just bound it to 127.0.0.1 I have yet to bind it to cipcb0, or CIPE's net device. JonB From vserver.error@solucorp.qc.ca Wed Apr 3 04:57:00 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g339uu7Y022128; Wed, 3 Apr 2002 04:56:57 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g339bp929119 for vserver.list; Wed, 3 Apr 2002 04:37:51 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cyclone.neutech.fi (cyclone.neutech.fi [194.100.130.66]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g339boh29115 for ; Wed, 3 Apr 2002 04:37:51 -0500 Received: (qmail 9996 invoked by uid 1001); 3 Apr 2002 09:37:44 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 3 Apr 2002 09:37:44 -0000 Date: Wed, 3 Apr 2002 12:37:44 +0300 (EEST) From: Toni Mattila To: Subject: Re: [vserver] Vserver and multi-IP In-Reply-To: <3CAAC816.FF4C3378@silicide.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 415 Hi, > > It seems like there is not much interest for such feature and I really don't > > understand why. I read the whole archive and found very few posts about it. > > Because one can easily circumvent it. > Just make more vservers ;-0 > Besides, how many IP's are really needed. one has 65k ports to choose > from. One application is when you offer so called private servers to customers who want to resell their private server for webhosting. And on webhosting side you have this wonderful SSL-compilication. So it's not quite out of this world to have on vserver with multiple IPs. And NATing the thing is really horrible way to do it, plus you have to explain the customer why is he using 172.16/16 addresses. Regards, Toni Mattila From vserver.error@solucorp.qc.ca Wed Apr 3 05:19:48 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g33AJl7Y022246; Wed, 3 Apr 2002 05:19:47 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g33A47G29969 for vserver.list; Wed, 3 Apr 2002 05:04:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g33A46h29965 for ; Wed, 3 Apr 2002 05:04:06 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16shcc-0003Dk-00 for ; Wed, 03 Apr 2002 12:04:06 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16shcc-0003DZ-00 for ; Wed, 03 Apr 2002 12:04:06 +0200 Sender: jon@silicide.dk Message-ID: <3CAAD396.26BEC7D3@silicide.dk> Date: Wed, 03 Apr 2002 12:04:06 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and multi-IP References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 416 Toni Mattila wrote: > > Hi, > > > > It seems like there is not much interest for such feature and I really don't > > > understand why. I read the whole archive and found very few posts about it. > > > > Because one can easily circumvent it. > > Just make more vservers ;-0 > > Besides, how many IP's are really needed. one has 65k ports to choose > > from. > > One application is when you offer so called private servers to customers > who want to resell their private server for webhosting. And on webhosting > side you have this wonderful SSL-compilication. > > So it's not quite out of this world to have on vserver with multiple IPs. > And NATing the thing is really horrible way to do it, plus you have to > explain the customer why is he using 172.16/16 addresses. Okay, i get it now, i dont use ssl myself, and neither do we at work, so i never tried it beyond the user end, buying stuff at the net. Can you start a vserver inside a vserver using a different ip than the original ?? JonB From vserver.error@solucorp.qc.ca Wed Apr 3 05:38:34 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g33AcY7Y022321; Wed, 3 Apr 2002 05:38:34 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g33ALc230412 for vserver.list; Wed, 3 Apr 2002 05:21:38 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g33ALbh30407 for ; Wed, 3 Apr 2002 05:21:37 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16shtZ-0003Ef-00 for ; Wed, 03 Apr 2002 12:21:37 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16shtZ-0003EV-00 for ; Wed, 03 Apr 2002 12:21:37 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Wed, 03 Apr 2002 12:21:37 +0200 (CEST) Received: (qmail 27461 invoked from network); 3 Apr 2002 10:20:15 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 3 Apr 2002 10:20:15 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g33A47G29969 for vserver.list; Wed, 3 Apr 2002 05:04:07 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g33A46h29965 for ; Wed, 3 Apr 2002 05:04:06 -0500 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16shcc-0003Dk-00 for ; Wed, 03 Apr 2002 12:04:06 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16shcc-0003DZ-00 for ; Wed, 03 Apr 2002 12:04:06 +0200 Sender: jon@silicide.dk Message-ID: <3CAAD396.26BEC7D3@silicide.dk> Date: Wed, 03 Apr 2002 12:04:06 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and multi-IP References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 417 Toni Mattila wrote: > > Hi, > > > > It seems like there is not much interest for such feature and I really don't > > > understand why. I read the whole archive and found very few posts about it. > > > > Because one can easily circumvent it. > > Just make more vservers ;-0 > > Besides, how many IP's are really needed. one has 65k ports to choose > > from. > > One application is when you offer so called private servers to customers > who want to resell their private server for webhosting. And on webhosting > side you have this wonderful SSL-compilication. > > So it's not quite out of this world to have on vserver with multiple IPs. > And NATing the thing is really horrible way to do it, plus you have to > explain the customer why is he using 172.16/16 addresses. Okay, i get it now, i dont use ssl myself, and neither do we at work, so i never tried it beyond the user end, buying stuff at the net. Can you start a vserver inside a vserver using a different ip than the original ?? JonB From vserver.error@solucorp.qc.ca Wed Apr 3 06:46:16 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g33BkF7Y022622; Wed, 3 Apr 2002 06:46:16 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g33BVJ932177 for vserver.list; Wed, 3 Apr 2002 06:31:19 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cyclone.neutech.fi (cyclone.neutech.fi [194.100.130.66]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g33BVIh32172 for ; Wed, 3 Apr 2002 06:31:18 -0500 Received: (qmail 16526 invoked by uid 1001); 3 Apr 2002 11:30:51 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 3 Apr 2002 11:30:51 -0000 Date: Wed, 3 Apr 2002 14:30:51 +0300 (EEST) From: Toni Mattila To: Subject: Re: [vserver] Vserver and multi-IP In-Reply-To: <3CAAD396.26BEC7D3@silicide.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by dns.solucorp.qc.ca id g33BVIh32172 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 418 Hi, > Okay, i get it now, i dont use ssl myself, and neither do we at work, so > i > never tried it beyond the user end, buying stuff at the net. > Can you start a vserver inside a vserver using a different ip than the > original ?? Basically you don't want to tell the client anything about any vservers in the first place. They are normally excepting a full virtual machine ŕla Ensim virtual private servers or what was the other one. The vserver patch can do almost the same things, expect guarenteed scheduling(CPU quotas, ulimit is not enough because it will kill the whole vserver if quota is met). The traffic accounting/shaping you can already do via 2.4 kernel. Regards, Toni Mattila From vserver.error@solucorp.qc.ca Wed Apr 3 13:27:06 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g33IR57Y026435; Wed, 3 Apr 2002 13:27:06 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g33IAD508592 for vserver.list; Wed, 3 Apr 2002 13:10:13 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts10-srv.bellnexxia.net (tomts10.bellnexxia.net [209.226.175.54]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g33IADh08588 for ; Wed, 3 Apr 2002 13:10:13 -0500 Received: from bonano.neopeak.com ([65.92.56.170]) by tomts10-srv.bellnexxia.net (InterMail vM.4.01.03.23 201-229-121-123-20010418) with ESMTP id <20020403181013.DWAY25753.tomts10-srv.bellnexxia.net@bonano.neopeak.com> for ; Wed, 3 Apr 2002 13:10:13 -0500 Content-Type: text/plain; charset="iso-8859-1" From: =?iso-8859-1?q?C=E9dric=20Veilleux?= Organization: Neopeak Internet Solutions To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver and multi-IP Date: Wed, 3 Apr 2002 13:10:12 -0500 X-Mailer: KMail [version 1.4] References: <3CAAD396.26BEC7D3@silicide.dk> In-Reply-To: <3CAAD396.26BEC7D3@silicide.dk> MIME-Version: 1.0 Message-Id: <200204031310.12596.cedric@neopeak.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g33IADh08588 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 419 On April 3, 2002 05:04 am, Jon Bendtsen wrote: > Okay, i get it now, i dont use ssl myself, and neither do we at work, so > i > never tried it beyond the user end, buying stuff at the net. > Can you start a vserver inside a vserver using a different ip than the > original ?? I doubt it is possible. The whole idea of the chbind command is to prevent any process under it to bind to any other IP's. Even if it would be possible, it would not be a scalable solution. For exemple if I want to run apache with IP based virtual hosts (for SSL or whatever else), it might require dozens of IP's. It would be so easy with the multi-IP patch that isn't maintained anymore. I think the author of this patch was named Christian. Cedric From vserver.error@solucorp.qc.ca Wed Apr 3 14:06:39 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g33J6c7Y026854; Wed, 3 Apr 2002 14:06:38 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g33IsgH09562 for vserver.list; Wed, 3 Apr 2002 13:54:42 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g33Isgh09557 for ; Wed, 3 Apr 2002 13:54:42 -0500 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 3.35 #1) id 16spu5-0000JX-00 for vserver@solucorp.qc.ca; Wed, 03 Apr 2002 14:54:41 -0400 Date: Wed, 3 Apr 2002 14:54:41 -0400 (AST) From: James MacLean To: Subject: [vserver] ctx-9 minus one line of patch runs longer Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 420 Hi folks, I have (just for kicks) been trying ctx-9 without pieces of the patch to see if I can get it to stay up longer. It appears that of all the small changes that were made from 8 -> 9, that removing the : + current->ipv4root_bcast = bcast; from "asmlinkage int sys_set_ipv4root" in net/socket.c has stopped the netstat blowing up my machine problem. Not knowing much about kernel level things anymore :(, is it the chcontext that calls set_ipv4root? Or something else, and whatever it is, how do we know it has set the bcast parameter correctly when it was invoked and is not getting passed with crud? Thanks, JES -- James B. MacLean macleajb@ednet.ns.ca Department of Education http://www.ednet.ns.ca/~macleajb Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Wed Apr 3 17:48:22 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g33MmL7Y029526; Wed, 3 Apr 2002 17:48:22 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g33MXk614444 for vserver.list; Wed, 3 Apr 2002 17:33:46 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g33MXkh14440 for ; Wed, 3 Apr 2002 17:33:46 -0500 Received: from remtk.solucorp.qc.ca (g39-144.citenet.net [206.123.39.144]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g33MXs692784 for ; Wed, 3 Apr 2002 17:33:54 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g33LtcT06484 for vserver@solucorp.qc.ca; Wed, 3 Apr 2002 16:55:38 -0500 From: Jacques Gelinas Date: Wed, 3 Apr 2002 16:55:38 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] That ctx-9 bug X-mailer: tlmpmail 0.1 Message-ID: <20020403165538.456c94a7d822@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 421 On Mon, 1 Apr 2002 11:17:19 -0500, James MacLean wrote > Just curious if there is any use to porting the CTX patches to the > User-Mode Linux code and seeing if one could break it in there? > > Or would it even work under UML? Possible. Oddly, many have touted UML as a way to create virtual servers. Anyway, someone found the problem and ctx-10 is on it way --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Apr 3 18:03:49 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g33N3m7Y029719; Wed, 3 Apr 2002 18:03:48 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g33MXlr14450 for vserver.list; Wed, 3 Apr 2002 17:33:47 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g33MXlh14446 for ; Wed, 3 Apr 2002 17:33:47 -0500 Received: from remtk.solucorp.qc.ca (g39-144.citenet.net [206.123.39.144]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g33MXu692791 for ; Wed, 3 Apr 2002 17:33:56 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g33LpQY05974 for vserver@solucorp.qc.ca; Wed, 3 Apr 2002 16:51:26 -0500 From: Jacques Gelinas Date: Wed, 3 Apr 2002 16:51:26 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] Kernel locks X-mailer: tlmpmail 0.1 Message-ID: <20020403165126.80b174b069b0@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 422 On Sun, 31 Mar 2002 13:51:48 -0500, Peter Kwan Chan wrote > 2.4.18ctx-9 seems to be the troubling one. I am surprised that you > didn't find any information on the mailing list. Lots of people reported > problem running 2.4.18ctx-9(including myself). The machine will lock if > you execute netstat. > > I am currently using ctx-8, which is very stable. Willy Tarreau found the problem with ctx-9. I will release ctx-10 later today :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Apr 3 23:54:55 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g344sr7Y032675; Wed, 3 Apr 2002 23:54:54 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g344gdl23005 for vserver.list; Wed, 3 Apr 2002 23:42:39 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mx1.paradigm4.com.au (server.paradigm4.com.au [202.45.126.119]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g344gbh23001 for ; Wed, 3 Apr 2002 23:42:37 -0500 Received: (qmail 22720 invoked from network); 4 Apr 2002 04:45:55 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 4 Apr 2002 04:45:55 -0000 Received: (qmail 25695 invoked from network); 4 Apr 2002 04:43:28 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 4 Apr 2002 04:43:28 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Thu, 4 Apr 2002 14:43:33 +1000 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: re: [vserver] That ctx-9 bug Message-ID: <3CAC6695.1594.EC00D3@localhost> Priority: normal In-reply-to: <20020403165538.456c94a7d822@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-98.8 required=5.0 tests=NO_REAL_NAME,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 423 On Wednesday, 3 April 2002 at 16:55, Jacques Gelinas wrote: > > Just curious if there is any use to porting the CTX patches to the > > User-Mode Linux code and seeing if one could break it in there? > > > > Or would it even work under UML? > > Possible. Oddly, many have touted UML as a way to create virtual servers. Yup, I can see it happening: vserver inside UML inside vserver inside UML inside vserver ... :-) Ed From vserver.error@solucorp.qc.ca Thu Apr 4 04:33:49 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g349Xm7Y003110; Thu, 4 Apr 2002 04:33:49 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g349LA712234 for vserver.list; Thu, 4 Apr 2002 04:21:10 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hawaii.rr.com (hnlmail3.hawaii.rr.com [24.25.227.37]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g349L9h12230 for ; Thu, 4 Apr 2002 04:21:09 -0500 Received: from RIKU ([24.94.75.57]) by hawaii.rr.com with Microsoft SMTPSVC(5.5.1877.517.51); Wed, 3 Apr 2002 23:20:59 -1000 Message-ID: <002001c1dbba$0abef010$0400a8c0@RIKU> From: "Warren Togami" To: Subject: [vserver] Kernel 2.4.18ctx-9 Netstat Lock Up Date: Wed, 3 Apr 2002 23:21:02 -1000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 424 Confirmed another lock-up by running netstat in v1. Is there any patch to fix this yet? p.s. Aside from this lock-up, I'm very impressed by vserver! From vserver.error@solucorp.qc.ca Thu Apr 4 12:56:44 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g34Huh7Y007048; Thu, 4 Apr 2002 12:56:43 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g34Hfu323399 for vserver.list; Thu, 4 Apr 2002 12:41:56 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g34Hfth23395 for ; Thu, 4 Apr 2002 12:41:55 -0500 Received: from remtk.solucorp.qc.ca (g36-96.citenet.net [206.123.36.96]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g34HgB696843 for ; Thu, 4 Apr 2002 12:42:11 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g34HhcR05212 for vserver@dns.solucorp.qc.ca; Thu, 4 Apr 2002 12:43:38 -0500 From: Jacques Gelinas Date: Thu, 4 Apr 2002 12:43:38 -0500 To: Vserver mailing list Subject: [vserver] vserver 0.16 change log X-mailer: tlmpmail 0.1 Message-ID: <20020404124338.f16bb003160d@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 425 vserver 0.16 Change log 1. Enhancements 1.1. Install vserver from cdrom This is a start and contributions are welcome. I have written a script called /usr/lib/vserver/install-rh7.2. This script expects a single argument (for now), which is the name of the vserver to create. It will install a vserver based on Red Hat 7.2 CD (found in /mnt/cdrom) from scratch. It is not using the root server at all. It installs everything from the first CD. With unification, it creates a not-so- big vserver and contains pretty much anything an admin might want. I would be interested in other script like this to install SuSE, Mandrake and Debian from scratch. At some point, the newvserver front- end will offer those in the pop-up list. So you will be able to install either from the root server, from another vserver or from any distribution CDroms. Contribution welcome :-) 1.2. v services all supporting /etc/vservices/*.conf configuration All the /etc/init.d/v_xxx services are now completed and use the optional /etc/vservices/xxx.conf file. This file provides the IP number to use to bind the service. By default, the service is bound to eth0. Using the optional file, you bind it to whatever you want For example: IP=eth1 IP=192.168.1.1 1.3. Various /usr/sbin/vxxxx utilities Utilities like vtop, vpstree and friends are using /usr/sbin/chcontext to switch to context number 1. They are using the --silent option so you don't see the "New security context is 1" needlessly. 1.4. vserver script enhancement A vserver may operate with 0.0.0.0 as its IPROOT. This means the vserver is allowed to use any IP it wants, like the root server. The vserver script was trying to setup and IP alias with this address. When not using the fakeinit (per vserver private init process) facility the vserver script was starting in runlevel 3. It is now using the default runlevel (initdefault) found in the vserver /etc/inittab file. One step closer to have this script distribution independent. Please test it and send me other fixes as needed. The script uses /etc/init.d or /etc/rc.d/init.d on the fly. When stopping a vserver, the IP alias is removed even if the vserver was not running. When you "enter" a vserver, the IP alias is put in place. If you stop it, it is removed. Especially useful when you fiddle with a two copies of a vserver (on different physical server). When stopping a vserver, the vserver script /etc/vservers/xx.sh is always called with the post-stop argument. So doing a "vserver xx stop" clean everything. When doing "vserver xx exec ..." or "vserver xx enter" and the vserver xx is not running, the /etc/vservers/xx.sh script is called with the pre-start option, making sure the vserver is entered with the proper environment. When doing "vserver xx enter", bash is started with the option --login. This insure proper environment settings. 2. Bug fixes 2.1. chcontext: printing wrong result When switching to a specific security context (generally context number one), chcontext was reporting 0 as the new context. A little miss-leading. Fixed! 2.2. cosmetic bug in save_s_context and vserverkillall Those two utilities were reporting some shell errors. Although arm- less it was annoying. You could see the bug when shutting down a vserver. 2.3. kernel ctx-10 Thanks to Willy Tarreau, the netstat bug in kernel 2.4.18ctx-9 is fixed. 2.4.18ctx-10 is the same thing as ctx-9 with only cosmetic change + a little rework of "struct sock". The added field (in ctx-9) has been moved closer to the end of the structure so the beginning of "struct sock" still look like another kernel structure. (C does not have inheritance...). Now that 2.4.18ctx-10 works (should be as reliable as 2.4.18ctx-8), it is time to test ctx-9 enhancements, notably the ability to support UDP broadcast in vservers. Samba now work completely out of the box in a vserver. Please test it out. 2.4. vbuild and vunify: zombies process The vbuild and vunify are calling the rpm command repeatedly and were not waiting properly for its end status. This was creating many many zombie processes. Fixed! 2.5. vservers sysv init script This script was sourcing the /etc/init.d/functions script uselessly. This script is a RedHat-ism and vservers do not need any of its facility anyway. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Apr 4 13:52:31 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g34IqU7Y007762; Thu, 4 Apr 2002 13:52:30 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g34IiMo24922 for vserver.list; Thu, 4 Apr 2002 13:44:22 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g34IiMh24918 for ; Thu, 4 Apr 2002 13:44:22 -0500 Received: from remtk.solucorp.qc.ca (g39-106.citenet.net [206.123.39.106]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g34Iid601944 for ; Thu, 4 Apr 2002 13:44:39 -0500 (EST) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g34IEkx08156 for vserver@solucorp.qc.ca; Thu, 4 Apr 2002 13:14:46 -0500 From: Jacques Gelinas Date: Thu, 4 Apr 2002 13:14:46 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Kernel 2.4.18ctx-9 Netstat Lock Up X-mailer: tlmpmail 0.1 Message-ID: <20020404131446.3bd057d6540a@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 426 On Wed, 3 Apr 2002 23:21:02 -0500, Warren Togami wrote > Confirmed another lock-up by running netstat in v1. Is there any patch to > fix this yet? > > p.s. Aside from this lock-up, I'm very impressed by vserver! Try 2.4.18ctx-10 available today. It address explicitly this problem. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Apr 4 14:09:11 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g34J9A7Y007887; Thu, 4 Apr 2002 14:09:11 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g34Irs925202 for vserver.list; Thu, 4 Apr 2002 13:53:54 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gandalf.dungeon.de ([212.36.231.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g34Irsh25198 for ; Thu, 4 Apr 2002 13:53:54 -0500 Received: from dragon.dungeon.de (dragon.dungeon.de [212.36.227.2]) by gandalf.dungeon.de (Postfix) with ESMTP id 653D1B498 for ; Thu, 4 Apr 2002 20:53:53 +0200 (MEST) Date: Thu, 04 Apr 2002 20:53:55 +0200 From: Sebastian Schaefer To: vserver@solucorp.qc.ca Subject: [vserver] vserver under sparc ? Message-ID: <79600000.1017946435@dragon.dungeon.de> X-Mailer: Mulberry/2.2.0b4 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.1 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK version=2.01 Status: RO X-Status: X-Keywords: X-UID: 427 hi, is it possible to use vserver on sparc/linux (redhat with kernel 2.4.18) ? had no time to test it... greetiings Sebastian From vserver.error@solucorp.qc.ca Fri Apr 5 03:05:08 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g358577Y014516; Fri, 5 Apr 2002 03:05:07 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g357iCB15277 for vserver.list; Fri, 5 Apr 2002 02:44:12 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.SerNet.DE (mail.SerNet.DE [193.159.217.66]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g357iBh15273 for ; Fri, 5 Apr 2002 02:44:11 -0500 Received: from news by mail.SerNet.DE with local (Exim 2.12 #1) for vserver@dns.solucorp.qc.ca id 16tOOI-0006P4-00; Fri, 5 Apr 2002 09:44:10 +0200 To: vserver@dns.solucorp.qc.ca Path: not-for-mail From: "GoeWeb" Newsgroups: lists.linux.vserver Subject: Re: [vserver] vserver under sparc ? Date: Fri, 5 Apr 2002 09:46:03 +0100 Organization: Customer of Service Network GmbH, Goettingen, Germany Lines: 106 Message-ID: References: <79600000.1017946435@dragon.dungeon.de> NNTP-Posting-Host: jedi.sernet.de X-Trace: server1.GoeNet.DE 1017992650 24616 193.159.216.52 (5 Apr 2002 07:44:10 GMT) X-Complaints-To: news@news.SerNet.DE NNTP-Posting-Date: 5 Apr 2002 07:44:10 GMT X-Priority: 3 X-MSMail-Priority: Normal X-Newsreader: Microsoft Outlook Express 5.50.4807.1700 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 Sender: News system Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.1 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK version=2.01 Status: RO X-Status: X-Keywords: X-UID: 428 "Sebastian Schaefer" schrieb im Newsbeitrag news:79600000.1017946435@dragon.dungeon.de... > hi, > > is it possible to use vserver on sparc/linux (redhat with kernel 2.4.18) ? Yes it's possible. But you have to patch the kernel. I have only a patch for linux-2.4.17-ctx-6, but I think it will be easy to use it with the latest kernel and ctx patch. Greats Oliver begin 666 sparc-ctx6.patch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eceived: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g35FSG7Y018040; Fri, 5 Apr 2002 10:28:17 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g35F2sq24889 for vserver.list; Fri, 5 Apr 2002 10:02:54 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chambertin.convergence.de (chambertin.convergence.de [212.84.236.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g35F2rh24882 for ; Fri, 5 Apr 2002 10:02:53 -0500 Received: from [10.1.1.90] (helo=there ident=ralf) by chambertin.convergence.de with smtp (Exim 3.33 #2 ) id 16tVEr-0007HY-00 for ; Fri, 05 Apr 2002 17:02:53 +0200 From: Ralf Hemmann To: vserver@dns.solucorp.qc.ca Subject: [vserver] vserver does not compile Date: Fri, 5 Apr 2002 17:08:35 +0200 X-Mailer: KMail [version 1.3.2] MIME-Version: 1.0 Content-Type: Multipart/Mixed; boundary="------------Boundary-00=_BQO3QA5DZUNGUDJRWWWE" Message-Id: Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 429 --------------Boundary-00=_BQO3QA5DZUNGUDJRWWWE Content-Type: text/plain; charset="iso-8859-15" Content-Transfer-Encoding: 8bit Hy together. since two or three releases the vserver Package does not compile completely any more. Latest try was 0.16. Tools that not compile are: chkbind, chcontext,reducecap,syscall,vutil, Attached is an error output . For security reasons I have no compiler my rootserver, I compile everthing on a builsdsystem. The patched kernelsource is available. I have tried gcc-3.04 instead gcc-2.95.3 also Any hints ? Ralf --------------Boundary-00=_BQO3QA5DZUNGUDJRWWWE Content-Type: text/plain; charset="iso-8859-15"; name="compile.out" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="compile.out" Z2NjIC1mdW5zaWduZWQtY2hhciAtV2FsbCAtZyAtRFZFUlNJT049XCIwLjE2XCIgY2hiaW5kLmNj IHN5c2NhbGwubyAtbyBjaGJpbmQKL3RtcC9jY2hYMm9sdy5vOiBJbiBmdW5jdGlvbiBgYmFzaWNf c3RyaW5nPGNoYXIsIHN0cmluZ19jaGFyX3RyYWl0czxjaGFyPiwgX19kZWZhdWx0X2FsbG9jX3Rl bXBsYXRlPHRydWUsIDA+ID46OlJlcDo6b3BlcmF0b3IgZGVsZXRlKHZvaWQgKiknOgovdXNyL2xp Yi9nY2MtbGliL2kzODYtc2xhY2t3YXJlLWxpbnV4LzIuOTUuMy8uLi8uLi8uLi8uLi9pbmNsdWRl L2crKy0zL3N0bF9hbGxvYy5oKC5fX21hbGxvY19hbGxvY190ZW1wbGF0ZTwwPjo6Z251Lmxpbmtv bmNlLnQuX1Nfb29tX21hbGxvYyh1bnNpZ25lZCBpbnQpKzB4MWEpOiB1bmRlZmluZWQgcmVmZXJl bmNlIHRvIGBlbmRsKG9zdHJlYW0gJiknCi91c3IvbGliL2djYy1saWIvaTM4Ni1zbGFja3dhcmUt bGludXgvMi45NS4zLy4uLy4uLy4uLy4uL2luY2x1ZGUvZysrLTMvc3RsX2FsbG9jLmgoLl9fbWFs bG9jX2FsbG9jX3RlbXBsYXRlPDA+OjpnbnUubGlua29uY2UudC5fU19vb21fbWFsbG9jKHVuc2ln bmVkIGludCkrMHgyNyk6IHVuZGVmaW5lZCByZWZlcmVuY2UgdG8gYGNlcnInCi91c3IvbGliL2dj Yy1saWIvaTM4Ni1zbGFja3dhcmUtbGludXgvMi45NS4zLy4uLy4uLy4uLy4uL2luY2x1ZGUvZysr LTMvc3RsX2FsbG9jLmgoLl9fbWFsbG9jX2FsbG9jX3RlbXBsYXRlPDA+OjpnbnUubGlua29uY2Uu dC5fU19vb21fbWFsbG9jKHVuc2lnbmVkIGludCkrMHgyYyk6IHVuZGVmaW5lZCByZWZlcmVuY2Ug dG8gYG9zdHJlYW06Om9wZXJhdG9yPDwoY2hhciBjb25zdCAqKScKL3Vzci9saWIvZ2NjLWxpYi9p Mzg2LXNsYWNrd2FyZS1saW51eC8yLjk1LjMvLi4vLi4vLi4vLi4vaW5jbHVkZS9nKystMy9zdGxf YWxsb2MuaCguX19tYWxsb2NfYWxsb2NfdGVtcGxhdGU8MD46OmdudS5saW5rb25jZS50Ll9TX29v bV9tYWxsb2ModW5zaWduZWQgaW50KSsweDM3KTogdW5kZWZpbmVkIHJlZmVyZW5jZSB0byBgb3N0 cmVhbTo6b3BlcmF0b3I8PChvc3RyZWFtICYoKikob3N0cmVhbSAmKSknCi91c3IvbGliL2djYy1s aWIvaTM4Ni1zbGFja3dhcmUtbGludXgvMi45NS4zLy4uLy4uLy4uLy4uL2luY2x1ZGUvZysrLTMv c3RsX2FsbG9jLmgoLmJhc2ljX3N0cmluZzxjaGFyLCBzdHJpbmdfY2hhcl90cmFpdHM8Y2hhcj4s IF9fZGVmYXVsdF9hbGxvY190ZW1wbGF0ZTx0cnVlLCAwPiA+OjpSZXA6OmdudS5saW5rb25jZS50 LmNvcHkodW5zaWduZWQgaW50LCBjaGFyIGNvbnN0ICosIHVuc2lnbmVkIGludCkrMHgzMyk6IHVu ZGVmaW5lZCByZWZlcmVuY2UgdG8gYHN0cmluZ19jaGFyX3RyYWl0czxjaGFyPjo6Y29weShjaGFy ICosIGNoYXIgY29uc3QgKiwgdW5zaWduZWQgaW50KScKL3Vzci9saWIvZ2NjLWxpYi9pMzg2LXNs YWNrd2FyZS1saW51eC8yLjk1LjMvLi4vLi4vLi4vLi4vaW5jbHVkZS9nKystMy9zdGxfYWxsb2Mu aCguYmFzaWNfc3RyaW5nPGNoYXIsIHN0cmluZ19jaGFyX3RyYWl0czxjaGFyPiwgX19kZWZhdWx0 X2FsbG9jX3RlbXBsYXRlPHRydWUsIDA+ID46OlJlcDo6Z251LmxpbmtvbmNlLnQubW92ZSh1bnNp Z25lZCBpbnQsIGNoYXIgY29uc3QgKiwgdW5zaWduZWQgaW50KSsweDMzKTogdW5kZWZpbmVkIHJl ZmVyZW5jZSB0byBgc3RyaW5nX2NoYXJfdHJhaXRzPGNoYXI+Ojptb3ZlKGNoYXIgKiwgY2hhciBj b25zdCAqLCB1bnNpZ25lZCBpbnQpJwovdXNyL2xpYi9nY2MtbGliL2kzODYtc2xhY2t3YXJlLWxp bnV4LzIuOTUuMy8uLi8uLi8uLi8uLi9pbmNsdWRlL2crKy0zL3N0bF9hbGxvYy5oKC5iYXNpY19z dHJpbmc8Y2hhciwgc3RyaW5nX2NoYXJfdHJhaXRzPGNoYXI+LCBfX2RlZmF1bHRfYWxsb2NfdGVt cGxhdGU8dHJ1ZSwgMD4gPjo6Z251LmxpbmtvbmNlLnQucmVwbGFjZSh1bnNpZ25lZCBpbnQsIHVu c2lnbmVkIGludCwgY2hhciBjb25zdCAqLCB1bnNpZ25lZCBpbnQpKzB4MzEpOiB1bmRlZmluZWQg cmVmZXJlbmNlIHRvIGBfX291dF9vZl9yYW5nZShjaGFyIGNvbnN0ICopJwovdG1wL2NjaFgyb2x3 Lm86IEluIGZ1bmN0aW9uIGBjaGJpbmRfZGV2ZXhpc3QoY2hhciBjb25zdCAqKSc6Ci90bXAvdnNl cnZlci0wLjE2L2NoYmluZC5jYzozOTogdW5kZWZpbmVkIHJlZmVyZW5jZSB0byBgX19sZW5ndGhf ZXJyb3IoY2hhciBjb25zdCAqKScKL3RtcC92c2VydmVyLTAuMTYvY2hiaW5kLmNjOjM1OiB1bmRl ZmluZWQgcmVmZXJlbmNlIHRvIGBfX291dF9vZl9yYW5nZShjaGFyIGNvbnN0ICopJwovdG1wL3Zz ZXJ2ZXItMC4xNi9jaGJpbmQuY2M6NDA6IHVuZGVmaW5lZCByZWZlcmVuY2UgdG8gYF9fbGVuZ3Ro X2Vycm9yKGNoYXIgY29uc3QgKiknCi90bXAvY2NoWDJvbHcubzogSW4gZnVuY3Rpb24gYGlmY29u ZmlnX2dldGFkZHIoY2hhciBjb25zdCAqLCB1bnNpZ25lZCBsb25nICYsIHVuc2lnbmVkIGxvbmcg JiknOgovdG1wL3ZzZXJ2ZXItMC4xNi9jaGJpbmQuY2M6NzU6IHVuZGVmaW5lZCByZWZlcmVuY2Ug dG8gYHN0cmluZ19jaGFyX3RyYWl0czxjaGFyPjo6YXNzaWduKGNoYXIgJiwgY2hhciBjb25zdCAm KScKL3RtcC92c2VydmVyLTAuMTYvY2hiaW5kLmNjOjkwOiB1bmRlZmluZWQgcmVmZXJlbmNlIHRv IGBzdHJpbmdfY2hhcl90cmFpdHM8Y2hhcj46OmFzc2lnbihjaGFyICYsIGNoYXIgY29uc3QgJikn Ci90bXAvY2NoWDJvbHcubzogSW4gZnVuY3Rpb24gYGJhc2ljX3N0cmluZzxjaGFyLCBzdHJpbmdf Y2hhcl90cmFpdHM8Y2hhcj4sIF9fZGVmYXVsdF9hbGxvY190ZW1wbGF0ZTx0cnVlLCAwPiA+OjpS ZXA6Om9wZXJhdG9yIGRlbGV0ZSh2b2lkICopJzoKL3Vzci9saWIvZ2NjLWxpYi9pMzg2LXNsYWNr d2FyZS1saW51eC8yLjk1LjMvLi4vLi4vLi4vLi4vaW5jbHVkZS9nKystMy9zdGxfYWxsb2MuaCgu YmFzaWNfc3RyaW5nPGNoYXIsIHN0cmluZ19jaGFyX3RyYWl0czxjaGFyPiwgX19kZWZhdWx0X2Fs bG9jX3RlbXBsYXRlPHRydWUsIDA+ID46OmdudS5saW5rb25jZS50LmNvbXBhcmUoYmFzaWNfc3Ry aW5nPGNoYXIsIHN0cmluZ19jaGFyX3RyYWl0czxjaGFyPiwgX19kZWZhdWx0X2FsbG9jX3RlbXBs YXRlPHRydWUsIDA+ID4gY29uc3QgJiwgdW5zaWduZWQgaW50LCB1bnNpZ25lZCBpbnQpIGNvbnN0 KzB4MmMpOiB1bmRlZmluZWQgcmVmZXJlbmNlIHRvIGBfX291dF9vZl9yYW5nZShjaGFyIGNvbnN0 ICopJwovdG1wL2NjaFgyb2x3Lm86IEluIGZ1bmN0aW9uIGBjaGJpbmRfZGV2ZXhpc3QoY2hhciBj b25zdCAqKSc6Ci90bXAvdnNlcnZlci0wLjE2L2NoYmluZC5jYzo0MDogdW5kZWZpbmVkIHJlZmVy ZW5jZSB0byBgc3RyaW5nX2NoYXJfdHJhaXRzPGNoYXI+Ojpjb21wYXJlKGNoYXIgY29uc3QgKiwg Y2hhciBjb25zdCAqLCB1bnNpZ25lZCBpbnQpJwovdG1wL2NjaFgyb2x3Lm86IEluIGZ1bmN0aW9u IGBiYXNpY19zdHJpbmc8Y2hhciwgc3RyaW5nX2NoYXJfdHJhaXRzPGNoYXI+LCBfX2RlZmF1bHRf YWxsb2NfdGVtcGxhdGU8dHJ1ZSwgMD4gPjo6UmVwOjpvcGVyYXRvciBkZWxldGUodm9pZCAqKSc6 Ci91c3IvbGliL2djYy1saWIvaTM4Ni1zbGFja3dhcmUtbGludXgvMi45NS4zLy4uLy4uLy4uLy4u L2luY2x1ZGUvZysrLTMvc3RsX2FsbG9jLmgoLmdudS5saW5rb25jZS50Ll9fbHNfX0gzWmNadDE4 c3RyaW5nX2NoYXJfdHJhaXRzMVpjWnQyNF9fZGVmYXVsdF9hbGxvY190ZW1wbGF0ZTJiMWkwX1I3 b3N0cmVhbVJDdDEyYmFzaWNfc3RyaW5nM1pYMDFaWDExWlgyMV9SN29zdHJlYW0rMHgzMik6IHVu ZGVmaW5lZCByZWZlcmVuY2UgdG8gYG9zdHJlYW06OndyaXRlKGNoYXIgY29uc3QgKiwgaW50KScK L3RtcC9jY2hYMm9sdy5vOiBJbiBmdW5jdGlvbiBgY2hiaW5kX2RldmV4aXN0KGNoYXIgY29uc3Qg KiknOgovdG1wL3ZzZXJ2ZXItMC4xNi9jaGJpbmQuY2M6MzY6IHVuZGVmaW5lZCByZWZlcmVuY2Ug dG8gYF9fb3V0X29mX3JhbmdlKGNoYXIgY29uc3QgKiknCmNvbGxlY3QyOiBsZCByZXR1cm5lZCAx IGV4aXQgc3RhdHVzCm1ha2U6ICoqKiBbY2hiaW5kXSBFcnJvciAxCg== --------------Boundary-00=_BQO3QA5DZUNGUDJRWWWE-- From vserver.error@solucorp.qc.ca Fri Apr 5 13:14:40 2002 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g35IEd7Y019300; Fri, 5 Apr 2002 13:14:40 -0500 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g35I1j628659 for vserver.list; Fri, 5 Apr 2002 13:01:45 -0500 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from student6.rug.ac.be (student6.rug.ac.be [157.193.88.74]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g35I1ih28655 for ; Fri, 5 Apr 2002 13:01:45 -0500 Received: (from ivo@localhost) by student6.rug.ac.be (8.9.3/8.9.3/Debian 8.9.3-21) id UAA20656 for vserver@solucorp.qc.ca; Fri, 5 Apr 2002 20:01:44 +0200 Date: Fri, 5 Apr 2002 20:01:44 +0200 From: Ivo De Decker To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver does not compile Message-ID: <20020405200144.A20448@student.rug.ac.be> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from ralf@convergence.de on Fri, Apr 05, 2002 at 05:08:35PM +0200 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 430 On Fri, Apr 05, 2002 at 05:08:35PM +0200, Ralf Hemmann wrote: > since two or three releases the vserver Package does not compile completely > any more. > Latest try was 0.16. > > Tools that not compile are: > > chkbind, chcontext,reducecap,syscall,vutil, > Attached is an error output . > > For security reasons I have no compiler my rootserver, I compile everthing on > a builsdsystem. The patched kernelsource is available. I have tried gcc-3.04 > instead gcc-2.95.3 also > > Any hints ? Hello, I had the same problem. Try replacing gcc with g++ in the makefile (except the last one, it has to be gcc). BTW I'm using debian stable. Greetings, Ivo De Decker From vserver.error@solucorp.qc.ca Mon Apr 8 08:35:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g38CZf3Q018018; Mon, 8 Apr 2002 08:35:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g38C7T118400 for vserver.list; Mon, 8 Apr 2002 08:07:29 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from irishsea.home.craig-wood.com (userbb201.dsl.pipex.com [62.190.241.201]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g38C7Rh18396 for ; Mon, 8 Apr 2002 08:07:28 -0400 Received: (from ncw@localhost) by irishsea.home.craig-wood.com (8.11.6/8.11.6) id g38C7MP13890 for vserver@dns.solucorp.qc.ca; Mon, 8 Apr 2002 13:07:22 +0100 Date: Mon, 8 Apr 2002 13:07:22 +0100 From: Nick Craig-Wood To: Vserver mailing list Subject: [vserver] pam_capability module Message-ID: <20020408130722.A13799@axis.demon.co.uk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-5.0 required=5.0 tests=UNIFIED_PATCH version=2.01 Status: RO X-Status: X-Keywords: X-UID: 431 I thought you guys might be interested in this in that it playing with similar parts of the kernel to vserver :- http://freshmeat.net/projects/pam_capability/ Which is a module implementing capabilities for users via PAM. Of particular interest it somes with a kernel patch which I include verbatim here - maybe some co-operation between the two projects would be a good idea? ... diff -ruN linux-2.4.18-pure/Documentation/Configure.help linux-2.4.18-capfix/Documentation/Configure.help --- linux-2.4.18-pure/Documentation/Configure.help Mon Feb 25 11:37:51 2002 +++ linux-2.4.18-capfix/Documentation/Configure.help Tue Apr 2 07:24:32 2002 @@ -3690,6 +3690,22 @@ building a kernel for install/rescue disks or your system is very limited in memory. +Inherit Capabilities Across Exec +CONFIG_INHERIT_CAPS_ACROSS_EXEC + Allow non-root users to pass on capabilities when they exec + binaries. When this feature is used in combination with a + user-level capability assignment mechanism (e.g. pam_capability) + it can significantly reduce the amount of time that users need + to run as root. + + Note that this is a temporary solution to the larger + problem of implementing full support for capabilities in + the Linux virtual file system layer. + + You should say N here unless you know what this is and know + that you want to use it. + + # Choice: kcore Kernel core (/proc/kcore) format CONFIG_KCORE_ELF diff -ruN linux-2.4.18-pure/arch/i386/config.in linux-2.4.18-capfix/arch/i386/config.in --- linux-2.4.18-pure/arch/i386/config.in Mon Feb 25 11:37:52 2002 +++ linux-2.4.18-capfix/arch/i386/config.in Tue Apr 2 07:24:32 2002 @@ -258,6 +258,9 @@ bool 'System V IPC' CONFIG_SYSVIPC bool 'BSD Process Accounting' CONFIG_BSD_PROCESS_ACCT bool 'Sysctl support' CONFIG_SYSCTL +if [ "$CONFIG_EXPERIMENTAL" = "y" ]; then + bool 'Inherit Capabilities Across Exec' CONFIG_INHERIT_CAPS_ACROSS_EXEC +fi if [ "$CONFIG_PROC_FS" = "y" ]; then choice 'Kernel core (/proc/kcore) format' \ "ELF CONFIG_KCORE_ELF \ diff -ruN linux-2.4.18-pure/fs/exec.c linux-2.4.18-capfix/fs/exec.c --- linux-2.4.18-pure/fs/exec.c Fri Dec 21 09:41:55 2001 +++ linux-2.4.18-capfix/fs/exec.c Tue Apr 2 07:24:32 2002 @@ -644,6 +644,29 @@ cap_clear(bprm->cap_permitted); cap_clear(bprm->cap_effective); +#ifdef CONFIG_INHERIT_CAPS_ACROSS_EXEC + /* allow non-root users to pass on capabilities + * when they exec binaries. we leave all capabilities + * cleared if cap_setpcap is set in any of the capability + * sets as a marker to indicate that an application did not + * call sys_capset via * cap_set_proc. + * + * NB: this means that non-root users can never be granted + * cap_setpcap. This isn't necessarily * a bad thing. + * + * NB: we use cap_inheritable here so that login can set + * setuid/setgid in eff & perm for purposes of su, which + * can then go away silently. + */ + if ( (current->euid != 0 || issecure(SECURE_NOROOT)) && + !(cap_raised(current->cap_inheritable,CAP_SETPCAP)) && + !(cap_raised(current->cap_effective,CAP_SETPCAP)) && + !(cap_raised(current->cap_permitted,CAP_SETPCAP)) ) { + bprm->cap_permitted = current->cap_inheritable; + bprm->cap_effective = current->cap_inheritable; + } +#endif + /* To support inheritance of root-permissions and suid-root * executables under compatibility mode, we raise all three * capability sets for the file. -- Nick Craig-Wood ncw1@axis.demon.co.uk From vserver.error@solucorp.qc.ca Mon Apr 8 15:27:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g38JRr3Q022221; Mon, 8 Apr 2002 15:27:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g38JHnS25066 for vserver.list; Mon, 8 Apr 2002 15:17:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g38JHnh25062 for ; Mon, 8 Apr 2002 15:17:49 -0400 Received: from remtk.solucorp.qc.ca (g36-88.citenet.net [206.123.36.88]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g38JIm692274 for ; Mon, 8 Apr 2002 15:18:48 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g38J7A804403 for vserver@solucorp.qc.ca; Mon, 8 Apr 2002 15:07:10 -0400 From: Jacques Gelinas Date: Mon, 8 Apr 2002 15:07:10 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver does not compile X-mailer: tlmpmail 0.6 Message-ID: <20020408150710.9a24420463cf@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 432 On Fri, 5 Apr 2002 17:08:35 -0500, Ralf Hemmann wrote > Hy together. > > since two or three releases the vserver Package does not compile completely > any more. > Latest try was 0.16. > > Tools that not compile are: > > chkbind, chcontext,reducecap,syscall,vutil, > Attached is an error output . > > For security reasons I have no compiler my rootserver, I compile everthing on > a builsdsystem. The patched kernelsource is available. I have tried gcc-3.04 > instead gcc-2.95.3 also > > Any hints ? Maybe it is the way glibc is packaged on your distro. Try to add -lstdc++ in the Makefile to see if it helps. It this is the case, I can put this in the standard distribution. It won't hurt --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Apr 8 15:48:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g38Jmu3Q022375; Mon, 8 Apr 2002 15:48:56 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g38JcLc25512 for vserver.list; Mon, 8 Apr 2002 15:38:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from fnexchange2.corp.fast.net (fnexchange2.corp.fast.net [209.92.29.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g38JcLh25508 for ; Mon, 8 Apr 2002 15:38:21 -0400 Received: by fnexchange2.corp.fast.net with Internet Mail Service (5.5.2653.19) id ; Mon, 8 Apr 2002 15:38:22 -0400 Message-ID: <684A8B4FD94E464283C3ABA6AE65214102D9BB36@fnexchange2.corp.fast.net> From: Jerry Wilborn To: "'vserver@solucorp.qc.ca'" Subject: [vserver] running bash with --login Date: Mon, 8 Apr 2002 15:38:20 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 433 older versions of bash dont support --login it's '-login'. newer versions with with '-login' too... just an fyi for ppl getting "-- unknown option" Jerry Wilborn, Operations Engineer FASTNET - Internet Solutions 610-266-6700 www.fast.net From vserver.error@solucorp.qc.ca Mon Apr 8 23:13:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g393DF3Q028798; Mon, 8 Apr 2002 23:13:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g392uW814262 for vserver.list; Mon, 8 Apr 2002 22:56:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g392uWh14258 for ; Mon, 8 Apr 2002 22:56:32 -0400 Received: from remtk.solucorp.qc.ca (g36-106.citenet.net [206.123.36.106]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g392vY627895 for ; Mon, 8 Apr 2002 22:57:34 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g392gKG04601 for vserver@solucorp.qc.ca; Mon, 8 Apr 2002 22:42:20 -0400 From: Jacques Gelinas Date: Mon, 8 Apr 2002 22:42:20 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] pam_capability module X-mailer: tlmpmail 0.6 Message-ID: <20020408224220.6010efc95828@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 434 On Mon, 8 Apr 2002 13:07:22 -0500, Nick Craig-Wood wrote > I thought you guys might be interested in this in that it playing with > similar parts of the kernel to vserver :- > > http://freshmeat.net/projects/pam_capability/ > > Which is a module implementing capabilities for users via PAM. > The capability system is incomplete in linux 2.2 and 2.4. The big missing part is the ability to tag capability to application like we can tag the setuid bit. The flaw with setuid bit is that a buggy setuid root program can give away the control over the system. This patch offers a way around. Giving some capability to users so you need less setuid programs ou capability enhanced programs. At least this is what I understand. The major flaw with capability is this is an all or nothing. You can't qualify the capability. For exemple, it would be nice to grant CAP_DAC_OVERRIDE to a co-administrator, but only on one area of the file system (This allow him to override the normal file access rights). Capabilities are cool for the vserver because this is indeed a all and nothing deal. We do not want vserver administrator to do some operations at all. I suspect that in the long run, stuff like the LSM + selinux will rule. Note that there is nothing incompatible with vservers. LSM + selinux is used to delegate some ability to some users if they are follwoing some access pattern (they logged from some services and then do that and that). One goal of the capability system is to stop giving away root completly whenever someone needs to perform something privileged. Unfortunatly this is difficult to give fine control. For exemple, I would like to have this users in charge of the web server. I don't want him to be root, ever. Yet he must be able to start the service. And the service needs a way to bind to port 80 (only root can do that, or you need a special capability). If you use a capability, then you allow this user to bind any service with a port below 1024, which is not exactly what you want. I suspect this explains why the capability system has been almost complete for so long. plug mode: I have designed a package called aclfsd as part of the virtualfs project. aclfsd provide a very fine grain access to file system and network resources. Using ACL, you can tell who can bind to which port for example. Wonder if this has a future... www.solucorp.qc.ca/virtualfs --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Apr 9 00:45:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g394jn3Q029547; Tue, 9 Apr 2002 00:45:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g394PZg15891 for vserver.list; Tue, 9 Apr 2002 00:25:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g394PXh15887 for ; Tue, 9 Apr 2002 00:25:34 -0400 Received: from aksmtpmdr2.telecom.co.nz (aksmtpmdr2 [146.171.1.21]) by smtpout.telecom.co.nz (Postfix) with SMTP id 542D345EA5 for ; Tue, 9 Apr 2002 16:25:27 +1200 (NZST) Received: from 192.168.192.22 by aksmtpmdr2.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Tue, 09 Apr 2002 16:25:17 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from ganymede ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 16unAK-0002ay-00 for ; Tue, 09 Apr 2002 16:23: 32 +1200 Subject: [vserver] /etc/mtab From: "Fran Firman" To: vserver X-Mailer: Evolution/1.0.2 Date: 09 Apr 2002 16:23:31 +1200 Message-ID: <1018326212.24682.30.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10ACB2A6791530-01-01 Content-Type: multipart/signed; boundary="=-tbZEC+fxK8F9tAhVKKhd"; micalg=pgp-sha1; protocol="application/pgp-signature" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 435 --=-tbZEC+fxK8F9tAhVKKhd Content-Type: text/plain Content-Transfer-Encoding: quoted-printable I noticed while inside my vserver, if I remove the /etc/mtab file and then run mount, I get to see all of the mount points for the whole server. I don't think I can do anything with that thou. Any ideas, about this? Fran --=-tbZEC+fxK8F9tAhVKKhd Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iEYEABECAAYFAjyybMMACgkQv1V2oVWAPhbKzwCdGwLq7NflEZFM4HjPwGNw8OG+ 8PUAoJHcW+VgGGcsO+IW5OeIZ7wgT9SQ =hy91 -----END PGP SIGNATURE----- --=-tbZEC+fxK8F9tAhVKKhd-- From vserver.error@solucorp.qc.ca Tue Apr 9 01:20:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g395KW3Q029709; Tue, 9 Apr 2002 01:20:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3955PL16574 for vserver.list; Tue, 9 Apr 2002 01:05:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mx1.paradigm4.com.au (server.paradigm4.com.au [202.45.126.119]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g3955Oh16570 for ; Tue, 9 Apr 2002 01:05:24 -0400 Received: (qmail 29025 invoked from network); 9 Apr 2002 05:08:58 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 9 Apr 2002 05:08:58 -0000 Received: (qmail 2362 invoked from network); 9 Apr 2002 05:05:52 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 9 Apr 2002 05:05:52 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Tue, 9 Apr 2002 15:06:26 +1000 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] /etc/mtab Message-ID: <3CB30372.2224.EE6C41@localhost> Priority: normal In-reply-to: <1018326212.24682.30.camel@ganymede> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-98.8 required=5.0 tests=NO_REAL_NAME,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 436 You could just do cat /proc/mounts inside vserver and you will see all the mounts anyway, regardless of /etc/mtab I think that new vproc fs would address that. Ed On Tuesday, 9 April 2002 at 16:23, Fran Firman wrote: > I noticed while inside my vserver, if I remove the /etc/mtab file and > then run mount, I get to see all of the mount points for the whole > server. > > I don't think I can do anything with that thou. > > > Any ideas, about this? > > Fran > > > From vserver.error@solucorp.qc.ca Tue Apr 9 01:22:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g395MH3Q029716; Tue, 9 Apr 2002 01:22:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3952sT16515 for vserver.list; Tue, 9 Apr 2002 01:02:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mx1.paradigm4.com.au (server.paradigm4.com.au [202.45.126.119]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g3952qh16511 for ; Tue, 9 Apr 2002 01:02:53 -0400 Received: (qmail 28935 invoked from network); 9 Apr 2002 05:06:19 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 9 Apr 2002 05:06:19 -0000 Received: (qmail 2355 invoked from network); 9 Apr 2002 05:03:13 -0000 Received: from charley.home (HELO charlie) (10.0.0.4) by stanley.home with SMTP; 9 Apr 2002 05:03:13 -0000 From: edward@paradigm4.com.au Organization: Paradigm4 To: vserver@solucorp.qc.ca Date: Tue, 9 Apr 2002 15:03:48 +1000 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: re: [vserver] pam_capability module Message-ID: <3CB302D4.2564.EC006F@localhost> Priority: normal In-reply-to: <20020408224220.6010efc95828@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Win32 (v3.12c) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-98.8 required=5.0 tests=NO_REAL_NAME,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 437 On Monday, 8 April 2002 at 22:42, Jacques Gelinas wrote: > I have designed a package called aclfsd as part of the virtualfs project. aclfsd > provide a very fine grain access to file system and network resources. Using > ACL, you can tell who can bind to which port for example. Wonder if this > has a future... www.solucorp.qc.ca/virtualfs As far as I understand it, it provides the alternative to glibc so it relies on non-modified binaries that are not statically linked, which is ok for some network services. I'd like to see something more universal that that, though. e.g. There is an authorization server ( could be a kernel module with syscall/ioctl interface ) which is tied to a database, listing all restricted objects ( files/directories/ports/protocols/syscalls/etc ), allowed methods (e.g.write/read/open/listen/connect/chmod etc) ,and their corresponding secrets. All applications initially don't have access to any resource. They request permissions for particular object from the auth server, providing their credentials and ( optionally ) stating for how long they need this resource. Auth server checks the credentials, current policies and possibly grants a "ticket" allowing access to a resource. "Credentials" may include md5sum+inode+attrs of the executable and/or some "passwords" or whatever. There may be more than one reference to the same object/method but with different credentials, thus giving longer/shorter lasting tickets to different programs. each task structure would contain a reference to a hashed array of tickets issued for the current task. All tickets would have their expiration dates, after which they are no longer valid and get deleted from the array. There may be a "full access to everything" object in the database, which would grant infinite ticket to access everything, thus simulating the present "power of root". This is sort of getting into LIDS/selinux territory but possibly more generic and I haven't seen the idea of an expiring tickets per task anywhere else. I think having a bucket of tickets tied to each task may speed up things because auth server wouldn't need to be consulted each time a program needs to open a file/create a connection etc. Just my $0.02 Ed From vserver.error@solucorp.qc.ca Tue Apr 9 01:59:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g395xw3Q029931; Tue, 9 Apr 2002 01:59:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g395lMC17408 for vserver.list; Tue, 9 Apr 2002 01:47:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-74-250.telepac.pt [213.13.74.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g395lKh17404 for ; Tue, 9 Apr 2002 01:47:21 -0400 Received: (qmail 11746 invoked from network); 9 Apr 2002 05:47:19 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 9 Apr 2002 05:47:19 -0000 Message-ID: <3CB28067.4040401@vgertech.com> Date: Tue, 09 Apr 2002 06:47:19 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020402 Debian/2:0.9.9-4 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] /etc/mtab References: <1018326212.24682.30.camel@ganymede> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 438 Hi! you can see the mounts everytime: cat /proc/mounts if your vserver doesn't need procfs (any proc related utilities like ps, w, etc, but not limited to these..) you can disable it: comment out mountproc /vservers/$1 in /usr/sbin/vserver this could be a configuration option in /etc/vservers/$1 :) Hope this helps. Regards, Nuno Silva Fran Firman wrote: > I noticed while inside my vserver, if I remove the /etc/mtab file and > then run mount, I get to see all of the mount points for the whole > server. > > I don't think I can do anything with that thou. > > > Any ideas, about this? > > Fran > > From vserver.error@solucorp.qc.ca Tue Apr 9 03:09:13 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3979C3Q030316; Tue, 9 Apr 2002 03:09:12 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g396uE218842 for vserver.list; Tue, 9 Apr 2002 02:56:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from falcon.prod.itd.earthlink.net (falcon.mail.pas.earthlink.net [207.217.120.74]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g396uDh18838 for ; Tue, 9 Apr 2002 02:56:13 -0400 Received: from pool-63.52.95.203.cmbr.grid.net ([63.52.95.203] helo=cy54255-a.vernalelm.com) by falcon.prod.itd.earthlink.net with esmtp (Exim 3.33 #1) id 16upY5-0001gA-00 for vserver@solucorp.qc.ca; Mon, 08 Apr 2002 23:56:13 -0700 Message-Id: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> X-Sender: philip@vernalelm.com X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Tue, 09 Apr 2002 02:53:15 -0400 To: vserver@solucorp.qc.ca From: Philip Hill Subject: [vserver] private server hosting Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.8 required=5.0 tests=KNOWN_BAD_DIALUPS version=2.01 Status: RO X-Status: A X-Keywords: X-UID: 439 Please accept my apologies if this is the wrong discussion in which to post this. Just wondering if anyone is attempting to use this method to offer hosting of something similar to a "virtual private server"? Are there any obvious drawbacks I'm missing? Regards, Philip From vserver.error@solucorp.qc.ca Tue Apr 9 03:30:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g397Ug3Q030450; Tue, 9 Apr 2002 03:30:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g397Hdk19310 for vserver.list; Tue, 9 Apr 2002 03:17:39 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from student6.rug.ac.be (student6.rug.ac.be [157.193.88.74]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g397Hch19306 for ; Tue, 9 Apr 2002 03:17:38 -0400 Received: (from ivo@localhost) by student6.rug.ac.be (8.9.3/8.9.3/Debian 8.9.3-21) id JAA12180 for vserver@solucorp.qc.ca; Tue, 9 Apr 2002 09:17:39 +0200 Date: Tue, 9 Apr 2002 09:17:39 +0200 From: Ivo De Decker To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver does not compile Message-ID: <20020409091739.A11948@student.rug.ac.be> References: <20020408150710.9a24420463cf@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020408150710.9a24420463cf@remtk.solucorp.qc.ca>; from jack@solucorp.qc.ca on Mon, Apr 08, 2002 at 03:07:10PM -0500 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 440 On Mon, Apr 08, 2002 at 03:07:10PM -0500, Jacques Gelinas wrote: > On Fri, 5 Apr 2002 17:08:35 -0500, Ralf Hemmann wrote > > since two or three releases the vserver Package does not compile completely > > any more. > > Latest try was 0.16. > Maybe it is the way glibc is packaged on your distro. Try to > add -lstdc++ in the Makefile to see if it helps. It this is the case, I can > put this in the standard distribution. It won't hurt This works for me (debian). Greetings, Ivo De Decker From vserver.error@solucorp.qc.ca Tue Apr 9 03:51:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g397pc3Q030570; Tue, 9 Apr 2002 03:51:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g397fWS19824 for vserver.list; Tue, 9 Apr 2002 03:41:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts24-srv.bellnexxia.net (tomts24.bellnexxia.net [209.226.175.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g397fWh19820 for ; Tue, 9 Apr 2002 03:41:32 -0400 Received: from bonano.neopeak.com ([65.92.52.51]) by tomts24-srv.bellnexxia.net (InterMail vM.4.01.03.23 201-229-121-123-20010418) with ESMTP id <20020409074128.GJWH15833.tomts24-srv.bellnexxia.net@bonano.neopeak.com> for ; Tue, 9 Apr 2002 03:41:28 -0400 Content-Type: text/plain; charset="iso-8859-1" From: =?iso-8859-1?q?C=E9dric=20Veilleux?= Organization: Neopeak Internet Solutions To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting Date: Tue, 9 Apr 2002 03:41:27 -0400 X-Mailer: KMail [version 1.4] References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> In-Reply-To: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> MIME-Version: 1.0 Message-Id: <200204090341.27294.cedric@neopeak.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g397fWh19820 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 441 Hi, I have not a lot of experience with vservers, but simply from reading the documentation, I've found a few important drawbacks: Limiting resources: It is still not possible to tightly control the resources available for a vserver (RAM, CPU, Disk Quota). Read the following page for more info on what can be done and what can't: http://www.solucorp.qc.ca/miscprj/s_context.hc?s1=4&s2=3&s3=0&s4=0&full=0&prjstate=1&nodoc=0 One IP address per vserver: An important drawback that will make a good part of your clients whine. It is only possible to have 1 IP per vserver. So it is not possible to use IP based virtual hosts in apache (required for SSL, etc..) Although there are also very important advantages to the vserver and security context solution. First of all it is open, and it can be used, with some tweakings, with the distribution of your choice, which allow much more flexibility. I am not a redhat fan and all other solutions I came accross are based on redhat only. I am interested in hearing the comments about other people on this subject as well... Thank you, Cedric On April 9, 2002 02:53 am, you wrote: > Please accept my apologies if this is the wrong discussion in which to post > this. > > Just wondering if anyone is attempting to use this method to offer hosting > of something similar to a "virtual private server"? Are there any obvious > drawbacks I'm missing? > > Regards, > > Philip From vserver.error@solucorp.qc.ca Tue Apr 9 04:07:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3986w3Q031852; Tue, 9 Apr 2002 04:06:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g397wXq20138 for vserver.list; Tue, 9 Apr 2002 03:58:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-74-250.telepac.pt [213.13.74.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g397wWh20134 for ; Tue, 9 Apr 2002 03:58:32 -0400 Received: (qmail 14127 invoked from network); 9 Apr 2002 07:58:30 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 9 Apr 2002 07:58:30 -0000 Message-ID: <3CB29F26.2000300@vgertech.com> Date: Tue, 09 Apr 2002 08:58:30 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020402 Debian/2:0.9.9-4 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver does not compile References: <20020408150710.9a24420463cf@remtk.solucorp.qc.ca> <20020409091739.A11948@student.rug.ac.be> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 442 [..snip..] >>>Latest try was 0.16. >> >>Maybe it is the way glibc is packaged on your distro. Try to >>add -lstdc++ in the Makefile to see if it helps. It this is the case, I can >>put this in the standard distribution. It won't hurt > > > This works for me (debian). > Same here. Btw, vserver-0.13 compiled just fine in the same system (debian sid). Vserver-0.16 didn't... -lstdc++ did the trick :) Regards, Nuno Silva From vserver.error@solucorp.qc.ca Tue Apr 9 04:40:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g398ev3Q032196; Tue, 9 Apr 2002 04:40:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g398MLo21270 for vserver.list; Tue, 9 Apr 2002 04:22:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from velocity.liquidweb.com (ns.liquidweb.com [64.91.224.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g398MKh21266 for ; Tue, 9 Apr 2002 04:22:20 -0400 Received: from 12-245-222-41.client.attbi.com ([12.245.222.41] helo=liquidweb.com) by velocity.liquidweb.com with asmtp (Exim 3.35 #1) id 16uqtO-0001jb-00 for vserver@solucorp.qc.ca; Tue, 09 Apr 2002 04:22:18 -0400 Message-ID: <3CB2A439.8050907@liquidweb.com> Date: Tue, 09 Apr 2002 04:20:09 -0400 From: Matthew Hill User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020311 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-AntiAbuse: Sender Address Domain - liquidweb.com Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 443 Philip, I am actually planning on implementing the vserver product our current gamut of services as to establish a reasonable step between shared hosting and full dedicated. It's usually fairly daunting for a user to step from $24.95 to $250 overnight (that is shared hosting to dedicated product). We will likely place the vserver product in the $80-100 range and monitor bandwidth through ipchains on the main server (this has not yet been finalized, aka, technical staff to later politely tell CEO why he is a moron). I have yet to run into issues as far as performance or stability (less ctx-9 and netstat), even managed to load test with a few counterstrike servers and the scheduler handled things flawlessly for less loaded test accounts. Current main issues involve quotas, and quotas. The virtualized /dev/hdv prevents it from being outwardly apparent as to a solution for userland quotas and is basically the only remaining barrier. Not so much in setting quotas for each vserver's total usage as there are other solutions for this, but rather quotas internal to each vserver's discrete userland. The cpanel product we license and partially develop relies on them heavily for reseller situations (which will be a common application from clients of this product). If anyone has plans for any sort of quota implementation or possible suggestions I would very interested to hear them. Awaiting beer deployment for anything useful. ---- Matthew Hill CEO, Liquid Web Inc. http://www.liquidweb.com "You can make up statistics to prove anything, 83% of people know that." Philip Hill wrote: > Please accept my apologies if this is the wrong discussion in which to > post this. > > Just wondering if anyone is attempting to use this method to offer > hosting of something similar to a "virtual private server"? Are there > any obvious drawbacks I'm missing? > > Regards, > > Philip From vserver.error@solucorp.qc.ca Tue Apr 9 04:54:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g398sw3Q032252; Tue, 9 Apr 2002 04:54:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g398ihB21745 for vserver.list; Tue, 9 Apr 2002 04:44:43 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g398igh21738 for ; Tue, 9 Apr 2002 04:44:42 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16urEz-0006eE-00 for ; Tue, 09 Apr 2002 10:44:37 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urEy-0006e3-00 for ; Tue, 09 Apr 2002 10:44:36 +0200 Sender: jon@silicide.dk Message-ID: <3CB2A9F4.3D93E49C@silicide.dk> Date: Tue, 09 Apr 2002 10:44:36 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> <200204090341.27294.cedric@neopeak.com> Content-Type: text/plain; charset=iso-8859-1 X-Envelope-To: vserver@solucorp.qc.ca Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g398igh21738 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 444 Cédric Veilleux wrote: > > Hi, > > I have not a lot of experience with vservers, but simply from reading the > documentation, I've found a few important drawbacks: Experience is good. I've used it for a little month now ?? And i really like it. I've even told my local LUG, that i would tell them about it one day. > One IP address per vserver: > An important drawback that will make a good part of your clients whine. It is > only possible to have 1 IP per vserver. So it is not possible to use IP based > virtual hosts in apache (required for SSL, etc..) http://www.solucorp.qc.ca/changes.hc?projet=vserver&version=0.16#vserver%20script%20enhancement "A vserver may operate with 0.0.0.0 as its IPROOT. This means the vserver is allowed to use any IP it wants..." It's a link from the front page. I havent tried it myself, i have the IP's i need. JonB From vserver.error@solucorp.qc.ca Tue Apr 9 05:07:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3997f3Q032429; Tue, 9 Apr 2002 05:07:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g398udi22028 for vserver.list; Tue, 9 Apr 2002 04:56:39 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g398uch22024 for ; Tue, 9 Apr 2002 04:56:38 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16urQc-0006f1-00 for ; Tue, 09 Apr 2002 10:56:38 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urQc-0006er-00 for ; Tue, 09 Apr 2002 10:56:38 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 10:56:38 +0200 (CEST) Received: (qmail 79142 invoked from network); 9 Apr 2002 08:55:27 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 9 Apr 2002 08:55:27 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g398ihB21745 for vserver.list; Tue, 9 Apr 2002 04:44:43 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g398igh21738 for ; Tue, 9 Apr 2002 04:44:42 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16urEz-0006eE-00 for ; Tue, 09 Apr 2002 10:44:37 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urEy-0006e3-00 for ; Tue, 09 Apr 2002 10:44:36 +0200 Sender: jon@silicide.dk Message-ID: <3CB2A9F4.3D93E49C@silicide.dk> Date: Tue, 09 Apr 2002 10:44:36 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> <200204090341.27294.cedric@neopeak.com> Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g398igh21738 X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 445 Cédric Veilleux wrote: > > Hi, > > I have not a lot of experience with vservers, but simply from reading the > documentation, I've found a few important drawbacks: Experience is good. I've used it for a little month now ?? And i really like it. I've even told my local LUG, that i would tell them about it one day. > One IP address per vserver: > An important drawback that will make a good part of your clients whine. It is > only possible to have 1 IP per vserver. So it is not possible to use IP based > virtual hosts in apache (required for SSL, etc..) http://www.solucorp.qc.ca/changes.hc?projet=vserver&version=0.16#vserver%20script%20enhancement "A vserver may operate with 0.0.0.0 as its IPROOT. This means the vserver is allowed to use any IP it wants..." It's a link from the front page. I havent tried it myself, i have the IP's i need. JonB From vserver.error@solucorp.qc.ca Tue Apr 9 05:08:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3998v3Q032436; Tue, 9 Apr 2002 05:08:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39924B22154 for vserver.list; Tue, 9 Apr 2002 05:02:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39923h22150 for ; Tue, 9 Apr 2002 05:02:03 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16urVr-0006fO-00 for ; Tue, 09 Apr 2002 11:02:03 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urVr-0006fD-00 for ; Tue, 09 Apr 2002 11:02:03 +0200 Sender: jon@silicide.dk Message-ID: <3CB2AE0B.4C96F5DF@silicide.dk> Date: Tue, 09 Apr 2002 11:02:03 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver mailinglist Subject: [vserver] feature request - suspend a vserver to disk Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 446 I would like to be able to supend a running vserver to disk, and then at a later time (or host) resume the vserver from where it was suspended. JonB ps: can anyone tell me why all my mails appear to be double in the mailinglist archives? From vserver.error@solucorp.qc.ca Tue Apr 9 05:23:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g399NB3Q032505; Tue, 9 Apr 2002 05:23:12 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g399AKf22311 for vserver.list; Tue, 9 Apr 2002 05:10:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g399AKh22307 for ; Tue, 9 Apr 2002 05:10:20 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16urds-0006gL-00 for ; Tue, 09 Apr 2002 11:10:20 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urds-0006gB-00 for ; Tue, 09 Apr 2002 11:10:20 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 11:10:20 +0200 (CEST) Received: (qmail 96536 invoked from network); 9 Apr 2002 09:09:00 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 9 Apr 2002 09:09:00 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39924B22154 for vserver.list; Tue, 9 Apr 2002 05:02:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39923h22150 for ; Tue, 9 Apr 2002 05:02:03 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16urVr-0006fO-00 for ; Tue, 09 Apr 2002 11:02:03 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urVr-0006fD-00 for ; Tue, 09 Apr 2002 11:02:03 +0200 Sender: jon@silicide.dk Message-ID: <3CB2AE0B.4C96F5DF@silicide.dk> Date: Tue, 09 Apr 2002 11:02:03 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver mailinglist Subject: [vserver] feature request - suspend a vserver to disk Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 447 I would like to be able to supend a running vserver to disk, and then at a later time (or host) resume the vserver from where it was suspended. JonB ps: can anyone tell me why all my mails appear to be double in the mailinglist archives? From vserver.error@solucorp.qc.ca Tue Apr 9 05:28:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g399SR3Q032529; Tue, 9 Apr 2002 05:28:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g399BYa22329 for vserver.list; Tue, 9 Apr 2002 05:11:34 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from saarland.sz-sb.de (saarland.sz-sb.de [212.88.192.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g399BWh22325 for ; Tue, 9 Apr 2002 05:11:33 -0400 Received: from camelot.sz-sb.de (dmz1-camelot.sz-sb.de [212.88.192.2]) by saarland.sz-sb.de (8.9.3+Sun/8.9.3) with SMTP id LAA29747 for ; Tue, 9 Apr 2002 11:11:30 +0200 (MEST) Received: from ([172.16.151.102]) by camelot.sz-sb.de; Tue, 09 Apr 2002 11:11:30 +0200 (MEST) Received: from laplinux.triervf.de (172.16.113.72 [172.16.113.72]) by trierx0.triervf.de with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 226W6F13; Tue, 9 Apr 2002 11:12:33 +0200 Subject: Re: [vserver] private server hosting From: d m To: vserver@solucorp.qc.ca In-Reply-To: <3CB2A439.8050907@liquidweb.com> References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> <3CB2A439.8050907@liquidweb.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 Date: 09 Apr 2002 11:11:14 +0200 Message-Id: <1018343479.18013.27.camel@laplinux> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 448 hi, > Not so much in setting quotas for each vserver's total usage as there > are other > solutions for this, but rather quotas internal to each vserver's discrete > userland. why don't you use some LVM ? It would be more work for internal vservers userland (splitting up the external LVM again), but possible... regards, daniel From vserver.error@solucorp.qc.ca Tue Apr 9 06:11:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39ABD3Q000375; Tue, 9 Apr 2002 06:11:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g399lT723188 for vserver.list; Tue, 9 Apr 2002 05:47:29 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from snafu.defcom.dk ([212.130.10.198]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g399lSh23183 for ; Tue, 9 Apr 2002 05:47:28 -0400 Received: from [10.45.0.109] (bifrost.defcom.dk [212.130.10.193]) by snafu.defcom.dk (Postfix) with ESMTP id 52780FA1A for ; Tue, 9 Apr 2002 11:47:27 +0200 (CEST) Subject: [vserver] double posts - an explanation..? From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-c5gyPomqNXJ+taIoO9Fy" X-Mailer: Ximian Evolution 1.0.3 Date: 09 Apr 2002 11:47:26 +0200 Message-Id: <1018345646.1728.17.camel@tpx20.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 449 --=-c5gyPomqNXJ+taIoO9Fy Content-Type: text/plain Content-Transfer-Encoding: quoted-printable It would seem that the sender (exim gateway at siloicide.dk in this incident) is sending the mail only once.. so it must be the solucorp mail server (sendmail v8.11.0 configured by linuxconf :-) that somehow messes it up.. perhaps the mail set sender to vserver.error@solucorp.qc.ca using -f has something to do with it? This is the email headers from the first post X-Sieve: cmu-sieve 1.3 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by smaug.netropolis.dk (8.10.0/8.10.0) with ESMTP id g399Mum13567 for ; Tue, 9 Apr 2002 11:22:56 +0200 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39924B22154 for vserver.list; Tue, 9 Apr 2002 05:02:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39923h22150 for ; Tue, 9 Apr 2002 05:02:03 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16urVr-0006fO-00 for ; Tue, 09 Apr 2002 11:02:03 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=3Dsilicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urVr-0006fD-00 for ; Tue, 09 Apr 2002 11:02:03 +0200 Sender: jon@silicide.dk Message-ID: <3CB2AE0B.4C96F5DF@silicide.dk> This is the email headers from the second (the double) post: X-Sieve: cmu-sieve 1.3 Return-Path: Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by smaug.netropolis.dk (8.10.0/8.10.0) with ESMTP id g399bKm14432 for ; Tue, 9 Apr 2002 11:37:21 +0200 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g399AKf22311 for vserver.list; Tue, 9 Apr 2002 05:10:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g399AKh22307 for ; Tue, 9 Apr 2002 05:10:20 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16urds-0006gL-00 for ; Tue, 09 Apr 2002 11:10:20 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urds-0006gB-00 for ; Tue, 09 Apr 2002 11:10:20 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 11:10:20 +0200 (CEST) Received: (qmail 96536 invoked from network); 9 Apr 2002 09:09:00 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 9 Apr 2002 09:09:00 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39924B22154 for vserver.list; Tue, 9 Apr 2002 05:02:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39923h22150 for ; Tue, 9 Apr 2002 05:02:03 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16urVr-0006fO-00 for ; Tue, 09 Apr 2002 11:02:03 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=3Dsilicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urVr-0006fD-00 for ; Tue, 09 Apr 2002 11:02:03 +0200 Sender: jon@silicide.dk Message-ID: <3CB2AE0B.4C96F5DF@silicide.dk>=09 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-c5gyPomqNXJ+taIoO9Fy Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA8sriu4c1kHlhtW8oRAuhqAJ4+Hc4BzHu3Rln0FOcs+QpgPaJj1gCZAaZ+ 5qqYy9or5ct/xFb8vQdtm/4= =87Q1 -----END PGP SIGNATURE----- --=-c5gyPomqNXJ+taIoO9Fy-- From vserver.error@solucorp.qc.ca Tue Apr 9 06:27:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39ARw3Q000445; Tue, 9 Apr 2002 06:27:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39A9rO23641 for vserver.list; Tue, 9 Apr 2002 06:09:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chambertin.convergence.de (chambertin.convergence.de [212.84.236.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39A9rh23637 for ; Tue, 9 Apr 2002 06:09:53 -0400 Received: from [10.1.1.90] (helo=there ident=ralf) by chambertin.convergence.de with smtp (Exim 3.33 #2 ) id 16usZV-0000tI-00 for ; Tue, 09 Apr 2002 12:09:53 +0200 Content-Type: text/plain; charset="iso-8859-1" From: Ralf Hemmann To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver does not compile Date: Tue, 9 Apr 2002 12:16:22 +0200 X-Mailer: KMail [version 1.3.2] References: <20020408150710.9a24420463cf@remtk.solucorp.qc.ca> In-Reply-To: <20020408150710.9a24420463cf@remtk.solucorp.qc.ca> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 450 > > since two or three releases the vserver Package does not compile > > completely any more. > > Latest try was 0.16. > Maybe it is the way glibc is packaged on your distro. Try to > add -lstdc++ in the Makefile to see if it helps. It this is the case, I can > put this in the standard distribution. It won't hurt This was the solution. Thank you ! Ralf From vserver.error@solucorp.qc.ca Tue Apr 9 06:40:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39Ae53Q000550; Tue, 9 Apr 2002 06:40:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39AJEk23845 for vserver.list; Tue, 9 Apr 2002 06:19:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from velocity.liquidweb.com (ns.liquidweb.com [64.91.224.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39AJEh23841 for ; Tue, 9 Apr 2002 06:19:14 -0400 Received: from 12-245-222-41.client.attbi.com ([12.245.222.41] helo=liquidweb.com) by velocity.liquidweb.com with asmtp (Exim 3.35 #1) id 16usiU-00032x-00 for vserver@solucorp.qc.ca; Tue, 09 Apr 2002 06:19:10 -0400 Message-ID: <3CB2BF9E.4050306@liquidweb.com> Date: Tue, 09 Apr 2002 06:17:02 -0400 From: Matthew Hill User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020311 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> <3CB2A439.8050907@liquidweb.com> <1018343479.18013.27.camel@laplinux> Content-Type: multipart/alternative; boundary="------------050309000406080900030805" X-AntiAbuse: Sender Address Domain - liquidweb.com Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 451 --------------050309000406080900030805 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Daniel, Thank you for the suggestion, as LVM would be an excellent system for controlling total vserver disk consumption. However the largest concern remaining, on which I was admittedly unclear, is that I'm trying to implement per-user quotas in a system where users are perpetually created and destroyed by web-based admin tools given to the owner of the vserver. Any suggestions? I would think it rather tedious from an administrative standpoint to attempt to use LVM per /home/user directories, whereas the best hack attempts I could envision using the current vserver setup would set quotas spanning all vservers and create overlap in chosen user names and disk consumption (lacking virtualized quotas, which I realize to be no small task). I had noticed one other post to this list requesting quotas support on the /dev/hdv a few weeks back. Sincerely, Matthew Hill d m wrote: >hi, > >>Not so much in setting quotas for each vserver's total usage as there >>are other >>solutions for this, but rather quotas internal to each vserver's discrete >>userland. >> > >why don't you use some LVM ? It would be more work for internal vservers >userland (splitting up the external LVM again), but possible... > >regards, >daniel > --------------050309000406080900030805 Content-Type: text/html; charset=us-ascii Content-Transfer-Encoding: 7bit Daniel,

Thank you for the suggestion, as LVM would be an excellent
system for controlling total vserver disk consumption.


However the largest concern remaining, on which I was
admittedly unclear, is that I'm trying to implement
per-user quotas in a system where users are perpetually
created and destroyed by web-based admin tools given
to the owner of the vserver.


Any suggestions?  I would think it rather tedious from
an administrative standpoint to attempt to use LVM
per /home/user directories, whereas the best hack attempts


I could envision using the current vserver setup would
set quotas spanning all vservers and create overlap in chosen
user names and disk consumption (lacking virtualized quotas,
which I realize to be no small task).  I had noticed one
other post to this list requesting quotas support on the
/dev/hdv a few weeks back.

Sincerely,

Matthew Hill

d m wrote:
hi,

Not so much in setting quotas for each vserver's total usage as there
are other
solutions for this, but rather quotas internal to each vserver's discrete
userland.

why don't you use some LVM ? It would be more work for internal vservers
userland (splitting up the external LVM again), but possible...

regards,
daniel


--------------050309000406080900030805-- From vserver.error@solucorp.qc.ca Tue Apr 9 07:29:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39BTO3Q000873; Tue, 9 Apr 2002 07:29:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39B5Xi24842 for vserver.list; Tue, 9 Apr 2002 07:05:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39B5Wh24838 for ; Tue, 9 Apr 2002 07:05:32 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16utRM-0006ll-00 for ; Tue, 09 Apr 2002 13:05:32 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16utRM-0006la-00 for ; Tue, 09 Apr 2002 13:05:32 +0200 Sender: jon@silicide.dk Message-ID: <3CB2CAFC.DE098F2D@silicide.dk> Date: Tue, 09 Apr 2002 13:05:32 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> <3CB2A439.8050907@liquidweb.com> <1018343479.18013.27.camel@laplinux> <3CB2BF9E.4050306@liquidweb.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 452 Matthew Hill wrote: > > However the largest concern remaining, on which I was > admittedly unclear, is that I'm trying to implement > per-user quotas in a system where users are perpetually > created and destroyed by web-based admin tools given > to the owner of the vserver. Well, since you own the machine, you give the owner of the vserver some disk space. If he/she uses more, or his/hers users does, well, thats not your problem, is it? JonB From vserver.error@solucorp.qc.ca Tue Apr 9 07:51:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39BpL3Q001051; Tue, 9 Apr 2002 07:51:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39BUeq25319 for vserver.list; Tue, 9 Apr 2002 07:30:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39BUdh25315 for ; Tue, 9 Apr 2002 07:30:39 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16utpf-0006mm-00 for ; Tue, 09 Apr 2002 13:30:39 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16utpf-0006mc-00 for ; Tue, 09 Apr 2002 13:30:39 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 13:30:39 +0200 (CEST) Received: (qmail 14225 invoked from network); 9 Apr 2002 11:29:28 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 9 Apr 2002 11:29:28 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39B5Xi24842 for vserver.list; Tue, 9 Apr 2002 07:05:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39B5Wh24838 for ; Tue, 9 Apr 2002 07:05:32 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16utRM-0006ll-00 for ; Tue, 09 Apr 2002 13:05:32 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16utRM-0006la-00 for ; Tue, 09 Apr 2002 13:05:32 +0200 Sender: jon@silicide.dk Message-ID: <3CB2CAFC.DE098F2D@silicide.dk> Date: Tue, 09 Apr 2002 13:05:32 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> <3CB2A439.8050907@liquidweb.com> <1018343479.18013.27.camel@laplinux> <3CB2BF9E.4050306@liquidweb.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 453 Matthew Hill wrote: > > However the largest concern remaining, on which I was > admittedly unclear, is that I'm trying to implement > per-user quotas in a system where users are perpetually > created and destroyed by web-based admin tools given > to the owner of the vserver. Well, since you own the machine, you give the owner of the vserver some disk space. If he/she uses more, or his/hers users does, well, thats not your problem, is it? JonB From vserver.error@solucorp.qc.ca Tue Apr 9 07:56:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39Bu03Q001072; Tue, 9 Apr 2002 07:56:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39BTni25253 for vserver.list; Tue, 9 Apr 2002 07:29:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from saarland.sz-sb.de (saarland.sz-sb.de [212.88.192.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39BTmh25249 for ; Tue, 9 Apr 2002 07:29:49 -0400 Received: from camelot.sz-sb.de (dmz1-camelot.sz-sb.de [212.88.192.2]) by saarland.sz-sb.de (8.9.3+Sun/8.9.3) with SMTP id NAA08299 for ; Tue, 9 Apr 2002 13:29:48 +0200 (MEST) Received: from ([172.16.151.102]) by camelot.sz-sb.de; Tue, 09 Apr 2002 13:29:47 +0200 (MEST) Received: from laplinux.triervf.de (172.16.113.72 [172.16.113.72]) by trierx0.triervf.de with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 226W6FPD; Tue, 9 Apr 2002 13:28:46 +0200 Subject: Re: [vserver] private server hosting From: d m To: vserver@solucorp.qc.ca In-Reply-To: <3CB2BF9E.4050306@liquidweb.com> References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> <3CB2A439.8050907@liquidweb.com> <1018343479.18013.27.camel@laplinux> <3CB2BF9E.4050306@liquidweb.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 Date: 09 Apr 2002 13:29:31 +0200 Message-Id: <1018351775.18099.33.camel@laplinux> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 454 Matthew, ok, I got it now. Indeed, it would be a life-filling task to do this with LVM... I'm not that firm with quota, but isn't it true, that quota uses only the UIDs ? So, as the UID in a vserver are the same UIDs in the main-server, one could use quotas on the main-server configuring the UIDs only (!) used by the users of a vserver (e.g. an isolated area od UIDs). Regards, Daniel Am Die, 2002-04-09 um 12.17 schrieb Matthew Hill: > Daniel, > > Thank you for the suggestion, as LVM would be an excellent > system for controlling total vserver disk consumption. > > > However the largest concern remaining, on which I was > admittedly unclear, is that I'm trying to implement > per-user quotas in a system where users are perpetually > created and destroyed by web-based admin tools given > to the owner of the vserver. > > > Any suggestions? I would think it rather tedious from > an administrative standpoint to attempt to use LVM > per /home/user directories, whereas the best hack attempts > > > I could envision using the current vserver setup would > set quotas spanning all vservers and create overlap in chosen > user names and disk consumption (lacking virtualized quotas, > which I realize to be no small task). I had noticed one > other post to this list requesting quotas support on the > /dev/hdv a few weeks back. > > Sincerely, > > Matthew Hill > From vserver.error@solucorp.qc.ca Tue Apr 9 08:03:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39C3n3Q001204; Tue, 9 Apr 2002 08:03:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39Bcij25526 for vserver.list; Tue, 9 Apr 2002 07:38:44 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g39Bchh25522 for ; Tue, 9 Apr 2002 07:38:44 -0400 Received: (qmail 7696 invoked by uid 0); 9 Apr 2002 11:38:43 -0000 Received: from tvt-catv-dhcp-47-114.urbanet.ch (HELO laptop) (80.238.47.114) by mail.gmx.net (mp009-rz3) with SMTP; 9 Apr 2002 11:38:43 -0000 Message-ID: <00c701c1dfba$b0efc820$722fee50@vweb.ch.urbanet.ch> From: "Seiler Thomas" To: References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> <200204090341.27294.cedric@neopeak.com> <3CB2A9F4.3D93E49C@silicide.dk> Subject: Re: [vserver] private server hosting Date: Tue, 9 Apr 2002 13:35:40 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 455 Hi Jon Bendtsen wrote: > Cédric Veilleux wrote: > > > > I have not a lot of experience with vservers, but simply from reading the > > documentation, I've found a few important drawbacks: > >[...] > > One IP address per vserver: > > An important drawback that will make a good part of your clients whine. It is > > only possible to have 1 IP per vserver. So it is not possible to use IP based > > virtual hosts in apache (required for SSL, etc..) > > http://www.solucorp.qc.ca/changes.hc?projet=vserver&version=0.16#vserver%20s cript%20enhancement > "A vserver may operate with 0.0.0.0 as its IPROOT. This means the > vserver is allowed to use any IP it wants..." > [...] Isn't this a little bit contradictory ?You have this very nice vserver package which gives you absolute isolation between vservers, imagine Sandboxes to try untrusted software, absolute isolation for virtual hosting clients, etc... But as soon as a vserver needs more that one IP (common situation in hosting env.), the only solution consists in setting IPROOT to 0.0.0.0 allowing the vserver to mess around and bind to any IP's it isn't supposed to. Security Sandbox gone. Isolation for hosting clients gone, and it's only a question of time before they will get into each other's hair ... So the only real souloution to this consists in some way to allow assignment of multiple IP's per vserver. I saw there was once a patch for mutliple IPs per vserver, which isn't maintanced anymore. Would't that be a great starting point for a new multiple IP patch ? So does anybody know where i can find the old patch ? After all, this would be a very nice feature for hosting environments and I think there *IS* enough demand. Think for example of multiple SSL hosts within a vserver, of different IPs for Webserver and MailServer, etc... Thanks Thomas From vserver.error@solucorp.qc.ca Tue Apr 9 08:37:46 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39Cbj3Q002253; Tue, 9 Apr 2002 08:37:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39CDHO26330 for vserver.list; Tue, 9 Apr 2002 08:13:17 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-74-250.telepac.pt [213.13.74.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g39CDGh26326 for ; Tue, 9 Apr 2002 08:13:17 -0400 Received: (qmail 17386 invoked from network); 9 Apr 2002 12:13:13 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 9 Apr 2002 12:13:13 -0000 Message-ID: <3CB2DAD9.9090607@vgertech.com> Date: Tue, 09 Apr 2002 13:13:13 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020402 Debian/2:0.9.9-4 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] debian tgz for vservers Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 456 Hi, thought i'd share my debian image for vserver. I hope this makes vserver more distribution independent :) http://vserver.vgertech.com/ Keep in mind that this is a slow connection, if someone can mirror this to a faster connection, please email the list with the location. Regards, Nuno Silva From vserver.error@solucorp.qc.ca Tue Apr 9 08:40:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39Ceh3Q002283; Tue, 9 Apr 2002 08:40:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39CPPF26601 for vserver.list; Tue, 9 Apr 2002 08:25:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from fnexchange2.corp.fast.net (fnexchange2.corp.fast.net [209.92.29.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39CPPh26597 for ; Tue, 9 Apr 2002 08:25:25 -0400 Received: by fnexchange2.corp.fast.net with Internet Mail Service (5.5.2653.19) id <2SPKCHGC>; Tue, 9 Apr 2002 08:25:26 -0400 Message-ID: <684A8B4FD94E464283C3ABA6AE65214102D9BB37@fnexchange2.corp.fast.net> From: Jerry Wilborn To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] private server hosting Date: Tue, 9 Apr 2002 08:25:24 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g39CPPh26597 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 457 The only half ass way I've found around this (but still doesnt accomplish the SSL delima) is by creating two machine configuration files exactly the same but with two different IPs and specfying the S_CONTEXT to the same numeral. Do the mount "binding" to simulate the entire filesystem, or however you want to share them. What this does do is allow you to see all processes together and lets programs in each bind to the other IP (so long as they came in that way). If you try it out, it's probably about 20% of what you're trying to accomplish, but maybe it'll get you what you're looking for. Jerry Wilborn, Operations Engineer FASTNET - Internet Solutions 610-266-6700 www.fast.net -----Original Message----- From: Seiler Thomas [mailto:seiler.thomas@gmx.net] Sent: Tuesday, April 09, 2002 7:36 AM To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting Hi Jon Bendtsen wrote: > Cédric Veilleux wrote: > > > > I have not a lot of experience with vservers, but simply from reading the > > documentation, I've found a few important drawbacks: > >[...] > > One IP address per vserver: > > An important drawback that will make a good part of your clients whine. It is > > only possible to have 1 IP per vserver. So it is not possible to use IP based > > virtual hosts in apache (required for SSL, etc..) > > http://www.solucorp.qc.ca/changes.hc?projet=vserver&version=0.16#vserver%20s cript%20enhancement > "A vserver may operate with 0.0.0.0 as its IPROOT. This means the > vserver is allowed to use any IP it wants..." > [...] Isn't this a little bit contradictory ?You have this very nice vserver package which gives you absolute isolation between vservers, imagine Sandboxes to try untrusted software, absolute isolation for virtual hosting clients, etc... But as soon as a vserver needs more that one IP (common situation in hosting env.), the only solution consists in setting IPROOT to 0.0.0.0 allowing the vserver to mess around and bind to any IP's it isn't supposed to. Security Sandbox gone. Isolation for hosting clients gone, and it's only a question of time before they will get into each other's hair ... So the only real souloution to this consists in some way to allow assignment of multiple IP's per vserver. I saw there was once a patch for mutliple IPs per vserver, which isn't maintanced anymore. Would't that be a great starting point for a new multiple IP patch ? So does anybody know where i can find the old patch ? After all, this would be a very nice feature for hosting environments and I think there *IS* enough demand. Think for example of multiple SSL hosts within a vserver, of different IPs for Webserver and MailServer, etc... Thanks Thomas From vserver.error@solucorp.qc.ca Tue Apr 9 09:17:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39DHT3Q002523; Tue, 9 Apr 2002 09:17:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39D19p27416 for vserver.list; Tue, 9 Apr 2002 09:01:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39D18h27412 for ; Tue, 9 Apr 2002 09:01:09 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uvFE-0006rq-00 for ; Tue, 09 Apr 2002 15:01:08 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uvFE-0006rf-00 for ; Tue, 09 Apr 2002 15:01:08 +0200 Sender: jon@silicide.dk Message-ID: <3CB2E614.F2AC75B3@silicide.dk> Date: Tue, 09 Apr 2002 15:01:08 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers References: <3CB2DAD9.9090607@vgertech.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 458 Nuno Silva wrote: > > Hi, > > thought i'd share my debian image for vserver. > I hope this makes vserver more distribution independent :) cool, but whats in it ?? > http://vserver.vgertech.com/ no such host > Keep in mind that this is a slow connection, if someone can mirror this > to a faster connection, please email the list with the location. Sorry, i cant do that yet :/ JonB From vserver.error@solucorp.qc.ca Tue Apr 9 09:34:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39DYY3Q002758; Tue, 9 Apr 2002 09:34:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39DFp927720 for vserver.list; Tue, 9 Apr 2002 09:15:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from wobbly.bofh.net.au (bofh.net.au [203.20.99.253]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39DFoh27716 for ; Tue, 9 Apr 2002 09:15:50 -0400 Received: from reverie.bofh.net.au (darius@reverie.bofh.net.au [203.20.99.42]) by wobbly.bofh.net.au (8.9.3/8.8.7) with ESMTP id AAA09626 for ; Wed, 10 Apr 2002 00:49:40 +1000 Subject: Re: [vserver] debian tgz for vservers From: Kevin Littlejohn To: vserver@solucorp.qc.ca In-Reply-To: <3CB2DAD9.9090607@vgertech.com> References: <3CB2DAD9.9090607@vgertech.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 09 Apr 2002 23:15:49 +1000 Message-Id: <1018358149.868.609.camel@reverie> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 459 I'll put it up at http://www.obsidian.com.au/vserver/ shortly (it claims it'll take 49 minutes to download). Can I ask, though (before looking at it), how you picked what goes in by default? Our servers, we started with debootstrap, and pruned from there. KJL On Tue, 2002-04-09 at 22:13, Nuno Silva wrote: > Hi, > > thought i'd share my debian image for vserver. > I hope this makes vserver more distribution independent :) > > http://vserver.vgertech.com/ > > Keep in mind that this is a slow connection, if someone can mirror this > to a faster connection, please email the list with the location. > > Regards, > Nuno Silva > > > -- Internet techie Obsidian Consulting Group Phone: +613 9653 9364 Fax: +613 9354 2681 http://www.obsidian.com.au/ darius@obsidian.com.au From vserver.error@solucorp.qc.ca Tue Apr 9 09:39:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39DdQ3Q002786; Tue, 9 Apr 2002 09:39:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39DIpj27777 for vserver.list; Tue, 9 Apr 2002 09:18:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39DIph27773 for ; Tue, 9 Apr 2002 09:18:51 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uvWN-0006sL-00 for ; Tue, 09 Apr 2002 15:18:51 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uvWN-0006sB-00 for ; Tue, 09 Apr 2002 15:18:51 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 15:18:51 +0200 (CEST) Received: (qmail 17217 invoked from network); 9 Apr 2002 13:18:00 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 9 Apr 2002 13:18:00 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39D19p27416 for vserver.list; Tue, 9 Apr 2002 09:01:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39D18h27412 for ; Tue, 9 Apr 2002 09:01:09 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uvFE-0006rq-00 for ; Tue, 09 Apr 2002 15:01:08 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uvFE-0006rf-00 for ; Tue, 09 Apr 2002 15:01:08 +0200 Sender: jon@silicide.dk Message-ID: <3CB2E614.F2AC75B3@silicide.dk> Date: Tue, 09 Apr 2002 15:01:08 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers References: <3CB2DAD9.9090607@vgertech.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 460 Nuno Silva wrote: > > Hi, > > thought i'd share my debian image for vserver. > I hope this makes vserver more distribution independent :) cool, but whats in it ?? > http://vserver.vgertech.com/ no such host > Keep in mind that this is a slow connection, if someone can mirror this > to a faster connection, please email the list with the location. Sorry, i cant do that yet :/ JonB From vserver.error@solucorp.qc.ca Tue Apr 9 10:00:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39E0V3Q002981; Tue, 9 Apr 2002 10:00:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39DgTH28397 for vserver.list; Tue, 9 Apr 2002 09:42:29 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39DgTh28393 for ; Tue, 9 Apr 2002 09:42:29 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g393DlR05329 for vserver@solucorp.qc.ca; Mon, 8 Apr 2002 23:13:47 -0400 From: Jacques Gelinas Date: Mon, 8 Apr 2002 23:13:47 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] running bash with --login X-mailer: tlmpmail 0.6 Message-ID: <20020408231347.28b1251b9c48@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 461 On Mon, 8 Apr 2002 15:38:20 -0500, Jerry Wilborn wrote > older versions of bash dont support --login it's '-login'. newer versions > with with '-login' too... Ok, I fixed it to use -login. Will be in 0.17 Thanks! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Apr 9 10:50:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39EoJ3Q003325; Tue, 9 Apr 2002 10:50:19 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39EUKi29451 for vserver.list; Tue, 9 Apr 2002 10:30:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39EUKh29445 for ; Tue, 9 Apr 2002 10:30:20 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g39EWNl05121 for vserver@solucorp.qc.ca; Tue, 9 Apr 2002 10:32:23 -0400 From: Jacques Gelinas Date: Tue, 9 Apr 2002 10:32:23 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver does not compile X-mailer: tlmpmail 0.6 Message-ID: <20020409103223.89d8da2fa18e@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 462 On Tue, 9 Apr 2002 12:16:22 -0500, Ralf Hemmann wrote > > > > since two or three releases the vserver Package does not compile > > > completely any more. > > > Latest try was 0.16. > > > Maybe it is the way glibc is packaged on your distro. Try to > > add -lstdc++ in the Makefile to see if it helps. It this is the case, I can > > put this in the standard distribution. It won't hurt > > This was the solution. Thank you ! I have published vserver 0.17. Can you check if it builds fine out of the box Thanks! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Apr 9 10:56:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39Eu63Q003349; Tue, 9 Apr 2002 10:56:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39EkTQ29810 for vserver.list; Tue, 9 Apr 2002 10:46:29 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39EkTh29806 for ; Tue, 9 Apr 2002 10:46:29 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g39EmWv05146 for vserver@solucorp.qc.ca; Tue, 9 Apr 2002 10:48:32 -0400 From: Jacques Gelinas Date: Tue, 9 Apr 2002 10:48:32 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] /etc/mtab X-mailer: tlmpmail 0.6 Message-ID: <20020409104832.42838678c74e@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 463 On Tue, 9 Apr 2002 06:47:19 -0500, Nuno Silva wrote > Hi! > > you can see the mounts everytime: > cat /proc/mounts > > if your vserver doesn't need procfs (any proc related utilities like ps, > w, etc, but not limited to these..) you can disable it: > > comment out > mountproc /vservers/$1 > in /usr/sbin/vserver > > this could be a configuration option in /etc/vservers/$1 :) Maybe. vproc will cure some of these issues (hiding stuff) Do you see other reason why one would like this (no /proc in a vserver) ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Apr 9 11:14:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39FE83Q003461; Tue, 9 Apr 2002 11:14:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39ExVv30173 for vserver.list; Tue, 9 Apr 2002 10:59:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39ExVh30169 for ; Tue, 9 Apr 2002 10:59:31 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g39F1Zb05196 for vserver@solucorp.qc.ca; Tue, 9 Apr 2002 11:01:35 -0400 From: Jacques Gelinas Date: Tue, 9 Apr 2002 11:01:35 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] feature request - suspend a vserver to disk X-mailer: tlmpmail 0.6 Message-ID: <20020409110135.c2115f9fde18@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 464 On Tue, 9 Apr 2002 11:02:03 -0500, Jon Bendtsen wrote > I would like to be able to supend a running vserver to disk, and then at > a later time (or host) resume the vserver from where it was suspended. There is a patch allowing swsusp for a whole linux box. I wonder if this is possible to adapt this to a vserver only. > JonB > ps: can anyone tell me why all my mails appear to be double in the > mailinglist archives? Odd. Can't tell. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Apr 9 11:15:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39FEx3Q003469; Tue, 9 Apr 2002 11:15:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39F35k30278 for vserver.list; Tue, 9 Apr 2002 11:03:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39F34h30274 for ; Tue, 9 Apr 2002 11:03:04 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16ux9E-0006v8-00 for ; Tue, 09 Apr 2002 17:03:04 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16ux9E-0006ut-00 for ; Tue, 09 Apr 2002 17:03:04 +0200 Sender: jon@silicide.dk Message-ID: <3CB302A8.B8865F26@silicide.dk> Date: Tue, 09 Apr 2002 17:03:04 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers References: <3CB2DAD9.9090607@vgertech.com> <1018358149.868.609.camel@reverie> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 465 Kevin Littlejohn wrote: > > I'll put it up at http://www.obsidian.com.au/vserver/ shortly (it claims > it'll take 49 minutes to download). Can I ask, though (before looking > at it), how you picked what goes in by default? Our servers, we started > with debootstrap, and pruned from there. I got started by just taking a copy of my /, a minimal potato with 2.4 support. After that i started removing packages, and for satisfying the dependensies, i had to delete some files somewhere. I got down to 100MB?? i dont remember, it's at home, but it's arround there. I'm quote satisfied with the space. I even use different LVM "partitions" for each vserver, because i dont need space THAT much. JonB From vserver.error@solucorp.qc.ca Tue Apr 9 11:24:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39FOV3Q003535; Tue, 9 Apr 2002 11:24:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FG4P30611 for vserver.list; Tue, 9 Apr 2002 11:16:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39FG3h30607 for ; Tue, 9 Apr 2002 11:16:03 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uxLn-0006ve-00 for ; Tue, 09 Apr 2002 17:16:03 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uxLn-0006vQ-01 for ; Tue, 09 Apr 2002 17:16:03 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 17:16:03 +0200 (CEST) Received: (qmail 18041 invoked from network); 9 Apr 2002 15:15:28 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 9 Apr 2002 15:15:28 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39F35k30278 for vserver.list; Tue, 9 Apr 2002 11:03:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39F34h30274 for ; Tue, 9 Apr 2002 11:03:04 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16ux9E-0006v8-00 for ; Tue, 09 Apr 2002 17:03:04 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16ux9E-0006ut-00 for ; Tue, 09 Apr 2002 17:03:04 +0200 Sender: jon@silicide.dk Message-ID: <3CB302A8.B8865F26@silicide.dk> Date: Tue, 09 Apr 2002 17:03:04 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers References: <3CB2DAD9.9090607@vgertech.com> <1018358149.868.609.camel@reverie> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 466 Kevin Littlejohn wrote: > > I'll put it up at http://www.obsidian.com.au/vserver/ shortly (it claims > it'll take 49 minutes to download). Can I ask, though (before looking > at it), how you picked what goes in by default? Our servers, we started > with debootstrap, and pruned from there. I got started by just taking a copy of my /, a minimal potato with 2.4 support. After that i started removing packages, and for satisfying the dependensies, i had to delete some files somewhere. I got down to 100MB?? i dont remember, it's at home, but it's arround there. I'm quote satisfied with the space. I even use different LVM "partitions" for each vserver, because i dont need space THAT much. JonB From vserver.error@solucorp.qc.ca Tue Apr 9 11:32:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39FWK3Q003642; Tue, 9 Apr 2002 11:32:20 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FKCs30729 for vserver.list; Tue, 9 Apr 2002 11:20:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39FKBh30725 for ; Tue, 9 Apr 2002 11:20:11 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uxPo-0006vz-00 for ; Tue, 09 Apr 2002 17:20:12 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uxPn-0006vo-00 for ; Tue, 09 Apr 2002 17:20:11 +0200 Sender: jon@silicide.dk Message-ID: <3CB306AB.9CE081E6@silicide.dk> Date: Tue, 09 Apr 2002 17:20:11 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] feature request - suspend a vserver to disk References: <20020409110135.c2115f9fde18@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 467 Jacques Gelinas wrote: > > On Tue, 9 Apr 2002 11:02:03 -0500, Jon Bendtsen wrote > > I would like to be able to supend a running vserver to disk, and then at > > a later time (or host) resume the vserver from where it was suspended. > > There is a patch allowing swsusp for a whole linux box. I wonder if this is possible > to adapt this to a vserver only. Possibly, but I cant do this myself :/ > > JonB > > ps: can anyone tell me why all my mails appear to be double in the > > mailinglist archives? > > Odd. Can't tell. Do you get it twice ?? JonB From vserver.error@solucorp.qc.ca Tue Apr 9 11:42:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39Fg73Q003729; Tue, 9 Apr 2002 11:42:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FXfv31110 for vserver.list; Tue, 9 Apr 2002 11:33:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39FXeh31106 for ; Tue, 9 Apr 2002 11:33:40 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uxcr-0006wT-00 for ; Tue, 09 Apr 2002 17:33:41 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uxcr-0006wJ-00 for ; Tue, 09 Apr 2002 17:33:41 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 17:33:41 +0200 (CEST) Received: (qmail 31396 invoked from network); 9 Apr 2002 15:32:49 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 9 Apr 2002 15:32:49 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FKCs30729 for vserver.list; Tue, 9 Apr 2002 11:20:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39FKBh30725 for ; Tue, 9 Apr 2002 11:20:11 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uxPo-0006vz-00 for ; Tue, 09 Apr 2002 17:20:12 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uxPn-0006vo-00 for ; Tue, 09 Apr 2002 17:20:11 +0200 Sender: jon@silicide.dk Message-ID: <3CB306AB.9CE081E6@silicide.dk> Date: Tue, 09 Apr 2002 17:20:11 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] feature request - suspend a vserver to disk References: <20020409110135.c2115f9fde18@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 468 Jacques Gelinas wrote: > > On Tue, 9 Apr 2002 11:02:03 -0500, Jon Bendtsen wrote > > I would like to be able to supend a running vserver to disk, and then at > > a later time (or host) resume the vserver from where it was suspended. > > There is a patch allowing swsusp for a whole linux box. I wonder if this is possible > to adapt this to a vserver only. Possibly, but I cant do this myself :/ > > JonB > > ps: can anyone tell me why all my mails appear to be double in the > > mailinglist archives? > > Odd. Can't tell. Do you get it twice ?? JonB From vserver.error@solucorp.qc.ca Tue Apr 9 11:45:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39Fjl3Q003754; Tue, 9 Apr 2002 11:45:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FXMB31097 for vserver.list; Tue, 9 Apr 2002 11:33:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39FXLh31093 for ; Tue, 9 Apr 2002 11:33:21 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g39FZPB05301 for vserver@solucorp.qc.ca; Tue, 9 Apr 2002 11:35:25 -0400 From: Jacques Gelinas Date: Tue, 9 Apr 2002 11:35:25 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] double posts - an explanation..? X-mailer: tlmpmail 0.6 Message-ID: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 469 On Tue, 9 Apr 2002 11:47:26 -0500, klavs klavsen wrote > It would seem that the sender (exim gateway at siloicide.dk in this > incident) is sending the mail only once.. so it must be the solucorp > mail server (sendmail v8.11.0 configured by linuxconf :-) that somehow > messes it up Sure > .. perhaps the mail set sender to > vserver.error@solucorp.qc.ca using -f has something to do with it? This is the way I make sure the reply goes to the list and the errors go to me. (using -f) ... This is not what I am seeing. The message is sent once, then mailed by dns.solucorp.qc.ca to the list member and the message is sent back to the list. You see in the second header that the message is indeed sent to jon+vserver@silicide.dk. We see the message going through qmail and fetchmail and then sent back to the list. What is jon+vserver ? This sounds like an alias containing someone named jon and the vserver mailing list. Seems to be the only user with such a problem > > This is the email headers from the first post > > X-Sieve: cmu-sieve 1.3 > Return-Path: > Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) > by smaug.netropolis.dk (8.10.0/8.10.0) with ESMTP id g399Mum13567 for > ; Tue, 9 Apr 2002 11:22:56 +0200 > Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) > id g39924B22154 for vserver.list; Tue, 9 Apr 2002 05:02:04 -0400 > X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to > vserver.error@solucorp.qc.ca using -f > Received: from ns1.silicide.dk > (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by > dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39923h22150 for > ; Tue, 9 Apr 2002 05:02:03 -0400 > Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 > (Debian)) id 16urVr-0006fO-00 for ; Tue, 09 Apr > 2002 11:02:03 +0200 > Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by > ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urVr-0006fD-00 > for ; Tue, 09 Apr 2002 11:02:03 +0200 > Sender: jon@silicide.dk > Message-ID: <3CB2AE0B.4C96F5DF@silicide.dk> > > This is the email headers from the second (the double) post: > > X-Sieve: cmu-sieve 1.3 > Return-Path: > Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) > by smaug.netropolis.dk (8.10.0/8.10.0) with ESMTP id g399bKm14432 for > ; Tue, 9 Apr 2002 11:37:21 +0200 > Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) > id g399AKf22311 for vserver.list; Tue, 9 Apr 2002 05:10:20 -0400 > X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to > vserver.error@solucorp.qc.ca using -f > Received: from ns1.silicide.dk > (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by > dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g399AKh22307 for > ; Tue, 9 Apr 2002 05:10:20 -0400 > Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 > (Debian)) id 16urds-0006gL-00 for ; Tue, 09 Apr > 2002 11:10:20 +0200 > Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp > (Exim 3.33 #1 (Debian)) id 16urds-0006gB-00 for > ; Tue, 09 Apr 2002 11:10:20 +0200 > Delivered-To: silicide_dk-jon+vserver@silicide.dk > Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 > (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr > 2002 11:10:20 +0200 (CEST) > Received: (qmail 96536 invoked from network); 9 Apr 2002 09:09:00 -0000 > Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with > SMTP; 9 Apr 2002 09:09:00 -0000 > Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) > id g39924B22154 for vserver.list; Tue, 9 Apr 2002 05:02:04 -0400 > X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to > vserver.error@solucorp.qc.ca using -f > Received: from ns1.silicide.dk > (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by > dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39923h22150 for > ; Tue, 9 Apr 2002 05:02:03 -0400 > Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 > (Debian)) id 16urVr-0006fO-00 for ; Tue, 09 Apr > 2002 11:02:03 +0200 > Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by > ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16urVr-0006fD-00 > for ; Tue, 09 Apr 2002 11:02:03 +0200 > Sender: jon@silicide.dk > Message-ID: <3CB2AE0B.4C96F5DF@silicide.dk> > > > -- > Regards, > Klavs Klavsen > > -------------| This mail has been sent to you by: |------------ > Klavs Klavsen - OpenSource Consultant > kl@vsen.dk - http://www.vsen.dk > > Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA > Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA > --------------------[ I believe that... ]----------------------- > It is a myth that people resist change. People resist what other > people make them do, not what they themselves choose to do... > That's why companies that innovate successfully year after year > seek their peopl's ideas, let them initiate new projects and > encourage more experiments. -- Rosabeth Moss Kanter > > --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Apr 9 11:53:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39FrM3Q003804; Tue, 9 Apr 2002 11:53:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FlKQ31500 for vserver.list; Tue, 9 Apr 2002 11:47:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mta5.snfc21.pbi.net (mta5.snfc21.pbi.net [206.13.28.241]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39FlJh31496 for ; Tue, 9 Apr 2002 11:47:19 -0400 Received: from dave ([67.115.19.28]) by mta5.snfc21.pbi.net (iPlanet Messaging Server 5.1 (built May 7 2001)) with SMTP id <0GUB00M0756VZ2@mta5.snfc21.pbi.net> for vserver@solucorp.qc.ca; Tue, 09 Apr 2002 08:47:19 -0700 (PDT) Date: Tue, 09 Apr 2002 08:47:28 -0700 From: Dave Miller Subject: RE: [vserver] debian tgz for vservers mirror In-reply-to: <3CB2DAD9.9090607@vgertech.com> To: vserver@solucorp.qc.ca Message-id: MIME-version: 1.0 X-MIMEOLE: Produced By Microsoft MimeOLE V5.00.2615.200 X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Content-type: text/plain; charset=iso-8859-1 Content-transfer-encoding: 7BIT Importance: Normal X-Priority: 3 (Normal) X-MSMail-priority: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 470 Hello, I've setup a mirror for the image: http://vserver.allwebsites.com/mini-debian/ Now for my problems :) I've been testing this as a possible web hosting vserver type setup for my company. I am using debian vservers. But I'm having stability issues. I start a vserver, then if I do anything remotely resource intensive, I get a flow of ksymoops, then eventually a panic. kernel 2.4.18 ctx-8, compiled and recompiled 0.14 I inittially thought it to be a hardware problem, but the same kernel runs fine prior to the patch. Are there any known errors that cause stability issues that I've overlooked? I created the vserver by rsync'ing from another server then removing conflicting startup scripts. Dave -----Original Message----- From: Nuno Silva [mailto:nuno.silva@vgertech.com] Sent: Tuesday, April 09, 2002 5:13 AM To: vserver@solucorp.qc.ca Subject: [vserver] debian tgz for vservers Hi, thought i'd share my debian image for vserver. I hope this makes vserver more distribution independent :) http://vserver.vgertech.com/ Keep in mind that this is a slow connection, if someone can mirror this to a faster connection, please email the list with the location. Regards, Nuno Silva From vserver.error@solucorp.qc.ca Tue Apr 9 11:57:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39Fvt3Q003824; Tue, 9 Apr 2002 11:57:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FgSG31351 for vserver.list; Tue, 9 Apr 2002 11:42:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39FgRh31347 for ; Tue, 9 Apr 2002 11:42:27 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uxlM-0006wu-00 for ; Tue, 09 Apr 2002 17:42:28 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uxlM-0006wi-00 for ; Tue, 09 Apr 2002 17:42:28 +0200 Sender: jon@silicide.dk Message-ID: <3CB30BE4.75C17486@silicide.dk> Date: Tue, 09 Apr 2002 17:42:28 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers References: <3CB2DAD9.9090607@vgertech.com> <1018358149.868.609.camel@reverie> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 471 Kevin Littlejohn wrote: > > I'll put it up at http://www.obsidian.com.au/vserver/ shortly (it claims > it'll take 49 minutes to download). Can I ask, though (before looking > at it), how you picked what goes in by default? Our servers, we started > with debootstrap, and pruned from there. okay, i got a look at http://www.obsidian.com.au/vserver/mini-debian-vservers-016.txt 1) CHANGE the root password Why not use passwd -l on root, so one has to enter through "vserver enter" aka, locking the rootpassword, thus NOONE will end up with a default root pwd. 2) since this is a debian... why not have it as a .deb as well ? ;-D 3) i know woody comes out soon, but it's still not the official stable :/ 4) note to 1) i can see you do the enter way. Did you lock the password or not ? 5) would you care to comment more on the MAKEDEV thingy ? http://www.obsidian.com.au/vserver/mini-debian-vservers-016.tgz 1) 85M, not bad 2) /bin/mount is installed, but one cant mount filesystems... 3) /boot exists, could be removed 4) /etc/rcS.d - contains scripts that one cant execute anyway. like modutils, checkfs, mountall, mountnfs, ... It's not so much to save space i want stuff to be removed, but to get a better overview of the install. My base is -rw-r--r-- 1 root root 27M Mar 31 19:07 base.tar.bz2 And unpacked it's 87M base Damn, you beat me :/ I'm sorry, but i cant publish it yet, as i havent changed the passwd ;-D I run the getty at tty7, and just one (i'm wonder why starting vservers fsck's up the tty, either tty0, or the one you start a vserver from. Likewise with shutdown :/) My packages are: ------------------------------------------------------------------------------------- ii adduser 3.11.1 Add users and groups to the system. ii alien 6.54 Install Red Hat, Stampede, and Slackware Pac ii apt 0.3.19 Advanced front-end for dpkg ii at 3.1.8-10 Delayed job execution and batch processing ii base-config 0.33.2 Debian base configuration package ii base-files 2.2.0 Debian base system miscellaneous files ii base-passwd 3.1.10 Debian Base System Password/Group Files ii bash 2.03-6 The GNU Bourne Again SHell ii bc 1.05a-11 The GNU bc arbitrary precision calculator la ii binutils 2.9.5.0.37-1 The GNU assembler, linker and binary utiliti ii bsdmainutils 4.7.1 More utilities from 4.4BSD-Lite. ii bsdutils 2.10s-1.potato Basic utilities from 4.4BSD-Lite. ii bzip2 0.9.5d-2 A high-quality block-sorting file compressor ii console-data 1999.08.29-11. Keymaps, fonts, charset maps, fallback table ii console-tools 0.2.3-10.3 Linux console and font utilities. ii console-tools- 0.2.3-10.3 Shared libraries for Linux console and font ii cpio 2.4.2-32 GNU cpio -- a program to manage archives of ii cpp 2.95.2-13 The GNU C preprocessor. ii cron 3.0pl1-57.3 management of regular background processing ii dc 1.05a-11 The GNU dc arbitrary precision reverse-polis ii debconf-tiny 0.2.80.17 Tiny subset of debconf for the base system ii debhelper 2.0.86 helper programs for debian/rules ii debianutils 1.13.3 Miscellaneous utilities specific to Debian. ii diff 2.7-21 File comparison utilities ii dpkg 1.6.15 Package maintenance system for Debian ii dpkg-dev 1.6.15 Package building tools for Debian ii e2fsprogs 1.27-1.bunk The EXT2 file system utilities and libraries ii ed 0.2-18.1 The classic unix line editor ii elvis-tiny 1.4-11 Tiny vi compatible editor for the base syste ii exim 3.12-10.2 Exim Mailer ii file 3.28-1 Determines file type using "magic" numbers ii fileutils 4.0l-8 GNU file management utilities. ii findutils 4.1-40 utilities for finding files--find, xargs, an ii ftp 0.10-3.1 The FTP client. ii gcc 2.95.2-13 The GNU C compiler. ii gettext-base 0.10.35-13 GNU Internationalization utilities for the b ii grep 2.4.2-1 GNU grep, egrep and fgrep. ii groff 1.15.2-3 GNU troff text-formatting system. ii gzip 1.2.4-33 The GNU compression utility. ii hostname 2.07 A utility to set/show the host name or domai ii info 4.0-4 Standalone GNU Info documentation browser ii ldso 1.9.11-9 The Linux dynamic linker, library and utilit ii less 346-7 A file pager program, similar to more(1) ii libbz2 0.9.5d-2 A high-quality block-sorting file compressor ii libc6 2.1.3-19 GNU C Library: Shared libraries and Timezone ii libc6-dev 2.1.3-19 GNU C Library: Development Libraries and Hea ii libdb2 2.4.14-2.7.7.1 The Berkeley database routines (run-time fil ii libgdbmg1 1.7.3-26.2 GNU dbm database routines (runtime version). ii libident 0.22-2 simple RFC1413 client library - runtime ii liblockfile1 1.01 Shared library with NFS-safe locking functio ii libncurses4 4.2-9 Shared libraries for terminal handling ii libncurses5 5.0-6.0potato1 Shared libraries for terminal handling ii libncurses5-de 5.0-6.0potato1 Developer's libraries and docs for ncurses ii libnewt0 0.50-7 Not Erik's Windowing Toolkit - text mode win ii libopenldap-ru 1.2.12-1 OpenLDAP runtime files for libopenldap ii libopenldap1 1.2.12-1 OpenLDAP libraries. ii libpam-modules 0.72-9 Pluggable Authentication Modules for PAM ii libpam-runtime 0.72-9 Runtime support for the PAM library ii libpam0g 0.72-9 Pluggable Authentication Modules library ii libpcre2 2.08-1 Philip Hazel's Perl Compatible Regular Expre ii libpopt0 1.4-1.1 lib for parsing cmdline parameters ii libreadline4 4.1-1 GNU readline and history libraries, run-time ii librpm1 3.0.3-1 RPM shared library ii libssl09 0.9.4-5 SSL shared libraries ii libstdc++2.10 2.95.2-13 The GNU stdc++ library ii libwrap0 7.6-4 Wietse Venema's TCP wrappers library ii locales 2.1.3-19 GNU C Library: National Language (locale) da ii lockfile-progs 0.1.7 Programs for locking and unlocking files and ii login 19990827-20 System login tools ii logrotate 3.2-11 Log rotation utility ii mailx 8.1.1-11 A simple mail user agent. ii make 3.79.1-1.potat The GNU version of the "make" utility. ii makedev 2.3.1-53 Creates special device files in /dev. ii man-db 2.3.16-4 Display the on-line manual. ii manpages 1.29-2 Man pages about using a Linux system. ii mawk 1.3.3-5 a pattern scanning and text processing langu ii mime-support 3.9-1 MIME files 'mime.types' & 'mailcap', and sup ii mount 2.10s-1.potato Tools for mounting and manipulating filesyst ii mutt 1.2.5-5 Text-based mailreader supporting MIME, GPG, ii ncurses-base 5.0-6.0potato1 Descriptions of common terminal types ii ncurses-bin 5.0-6.0potato1 Terminal-related programs and man pages ii netbase 3.18-4 Basic TCP/IP networking binaries ii nvi 1.79-16a.1 4.4BSD re-implementation of vi. ii passwd 19990827-20 Change and administer password and group dat ii patch 2.5-2.2 Apply a diff file to an original ii perl-5.005 5.005.03-7.1 Larry Wall's Practical Extracting and Report ii perl-5.005-bas 5.005.03-7.1 The Pathologically Eclectic Rubbish Lister ii perl-base 5.004.05-1.1 Fake package assuring that one of the -base ii procps 2.0.6-5 The /proc file system utilities. ii psmisc 20.2-2.0.bunk Utilities that use the proc filesystem ii rpm 3.0.3-1 Red Hat Package Manager ii sed 3.02-5 The GNU sed stream editor. ii shellutils 2.0-7 The GNU shell programming utilities. ii slang1 1.3.9-1 The S-Lang programming library - runtime ver ii ssh 1.2.3-9.4 Secure rlogin/rsh/rcp replacement (OpenSSH) ii sysklogd 1.3-33.1 Kernel and system logging daemons ii sysvinit 2.78-4 System-V like init. ii tar 1.13.17-2 GNU tar ii tasksel 1.0-10 New task packages selector ii tcpd 7.6-4 Wietse Venema's TCP wrapper utilities ii telnet 0.16-4potato.3 The telnet client. ii textutils 2.0-2 The GNU text file processing utilities. ii update 2.11-1 daemon to periodically flush filesystem buff ii util-linux 2.10s-1.potato Miscellaneous system utilities. ii wget 1.5.3-3 utility to retrieve files from the WWW via H ii whiptail 0.50-7 Displays user-friendly dialog boxes from she ii zlib1g 1.1.3-5 compression library - runtime -------------------------------------------------------------------------------------- JonB From vserver.error@solucorp.qc.ca Tue Apr 9 12:10:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39GAF3Q003938; Tue, 9 Apr 2002 12:10:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39Fwuq31764 for vserver.list; Tue, 9 Apr 2002 11:58:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39Fwuh31760 for ; Tue, 9 Apr 2002 11:58:56 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uy1I-0006yE-00 for ; Tue, 09 Apr 2002 17:58:56 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uy1I-0006y3-00 for ; Tue, 09 Apr 2002 17:58:56 +0200 Sender: jon@silicide.dk Message-ID: <3CB30FC0.12634D87@silicide.dk> Date: Tue, 09 Apr 2002 17:58:56 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] double posts - an explanation..? References: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 472 Jacques Gelinas wrote: > This is not what I am seeing. The message is sent once, then mailed by > dns.solucorp.qc.ca to the list member and the message is sent back to the > list. You see in the second header that the message is indeed sent to > jon+vserver@silicide.dk. We see the message going through qmail and fetchmail > and then sent back to the list. So, if it creates a mailloop once, how come it doesnt repeat itself ?? > What is jon+vserver ? This sounds like an alias containing someone named > jon and the vserver mailing list. you guess right. I'm using the +vserver part to sort my email. > Seems to be the only user with such a problem  Damn, so it is my setup :/ JonB From vserver.error@solucorp.qc.ca Tue Apr 9 12:10:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39GAF3Q003939; Tue, 9 Apr 2002 12:10:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FukJ31691 for vserver.list; Tue, 9 Apr 2002 11:56:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39Fujh31687 for ; Tue, 9 Apr 2002 11:56:45 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uxzC-0006xv-00 for ; Tue, 09 Apr 2002 17:56:46 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uxzB-0006xk-00 for ; Tue, 09 Apr 2002 17:56:45 +0200 Sender: jon@silicide.dk Message-ID: <3CB30F3D.1BC25D0B@silicide.dk> Date: Tue, 09 Apr 2002 17:56:45 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers mirror References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 473 Dave Miller wrote: > > Hello, > > I've setup a mirror for the image: > http://vserver.allwebsites.com/mini-debian/ > > Now for my problems :) > I've been testing this as a possible web hosting vserver type setup for > my company. I am using debian vservers. But I'm having stability issues. > I start a vserver, then if I do anything remotely resource intensive, > I get a flow of ksymoops, then eventually a panic. > > kernel 2.4.18 ctx-8, compiled and recompiled > 0.14 There is a ctx-10 out. JonB From vserver.error@solucorp.qc.ca Tue Apr 9 12:12:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39GCS3Q003957; Tue, 9 Apr 2002 12:12:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FxWH31793 for vserver.list; Tue, 9 Apr 2002 11:59:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39FxVh31789 for ; Tue, 9 Apr 2002 11:59:31 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uy1s-0006yU-00 for ; Tue, 09 Apr 2002 17:59:32 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uy1r-0006yK-00 for ; Tue, 09 Apr 2002 17:59:31 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 17:59:31 +0200 (CEST) Received: (qmail 39796 invoked from network); 9 Apr 2002 15:57:57 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 9 Apr 2002 15:57:57 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FgSG31351 for vserver.list; Tue, 9 Apr 2002 11:42:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39FgRh31347 for ; Tue, 9 Apr 2002 11:42:27 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uxlM-0006wu-00 for ; Tue, 09 Apr 2002 17:42:28 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uxlM-0006wi-00 for ; Tue, 09 Apr 2002 17:42:28 +0200 Sender: jon@silicide.dk Message-ID: <3CB30BE4.75C17486@silicide.dk> Date: Tue, 09 Apr 2002 17:42:28 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers References: <3CB2DAD9.9090607@vgertech.com> <1018358149.868.609.camel@reverie> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 474 Kevin Littlejohn wrote: > > I'll put it up at http://www.obsidian.com.au/vserver/ shortly (it claims > it'll take 49 minutes to download). Can I ask, though (before looking > at it), how you picked what goes in by default? Our servers, we started > with debootstrap, and pruned from there. okay, i got a look at http://www.obsidian.com.au/vserver/mini-debian-vservers-016.txt 1) CHANGE the root password Why not use passwd -l on root, so one has to enter through "vserver enter" aka, locking the rootpassword, thus NOONE will end up with a default root pwd. 2) since this is a debian... why not have it as a .deb as well ? ;-D 3) i know woody comes out soon, but it's still not the official stable :/ 4) note to 1) i can see you do the enter way. Did you lock the password or not ? 5) would you care to comment more on the MAKEDEV thingy ? http://www.obsidian.com.au/vserver/mini-debian-vservers-016.tgz 1) 85M, not bad 2) /bin/mount is installed, but one cant mount filesystems... 3) /boot exists, could be removed 4) /etc/rcS.d - contains scripts that one cant execute anyway. like modutils, checkfs, mountall, mountnfs, ... It's not so much to save space i want stuff to be removed, but to get a better overview of the install. My base is -rw-r--r-- 1 root root 27M Mar 31 19:07 base.tar.bz2 And unpacked it's 87M base Damn, you beat me :/ I'm sorry, but i cant publish it yet, as i havent changed the passwd ;-D I run the getty at tty7, and just one (i'm wonder why starting vservers fsck's up the tty, either tty0, or the one you start a vserver from. Likewise with shutdown :/) My packages are: ------------------------------------------------------------------------------------- ii adduser 3.11.1 Add users and groups to the system. ii alien 6.54 Install Red Hat, Stampede, and Slackware Pac ii apt 0.3.19 Advanced front-end for dpkg ii at 3.1.8-10 Delayed job execution and batch processing ii base-config 0.33.2 Debian base configuration package ii base-files 2.2.0 Debian base system miscellaneous files ii base-passwd 3.1.10 Debian Base System Password/Group Files ii bash 2.03-6 The GNU Bourne Again SHell ii bc 1.05a-11 The GNU bc arbitrary precision calculator la ii binutils 2.9.5.0.37-1 The GNU assembler, linker and binary utiliti ii bsdmainutils 4.7.1 More utilities from 4.4BSD-Lite. ii bsdutils 2.10s-1.potato Basic utilities from 4.4BSD-Lite. ii bzip2 0.9.5d-2 A high-quality block-sorting file compressor ii console-data 1999.08.29-11. Keymaps, fonts, charset maps, fallback table ii console-tools 0.2.3-10.3 Linux console and font utilities. ii console-tools- 0.2.3-10.3 Shared libraries for Linux console and font ii cpio 2.4.2-32 GNU cpio -- a program to manage archives of ii cpp 2.95.2-13 The GNU C preprocessor. ii cron 3.0pl1-57.3 management of regular background processing ii dc 1.05a-11 The GNU dc arbitrary precision reverse-polis ii debconf-tiny 0.2.80.17 Tiny subset of debconf for the base system ii debhelper 2.0.86 helper programs for debian/rules ii debianutils 1.13.3 Miscellaneous utilities specific to Debian. ii diff 2.7-21 File comparison utilities ii dpkg 1.6.15 Package maintenance system for Debian ii dpkg-dev 1.6.15 Package building tools for Debian ii e2fsprogs 1.27-1.bunk The EXT2 file system utilities and libraries ii ed 0.2-18.1 The classic unix line editor ii elvis-tiny 1.4-11 Tiny vi compatible editor for the base syste ii exim 3.12-10.2 Exim Mailer ii file 3.28-1 Determines file type using "magic" numbers ii fileutils 4.0l-8 GNU file management utilities. ii findutils 4.1-40 utilities for finding files--find, xargs, an ii ftp 0.10-3.1 The FTP client. ii gcc 2.95.2-13 The GNU C compiler. ii gettext-base 0.10.35-13 GNU Internationalization utilities for the b ii grep 2.4.2-1 GNU grep, egrep and fgrep. ii groff 1.15.2-3 GNU troff text-formatting system. ii gzip 1.2.4-33 The GNU compression utility. ii hostname 2.07 A utility to set/show the host name or domai ii info 4.0-4 Standalone GNU Info documentation browser ii ldso 1.9.11-9 The Linux dynamic linker, library and utilit ii less 346-7 A file pager program, similar to more(1) ii libbz2 0.9.5d-2 A high-quality block-sorting file compressor ii libc6 2.1.3-19 GNU C Library: Shared libraries and Timezone ii libc6-dev 2.1.3-19 GNU C Library: Development Libraries and Hea ii libdb2 2.4.14-2.7.7.1 The Berkeley database routines (run-time fil ii libgdbmg1 1.7.3-26.2 GNU dbm database routines (runtime version). ii libident 0.22-2 simple RFC1413 client library - runtime ii liblockfile1 1.01 Shared library with NFS-safe locking functio ii libncurses4 4.2-9 Shared libraries for terminal handling ii libncurses5 5.0-6.0potato1 Shared libraries for terminal handling ii libncurses5-de 5.0-6.0potato1 Developer's libraries and docs for ncurses ii libnewt0 0.50-7 Not Erik's Windowing Toolkit - text mode win ii libopenldap-ru 1.2.12-1 OpenLDAP runtime files for libopenldap ii libopenldap1 1.2.12-1 OpenLDAP libraries. ii libpam-modules 0.72-9 Pluggable Authentication Modules for PAM ii libpam-runtime 0.72-9 Runtime support for the PAM library ii libpam0g 0.72-9 Pluggable Authentication Modules library ii libpcre2 2.08-1 Philip Hazel's Perl Compatible Regular Expre ii libpopt0 1.4-1.1 lib for parsing cmdline parameters ii libreadline4 4.1-1 GNU readline and history libraries, run-time ii librpm1 3.0.3-1 RPM shared library ii libssl09 0.9.4-5 SSL shared libraries ii libstdc++2.10 2.95.2-13 The GNU stdc++ library ii libwrap0 7.6-4 Wietse Venema's TCP wrappers library ii locales 2.1.3-19 GNU C Library: National Language (locale) da ii lockfile-progs 0.1.7 Programs for locking and unlocking files and ii login 19990827-20 System login tools ii logrotate 3.2-11 Log rotation utility ii mailx 8.1.1-11 A simple mail user agent. ii make 3.79.1-1.potat The GNU version of the "make" utility. ii makedev 2.3.1-53 Creates special device files in /dev. ii man-db 2.3.16-4 Display the on-line manual. ii manpages 1.29-2 Man pages about using a Linux system. ii mawk 1.3.3-5 a pattern scanning and text processing langu ii mime-support 3.9-1 MIME files 'mime.types' & 'mailcap', and sup ii mount 2.10s-1.potato Tools for mounting and manipulating filesyst ii mutt 1.2.5-5 Text-based mailreader supporting MIME, GPG, ii ncurses-base 5.0-6.0potato1 Descriptions of common terminal types ii ncurses-bin 5.0-6.0potato1 Terminal-related programs and man pages ii netbase 3.18-4 Basic TCP/IP networking binaries ii nvi 1.79-16a.1 4.4BSD re-implementation of vi. ii passwd 19990827-20 Change and administer password and group dat ii patch 2.5-2.2 Apply a diff file to an original ii perl-5.005 5.005.03-7.1 Larry Wall's Practical Extracting and Report ii perl-5.005-bas 5.005.03-7.1 The Pathologically Eclectic Rubbish Lister ii perl-base 5.004.05-1.1 Fake package assuring that one of the -base ii procps 2.0.6-5 The /proc file system utilities. ii psmisc 20.2-2.0.bunk Utilities that use the proc filesystem ii rpm 3.0.3-1 Red Hat Package Manager ii sed 3.02-5 The GNU sed stream editor. ii shellutils 2.0-7 The GNU shell programming utilities. ii slang1 1.3.9-1 The S-Lang programming library - runtime ver ii ssh 1.2.3-9.4 Secure rlogin/rsh/rcp replacement (OpenSSH) ii sysklogd 1.3-33.1 Kernel and system logging daemons ii sysvinit 2.78-4 System-V like init. ii tar 1.13.17-2 GNU tar ii tasksel 1.0-10 New task packages selector ii tcpd 7.6-4 Wietse Venema's TCP wrapper utilities ii telnet 0.16-4potato.3 The telnet client. ii textutils 2.0-2 The GNU text file processing utilities. ii update 2.11-1 daemon to periodically flush filesystem buff ii util-linux 2.10s-1.potato Miscellaneous system utilities. ii wget 1.5.3-3 utility to retrieve files from the WWW via H ii whiptail 0.50-7 Displays user-friendly dialog boxes from she ii zlib1g 1.1.3-5 compression library - runtime -------------------------------------------------------------------------------------- JonB From vserver.error@solucorp.qc.ca Tue Apr 9 12:18:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39GIm3Q004031; Tue, 9 Apr 2002 12:18:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39GBWq32149 for vserver.list; Tue, 9 Apr 2002 12:11:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39GBVh32140 for ; Tue, 9 Apr 2002 12:11:31 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uyDT-0006yw-00 for ; Tue, 09 Apr 2002 18:11:31 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uyDT-0006ym-00 for ; Tue, 09 Apr 2002 18:11:31 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 18:11:31 +0200 (CEST) Received: (qmail 50031 invoked from network); 9 Apr 2002 16:10:19 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 9 Apr 2002 16:10:19 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39Fwuq31764 for vserver.list; Tue, 9 Apr 2002 11:58:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39Fwuh31760 for ; Tue, 9 Apr 2002 11:58:56 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uy1I-0006yE-00 for ; Tue, 09 Apr 2002 17:58:56 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uy1I-0006y3-00 for ; Tue, 09 Apr 2002 17:58:56 +0200 Sender: jon@silicide.dk Message-ID: <3CB30FC0.12634D87@silicide.dk> Date: Tue, 09 Apr 2002 17:58:56 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] double posts - an explanation..? References: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 475 Jacques Gelinas wrote: > This is not what I am seeing. The message is sent once, then mailed by > dns.solucorp.qc.ca to the list member and the message is sent back to the > list. You see in the second header that the message is indeed sent to > jon+vserver@silicide.dk. We see the message going through qmail and fetchmail > and then sent back to the list. So, if it creates a mailloop once, how come it doesnt repeat itself ?? > What is jon+vserver ? This sounds like an alias containing someone named > jon and the vserver mailing list. you guess right. I'm using the +vserver part to sort my email. > Seems to be the only user with such a problem  Damn, so it is my setup :/ JonB From vserver.error@solucorp.qc.ca Tue Apr 9 12:19:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39GJJ3Q004038; Tue, 9 Apr 2002 12:19:20 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39GBWG32145 for vserver.list; Tue, 9 Apr 2002 12:11:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39GBVh32141 for ; Tue, 9 Apr 2002 12:11:31 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uyDT-0006zA-00 for ; Tue, 09 Apr 2002 18:11:31 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uyDT-0006ym-01 for ; Tue, 09 Apr 2002 18:11:31 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 18:11:31 +0200 (CEST) Received: (qmail 61937 invoked from network); 9 Apr 2002 16:10:45 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 9 Apr 2002 16:10:45 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39FukJ31691 for vserver.list; Tue, 9 Apr 2002 11:56:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39Fujh31687 for ; Tue, 9 Apr 2002 11:56:45 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uxzC-0006xv-00 for ; Tue, 09 Apr 2002 17:56:46 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uxzB-0006xk-00 for ; Tue, 09 Apr 2002 17:56:45 +0200 Sender: jon@silicide.dk Message-ID: <3CB30F3D.1BC25D0B@silicide.dk> Date: Tue, 09 Apr 2002 17:56:45 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers mirror References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 476 Dave Miller wrote: > > Hello, > > I've setup a mirror for the image: > http://vserver.allwebsites.com/mini-debian/ > > Now for my problems :) > I've been testing this as a possible web hosting vserver type setup for > my company. I am using debian vservers. But I'm having stability issues. > I start a vserver, then if I do anything remotely resource intensive, > I get a flow of ksymoops, then eventually a panic. > > kernel 2.4.18 ctx-8, compiled and recompiled > 0.14 There is a ctx-10 out. JonB From vserver.error@solucorp.qc.ca Tue Apr 9 12:23:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39GNs3Q004079; Tue, 9 Apr 2002 12:23:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39GGQH32311 for vserver.list; Tue, 9 Apr 2002 12:16:26 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from saarland.sz-sb.de (saarland.sz-sb.de [212.88.192.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39GGPh32307 for ; Tue, 9 Apr 2002 12:16:25 -0400 Received: from camelot.sz-sb.de (dmz1-camelot.sz-sb.de [212.88.192.2]) by saarland.sz-sb.de (8.9.3+Sun/8.9.3) with SMTP id SAA29150 for ; Tue, 9 Apr 2002 18:16:25 +0200 (MEST) Received: from ([172.16.151.102]) by camelot.sz-sb.de; Tue, 09 Apr 2002 18:16:23 +0200 (MEST) Received: from laplinux.triervf.de (172.16.113.72 [172.16.113.72]) by trierx0.triervf.de with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 226W62B0; Tue, 9 Apr 2002 18:15:23 +0200 Subject: re: [vserver] double posts - an explanation..? From: d m To: vserver@solucorp.qc.ca In-Reply-To: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> References: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 Date: 09 Apr 2002 18:16:05 +0200 Message-Id: <1018368970.18101.36.camel@laplinux> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 477 > What is jon+vserver ? This sounds like an alias containing someone named > jon and the vserver mailing list. > > Seems to be the only user with such a problem nope, i get them double, too. regards, daniel From vserver.error@solucorp.qc.ca Tue Apr 9 12:34:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39GYE3Q004192; Tue, 9 Apr 2002 12:34:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39GRlj32650 for vserver.list; Tue, 9 Apr 2002 12:27:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39GRkh32646 for ; Tue, 9 Apr 2002 12:27:46 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uyTD-0006zr-00 for ; Tue, 09 Apr 2002 18:27:47 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uyTD-0006zg-00 for ; Tue, 09 Apr 2002 18:27:47 +0200 Sender: jon@silicide.dk Message-ID: <3CB31682.18593645@silicide.dk> Date: Tue, 09 Apr 2002 18:27:46 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] double posts - an explanation..? References: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> <1018368970.18101.36.camel@laplinux> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 478 d m wrote: > > > What is jon+vserver ? This sounds like an alias containing someone named > > jon and the vserver mailing list. > > > > Seems to be the only user with such a problem > > nope, > > i get them double, too. yes, well i send them double. Do you send them double as well ? JonB From vserver.error@solucorp.qc.ca Tue Apr 9 12:42:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39Gge3Q004299; Tue, 9 Apr 2002 12:42:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39GYOa32767 for vserver.list; Tue, 9 Apr 2002 12:34:24 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39GYNh32763 for ; Tue, 9 Apr 2002 12:34:23 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uyZb-00070K-00 for ; Tue, 09 Apr 2002 18:34:23 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uyZb-00070A-00 for ; Tue, 09 Apr 2002 18:34:23 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail2.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 09 Apr 2002 18:34:23 +0200 (CEST) Received: (qmail 68343 invoked from network); 9 Apr 2002 16:34:18 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 9 Apr 2002 16:34:18 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39GRlj32650 for vserver.list; Tue, 9 Apr 2002 12:27:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39GRkh32646 for ; Tue, 9 Apr 2002 12:27:46 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16uyTD-0006zr-00 for ; Tue, 09 Apr 2002 18:27:47 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16uyTD-0006zg-00 for ; Tue, 09 Apr 2002 18:27:47 +0200 Sender: jon@silicide.dk Message-ID: <3CB31682.18593645@silicide.dk> Date: Tue, 09 Apr 2002 18:27:46 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] double posts - an explanation..? References: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> <1018368970.18101.36.camel@laplinux> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 479 d m wrote: > > > What is jon+vserver ? This sounds like an alias containing someone named > > jon and the vserver mailing list. > > > > Seems to be the only user with such a problem > > nope, > > i get them double, too. yes, well i send them double. Do you send them double as well ? JonB From vserver.error@solucorp.qc.ca Tue Apr 9 13:14:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39HE63Q004567; Tue, 9 Apr 2002 13:14:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39H6dx01155 for vserver.list; Tue, 9 Apr 2002 13:06:39 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-71-46.in-addr.btopenworld.com [213.122.71.46]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39H6bh01151 for ; Tue, 9 Apr 2002 13:06:37 -0400 Received: from 192.168.201.1 by john-new ([192.168.201.1] running VPOP3) with SMTP for ; Tue, 9 Apr 2002 18:06:26 +0100 From: "John Lyons" To: Subject: RE: [vserver] private server hosting Date: Tue, 9 Apr 2002 18:06:25 +0100 Message-ID: <006201c1dfe8$e28b20e0$0a107ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 480 > Just wondering if anyone is attempting to use this method to > offer hosting > of something similar to a "virtual private server"? Are there > any obvious drawbacks I'm missing? I started my quest looking at FreeVsd but after reading the mailing list decided that it was too complex a system for me to use. There seemed to be too many people having problems installing the software and quite a few 'disaster' posts from quite experienced people along the lines of I've done X and Y and for no apparent reason A, B and C have all stopped working. Vserver is easy to use and manage and above all it's 'simple' in that there are minimal packages/scripts/programs needed to run it. You can't get lost managing a hosting server running Vs. I've spent nearly 4 months running two host servers and 12 trial vservers with customers. So far I've not encountered any real problems. Ok you don't have quotas and you can only run with 1 IP address but to be fair I don't think that you can necessarily ask this much from the package. It's only been publicly developed for a few months but arrived in a fairly complete state. As far as we're concerned the benefits far outweigh the down site of quotas and IP's. If customers want to run multiple SSL certificates then that's another opportunity to sell them another virtual server :-) We haven't offered the servers to the public yet just a few trial customers because I'm still playing with getting a fully featured skel server setup. I've also got to write a decent guide to running them for the customers which is probably going to end up being a 'how to use Linux' Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Tue Apr 9 16:34:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39KY23Q006328; Tue, 9 Apr 2002 16:34:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39KQjC05851 for vserver.list; Tue, 9 Apr 2002 16:26:45 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-74-250.telepac.pt [213.13.74.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g39KQih05847 for ; Tue, 9 Apr 2002 16:26:44 -0400 Received: (qmail 21628 invoked from network); 9 Apr 2002 20:26:40 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 9 Apr 2002 20:26:40 -0000 Message-ID: <3CB34E80.4020500@vgertech.com> Date: Tue, 09 Apr 2002 21:26:40 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020402 Debian/2:0.9.9-4 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers References: <3CB2DAD9.9090607@vgertech.com> <3CB2E614.F2AC75B3@silicide.dk> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 481 Jon Bendtsen wrote: > Nuno Silva wrote: > >>Hi, >> >>thought i'd share my debian image for vserver. >>I hope this makes vserver more distribution independent :) > > > cool, but whats in it ?? > Sorry if I didn't explain it well. It's a tgz with a small and standard debian distribution. Whether you have suse, rh or debian in the main server you can use this as a vserver "root" to experience the debian joy :) lot's of packages, apt-get, etc. > > >>http://vserver.vgertech.com/ > > > no such host > > This CNAME was created a few hours ago, please be patient with dns. Regards, Nuno Silva From vserver.error@solucorp.qc.ca Tue Apr 9 16:49:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39KnO3Q006520; Tue, 9 Apr 2002 16:49:25 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39KY4q06108 for vserver.list; Tue, 9 Apr 2002 16:34:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-74-250.telepac.pt [213.13.74.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g39KY3h06103 for ; Tue, 9 Apr 2002 16:34:03 -0400 Received: (qmail 21707 invoked from network); 9 Apr 2002 20:33:59 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 9 Apr 2002 20:33:59 -0000 Message-ID: <3CB35037.2000507@vgertech.com> Date: Tue, 09 Apr 2002 21:33:59 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020402 Debian/2:0.9.9-4 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers References: <3CB2DAD9.9090607@vgertech.com> <1018358149.868.609.camel@reverie> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 482 Hi! Kevin Littlejohn wrote: > I'll put it up at http://www.obsidian.com.au/vserver/ shortly (it claims > it'll take 49 minutes to download). Can I ask, though (before looking > at it), how you picked what goes in by default? Our servers, we started > with debootstrap, and pruned from there. Just installed debian woody from network in a clean box. Run through setup as usual, installed ssh, cleaned *.deb and made a tgz of it all without the kernel. Openssh is there because a prefer to manage vservers like independent servers and I use "vserver SERVER enter" only as last resort. Regards, Nuno Silva > > KJL > > On Tue, 2002-04-09 at 22:13, Nuno Silva wrote: > >>Hi, >> >>thought i'd share my debian image for vserver. >>I hope this makes vserver more distribution independent :) >> >>http://vserver.vgertech.com/ >> >>Keep in mind that this is a slow connection, if someone can mirror this >>to a faster connection, please email the list with the location. >> >>Regards, >>Nuno Silva >> >> >> > From vserver.error@solucorp.qc.ca Tue Apr 9 17:10:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39LAb3Q006862; Tue, 9 Apr 2002 17:10:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39KuK006765 for vserver.list; Tue, 9 Apr 2002 16:56:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-74-250.telepac.pt [213.13.74.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g39KuJh06760 for ; Tue, 9 Apr 2002 16:56:19 -0400 Received: (qmail 21929 invoked from network); 9 Apr 2002 20:56:15 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 9 Apr 2002 20:56:15 -0000 Message-ID: <3CB3556F.1050705@vgertech.com> Date: Tue, 09 Apr 2002 21:56:15 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020402 Debian/2:0.9.9-4 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers References: <3CB2DAD9.9090607@vgertech.com> <1018358149.868.609.camel@reverie> <3CB30BE4.75C17486@silicide.dk> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 483 Hello, Jon Bendtsen wrote: > > okay, i got a look at > http://www.obsidian.com.au/vserver/mini-debian-vservers-016.txt > > 1) CHANGE the root password > Why not use passwd -l on root, so one has to enter through "vserver > enter" > aka, locking the rootpassword, thus NOONE will end up with a default > root pwd. I prefer to manage vservers like actual independent servers, so I like ssh on everyone of them. Anyway, next time I'll put an * in the root password, thanks for the sugestion :) > 2) since this is a debian... why not have it as a .deb as well ? ;-D It would be nice, but it would make it debian dependent and i'd need a default place to install it. /vservers/default goes against debian packaging policy :) > 3) i know woody comes out soon, but it's still not the official stable > :/ "debian needs to be installed only once". Even if you want to change to debian potato or debian sid just update sources.list; apt-get update ; apt-get dist-upgrade. That's it. > 4) note to 1) i can see you do the enter way. Did you lock the password > or not ? This one has a default password, easily guessable, please change it. Next time I'll follow your sugestion. > 5) would you care to comment more on the MAKEDEV thingy ? > Some scripts check for /dev/.devfsd before they try to use mknod. If it is present (devfs is active) they don't try to create the devices and you get to see less "Operation not permited" errors. > > http://www.obsidian.com.au/vserver/mini-debian-vservers-016.tgz > > 1) 85M, not bad > 2) /bin/mount is installed, but one cant mount filesystems... > 3) /boot exists, could be removed > 4) /etc/rcS.d - contains scripts that one cant execute anyway. > like modutils, checkfs, mountall, mountnfs, ... > This is pretty much a standard debian install. Removing mount would break dependencies. You waste some MB but you can rest sure that "apt-get upgrade" will work flawlessly in the vserver :) > It's not so much to save space i want stuff to be removed, but to get a > better > overview of the install. > > My base is > -rw-r--r-- 1 root root 27M Mar 31 19:07 base.tar.bz2 > And unpacked it's > 87M base > Damn, you beat me :/ > I'm sorry, but i cant publish it yet, as i havent changed the passwd ;-D :) > I run the getty at tty7, and just one > (i'm wonder why starting vservers fsck's up the tty, either tty0, or the > one > you start a vserver from. Likewise with shutdown :/) Try ssh to login to vservers and don't start any getties :) Best regards, Nuno Silva From vserver.error@solucorp.qc.ca Tue Apr 9 17:18:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39LIr3Q006971; Tue, 9 Apr 2002 17:18:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39L3r806946 for vserver.list; Tue, 9 Apr 2002 17:03:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-74-250.telepac.pt [213.13.74.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g39L3qh06942 for ; Tue, 9 Apr 2002 17:03:52 -0400 Received: (qmail 22038 invoked from network); 9 Apr 2002 21:03:48 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 9 Apr 2002 21:03:48 -0000 Message-ID: <3CB35734.7050807@vgertech.com> Date: Tue, 09 Apr 2002 22:03:48 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020402 Debian/2:0.9.9-4 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian tgz for vservers mirror References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 484 Hi! Dave Miller wrote: > Hello, > > I've setup a mirror for the image: > http://vserver.allwebsites.com/mini-debian/ > thanks. > > Now for my problems :) > I've been testing this as a possible web hosting vserver type setup for > my company. I am using debian vservers. But I'm having stability issues. > I start a vserver, then if I do anything remotely resource intensive, > I get a flow of ksymoops, then eventually a panic. I'm testing this for weeks now and haven't found any kernel problems (not counting with ctx-9). Do you have any other kernel patches? > > kernel 2.4.18 ctx-8, compiled and recompiled > 0.14 > > I inittially thought it to be a hardware problem, but the same kernel runs > fine prior to the patch. > > Are there any known errors that cause stability issues that I've overlooked? > I created the vserver by rsync'ing from another server then removing > conflicting > startup scripts. > Even with corrupt images the kernel souldn't panic... Wierd. Regards, Nuno Silva From vserver.error@solucorp.qc.ca Tue Apr 9 18:57:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g39Mv13Q007701; Tue, 9 Apr 2002 18:57:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g39MenA09121 for vserver.list; Tue, 9 Apr 2002 18:40:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from velocity.liquidweb.com (ns.liquidweb.com [64.91.224.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g39Memh09117 for ; Tue, 9 Apr 2002 18:40:48 -0400 Received: from ip-64-7-177-54.mercury.net ([64.7.177.54] helo=liquidweb.com) by velocity.liquidweb.com with asmtp (Exim 3.35 #1) id 16v4I1-0006Ek-00; Tue, 09 Apr 2002 18:40:37 -0400 Message-ID: <3CB3705D.4030804@liquidweb.com> Date: Tue, 09 Apr 2002 18:51:09 -0400 From: Matthew Hill User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.8) Gecko/20020212 X-Accept-Language: en-us MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> <3CB2A439.8050907@liquidweb.com> <1018343479.18013.27.camel@laplinux> <3CB2BF9E.4050306@liquidweb.com> <1018351775.18099.33.camel@laplinux> Content-Type: multipart/alternative; boundary="------------060103050101030906060006" X-AntiAbuse: Sender Address Domain - liquidweb.com Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 485 --------------060103050101030906060006 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Daniel, What I neglected to realize when you made the LVM suggestion, is that by creating unique partitions for each vserver, setting up quotas for each discrete vserver would be simple by initializing quotas on the main server. Each vserver LVM partition /vserver/tst1 for example, would contain a unique quota.user file and it would not matter that a UID of the same enumeration had a quota set on another vserver or the primary filesystem as quotas are relevent only to the current partition and quota.user file (in thise case /vserver/tst1/quota.user). The vserver would still have control over it's own quotas as the file is rw root in the directory of "/" within it's chroot. And the server running in security context 0 would do the actual enforcement and maintinence such as quotacheck. Did I miss anything? Sincerely, Matthew HIll CEO, Liquid Web Inc. d m wrote: >Matthew, > >ok, I got it now. Indeed, it would be a life-filling task to >do this with LVM... > >I'm not that firm with quota, but isn't it true, that quota uses only >the UIDs ? > >So, as the UID in a vserver are the same UIDs in the main-server, one >could use quotas on the main-server configuring the UIDs only (!) used >by the users of a vserver (e.g. an isolated area od UIDs). > >Regards, >Daniel > >Am Die, 2002-04-09 um 12.17 schrieb Matthew Hill: > >>Daniel, >> >>Thank you for the suggestion, as LVM would be an excellent >>system for controlling total vserver disk consumption. >> >> >>However the largest concern remaining, on which I was >>admittedly unclear, is that I'm trying to implement >>per-user quotas in a system where users are perpetually >>created and destroyed by web-based admin tools given >>to the owner of the vserver. >> >> >>Any suggestions? I would think it rather tedious from >>an administrative standpoint to attempt to use LVM >>per /home/user directories, whereas the best hack attempts >> >> >>I could envision using the current vserver setup would >>set quotas spanning all vservers and create overlap in chosen >>user names and disk consumption (lacking virtualized quotas, >>which I realize to be no small task). I had noticed one >>other post to this list requesting quotas support on the >>/dev/hdv a few weeks back. >> >>Sincerely, >> >>Matthew Hill >> > --------------060103050101030906060006 Content-Type: text/html; charset=us-ascii Content-Transfer-Encoding: 7bit Daniel,

What I neglected to realize when you made the LVM suggestion,
is that by creating unique partitions for each vserver, setting up
quotas for each discrete vserver would be simple by initializing
quotas on the main server.

Each vserver LVM partition /vserver/tst1 for example, would contain
a unique quota.user file and it would not matter that a UID of
the same enumeration had a quota set on another vserver or
the primary filesystem as quotas are relevent only to the current
partition and quota.user file (in thise case /vserver/tst1/quota.user).

The vserver would still have control over it's own quotas as the
file is rw root in the directory of "/" within it's chroot.  And the
server running in security context 0 would do the actual enforcement
and maintinence such as quotacheck.

Did I miss anything?

Sincerely,

Matthew HIll
CEO, Liquid Web Inc.

d m wrote:
Matthew,

ok, I got it now. Indeed, it would be a life-filling task to
do this with LVM...

I'm not that firm with quota, but isn't it true, that quota uses only
the UIDs ?

So, as the UID in a vserver are the same UIDs in the main-server, one
could use quotas on the main-server configuring the UIDs only (!) used
by the users of a vserver (e.g. an isolated area od UIDs).

Regards,
Daniel

Am Die, 2002-04-09 um 12.17 schrieb Matthew Hill:
Daniel,

Thank you for the suggestion, as LVM would be an excellent
system for controlling total vserver disk consumption.


However the largest concern remaining, on which I was
admittedly unclear, is that I'm trying to implement
per-user quotas in a system where users are perpetually
created and destroyed by web-based admin tools given
to the owner of the vserver.


Any suggestions? I would think it rather tedious from
an administrative standpoint to attempt to use LVM
per /home/user directories, whereas the best hack attempts


I could envision using the current vserver setup would
set quotas spanning all vservers and create overlap in chosen
user names and disk consumption (lacking virtualized quotas,
which I realize to be no small task). I had noticed one
other post to this list requesting quotas support on the
/dev/hdv a few weeks back.

Sincerely,

Matthew Hill




--------------060103050101030906060006-- From vserver.error@solucorp.qc.ca Tue Apr 9 22:09:09 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3A2983Q011086; Tue, 9 Apr 2002 22:09:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A1xfC12659 for vserver.list; Tue, 9 Apr 2002 21:59:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3A1xeh12655 for ; Tue, 9 Apr 2002 21:59:40 -0400 Received: from localhost (alien.vlad.net [208.236.0.236]) by alien (8.12.1/8.12.1) with ESMTP id g3A1xf3R011022 for ; Tue, 9 Apr 2002 21:59:41 -0400 Date: Tue, 9 Apr 2002 21:59:41 -0400 (EDT) From: Vlad X-X-Sender: vlad@alien To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting In-Reply-To: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 486 We already do it for $100 a pop; We pretty much install everything user requests that can be obtained for free and give them webmin to administer it. So far we've only sold a few and there have been no issues except with Samba but none of our users have figured that out yet or expressed any interest in it.. Only drawback so far has been the network support; we intentionally disabled the raw_packet switch since it would allow all the people on the box to sniff each others network activity... So thats by far the biggest problem, but then again, nobody has noticed or complained yet. -Vlad On Tue, 9 Apr 2002, Philip Hill wrote: > Please accept my apologies if this is the wrong discussion in which to post > this. > > Just wondering if anyone is attempting to use this method to offer hosting > of something similar to a "virtual private server"? Are there any obvious > drawbacks I'm missing? > > Regards, > > Philip > From vserver.error@solucorp.qc.ca Wed Apr 10 01:05:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3A55M3Q013094; Wed, 10 Apr 2002 01:05:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A4jIr15665 for vserver.list; Wed, 10 Apr 2002 00:45:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3A4jGh15661 for ; Wed, 10 Apr 2002 00:45:18 -0400 Received: from aksmtpmdr1.telecom.co.nz (aksmtpmdr1 [146.171.1.20]) by smtpout.telecom.co.nz (Postfix) with SMTP id 607E745F45 for ; Wed, 10 Apr 2002 16:45:07 +1200 (NZST) Received: from 192.168.192.22 by aksmtpmdr1.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Wed, 10 Apr 2002 16:45:06 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from ganymede ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 16v9wv-0006sf-00 for ; Wed, 10 Apr 2002 16:43: 13 +1200 Subject: [vserver] atd and screen From: "Fran Firman" To: vserver X-Mailer: Evolution/1.0.2 Date: 10 Apr 2002 16:43:12 +1200 Message-ID: <1018413793.22612.38.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10AD1CD82200233-01-01 Content-Type: multipart/signed; boundary="=-Ekt7ONJBtruF3GZVHnSl"; micalg=pgp-sha1; protocol="application/pgp-signature" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 487 --=-Ekt7ONJBtruF3GZVHnSl Content-Type: text/plain Content-Transfer-Encoding: quoted-printable I'm trying to get atd running. I get in /var/log/syslog the message atd[9995]: Error redirecting I/O: Permission denied Any ideas on how to get atd to run,=20 Also with screen I get the message No more PTYs Sorry, could not find a PTY. and then exits. Cheers Fran --=-Ekt7ONJBtruF3GZVHnSl Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iEYEABECAAYFAjyzwuAACgkQv1V2oVWAPhapOgCfXgtRItIlOtax53LTU3EBj0Fm AtgAnj+NMYyRUyoPOIK4D3ElUGAXW/iT =V2ks -----END PGP SIGNATURE----- --=-Ekt7ONJBtruF3GZVHnSl-- From vserver.error@solucorp.qc.ca Wed Apr 10 02:02:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3A62p3Q013466; Wed, 10 Apr 2002 02:02:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A5i8R16935 for vserver.list; Wed, 10 Apr 2002 01:44:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-74-250.telepac.pt [213.13.74.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g3A5i7h16931 for ; Wed, 10 Apr 2002 01:44:07 -0400 Received: (qmail 24284 invoked from network); 10 Apr 2002 05:43:59 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 10 Apr 2002 05:43:59 -0000 Message-ID: <3CB3D11E.1020604@vgertech.com> Date: Wed, 10 Apr 2002 06:43:58 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020402 Debian/2:0.9.9-4 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] atd and screen References: <1018413793.22612.38.camel@ganymede> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 488 Hi, I haven't tested atd, but screen runs fine. I suppose that you don't have /vservers/VSERVER-NAME/dev/pts mounted. What's the output, on the main server, of: "vserver VSERVER-NAME running" and "mount"? My wild guess for a fix is: "vserver VSERVER-NAME start" Hope it helps, Nuno silva Fran Firman wrote: > > I'm trying to get atd running. > I get in /var/log/syslog the message > atd[9995]: Error redirecting I/O: Permission denied > > Any ideas on how to get atd to run, > > Also with screen I get the message > > No more PTYs > Sorry, could not find a PTY. > > and then exits. > > > Cheers > > Fran From vserver.error@solucorp.qc.ca Wed Apr 10 03:02:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3A72o3Q013780; Wed, 10 Apr 2002 03:02:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A6qV418230 for vserver.list; Wed, 10 Apr 2002 02:52:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from saarland.sz-sb.de (saarland.sz-sb.de [212.88.192.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3A6qUh18226 for ; Wed, 10 Apr 2002 02:52:30 -0400 Received: from camelot.sz-sb.de (dmz1-camelot.sz-sb.de [212.88.192.2]) by saarland.sz-sb.de (8.9.3+Sun/8.9.3) with SMTP id IAA19884 for ; Wed, 10 Apr 2002 08:52:29 +0200 (MEST) Received: from ([172.16.151.102]) by camelot.sz-sb.de; Wed, 10 Apr 2002 08:52:29 +0200 (MEST) Received: from laplinux.triervf.de (172.16.113.72 [172.16.113.72]) by trierx0.triervf.de with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 24P3NLK1; Wed, 10 Apr 2002 08:51:30 +0200 Subject: Re: [vserver] double posts - an explanation..? From: d m To: vserver@solucorp.qc.ca In-Reply-To: <3CB31682.18593645@silicide.dk> References: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> <1018368970.18101.36.camel@laplinux> <3CB31682.18593645@silicide.dk> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 Date: 10 Apr 2002 08:52:07 +0200 Message-Id: <1018421532.18013.38.camel@laplinux> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 489 Am Die, 2002-04-09 um 18.27 schrieb Jon Bendtsen: > d m wrote: > > > > > What is jon+vserver ? This sounds like an alias containing someone named > > > jon and the vserver mailing list. > > > > > > Seems to be the only user with such a problem > > > > nope, > > > > i get them double, too. > > yes, well i send them double. Do you send them double as well ? nope, i get yours 4 times, and every other mail double... From vserver.error@solucorp.qc.ca Wed Apr 10 03:16:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3A7GN3Q013892; Wed, 10 Apr 2002 03:16:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A757318550 for vserver.list; Wed, 10 Apr 2002 03:05:07 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from saarland.sz-sb.de (saarland.sz-sb.de [212.88.192.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3A756h18546 for ; Wed, 10 Apr 2002 03:05:06 -0400 Received: from camelot.sz-sb.de (dmz1-camelot.sz-sb.de [212.88.192.2]) by saarland.sz-sb.de (8.9.3+Sun/8.9.3) with SMTP id JAA20330 for ; Wed, 10 Apr 2002 09:05:07 +0200 (MEST) Received: from ([172.16.151.102]) by camelot.sz-sb.de; Wed, 10 Apr 2002 09:05:05 +0200 (MEST) Received: from laplinux.triervf.de (172.16.113.72 [172.16.113.72]) by trierx0.triervf.de with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 24P3NLKZ; Wed, 10 Apr 2002 09:04:06 +0200 Subject: Re: [vserver] private server hosting From: d m To: vserver@solucorp.qc.ca In-Reply-To: <3CB3705D.4030804@liquidweb.com> References: <4.3.2.7.2.20020409024518.00b9ccd0@mail.earthlink.net> <3CB2A439.8050907@liq uidweb.com> <1018343479.18013.27.camel@laplinux> <3CB2BF9E.4050306@liquidweb.com> <1018351775.18099.33.camel@laplinux> <3CB3705D.4030804@liquidweb.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 Date: 10 Apr 2002 09:04:43 +0200 Message-Id: <1018422288.18013.48.camel@laplinux> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 490 Hi, as I mentioned before, I'm not that firm with quota. But your suggestion sounds useable, to set per 'volume'-quotas where a 'volume' is a vserver-volume (mount) using as well user-quotas (UIDs unique to the vserver or not). Pease try it, and report if it worked.... Regards, Daniel Am Mit, 2002-04-10 um 00.51 schrieb Matthew Hill: > Daniel, > > What I neglected to realize when you made the LVM suggestion, > is that by creating unique partitions for each vserver, setting up > quotas for each discrete vserver would be simple by initializing > quotas on the main server. > > Each vserver LVM partition /vserver/tst1 for example, would contain > a unique quota.user file and it would not matter that a UID of > the same enumeration had a quota set on another vserver or > the primary filesystem as quotas are relevent only to the current > partition and quota.user file (in thise case /vserver/tst1/quota.user). > > The vserver would still have control over it's own quotas as the > file is rw root in the directory of "/" within it's chroot. And the > server running in security context 0 would do the actual enforcement > and maintinence such as quotacheck. > > Did I miss anything? > > Sincerely, > > Matthew HIll From vserver.error@solucorp.qc.ca Wed Apr 10 03:36:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3A7ad3Q014030; Wed, 10 Apr 2002 03:36:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A7NqQ18851 for vserver.list; Wed, 10 Apr 2002 03:23:52 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from saarland.sz-sb.de (saarland.sz-sb.de [212.88.192.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3A7Nph18847 for ; Wed, 10 Apr 2002 03:23:51 -0400 Received: from camelot.sz-sb.de (dmz1-camelot.sz-sb.de [212.88.192.2]) by saarland.sz-sb.de (8.9.3+Sun/8.9.3) with SMTP id JAA21110 for ; Wed, 10 Apr 2002 09:23:51 +0200 (MEST) Received: from ([172.16.151.102]) by camelot.sz-sb.de; Wed, 10 Apr 2002 09:23:49 +0200 (MEST) Received: from laplinux.triervf.de (172.16.113.72 [172.16.113.72]) by trierx0.triervf.de with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 24P3NLLS; Wed, 10 Apr 2002 09:22:50 +0200 Subject: re: [vserver] double posts - an explanation..? From: d m To: vserver@solucorp.qc.ca In-Reply-To: <1018368970.18101.36.camel@laplinux> References: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> <1018368970.18101.36.camel@laplinux> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 Date: 10 Apr 2002 09:23:27 +0200 Message-Id: <1018423411.18101.50.camel@laplinux> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 491 Am Die, 2002-04-09 um 18.16 schrieb d m: > > > What is jon+vserver ? This sounds like an alias containing someone named > > jon and the vserver mailing list. > > > > Seems to be the only user with such a problem > > nope, > > i get them double, too. > > regards, > daniel > forget, tried another client --> filters to much for me (stupid) sorry.... From vserver.error@solucorp.qc.ca Wed Apr 10 04:46:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3A8k93Q015783; Wed, 10 Apr 2002 04:46:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A8c2B20819 for vserver.list; Wed, 10 Apr 2002 04:38:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3A8c0h20808 for ; Wed, 10 Apr 2002 04:38:01 -0400 Received: from aksmtpmdr1.telecom.co.nz (aksmtpmdr1 [146.171.1.20]) by smtpout.telecom.co.nz (Postfix) with SMTP id 3790045F05 for ; Wed, 10 Apr 2002 20:37:59 +1200 (NZST) Received: from 192.168.192.22 by aksmtpmdr1.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Wed, 10 Apr 2002 20:37:58 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from ganymede ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 16vDaH-0007RY-00 for ; Wed, 10 Apr 2002 20:36: 05 +1200 Subject: Re: [vserver] atd and screen From: "Fran Firman" To: vserver In-Reply-To: <3CB3D11E.1020604@vgertech.com> References: <1018413793.22612.38.camel@ganymede> <3CB3D11E.1020604@vgertech.com> X-Mailer: Evolution/1.0.2 Date: 10 Apr 2002 20:36:04 +1200 Message-ID: <1018427765.28558.0.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10AD266C2231095-01-01 Content-Type: multipart/signed; boundary="=-mKbvDCxWH4eGgsyR/hwU"; micalg=pgp-sha1; protocol="application/pgp-signature" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 492 --=-mKbvDCxWH4eGgsyR/hwU Content-Type: text/plain Content-Transfer-Encoding: quoted-printable vserver test running Server test is running and none on /vservers/test/proc type proc (rw) none on /vservers/test/dev/pts type devpts (rw) Thoughts???? Fran On Wed, 2002-04-10 at 17:43, Nuno Silva wrote: >=20 > Hi, >=20 > I haven't tested atd, but screen runs fine. I suppose that you don't=20 > have /vservers/VSERVER-NAME/dev/pts mounted. >=20 > What's the output, on the main server, of: > "vserver VSERVER-NAME running" and "mount"? >=20 > My wild guess for a fix is: > "vserver VSERVER-NAME start" >=20 > Hope it helps, > Nuno silva >=20 > Fran Firman wrote: > >=20 > > I'm trying to get atd running. > > I get in /var/log/syslog the message > > atd[9995]: Error redirecting I/O: Permission denied > >=20 > > Any ideas on how to get atd to run,=20 > >=20 > > Also with screen I get the message > >=20 > > No more PTYs > > Sorry, could not find a PTY. > >=20 > > and then exits. > >=20 > >=20 > > Cheers > >=20 > > Fran >=20 >=20 >=20 --=-mKbvDCxWH4eGgsyR/hwU Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iEYEABECAAYFAjyz+XQACgkQv1V2oVWAPhb78wCfTSLPBknYl7wGknQfWFebfL8l fqkAnAk7yf6ipISPAN/yMhfHikOK/WzU =g7I/ -----END PGP SIGNATURE----- --=-mKbvDCxWH4eGgsyR/hwU-- From vserver.error@solucorp.qc.ca Wed Apr 10 06:09:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3AA9C3Q016209; Wed, 10 Apr 2002 06:09:12 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A9t6L22575 for vserver.list; Wed, 10 Apr 2002 05:55:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3A9t5h22568 for ; Wed, 10 Apr 2002 05:55:06 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16vEoj-0007UM-00 for ; Wed, 10 Apr 2002 11:55:05 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16vEoj-0007UB-00 for ; Wed, 10 Apr 2002 11:55:05 +0200 Sender: jon@silicide.dk Message-ID: <3CB40BF9.AF9098C@silicide.dk> Date: Wed, 10 Apr 2002 11:55:05 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] double posts - an explanation..? References: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> <1018368970.18101.36.camel@laplinux> <3CB31682.18593645@silicide.dk> <1018421532.18013.38.camel@laplinux> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 493 d m wrote: > > Am Die, 2002-04-09 um 18.27 schrieb Jon Bendtsen: > > d m wrote: > > > > > > > What is jon+vserver ? This sounds like an alias containing someone named > > > > jon and the vserver mailing list. > > > > > > > > Seems to be the only user with such a problem > > > > > > nope, > > > > > > i get them double, too. > > > > yes, well i send them double. Do you send them double as well ? > > nope, i get yours 4 times, and every other mail double... This is getting more and more strange?? JonB From vserver.error@solucorp.qc.ca Wed Apr 10 06:12:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3AACt3Q016239; Wed, 10 Apr 2002 06:12:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A9sIF22501 for vserver.list; Wed, 10 Apr 2002 05:54:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3A9sIh22497 for ; Wed, 10 Apr 2002 05:54:18 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16vEnr-0007Tk-00 for ; Wed, 10 Apr 2002 11:54:11 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16vEnr-0007TZ-00 for ; Wed, 10 Apr 2002 11:54:11 +0200 Sender: jon@silicide.dk Message-ID: <3CB40BC3.CE7A8199@silicide.dk> Date: Wed, 10 Apr 2002 11:54:11 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 494 Vlad wrote: > So far we've only sold a few and there have been no issues except with > Samba but none of our users have figured that out yet or expressed any > interest in it.. Whats the problem with samba ?? I've used samba with some luck. I do occasionaly experience complete lockup's that brings down the hole computer, nothing works except hardware reset. (the kernel follows a 0 pointer). I've resently upgraded to ctx10, so i asumed it was ctx9 that was the problem, since i also had this problem when doing userspace NFS. I havent yet tried the same ammount of data to and from the computer since the upgrade to ctx10. The problem occured during writing and reading of iso images. JonB From vserver.error@solucorp.qc.ca Wed Apr 10 06:26:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3AAQQ3Q016358; Wed, 10 Apr 2002 06:26:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3AA9m723033 for vserver.list; Wed, 10 Apr 2002 06:09:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3AA9lh23028 for ; Wed, 10 Apr 2002 06:09:47 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16vF2x-0007VL-00 for ; Wed, 10 Apr 2002 12:09:47 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16vF2w-0007VB-00 for ; Wed, 10 Apr 2002 12:09:47 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Wed, 10 Apr 2002 12:09:46 +0200 (CEST) Received: (qmail 64020 invoked from network); 10 Apr 2002 10:09:41 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 10 Apr 2002 10:09:41 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A9t6L22575 for vserver.list; Wed, 10 Apr 2002 05:55:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3A9t5h22568 for ; Wed, 10 Apr 2002 05:55:06 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16vEoj-0007UM-00 for ; Wed, 10 Apr 2002 11:55:05 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16vEoj-0007UB-00 for ; Wed, 10 Apr 2002 11:55:05 +0200 Sender: jon@silicide.dk Message-ID: <3CB40BF9.AF9098C@silicide.dk> Date: Wed, 10 Apr 2002 11:55:05 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] double posts - an explanation..? References: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> <1018368970.18101.36.camel@laplinux> <3CB31682.18593645@silicide.dk> <1018421532.18013.38.camel@laplinux> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 495 d m wrote: > > Am Die, 2002-04-09 um 18.27 schrieb Jon Bendtsen: > > d m wrote: > > > > > > > What is jon+vserver ? This sounds like an alias containing someone named > > > > jon and the vserver mailing list. > > > > > > > > Seems to be the only user with such a problem > > > > > > nope, > > > > > > i get them double, too. > > > > yes, well i send them double. Do you send them double as well ? > > nope, i get yours 4 times, and every other mail double... This is getting more and more strange?? JonB From vserver.error@solucorp.qc.ca Wed Apr 10 06:31:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3AAVZ3Q016391; Wed, 10 Apr 2002 06:31:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3AADu723121 for vserver.list; Wed, 10 Apr 2002 06:13:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3AADth23117 for ; Wed, 10 Apr 2002 06:13:56 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16vF6x-0007WK-00 for ; Wed, 10 Apr 2002 12:13:55 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16vF6x-0007WA-00 for ; Wed, 10 Apr 2002 12:13:55 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Wed, 10 Apr 2002 12:13:55 +0200 (CEST) Received: (qmail 67617 invoked from network); 10 Apr 2002 10:13:24 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 10 Apr 2002 10:13:24 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3A9sIF22501 for vserver.list; Wed, 10 Apr 2002 05:54:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3A9sIh22497 for ; Wed, 10 Apr 2002 05:54:18 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16vEnr-0007Tk-00 for ; Wed, 10 Apr 2002 11:54:11 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16vEnr-0007TZ-00 for ; Wed, 10 Apr 2002 11:54:11 +0200 Sender: jon@silicide.dk Message-ID: <3CB40BC3.CE7A8199@silicide.dk> Date: Wed, 10 Apr 2002 11:54:11 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] private server hosting References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 496 Vlad wrote: > So far we've only sold a few and there have been no issues except with > Samba but none of our users have figured that out yet or expressed any > interest in it.. Whats the problem with samba ?? I've used samba with some luck. I do occasionaly experience complete lockup's that brings down the hole computer, nothing works except hardware reset. (the kernel follows a 0 pointer). I've resently upgraded to ctx10, so i asumed it was ctx9 that was the problem, since i also had this problem when doing userspace NFS. I havent yet tried the same ammount of data to and from the computer since the upgrade to ctx10. The problem occured during writing and reading of iso images. JonB From vserver.error@solucorp.qc.ca Wed Apr 10 10:42:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3AEgn3Q018373; Wed, 10 Apr 2002 10:42:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3AET6S28512 for vserver.list; Wed, 10 Apr 2002 10:29:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3AET5h28508 for ; Wed, 10 Apr 2002 10:29:06 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g3AET1w10666 for ; Wed, 10 Apr 2002 07:29:01 -0700 X-Authentication-Warning: main.cyber-office.net: raanders owned process doing -bs Date: Wed, 10 Apr 2002 07:29:01 -0700 (PDT) From: X-X-Sender: To: Subject: Re: [vserver] vserver 0.16 change log In-Reply-To: <20020404124338.f16bb003160d@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.8 required=5.0 tests=IN_REP_TO,NO_REAL_NAME,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 497 On Thu, 4 Apr 2002, Jacques Gelinas wrote: > 1.1. Install vserver from cdrom > > This is a start and contributions are welcome. I have written a script > called /usr/lib/vserver/install-rh7.2. This script expects a single > argument (for now), which is the name of the vserver to create. It > will install a vserver based on Red Hat 7.2 CD (found in /mnt/cdrom) > from scratch. It is not using the root server at all. It installs > everything from the first CD. With unification, it creates a not-so- > big vserver and contains pretty much anything an admin might want. This is great. I still have to find the time to try this out but it does bring three (at least) questions to mind. 1. Can /mnt/cdrom be an ISO image? 2. Will this require a CD-ROM change like a typical install does. My server (like I have whined about before) is located 30+ miles away in a co-location I don't have access to without prior arrangements. 3. Is it time to think of a Vserver Distribution? Something that installs a very basic main server. I have been researching what is the very minimum RPM-wise (RHL 7.2) needed but haven't had a chance to test it. This would be to preclude any packages that are not needed to run the vservers and hopefully plug any security holes in the main server. (Does this make any sense?) Cheers, Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Wed Apr 10 11:39:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3AFdW3Q018979; Wed, 10 Apr 2002 11:39:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3AFPNb29956 for vserver.list; Wed, 10 Apr 2002 11:25:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3AFPMh29952 for ; Wed, 10 Apr 2002 11:25:23 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16vJyM-0007pH-00 for ; Wed, 10 Apr 2002 17:25:22 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16vJyL-0007p6-00 for ; Wed, 10 Apr 2002 17:25:21 +0200 Sender: jon@silicide.dk Message-ID: <3CB45961.CD69EEBB@silicide.dk> Date: Wed, 10 Apr 2002 17:25:21 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver 0.16 change log References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 498 raanders@acm.org wrote: > > 1. Can /mnt/cdrom be an ISO image? I didnt make it, but i dont see any technical reasons why it can not be a loopback mounted iso image. > 2. Will this require a CD-ROM change like a typical install does. My > server (like I have whined about before) is located 30+ miles away > in a co-location I don't have access to without prior arrangements. i would guess that depends on how much data are needed. > 3. Is it time to think of a Vserver Distribution? Something that > installs a very basic main server. I have been researching what is > the very minimum RPM-wise (RHL 7.2) needed but haven't had a chance > to test it. This would be to preclude any packages that are not > needed to run the vservers and hopefully plug any security holes in > the main server. (Does this make any sense?) I dont think the efford is worth it. Because, the main, or root as i call it, server could have all kinds of needs. That properly isnt any services, other than ssh, perhaps some routing deaemons, and stuff like that. They would how ever still need alot of other packages and programs, like log checking tools, rootkit checking tools, backup tools, devellopment tools, at least for compiling a new kernel. Why not just use a part of those packages other distributions already have develloped ?? JonB From vserver.error@solucorp.qc.ca Wed Apr 10 11:53:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3AFr53Q019076; Wed, 10 Apr 2002 11:53:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3AFdqo30353 for vserver.list; Wed, 10 Apr 2002 11:39:52 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3AFdph30349 for ; Wed, 10 Apr 2002 11:39:52 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16vKCN-0007qL-00 for ; Wed, 10 Apr 2002 17:39:51 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16vKCN-0007qB-00 for ; Wed, 10 Apr 2002 17:39:51 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Wed, 10 Apr 2002 17:39:51 +0200 (CEST) Received: (qmail 21300 invoked from network); 10 Apr 2002 15:39:35 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 10 Apr 2002 15:39:35 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3AFPNb29956 for vserver.list; Wed, 10 Apr 2002 11:25:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3AFPMh29952 for ; Wed, 10 Apr 2002 11:25:23 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16vJyM-0007pH-00 for ; Wed, 10 Apr 2002 17:25:22 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16vJyL-0007p6-00 for ; Wed, 10 Apr 2002 17:25:21 +0200 Sender: jon@silicide.dk Message-ID: <3CB45961.CD69EEBB@silicide.dk> Date: Wed, 10 Apr 2002 17:25:21 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver 0.16 change log References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 499 raanders@acm.org wrote: > > 1. Can /mnt/cdrom be an ISO image? I didnt make it, but i dont see any technical reasons why it can not be a loopback mounted iso image. > 2. Will this require a CD-ROM change like a typical install does. My > server (like I have whined about before) is located 30+ miles away > in a co-location I don't have access to without prior arrangements. i would guess that depends on how much data are needed. > 3. Is it time to think of a Vserver Distribution? Something that > installs a very basic main server. I have been researching what is > the very minimum RPM-wise (RHL 7.2) needed but haven't had a chance > to test it. This would be to preclude any packages that are not > needed to run the vservers and hopefully plug any security holes in > the main server. (Does this make any sense?) I dont think the efford is worth it. Because, the main, or root as i call it, server could have all kinds of needs. That properly isnt any services, other than ssh, perhaps some routing deaemons, and stuff like that. They would how ever still need alot of other packages and programs, like log checking tools, rootkit checking tools, backup tools, devellopment tools, at least for compiling a new kernel. Why not just use a part of those packages other distributions already have develloped ?? JonB From vserver.error@solucorp.qc.ca Wed Apr 10 13:52:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3AHpx3Q020296; Wed, 10 Apr 2002 13:51:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3AHc8W00622 for vserver.list; Wed, 10 Apr 2002 13:38:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from aquarius.diginode.net (aquarius.diginode.net [216.13.250.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g3AHc8h00618 for ; Wed, 10 Apr 2002 13:38:08 -0400 Received: (qmail 17253 invoked from network); 10 Apr 2002 17:36:58 -0000 Received: from zerowing.pop-star.net (208.181.22.52) by aquarius.diginode.net with SMTP; 10 Apr 2002 17:36:58 -0000 Subject: Re: [vserver] double posts - an explanation..? From: Andy Kwong To: vserver@solucorp.qc.ca Cc: jon@silicide.dk In-Reply-To: <3CB40BF9.AF9098C@silicide.dk> References: <20020409113525.5e854818fd33@remtk.solucorp.qc.ca> <1018368970.18101.36.camel@laplinux> <3CB31682.18593645@silicide.dk> <1018421532.18013.38.camel@laplinux> <3CB40BF9.AF9098C@silicide.dk> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 10 Apr 2002 10:41:38 -0700 Message-Id: <1018460499.1007.1.camel@zerowing.pop-star.net> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 500 Can I ask why you are sending posts twice? On Wed, 2002-04-10 at 02:55, Jon Bendtsen wrote: > d m wrote: > > > > Am Die, 2002-04-09 um 18.27 schrieb Jon Bendtsen: > > > d m wrote: > > > > > > > > > What is jon+vserver ? This sounds like an alias containing someone named > > > > > jon and the vserver mailing list. > > > > > > > > > > Seems to be the only user with such a problem > > > > > > > > nope, > > > > > > > > i get them double, too. > > > > > > yes, well i send them double. Do you send them double as well ? > > > > nope, i get yours 4 times, and every other mail double... > > This is getting more and more strange?? > > > > > JonB > > > > > > > From vserver.error@solucorp.qc.ca Fri Apr 12 08:04:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3CC4h3Q010540; Fri, 12 Apr 2002 08:04:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3CBfnI23404 for vserver.list; Fri, 12 Apr 2002 07:41:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3CBfmh23400 for ; Fri, 12 Apr 2002 07:41:48 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:11269 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Fri, 12 Apr 2002 13:42:41 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Fri, 12 Apr 2002 13:41:20 +0200 Date: Fri, 12 Apr 2002 13:41:19 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: [vserver] locking problems with samba Message-ID: <20020412134119.R3025@4t2.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 501 Hi there, i've got problems running samba in a vserver. On a share that's accessible by multiple (Windows)users I get lockups on the client side when someone tries to access a file that's already opened by another user. I don't have this problem when I run the same samba configuration outside the vserver. It's probably some file locking issue. Maybe I just need to enable some capabilities though all i've tried so far didn't work. tested with 2.4.18ctx8 and 2.4.18ctx10 and samba 2.2.1a-4 on RH7.2. Tell me if you need more information (this one is easily to reproduce). any ideas? Tom From vserver.error@solucorp.qc.ca Tue Apr 16 05:29:13 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3G9TC3Q016912; Tue, 16 Apr 2002 05:29:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3G9B1g17612 for vserver.list; Tue, 16 Apr 2002 05:11:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3G9B0h17606 for ; Tue, 16 Apr 2002 05:11:00 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16xOzF-0002bI-00 for ; Tue, 16 Apr 2002 11:10:53 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16xOzF-0002b7-00 for ; Tue, 16 Apr 2002 11:10:53 +0200 Sender: jon@silicide.dk Message-ID: <3CBBEA9D.E3128EA1@silicide.dk> Date: Tue, 16 Apr 2002 11:10:53 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] locking problems with samba References: <20020412134119.R3025@4t2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 502 Thomas Weber wrote: > > Hi there, > > i've got problems running samba in a vserver. On a share that's accessible > by multiple (Windows)users I get lockups on the client side when someone > tries to access a file that's already opened by another user. I get lock ups even when it's only me that tries to use samba, the lockup happens every other day. I've tried to use the same file with 2 different processes. One that wrote to the file, and one that read from the file. I dont get lockup's from that. I do however mount the smb share with linux. > I don't have this problem when I run the same samba configuration outside > the vserver. I dont wanna do that. > It's probably some file locking issue. Maybe I just need to enable some > capabilities though all i've tried so far didn't work. > > tested with 2.4.18ctx8 and 2.4.18ctx10 and samba 2.2.1a-4 on RH7.2. > Tell me if you need more information (this one is easily to reproduce). How ?? i can access files by 2 processes, how ever from the same machine without trouble. Sometimes when i write with one file, and read another file it locks up. > any ideas? yeah, dont run samba ;-0 At least not in a production environment. I'm the only user of my samba, so i can manage when i have to reboot. JonB From vserver.error@solucorp.qc.ca Tue Apr 16 05:38:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3G9cg3Q016962; Tue, 16 Apr 2002 05:38:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3G9UV417970 for vserver.list; Tue, 16 Apr 2002 05:30:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3G9UUh17966 for ; Tue, 16 Apr 2002 05:30:31 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16xPIE-0002dH-00 for ; Tue, 16 Apr 2002 11:30:30 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16xPIE-0002d7-00 for ; Tue, 16 Apr 2002 11:30:30 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 16 Apr 2002 11:30:30 +0200 (CEST) Received: (qmail 61657 invoked from network); 16 Apr 2002 09:29:41 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 16 Apr 2002 09:29:41 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3G9B1g17612 for vserver.list; Tue, 16 Apr 2002 05:11:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3G9B0h17606 for ; Tue, 16 Apr 2002 05:11:00 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16xOzF-0002bI-00 for ; Tue, 16 Apr 2002 11:10:53 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16xOzF-0002b7-00 for ; Tue, 16 Apr 2002 11:10:53 +0200 Sender: jon@silicide.dk Message-ID: <3CBBEA9D.E3128EA1@silicide.dk> Date: Tue, 16 Apr 2002 11:10:53 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] locking problems with samba References: <20020412134119.R3025@4t2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 503 Thomas Weber wrote: > > Hi there, > > i've got problems running samba in a vserver. On a share that's accessible > by multiple (Windows)users I get lockups on the client side when someone > tries to access a file that's already opened by another user. I get lock ups even when it's only me that tries to use samba, the lockup happens every other day. I've tried to use the same file with 2 different processes. One that wrote to the file, and one that read from the file. I dont get lockup's from that. I do however mount the smb share with linux. > I don't have this problem when I run the same samba configuration outside > the vserver. I dont wanna do that. > It's probably some file locking issue. Maybe I just need to enable some > capabilities though all i've tried so far didn't work. > > tested with 2.4.18ctx8 and 2.4.18ctx10 and samba 2.2.1a-4 on RH7.2. > Tell me if you need more information (this one is easily to reproduce). How ?? i can access files by 2 processes, how ever from the same machine without trouble. Sometimes when i write with one file, and read another file it locks up. > any ideas? yeah, dont run samba ;-0 At least not in a production environment. I'm the only user of my samba, so i can manage when i have to reboot. JonB From vserver.error@solucorp.qc.ca Tue Apr 16 06:05:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3GA5G3Q017146; Tue, 16 Apr 2002 06:05:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3G9s9w18462 for vserver.list; Tue, 16 Apr 2002 05:54:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3G9s8h18458 for ; Tue, 16 Apr 2002 05:54:09 -0400 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 3.35 #1) id 16xPf6-0000NO-00 for vserver@solucorp.qc.ca; Tue, 16 Apr 2002 06:54:08 -0300 Date: Tue, 16 Apr 2002 06:54:08 -0300 (ADT) From: James MacLean To: Subject: Re: [vserver] locking problems with samba - cups In-Reply-To: <3CBBEA9D.E3128EA1@silicide.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 504 > Thomas Weber wrote: > > Hi there, > > i've got problems running samba in a vserver. On a share that's accessible > > by multiple (Windows)users I get lockups on the client side when someone > > tries to access a file that's already opened by another user. > > any ideas? Possibly totally unrelated but this past weekend I went through an exercise to get CUPS running in a vserver. One big hangup was that CUPS is hardcoded everywhere to talk via localhost. In cup's case, it wasn't just the host 'localhost' or the ip '127.0.0.1' but the hex coded localhost '0x7f000001' everywhere :(. So I've been setting /etc/hosts to say that localhost is actually the vserver's IP. Probably unrelated, but without all the changes, CUPS would hang doing certain activities (ie adding printers). JES -- James B. MacLean macleajb@ednet.ns.ca Department of Education Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Tue Apr 16 06:23:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3GANP3Q017227; Tue, 16 Apr 2002 06:23:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3GA9bD18764 for vserver.list; Tue, 16 Apr 2002 06:09:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3GA9ah18760 for ; Tue, 16 Apr 2002 06:09:36 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:58378 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Tue, 16 Apr 2002 12:11:19 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Tue, 16 Apr 2002 12:09:15 +0200 Date: Tue, 16 Apr 2002 12:09:15 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] locking problems with samba Message-ID: <20020416120915.C2509@4t2.com> References: <20020412134119.R3025@4t2.com> <3CBBEA9D.E3128EA1@silicide.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <3CBBEA9D.E3128EA1@silicide.dk>; from jon+vserver@silicide.dk on Tue, Apr 16, 2002 at 11:10:53AM +0200 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 505 On Tue, Apr 16, 2002 at 11:10:53AM +0200, Jon Bendtsen wrote: > > i've got problems running samba in a vserver. On a share that's accessible > > by multiple (Windows)users I get lockups on the client side when someone > > tries to access a file that's already opened by another user. > > I get lock ups even when it's only me that tries to use samba, the > lockup > happens every other day. I've tried to use the same file with 2 > different > processes. One that wrote to the file, and one that read from the file. > I > dont get lockup's from that. I do however mount the smb share with > linux. I don't think you can compare linux with windows clients in this case due to the VFS Layer and other Linux issues that won't show you this problem immediately. > > tested with 2.4.18ctx8 and 2.4.18ctx10 and samba 2.2.1a-4 on RH7.2. > > Tell me if you need more information (this one is easily to reproduce). > > How ?? i can access files by 2 processes, how ever from the same machine > without trouble. Sometimes when i write with one file, and read another > file it locks up. Don't test with Linux as a client. > > any ideas? > > yeah, dont run samba ;-0 > At least not in a production environment. I'm the only user of my samba, > so i can manage when i have to reboot. That's a joke, isn't it? I run samba for several hundreds of users for years without problems (of course not within a vserver), it's one of the most reliable pieces of software i've come across. Besides, there's just no alternative (at least none that's as fast, cheap and stable). I'm pretty sure this is a problem with file locking within the vserver, and not a problem with samba itself. Tom From vserver.error@solucorp.qc.ca Tue Apr 16 07:06:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3GB6p3Q017454; Tue, 16 Apr 2002 07:06:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3GAwOA19782 for vserver.list; Tue, 16 Apr 2002 06:58:24 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3GAwNh19778 for ; Tue, 16 Apr 2002 06:58:24 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16xQfH-0002iN-00 for ; Tue, 16 Apr 2002 12:58:23 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16xQfH-0002iC-00 for ; Tue, 16 Apr 2002 12:58:23 +0200 Sender: jon@silicide.dk Message-ID: <3CBC03CF.53D174B9@silicide.dk> Date: Tue, 16 Apr 2002 12:58:23 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] locking problems with samba References: <20020412134119.R3025@4t2.com> <3CBBEA9D.E3128EA1@silicide.dk> <20020416120915.C2509@4t2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 506 > > > tested with 2.4.18ctx8 and 2.4.18ctx10 and samba 2.2.1a-4 on RH7.2. > > > Tell me if you need more information (this one is easily to reproduce). > > > > How ?? i can access files by 2 processes, how ever from the same machine > > without trouble. Sometimes when i write with one file, and read another > > file it locks up. > > Don't test with Linux as a client. Well, thats all i got, i dont use windows, i dont even have a windows cd, and i dont want to repartition just to install windows, and test this bug. I'll test with linux if people want that. The reason i'm not using NFS, is because it's on a shared network, so i want the password protection. > > > > any ideas? > > > > yeah, dont run samba ;-0 > > At least not in a production environment. I'm the only user of my samba, > > so i can manage when i have to reboot. > > That's a joke, isn't it? Well sort of. I ment dont run samba in a vserver in a production environment. > I run samba for several hundreds of users for years without problems (of > course not within a vserver), it's one of the most reliable pieces of software > i've come across. Besides, there's just no alternative (at least none that's > as fast, cheap and stable). > I'm pretty sure this is a problem with file locking within the vserver, and not > a problem with samba itself. I think so as well, because i run a regular samba server as well, in a production environment, and that works fine. I seem to remember that back when i ran userspace nfs inside a vserver, i had the same lockup's, but i'm not 100% sure. JonB From vserver.error@solucorp.qc.ca Tue Apr 16 07:22:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3GBMo3Q017546; Tue, 16 Apr 2002 07:22:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3GB8Lp19973 for vserver.list; Tue, 16 Apr 2002 07:08:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3GB8Kh19969 for ; Tue, 16 Apr 2002 07:08:20 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16xQou-0002im-00 for ; Tue, 16 Apr 2002 13:08:20 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16xQou-0002ic-00 for ; Tue, 16 Apr 2002 13:08:20 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 16 Apr 2002 13:08:20 +0200 (CEST) Received: (qmail 54648 invoked from network); 16 Apr 2002 11:07:20 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 16 Apr 2002 11:07:20 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3GAwOA19782 for vserver.list; Tue, 16 Apr 2002 06:58:24 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3GAwNh19778 for ; Tue, 16 Apr 2002 06:58:24 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16xQfH-0002iN-00 for ; Tue, 16 Apr 2002 12:58:23 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16xQfH-0002iC-00 for ; Tue, 16 Apr 2002 12:58:23 +0200 Sender: jon@silicide.dk Message-ID: <3CBC03CF.53D174B9@silicide.dk> Date: Tue, 16 Apr 2002 12:58:23 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] locking problems with samba References: <20020412134119.R3025@4t2.com> <3CBBEA9D.E3128EA1@silicide.dk> <20020416120915.C2509@4t2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 507 > > > tested with 2.4.18ctx8 and 2.4.18ctx10 and samba 2.2.1a-4 on RH7.2. > > > Tell me if you need more information (this one is easily to reproduce). > > > > How ?? i can access files by 2 processes, how ever from the same machine > > without trouble. Sometimes when i write with one file, and read another > > file it locks up. > > Don't test with Linux as a client. Well, thats all i got, i dont use windows, i dont even have a windows cd, and i dont want to repartition just to install windows, and test this bug. I'll test with linux if people want that. The reason i'm not using NFS, is because it's on a shared network, so i want the password protection. > > > > any ideas? > > > > yeah, dont run samba ;-0 > > At least not in a production environment. I'm the only user of my samba, > > so i can manage when i have to reboot. > > That's a joke, isn't it? Well sort of. I ment dont run samba in a vserver in a production environment. > I run samba for several hundreds of users for years without problems (of > course not within a vserver), it's one of the most reliable pieces of software > i've come across. Besides, there's just no alternative (at least none that's > as fast, cheap and stable). > I'm pretty sure this is a problem with file locking within the vserver, and not > a problem with samba itself. I think so as well, because i run a regular samba server as well, in a production environment, and that works fine. I seem to remember that back when i ran userspace nfs inside a vserver, i had the same lockup's, but i'm not 100% sure. JonB From vserver.error@solucorp.qc.ca Wed Apr 17 15:16:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3HJGW3Q001769; Wed, 17 Apr 2002 15:16:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3HIxKb29493 for vserver.list; Wed, 17 Apr 2002 14:59:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from fnexchange2.corp.fast.net (fnexchange2.corp.fast.net [209.92.29.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3HIxKh29489 for ; Wed, 17 Apr 2002 14:59:20 -0400 Received: by fnexchange2.corp.fast.net with Internet Mail Service (5.5.2653.19) id <20SLKGF8>; Wed, 17 Apr 2002 14:59:05 -0400 Message-ID: <684A8B4FD94E464283C3ABA6AE65214102D9BB76@fnexchange2.corp.fast.net> From: Jerry Wilborn To: "'vserver@solucorp.qc.ca'" Subject: [vserver] blocking ssh access from virtual server to physical one Date: Wed, 17 Apr 2002 14:59:05 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 508 i tried implementing ipchains rules on the physical server to reject packets, tried hosts.allow/deny combis has anyone been able to successfully block traffic coming from a virtual server going to the physical server's ip? Jerry Wilborn, Operations Engineer FASTNET - Internet Solutions 610-266-6700 www.fast.net From vserver.error@solucorp.qc.ca Wed Apr 17 15:57:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3HJvT3Q002277; Wed, 17 Apr 2002 15:57:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3HJkvi30701 for vserver.list; Wed, 17 Apr 2002 15:46:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3HJkuh30697 for ; Wed, 17 Apr 2002 15:46:57 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:64268 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Wed, 17 Apr 2002 21:48:55 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Wed, 17 Apr 2002 21:46:27 +0200 Date: Wed, 17 Apr 2002 21:46:27 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] blocking ssh access from virtual server to physical one Message-ID: <20020417214627.F2509@4t2.com> References: <684A8B4FD94E464283C3ABA6AE65214102D9BB76@fnexchange2.corp.fast.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <684A8B4FD94E464283C3ABA6AE65214102D9BB76@fnexchange2.corp.fast.net>; from jerry.wilborn@fast.net on Wed, Apr 17, 2002 at 02:59:05PM -0400 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 509 On Wed, Apr 17, 2002 at 02:59:05PM -0400, Jerry Wilborn wrote: > i tried implementing ipchains rules on the physical server to reject > packets, tried hosts.allow/deny combis > > has anyone been able to successfully block traffic coming from a virtual > server going to the physical server's ip? should be straight forward. With iptables it'd be like this: iptables -I INPUT -s vserversaddress --dport ssh -j DROP Tom From vserver.error@solucorp.qc.ca Thu Apr 18 19:44:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3INif3Q016691; Thu, 18 Apr 2002 19:44:41 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3INNRM07220 for vserver.list; Thu, 18 Apr 2002 19:23:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.acun.com (mail-gateway.acun.com [206.27.86.3]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3INNQh07216 for ; Thu, 18 Apr 2002 19:23:26 -0400 Received: from there (nosyarntya@darkstar.acun.net [206.27.86.12]) by ns1.acun.com (8.11.6/8.11.6) with SMTP id g3INORK09669 for ; Thu, 18 Apr 2002 19:24:27 -0400 Message-Id: <200204182324.g3INORK09669@ns1.acun.com> Content-Type: text/plain; charset="iso-8859-1" From: George Organization: Alien Rebel To: vserver@solucorp.qc.ca Subject: [vserver] Virtual web hosting and XFS stuff Date: Thu, 18 Apr 2002 19:23:30 -0400 X-Mailer: KMail [version 1.3.2] MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g3INNQh07216 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 510 In the documentation this statement is made: Using port redirection to allow one virtual server to logically bind several IPs. One virtual server could run several web virtual host this way. Has anyone got around to allowing one to bind several ips to a vserver so apache can so web virtual hosting across several ip's? Excerpt from mailing list archive, not sure who actually authored the statement: << Actually i stopped to maintain the patches, the one above have a small bug (don't unbind ports in a vserver) it was more meant as an example for discussion and inclusion in the main vserver patch. The Idea was to provide tow ip/mask pairs to chbind, so it becomes possible to bind to 2 ip-ranges (the first IP is the default) and masking out which bits in an IP are immutable. Later the vserver-user should be able to constrain the range to a subset of his available IP's. The usage is straightforward (look in chbind.c) chbind got a few more options (--ip1/--mask1/--net2/--mask2) thats all. This days i have no time to work on it(i got married today :) ). In January i will fix the bugs and sync it with te actual vserver release. But i still would like to see it included in the main trunk if there is intrest of it, since i dont want to maintain a 50 lines patch in parallel. >> On another note, I got the 2.4.18 kernel built with XFS V1.1 and vserver CTX10, seems to be working ok, although I saw in the mailing list the following: > OK, so after some more digging, it would seem that XFS doesn't support the > IMMUTABLE flag, or really anything like it. Refer to: > http://oss.sgi.com/projects/xfs/mail_archive/0012/msg00073.html. The > source is a bit weird, quite unlike most the source of the other > filesystems I've seen in linux ... so vserver unification in XFS probably > isn't going to happen anytime soon. :-( > > _Paul K. Is this something I should be worrying about? George. From vserver.error@solucorp.qc.ca Fri Apr 19 16:35:09 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3JKZ73Q027409; Fri, 19 Apr 2002 16:35:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3JKQU003937 for vserver.list; Fri, 19 Apr 2002 16:26:30 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from velocity.liquidweb.com (ns.liquidweb.com [64.91.224.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3JKQUh03933 for ; Fri, 19 Apr 2002 16:26:30 -0400 Received: from ip-64-7-177-54.mercury.net ([64.7.177.54] helo=liquidweb.com) by velocity.liquidweb.com with asmtp (Exim 3.35 #1) id 16yexH-0003Ql-00 for vserver@solucorp.qc.ca; Fri, 19 Apr 2002 16:26:03 -0400 Message-ID: <3CC07DCF.1040708@liquidweb.com> Date: Fri, 19 Apr 2002 16:27:59 -0400 From: Matthew Hill User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.8) Gecko/20020212 X-Accept-Language: en-us MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] newvserver segfaults Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-AntiAbuse: Sender Address Domain - liquidweb.com Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 511 Hello, Having a problem with the newvserver script, haven't had problems previous however it consistently segfaults on this box. Any ideas? root@vserver [~]# uname -a Linux vserver.liquidweb.com 2.4.18ctx-10 #1 Mon Apr 8 16:57:33 EDT 2002 i686 unknown root@vserver [~]# rpm -q vserver-admin vserver linuxconf-lib linuxconf-util vserver-admin-0.17-1 vserver-0.17-1 linuxconf-lib-1.27r3-1 linuxconf-util-1.27r3-1 root@vserver [~]# /usr/sbin/newvserver Segmentation fault Strace is as follows: root@vserver [~]# strace /usr/sbin/newvserver execve("/usr/sbin/newvserver", ["/usr/sbin/newvserver"], [/* 27 vars */]) = 0 uname({sys="Linux", node="vserver.liquidweb.com", ...}) = 0 brk(0) = 0x806e1fc old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x40016000 open("/etc/ld.so.preload", O_RDONLY) = -1 ENOENT (No such file or directory) open("/etc/ld.so.cache", O_RDONLY) = 3 fstat64(3, {st_mode=S_IFREG|0644, st_size=28307, ...}) = 0 old_mmap(NULL, 28307, PROT_READ, MAP_PRIVATE, 3, 0) = 0x40017000 close(3) = 0 open("/usr/lib/liblinuxconf.so.1", O_RDONLY) = 3 read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\200Q\3"..., 1024) = 1024 fstat64(3, {st_mode=S_IFREG|0755, st_size=1897288, ...}) = 0 old_mmap(NULL, 714968, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) = 0x4001e000 mprotect(0x4009e000, 190680, PROT_NONE) = 0 old_mmap(0x4009e000, 102400, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 3, 0x7f000) = 0x4009e000 old_mmap(0x400b7000, 88280, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400b7000 close(3) = 0 open("/lib/libc.so.6", O_RDONLY) = 3 read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\360\303"..., 1024) = 1024 fstat64(3, {st_mode=S_IFREG|0755, st_size=5723311, ...}) = 0 old_mmap(NULL, 1265288, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) = 0x400cd000 mprotect(0x401f9000, 36488, PROT_NONE) = 0 old_mmap(0x401f9000, 20480, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 3, 0x12b000) = 0x401f9000 old_mmap(0x401fe000, 16008, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x401fe000 close(3) = 0 --- SIGSEGV (Segmentation fault) --- +++ killed by SIGSEGV +++ From vserver.error@solucorp.qc.ca Sat Apr 20 08:25:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3KCPn3Q002237; Sat, 20 Apr 2002 08:25:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3KCF7Z22646 for vserver.list; Sat, 20 Apr 2002 08:15:07 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from bigalke.de (bigalke65.insol.de [62.80.100.65] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3KCF6h22642 for ; Sat, 20 Apr 2002 08:15:06 -0400 Received: from bigalke.de (shb145.db [192.168.0.145]) by bigalke.de (8.8.8/8.8.3) with ESMTP id OAA06429 for ; Sat, 20 Apr 2002 14:14:29 +0200 Message-ID: <3CC15BA4.40005@bigalke.de> Date: Sat, 20 Apr 2002 14:14:28 +0200 From: Dieter Bigalke User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; de-DE; rv:0.9.4) Gecko/20011128 Netscape6/6.2.1 X-Accept-Language: de-DE MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] newvserver segfaults References: <3CC07DCF.1040708@liquidweb.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.5 required=5.0 tests=MAY_BE_FORGED version=2.01 Status: RO X-Status: X-Keywords: X-UID: 512 Hello Matthew, i think there are linuxconf rpms for redhat and suse, try the other one. Dieter Matthew Hill wrote: > Hello, > > Having a problem with the newvserver script, haven't had problems previous > however it consistently segfaults on this box. > > Any ideas? > From vserver.error@solucorp.qc.ca Sat Apr 20 14:09:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3KI9k3Q004566; Sat, 20 Apr 2002 14:09:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3KI0RE30200 for vserver.list; Sat, 20 Apr 2002 14:00:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.thedeacon.org (thedeacon.org [64.71.202.149]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3KI0Qh30196 for ; Sat, 20 Apr 2002 14:00:26 -0400 Received: from thedeacon.org (cyrix-m3.thedeacon.org [172.23.172.133]) by mail.thedeacon.org (Postfix) with SMTP id D8AF1241E7 for ; Sun, 21 Apr 2002 13:45:55 -0600 (MDT) Received: from 172.23.172.143 (SquirrelMail authenticated user deacon) by webmail.thedeacon.org with HTTP; Sat, 20 Apr 2002 12:07:58 -0600 (MDT) Message-ID: <2094.172.23.172.143.1019326078.squirrel@webmail.thedeacon.org> Date: Sat, 20 Apr 2002 12:07:58 -0600 (MDT) Subject: Re: [vserver] Virtual web hosting and XFS stuff From: "Paul Kreiner" To: In-Reply-To: <200204182324.g3INORK09669@ns1.acun.com> References: <200204182324.g3INORK09669@ns1.acun.com> X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.5) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 513 George said: > On another note, I got the 2.4.18 kernel built with XFS V1.1 and > vserver CTX10, seems to be working ok, although I saw in the mailing > list the following: > >> OK, so after some more digging, it would seem that XFS doesn't support >> the IMMUTABLE flag, or really anything like it. Refer to: >> http://oss.sgi.com/projects/xfs/mail_archive/0012/msg00073.html. The >> source is a bit weird, quite unlike most the source of the other >> filesystems I've seen in linux ... so vserver unification in XFS >> probably isn't going to happen anytime soon. :-( >> >> _Paul K. > > Is this something I should be worrying about? George, I wouldn't worry too much about it ... you'll just waste a bit more disk space and memory (both are pretty cheap these days) by not having your vservers' filesystems unified. I've built a couple systems using XFS+vserver, back in the ctx6-7 days, and they work fine, just don't do any of the vserver unification stuff, 'cause it won't behave. _Paul K. From vserver.error@solucorp.qc.ca Mon Apr 22 05:48:48 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3M9ml3Q015508; Mon, 22 Apr 2002 05:48:47 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3M9DHa20362 for vserver.list; Mon, 22 Apr 2002 05:13:17 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3M9DBh20357 for ; Mon, 22 Apr 2002 05:13:16 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16zZse-0006Lg-00 for ; Mon, 22 Apr 2002 11:13:04 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16zZse-0006LV-00 for ; Mon, 22 Apr 2002 11:13:04 +0200 Sender: jon@silicide.dk Message-ID: <3CC3D420.292C6586@silicide.dk> Date: Mon, 22 Apr 2002 11:13:04 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] blocking ssh access from virtual server to physical one References: <684A8B4FD94E464283C3ABA6AE65214102D9BB76@fnexchange2.corp.fast.net> <20020417214627.F2509@4t2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 514 Thomas Weber wrote: > > On Wed, Apr 17, 2002 at 02:59:05PM -0400, Jerry Wilborn wrote: > > i tried implementing ipchains rules on the physical server to reject > > packets, tried hosts.allow/deny combis > > > > has anyone been able to successfully block traffic coming from a virtual > > server going to the physical server's ip? > > should be straight forward. With iptables it'd be like this: > iptables -I INPUT -s vserversaddress --dport ssh -j DROP And what if the IP address is the same as the server ?? What if you used the interface option?? So, only allowing from ethX? JonB From vserver.error@solucorp.qc.ca Mon Apr 22 05:50:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3M9oo3Q015538; Mon, 22 Apr 2002 05:50:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3M9Zhb20792 for vserver.list; Mon, 22 Apr 2002 05:35:43 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from velocity.liquidweb.com (ns.liquidweb.com [64.91.224.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3M9Zgh20788 for ; Mon, 22 Apr 2002 05:35:43 -0400 Received: from 12-245-222-41.client.attbi.com ([12.245.222.41] helo=liquidweb.com) by velocity.liquidweb.com with asmtp (Exim 3.35 #1) id 16zaEV-0007ig-00 for vserver@solucorp.qc.ca; Mon, 22 Apr 2002 05:35:39 -0400 Message-ID: <3CC3D8C1.10408@liquidweb.com> Date: Mon, 22 Apr 2002 05:32:49 -0400 From: Matthew Hill User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020311 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] newvserver segfaults References: <3CC07DCF.1040708@liquidweb.com> <3CC15BA4.40005@bigalke.de> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-AntiAbuse: Sender Address Domain - liquidweb.com Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 515 Dieter, I did previously download the linxuconf rpm's supplied via the interface on solucorp, and they were correct for redhat. For whatever reason after erasing all and re-installing with 1.27r5 (was 1.27r3) plus all devel libraries and it now functions. I thank you for the suggestion. Dieter Bigalke wrote: > Hello Matthew, > > i think there are linuxconf rpms for redhat and suse, try the other one. > > Dieter > > Matthew Hill wrote: > >> Hello, >> >> Having a problem with the newvserver script, haven't had problems >> previous >> however it consistently segfaults on this box. >> >> Any ideas? >> > From vserver.error@solucorp.qc.ca Mon Apr 22 06:03:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3MA3t3Q015606; Mon, 22 Apr 2002 06:03:56 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3M9o2t21112 for vserver.list; Mon, 22 Apr 2002 05:50:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3M9o1h21108 for ; Mon, 22 Apr 2002 05:50:01 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16zaSO-0006NM-00 for ; Mon, 22 Apr 2002 11:50:00 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16zaSO-0006NC-00 for ; Mon, 22 Apr 2002 11:50:00 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Mon, 22 Apr 2002 11:50:00 +0200 (CEST) Received: (qmail 33664 invoked from network); 22 Apr 2002 09:49:16 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 22 Apr 2002 09:49:16 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3M9DHa20362 for vserver.list; Mon, 22 Apr 2002 05:13:17 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3M9DBh20357 for ; Mon, 22 Apr 2002 05:13:16 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16zZse-0006Lg-00 for ; Mon, 22 Apr 2002 11:13:04 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16zZse-0006LV-00 for ; Mon, 22 Apr 2002 11:13:04 +0200 Sender: jon@silicide.dk Message-ID: <3CC3D420.292C6586@silicide.dk> Date: Mon, 22 Apr 2002 11:13:04 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] blocking ssh access from virtual server to physical one References: <684A8B4FD94E464283C3ABA6AE65214102D9BB76@fnexchange2.corp.fast.net> <20020417214627.F2509@4t2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 516 Thomas Weber wrote: > > On Wed, Apr 17, 2002 at 02:59:05PM -0400, Jerry Wilborn wrote: > > i tried implementing ipchains rules on the physical server to reject > > packets, tried hosts.allow/deny combis > > > > has anyone been able to successfully block traffic coming from a virtual > > server going to the physical server's ip? > > should be straight forward. With iptables it'd be like this: > iptables -I INPUT -s vserversaddress --dport ssh -j DROP And what if the IP address is the same as the server ?? What if you used the interface option?? So, only allowing from ethX? JonB From vserver.error@solucorp.qc.ca Mon Apr 22 10:33:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3MEXD3Q017461; Mon, 22 Apr 2002 10:33:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3MEMJ427758 for vserver.list; Mon, 22 Apr 2002 10:22:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3MEMIh27754 for ; Mon, 22 Apr 2002 10:22:19 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:51207 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Mon, 22 Apr 2002 16:25:04 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Mon, 22 Apr 2002 16:21:47 +0200 Date: Mon, 22 Apr 2002 16:21:47 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] blocking ssh access from virtual server to physical one Message-ID: <20020422162147.N2509@4t2.com> References: <684A8B4FD94E464283C3ABA6AE65214102D9BB76@fnexchange2.corp.fast.net> <20020417214627.F2509@4t2.com> <3CC3D420.292C6586@silicide.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <3CC3D420.292C6586@silicide.dk>; from jon+vserver@silicide.dk on Mon, Apr 22, 2002 at 11:13:04AM +0200 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 517 On Mon, Apr 22, 2002 at 11:13:04AM +0200, Jon Bendtsen wrote: > Thomas Weber wrote: > > > > On Wed, Apr 17, 2002 at 02:59:05PM -0400, Jerry Wilborn wrote: > > > i tried implementing ipchains rules on the physical server to reject > > > packets, tried hosts.allow/deny combis > > > > > > has anyone been able to successfully block traffic coming from a virtual > > > server going to the physical server's ip? > > > > should be straight forward. With iptables it'd be like this: > > iptables -I INPUT -s vserversaddress --dport ssh -j DROP > > And what if the IP address is the same as the server ?? > > What if you used the interface option?? So, only allowing from ethX? huh? i don't understand what you wanna do. Each of your vservers has one IP address to which the processes in the vserver can bind. So block incoming traffic from this address and you're done. Tom From vserver.error@solucorp.qc.ca Mon Apr 22 10:47:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3MEl63Q017578; Mon, 22 Apr 2002 10:47:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3MEVb128122 for vserver.list; Mon, 22 Apr 2002 10:31:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from fnexchange2.corp.fast.net (fnexchange2.corp.fast.net [209.92.29.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3MEVbh28118 for ; Mon, 22 Apr 2002 10:31:37 -0400 Received: by fnexchange2.corp.fast.net with Internet Mail Service (5.5.2653.19) id ; Mon, 22 Apr 2002 10:31:37 -0400 Message-ID: <684A8B4FD94E464283C3ABA6AE65214102D9BBA6@fnexchange2.corp.fast.net> From: Jerry Wilborn To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] blocking ssh access from virtual server to physical one Date: Mon, 22 Apr 2002 10:31:27 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.0 required=5.0 tests=SUBJ_HAS_SPACES,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 518 fyi, the rules DO reject machines that are not within the allowed block, so it seems the rules are good/applied for traffic coming off the wire. Jerry Wilborn, Operations Engineer FASTNET - Internet Solutions 610-266-6700 www.fast.net -----Original Message----- From: Jerry Wilborn [mailto:jerry.wilborn@fast.net] Sent: Monday, April 22, 2002 10:29 AM To: 'vserver@solucorp.qc.ca' Subject: RE: [vserver] blocking ssh access from virtual server to physical one packet level rules dont appear to work; here are my rules and ipchains -v L -n it only disallows a connection if i add something to hosts.allow/deny. but then again you can tell that the port is open from the virtual machine. from /etc/sysconfig/ipchains :input ACCEPT :forward REJECT :output ACCEPT -A input -s 0/0 -d 0/0 -i lo -j ACCEPT -A input -p tcp -s 205.147.200.0/24 -d 0/0 22 -i eth0 -j ACCEPT -A input -p tcp -s 0/0 -d 0/0 22 -i lo -j REJECT -A input -p tcp -s 0/0 -d 0/0 0:1023 -y -j REJECT -A input -p tcp -s 0/0 -d 0/0 2049 -y -j REJECT -A input -p udp -s 0/0 -d 0/0 0:1023 -j REJECT -A input -p udp -s 0/0 -d 0/0 2049 -j REJECT -A input -p tcp -s 0/0 -d 0/0 6000:6009 -y -j REJECT -A input -p tcp -s 0/0 -d 0/0 7100 -y -j REJECT [root@jerrytest root]# ipchains -L -n -v Chain input (policy ACCEPT: 182019 packets, 14019944 bytes): pkts bytes target prot opt tosa tosx ifname mark outsize source destination ports 28 1928 ACCEPT all ------ 0xFF 0x00 lo 0.0.0.0/0 0.0.0.0/0 n/a 4297 322K ACCEPT tcp ------ 0xFF 0x00 eth0 205.147.200.0/24 0.0.0.0/0 * -> 22 0 0 REJECT tcp ------ 0xFF 0x00 lo 0.0.0.0/0 0.0.0.0/0 * -> 22 524 23916 REJECT tcp -y---- 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 0:1023 0 0 REJECT tcp -y---- 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 2049 54852 6529K REJECT udp ------ 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 0:1023 0 0 REJECT udp ------ 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 2049 0 0 REJECT tcp -y---- 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 6000:6009 0 0 REJECT tcp -y---- 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 7100 Chain forward (policy REJECT: 0 packets, 0 bytes): Chain output (policy ACCEPT: 223468 packets, 23335617 bytes): Jerry Wilborn, Operations Engineer FASTNET - Internet Solutions 610-266-6700 www.fast.net -----Original Message----- From: Thomas Weber [mailto:l_vserver@mail2news.4t2.com] Sent: Monday, April 22, 2002 10:22 AM To: vserver@solucorp.qc.ca Subject: Re: [vserver] blocking ssh access from virtual server to physical one On Mon, Apr 22, 2002 at 11:13:04AM +0200, Jon Bendtsen wrote: > Thomas Weber wrote: > > > > On Wed, Apr 17, 2002 at 02:59:05PM -0400, Jerry Wilborn wrote: > > > i tried implementing ipchains rules on the physical server to reject > > > packets, tried hosts.allow/deny combis > > > > > > has anyone been able to successfully block traffic coming from a virtual > > > server going to the physical server's ip? > > > > should be straight forward. With iptables it'd be like this: > > iptables -I INPUT -s vserversaddress --dport ssh -j DROP > > And what if the IP address is the same as the server ?? > > What if you used the interface option?? So, only allowing from ethX? huh? i don't understand what you wanna do. Each of your vservers has one IP address to which the processes in the vserver can bind. So block incoming traffic from this address and you're done. Tom From vserver.error@solucorp.qc.ca Mon Apr 22 10:47:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3MElq3Q017586; Mon, 22 Apr 2002 10:47:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3MESlK27977 for vserver.list; Mon, 22 Apr 2002 10:28:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from fnexchange2.corp.fast.net (fnexchange2.corp.fast.net [209.92.29.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3MESlh27973 for ; Mon, 22 Apr 2002 10:28:47 -0400 Received: by fnexchange2.corp.fast.net with Internet Mail Service (5.5.2653.19) id ; Mon, 22 Apr 2002 10:28:47 -0400 Message-ID: <684A8B4FD94E464283C3ABA6AE65214102D9BBA5@fnexchange2.corp.fast.net> From: Jerry Wilborn To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] blocking ssh access from virtual server to physical one Date: Mon, 22 Apr 2002 10:28:38 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.0 required=5.0 tests=SUBJ_HAS_SPACES,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 519 packet level rules dont appear to work; here are my rules and ipchains -v L -n it only disallows a connection if i add something to hosts.allow/deny. but then again you can tell that the port is open from the virtual machine. from /etc/sysconfig/ipchains :input ACCEPT :forward REJECT :output ACCEPT -A input -s 0/0 -d 0/0 -i lo -j ACCEPT -A input -p tcp -s 205.147.200.0/24 -d 0/0 22 -i eth0 -j ACCEPT -A input -p tcp -s 0/0 -d 0/0 22 -i lo -j REJECT -A input -p tcp -s 0/0 -d 0/0 0:1023 -y -j REJECT -A input -p tcp -s 0/0 -d 0/0 2049 -y -j REJECT -A input -p udp -s 0/0 -d 0/0 0:1023 -j REJECT -A input -p udp -s 0/0 -d 0/0 2049 -j REJECT -A input -p tcp -s 0/0 -d 0/0 6000:6009 -y -j REJECT -A input -p tcp -s 0/0 -d 0/0 7100 -y -j REJECT [root@jerrytest root]# ipchains -L -n -v Chain input (policy ACCEPT: 182019 packets, 14019944 bytes): pkts bytes target prot opt tosa tosx ifname mark outsize source destination ports 28 1928 ACCEPT all ------ 0xFF 0x00 lo 0.0.0.0/0 0.0.0.0/0 n/a 4297 322K ACCEPT tcp ------ 0xFF 0x00 eth0 205.147.200.0/24 0.0.0.0/0 * -> 22 0 0 REJECT tcp ------ 0xFF 0x00 lo 0.0.0.0/0 0.0.0.0/0 * -> 22 524 23916 REJECT tcp -y---- 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 0:1023 0 0 REJECT tcp -y---- 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 2049 54852 6529K REJECT udp ------ 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 0:1023 0 0 REJECT udp ------ 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 2049 0 0 REJECT tcp -y---- 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 6000:6009 0 0 REJECT tcp -y---- 0xFF 0x00 * 0.0.0.0/0 0.0.0.0/0 * -> 7100 Chain forward (policy REJECT: 0 packets, 0 bytes): Chain output (policy ACCEPT: 223468 packets, 23335617 bytes): Jerry Wilborn, Operations Engineer FASTNET - Internet Solutions 610-266-6700 www.fast.net -----Original Message----- From: Thomas Weber [mailto:l_vserver@mail2news.4t2.com] Sent: Monday, April 22, 2002 10:22 AM To: vserver@solucorp.qc.ca Subject: Re: [vserver] blocking ssh access from virtual server to physical one On Mon, Apr 22, 2002 at 11:13:04AM +0200, Jon Bendtsen wrote: > Thomas Weber wrote: > > > > On Wed, Apr 17, 2002 at 02:59:05PM -0400, Jerry Wilborn wrote: > > > i tried implementing ipchains rules on the physical server to reject > > > packets, tried hosts.allow/deny combis > > > > > > has anyone been able to successfully block traffic coming from a virtual > > > server going to the physical server's ip? > > > > should be straight forward. With iptables it'd be like this: > > iptables -I INPUT -s vserversaddress --dport ssh -j DROP > > And what if the IP address is the same as the server ?? > > What if you used the interface option?? So, only allowing from ethX? huh? i don't understand what you wanna do. Each of your vservers has one IP address to which the processes in the vserver can bind. So block incoming traffic from this address and you're done. Tom From vserver.error@solucorp.qc.ca Mon Apr 22 10:53:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3MErc3Q017619; Mon, 22 Apr 2002 10:53:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3MEcDw28404 for vserver.list; Mon, 22 Apr 2002 10:38:13 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3MEcDh28400 for ; Mon, 22 Apr 2002 10:38:13 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16zexI-0006X9-00 for ; Mon, 22 Apr 2002 16:38:12 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16zexI-0006Wy-00 for ; Mon, 22 Apr 2002 16:38:12 +0200 Sender: jon@silicide.dk Message-ID: <3CC42054.63DD6B7B@silicide.dk> Date: Mon, 22 Apr 2002 16:38:12 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] blocking ssh access from virtual server to physical one References: <684A8B4FD94E464283C3ABA6AE65214102D9BB76@fnexchange2.corp.fast.net> <20020417214627.F2509@4t2.com> <3CC3D420.292C6586@silicide.dk> <20020422162147.N2509@4t2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 520 Thomas Weber wrote: > > On Mon, Apr 22, 2002 at 11:13:04AM +0200, Jon Bendtsen wrote: > > Thomas Weber wrote: > > > > > > On Wed, Apr 17, 2002 at 02:59:05PM -0400, Jerry Wilborn wrote: > > > > i tried implementing ipchains rules on the physical server to reject > > > > packets, tried hosts.allow/deny combis > > > > > > > > has anyone been able to successfully block traffic coming from a virtual > > > > server going to the physical server's ip? > > > > > > should be straight forward. With iptables it'd be like this: > > > iptables -I INPUT -s vserversaddress --dport ssh -j DROP > > > > And what if the IP address is the same as the server ?? > > > > What if you used the interface option?? So, only allowing from ethX? > > huh? i don't understand what you wanna do. Each of your vservers has one IP > address to which the processes in the vserver can bind. So block incoming > traffic from this address and you're done. Okay, i was unclear. You dont have to block it. Usualy you can specify a ! infront to revert the testing, or else you can just do "allow" all trafic to the port he wants protected that comes from ethX, or not his own ip. JonB From vserver.error@solucorp.qc.ca Mon Apr 22 11:28:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3MFS33Q017954; Mon, 22 Apr 2002 11:28:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3MEshQ28872 for vserver.list; Mon, 22 Apr 2002 10:54:43 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3MEshh28868 for ; Mon, 22 Apr 2002 10:54:43 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16zfDG-0006YF-00 for ; Mon, 22 Apr 2002 16:54:42 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16zfDG-0006Y5-00 for ; Mon, 22 Apr 2002 16:54:42 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Mon, 22 Apr 2002 16:54:42 +0200 (CEST) Received: (qmail 98722 invoked from network); 22 Apr 2002 14:54:06 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by ns.dht.dk with SMTP; 22 Apr 2002 14:54:06 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3MEcDw28404 for vserver.list; Mon, 22 Apr 2002 10:38:13 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3MEcDh28400 for ; Mon, 22 Apr 2002 10:38:13 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 16zexI-0006X9-00 for ; Mon, 22 Apr 2002 16:38:12 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 16zexI-0006Wy-00 for ; Mon, 22 Apr 2002 16:38:12 +0200 Sender: jon@silicide.dk Message-ID: <3CC42054.63DD6B7B@silicide.dk> Date: Mon, 22 Apr 2002 16:38:12 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] blocking ssh access from virtual server to physical one References: <684A8B4FD94E464283C3ABA6AE65214102D9BB76@fnexchange2.corp.fast.net> <20020417214627.F2509@4t2.com> <3CC3D420.292C6586@silicide.dk> <20020422162147.N2509@4t2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 521 Thomas Weber wrote: > > On Mon, Apr 22, 2002 at 11:13:04AM +0200, Jon Bendtsen wrote: > > Thomas Weber wrote: > > > > > > On Wed, Apr 17, 2002 at 02:59:05PM -0400, Jerry Wilborn wrote: > > > > i tried implementing ipchains rules on the physical server to reject > > > > packets, tried hosts.allow/deny combis > > > > > > > > has anyone been able to successfully block traffic coming from a virtual > > > > server going to the physical server's ip? > > > > > > should be straight forward. With iptables it'd be like this: > > > iptables -I INPUT -s vserversaddress --dport ssh -j DROP > > > > And what if the IP address is the same as the server ?? > > > > What if you used the interface option?? So, only allowing from ethX? > > huh? i don't understand what you wanna do. Each of your vservers has one IP > address to which the processes in the vserver can bind. So block incoming > traffic from this address and you're done. Okay, i was unclear. You dont have to block it. Usualy you can specify a ! infront to revert the testing, or else you can just do "allow" all trafic to the port he wants protected that comes from ethX, or not his own ip. JonB From vserver.error@solucorp.qc.ca Tue Apr 23 05:59:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3N9wx3Q027658; Tue, 23 Apr 2002 05:59:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3N9HrS21462 for vserver.list; Tue, 23 Apr 2002 05:17:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from april.netcraft.com.au (april.netcraft.com.au [203.16.231.73]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3N9Hph21458 for ; Tue, 23 Apr 2002 05:17:52 -0400 Received: (from g@localhost) by april.netcraft.com.au (8.11.6/8.11.6) id g3N9Hh118115 for vserver@solucorp.qc.ca; Tue, 23 Apr 2002 18:47:43 +0930 Date: Tue, 23 Apr 2002 18:47:43 +0930 From: "Geoffrey D. Bennett" To: vserver@solucorp.qc.ca Subject: [vserver] strace in ctx 1 Message-ID: <20020423184743.H14070@april.netcraft.com.au> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 522 Hi all, Does anyone else have problems running strace from ctx 1 on a process in a different context? It looks like this test: if (!child || child->s_context != current->s_context) goto out; should check for current->context != 1? Regards, -- Geoffrey D. Bennett, RHCE, RHCX geoffrey@netcraft.com.au Senior Systems Engineer http://www.netcraft.com.au/geoffrey/ NetCraft Australia Pty Ltd http://www.netcraft.com.au/linux/ From vserver.error@solucorp.qc.ca Wed Apr 24 14:01:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3OI1K3Q010118; Wed, 24 Apr 2002 14:01:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3OHfXB01718 for vserver.list; Wed, 24 Apr 2002 13:41:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3OHfWh01714 for ; Wed, 24 Apr 2002 13:41:33 -0400 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g3OHdXk16770 for ; Wed, 24 Apr 2002 18:39:33 +0100 Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 170Qli-00085K-00 for ; Wed, 24 Apr 2002 18:41:26 +0100 Date: Wed, 24 Apr 2002 18:41:25 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: [vserver] www.cplusplussucks.com X-Mailer: Sylpheed version 0.7.4 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.3 required=5.0 tests=SUPERLONG_LINE,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 523 I'm getting this wierd compile error on one of my test machines: linux10321:~/vserver/dist/vserver-0.17$ make gcc -funsigned-char -Wall -g -DVERSION=\"0.17\" chcontext.cc syscall.o -o chcontext \ -lstdc++ In file included from /usr/include/sys/wait.h:39, from vutil.h:7, from chcontext.cc:17: /usr/include/bits/waitflags.h:26: warning: `WNOHANG' redefined /usr/include/linux/wait.h:4: warning: this is the location of the previous definition /usr/include/bits/waitflags.h:27: warning: `WUNTRACED' redefined /usr/include/linux/wait.h:5: warning: this is the location of the previous definition In file included from /usr/include/g++-2/alloc.h:21, from /usr/include/g++-2/std/bastring.h:39, from /usr/include/g++-2/string:6, from vutil.h:8, from chcontext.cc:17: /usr/include/g++-2/stl_alloc.h:320: parse error before `.' /usr/include/g++-2/stl_alloc.h:320: missing ';' before right brace /usr/include/g++-2/stl_alloc.h:322: parse error before `.' /usr/include/g++-2/stl_alloc.h: In function `size_t ROUND_UP(size_t)': /usr/include/g++-2/stl_alloc.h:325: parse error before `.' /usr/include/g++-2/stl_alloc.h:325: parse error before `.' /usr/include/g++-2/stl_alloc.h:326: warning: control reaches end of non-void function `ROUND_UP(size_t)' /usr/include/g++-2/stl_alloc.h: At top level: /usr/include/g++-2/stl_alloc.h:327: parse error before `private' /usr/include/g++-2/stl_alloc.h:331: parse error before `}' /usr/include/g++-2/stl_alloc.h: In function `size_t FREELIST_INDEX(size_t)': /usr/include/g++-2/stl_alloc.h:340: parse error before `.' /usr/include/g++-2/stl_alloc.h:341: warning: control reaches end of non-void function `FREELIST_INDEX(size_t)' /usr/include/g++-2/stl_alloc.h: In method `lock::lock()': /usr/include/g++-2/stl_alloc.h:382: `threads' undeclared (first use this function) /usr/include/g++-2/stl_alloc.h:382: (Each undeclared identifier is reported only once /usr/include/g++-2/stl_alloc.h:382: for each function it appears in.) /usr/include/g++-2/stl_alloc.h: In method `lock::~lock()': /usr/include/g++-2/stl_alloc.h:383: confused by earlier errors, bailing out make: *** [chcontext] Error 1 linux10321:~/vserver/dist/vserver-0.17$ Any ideas? Something odd seems to be going wrong with the `#include ' in vutils.h Versions 0.16 and 0.14 have a different problem: linux10321:~/vserver/dist/vserver-0.16$ make g++ -c -o syscall.o syscall.cc gcc -funsigned-char -Wall -g -DVERSION=\"0.16\" chbind.cc syscall.o -o chbind /tmp/cc1gxINB.o: In function `__rb_tree_base_iterator::decrement(void)': /usr/include/g++-2/stl_tree.h(.__malloc_alloc_template<0>::gnu.linkonce.t.oom_malloc(unsigned int)+0x17): undefined reference to `endl(ostream &)' /usr/include/g++-2/stl_tree.h(.__malloc_alloc_template<0>::gnu.linkonce.t.oom_malloc(unsigned int)+0x21): undefined reference to `cerr' /usr/include/g++-2/stl_tree.h(.__malloc_alloc_template<0>::gnu.linkonce.t.oom_malloc(unsigned int)+0x26): undefined reference to `ostream::operator<<(char const *)' /usr/include/g++-2/stl_tree.h(.__malloc_alloc_template<0>::gnu.linkonce.t.oom_malloc(unsigned int)+0x31): undefined reference to `ostream::operator<<(ostream &(*)(ostream &))' /usr/include/g++-2/stl_tree.h(.basic_string, __default_alloc_template<1, 0> >::Rep::gnu.linkonce.t.copy(unsigned int, char const *, unsigned int)+0x2a): undefined reference to `string_char_traits::copy(char *, char const *, unsigned int)' /usr/include/g++-2/stl_tree.h(.basic_string, __default_alloc_template<1, 0> >::Rep::gnu.linkonce.t.move(unsigned int, char const *, unsigned int)+0x2a): undefined reference to `string_char_traits::move(char *, char const *, unsigned int)' /usr/include/g++-2/stl_tree.h(.basic_string, __default_alloc_template<1, 0> >::gnu.linkonce.t.replace(unsigned int, unsigned int, char const *, unsigned int)+0x2e): undefined reference to `__out_of_range(char const *)' /tmp/cc1gxINB.o: In function `chbind_devexist(char const *)': /home/sv/vserver/dist/vserver-0.16/chbind.cc:39: undefined reference to `__length_error(char const *)' /home/sv/vserver/dist/vserver-0.16/chbind.cc:35: undefined reference to `__out_of_range(char const *)' /home/sv/vserver/dist/vserver-0.16/chbind.cc:40: undefined reference to `__length_error(char const *)' /tmp/cc1gxINB.o: In function `ifconfig_getaddr(char const *, unsigned long &, unsigned long &)': /home/sv/vserver/dist/vserver-0.16/chbind.cc:75: undefined reference to `string_char_traits::assign(char &, char const &)' /home/sv/vserver/dist/vserver-0.16/chbind.cc:87: undefined reference to `string_char_traits::assign(char &, char const &)' /tmp/cc1gxINB.o: In function `__rb_tree_base_iterator::decrement(void)': /usr/include/g++-2/stl_tree.h(.basic_string, __default_alloc_template<1, 0> >::gnu.linkonce.t.compare(basic_string, __default_alloc_template<1, 0> > const &, unsigned int, unsigned int) const+0x26): undefined reference to `__out_of_range(char const *)' /tmp/cc1gxINB.o: In function `chbind_devexist(char const *)': /home/sv/vserver/dist/vserver-0.16/chbind.cc:40: undefined reference to `string_char_traits::compare(char const *, char const *, unsigned int)' /tmp/cc1gxINB.o: In function `__rb_tree_base_iterator::decrement(void)': /usr/include/g++-2/stl_tree.h(.gnu.linkonce.t.__ls__H3ZcZt18string_char_traits1ZcZt24__default_alloc_template2b1i0_R7ostreamRCt12basic_string3ZX01ZX11ZX21_R7ostream+0x26): undefined reference to `ostream::write(char const *, int)' /tmp/cc1gxINB.o: In function `chbind_devexist(char const *)': /home/sv/vserver/dist/vserver-0.16/chbind.cc:35: undefined reference to `__out_of_range(char const *)' collect2: ld returned 1 exit status make: *** [chbind] Error 1 The latest version I could compile on that machine was 0.13. On a later release of RedHat (7.1 instead of 6.2), it compiles fine. From vserver.error@solucorp.qc.ca Thu Apr 25 12:53:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3PGrk3Q020785; Thu, 25 Apr 2002 12:53:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3PGNEZ32329 for vserver.list; Thu, 25 Apr 2002 12:23:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3PGNEh32325 for ; Thu, 25 Apr 2002 12:23:14 -0400 Received: from remtk.solucorp.qc.ca (g36-103.citenet.net [206.123.36.103]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g3PGR4614573 for ; Thu, 25 Apr 2002 12:27:04 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g3PGH8O02527 for vserver@solucorp.qc.ca; Thu, 25 Apr 2002 12:17:08 -0400 From: Jacques Gelinas Date: Thu, 25 Apr 2002 12:17:08 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] www.cplusplussucks.com X-mailer: tlmpmail 0.6 Message-ID: <20020425121708.cfce128fc469@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 524 On Wed, 24 Apr 2002 18:41:25 -0500, Sam Vilain wrote > I'm getting this wierd compile error on one of my test machines: Which gcc distribution is this. There are problems in the STL headers on some GCC version. I just compiled it on a pretty vanilla rh6.2. The STL headers are part of the package egcs-c++-1.1.2-30 > linux10321:~/vserver/dist/vserver-0.17$ make > gcc -funsigned-char -Wall -g -DVERSION=\"0.17\" chcontext.cc syscall.o -o chcontext > \ > -lstdc++ > In file included from /usr/include/sys/wait.h:39, > from vutil.h:7, > from chcontext.cc:17: > /usr/include/bits/waitflags.h:26: warning: `WNOHANG' redefined > /usr/include/linux/wait.h:4: warning: this is the location of the previous definition > /usr/include/bits/waitflags.h:27: warning: `WUNTRACED' redefined > /usr/include/linux/wait.h:5: warning: this is the location of the previous definition To compile the utility, I am including and this is kind of bad. The kernel headers are not meant to be included. Normally, glibc include files are providing the necessary services to shield applications from the kernel headers. But glibc does not support any interface to the capability system. To fix this one, I suggest you install new kernel headers on the compilation machine, potentially taken from a 2.4.18 kernel. > In file included from /usr/include/g++-2/alloc.h:21, > from /usr/include/g++-2/std/bastring.h:39, > from /usr/include/g++-2/string:6, > from vutil.h:8, > from chcontext.cc:17: > /usr/include/g++-2/stl_alloc.h:320: parse error before `.' > /usr/include/g++-2/stl_alloc.h:320: missing ';' before right brace > /usr/include/g++-2/stl_alloc.h:322: parse error before `.' > /usr/include/g++-2/stl_alloc.h: In function `size_t ROUND_UP(size_t)': > /usr/include/g++-2/stl_alloc.h:325: parse error before `.' > /usr/include/g++-2/stl_alloc.h:325: parse error before `.' > /usr/include/g++-2/stl_alloc.h:326: warning: control reaches end of non-void function > `ROUND_UP(size_t)' > /usr/include/g++-2/stl_alloc.h: At top level: > /usr/include/g++-2/stl_alloc.h:327: parse error before `private' > /usr/include/g++-2/stl_alloc.h:331: parse error before `}' > /usr/include/g++-2/stl_alloc.h: In function `size_t FREELIST_INDEX(size_t)': > /usr/include/g++-2/stl_alloc.h:340: parse error before `.' > /usr/include/g++-2/stl_alloc.h:341: warning: control reaches end of non-void function > `FREELIST_INDEX(size_t)' > /usr/include/g++-2/stl_alloc.h: In method `lock::lock()': > /usr/include/g++-2/stl_alloc.h:382: `threads' undeclared (first use this function) > /usr/include/g++-2/stl_alloc.h:382: (Each undeclared identifier is reported only once > /usr/include/g++-2/stl_alloc.h:382: for each function it appears in.) > /usr/include/g++-2/stl_alloc.h: In method `lock::~lock()': > /usr/include/g++-2/stl_alloc.h:383: confused by earlier errors, bailing out > make: *** [chcontext] Error 1 > linux10321:~/vserver/dist/vserver-0.17$ > > Any ideas? Something odd seems to be going wrong with the `#include ' in > vutils.h I would say this is a bug in the STL headers. Which egcs package are you using ? > The latest version I could compile on that machine was 0.13. > > On a later release of RedHat (7.1 instead of 6.2), it compiles fine. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Apr 26 11:23:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3QFNH3Q002156; Fri, 26 Apr 2002 11:23:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3QF7vp01028 for vserver.list; Fri, 26 Apr 2002 11:07:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blueyonder.co.uk (pcow007o.blueyonder.co.uk [195.188.53.118]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3QF7uh01024 for ; Fri, 26 Apr 2002 11:07:57 -0400 Received: from mail pickup service by blueyonder.co.uk with Microsoft SMTPSVC; Fri, 26 Apr 2002 16:08:27 +0100 Content-Class: urn:content-classes:message From: To: Subject: [vserver] LVM and Quotas Date: Fri, 26 Apr 2002 16:08:27 +0100 Message-ID: <3c5901c1ed34$37f219a0$7635bcc3@blueyonder.net> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" X-Mailer: Microsoft CDO for Windows 2000 Thread-Index: AcHtNDfvxmscJVkXEdazEQCQJ9GLUQ== X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2014.211 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g3QF7uh01024 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=1.9 required=5.0 tests=NO_REAL_NAME,SUPERLONG_LINE version=2.01 Status: RO X-Status: X-Keywords: X-UID: 525 I have been experimenting with ways of meeting two particular requirements: i. Controlling the disk space used by virtual servers ii. Allowing virtual servers to set up their own disk quotas (as mentioned in previous posts, this is a requirement for some web hosting control panels, etc.) Requirement (i) can be met using Logical Volume Management (LVM) at the expense of loosing filesystem unification (see notes below for LVM setup details). As for requirement (ii), with each virtual server installed on its own logical volume, it is possible to set up standard filesystem quotas per virtual server. Quotas are initialised by running quotacheck -ugm -F vfsold /vservers/vs1 quotaon /vservers/vs1 on the base server. This creates the accounting files 'quota.user' and 'quota.group' in the root folder of the virtual server. The root user on the base server can use 'edquota' to set quotas specific to the users/groups on that virtual server. To allow root on the virtual server to view quota status with 'repquota' it is necessary to create the /dev/vservers/vs1lv device in the virtual server filesystem and edit mtab to remove the 'hdv1' entry and replace it with: /dev/vservers/vs1lv / ext3 rw,usrquota,grpquota 0 0 (are there any security issues with this?) 'repquota' then works in virtual server context, but commands to set quotas or turn quota management on/off fail. This is because most calls to the kernel function sys_quotactl fail without CAP_SYS_ADMIN. To work around this, would it be sensible to add another capability, say CAP_QUOTACTL, to the kernel capabilities set, and then patch sys_quotactl() to allow calls with CAP_SYSADMIN or CAP_QUOTACTL set, or would this be too much of a hack? Iain LVM install/setup on Redhat 7.2 host server: 1. install lvm-1.0.3-4.i386.rpm 2. add to /etc/modules.conf: alias block-major-58 lvm-mod alias char-major-109 lvm-mod 3. vgscan (to initialise /etc/lvmtab) 4. create some physical disk partition(s) of type 8e, and run pvcreate /dev/hd** 5. Create a volume group: vgcreate vservers /dev/hd** ... 6. Create a logical volume for each private server, e.g.: lvcreate -L 600 -n vs1lv vservers (this will create a device file /dev/vservers/vs1lv) 7. mke2fs -j /dev/vservers/vs1lv You can then mount the logical volumes under /vservers, e.g. add to fstab: /dev/vservers/vs1lv /vservers/vs1 ext3 defaults,usrquota,grpquota 1 2 And then use 'vserver build' or newvserver to create a virtual server filesystem.at the logical volume mount point. From vserver.error@solucorp.qc.ca Fri Apr 26 11:36:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3QFaq3Q002409; Fri, 26 Apr 2002 11:36:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3QFJ2L01217 for vserver.list; Fri, 26 Apr 2002 11:19:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3QFJ1h01213 for ; Fri, 26 Apr 2002 11:19:02 -0400 Received: from hoffman.vilain.net (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g3QFGtk08757 for ; Fri, 26 Apr 2002 16:16:55 +0100 Received: from hoffman.vilain.net ([127.0.0.1] helo=hoffman ident=sam) by hoffman.vilain.net with smtp (Exim 3.33 #1 (Debian)) id 1717Uw-0000sL-00 for ; Fri, 26 Apr 2002 16:18:58 +0100 Date: Fri, 26 Apr 2002 16:18:57 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] www.cplusplussucks.com In-Reply-To: <20020425121708.cfce128fc469@remtk.solucorp.qc.ca> References: <20020425121708.cfce128fc469@remtk.solucorp.qc.ca> X-Mailer: Sylpheed version 0.7.4 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 526 Jacques Gelinas wrote: > Which gcc distribution is this. There are problems in the STL headers on > some GCC version. I just compiled it on a pretty vanilla rh6.2. The STL > headers are part of the package egcs-c++-1.1.2-30 Mmm, I have that version (1.1.2-30). I've checked the packages (egcs, egcs-c++) are sane with rpm -V. > To compile the utility, I am including and this is > kind of bad. The kernel headers are not meant to be included. Normally, > glibc include files are providing the necessary services to shield > applications from the kernel headers. But glibc does not support any > interface to the capability system. > To fix this one, I suggest you install new kernel headers on the > compilation machine, potentially taken from a 2.4.18 kernel. Sure. I have already ensured that /usr/src/linux (and hence, /usr/include/linux) points to the correct place, in Red Hat tradition. Looking at the preprocessed output from gcc, it seems to be including the correct capability.h, from the kernel source tree. Looking a bit deeper, this is the section of the template library it is complaining about: > class __default_alloc_template { > > private: > // Really we should use static const int x = N > // instead of enum { x = N }, but few compilers accept the former. > # ifndef __SUNPRO_CC > enum {__ALIGN = 8}; > enum {__MAX_BYTES = 128}; > enum {__NFREELISTS = __MAX_BYTES/__ALIGN}; > # endif > static size_t ROUND_UP(size_t bytes) { > return (((bytes) + __ALIGN-1) & ~(__ALIGN - 1)); > } Which is being preprocessed to this: > class __default_alloc_template { > > private: > > > > enum {.align 4,0x90 = 8}; > enum {__MAX_BYTES = 128}; > enum {__NFREELISTS = __MAX_BYTES/ .align 4,0x90 }; > > static size_t ROUND_UP(size_t bytes) { > return (((bytes) + .align 4,0x90 -1) & ~(.align 4,0x90 - 1)); > } Hence this error: > > /usr/include/g++-2/stl_alloc.h:320: parse error before `.' > > /usr/include/g++-2/stl_alloc.h:320: missing ';' before right brace > > /usr/include/g++-2/stl_alloc.h:322: parse error before `.' But why on earth would it have __SUNPRO_CC defined in the first place? This baffles me more than RedHat's popularity. btw perl -e '`cat /proc/self/status`=~m/__NR_new_s_context: (\d+)/; syscall($1, 10); exec @ARGV' works. > I would say this is a bug in the STL headers. Which egcs package are you > using ? Name : egcs Relocations: (not relocateable) Version : 1.1.2 Vendor: Red Hat, Inc. Release : 30 Build Date: Thu 17 Feb 2000 07:17:14 PM GMT Install date: Wed 26 Jul 2000 06:47:29 PM GMT Build Host: porky.devel.redhat.com Group : Development/Languages Source RPM: egcs-1.1.2-30.src.rpm Size : 3447148 License: GPL Packager : Red Hat, Inc. URL : http://gcc.gnu.org/ Summary : The GNU Compiler Collection. Description : The egcs package contains the GNU Compiler Collection: cc, gcc and egcs. You'll need this package in order to compile C/C++ code. -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 Tell a man that there are 300 billion stars in the universe, and he'll believe you.... Tell him that a bench has wet paint upon it and he'll have to touch it to be sure. From vserver.error@solucorp.qc.ca Sat Apr 27 02:20:13 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3R6KC3Q012325; Sat, 27 Apr 2002 02:20:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3R5Z4x18724 for vserver.list; Sat, 27 Apr 2002 01:35:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp13.dti.ne.jp (smtp13.dti.ne.jp [202.216.228.48]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3R5Z2h18720 for ; Sat, 27 Apr 2002 01:35:03 -0400 Received: from posha.cats.yamato (PPPa232.ibaraki-ip.dti.ne.jp [210.159.157.232]) by smtp13.dti.ne.jp (8.12.1/3.7W) with SMTP id g3R5Z0SW027908 for ; Sat, 27 Apr 2002 14:35:00 +0900 (JST) Date: Sat, 27 Apr 2002 14:35:00 +0900 (JST) Message-Id: <200204270535.g3R5Z0SW027908@smtp13.dti.ne.jp> From: "S.Yamto" Errors-To: sy@my.email.ne.jp To: vserver@solucorp.qc.ca Subject: [vserver] [Q] Can not ForwardX11 in ssh X-Mailer: mnews [version 1.22] 1999-12/19(Sun) X-Dispatcher: Nomail 0.4.9 (Caravanserai) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 527 Hello, I am new to vserver and I was very impressed by the light_weithtedness of the `vserver', it runs like a breeze. I am happy running `vserver' as simple compile engines for different distributions(running as routers). Thanks a lot. But, as in Subject:, it seems that I can not forward X11 packets in ssh sessions from host server to a remote terminal. (if host server is running any virtual machines or not) Here is the log -------------------------------- terminal$] xhost + access control disabled, clients can connect from any host terminal$] ssh -X server host_server> host_server> env | grep DISPLAY DISPLAY=localhost:10.0 host_server> xterm xterm Xt error: Can't open display: localhost:10.0 host_server> export DISPLAY=terminal:0.0 host_server> xterm .. XTERM appers at terminal's display. O.K. ... host_server> uname -a Linux host_server.xxx.xxx 2.4.18ctx-10 #1 SMP Tue Apr 23 11:37:34 JST 2002 i686 unknown host_server> sudo /usr/sbin/vserver-stat Password: CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME 0 89 315Mb 27Kb 3h31m33 1h16m28 16h22m26 root server 2 3 6Mb 711b m00.91 m00.40 27m07.12 vskj host_server> /sbin/route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 192.168.0.3 0.0.0.0 UG 0 0 0 eth0 host_server> exit logout Connection to server closed. terminal$] ---------------------------------- The `host_server' is running RedHat 7.2(like) and `terminal' Mandrake 8.2. Is there any workaround? ( chbind etc.. ) I could not find any in ML archive at vlad. Thanks in advance, (Reading this ML in digest mode, and can not reply soon) --- S.Yamato/$BBgOB?50l(B sy@my.email.ne.jp From vserver.error@solucorp.qc.ca Sat Apr 27 14:17:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3RIHI3Q018450; Sat, 27 Apr 2002 14:17:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3RI2Gx07889 for vserver.list; Sat, 27 Apr 2002 14:02:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linux969.dn.net ([216.167.77.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3RI2Fh07885 for ; Sat, 27 Apr 2002 14:02:15 -0400 Received: from mbyrk (tunnel-44-72.vpn.uib.no [129.177.44.72]) by linux969.dn.net (8.9.3/8.9.3) with ESMTP id UAA05966 for ; Sat, 27 Apr 2002 20:03:39 +0200 From: "Magnus Byrkjeflot" To: Subject: [vserver] Multiple vservers on one IP Date: Sat, 27 Apr 2002 20:01:39 +0200 Message-ID: <000a01c1ee15$a74cd9c0$11720d0a@mbyrk> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 528 Hello. I have not tested vserver, but would like to know if its possible to setup multiple vservers bound to same ip address? The vservers would be unique with services running on different ports. Thanks, Magnus Byrkjeflot From vserver.error@solucorp.qc.ca Sat Apr 27 14:41:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3RIfX3Q018596; Sat, 27 Apr 2002 14:41:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3RIRUS08556 for vserver.list; Sat, 27 Apr 2002 14:27:30 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3RIRTh08552 for ; Sat, 27 Apr 2002 14:27:29 -0400 Received: from tux.rsn.bth.se (localhost [127.0.0.1]) by tux.rsn.bth.se (8.12.2/8.12.2/Debian -5) with ESMTP id g3RIREPb007438; Sat, 27 Apr 2002 20:27:14 +0200 Received: (from gandalf@localhost) by tux.rsn.bth.se (8.12.2/8.12.2/Debian -5) id g3RIRDNT007437; Sat, 27 Apr 2002 20:27:13 +0200 X-Authentication-Warning: tux.rsn.bth.se: gandalf set sender to gandalf@wlug.westbo.se using -f Subject: Re: [vserver] Multiple vservers on one IP From: Martin Josefsson To: vserver@solucorp.qc.ca Cc: Magnus Byrkjeflot In-Reply-To: <000a01c1ee15$a74cd9c0$11720d0a@mbyrk> References: <000a01c1ee15$a74cd9c0$11720d0a@mbyrk> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 Date: 27 Apr 2002 20:27:13 +0200 Message-Id: <1019932033.29406.137.camel@tux> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 529 On Sat, 2002-04-27 at 20:01, Magnus Byrkjeflot wrote: > Hello. > > I have not tested vserver, but would like to know if its possible to > setup multiple vservers bound to same ip address? > The vservers would be unique with services running on different ports. Yes it's possible for several vservers to be bound to the same ipaddress. They will of course not be able to bind to the same ports but as long as they bind to diffrent ports it's ok. -- /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. From vserver.error@solucorp.qc.ca Mon Apr 29 04:49:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3T8nn3Q032487; Mon, 29 Apr 2002 04:49:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3T8Su205090 for vserver.list; Mon, 29 Apr 2002 04:28:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail4.messagelabs.com (mail4.messagelabs.com [212.125.75.12]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g3T8Ssh05086 for ; Mon, 29 Apr 2002 04:28:55 -0400 X-VirusChecked: Checked Received: (qmail 24927 invoked from network); 29 Apr 2002 08:28:49 -0000 Received: from porgy.logica.co.uk (158.234.250.67) by server-23.tower-4.messagelabs.com with SMTP; 29 Apr 2002 08:28:49 -0000 Received: from lat.logica.co.uk (lat.logica.co.uk [158.234.190.58]) by porgy.logica.co.uk (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id JAA22041 for ; Mon, 29 Apr 2002 09:28:47 +0100 Received: from maximus (158.234.191.190 [158.234.191.190]) by lat.logica.co.uk with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2448.0) id G4YGK4G3; Mon, 29 Apr 2002 16:28:44 +0800 Subject: [vserver] Bind to broadcast address at port 2xxxx From: Lew Teck Kheng To: Vserver mailing list Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3.99 Date: 29 Apr 2002 16:28:17 +0800 Message-Id: <1020068917.1570.32.camel@maximus> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 530 hi all : I am having problem with binding to a broadcast address at port 2xxxx. I must said everything is working fine except this. I have 2 NIC -- 1 is public and 1 is a private network IP (192.168.100.32). I have a process that startup from inittab and this process need to bind to a udp port 20000 at address 192.168.100.255. Sample output of netstat : ============================== udp 0 0 192.168.100.32:20000 0.0.0.0:* udp 0 0 192.168.100.255:20000 0.0.0.0:* This process worked fine on the second NIC card but not on vserver and I get this error : "failed: bind() failed: Cannot assign requested address" Below is my conf for the vserver : IPROOT=192.168.100.33 IPROOTDEV=eth1 IPROOTMASK=255.255.255.0 ONBOOT=yes S_CAPS="CAP_NET_RAW CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_ADMIN" S_HOSTNAME=arsenic S_FLAGS="nproc sched fakeinit" Do i miss anything or this is the limitation of the current vserver ? Many many thanks Cheers ________________________________________________________________________ This email has been scanned for all viruses by the MessageLabs SkyScan service. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.messagelabs.com ________________________________________________________________________ From vserver.error@solucorp.qc.ca Tue Apr 30 00:36:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3U4aM3Q010580; Tue, 30 Apr 2002 00:36:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3U47B900889 for vserver.list; Tue, 30 Apr 2002 00:07:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g3U47Ah00885 for ; Tue, 30 Apr 2002 00:07:11 -0400 Received: from remtk.solucorp.qc.ca (g36-115.citenet.net [206.123.36.115]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g3U47BA87308 for ; Tue, 30 Apr 2002 00:07:11 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g3U41ZR05620 for vserver@solucorp.qc.ca; Tue, 30 Apr 2002 00:01:35 -0400 From: Jacques Gelinas Date: Tue, 30 Apr 2002 00:01:35 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Bind to broadcast address at port 2xxxx X-mailer: tlmpmail 0.6 Message-ID: <20020430000135.8337818cb5fe@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 531 On Mon, 29 Apr 2002 16:28:17 -0500, Lew Teck Kheng wrote > hi all : > > I am having problem with binding to a broadcast address at port 2xxxx. > > I must said everything is working fine except this. > > I have 2 NIC -- 1 is public and 1 is a private network IP > (192.168.100.32). > > I have a process that startup from inittab and this process need to bind > to a udp port 20000 at address 192.168.100.255. I would say this is a bug. I will look at it. Any reason why this is only binding to the broadcast address. If any UDP service does a bind any, it automatically picks the broadcast as well. Is this an option ? Anyway, this is easily fixable. The concept of a broadcast address for a vserver was introduced lately (ctx-9) and adding a test in bind to allow binding to the broadcast address is certainly doable. > Sample output of netstat : > ============================== > udp 0 0 192.168.100.32:20000 0.0.0.0:* > udp 0 0 192.168.100.255:20000 0.0.0.0:* > > > This process worked fine on the second NIC card but not on vserver and I > get this error : > > "failed: bind() failed: Cannot assign requested address" > > Below is my conf for the vserver : > > IPROOT=192.168.100.33 > IPROOTDEV=eth1 > IPROOTMASK=255.255.255.0 > ONBOOT=yes > S_CAPS="CAP_NET_RAW CAP_NET_BIND_SERVICE CAP_NET_BROADCAST > CAP_NET_ADMIN" > S_HOSTNAME=arsenic > S_FLAGS="nproc sched fakeinit" > > Do i miss anything or this is the limitation of the current vserver ? > > Many many thanks > > Cheers > > > > ________________________________________________________________________ > This email has been scanned for all viruses by the MessageLabs SkyScan > service. For more information on a proactive anti-virus service working > around the clock, around the globe, visit http://www.messagelabs.com > ________________________________________________________________________ > --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Apr 30 02:21:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g3U6LK3Q011661; Tue, 30 Apr 2002 02:21:20 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g3U5unX03198 for vserver.list; Tue, 30 Apr 2002 01:56:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail4.messagelabs.com (mail4.messagelabs.com [212.125.75.12]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g3U5umh03194 for ; Tue, 30 Apr 2002 01:56:48 -0400 X-VirusChecked: Checked Received: (qmail 2731 invoked from network); 30 Apr 2002 05:56:43 -0000 Received: from porgy.logica.co.uk (158.234.250.67) by server-23.tower-4.messagelabs.com with SMTP; 30 Apr 2002 05:56:43 -0000 Received: from lat.logica.co.uk (lat.logica.co.uk [158.234.190.58]) by porgy.logica.co.uk (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id GAA03464 for ; Tue, 30 Apr 2002 06:56:41 +0100 Received: from maximus (158.234.191.190 [158.234.191.190]) by lat.logica.co.uk with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2448.0) id G4YGK443; Tue, 30 Apr 2002 13:56:37 +0800 Subject: re: [vserver] Bind to broadcast address at port 2xxxx From: Lew Teck Kheng To: vserver@solucorp.qc.ca In-Reply-To: <20020430000135.8337818cb5fe@remtk.solucorp.qc.ca> References: <20020430000135.8337818cb5fe@remtk.solucorp.qc.ca> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3.99 Date: 30 Apr 2002 13:56:23 +0800 Message-Id: <1020146188.2034.18.camel@maximus> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 532 hi Jacques : Thank for the reply. There is a process that need to bind to the broadcast at certain port before i can start the remaining cluster nodes. This process is actually a run level controller. I am trying to setup a cluster vserver but without the process able to bind to the broadcast at the prot I cannot startup any of the cluster nodes. Looking forward for the patches. Once again , great software. Many thanks Cheers On Tue, 2002-04-30 at 13:01, Jacques Gelinas wrote: > On Mon, 29 Apr 2002 16:28:17 -0500, Lew Teck Kheng wrote > > hi all : > > > > I am having problem with binding to a broadcast address at port 2xxxx. > > > > I must said everything is working fine except this. > > > > I have 2 NIC -- 1 is public and 1 is a private network IP > > (192.168.100.32). > > > > I have a process that startup from inittab and this process need to bind > > to a udp port 20000 at address 192.168.100.255. > > I would say this is a bug. I will look at it. Any reason why this is only > binding to the broadcast address. If any UDP service does a bind any, it automatically > picks the broadcast as well. Is this an option ? > > Anyway, this is easily fixable. The concept of a broadcast address for a vserver > was introduced lately (ctx-9) and adding a test in bind to allow binding > to the broadcast address is certainly doable. > > > Sample output of netstat : > > ============================== > > udp 0 0 192.168.100.32:20000 0.0.0.0:* > > udp 0 0 192.168.100.255:20000 0.0.0.0:* > > > > > > This process worked fine on the second NIC card but not on vserver and I > > get this error : > > > > "failed: bind() failed: Cannot assign requested address" > > > > Below is my conf for the vserver : > > > > IPROOT=192.168.100.33 > > IPROOTDEV=eth1 > > IPROOTMASK=255.255.255.0 > > ONBOOT=yes > > S_CAPS="CAP_NET_RAW CAP_NET_BIND_SERVICE CAP_NET_BROADCAST > > CAP_NET_ADMIN" > > S_HOSTNAME=arsenic > > S_FLAGS="nproc sched fakeinit" > > > > Do i miss anything or this is the limitation of the current vserver ? > > > > Many many thanks > > > > Cheers > > > > > > > > ________________________________________________________________________ > > This email has been scanned for all viruses by the MessageLabs SkyScan > > service. For more information on a proactive anti-virus service working > > around the clock, around the globe, visit http://www.messagelabs.com > > ________________________________________________________________________ > > > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc -- ======================================================================== Lew Teck Kheng System Engineer Asia LMN System Engineering (Malaysia) (+603) 7725 6890 www.logica.com "Logica Make MMS Real Person to Person MMS demonstrated live using devices from 8 manufacturers on the Orange France GPRS Network at the 3 GSM World Congress in Cannes." ======================================================================== ________________________________________________________________________ This email has been scanned for all viruses by the MessageLabs SkyScan service. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.messagelabs.com ________________________________________________________________________ From vserver.error@solucorp.qc.ca Wed May 1 08:39:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g41CdK3Q029763; Wed, 1 May 2002 08:39:20 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g41CA9j12014 for vserver.list; Wed, 1 May 2002 08:10:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp13.dti.ne.jp (smtp13.dti.ne.jp [202.216.228.48]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g41CA8h12010 for ; Wed, 1 May 2002 08:10:08 -0400 Received: from posha.cats.yamato (PPPa232.ibaraki-ip.dti.ne.jp [210.159.157.232]) by smtp13.dti.ne.jp (8.12.1/3.7W) with SMTP id g41CA1SW013170 for ; Wed, 1 May 2002 21:10:01 +0900 (JST) Date: Wed, 1 May 2002 21:10:01 +0900 (JST) Message-Id: <200205011210.g41CA1SW013170@smtp13.dti.ne.jp> From: "S.Yamto" To: vserver@solucorp.qc.ca Subject: [vserver] zebedee & telnet localhost does not work X-Mailer: mnews [version 1.22] 1999-12/19(Sun) X-Dispatcher: Nomail 0.4.9 (Caravanserai) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 533 Hello, I posted Message-Id: <200204270535.g3R5Z0SW027908@smtp13.dti.ne.jp> Subject: [vserver] [Q] Can not ForwardX11 in ssh And now I met other difficulties, 1. zebedee port forwarder does not work on vserver_host. On child OS it works fine. 2. telnet localhost is refused. ( telnet: connect to address 127.0.0.1: Connection refused ) But telnet LocalHost's_eth0 works. Both seem to be caused by the refusal of connection to 127.0.0.1. I tried /usr/sbin/chbind --ip lo /sbin/ifocnfig lo 127.0.0.1 netmask \ 255.0.0.0 dev lo ; /sbin/route add ... etc. in vain. Is this a known restriction? Or have I made a careless mistake? Is there any other port forwarding solutions? Regards ________ S.Yamato From vserver.error@solucorp.qc.ca Thu May 2 03:05:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g4275N3Q007491; Thu, 2 May 2002 03:05:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g426lcG03029 for vserver.list; Thu, 2 May 2002 02:47:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp.hzhome.mine.nu (p508AA428.dip.t-dialin.net [80.138.164.40]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g426lbh03025 for ; Thu, 2 May 2002 02:47:37 -0400 Received: from [192.168.1.219] (vpc1.hzhome.mine.nu [192.168.1.219]) by smtp.hzhome.mine.nu (8.11.6/8.11.3/SuSE Linux 8.11.1-0.5) with ESMTP id g426uNP21669 for ; Thu, 2 May 2002 08:56:23 +0200 Date: Thu, 2 May 2002 08:45:42 -0100 (GMT+1) From: X-X-Sender: To: Subject: [vserver] vserver and X programs Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=1.2 required=5.0 tests=NO_REAL_NAME version=2.01 Status: RO X-Status: X-Keywords: X-UID: 534 Hello, I want to run untrusted X programs from (different) vservers. Unfortunately I am not very familiar with X's features and security issues. My first idea was to run one X Server as a normal user (from the real machine; not within a vserver) and to connect to this X Server via 'xhost' authentication. However, as it seems it is very easy for an X Client (once it gained access to X) to spy other windows as well as mouse and keyboard inputs (entering passwords !). Using Xnest would prevent this behaviour, but in any case running the X server not within a vserver seems to be dangerous due to the oftenly buggy X server. On the other hand, an X server needs permissions to devices like /dev/mem. But with the permission to this device a vserver would be able to spy everything running in the machine, real one and vserver. Right ? Any ideas ? Thanks in advance. P.S.: Yes I know, the 'server' part of vserver stands for SERVER and not for X, which is a typically client-side app. But I want to use vservers to test untrusted apps which sometimes include X ones. From vserver.error@solucorp.qc.ca Thu May 2 12:50:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g42GoK3Q013486; Thu, 2 May 2002 12:50:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g42GMxp16843 for vserver.list; Thu, 2 May 2002 12:22:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g42GMwh16839 for ; Thu, 2 May 2002 12:22:58 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g42GN4T01743 for vserver@solucorp.qc.ca; Thu, 2 May 2002 12:23:04 -0400 From: Jacques Gelinas Date: Thu, 2 May 2002 12:23:04 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Bind to broadcast address at port 2xxxx X-mailer: tlmpmail 0.6 Message-ID: <20020502122304.79e7c044cf7a@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 535 On Tue, 30 Apr 2002 13:56:23 -0500, Lew Teck Kheng wrote > hi Jacques : > > Thank for the reply. > > There is a process that need to bind to the broadcast at certain port > before i can start the remaining cluster nodes. This process is actually > a run level controller. > > I am trying to setup a cluster vserver but without the process able to > bind to the broadcast at the prot I cannot startup any of the cluster > nodes. Here is the patch. If all is fine, I will do ctx-11 with that. *** net/ipv4/af_inet.bak Mon Mar 18 12:26:22 2002 --- net/ipv4/af_inet.c Thu May 2 11:09:53 2002 *************** *** 497,503 **** bcast_addr = current->ipv4root_bcast; }else if (s_addr == 0x0100007f){ s_addr = current->ipv4root; ! }else if (s_addr != current->ipv4root){ return -EADDRNOTAVAIL; } } --- 497,504 ---- bcast_addr = current->ipv4root_bcast; }else if (s_addr == 0x0100007f){ s_addr = current->ipv4root; ! }else if (s_addr != current->ipv4root_bcast ! && s_addr != current->ipv4root){ return -EADDRNOTAVAIL; } } --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Sun May 5 09:59:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g45Dwx3Q015096; Sun, 5 May 2002 09:58:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g45DQM819937 for vserver.list; Sun, 5 May 2002 09:26:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-105-29.in-addr.btopenworld.com [213.122.105.29]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g45DQDh19932 for ; Sun, 5 May 2002 09:26:18 -0400 Received: from 213.122.105.29 by john-new ([213.122.105.29] running VPOP3) with SMTP for ; Sun, 5 May 2002 14:25:53 +0100 From: "John Lyons" To: Subject: RE: [vserver] vunify immutable Date: Sun, 5 May 2002 14:25:53 +0100 Message-ID: <000001c1f438$61940100$1d697ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 536 I've built a vserver using vbuild --noflags --immutable vs_skel vs210 Now I need to delete vs210. I understand that this can't be done by any user because of the --immutable setting when the server was built. However running any vunify commands to try and allow the files to be unlinked is giving errors. [root@svr10 vservers]# vunify --noflags --immutable-mayunlink vs_skel vs210 -- all vservers vs210 %{name}=%{version}-%{release}\n: No such file or directory Is there a quick way of removing a vs once it's been created without the unlink flag being available? Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Sun May 5 17:50:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g45LoD3Q018790; Sun, 5 May 2002 17:50:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g45LJw929677 for vserver.list; Sun, 5 May 2002 17:19:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from taz.eijk.nu (node-d-0565.a2000.nl [62.195.5.101]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g45LJuh29673 for ; Sun, 5 May 2002 17:19:56 -0400 Received: from eijk.nu (localhost.localdomain [127.0.0.1]) by taz.eijk.nu (8.12.1/linuxconf) with ESMTP id g45LJ4Ot026858 for ; Sun, 5 May 2002 23:19:05 +0200 Message-ID: <3CD5A1C8.2060406@eijk.nu> Date: Sun, 05 May 2002 23:19:04 +0200 From: Stefan van der Eijk User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0rc1) Gecko/00200203 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] GR security & CTX Content-Type: multipart/mixed; boundary="------------080208070102070403060300" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-5.0 required=5.0 tests=UNIFIED_PATCH version=2.01 Status: RO X-Status: X-Keywords: X-UID: 537 This is a multi-part message in MIME format. --------------080208070102070403060300 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Hi, I'm trying to get the CTX patch to work with Mandrake's development kernels. While applying the patch I noticed that the CTX patch conflicts with an earlier applied patch (the gr security patch, see http://www.grsecurity.org/ ). Before I continue trying to figure things out I've got a few questions: - If somebody wants to run the kernel without CTX functionality, will a CTX enabled kernel have any disadvantages against a normal kernel? - Are you planning to make configureable kernel options for the CTX functionality? - Does the GR security functionality conflict with CTX? - Is there a smart way to merge GR security and CTX patches? I've tried to merge the CTX patch, the resulting diff of the original patch is attached to this email. kind regards, Stefan van der Eijk Parts where conflicts are found: $ less ./fs/proc/base.c.rej *************** *** 1019,1022 **** if (!pid) continue; if (--index >= 0) continue; --- 1025,1041 ---- if (!pid) continue; + /* Even if the pid 1 is not part of the security context */ + /* we show it anyway. This makes the security box */ + /* more standard (and helps pstree do its job) */ + /* So current process "knows" pid 1 exist anyway and can't */ + /* send any signal either */ + + /* A process with security context 1 can see all processes */ + if (pid != 1 + && current->s_context != 1 + && p->s_context != current->s_context) continue; + /* We hide the fakeinit process since we show it as process 1 */ + if (current->s_info != NULL + && current->s_info->initpid == pid) continue; if (--index >= 0) continue; $ less ./fs/proc/base.c if (!pid) continue; #ifdef CONFIG_GRKERNSEC_ACL if(gr_check_hidden_task(p)) continue; #endif if (--index >= 0) continue ===================================================================================== $ less ./kernel/signal.c.rej *************** *** 593,597 **** read_lock(&tasklist_lock); for_each_task(p) { ! if (p->pgrp == pgrp) { int err = send_sig_info(sig, info, p); if (retval) --- 593,599 ---- read_lock(&tasklist_lock); for_each_task(p) { ! if (p->pgrp == pgrp ! && ((long)info==1 ! || p->s_context == current->s_context)) { int err = send_sig_info(sig, info, p); if (retval) *************** *** 640,645 **** p = find_task_by_pid(pid); error = -ESRCH; ! if (p) ! error = send_sig_info(sig, info, p); read_unlock(&tasklist_lock); return error; --- 642,663 ---- p = find_task_by_pid(pid); error = -ESRCH; ! if (p != NULL){ ! switch((unsigned long)info) { ! case 0: ! if(p->s_context == current->s_context){ ! error = send_sig_info(sig, info, p); ! } ! break; ! case 1: ! error = send_sig_info(sig, info, p); ! break; ! default: ! if( info->si_code == SI_KERNEL ! || p->s_context == current->s_context){ ! error = send_sig_info(sig, info, p); ! } ! break; ! } ! } read_unlock(&tasklist_lock); return error; *************** *** 664,668 **** read_lock(&tasklist_lock); for_each_task(p) { ! if (p->pid > 1 && p != current) { int err = send_sig_info(sig, info, p); ++count; --- 682,686 ---- read_lock(&tasklist_lock); for_each_task(p) { ! if (p->pid > 1 && p != current && p->s_context == current->s_context) { int err = send_sig_info(sig, info, p); ++count; ===================================================================================== $ less ./kernel/sys.c.rej *************** *** 1116,1119 **** { int errno; if (!capable(CAP_SYS_ADMIN)) --- 1186,1190 ---- { int errno; + char *domainname; if (!capable(CAP_SYS_ADMIN)) ===================================================================================== $ less ./Makefile.rej *************** *** 2,6 **** PATCHLEVEL = 4 SUBLEVEL = 18 ! EXTRAVERSION = KERNELRELEASE=$(VERSION).$(PATCHLEVEL).$(SUBLEVEL)$(EXTRAVERSION) --- 2,6 ---- PATCHLEVEL = 4 SUBLEVEL = 18 ! EXTRAVERSION =ctx-10 KERNELRELEASE=$(VERSION).$(PATCHLEVEL).$(SUBLEVEL)$(EXTRAVERSION) less ./Makefile PATCHLEVEL = 4 SUBLEVEL = 19 EXTRAVERSION = -pre6 KERNELRELEASE=$(VERSION).$(PATCHLEVEL).$(SUBLEVEL)$(EXTRAVERSION) ===================================================================================== --------------080208070102070403060300 Content-Type: text/plain; name="patch-2.4.18ctx-10.diff" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="patch-2.4.18ctx-10.diff" --- patch-2.4.18ctx-10.orig 2002-04-15 19:28:22.000000000 +0200 +++ patch-2.4.18ctx-10 2002-05-05 23:13:38.000000000 +0200 @@ -5,13 +5,13 @@ *** 2,6 **** PATCHLEVEL = 4 SUBLEVEL = 18 -! EXTRAVERSION = +! EXTRAVERSION = -pre6 KERNELRELEASE=$(VERSION).$(PATCHLEVEL).$(SUBLEVEL)$(EXTRAVERSION) --- 2,6 ---- PATCHLEVEL = 4 SUBLEVEL = 18 -! EXTRAVERSION =ctx-10 +! EXTRAVERSION = pre6-ctx-10 KERNELRELEASE=$(VERSION).$(PATCHLEVEL).$(SUBLEVEL)$(EXTRAVERSION) diff -rc2P linux-2.4.18/arch/i386/kernel/entry.S linux-2.4.18ctx-10/arch/i386/kernel/entry.S @@ -758,25 +758,26 @@ dentry->d_op = &pid_base_dentry_operations; *************** -*** 1019,1022 **** ---- 1025,1041 ---- - if (!pid) - continue; -+ /* Even if the pid 1 is not part of the security context */ -+ /* we show it anyway. This makes the security box */ -+ /* more standard (and helps pstree do its job) */ -+ /* So current process "knows" pid 1 exist anyway and can't */ -+ /* send any signal either */ -+ -+ /* A process with security context 1 can see all processes */ -+ if (pid != 1 -+ && current->s_context != 1 -+ && p->s_context != current->s_context) continue; -+ /* We hide the fakeinit process since we show it as process 1 */ -+ if (current->s_info != NULL -+ && current->s_info->initpid == pid) continue; - if (--index >= 0) - continue; +*** 1095,1098 **** +--- 1095,1111 ---- + if (!pid) + continue; ++ /* Even if the pid 1 is not part of the security context */ ++ /* we show it anyway. This makes the security box */ ++ /* more standard (and helps pstree do its job) */ ++ /* So current process "knows" pid 1 exist anyway and can't */ ++ /* send any signal either */ ++ ++ /* A process with security context 1 can see all processes */ ++ if (pid != 1 ++ && current->s_context != 1 ++ && p->s_context != current->s_context) continue; ++ /* We hide the fakeinit process since we show it as process 1 */ ++ if (current->s_info != NULL ++ && current->s_info->initpid == pid) continue; + #ifdef CONFIG_GRKERNSEC_ACL + if(gr_check_hidden_task(p)) + continue; diff -rc2P linux-2.4.18/fs/udf/inode.c linux-2.4.18ctx-10/fs/udf/inode.c *** linux-2.4.18/fs/udf/inode.c Tue Feb 26 22:22:08 2002 --- linux-2.4.18ctx-10/fs/udf/inode.c Tue Feb 26 22:31:23 2002 @@ -1351,14 +1352,13 @@ + } read_unlock(&tasklist_lock); spin_lock_irq(&runqueue_lock); -diff -rc2P linux-2.4.18/kernel/signal.c linux-2.4.18ctx-10/kernel/signal.c *** linux-2.4.18/kernel/signal.c Fri Nov 23 15:07:52 2001 --- linux-2.4.18ctx-10/kernel/signal.c Tue Feb 26 22:31:23 2002 *************** *** 593,597 **** read_lock(&tasklist_lock); for_each_task(p) { -! if (p->pgrp == pgrp) { +! if (p->pgrp == pgrp && thread_group_leader(p)) { int err = send_sig_info(sig, info, p); if (retval) --- 593,599 ---- @@ -1370,17 +1370,31 @@ int err = send_sig_info(sig, info, p); if (retval) *************** -*** 640,645 **** +*** 712,717 **** p = find_task_by_pid(pid); error = -ESRCH; -! if (p) -! error = send_sig_info(sig, info, p); - read_unlock(&tasklist_lock); - return error; ---- 642,663 ---- +! if (p) { + #ifdef CONFIG_GRKERNSEC_ACL + if( !(gr_check_protected_task(p)) || current->pid == 1) + #endif +--- 712,718 ---- p = find_task_by_pid(pid); error = -ESRCH; -! if (p != NULL){ +! if (p != NULL) + #ifdef CONFIG_GRKERNSEC_ACL ++ { + if( !(gr_check_protected_task(p)) || current->pid == 1) + #endif +*************** +*** 723,727 **** + p = tg; + } +! error = send_sig_info(sig, info, p); + } + } +--- 724,742 ---- + p = tg; + } ! switch((unsigned long)info) { ! case 0: ! if(p->s_context == current->s_context){ @@ -1396,21 +1410,19 @@ ! error = send_sig_info(sig, info, p); ! } ! break; -! } -! } - read_unlock(&tasklist_lock); - return error; + } + } *************** -*** 664,668 **** - read_lock(&tasklist_lock); - for_each_task(p) { -! if (p->pid > 1 && p != current) { +*** 766,770 **** + if(!(gr_check_protected_task(p) || current->pid == 1)) + #endif +! if (p->pid > 1 && p != current && thread_group_leader(p)) { int err = send_sig_info(sig, info, p); ++count; ---- 682,686 ---- - read_lock(&tasklist_lock); - for_each_task(p) { -! if (p->pid > 1 && p != current && p->s_context == current->s_context) { +--- 766,770 ---- + if(!(gr_check_protected_task(p) || current->pid == 1)) + #endif +! if (p->pid > 1 && p != current && thread_group_leader(p) && p->s_context == current->s_context) { int err = send_sig_info(sig, info, p); ++count; *************** @@ -1727,8 +1739,8 @@ errno = -EFAULT; up_read(&uts_sem); *************** -*** 1066,1069 **** ---- 1136,1140 ---- +*** 1268,1271 **** +--- 1268,1272 ---- { int errno; + char *domainname; --------------080208070102070403060300-- From vserver.error@solucorp.qc.ca Mon May 6 08:42:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g46CgX3Q027005; Mon, 6 May 2002 08:42:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g46CESX18047 for vserver.list; Mon, 6 May 2002 08:14:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from prserv.net (out4.prserv.net [32.97.166.34]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g46CESh18043 for ; Mon, 6 May 2002 08:14:28 -0400 Received: from slip139-92-140-22.dub.ie.prserv.net ([139.92.140.22]) by prserv.net (out4) with SMTP id <2002050612141920400tvg86e>; Mon, 6 May 2002 12:14:20 +0000 Subject: re: [vserver] Bind to broadcast address at port 2xxxx From: Lew Teck Kheng To: vserver@solucorp.qc.ca In-Reply-To: <20020502122304.79e7c044cf7a@remtk.solucorp.qc.ca> References: <20020502122304.79e7c044cf7a@remtk.solucorp.qc.ca> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3.99 Date: 06 May 2002 20:14:12 +0800 Message-Id: <1020687255.10199.16.camel@maximus> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-1.2 required=5.0 tests=IN_REP_TO,KNOWN_BAD_DIALUPS version=2.01 Status: RO X-Status: X-Keywords: X-UID: 538 hi jacques : The patch worked perfectly ! Thanks Cheers On Fri, 2002-05-03 at 01:23, Jacques Gelinas wrote: > On Tue, 30 Apr 2002 13:56:23 -0500, Lew Teck Kheng wrote > > hi Jacques : > > > > Thank for the reply. > > > > There is a process that need to bind to the broadcast at certain port > > before i can start the remaining cluster nodes. This process is actually > > a run level controller. > > > > I am trying to setup a cluster vserver but without the process able to > > bind to the broadcast at the prot I cannot startup any of the cluster > > nodes. > > Here is the patch. If all is fine, I will do ctx-11 with that. > > *** net/ipv4/af_inet.bak Mon Mar 18 12:26:22 2002 > --- net/ipv4/af_inet.c Thu May 2 11:09:53 2002 > *************** > *** 497,503 **** > bcast_addr = current->ipv4root_bcast; > }else if (s_addr == 0x0100007f){ > s_addr = current->ipv4root; > ! }else if (s_addr != current->ipv4root){ > return -EADDRNOTAVAIL; > } > } > --- 497,504 ---- > bcast_addr = current->ipv4root_bcast; > }else if (s_addr == 0x0100007f){ > s_addr = current->ipv4root; > ! }else if (s_addr != current->ipv4root_bcast > ! && s_addr != current->ipv4root){ > return -EADDRNOTAVAIL; > } > } > > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc -- ======================================================================== Lew Teck Kheng System Engineer Asia LMN System Engineering (Malaysia) (+603) 7725 6890 www.logica.com "Logica Make MMS Real Person to Person MMS demonstrated live using devices from 8 manufacturers on the Orange France GPRS Network at the 3 GSM World Congress in Cannes." ======================================================================== From vserver.error@solucorp.qc.ca Mon May 6 11:06:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g46F643Q028393; Mon, 6 May 2002 11:06:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g46Eiaq22195 for vserver.list; Mon, 6 May 2002 10:44:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp017.mail.yahoo.com (smtp017.mail.yahoo.com [216.136.174.114]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g46EiZh22190 for ; Mon, 6 May 2002 10:44:35 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 6 May 2002 14:44:34 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] Redhat Install Script error? Date: Mon, 6 May 2002 09:44:27 -0500 Message-ID: <000701c1f50c$868acaa0$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <3CD5A1C8.2060406@eijk.nu> Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 539 Hello, I have tried to use the install script to install an ISO image mounted as /mnt/cdrom. The build process was apparent successful, but at the end it produces the line, /usr/lib/vserver/install-rh7.2: /usr/lib/vserver/install_post.sh: No such file or directory Also, an error message sometimes pop up in the list of packages installed, for example, /proc is empty (not mounted ?) or awk: cmd. line:2: fatal: cannot open file `/etc/fstab' for reading (No such file or directory) Is this normal? Thanks, Peter From vserver.error@solucorp.qc.ca Mon May 6 13:13:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g46HDA3Q029650; Mon, 6 May 2002 13:13:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g46GtMo25728 for vserver.list; Mon, 6 May 2002 12:55:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp018.mail.yahoo.com (smtp018.mail.yahoo.com [216.136.174.115]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g46GtLh25724 for ; Mon, 6 May 2002 12:55:21 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 6 May 2002 16:55:20 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] How to clone reference server from cdrom? Date: Mon, 6 May 2002 11:55:14 -0500 Message-ID: <000001c1f51e$cb72b1c0$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <000701c1f50c$868acaa0$ed23bd41@PremiumFood> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 540 Hello, I have installed a redhat 7.2 from CDROM at /vservers/rh72. However, when I run "newvserver", there is only an option to clone the root server, but not the reference server at /vservers/rh72. How do I enable that? Thanks, Peter -----Original Message----- From: Peter Kwan Chan [mailto:peterkwanchan@yahoo.com] Sent: Monday, May 06, 2002 9:44 AM To: vserver@solucorp.qc.ca Subject: [vserver] Redhat Install Script error? Hello, I have tried to use the install script to install an ISO image mounted as /mnt/cdrom. The build process was apparent successful, but at the end it produces the line, /usr/lib/vserver/install-rh7.2: /usr/lib/vserver/install_post.sh: No such file or directory Also, an error message sometimes pop up in the list of packages installed, for example, /proc is empty (not mounted ?) or awk: cmd. line:2: fatal: cannot open file `/etc/fstab' for reading (No such file or directory) Is this normal? Thanks, Peter From vserver.error@solucorp.qc.ca Mon May 6 16:08:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g46K873Q031255; Mon, 6 May 2002 16:08:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g46JiK700672 for vserver.list; Mon, 6 May 2002 15:44:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blue.wowweb.dk (0x503e3545.arcnxx10.adsl-dhcp.tele.dk [80.62.53.69]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g46JiJh00667 for ; Mon, 6 May 2002 15:44:20 -0400 Received: from there (boa.wowweb.dk [10.0.0.7]) by blue.wowweb.dk (Postfix) with SMTP id 561E111851 for ; Mon, 6 May 2002 21:44:18 +0200 (CEST) Content-Type: text/plain; charset="iso-8859-1" From: Jesper Andersen <424242424242424242@j-f.dk> To: vserver@solucorp.qc.ca Subject: Re: [vserver] GR security & CTX Date: Mon, 6 May 2002 21:44:13 +0200 X-Mailer: KMail [version 1.3.2] References: <3CD5A1C8.2060406@eijk.nu> In-Reply-To: <3CD5A1C8.2060406@eijk.nu> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: <20020506194418.561E111851@blue.wowweb.dk> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-0.1 required=5.0 tests=IN_REP_TO,FROM_ENDS_IN_NUMS version=2.01 Status: RO X-Status: X-Keywords: X-UID: 541 On Sunday 05 May 2002 23:19, you wrote: > I'm trying to get the CTX patch to work with Mandrake's development > kernels. While applying the patch I noticed that the CTX patch conflicts > with an earlier applied patch (the gr security patch, see > http://www.grsecurity.org/ ). Before I continue trying to figure things > out I've got a few questions: If you get et working please tell. I tried the same thing on a 2.4.18 kernel and after resolving a few conflicts it compiled fine, but during boot something went wrong during the load of the unix module as far as I remember. I didn't do any more to figure out what went wrong. > - Does the GR security functionality conflict with CTX? > - Is there a smart way to merge GR security and CTX patches? I can't remember which order but there is a difference in applying the one before the other. -- Jesper 21:43:14 up 3 days, 8:00, 17 users, load average: 1.72, 1.78, 2.34 From vserver.error@solucorp.qc.ca Mon May 6 17:37:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g46LbN3Q032637; Mon, 6 May 2002 17:37:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g46LCeu05658 for vserver.list; Mon, 6 May 2002 17:12:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g46LCdh05654 for ; Mon, 6 May 2002 17:12:39 -0400 Received: from aksmtpmdr1.telecom.co.nz (aksmtpmdr1 [146.171.1.20]) by smtpout.telecom.co.nz (Postfix) with SMTP id A4B7C45EF7 for ; Tue, 7 May 2002 09:12:31 +1200 (NZST) Received: from 192.168.192.252 by aksmtpmdr1.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Tue, 07 May 2002 09:12:31 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 174pkV-00009t-00 for ; Tue, 07 May 2002 09:10: 23 +1200 Subject: Re: [vserver] vserver and X programs From: "Fran Firman" To: vserver In-Reply-To: References: X-Mailer: Ximian Evolution 1.0.3 Date: 07 May 2002 09:10:22 +1200 Message-ID: <1020719423.538.4.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10C82E3597455-01-01 Content-Type: multipart/signed; boundary="=-x9J2YUA6iqY5V0F+9+RQ"; micalg=pgp-sha1; protocol="application/pgp-signature" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 542 --=-x9J2YUA6iqY5V0F+9+RQ Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Have you thought of using vncserver in the vserver / full machine and Xvnc to the vncserver via a ssh tunnel. Fran. On Thu, 2002-05-02 at 21:45, minu@hzhome.mine.nu wrote: >=20 > Hello, >=20 > I want to run untrusted X programs from (different) vservers. >=20 > Unfortunately I am not very familiar with X's features and security > issues. >=20 > My first idea was to run one X Server as a normal user (from the real > machine; not within a vserver) and to connect to this X Server via 'xhost= ' > authentication. > However, as it seems it is very easy for an X Client (once it gained > access to X) to spy other windows as well as mouse and keyboard inputs > (entering passwords !). >=20 > Using Xnest would prevent this behaviour, but in any case running the X > server not within a vserver seems to be dangerous due to the oftenly bugg= y > X server. >=20 > On the other hand, an X server needs permissions to devices like /dev/mem= . > But with the permission to this device a vserver would be able to spy > everything running in the machine, real one and vserver. Right ? >=20 > Any ideas ? >=20 >=20 > Thanks in advance. >=20 >=20 > P.S.: Yes I know, the 'server' part of vserver stands for SERVER and not > for X, which is a typically client-side app. But I want to use vservers t= o > test untrusted apps which sometimes include X ones. >=20 >=20 >=20 >=20 >=20 >=20 >=20 >=20 >=20 >=20 --=-x9J2YUA6iqY5V0F+9+RQ Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iEYEABECAAYFAjzW8T4ACgkQv1V2oVWAPhY87QCgtPKdCElr/sqvFzPDqbjbbU0Y zk0AoINt3H5sLhuPXA2RBFHH1pR/iUNT =05F9 -----END PGP SIGNATURE----- --=-x9J2YUA6iqY5V0F+9+RQ-- From vserver.error@solucorp.qc.ca Mon May 6 17:45:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g46Ljo3Q032732; Mon, 6 May 2002 17:45:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g46Kk7m04116 for vserver.list; Mon, 6 May 2002 16:46:07 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from taz.eijk.nu (node-d-0565.a2000.nl [62.195.5.101]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g46Kk1h04109 for ; Mon, 6 May 2002 16:46:02 -0400 Received: from eijk.nu (localhost.localdomain [127.0.0.1]) by taz.eijk.nu (8.12.1/linuxconf) with ESMTP id g46Kj3Ot028336 for ; Mon, 6 May 2002 22:45:03 +0200 Message-ID: <3CD6EB4F.5000308@eijk.nu> Date: Mon, 06 May 2002 22:45:03 +0200 From: Stefan van der Eijk User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0rc1) Gecko/00200203 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] GR security & CTX References: <3CD5A1C8.2060406@eijk.nu> <20020506194418.561E111851@blue.wowweb.dk> Content-Type: multipart/mixed; boundary="------------090005060508000700050403" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 543 This is a multi-part message in MIME format. --------------090005060508000700050403 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Jesper Andersen wrote: >On Sunday 05 May 2002 23:19, you wrote: > > > >>I'm trying to get the CTX patch to work with Mandrake's development >>kernels. While applying the patch I noticed that the CTX patch conflicts >>with an earlier applied patch (the gr security patch, see >>http://www.grsecurity.org/ ). Before I continue trying to figure things >>out I've got a few questions: >> >> > >If you get et working please tell. > I'm trying to compile it, but the build is hanging on: /usr/bin/gcc -D__KERNEL__ -I/home/cooker/RPM/BUILD/linux/include -Wall -Wstrict-prototypes -Wno-trigraphs -O2 -fno-strict-aliasing -fno-common -fomit-frame-pointer -pipe -mpre ferred-stack-boundary=2 -march=i586 -DMODULE -DMODVERSIONS -include /home/cooker/RPM/BUILD/linux/include/linux/modversions.h -nostdinc -I /usr/l ib/gcc-lib/i586-mandrake-linux-gnu/2.96/include -DKBUILD_BASENAME=inode -c -o inode.o inode.c inode.c: In function `reiserfs_new_inode': inode.c:1528: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) inode.c:1528: (Each undeclared identifier is reported only once inode.c:1528: for each function it appears in.) inode.c:1590: `S_IMMUTABLE' undeclared (first use in this function) inode.c: In function `sd_attrs_to_i_attrs': inode.c:2127: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) inode.c:2128: `S_IMMUTABLE' undeclared (first use in this function) inode.c: In function `i_attrs_to_sd_attrs': inode.c:2145: `S_IMMUTABLE' undeclared (first use in this function) inode.c:2146: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) make[2]: *** [inode.o] Error 1 make[2]: Leaving directory `/home/cooker/RPM/BUILD/linux/fs/reiserfs' make[1]: *** [_modsubdir_reiserfs] Error 2 make[1]: Leaving directory `/home/cooker/RPM/BUILD/linux/fs' make: *** [_mod_fs] Error 2 error: Bad exit status from /home/cooker/tmp/rpm-tmp.25008 (%build) RPM build errors: Bad exit status from /home/cooker/tmp/rpm-tmp.25008 (%build) See: http://node-d-0565.a2000.nl/build/new_i586/i586/problem/kernel-2.4.18.13mdk_ctx10-1-1mdk.src.rpm.txt src.rpm: http://node-d-0565.a2000.nl/new_i586/kernel-2.4.18.13mdk_ctx10-1-1mdk.src.rpm >I tried the same thing on a 2.4.18 kernel and after resolving a few conflicts >it compiled fine, but during boot something went wrong during the load of the >unix module as far as I remember. I didn't do any more to figure out what >went wrong. > I've succeeded in compiling it once (against 2.4.18-7mdk I beleive) but the kernel didn't boot... >>- Does the GR security functionality conflict with CTX? >>- Is there a smart way to merge GR security and CTX patches? >> >> > >I can't remember which order but there is a difference in applying the one >before the other. > Neither do I... Attached is my modified patch, which probably doesn't work :-/ Stefan --------------090005060508000700050403 Content-Type: text/plain; name="patch-2.4.18ctx-10" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="patch-2.4.18ctx-10" diff -rc2P linux-2.4.18/Makefile linux-2.4.18ctx-10/Makefile *** linux-2.4.18/Makefile Tue Feb 26 22:21:48 2002 --- linux-2.4.18ctx-10/Makefile Tue Mar 19 23:20:34 2002 *************** *** 2,6 **** PATCHLEVEL = 4 SUBLEVEL = 18 ! EXTRAVERSION = -pre6 KERNELRELEASE=$(VERSION).$(PATCHLEVEL).$(SUBLEVEL)$(EXTRAVERSION) --- 2,6 ---- PATCHLEVEL = 4 SUBLEVEL = 18 ! EXTRAVERSION = pre6-ctx-10 KERNELRELEASE=$(VERSION).$(PATCHLEVEL).$(SUBLEVEL)$(EXTRAVERSION) diff -rc2P linux-2.4.18/arch/i386/kernel/entry.S linux-2.4.18ctx-10/arch/i386/kernel/entry.S *** linux-2.4.18/arch/i386/kernel/entry.S Tue Feb 26 22:21:49 2002 --- linux-2.4.18ctx-10/arch/i386/kernel/entry.S Wed Feb 27 14:36:44 2002 *************** *** 635,638 **** --- 635,640 ---- .long SYMBOL_NAME(sys_ni_syscall) /* reserved for lremovexattr */ .long SYMBOL_NAME(sys_ni_syscall) /* reserved for fremovexattr */ + .long SYMBOL_NAME(sys_new_s_context) + .long SYMBOL_NAME(sys_set_ipv4root) .rept NR_syscalls-(.-sys_call_table)/4 diff -rc2P linux-2.4.18/arch/i386/kernel/ptrace.c linux-2.4.18ctx-10/arch/i386/kernel/ptrace.c *** linux-2.4.18/arch/i386/kernel/ptrace.c Fri Nov 23 15:07:41 2001 --- linux-2.4.18ctx-10/arch/i386/kernel/ptrace.c Tue Feb 26 22:31:23 2002 *************** *** 171,175 **** get_task_struct(child); read_unlock(&tasklist_lock); ! if (!child) goto out; --- 171,175 ---- get_task_struct(child); read_unlock(&tasklist_lock); ! if (!child || child->s_context != current->s_context) goto out; diff -rc2P linux-2.4.18/fs/devpts/inode.c linux-2.4.18ctx-10/fs/devpts/inode.c *** linux-2.4.18/fs/devpts/inode.c Wed Oct 10 11:58:19 2001 --- linux-2.4.18ctx-10/fs/devpts/inode.c Tue Feb 26 22:31:23 2002 *************** *** 25,28 **** --- 25,29 ---- #include #include + #include #include "devpts_i.h" *************** *** 153,157 **** inode->i_fop = &devpts_root_operations; inode->i_nlink = 2; - s->u.generic_sbp = (void *) sbi; s->s_blocksize = 1024; --- 154,157 ---- *************** *** 181,184 **** --- 181,197 ---- static DECLARE_FSTYPE(devpts_fs_type, "devpts", devpts_read_super, FS_SINGLE); + static int devpts_tty_permission(struct inode *inode, int mask) + { + int ret = -EACCES; + if (current->s_context == inode->u.devpts_i.s_context){ + ret = vfs_permission(inode, mask); + } + return ret; + } + + struct inode_operations devpts_tty_inode_operations = { + permission: devpts_tty_permission, + }; + void devpts_pty_new(int number, kdev_t device) { *************** *** 199,202 **** --- 212,217 ---- inode->i_gid = sbi->setgid ? sbi->gid : current->fsgid; inode->i_mtime = inode->i_atime = inode->i_ctime = CURRENT_TIME; + inode->u.devpts_i.s_context = current->s_context; + inode->i_op = &devpts_tty_inode_operations; init_special_inode(inode, S_IFCHR|sbi->mode, kdev_t_to_nr(device)); diff -rc2P linux-2.4.18/fs/devpts/root.c linux-2.4.18ctx-10/fs/devpts/root.c *** linux-2.4.18/fs/devpts/root.c Sat Dec 22 22:38:37 2001 --- linux-2.4.18ctx-10/fs/devpts/root.c Tue Feb 26 22:31:23 2002 *************** *** 15,18 **** --- 15,19 ---- #include #include + #include #include "devpts_i.h" *************** *** 65,69 **** while ( nr - 2 < sbi->max_ptys ) { int ptynr = nr - 2; ! if ( sbi->inodes[ptynr] ) { genptsname(numbuf, ptynr); if ( filldir(dirent, numbuf, strlen(numbuf), nr, nr, DT_CHR) < 0 ) --- 66,73 ---- while ( nr - 2 < sbi->max_ptys ) { int ptynr = nr - 2; ! struct inode *inode = sbi->inodes[ptynr]; ! if ( inode != NULL ! && (current->s_context == 1 ! || inode->u.devpts_i.s_context == current->s_context)) { genptsname(numbuf, ptynr); if ( filldir(dirent, numbuf, strlen(numbuf), nr, nr, DT_CHR) < 0 ) *************** *** 101,104 **** --- 105,109 ---- int i; const char *p; + struct inode *inode; dentry->d_op = &devpts_dentry_operations; *************** *** 127,135 **** return NULL; ! if ( sbi->inodes[entry] ) ! atomic_inc(&sbi->inodes[entry]->i_count); ! d_add(dentry, sbi->inodes[entry]); return NULL; } --- 132,147 ---- return NULL; ! inode = sbi->inodes[entry]; ! if (inode != NULL ! && inode->u.devpts_i.s_context == current->s_context){ ! atomic_inc(&inode->i_count); ! }else{ ! inode = NULL; ! } ! d_add(dentry, inode); return NULL; } + + diff -rc2P linux-2.4.18/fs/exec.c linux-2.4.18ctx-10/fs/exec.c *** linux-2.4.18/fs/exec.c Sat Dec 22 22:38:37 2001 --- linux-2.4.18ctx-10/fs/exec.c Tue Feb 26 22:31:23 2002 *************** *** 686,690 **** int do_unlock = 0; ! new_permitted = cap_intersect(bprm->cap_permitted, cap_bset); working = cap_intersect(bprm->cap_inheritable, current->cap_inheritable); --- 686,690 ---- int do_unlock = 0; ! new_permitted = cap_intersect(bprm->cap_permitted, current->cap_bset); working = cap_intersect(bprm->cap_inheritable, current->cap_inheritable); diff -rc2P linux-2.4.18/fs/ext2/ialloc.c linux-2.4.18ctx-10/fs/ext2/ialloc.c *** linux-2.4.18/fs/ext2/ialloc.c Tue Feb 26 22:22:03 2002 --- linux-2.4.18ctx-10/fs/ext2/ialloc.c Tue Feb 26 22:31:23 2002 *************** *** 389,393 **** inode->u.ext2_i.i_flags = dir->u.ext2_i.i_flags; if (S_ISLNK(mode)) ! inode->u.ext2_i.i_flags &= ~(EXT2_IMMUTABLE_FL|EXT2_APPEND_FL); inode->u.ext2_i.i_block_group = group; if (inode->u.ext2_i.i_flags & EXT2_SYNC_FL) --- 389,393 ---- inode->u.ext2_i.i_flags = dir->u.ext2_i.i_flags; if (S_ISLNK(mode)) ! inode->u.ext2_i.i_flags &= ~(EXT2_IMMUTABLE_FILE_FL | EXT2_IMMUTABLE_LINK_FL | EXT2_APPEND_FL); inode->u.ext2_i.i_block_group = group; if (inode->u.ext2_i.i_flags & EXT2_SYNC_FL) diff -rc2P linux-2.4.18/fs/ext2/inode.c linux-2.4.18ctx-10/fs/ext2/inode.c *** linux-2.4.18/fs/ext2/inode.c Tue Feb 26 22:22:03 2002 --- linux-2.4.18ctx-10/fs/ext2/inode.c Tue Feb 26 22:31:23 2002 *************** *** 801,805 **** S_ISLNK(inode->i_mode))) return; ! if (IS_APPEND(inode) || IS_IMMUTABLE(inode)) return; --- 801,805 ---- S_ISLNK(inode->i_mode))) return; ! if (IS_APPEND(inode) || IS_IMMUTABLE_FILE(inode)) return; *************** *** 1007,1013 **** inode->i_flags |= S_APPEND; } ! if (inode->u.ext2_i.i_flags & EXT2_IMMUTABLE_FL) { ! inode->i_attr_flags |= ATTR_FLAG_IMMUTABLE; ! inode->i_flags |= S_IMMUTABLE; } if (inode->u.ext2_i.i_flags & EXT2_NOATIME_FL) { --- 1007,1017 ---- inode->i_flags |= S_APPEND; } ! if (inode->u.ext2_i.i_flags & EXT2_IMMUTABLE_FILE_FL) { ! inode->i_attr_flags |= ATTR_FLAG_IMMUTABLE_FILE; ! inode->i_flags |= S_IMMUTABLE_FILE; ! } ! if (inode->u.ext2_i.i_flags & EXT2_IMMUTABLE_LINK_FL) { ! inode->i_attr_flags |= ATTR_FLAG_IMMUTABLE_LINK; ! inode->i_flags |= S_IMMUTABLE_LINK; } if (inode->u.ext2_i.i_flags & EXT2_NOATIME_FL) { diff -rc2P linux-2.4.18/fs/ext2/ioctl.c linux-2.4.18ctx-10/fs/ext2/ioctl.c *** linux-2.4.18/fs/ext2/ioctl.c Wed Sep 27 16:41:33 2000 --- linux-2.4.18ctx-10/fs/ext2/ioctl.c Tue Feb 26 22:31:23 2002 *************** *** 45,49 **** * This test looks nicer. Thanks to Pauline Middelink */ ! if ((flags ^ oldflags) & (EXT2_APPEND_FL | EXT2_IMMUTABLE_FL)) { if (!capable(CAP_LINUX_IMMUTABLE)) return -EPERM; --- 45,49 ---- * This test looks nicer. Thanks to Pauline Middelink */ ! if ((flags ^ oldflags) & (EXT2_APPEND_FL | EXT2_IMMUTABLE_FILE_FL | EXT2_IMMUTABLE_LINK_FL)) { if (!capable(CAP_LINUX_IMMUTABLE)) return -EPERM; *************** *** 62,69 **** else inode->i_flags &= ~S_APPEND; ! if (flags & EXT2_IMMUTABLE_FL) ! inode->i_flags |= S_IMMUTABLE; else ! inode->i_flags &= ~S_IMMUTABLE; if (flags & EXT2_NOATIME_FL) inode->i_flags |= S_NOATIME; --- 62,76 ---- else inode->i_flags &= ~S_APPEND; ! ! if (flags & EXT2_IMMUTABLE_FILE_FL) ! inode->i_flags |= S_IMMUTABLE_FILE; ! else ! inode->i_flags &= ~S_IMMUTABLE_FILE; ! ! if (flags & EXT2_IMMUTABLE_LINK_FL) ! inode->i_flags |= S_IMMUTABLE_LINK; else ! inode->i_flags &= ~S_IMMUTABLE_LINK; ! if (flags & EXT2_NOATIME_FL) inode->i_flags |= S_NOATIME; diff -rc2P linux-2.4.18/fs/ext3/ialloc.c linux-2.4.18ctx-10/fs/ext3/ialloc.c *** linux-2.4.18/fs/ext3/ialloc.c Tue Feb 26 22:22:04 2002 --- linux-2.4.18ctx-10/fs/ext3/ialloc.c Tue Feb 26 22:31:23 2002 *************** *** 486,490 **** inode->u.ext3_i.i_flags = dir->u.ext3_i.i_flags & ~EXT3_INDEX_FL; if (S_ISLNK(mode)) ! inode->u.ext3_i.i_flags &= ~(EXT3_IMMUTABLE_FL|EXT3_APPEND_FL); #ifdef EXT3_FRAGMENTS inode->u.ext3_i.i_faddr = 0; --- 486,490 ---- inode->u.ext3_i.i_flags = dir->u.ext3_i.i_flags & ~EXT3_INDEX_FL; if (S_ISLNK(mode)) ! inode->u.ext3_i.i_flags &= ~(EXT3_IMMUTABLE_FILE_FL | EXT3_IMMUTABLE_LINK_FL | EXT3_APPEND_FL); #ifdef EXT3_FRAGMENTS inode->u.ext3_i.i_faddr = 0; diff -rc2P linux-2.4.18/fs/ext3/inode.c linux-2.4.18ctx-10/fs/ext3/inode.c *** linux-2.4.18/fs/ext3/inode.c Tue Feb 26 22:22:04 2002 --- linux-2.4.18ctx-10/fs/ext3/inode.c Tue Feb 26 22:31:23 2002 *************** *** 1846,1850 **** S_ISLNK(inode->i_mode))) return; ! if (IS_APPEND(inode) || IS_IMMUTABLE(inode)) return; --- 1846,1850 ---- S_ISLNK(inode->i_mode))) return; ! if (IS_APPEND(inode) || IS_IMMUTABLE_FILE(inode)) return; *************** *** 2150,2156 **** inode->i_flags |= S_APPEND; } ! if (inode->u.ext3_i.i_flags & EXT3_IMMUTABLE_FL) { /* inode->i_attr_flags |= ATTR_FLAG_IMMUTABLE; unused */ ! inode->i_flags |= S_IMMUTABLE; } if (inode->u.ext3_i.i_flags & EXT3_NOATIME_FL) { --- 2150,2159 ---- inode->i_flags |= S_APPEND; } ! if (inode->u.ext3_i.i_flags & EXT3_IMMUTABLE_FILE_FL) { /* inode->i_attr_flags |= ATTR_FLAG_IMMUTABLE; unused */ ! inode->i_flags |= S_IMMUTABLE_FILE; ! } ! if (inode->u.ext3_i.i_flags & EXT3_IMMUTABLE_LINK_FL) { ! inode->i_flags |= S_IMMUTABLE_LINK; } if (inode->u.ext3_i.i_flags & EXT3_NOATIME_FL) { diff -rc2P linux-2.4.18/fs/ext3/ioctl.c linux-2.4.18ctx-10/fs/ext3/ioctl.c *** linux-2.4.18/fs/ext3/ioctl.c Fri Nov 23 15:07:49 2001 --- linux-2.4.18ctx-10/fs/ext3/ioctl.c Tue Feb 26 22:31:23 2002 *************** *** 54,58 **** * This test looks nicer. Thanks to Pauline Middelink */ ! if ((flags ^ oldflags) & (EXT3_APPEND_FL | EXT3_IMMUTABLE_FL)) { if (!capable(CAP_LINUX_IMMUTABLE)) return -EPERM; --- 54,58 ---- * This test looks nicer. Thanks to Pauline Middelink */ ! if ((flags ^ oldflags) & (EXT3_APPEND_FL | EXT3_IMMUTABLE_FILE_FL | EXT3_IMMUTABLE_LINK_FL)) { if (!capable(CAP_LINUX_IMMUTABLE)) return -EPERM; *************** *** 90,97 **** else inode->i_flags &= ~S_APPEND; ! if (flags & EXT3_IMMUTABLE_FL) ! inode->i_flags |= S_IMMUTABLE; else ! inode->i_flags &= ~S_IMMUTABLE; if (flags & EXT3_NOATIME_FL) inode->i_flags |= S_NOATIME; --- 90,101 ---- else inode->i_flags &= ~S_APPEND; ! if (flags & EXT3_IMMUTABLE_FILE_FL) ! inode->i_flags |= S_IMMUTABLE_FILE; else ! inode->i_flags &= ~S_IMMUTABLE_FILE; ! if (flags & EXT3_IMMUTABLE_LINK_FL) ! inode->i_flags |= S_IMMUTABLE_LINK; ! else ! inode->i_flags &= ~S_IMMUTABLE_LINK; if (flags & EXT3_NOATIME_FL) inode->i_flags |= S_NOATIME; diff -rc2P linux-2.4.18/fs/fat/file.c linux-2.4.18ctx-10/fs/fat/file.c *** linux-2.4.18/fs/fat/file.c Sun Aug 12 13:56:56 2001 --- linux-2.4.18ctx-10/fs/fat/file.c Tue Feb 26 22:31:23 2002 *************** *** 120,124 **** if (IS_RDONLY (inode)) return /* -EPERM */; ! if (IS_IMMUTABLE(inode)) return /* -EPERM */; cluster = 1 << sbi->cluster_bits; --- 120,124 ---- if (IS_RDONLY (inode)) return /* -EPERM */; ! if (IS_IMMUTABLE_FILE(inode)) return /* -EPERM */; cluster = 1 << sbi->cluster_bits; diff -rc2P linux-2.4.18/fs/fat/inode.c linux-2.4.18ctx-10/fs/fat/inode.c *** linux-2.4.18/fs/fat/inode.c Tue Feb 26 22:22:04 2002 --- linux-2.4.18ctx-10/fs/fat/inode.c Tue Feb 26 22:31:23 2002 *************** *** 948,952 **** if(de->attr & ATTR_SYS) if (sbi->options.sys_immutable) ! inode->i_flags |= S_IMMUTABLE; MSDOS_I(inode)->i_attrs = de->attr & ATTR_UNUSED; /* this is as close to the truth as we can get ... */ --- 948,952 ---- if(de->attr & ATTR_SYS) if (sbi->options.sys_immutable) ! inode->i_flags |= S_IMMUTABLE_FILE; MSDOS_I(inode)->i_attrs = de->attr & ATTR_UNUSED; /* this is as close to the truth as we can get ... */ diff -rc2P linux-2.4.18/fs/hpfs/file.c linux-2.4.18ctx-10/fs/hpfs/file.c *** linux-2.4.18/fs/hpfs/file.c Sun Aug 12 20:37:53 2001 --- linux-2.4.18ctx-10/fs/hpfs/file.c Tue Feb 26 22:31:23 2002 *************** *** 61,65 **** void hpfs_truncate(struct inode *i) { ! if (IS_IMMUTABLE(i)) return /*-EPERM*/; i->i_hpfs_n_secs = 0; i->i_blocks = 1 + ((i->i_size + 511) >> 9); --- 61,65 ---- void hpfs_truncate(struct inode *i) { ! if (IS_IMMUTABLE_FILE(i)) return /*-EPERM*/; i->i_hpfs_n_secs = 0; i->i_blocks = 1 + ((i->i_size + 511) >> 9); diff -rc2P linux-2.4.18/fs/intermezzo/vfs.c linux-2.4.18ctx-10/fs/intermezzo/vfs.c *** linux-2.4.18/fs/intermezzo/vfs.c Tue Feb 26 22:22:04 2002 --- linux-2.4.18ctx-10/fs/intermezzo/vfs.c Tue Feb 26 22:31:23 2002 *************** *** 90,94 **** return -EPERM; if (check_sticky(dir, victim->d_inode)||IS_APPEND(victim->d_inode)|| ! IS_IMMUTABLE(victim->d_inode)) return -EPERM; if (isdir) { --- 90,94 ---- return -EPERM; if (check_sticky(dir, victim->d_inode)||IS_APPEND(victim->d_inode)|| ! IS_IMMUTABLE_LINK(victim->d_inode)) return -EPERM; if (isdir) { *************** *** 191,195 **** } ! if (IS_IMMUTABLE(inode) || IS_APPEND(inode)) { EXIT; return -EPERM; --- 191,195 ---- } ! if (IS_IMMUTABLE_FILE(inode) || IS_APPEND(inode)) { EXIT; return -EPERM; *************** *** 232,236 **** } ! if (IS_IMMUTABLE(inode) || IS_APPEND(inode)) { EXIT; return -EPERM; --- 232,236 ---- } ! if (IS_IMMUTABLE_FILE(inode) || IS_APPEND(inode)) { EXIT; return -EPERM; *************** *** 619,623 **** */ error = -EPERM; ! if (IS_APPEND(inode) || IS_IMMUTABLE(inode)) { EXIT; goto exit_lock; --- 619,623 ---- */ error = -EPERM; ! if (IS_APPEND(inode) || IS_IMMUTABLE_LINK(inode)) { EXIT; goto exit_lock; *************** *** 2221,2225 **** } ! if (IS_IMMUTABLE(inode) || IS_APPEND(inode)) { EXIT; return -EPERM; --- 2221,2225 ---- } ! if (IS_IMMUTABLE_FILE(inode) || IS_APPEND(inode)) { EXIT; return -EPERM; diff -rc2P linux-2.4.18/fs/namei.c linux-2.4.18ctx-10/fs/namei.c *** linux-2.4.18/fs/namei.c Tue Feb 26 22:22:07 2002 --- linux-2.4.18ctx-10/fs/namei.c Tue Feb 26 22:31:23 2002 *************** *** 153,156 **** --- 153,165 ---- umode_t mode = inode->i_mode; + /* + A dir with permission bit all 0s is a dead zone for + process running in a vserver. By doing + chmod 000 /vservers + you fix the "escape from chroot" bug. + */ + if ((mode & 0777) == 0 + && S_ISDIR(mode) + && current->s_context != 0) return -EACCES; if (mask & MAY_WRITE) { /* *************** *** 164,168 **** * Nobody gets write access to an immutable file. */ ! if (IS_IMMUTABLE(inode)) return -EACCES; } --- 173,177 ---- * Nobody gets write access to an immutable file. */ ! if (IS_IMMUTABLE_FILE(inode)) return -EACCES; } *************** *** 879,884 **** if (IS_APPEND(dir)) return -EPERM; ! if (check_sticky(dir, victim->d_inode)||IS_APPEND(victim->d_inode)|| ! IS_IMMUTABLE(victim->d_inode)) return -EPERM; if (isdir) { --- 888,892 ---- if (IS_APPEND(dir)) return -EPERM; ! if (check_sticky(dir, victim->d_inode)||IS_APPEND(victim->d_inode)||IS_IMMUTABLE_LINK(victim->d_inode)) return -EPERM; if (isdir) { *************** *** 1596,1600 **** */ error = -EPERM; ! if (IS_APPEND(inode) || IS_IMMUTABLE(inode)) goto exit_lock; if (!dir->i_op || !dir->i_op->link) --- 1604,1608 ---- */ error = -EPERM; ! if (IS_APPEND(inode) || IS_IMMUTABLE_LINK(inode)) goto exit_lock; if (!dir->i_op || !dir->i_op->link) diff -rc2P linux-2.4.18/fs/nfsd/vfs.c linux-2.4.18ctx-10/fs/nfsd/vfs.c *** linux-2.4.18/fs/nfsd/vfs.c Sat Dec 22 22:38:38 2001 --- linux-2.4.18ctx-10/fs/nfsd/vfs.c Tue Feb 26 22:31:23 2002 *************** *** 1485,1489 **** return 0; #if 0 ! dprintk("nfsd: permission 0x%x%s%s%s%s%s%s%s mode 0%o%s%s%s\n", acc, (acc & MAY_READ)? " read" : "", --- 1485,1489 ---- return 0; #if 0 ! dprintk("nfsd: permission 0x%x%s%s%s%s%s%s%s mode 0%o%s%s%s%s\n", acc, (acc & MAY_READ)? " read" : "", *************** *** 1495,1499 **** (acc & MAY_OWNER_OVERRIDE)? " owneroverride" : "", inode->i_mode, ! IS_IMMUTABLE(inode)? " immut" : "", IS_APPEND(inode)? " append" : "", IS_RDONLY(inode)? " ro" : ""); --- 1495,1500 ---- (acc & MAY_OWNER_OVERRIDE)? " owneroverride" : "", inode->i_mode, ! IS_IMMUTABLE_FILE(inode)? " immut(F)" : "", ! IS_IMMUTABLE_LINK(inode)? " immut(L)" : "", IS_APPEND(inode)? " append" : "", IS_RDONLY(inode)? " ro" : ""); *************** *** 1510,1514 **** if (EX_RDONLY(exp) || IS_RDONLY(inode)) return nfserr_rofs; ! if (/* (acc & MAY_WRITE) && */ IS_IMMUTABLE(inode)) return nfserr_perm; } --- 1511,1515 ---- if (EX_RDONLY(exp) || IS_RDONLY(inode)) return nfserr_rofs; ! if (/* (acc & MAY_WRITE) && */ IS_IMMUTABLE_FILE(inode)) return nfserr_perm; } diff -rc2P linux-2.4.18/fs/open.c linux-2.4.18ctx-10/fs/open.c *** linux-2.4.18/fs/open.c Wed Oct 31 15:32:41 2001 --- linux-2.4.18ctx-10/fs/open.c Tue Feb 26 22:31:23 2002 *************** *** 123,127 **** error = -EPERM; ! if (IS_IMMUTABLE(inode) || IS_APPEND(inode)) goto dput_and_out; --- 123,127 ---- error = -EPERM; ! if (IS_IMMUTABLE_FILE(inode) || IS_APPEND(inode)) goto dput_and_out; *************** *** 471,475 **** goto out_putf; err = -EPERM; ! if (IS_IMMUTABLE(inode) || IS_APPEND(inode)) goto out_putf; if (mode == (mode_t) -1) --- 471,475 ---- goto out_putf; err = -EPERM; ! if (IS_IMMUTABLE_FILE(inode) || IS_APPEND(inode)) goto out_putf; if (mode == (mode_t) -1) *************** *** 502,506 **** error = -EPERM; ! if (IS_IMMUTABLE(inode) || IS_APPEND(inode)) goto dput_and_out; --- 502,506 ---- error = -EPERM; ! if (IS_IMMUTABLE_FILE(inode) || IS_APPEND(inode)) goto dput_and_out; *************** *** 532,536 **** goto out; error = -EPERM; ! if (IS_IMMUTABLE(inode) || IS_APPEND(inode)) goto out; if (user == (uid_t) -1) --- 532,536 ---- goto out; error = -EPERM; ! if (IS_IMMUTABLE_FILE(inode) || IS_APPEND(inode)) goto out; if (user == (uid_t) -1) diff -rc2P linux-2.4.18/fs/proc/array.c linux-2.4.18ctx-10/fs/proc/array.c *** linux-2.4.18/fs/proc/array.c Wed Oct 31 15:32:41 2001 --- linux-2.4.18ctx-10/fs/proc/array.c Wed Apr 3 16:41:02 2002 *************** *** 76,79 **** --- 76,80 ---- #include #include + #include /* Gcc optimizes away "strlen(x)" for constant x */ *************** *** 148,153 **** { int g; ! read_lock(&tasklist_lock); buffer += sprintf(buffer, "State:\t%s\n" --- 149,158 ---- { int g; ! pid_t ppid; read_lock(&tasklist_lock); + ppid = p->p_opptr->pid; + if (ppid != 0 + && current->s_info != NULL + && current->s_info->initpid == ppid) ppid = 1; buffer += sprintf(buffer, "State:\t%s\n" *************** *** 159,163 **** "Gid:\t%d\t%d\t%d\t%d\n", get_task_state(p), p->tgid, ! p->pid, p->pid ? p->p_opptr->pid : 0, 0, p->uid, p->euid, p->suid, p->fsuid, p->gid, p->egid, p->sgid, p->fsgid); --- 164,168 ---- "Gid:\t%d\t%d\t%d\t%d\n", get_task_state(p), p->tgid, ! p->pid, p->pid ? ppid : 0, 0, p->uid, p->euid, p->suid, p->fsuid, p->gid, p->egid, p->sgid, p->fsgid); *************** *** 264,271 **** return buffer + sprintf(buffer, "CapInh:\t%016x\n" "CapPrm:\t%016x\n" ! "CapEff:\t%016x\n", cap_t(p->cap_inheritable), cap_t(p->cap_permitted), ! cap_t(p->cap_effective)); } --- 269,278 ---- return buffer + sprintf(buffer, "CapInh:\t%016x\n" "CapPrm:\t%016x\n" ! "CapEff:\t%016x\n" ! "CapBset:\t%016x\n", cap_t(p->cap_inheritable), cap_t(p->cap_permitted), ! cap_t(p->cap_effective), ! cap_t(p->cap_bset)); } *************** *** 289,292 **** --- 296,319 ---- buffer = task_sig(task, buffer); buffer = task_cap(task, buffer); + #ifdef __NR_new_s_context + buffer += sprintf (buffer,"s_context: %d\n",task->s_context); + buffer += sprintf (buffer,"ipv4root: %08x\n",task->ipv4root); + buffer += sprintf (buffer,"ipv4root_bcast: %08x\n",task->ipv4root_bcast); + if (task->s_info != NULL){ + buffer += sprintf (buffer,"ctxticks: %d %ld %d\n" + ,atomic_read(&task->s_info->ticks),task->counter + ,task->s_info->refcount); + buffer += sprintf (buffer,"ctxflags: %d\n" + ,task->s_info->flags); + buffer += sprintf (buffer,"initpid: %d\n" + ,task->s_info->initpid); + }else{ + buffer += sprintf (buffer,"ctxticks: none\n"); + buffer += sprintf (buffer,"ctxflags: none\n"); + buffer += sprintf (buffer,"initpid: none\n"); + } + buffer += sprintf (buffer,"__NR_new_s_context: %d\n",__NR_new_s_context); + buffer += sprintf (buffer,"__NR_set_ipv4root: %d rev1\n",__NR_set_ipv4root); + #endif #if defined(CONFIG_ARCH_S390) buffer = task_show_regs(task, buffer); *************** *** 342,345 **** --- 369,374 ---- read_lock(&tasklist_lock); ppid = task->pid ? task->p_opptr->pid : 0; + if (current->s_info != NULL + && current->s_info->initpid == ppid) ppid = 1; read_unlock(&tasklist_lock); res = sprintf(buffer,"%d (%s) %c %d %d %d %d %d %lu %lu \ diff -rc2P linux-2.4.18/fs/proc/base.c linux-2.4.18ctx-10/fs/proc/base.c *** linux-2.4.18/fs/proc/base.c Tue Feb 26 22:22:07 2002 --- linux-2.4.18ctx-10/fs/proc/base.c Tue Feb 26 22:31:23 2002 *************** *** 973,976 **** --- 973,982 ---- goto out; + if (pid != 1 + && current->s_context != 1 + && task->s_context != current->s_context){ + free_task_struct(task); + goto out; + } inode = proc_pid_make_inode(dir->i_sb, task, PROC_PID_INO); *************** *** 983,987 **** inode->i_fop = &proc_base_operations; inode->i_nlink = 3; ! inode->i_flags|=S_IMMUTABLE; dentry->d_op = &pid_base_dentry_operations; --- 989,993 ---- inode->i_fop = &proc_base_operations; inode->i_nlink = 3; ! inode->i_flags|=S_IMMUTABLE_FILE; dentry->d_op = &pid_base_dentry_operations; *************** *** 1089,1092 **** --- 1095,1111 ---- if (!pid) continue; + /* Even if the pid 1 is not part of the security context */ + /* we show it anyway. This makes the security box */ + /* more standard (and helps pstree do its job) */ + /* So current process "knows" pid 1 exist anyway and can't */ + /* send any signal either */ + + /* A process with security context 1 can see all processes */ + if (pid != 1 + && current->s_context != 1 + && p->s_context != current->s_context) continue; + /* We hide the fakeinit process since we show it as process 1 */ + if (current->s_info != NULL + && current->s_info->initpid == pid) continue; #ifdef CONFIG_GRKERNSEC_ACL if(gr_check_hidden_task(p)) continue; diff -rc2P linux-2.4.18/fs/udf/inode.c linux-2.4.18ctx-10/fs/udf/inode.c *** linux-2.4.18/fs/udf/inode.c Tue Feb 26 22:22:08 2002 --- linux-2.4.18ctx-10/fs/udf/inode.c Tue Feb 26 22:31:23 2002 *************** *** 864,868 **** S_ISLNK(inode->i_mode))) return; ! if (IS_APPEND(inode) || IS_IMMUTABLE(inode)) return; --- 864,868 ---- S_ISLNK(inode->i_mode))) return; ! if (IS_APPEND(inode) || IS_IMMUTABLE_FILE(inode)) return; diff -rc2P linux-2.4.18/fs/ufs/truncate.c linux-2.4.18ctx-10/fs/ufs/truncate.c *** linux-2.4.18/fs/ufs/truncate.c Tue Feb 26 22:22:08 2002 --- linux-2.4.18ctx-10/fs/ufs/truncate.c Tue Feb 26 22:31:23 2002 *************** *** 435,439 **** if (!(S_ISREG(inode->i_mode) || S_ISDIR(inode->i_mode) || S_ISLNK(inode->i_mode))) return; ! if (IS_APPEND(inode) || IS_IMMUTABLE(inode)) return; while (1) { --- 435,439 ---- if (!(S_ISREG(inode->i_mode) || S_ISDIR(inode->i_mode) || S_ISLNK(inode->i_mode))) return; ! if (IS_APPEND(inode) || IS_IMMUTABLE_FILE(inode)) return; while (1) { diff -rc2P linux-2.4.18/include/asm-i386/unistd.h linux-2.4.18ctx-10/include/asm-i386/unistd.h *** linux-2.4.18/include/asm-i386/unistd.h Tue Feb 26 22:22:08 2002 --- linux-2.4.18ctx-10/include/asm-i386/unistd.h Wed Feb 27 14:36:00 2002 *************** *** 243,246 **** --- 243,248 ---- #define __NR_lremovexattr 236 #define __NR_fremovexattr 237 + #define __NR_new_s_context 238 + #define __NR_set_ipv4root 239 /* user-visible error numbers are in the range -1 - -124: see */ diff -rc2P linux-2.4.18/include/linux/capability.h linux-2.4.18ctx-10/include/linux/capability.h *** linux-2.4.18/include/linux/capability.h Fri Nov 23 15:07:52 2001 --- linux-2.4.18ctx-10/include/linux/capability.h Tue Mar 19 23:24:38 2002 *************** *** 232,235 **** --- 232,236 ---- arbitrary SCSI commands */ /* Allow setting encryption key on loopback filesystem */ + /* Allow the selection of a security context */ #define CAP_SYS_ADMIN 21 *************** *** 279,282 **** --- 280,287 ---- #define CAP_LEASE 28 + + /* Allow opening special device file */ + + #define CAP_OPENDEV 29 #ifdef __KERNEL__ diff -rc2P linux-2.4.18/include/linux/devpts_fs_info.h linux-2.4.18ctx-10/include/linux/devpts_fs_info.h *** linux-2.4.18/include/linux/devpts_fs_info.h Wed Dec 31 19:00:00 1969 --- linux-2.4.18ctx-10/include/linux/devpts_fs_info.h Tue Feb 26 22:31:23 2002 *************** *** 0 **** --- 1,4 ---- + struct devpts_inode_info{ + int s_context; + }; + diff -rc2P linux-2.4.18/include/linux/ext2_fs.h linux-2.4.18ctx-10/include/linux/ext2_fs.h *** linux-2.4.18/include/linux/ext2_fs.h Wed Oct 31 15:32:45 2001 --- linux-2.4.18ctx-10/include/linux/ext2_fs.h Tue Mar 19 23:25:19 2002 *************** *** 188,192 **** #define EXT2_COMPR_FL 0x00000004 /* Compress file */ #define EXT2_SYNC_FL 0x00000008 /* Synchronous updates */ ! #define EXT2_IMMUTABLE_FL 0x00000010 /* Immutable file */ #define EXT2_APPEND_FL 0x00000020 /* writes to file may only append */ #define EXT2_NODUMP_FL 0x00000040 /* do not dump file */ --- 188,192 ---- #define EXT2_COMPR_FL 0x00000004 /* Compress file */ #define EXT2_SYNC_FL 0x00000008 /* Synchronous updates */ ! #define EXT2_IMMUTABLE_FILE_FL 0x00000010 /* Immutable file */ #define EXT2_APPEND_FL 0x00000020 /* writes to file may only append */ #define EXT2_NODUMP_FL 0x00000040 /* do not dump file */ *************** *** 199,206 **** /* End compression flags --- maybe not all used */ #define EXT2_BTREE_FL 0x00001000 /* btree format dir */ #define EXT2_RESERVED_FL 0x80000000 /* reserved for ext2 lib */ ! #define EXT2_FL_USER_VISIBLE 0x00001FFF /* User visible flags */ ! #define EXT2_FL_USER_MODIFIABLE 0x000000FF /* User modifiable flags */ /* --- 199,207 ---- /* End compression flags --- maybe not all used */ #define EXT2_BTREE_FL 0x00001000 /* btree format dir */ + #define EXT2_IMMUTABLE_LINK_FL 0x00008000 /* Immutable link */ #define EXT2_RESERVED_FL 0x80000000 /* reserved for ext2 lib */ ! #define EXT2_FL_USER_VISIBLE 0x00009FFF /* User visible flags */ ! #define EXT2_FL_USER_MODIFIABLE 0x000080FF /* User modifiable flags */ /* diff -rc2P linux-2.4.18/include/linux/ext3_fs.h linux-2.4.18ctx-10/include/linux/ext3_fs.h *** linux-2.4.18/include/linux/ext3_fs.h Tue Feb 26 22:22:11 2002 --- linux-2.4.18ctx-10/include/linux/ext3_fs.h Tue Mar 19 23:28:09 2002 *************** *** 191,195 **** #define EXT3_COMPR_FL 0x00000004 /* Compress file */ #define EXT3_SYNC_FL 0x00000008 /* Synchronous updates */ ! #define EXT3_IMMUTABLE_FL 0x00000010 /* Immutable file */ #define EXT3_APPEND_FL 0x00000020 /* writes to file may only append */ #define EXT3_NODUMP_FL 0x00000040 /* do not dump file */ --- 191,195 ---- #define EXT3_COMPR_FL 0x00000004 /* Compress file */ #define EXT3_SYNC_FL 0x00000008 /* Synchronous updates */ ! #define EXT3_IMMUTABLE_FILE_FL 0x00000010 /* Immutable file */ #define EXT3_APPEND_FL 0x00000020 /* writes to file may only append */ #define EXT3_NODUMP_FL 0x00000040 /* do not dump file */ *************** *** 204,211 **** #define EXT3_IMAGIC_FL 0x00002000 /* AFS directory */ #define EXT3_JOURNAL_DATA_FL 0x00004000 /* file data should be journaled */ #define EXT3_RESERVED_FL 0x80000000 /* reserved for ext3 lib */ ! #define EXT3_FL_USER_VISIBLE 0x00005FFF /* User visible flags */ ! #define EXT3_FL_USER_MODIFIABLE 0x000000FF /* User modifiable flags */ /* --- 204,212 ---- #define EXT3_IMAGIC_FL 0x00002000 /* AFS directory */ #define EXT3_JOURNAL_DATA_FL 0x00004000 /* file data should be journaled */ + #define EXT3_IMMUTABLE_LINK_FL 0x00008000 /* Immutable link */ #define EXT3_RESERVED_FL 0x80000000 /* reserved for ext3 lib */ ! #define EXT3_FL_USER_VISIBLE 0x0000DFFF /* User visible flags */ ! #define EXT3_FL_USER_MODIFIABLE 0x000080FF /* User modifiable flags */ /* diff -rc2P linux-2.4.18/include/linux/fs.h linux-2.4.18ctx-10/include/linux/fs.h *** linux-2.4.18/include/linux/fs.h Tue Feb 26 22:22:11 2002 --- linux-2.4.18ctx-10/include/linux/fs.h Tue Mar 19 23:24:38 2002 *************** *** 129,139 **** /* Inode flags - they have nothing to superblock flags now */ ! #define S_SYNC 1 /* Writes are synced at once */ ! #define S_NOATIME 2 /* Do not update access times */ ! #define S_QUOTA 4 /* Quota initialized for file */ ! #define S_APPEND 8 /* Append-only file */ ! #define S_IMMUTABLE 16 /* Immutable file */ ! #define S_DEAD 32 /* removed, but still open directory */ ! #define S_NOQUOTA 64 /* Inode is not counted to quota */ /* --- 129,140 ---- /* Inode flags - they have nothing to superblock flags now */ ! #define S_SYNC 1 /* Writes are synced at once */ ! #define S_NOATIME 2 /* Do not update access times */ ! #define S_QUOTA 4 /* Quota initialized for file */ ! #define S_APPEND 8 /* Append-only file */ ! #define S_IMMUTABLE_FILE 16 /* Immutable file */ ! #define S_DEAD 32 /* removed, but still open directory */ ! #define S_NOQUOTA 64 /* Inode is not counted to quota */ ! #define S_IMMUTABLE_LINK 128 /* Immutable links */ /* *************** *** 159,163 **** #define IS_NOQUOTA(inode) ((inode)->i_flags & S_NOQUOTA) #define IS_APPEND(inode) ((inode)->i_flags & S_APPEND) ! #define IS_IMMUTABLE(inode) ((inode)->i_flags & S_IMMUTABLE) #define IS_NOATIME(inode) (__IS_FLG(inode, MS_NOATIME) || ((inode)->i_flags & S_NOATIME)) #define IS_NODIRATIME(inode) __IS_FLG(inode, MS_NODIRATIME) --- 160,165 ---- #define IS_NOQUOTA(inode) ((inode)->i_flags & S_NOQUOTA) #define IS_APPEND(inode) ((inode)->i_flags & S_APPEND) ! #define IS_IMMUTABLE_FILE(inode) ((inode)->i_flags & S_IMMUTABLE_FILE) ! #define IS_IMMUTABLE_LINK(inode) ((((inode)->i_flags & S_IMMUTABLE_FILE) << 3) ^ ((inode)->i_flags & S_IMMUTABLE_LINK) ) #define IS_NOATIME(inode) (__IS_FLG(inode, MS_NOATIME) || ((inode)->i_flags & S_NOATIME)) #define IS_NODIRATIME(inode) __IS_FLG(inode, MS_NODIRATIME) *************** *** 317,320 **** --- 319,323 ---- #include #include + #include /* *************** *** 358,366 **** * This is the inode attributes flag definitions */ ! #define ATTR_FLAG_SYNCRONOUS 1 /* Syncronous write */ ! #define ATTR_FLAG_NOATIME 2 /* Don't update atime */ ! #define ATTR_FLAG_APPEND 4 /* Append-only file */ ! #define ATTR_FLAG_IMMUTABLE 8 /* Immutable file */ ! #define ATTR_FLAG_NODIRATIME 16 /* Don't update atime for directory */ /* --- 361,370 ---- * This is the inode attributes flag definitions */ ! #define ATTR_FLAG_SYNCRONOUS 1 /* Syncronous write */ ! #define ATTR_FLAG_NOATIME 2 /* Don't update atime */ ! #define ATTR_FLAG_APPEND 4 /* Append-only file */ ! #define ATTR_FLAG_IMMUTABLE_FILE 8 /* Immutable file */ ! #define ATTR_FLAG_NODIRATIME 16 /* Don't update atime for directory */ ! #define ATTR_FLAG_IMMUTABLE_LINK 32 /* Immutable file */ /* *************** *** 507,510 **** --- 511,515 ---- struct usbdev_inode_info usbdev_i; struct jffs2_inode_info jffs2_i; + struct devpts_inode_info devpts_i; void *generic_ip; } u; diff -rc2P linux-2.4.18/include/linux/sched.h linux-2.4.18ctx-10/include/linux/sched.h *** linux-2.4.18/include/linux/sched.h Sat Dec 22 22:38:45 2001 --- linux-2.4.18ctx-10/include/linux/sched.h Wed Apr 3 16:41:02 2002 *************** *** 269,272 **** --- 269,273 ---- struct user_struct *next, **pprev; uid_t uid; + int s_context; }; *************** *** 276,279 **** --- 277,309 ---- __user; }) + + /* + We may have a different domainname and nodename for each security + context. By default, a security context share the same as its + parent, potentially the information in system_utsname + */ + #define S_CTX_INFO_LOCK 1 /* Can't request a new s_context */ + #define S_CTX_INFO_SCHED 2 /* All process in the s_context */ + /* Contribute to the schedular */ + #define S_CTX_INFO_NPROC 4 /* Limit number of processes in a context */ + #define S_CTX_INFO_PRIVATE 8 /* Noone can join this security context */ + #define S_CTX_INFO_INIT 16 /* This process wants to become the */ + /* logical process 1 of the security */ + /* context */ + + + struct context_info{ + int refcount; + int s_context; + char nodename[65]; + char domainname[65]; + int flags; /* S_CTX_INFO_xxx */ + atomic_t ticks; /* Number of ticks used by all process */ + /* in the s_context */ + int initpid; /* PID of the logical process 1 of the */ + /* of the context */ + }; + + extern struct user_struct root_user; #define INIT_USER (&root_user) *************** *** 400,403 **** --- 430,440 ---- size_t sas_ss_size; int (*notifier)(void *priv); + /* Field to make virtual server running in chroot more isolated */ + int s_context; /* Process can only deal with other processes */ + /* with the same s_context */ + __u32 cap_bset; /* Maximum capability of this process and children */ + __u32 ipv4root; /* Process can only bind to this iP */ + __u32 ipv4root_bcast; + struct context_info *s_info; void *notifier_data; sigset_t *notifier_mask; *************** *** 502,505 **** --- 539,543 ---- alloc_lock: SPIN_LOCK_UNLOCKED, \ journal_info: NULL, \ + cap_bset: CAP_INIT_EFF_SET, \ } *************** *** 566,570 **** /* per-UID process charging. */ ! extern struct user_struct * alloc_uid(uid_t); extern void free_uid(struct user_struct *); --- 604,608 ---- /* per-UID process charging. */ ! extern struct user_struct * alloc_uid(int, uid_t); extern void free_uid(struct user_struct *); *************** *** 927,930 **** --- 965,973 ---- return res; } + + /* Manage the reference count of the context_info pointer */ + void sys_release_s_info (struct task_struct *); + void sys_assign_s_info (struct task_struct *); + void sys_alloc_s_info (void); #endif /* __KERNEL__ */ diff -rc2P linux-2.4.18/include/net/route.h linux-2.4.18ctx-10/include/net/route.h *** linux-2.4.18/include/net/route.h Tue Feb 26 22:22:12 2002 --- linux-2.4.18ctx-10/include/net/route.h Wed Apr 3 16:45:16 2002 *************** *** 161,164 **** --- 161,174 ---- { int err; + if (current->ipv4root != 0){ + if (src == 0){ + src = current->ipv4root; + }else if (current->ipv4root != src){ + return -EPERM; + } + if (dst == 0x0100007f && current->s_context != 0){ + dst = current->ipv4root; + } + } err = ip_route_output(rp, dst, src, tos, oif); if (err || (dst && src)) diff -rc2P linux-2.4.18/include/net/sock.h linux-2.4.18ctx-10/include/net/sock.h *** linux-2.4.18/include/net/sock.h Sat Dec 22 22:38:45 2001 --- linux-2.4.18ctx-10/include/net/sock.h Wed Apr 3 16:45:16 2002 *************** *** 526,529 **** --- 526,530 ---- unsigned int allocation; /* Allocation mode */ int sndbuf; /* Size of send buffer in bytes */ + __u32 bcast_addr; /* Local bcast addr, for ipv4root */ struct sock *prev; *************** *** 669,673 **** /* RPC layer private data */ void *user_data; ! /* Callbacks */ void (*state_change)(struct sock *sk); --- 670,677 ---- /* RPC layer private data */ void *user_data; ! ! /* Context of process creating this socket */ ! int s_context; ! /* Callbacks */ void (*state_change)(struct sock *sk); diff -rc2P linux-2.4.18/include/net/tcp.h linux-2.4.18ctx-10/include/net/tcp.h *** linux-2.4.18/include/net/tcp.h Wed Oct 10 11:58:22 2001 --- linux-2.4.18ctx-10/include/net/tcp.h Wed Apr 3 16:50:08 2002 *************** *** 191,194 **** --- 191,195 ---- struct in6_addr v6_rcv_saddr; #endif + int s_context; }; diff -rc2P linux-2.4.18/ipc/util.c linux-2.4.18ctx-10/ipc/util.c *** linux-2.4.18/ipc/util.c Sun Aug 12 20:37:53 2001 --- linux-2.4.18ctx-10/ipc/util.c Tue Feb 26 22:31:23 2002 *************** *** 94,97 **** --- 94,98 ---- for (id = 0; id <= ids->max_id; id++) { + if (ids->entries[id].s_context != current->s_context) continue; p = ids->entries[id].p; if(p==NULL) *************** *** 168,171 **** --- 169,173 ---- spin_lock(&ids->ary); ids->entries[id].p = new; + ids->entries[id].s_context = current->s_context; return id; } diff -rc2P linux-2.4.18/ipc/util.h linux-2.4.18ctx-10/ipc/util.h *** linux-2.4.18/ipc/util.h Mon Feb 19 13:18:18 2001 --- linux-2.4.18ctx-10/ipc/util.h Tue Feb 26 22:31:23 2002 *************** *** 26,29 **** --- 26,30 ---- struct ipc_id { struct kern_ipc_perm* p; + int s_context; // Context owning this ID }; *************** *** 75,80 **** spin_lock(&ids->ary); out = ids->entries[lid].p; ! if(out==NULL) spin_unlock(&ids->ary); return out; } --- 76,85 ---- spin_lock(&ids->ary); out = ids->entries[lid].p; ! if(out==NULL ! || (ids->entries[lid].s_context != current->s_context ! && current->s_context != 1)){ spin_unlock(&ids->ary); + out = NULL; + } return out; } diff -rc2P linux-2.4.18/kernel/exit.c linux-2.4.18ctx-10/kernel/exit.c *** linux-2.4.18/kernel/exit.c Tue Feb 26 22:22:12 2002 --- linux-2.4.18ctx-10/kernel/exit.c Wed Feb 27 14:45:32 2002 *************** *** 66,69 **** --- 66,70 ---- if (current->counter >= MAX_COUNTER) current->counter = MAX_COUNTER; + sys_release_s_info(p); p->pid = 0; free_task_struct(p); *************** *** 159,169 **** { struct task_struct * p, *reaper; read_lock(&tasklist_lock); ! /* Next in our thread group */ reaper = next_thread(father); if (reaper == father) ! reaper = child_reaper; for_each_task(p) { --- 160,178 ---- { struct task_struct * p, *reaper; + struct task_struct *vchild_reaper = child_reaper; read_lock(&tasklist_lock); ! if (father->s_info != NULL){ ! pid_t initpid = father->s_info->initpid; ! if (initpid != 0 ! && father->pid != initpid){ ! struct task_struct *r = find_task_by_pid(initpid); ! if (r != NULL) vchild_reaper = r; ! } ! } /* Next in our thread group */ reaper = next_thread(father); if (reaper == father) ! reaper = vchild_reaper; for_each_task(p) { *************** *** 175,179 **** /* Make sure we're not reparenting to ourselves */ if (p == reaper) ! p->p_opptr = child_reaper; else p->p_opptr = reaper; --- 184,188 ---- /* Make sure we're not reparenting to ourselves */ if (p == reaper) ! p->p_opptr = vchild_reaper; else p->p_opptr = reaper; diff -rc2P linux-2.4.18/kernel/fork.c linux-2.4.18ctx-10/kernel/fork.c *** linux-2.4.18/kernel/fork.c Tue Feb 26 22:22:12 2002 --- linux-2.4.18ctx-10/kernel/fork.c Wed Feb 27 14:48:50 2002 *************** *** 589,592 **** --- 589,596 ---- retval = -EAGAIN; + if (p->s_info != NULL && (p->s_info->flags & S_CTX_INFO_NPROC)!=0){ + if (p->s_info->refcount >= p->rlim[RLIMIT_NPROC].rlim_max) + goto bad_fork_free; + } /* * Check if we are over our maximum process limit, but be sure to *************** *** 598,601 **** --- 602,607 ---- && !capable(CAP_SYS_ADMIN) && !capable(CAP_SYS_RESOURCE)) goto bad_fork_free; + + sys_assign_s_info (p); atomic_inc(&p->user->__count); diff -rc2P linux-2.4.18/kernel/printk.c linux-2.4.18ctx-10/kernel/printk.c *** linux-2.4.18/kernel/printk.c Tue Feb 26 22:22:12 2002 --- linux-2.4.18ctx-10/kernel/printk.c Tue Feb 26 22:31:23 2002 *************** *** 173,176 **** --- 173,178 ---- int error = 0; + if (!capable(CAP_SYS_ADMIN) && current->s_context != 0) return -EPERM; + switch (type) { case 0: /* Close log */ diff -rc2P linux-2.4.18/kernel/sched.c linux-2.4.18ctx-10/kernel/sched.c *** linux-2.4.18/kernel/sched.c Sat Dec 22 22:38:45 2001 --- linux-2.4.18ctx-10/kernel/sched.c Tue Feb 26 22:31:23 2002 *************** *** 166,170 **** * over.. */ ! weight = p->counter; if (!weight) goto out; --- 166,176 ---- * over.. */ ! if (p->s_info != NULL ! && (p->s_info->flags & S_CTX_INFO_SCHED)!=0){ ! weight = atomic_read (&p->s_info->ticks)/p->s_info->refcount; ! weight = (weight+p->counter)>>1; ! }else{ ! weight = p->counter; ! } if (!weight) goto out; *************** *** 621,626 **** spin_unlock_irq(&runqueue_lock); read_lock(&tasklist_lock); ! for_each_task(p) p->counter = (p->counter >> 1) + NICE_TO_TICKS(p->nice); read_unlock(&tasklist_lock); spin_lock_irq(&runqueue_lock); --- 627,647 ---- spin_unlock_irq(&runqueue_lock); read_lock(&tasklist_lock); ! /* ! Reset the s_info->ticks to the sum off all ! member processes p->counter ! */ ! for_each_task(p){ ! if (p->s_info != NULL ! && (p->s_info->flags & S_CTX_INFO_SCHED)!=0){ ! atomic_set (&p->s_info->ticks,0); ! } ! } ! for_each_task(p){ p->counter = (p->counter >> 1) + NICE_TO_TICKS(p->nice); + if (p->s_info != NULL + && (p->s_info->flags & S_CTX_INFO_SCHED)!=0){ + atomic_add (p->counter,&p->s_info->ticks); + } + } read_unlock(&tasklist_lock); spin_lock_irq(&runqueue_lock); *** linux-2.4.18/kernel/signal.c Fri Nov 23 15:07:52 2001 --- linux-2.4.18ctx-10/kernel/signal.c Tue Feb 26 22:31:23 2002 *************** *** 593,597 **** read_lock(&tasklist_lock); for_each_task(p) { ! if (p->pgrp == pgrp && thread_group_leader(p)) { int err = send_sig_info(sig, info, p); if (retval) --- 593,599 ---- read_lock(&tasklist_lock); for_each_task(p) { ! if (p->pgrp == pgrp ! && ((long)info==1 ! || p->s_context == current->s_context)) { int err = send_sig_info(sig, info, p); if (retval) *************** *** 712,717 **** p = find_task_by_pid(pid); error = -ESRCH; ! if (p) { #ifdef CONFIG_GRKERNSEC_ACL if( !(gr_check_protected_task(p)) || current->pid == 1) #endif --- 712,718 ---- p = find_task_by_pid(pid); error = -ESRCH; ! if (p != NULL) #ifdef CONFIG_GRKERNSEC_ACL + { if( !(gr_check_protected_task(p)) || current->pid == 1) #endif *************** *** 723,727 **** p = tg; } ! error = send_sig_info(sig, info, p); } } --- 724,742 ---- p = tg; } ! switch((unsigned long)info) { ! case 0: ! if(p->s_context == current->s_context){ ! error = send_sig_info(sig, info, p); ! } ! break; ! case 1: ! error = send_sig_info(sig, info, p); ! break; ! default: ! if( info->si_code == SI_KERNEL ! || p->s_context == current->s_context){ ! error = send_sig_info(sig, info, p); ! } ! break; } } *************** *** 766,770 **** if(!(gr_check_protected_task(p) || current->pid == 1)) #endif ! if (p->pid > 1 && p != current && thread_group_leader(p)) { int err = send_sig_info(sig, info, p); ++count; --- 766,770 ---- if(!(gr_check_protected_task(p) || current->pid == 1)) #endif ! if (p->pid > 1 && p != current && thread_group_leader(p) && p->s_context == current->s_context) { int err = send_sig_info(sig, info, p); ++count; *************** *** 1257,1258 **** --- 1275,1420 ---- } #endif /* !alpha && !__ia64__ && !defined(__mips__) */ + + static int set_initpid (int flags) + { + int ret = 0; + if ((flags & S_CTX_INFO_INIT)!=0){ + if (current->s_info == NULL){ + ret = -EINVAL; + }else if (current->s_info->initpid != 0){ + ret = -EPERM; + }else{ + current->s_info->initpid = current->tgid; + } + } + return ret; + } + + static inline int switch_user_struct(int new_context) + { + struct user_struct *new_user; + + new_user = alloc_uid(new_context, current->uid); + if (!new_user) + return -ENOMEM; + + if (new_user != current->user) { + struct user_struct *old_user = current->user; + + atomic_inc(&new_user->processes); + atomic_dec(&old_user->processes); + current->user = new_user; + free_uid(old_user); + } + return 0; + } + + /* + Change to a new security context and reduce the capability + basic set of the current process + */ + asmlinkage int + sys_new_s_context(int ctx, __u32 remove_cap, int flags) + { + #define MAX_S_CONTEXT 65535 /* Arbitrary limit */ + int ret = -EPERM; + if (ctx == -1){ + if (current->s_info == NULL + || (current->s_info->flags & S_CTX_INFO_LOCK) == 0){ + /* Ok we allocate a new context. For now, we just increase */ + /* it. Wrap around possible, so we loop */ + static int alloc_ctx=1; + static spinlock_t alloc_ctx_lock = SPIN_LOCK_UNLOCKED; + spin_lock(&alloc_ctx_lock); + while (1){ + int found = 0; + struct task_struct *p; + alloc_ctx++; + /* The s_context 1 is special. It sess all processes */ + if (alloc_ctx == 1){ + alloc_ctx++; + }else if (alloc_ctx > MAX_S_CONTEXT){ + // No need to grow and grow + alloc_ctx = 2; + } + /* Check if in use */ + read_lock(&tasklist_lock); + for_each_task(p) { + if (p->s_context == alloc_ctx){ + found = 1; + break; + } + } + read_unlock(&tasklist_lock); + if (!found) break; + } + ret = switch_user_struct(alloc_ctx); + if (ret == 0) { + current->s_context = alloc_ctx; + current->cap_bset &= (~remove_cap); + ret = alloc_ctx; + sys_alloc_s_info(); + if (current->s_info != NULL) { + set_initpid (flags); + current->s_info->flags |= flags; + } + } + spin_unlock(&alloc_ctx_lock); + } + }else if (ctx == -2){ + ret = set_initpid(flags); + if (ret == 0){ + /* We keep the same s_context, but lower the capabilities */ + current->cap_bset &= (~remove_cap); + ret = current->s_context; + if (current->s_info != NULL){ + if ((flags & S_CTX_INFO_INIT)!=0){ + current->s_info->initpid = current->tgid; + } + current->s_info->flags |= flags; + } + } + }else if (ctx <= 0 || ctx > MAX_S_CONTEXT){ + ret = -EINVAL; + }else if (current->s_context == 0 + && capable(CAP_SYS_ADMIN) + && (current->s_info == NULL + ||(current->s_info->flags & S_CTX_INFO_LOCK) == 0)){ + /* The root context can become any context it wants */ + int found = 0; + struct task_struct *p; + /* Check if in use so we reuse the same context_info */ + read_lock(&tasklist_lock); + ret = ctx; + for_each_task(p) { + if (p->s_context == ctx){ + found = 1; + if (p->s_info == NULL + || (p->s_info->flags & S_CTX_INFO_PRIVATE)==0){ + sys_release_s_info(current); + sys_assign_s_info (p); + current->s_info = p->s_info; + }else{ + ret = -EPERM; + } + break; + } + } + read_unlock(&tasklist_lock); + if (ret == ctx) { + ret = switch_user_struct(ctx); + if (ret == 0) { + current->s_context = ctx; + current->cap_bset &= (~remove_cap); + if (!found) { + sys_alloc_s_info(); + } + if (current->s_info != NULL) { + current->s_info->flags |= flags; + } + } + } + } + return ret; + } + diff -rc2P linux-2.4.18/kernel/sys.c linux-2.4.18ctx-10/kernel/sys.c *** linux-2.4.18/kernel/sys.c Tue Feb 26 22:22:12 2002 --- linux-2.4.18ctx-10/kernel/sys.c Tue Feb 26 22:31:23 2002 *************** *** 7,10 **** --- 7,11 ---- #include #include + #include #include #include *************** *** 500,504 **** * we should be checking for it. -DaveM */ ! new_user = alloc_uid(new_ruid); if (!new_user) return -EAGAIN; --- 501,505 ---- * we should be checking for it. -DaveM */ ! new_user = alloc_uid(current->s_context, new_ruid); if (!new_user) return -EAGAIN; *************** *** 1016,1022 **** { int errno = 0; down_read(&uts_sem); ! if (copy_to_user(name,&system_utsname,sizeof *name)) errno = -EFAULT; up_read(&uts_sem); --- 1017,1032 ---- { int errno = 0; + struct new_utsname tmp,*pttmp; down_read(&uts_sem); ! if (current->s_info != NULL){ ! tmp = system_utsname; ! strcpy (tmp.nodename,current->s_info->nodename); ! strcpy (tmp.domainname,current->s_info->domainname); ! pttmp = &tmp; ! }else{ ! pttmp = &system_utsname; ! } ! if (copy_to_user(name,pttmp,sizeof *name)) errno = -EFAULT; up_read(&uts_sem); *************** *** 1024,1030 **** --- 1034,1095 ---- } + /* + Decrease the reference count on the context_info member of a task + Free the struct if the reference count reach 0. + */ + void sys_release_s_info (struct task_struct *p) + { + down_write (&uts_sem); + if (p->s_info != NULL){ + p->s_info->refcount--; + if (p->s_info->refcount == 0){ + // printk ("vfree s_info %d\n",p->pid); + vfree (p->s_info); + p->s_info = NULL; + } + } + up_write (&uts_sem); + } + /* + Increase the reference count on the context_info member of a task + */ + void sys_assign_s_info (struct task_struct *p) + { + down_write (&uts_sem); + if (p->s_info != NULL) p->s_info->refcount++; + up_write (&uts_sem); + } + + /* + Alloc a new s_info to the current process and release + the one currently owned by the current process. + */ + void sys_alloc_s_info() + { + struct context_info *s_info = vmalloc(sizeof(struct context_info)); + // printk ("new s_info %d\n",current->pid); + s_info->s_context = current->s_context; + s_info->refcount = 1; + atomic_set (&s_info->ticks,current->counter); + s_info->flags = 0; + s_info->initpid = 0; + down_read (&uts_sem); + if (current->s_info != NULL){ + strcpy (s_info->nodename,current->s_info->nodename); + strcpy (s_info->domainname,current->s_info->domainname); + }else{ + strcpy (s_info->nodename,system_utsname.nodename); + strcpy (s_info->domainname,system_utsname.domainname); + } + up_read (&uts_sem); + sys_release_s_info (current); + current->s_info = s_info; + } + + asmlinkage long sys_sethostname(char *name, int len) { int errno; + char *nodename; if (!capable(CAP_SYS_ADMIN)) *************** *** 1034,1039 **** down_write(&uts_sem); errno = -EFAULT; ! if (!copy_from_user(system_utsname.nodename, name, len)) { ! system_utsname.nodename[len] = 0; errno = 0; } --- 1099,1106 ---- down_write(&uts_sem); errno = -EFAULT; ! nodename = system_utsname.nodename; ! if (current->s_info) nodename = current->s_info->nodename; ! if (!copy_from_user(nodename, name, len)) { ! nodename[len] = 0; errno = 0; } *************** *** 1045,1057 **** { int i, errno; if (len < 0) return -EINVAL; down_read(&uts_sem); ! i = 1 + strlen(system_utsname.nodename); if (i > len) i = len; errno = 0; ! if (copy_to_user(name, system_utsname.nodename, i)) errno = -EFAULT; up_read(&uts_sem); --- 1112,1127 ---- { int i, errno; + char *nodename; if (len < 0) return -EINVAL; down_read(&uts_sem); ! nodename = system_utsname.nodename; ! if (current->s_info != NULL) nodename = current->s_info->nodename; ! i = 1 + strlen(nodename); if (i > len) i = len; errno = 0; ! if (copy_to_user(name, nodename, i)) errno = -EFAULT; up_read(&uts_sem); *************** *** 1268,1271 **** --- 1268,1272 ---- { int errno; + char *domainname; if (!capable(CAP_SYS_ADMIN)) *************** *** 1073,1080 **** down_write(&uts_sem); errno = -EFAULT; ! if (!copy_from_user(system_utsname.domainname, name, len)) { errno = 0; ! system_utsname.domainname[len] = 0; } up_write(&uts_sem); --- 1144,1153 ---- down_write(&uts_sem); + domainname = system_utsname.domainname; + if (current->s_info) domainname = current->s_info->domainname; errno = -EFAULT; ! if (!copy_from_user(domainname, name, len)) { errno = 0; ! domainname[len] = 0; } up_write(&uts_sem); diff -rc2P linux-2.4.18/kernel/sysctl.c linux-2.4.18ctx-10/kernel/sysctl.c *** linux-2.4.18/kernel/sysctl.c Sat Dec 22 22:38:45 2001 --- linux-2.4.18ctx-10/kernel/sysctl.c Tue Feb 26 22:31:23 2002 *************** *** 380,383 **** --- 380,384 ---- static int test_perm(int mode, int op) { + if (!capable(CAP_SYS_ADMIN)) mode &= ~(0222); if (!current->euid) mode >>= 6; *************** *** 794,798 **** --- 795,810 ---- { int r; + ctl_table tmp; + /* HACK for per s_context hostname and domainname */ + if (current->s_info != NULL){ + tmp = *table; + table = &tmp; + if (table->data == (void*)&system_utsname.nodename){ + tmp.data = ¤t->s_info->nodename; + }else if (table->data == (void*)&system_utsname.domainname){ + tmp.data = ¤t->s_info->domainname; + } + } if (!write) { down_read(&uts_sem); diff -rc2P linux-2.4.18/kernel/timer.c linux-2.4.18ctx-10/kernel/timer.c *** linux-2.4.18/kernel/timer.c Wed Oct 10 11:58:22 2001 --- linux-2.4.18ctx-10/kernel/timer.c Tue Feb 26 22:31:23 2002 *************** *** 584,587 **** --- 584,592 ---- update_one_process(p, user_tick, system, cpu); if (p->pid) { + if (p->s_info != NULL + && (p->s_info->flags & S_CTX_INFO_SCHED)!=0){ + // atomic_sub (ticks*p->s_info->refcount, &p->s_info->ticks); + atomic_dec (&p->s_info->ticks); + } if (--p->counter <= 0) { p->counter = 0; *************** *** 720,723 **** --- 725,733 ---- { /* This is SMP safe - current->pid doesn't change */ + if (current->s_info != NULL + && current->s_info->initpid == current->tgid){ + /* We are faking process 1 for this security context */ + return 1; + } return current->tgid; } *************** *** 765,768 **** --- 775,784 ---- #endif break; + } + if (pid != 0 + && current->s_info != NULL + && current->s_info->initpid == pid){ + /* We are faking process 1 for this security context */ + pid = 1; } return pid; diff -rc2P linux-2.4.18/kernel/user.c linux-2.4.18ctx-10/kernel/user.c *** linux-2.4.18/kernel/user.c Wed Nov 29 01:43:39 2000 --- linux-2.4.18ctx-10/kernel/user.c Tue Feb 26 22:31:23 2002 *************** *** 7,10 **** --- 7,23 ---- * processes, files etc the user has claimed, in order to be * able to have per-user limits for system resources. + * + * For the vserver project, the key is extended from UID to (SC,UID), + * with SC being the security context ID. Thus, each security context + * has independant per-UID resource usage counters. + * + * As a consequence, even if two UIDs are the same, the 'struct user *' + * in their task_struct could be different. I don't think any code cares. + * + * (vserver modifications done Sun Jan 13 08:48:45 CET 2002 by bof@bof.de) + * + * NOTE: For now, the hash function is unmodified: the same uid in several + * security contexts, will always sit on the same hash chain. This could + * be changed easily. */ *************** *** 57,61 **** } ! static inline struct user_struct *uid_hash_find(uid_t uid, struct user_struct **hashent) { struct user_struct *next; --- 70,74 ---- } ! static inline struct user_struct *uid_hash_find(int s_context, uid_t uid, struct user_struct **hashent) { struct user_struct *next; *************** *** 66,70 **** if (next) { next = up->next; ! if (up->uid != uid) continue; atomic_inc(&up->__count); --- 79,83 ---- if (next) { next = up->next; ! if (up->uid != uid || up->s_context != s_context) continue; atomic_inc(&up->__count); *************** *** 83,87 **** } ! struct user_struct * alloc_uid(uid_t uid) { struct user_struct **hashent = uidhashentry(uid); --- 96,100 ---- } ! struct user_struct * alloc_uid(int s_context, uid_t uid) { struct user_struct **hashent = uidhashentry(uid); *************** *** 89,93 **** spin_lock(&uidhash_lock); ! up = uid_hash_find(uid, hashent); spin_unlock(&uidhash_lock); --- 102,106 ---- spin_lock(&uidhash_lock); ! up = uid_hash_find(s_context, uid, hashent); spin_unlock(&uidhash_lock); *************** *** 99,102 **** --- 112,116 ---- return NULL; new->uid = uid; + new->s_context = s_context; atomic_set(&new->__count, 1); atomic_set(&new->processes, 0); *************** *** 108,112 **** */ spin_lock(&uidhash_lock); ! up = uid_hash_find(uid, hashent); if (up) { kmem_cache_free(uid_cachep, new); --- 122,126 ---- */ spin_lock(&uidhash_lock); ! up = uid_hash_find(s_context, uid, hashent); if (up) { kmem_cache_free(uid_cachep, new); diff -rc2P linux-2.4.18/net/ipv4/af_inet.c linux-2.4.18ctx-10/net/ipv4/af_inet.c *** linux-2.4.18/net/ipv4/af_inet.c Sat Dec 22 22:38:46 2001 --- linux-2.4.18ctx-10/net/ipv4/af_inet.c Mon Mar 18 12:26:22 2002 *************** *** 394,397 **** --- 394,399 ---- sk->protinfo.af_inet.mc_list = NULL; + sk->s_context = current->s_context; + #ifdef INET_REFCNT_DEBUG atomic_inc(&inet_sock_nr); *************** *** 478,481 **** --- 480,485 ---- int chk_addr_ret; int err; + __u32 s_addr; + __u32 bcast_addr = 0xffffffffl; /* If the socket has its own bind function then use it. (RAW) */ *************** *** 486,490 **** return -EINVAL; ! chk_addr_ret = inet_addr_type(addr->sin_addr.s_addr); /* Not specified by any standard per-se, however it breaks too --- 490,507 ---- return -EINVAL; ! s_addr = addr->sin_addr.s_addr; ! if (current->ipv4root != 0){ ! // printk ("ipv4root0 %08lx %08x\n",current->ipv4root,s_addr); ! if (s_addr == 0){ ! s_addr = current->ipv4root; ! bcast_addr = current->ipv4root_bcast; ! }else if (s_addr == 0x0100007f){ ! s_addr = current->ipv4root; ! }else if (s_addr != current->ipv4root){ ! return -EADDRNOTAVAIL; ! } ! } ! chk_addr_ret = inet_addr_type(s_addr); ! // printk ("ipv4root %08lx %08x %d\n",current->ipv4root,s_addr,chk_addr_ret); /* Not specified by any standard per-se, however it breaks too *************** *** 497,501 **** if (sysctl_ip_nonlocal_bind == 0 && sk->protinfo.af_inet.freebind == 0 && ! addr->sin_addr.s_addr != INADDR_ANY && chk_addr_ret != RTN_LOCAL && chk_addr_ret != RTN_MULTICAST && --- 514,518 ---- if (sysctl_ip_nonlocal_bind == 0 && sk->protinfo.af_inet.freebind == 0 && ! s_addr != INADDR_ANY && chk_addr_ret != RTN_LOCAL && chk_addr_ret != RTN_MULTICAST && *************** *** 522,526 **** goto out; ! sk->rcv_saddr = sk->saddr = addr->sin_addr.s_addr; if (chk_addr_ret == RTN_MULTICAST || chk_addr_ret == RTN_BROADCAST) sk->saddr = 0; /* Use device */ --- 539,544 ---- goto out; ! sk->rcv_saddr = sk->saddr = s_addr; ! sk->bcast_addr = bcast_addr; if (chk_addr_ret == RTN_MULTICAST || chk_addr_ret == RTN_BROADCAST) sk->saddr = 0; /* Use device */ diff -rc2P linux-2.4.18/net/ipv4/devinet.c linux-2.4.18ctx-10/net/ipv4/devinet.c *** linux-2.4.18/net/ipv4/devinet.c Sat Dec 22 22:38:46 2001 --- linux-2.4.18ctx-10/net/ipv4/devinet.c Tue Feb 26 22:31:23 2002 *************** *** 559,563 **** goto done; } ! switch(cmd) { case SIOCGIFADDR: /* Get interface address */ --- 559,569 ---- goto done; } ! if (ifa != NULL ! && current->s_context != 0 ! && current->ipv4root != 0 ! && current->ipv4root != ifa->ifa_local){ ! ret = -EADDRNOTAVAIL; ! goto done; ! } switch(cmd) { case SIOCGIFADDR: /* Get interface address */ *************** *** 692,695 **** --- 698,705 ---- for ( ; ifa; ifa = ifa->ifa_next) { + // We do not show other IP devices to vservers + if (current->s_context != 0 + && current->ipv4root != 0 + && current->ipv4root != ifa->ifa_local) continue; if (!buf) { done += sizeof(ifr); *************** *** 909,912 **** --- 919,925 ---- for (ifa = in_dev->ifa_list, ip_idx = 0; ifa; ifa = ifa->ifa_next, ip_idx++) { + if (current->s_context != 0 + && current->ipv4root != 0 + && current->ipv4root != ifa->ifa_local) continue; if (ip_idx < s_ip_idx) continue; diff -rc2P linux-2.4.18/net/ipv4/raw.c linux-2.4.18ctx-10/net/ipv4/raw.c *** linux-2.4.18/net/ipv4/raw.c Tue Jul 10 19:11:43 2001 --- linux-2.4.18ctx-10/net/ipv4/raw.c Tue Feb 26 22:31:23 2002 *************** *** 658,662 **** for (sk = raw_v4_htable[i]; sk; sk = sk->next, num++) { ! if (sk->family != PF_INET) continue; pos += 128; --- 658,662 ---- for (sk = raw_v4_htable[i]; sk; sk = sk->next, num++) { ! if (sk->family != PF_INET || (current->s_context != 1 && sk->s_context != current->s_context)) continue; pos += 128; diff -rc2P linux-2.4.18/net/ipv4/tcp_ipv4.c linux-2.4.18ctx-10/net/ipv4/tcp_ipv4.c *** linux-2.4.18/net/ipv4/tcp_ipv4.c Tue Feb 26 22:22:12 2002 --- linux-2.4.18ctx-10/net/ipv4/tcp_ipv4.c Tue Feb 26 22:31:23 2002 *************** *** 2074,2077 **** --- 2074,2080 ---- struct tcp_opt *tp = &(sk->tp_pinfo.af_tcp); + if (current->s_context != 1 && sk->s_context != current->s_context) + continue; + if (!TCP_INET_FAMILY(sk->family)) goto skip_listen; *************** *** 2127,2131 **** read_lock(&head->lock); for(sk = head->chain; sk; sk = sk->next, num++) { ! if (!TCP_INET_FAMILY(sk->family)) continue; pos += TMPSZ; --- 2130,2134 ---- read_lock(&head->lock); for(sk = head->chain; sk; sk = sk->next, num++) { ! if (!TCP_INET_FAMILY(sk->family) || (current->s_context != 1 && sk->s_context != current->s_context)) continue; pos += TMPSZ; *************** *** 2142,2146 **** tw != NULL; tw = (struct tcp_tw_bucket *)tw->next, num++) { ! if (!TCP_INET_FAMILY(tw->family)) continue; pos += TMPSZ; --- 2145,2149 ---- tw != NULL; tw = (struct tcp_tw_bucket *)tw->next, num++) { ! if (!TCP_INET_FAMILY(tw->family) || (current->s_context != 1 && tw->s_context != current->s_context)) continue; pos += TMPSZ; diff -rc2P linux-2.4.18/net/ipv4/tcp_minisocks.c linux-2.4.18ctx-10/net/ipv4/tcp_minisocks.c *** linux-2.4.18/net/ipv4/tcp_minisocks.c Wed Oct 10 11:58:23 2001 --- linux-2.4.18ctx-10/net/ipv4/tcp_minisocks.c Tue Feb 26 22:31:23 2002 *************** *** 382,385 **** --- 382,387 ---- tw->pprev_death = NULL; + tw->s_context = sk->s_context; + #if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE) if(tw->family == PF_INET6) { diff -rc2P linux-2.4.18/net/ipv4/udp.c linux-2.4.18ctx-10/net/ipv4/udp.c *** linux-2.4.18/net/ipv4/udp.c Tue Feb 26 22:22:12 2002 --- linux-2.4.18ctx-10/net/ipv4/udp.c Mon Mar 18 13:26:18 2002 *************** *** 273,277 **** (s->daddr && s->daddr!=rmt_addr) || (s->dport != rmt_port && s->dport != 0) || ! (s->rcv_saddr && s->rcv_saddr != loc_addr) || (s->bound_dev_if && s->bound_dev_if != dif)) continue; --- 273,277 ---- (s->daddr && s->daddr!=rmt_addr) || (s->dport != rmt_port && s->dport != 0) || ! (s->rcv_saddr && s->rcv_saddr != loc_addr && s->bcast_addr != loc_addr) || (s->bound_dev_if && s->bound_dev_if != dif)) continue; *************** *** 988,992 **** for (sk = udp_hash[i]; sk; sk = sk->next, num++) { ! if (sk->family != PF_INET) continue; pos += 128; --- 988,992 ---- for (sk = udp_hash[i]; sk; sk = sk->next, num++) { ! if (sk->family != PF_INET || (current->s_context != 1 && sk->s_context != current->s_context)) continue; pos += 128; diff -rc2P linux-2.4.18/net/ipv6/raw.c linux-2.4.18ctx-10/net/ipv6/raw.c *** linux-2.4.18/net/ipv6/raw.c Thu Sep 20 17:12:56 2001 --- linux-2.4.18ctx-10/net/ipv6/raw.c Tue Feb 26 22:31:23 2002 *************** *** 798,802 **** for (sk = raw_v6_htable[i]; sk; sk = sk->next, num++) { ! if (sk->family != PF_INET6) continue; pos += LINE_LEN+1; --- 798,802 ---- for (sk = raw_v6_htable[i]; sk; sk = sk->next, num++) { ! if (sk->family != PF_INET6 || (current->s_context != 1 && sk->s_context != current->s_context)) continue; pos += LINE_LEN+1; diff -rc2P linux-2.4.18/net/ipv6/tcp_ipv6.c linux-2.4.18ctx-10/net/ipv6/tcp_ipv6.c *** linux-2.4.18/net/ipv6/tcp_ipv6.c Tue Feb 26 22:22:13 2002 --- linux-2.4.18ctx-10/net/ipv6/tcp_ipv6.c Tue Feb 26 22:31:23 2002 *************** *** 2007,2011 **** struct tcp_opt *tp = &(sk->tp_pinfo.af_tcp); ! if (sk->family != PF_INET6) continue; pos += LINE_LEN+1; --- 2007,2011 ---- struct tcp_opt *tp = &(sk->tp_pinfo.af_tcp); ! if (sk->family != PF_INET6 || (current->s_context != 1 && sk->s_context != current->s_context)) continue; pos += LINE_LEN+1; *************** *** 2057,2061 **** read_lock(&head->lock); for(sk = head->chain; sk; sk = sk->next, num++) { ! if (sk->family != PF_INET6) continue; pos += LINE_LEN+1; --- 2057,2061 ---- read_lock(&head->lock); for(sk = head->chain; sk; sk = sk->next, num++) { ! if (sk->family != PF_INET6 || (current->s_context != 1 && sk->s_context != current->s_context)) continue; pos += LINE_LEN+1; *************** *** 2072,2076 **** tw != NULL; tw = (struct tcp_tw_bucket *)tw->next, num++) { ! if (tw->family != PF_INET6) continue; pos += LINE_LEN+1; --- 2072,2076 ---- tw != NULL; tw = (struct tcp_tw_bucket *)tw->next, num++) { ! if (tw->family != PF_INET6 || (current->s_context != 1 && tw->s_context != current->s_context)) continue; pos += LINE_LEN+1; diff -rc2P linux-2.4.18/net/ipv6/udp.c linux-2.4.18ctx-10/net/ipv6/udp.c *** linux-2.4.18/net/ipv6/udp.c Fri Sep 7 14:01:21 2001 --- linux-2.4.18ctx-10/net/ipv6/udp.c Tue Feb 26 22:31:23 2002 *************** *** 953,957 **** for (sk = udp_hash[i]; sk; sk = sk->next, num++) { ! if (sk->family != PF_INET6) continue; pos += LINE_LEN+1; --- 953,957 ---- for (sk = udp_hash[i]; sk; sk = sk->next, num++) { ! if (sk->family != PF_INET6 || (current->s_context != 1 && sk->s_context != current->s_context)) continue; pos += LINE_LEN+1; diff -rc2P linux-2.4.18/net/socket.c linux-2.4.18ctx-10/net/socket.c *** linux-2.4.18/net/socket.c Sat Dec 22 22:38:47 2001 --- linux-2.4.18ctx-10/net/socket.c Wed Apr 3 16:41:02 2002 *************** *** 1764,1765 **** --- 1764,1778 ---- return len; } + + asmlinkage int sys_set_ipv4root (__u32 ip, __u32 bcast) + { + int ret = -EPERM; + if (current->ipv4root == 0 + || capable(CAP_SYS_ADMIN)){ + ret = 0; + current->ipv4root = ip; + current->ipv4root_bcast = bcast; + } + return ret; + } + diff -rc2P linux-2.4.18/net/unix/af_unix.c linux-2.4.18ctx-10/net/unix/af_unix.c *** linux-2.4.18/net/unix/af_unix.c Tue Feb 26 22:22:13 2002 --- linux-2.4.18ctx-10/net/unix/af_unix.c Tue Feb 26 22:31:23 2002 *************** *** 480,483 **** --- 480,485 ---- sk->write_space = unix_write_space; + sk->s_context = current->s_context; + sk->max_ack_backlog = sysctl_unix_max_dgram_qlen; sk->destruct = unix_sock_destructor; *************** *** 1751,1754 **** --- 1753,1759 ---- forall_unix_sockets (i,s) { + if (current->s_context != 1 && s->s_context != current->s_context) + continue; + unix_state_rlock(s); --------------090005060508000700050403-- From vserver.error@solucorp.qc.ca Mon May 6 23:03:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g4733k3Q004040; Mon, 6 May 2002 23:03:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g472gLa17799 for vserver.list; Mon, 6 May 2002 22:42:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hotmail.com (f104.law3.hotmail.com [209.185.241.104]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g472gKh17794 for ; Mon, 6 May 2002 22:42:21 -0400 Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Mon, 6 May 2002 19:42:20 -0700 Received: from 209.128.145.94 by lw3fd.law3.hotmail.msn.com with HTTP; Tue, 07 May 2002 02:42:19 GMT X-Originating-IP: [209.128.145.94] From: "Nathan Hoult" To: vserver@solucorp.qc.ca Subject: [vserver] An idea that i hope is not to stupid: Date: Tue, 07 May 2002 02:42:19 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 07 May 2002 02:42:20.0664 (UTC) FILETIME=[CF545F80:01C1F570] Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.8 required=5.0 tests=FORGED_HOTMAIL_RCVD version=2.01 Status: RO X-Status: X-Keywords: X-UID: 544 I would like to be able to run 2+ people on the same computer using 2+ mice , 2+ keyboards, 2+ monitors, 2+ sound cards. There is a hack for X at : http://cambuca.ldhs.cetuc.puc-rio.br/multiuser/ . This doesnt work well and can be very unstable to get started. I have got it working and infact played about 10 hours of Diablo2 multiplayer with my brother. The problem is that i HAVE to boot up off the PCI card (NVIDIA TNT), and use the GF2 card as 2nd. this isnt THAT bad but the 2nd output cant do full screen, which can be tolerated but if the master terminal switched VT the entire system freezes and i cant even telnet in, which isnt that bad except i cant use a X login manager (eg: gdm) because if the master user logs out it had a 33% chance of freezing the 2nd user, which is ok but i have to reboot because i cant switch VT. there was a discussion at: http://www.kerneltrap.org/node.php?id=146 about working on the Linux VT setup to allow more than one display. My crazy idea is using Virtual Linux and having a configuration file that will tell the Virtual Linux to "see" PCI spot (eg: PCI:0:7:0 my TNT video card address), "/bin/input/eventX" (USB keyboayrd), "/bin/input/mice" (usb mouse), and my PCI address of the sound card (that i dont have second one yet). When you start the Virtual Linux it will activate what it "sees" so you could install X on VLinux, syslink to /home or whatever. I havent used Virtual server yet so i dont know what it is like or what it is capible of. (rant) the Kernel programers are saying X, and X is saying Kernel, then people ask why and that computers are not powerfull enough, well if my Ath 1.33 with 256 DDR can run Diablo2 server+ 2 clients in wine with low/no lag, or run server + 2 clients of Return to Castle Wolf, then what could a $150 more dual Ath do? well over performance of say 2 celrons (that i would have to throw away in 1.5 years anyhow). _________________________________________________________________ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx From vserver.error@solucorp.qc.ca Tue May 7 01:17:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g475Hd3Q005142; Tue, 7 May 2002 01:17:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g474r6l20788 for vserver.list; Tue, 7 May 2002 00:53:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from prserv.net (out2.prserv.net [32.97.166.32]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g474r5h20784 for ; Tue, 7 May 2002 00:53:05 -0400 Received: from slip139-92-140-48.dub.ie.prserv.net ([139.92.140.48]) by prserv.net (out2) with SMTP id <2002050704530320200i1o59e>; Tue, 7 May 2002 04:53:04 +0000 Subject: [vserver] Openldap server on vserver From: Lew Teck Kheng To: Vserver mailing list Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3.99 Date: 07 May 2002 12:52:54 +0800 Message-Id: <1020747177.4420.57.camel@maximus> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.2 required=5.0 tests=A_FROM_IN_AUTO_WLIST,KNOWN_BAD_DIALUPS version=2.01 Status: RO X-Status: X-Keywords: X-UID: 545 hi all : I tried to setup a openldap server on a vserver but when i try to start the openldap server it cannot be start and complained about "Broken Pipe" ? Have anyone manage to setup a openldap server on a vserver ? many many thanks cheers From vserver.error@solucorp.qc.ca Tue May 7 01:46:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g475kq3Q005480; Tue, 7 May 2002 01:46:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g475Xc421569 for vserver.list; Tue, 7 May 2002 01:33:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail1.lga.net.sg (mail1.lga.net.sg [203.92.64.241]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g475Xah21565 for ; Tue, 7 May 2002 01:33:37 -0400 Received: (qmail 10328 invoked from network); 7 May 2002 05:33:35 -0000 Received: from unknown (HELO localhost.localdomain) (203.92.90.66) by mail1.lga.net.sg with SMTP; 7 May 2002 05:33:35 -0000 Subject: Re: [vserver] Openldap server on vserver From: Meng Kuan To: vserver@solucorp.qc.ca In-Reply-To: <1020747177.4420.57.camel@maximus> References: <1020747177.4420.57.camel@maximus> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 Date: 07 May 2002 13:33:35 +0800 Message-Id: <1020749615.24746.1.camel@tao.lga.net.sg> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 546 Hi, I am able to set up openldap on a debian vserver. So it should work on other distributions. cheers, mengkuan On Tue, 2002-05-07 at 12:52, Lew Teck Kheng wrote: > hi all : > > I tried to setup a openldap server on a vserver but when i try to start > the openldap server it cannot be start and complained about "Broken > Pipe" ? > > Have anyone manage to setup a openldap server on a vserver ? > > many many thanks > > cheers > From vserver.error@solucorp.qc.ca Tue May 7 02:19:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g476Ji3Q005690; Tue, 7 May 2002 02:19:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g475vsi21943 for vserver.list; Tue, 7 May 2002 01:57:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from taz.eijk.nu (node-d-0565.a2000.nl [62.195.5.101]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g475vrh21939 for ; Tue, 7 May 2002 01:57:53 -0400 Received: from eijk.nu (localhost.localdomain [127.0.0.1]) by taz.eijk.nu (8.12.1/linuxconf) with ESMTP id g475uqOt001507 for ; Tue, 7 May 2002 07:56:52 +0200 Message-ID: <3CD76CA4.1070008@eijk.nu> Date: Tue, 07 May 2002 07:56:52 +0200 From: Stefan van der Eijk User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0rc1) Gecko/00200203 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] GR security & CTX References: <3CD5A1C8.2060406@eijk.nu> <20020506194418.561E111851@blue.wowweb.dk> <3CD6EB4F.5000308@eijk.nu> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.7 required=5.0 tests=SUPERLONG_LINE version=2.01 Status: RO X-Status: X-Keywords: X-UID: 547 Stefan van der Eijk wrote: > Jesper Andersen wrote: > >> On Sunday 05 May 2002 23:19, you wrote: >> >> >> >>> I'm trying to get the CTX patch to work with Mandrake's development >>> kernels. While applying the patch I noticed that the CTX patch >>> conflicts >>> with an earlier applied patch (the gr security patch, see >>> http://www.grsecurity.org/ ). Before I continue trying to figure >>> things >>> out I've got a few questions: >>> >> >> >> If you get et working please tell. >> > I'm trying to compile it, but the build is hanging on: Yesterday's error seems to be gone (I did some tweaking in the patch, the patch was attached to my post yesterday), but a new one has come up: /usr/bin/gcc-3.0.4 -D__KERNEL__ -I/home/cooker/RPM/BUILD/linux/include -Wall -Wstrict-prototypes -Wno-trigraphs -O2 -fno-strict-aliasing -fno-common -fomit-frame-pointer -pipe -mpreferred-stack-boundary=2 -march=i586 -DMODULE -DMODVERSIONS -include /home/cooker/RPM/BUILD/linux/include/linux/modversions.h -nostdinc -I /usr/lib/gcc-lib/i586-mandrake-linux-gnu/3.0.4/include -DKBUILD_BASENAME=inode -c -o inode.o inode.c inode.c: In function `reiserfs_new_inode': inode.c:1528: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) inode.c:1528: (Each undeclared identifier is reported only once inode.c:1528: for each function it appears in.) inode.c:1590: `S_IMMUTABLE' undeclared (first use in this function) inode.c: In function `sd_attrs_to_i_attrs': inode.c:2127: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) inode.c:2128: `S_IMMUTABLE' undeclared (first use in this function) inode.c: In function `i_attrs_to_sd_attrs': inode.c:2145: `S_IMMUTABLE' undeclared (first use in this function) inode.c:2146: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) make[2]: *** [inode.o] Error 1 make[2]: Leaving directory `/home/cooker/RPM/BUILD/linux/fs/reiserfs' make[1]: *** [_modsubdir_reiserfs] Error 2 make[1]: Leaving directory `/home/cooker/RPM/BUILD/linux/fs' make: *** [_mod_fs] Error 2 error: Bad exit status from /home/cooker/tmp/rpm-tmp.46847 (%build) RPM build errors: Bad exit status from /home/cooker/tmp/rpm-tmp.46847 (%build) Full buildoutput: http://localhost/build/new_i586/i586/problem/kernel-2.4.18.14mdk_ctx10-1-1mdk.src.rpm.txt src.rpm: http://node-d-0565.a2000.nl/new_i586/kernel-2.4.18.14mdk_ctx10-1-1mdk.src.rpm So I guess I need to look at the inode.c patch... Stefan From vserver.error@solucorp.qc.ca Tue May 7 05:58:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g479wI3Q008573; Tue, 7 May 2002 05:58:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g479Mr726749 for vserver.list; Tue, 7 May 2002 05:22:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g479Mqh26745 for ; Tue, 7 May 2002 05:22:52 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:31751 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Tue, 7 May 2002 11:28:15 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Tue, 7 May 2002 11:22:23 +0200 Date: Tue, 7 May 2002 11:22:23 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] locking problems with samba Message-ID: <20020507112223.C17577@4t2.com> References: <20020412134119.R3025@4t2.com> <3CBBEA9D.E3128EA1@silicide.dk> <20020416120915.C2509@4t2.com> <3CBC03CF.53D174B9@silicide.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <3CBC03CF.53D174B9@silicide.dk>; from jon+vserver@silicide.dk on Tue, Apr 16, 2002 at 12:58:23PM +0200 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 548 Hi, Anyone looking into these problems? I'll have to put this server into production soon and need to decide on my samba setup. Tom On Tue, Apr 16, 2002 at 12:58:23PM +0200, Jon Bendtsen wrote: > > > > tested with 2.4.18ctx8 and 2.4.18ctx10 and samba 2.2.1a-4 on RH7.2. > > > > Tell me if you need more information (this one is easily to reproduce). > > > > > > How ?? i can access files by 2 processes, how ever from the same machine > > > without trouble. Sometimes when i write with one file, and read another > > > file it locks up. > > > > Don't test with Linux as a client. > > Well, thats all i got, i dont use windows, i dont even have a > windows cd, and i dont want to repartition just to install > windows, and test this bug. I'll test with linux if people > want that. The reason i'm not using NFS, is because it's on > a shared network, so i want the password protection. > > > > > > > any ideas? > > > > > > yeah, dont run samba ;-0 > > > At least not in a production environment. I'm the only user of my samba, > > > so i can manage when i have to reboot. > > > > That's a joke, isn't it? > > Well sort of. I ment dont run samba in a vserver in a production > environment. > > > > I run samba for several hundreds of users for years without problems (of > > course not within a vserver), it's one of the most reliable pieces of software > > i've come across. Besides, there's just no alternative (at least none that's > > as fast, cheap and stable). > > I'm pretty sure this is a problem with file locking within the vserver, and not > > a problem with samba itself. > > I think so as well, because i run a regular samba server as well, in a > production > environment, and that works fine. I seem to remember that back when i > ran userspace > nfs inside a vserver, i had the same lockup's, but i'm not 100% sure. > > > > JonB > > From vserver.error@solucorp.qc.ca Tue May 7 06:40:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g47Aeo3Q008879; Tue, 7 May 2002 06:40:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g47A7fk27734 for vserver.list; Tue, 7 May 2002 06:07:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g47A7eh27726 for ; Tue, 7 May 2002 06:07:41 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 1751sb-0001F7-00 for ; Tue, 07 May 2002 12:07:33 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 1751sb-0001Ew-00 for ; Tue, 07 May 2002 12:07:33 +0200 Sender: jon@silicide.dk Message-ID: <3CD7A765.5437A648@silicide.dk> Date: Tue, 07 May 2002 12:07:33 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] locking problems with samba References: <20020412134119.R3025@4t2.com> <3CBBEA9D.E3128EA1@silicide.dk> <20020416120915.C2509@4t2.com> <3CBC03CF.53D174B9@silicide.dk> <20020507112223.C17577@4t2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 549 Thomas Weber wrote: > > Hi, > > Anyone looking into these problems? I'll have to put this server into > production soon and need to decide on my samba setup. I dont know anyone looking at this. Dont run samba in a vserver yet. Neither NFS (userspace) JonB From vserver.error@solucorp.qc.ca Tue May 7 07:23:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g47BNB3Q009176; Tue, 7 May 2002 07:23:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g47Ai4r28530 for vserver.list; Tue, 7 May 2002 06:44:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g47Ai3h28526 for ; Tue, 7 May 2002 06:44:03 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 1752Rv-0001HP-00 for ; Tue, 07 May 2002 12:44:03 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 1752Ru-0001HF-00 for ; Tue, 07 May 2002 12:44:02 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Tue, 07 May 2002 12:44:02 +0200 (CEST) Received: (qmail 44280 invoked from network); 7 May 2002 10:40:55 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 7 May 2002 10:40:55 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g47A7fk27734 for vserver.list; Tue, 7 May 2002 06:07:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g47A7eh27726 for ; Tue, 7 May 2002 06:07:41 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 1751sb-0001F7-00 for ; Tue, 07 May 2002 12:07:33 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 1751sb-0001Ew-00 for ; Tue, 07 May 2002 12:07:33 +0200 Sender: jon@silicide.dk Message-ID: <3CD7A765.5437A648@silicide.dk> Date: Tue, 07 May 2002 12:07:33 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] locking problems with samba References: <20020412134119.R3025@4t2.com> <3CBBEA9D.E3128EA1@silicide.dk> <20020416120915.C2509@4t2.com> <3CBC03CF.53D174B9@silicide.dk> <20020507112223.C17577@4t2.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 550 Thomas Weber wrote: > > Hi, > > Anyone looking into these problems? I'll have to put this server into > production soon and need to decide on my samba setup. I dont know anyone looking at this. Dont run samba in a vserver yet. Neither NFS (userspace) JonB From vserver.error@solucorp.qc.ca Tue May 7 09:32:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien (8.12.1/8.12.1) with ESMTP id g47DW73Q010225; Tue, 7 May 2002 09:32:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g47D40332008 for vserver.list; Tue, 7 May 2002 09:04:00 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g47D40h32002 for ; Tue, 7 May 2002 09:04:00 -0400 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 3.35 #1) id 1754dJ-0007p9-00 for vserver@solucorp.qc.ca; Tue, 07 May 2002 10:03:57 -0300 Date: Tue, 7 May 2002 10:03:57 -0300 (ADT) From: James MacLean To: Subject: Re: [vserver] GR security & CTX In-Reply-To: <3CD76CA4.1070008@eijk.nu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.3 required=5.0 tests=IN_REP_TO,SUPERLONG_LINE,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 551 On Tue, 7 May 2002, Stefan van der Eijk wrote: > Yesterday's error seems to be gone (I did some tweaking in the patch, > the patch was attached to my post yesterday), but a new one has come up: > > /usr/bin/gcc-3.0.4 -D__KERNEL__ -I/home/cooker/RPM/BUILD/linux/include -Wall -Wstrict-prototypes -Wno-trigraphs -O2 -fno-strict-aliasing -fno-common -fomit-frame-pointer -pipe -mpreferred-stack-boundary=2 -march=i586 -DMODULE -DMODVERSIONS -include /home/cooker/RPM/BUILD/linux/include/linux/modversions.h -nostdinc -I /usr/lib/gcc-lib/i586-mandrake-linux-gnu/3.0.4/include -DKBUILD_BASENAME=inode -c -o inode.o inode.c > inode.c: In function `reiserfs_new_inode': > inode.c:1528: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) > inode.c:1528: (Each undeclared identifier is reported only once > inode.c:1528: for each function it appears in.) > inode.c:1590: `S_IMMUTABLE' undeclared (first use in this function) > inode.c: In function `sd_attrs_to_i_attrs': > inode.c:2127: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) > inode.c:2128: `S_IMMUTABLE' undeclared (first use in this function) > inode.c: In function `i_attrs_to_sd_attrs': > inode.c:2145: `S_IMMUTABLE' undeclared (first use in this function) > inode.c:2146: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) > make[2]: *** [inode.o] Error 1 > make[2]: Leaving directory `/home/cooker/RPM/BUILD/linux/fs/reiserfs' > make[1]: *** [_modsubdir_reiserfs] Error 2 > make[1]: Leaving directory `/home/cooker/RPM/BUILD/linux/fs' > make: *** [_mod_fs] Error 2 > error: Bad exit status from /home/cooker/tmp/rpm-tmp.46847 (%build) These look like the changes to the DEFINES that are in the 2.4.19-pre kernels where EXT2_IMMUTABLE_FL becomes EXT2_IMMUTABLE_FILE_FL and EXT2_IMMUTABLE_LINK_FL depending ? Dido for S_IMMUTABLE to S_IMMUTABLE_{FILE|LINK}. Look in include/linux/fs.h for them. JES -- James B. MacLean macleajb@ednet.ns.ca Department of Education Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Tue May 7 18:29:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g47MT7iA017925; Tue, 7 May 2002 18:29:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g47M8ov15359 for vserver.list; Tue, 7 May 2002 18:08:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g47M8nh15355 for ; Tue, 7 May 2002 18:08:50 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g47M8hR03070 for ; Tue, 7 May 2002 15:08:43 -0700 Date: Tue, 7 May 2002 15:08:43 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: [vserver] initrd option Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 552 I ran into a situation where I was required to make an initrd file for 18ctx-10 (system with SCSI drives.) It is working just fine now. My questions is is there any harm with creating and using an initrd for a system that does not need it to boot? TIA, Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Tue May 7 19:01:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g47N12iA018266; Tue, 7 May 2002 19:01:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g47MRmR15846 for vserver.list; Tue, 7 May 2002 18:27:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g47MRmh15842 for ; Tue, 7 May 2002 18:27:48 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g47MRqO03145 for ; Tue, 7 May 2002 15:27:52 -0700 Date: Tue, 7 May 2002 15:27:51 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: [vserver] Cookbook Vservers Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 553 I am working on writing a cook book for creating a vserver based system. So far I have had interesting results with the systems I have played with so I think even now is a good time for this. (The original idea was write an article for one of the Linux magazines but they do not seem interested at this time.) So if anyone that can offer ideas or thoughts I would appreciate them. As I write I'm going to test the process so initailly I only have some vague ideas on the process. Please be kind. 1. Build/aquire a system capable of running vservers. (I currently have one as low as a Pentium-S 133 with 64 MByte RAM, Two SCSI drives (a 4 GByte main disk and a 2 GByte - the vserser partition) This will be a very light duty system. Mostly providing mail services for a couple of domains instead of using vmail. 2. Install the OS. I'm using Redhat Linux 7.2 but will upgrade to 7.3/8.9 (skipjack) as soon as it is out. (Kernel matches the current ctx version. 3. Create a template vserver. My thoughts are to install from the root server and then strip out the fluff/cruft that comes with a do-many-things Redhat install. (Could I create an 'install CD' of RPMS based on the packages this template vserver has installed and use it on other physical systems for an install from CD options?) 4. Create unified servers from the template. Add whatever is wanted/needed for each vserver. Customize /etc/vservers/XXXX.conf and /etc/vservers/XXXX.sh for each vserver. Thoughts and ideas? TIA, Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Tue May 7 21:45:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g481jDiA019703; Tue, 7 May 2002 21:45:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g481TNc19569 for vserver.list; Tue, 7 May 2002 21:29:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp017.mail.yahoo.com (smtp017.mail.yahoo.com [216.136.174.114]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g481TMh19565 for ; Tue, 7 May 2002 21:29:22 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 8 May 2002 01:29:21 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] Vserver install from Redhat 7.2 bug Date: Tue, 7 May 2002 20:29:09 -0500 Message-ID: <000001c1f62f$c4937b20$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 554 Hello, It seems that the install script called the install_post.sh, which does not exist. The correct one should be install-post.sh. By the way, I had both my previous issues resolved. Peter From vserver.error@solucorp.qc.ca Tue May 7 23:18:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g483IgiA020654; Tue, 7 May 2002 23:18:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48339021740 for vserver.list; Tue, 7 May 2002 23:03:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48338h21736 for ; Tue, 7 May 2002 23:03:08 -0400 Received: from remtk.solucorp.qc.ca (g39-97.citenet.net [206.123.39.97]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g4834UA71460 for ; Tue, 7 May 2002 23:04:30 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g482dtZ02881 for vserver@solucorp.qc.ca; Tue, 7 May 2002 22:39:55 -0400 From: Jacques Gelinas Date: Tue, 7 May 2002 22:39:55 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] How to clone reference server from cdrom? X-mailer: tlmpmail 0.6 Message-ID: <20020507223955.24b4c1c90191@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 555 On Mon, 6 May 2002 11:55:14 -0500, Peter Kwan Chan wrote > Hello, > I have installed a redhat 7.2 from CDROM at /vservers/rh72. However, > when I run "newvserver", there is only an option to clone the root > server, but not the reference server at /vservers/rh72. How do I enable > that? The script checks for files *.conf in /etc/vservers. Your rh72 is probably incomplete. Just create an empty /etc/vservers/rh72.conf and newvserver will see it. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue May 7 23:23:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g483NkiA020693; Tue, 7 May 2002 23:23:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g482t6G21523 for vserver.list; Tue, 7 May 2002 22:55:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g482t5h21519 for ; Tue, 7 May 2002 22:55:06 -0400 Received: from aksmtpmdr1.telecom.co.nz (aksmtpmdr1 [146.171.1.20]) by smtpout.telecom.co.nz (Postfix) with SMTP id 9EB5345F84 for ; Wed, 8 May 2002 14:54:58 +1200 (NZST) Received: from 192.168.192.22 by aksmtpmdr1.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Wed, 08 May 2002 14:54:57 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 175HZP-0003ah-00 for ; Wed, 08 May 2002 14:52: 47 +1200 Subject: Re: [vserver] Cookbook Vservers From: "Fran Firman" To: vserver In-Reply-To: References: X-Mailer: Ximian Evolution 1.0.3 Date: 08 May 2002 14:52:46 +1200 Message-ID: <1020826367.13169.6.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10C64C0B371312-01-01 Content-Type: multipart/signed; boundary="=-5bVZbK9oP4SnTaDJu89F"; micalg=pgp-sha1; protocol="application/pgp-signature" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 556 --=-5bVZbK9oP4SnTaDJu89F Content-Type: text/plain Content-Transfer-Encoding: quoted-printable I have a fairly good method of getting vservers running on a deb system, over nfs with a deb system in side the system. Over the nfs allows me to move vservers from server to server, esp if the server it self has a problem. F. On Wed, 2002-05-08 at 10:27, Roderick A. Anderson wrote: > I am working on writing a cook book for creating a vserver based system. = =20 > So far I have had interesting results with the systems I have played with= =20 > so I think even now is a good time for this. (The original idea was writ= e=20 > an article for one of the Linux magazines but they do not seem interested= =20 > at this time.) >=20 > So if anyone that can offer ideas or thoughts I would appreciate them. A= s=20 > I write I'm going to test the process so initailly I only have some vague= =20 > ideas on the process. Please be kind. >=20 > 1. Build/aquire a system capable of running vservers. (I currently have= =20 > one as low as a Pentium-S 133 with 64 MByte RAM, Two SCSI drives (a 4= =20 > GByte main disk and a 2 GByte - the vserser partition) > This will be a very light duty system. Mostly providing mail service= s=20 > for a couple of domains instead of using vmail. >=20 > 2. Install the OS. I'm using Redhat Linux 7.2 but will upgrade to=20 > 7.3/8.9 (skipjack) as soon as it is out. (Kernel matches the current > ctx version. >=20 > 3. Create a template vserver. My thoughts are to install from the root=20 > server and then strip out the fluff/cruft that comes with a=20 > do-many-things Redhat install. (Could I create an 'install CD'=20 > of RPMS based on the packages this template vserver has installed and > use it on other physical systems for an install from CD options?) >=20 > 4. Create unified servers from the template. Add whatever is=20 > wanted/needed for each vserver. Customize /etc/vservers/XXXX.conf an= d=20 > /etc/vservers/XXXX.sh for each vserver. >=20 > Thoughts and ideas? >=20 >=20 > TIA, > Rod > --=20 > Why is it so easy to throw caution to the wind. > Shouldn't it be heavier and shaped like an anvil? >=20 > Jon Anderson >=20 >=20 --=-5bVZbK9oP4SnTaDJu89F Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iEYEABECAAYFAjzYkv4ACgkQv1V2oVWAPhb73QCeLcrNJ//uUvzYNv713HkV3UnC xYsAniw6xIRVrbgXUSxYs2rwOKBuI1CR =+/VO -----END PGP SIGNATURE----- --=-5bVZbK9oP4SnTaDJu89F-- From vserver.error@solucorp.qc.ca Tue May 7 23:36:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g483aQiA020772; Tue, 7 May 2002 23:36:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48337l21734 for vserver.list; Tue, 7 May 2002 23:03:07 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48337h21730 for ; Tue, 7 May 2002 23:03:07 -0400 Received: from remtk.solucorp.qc.ca (g39-97.citenet.net [206.123.39.97]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g4834SA71456 for ; Tue, 7 May 2002 23:04:28 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g482wHq02908 for vserver@solucorp.qc.ca; Tue, 7 May 2002 22:58:17 -0400 From: Jacques Gelinas Date: Tue, 7 May 2002 22:58:17 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Openldap server on vserver X-mailer: tlmpmail 0.6 Message-ID: <20020507225817.0868e9e78753@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 557 On Tue, 7 May 2002 12:52:54 -0500, Lew Teck Kheng wrote > hi all : > > I tried to setup a openldap server on a vserver but when i try to start > the openldap server it cannot be start and complained about "Broken > Pipe" ? > > Have anyone manage to setup a openldap server on a vserver ? > Works ok on rh7.2. Nothing special to do --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed May 8 00:04:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4844kiA021014; Wed, 8 May 2002 00:04:47 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g483lZE22669 for vserver.list; Tue, 7 May 2002 23:47:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp016.mail.yahoo.com (smtp016.mail.yahoo.com [216.136.174.113]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g483lYh22665 for ; Tue, 7 May 2002 23:47:34 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 8 May 2002 03:47:34 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] Problem: "Cannot assign requested address", Bind, webmin, and others Date: Tue, 7 May 2002 22:47:28 -0500 Message-ID: <000a01c1f643$13674020$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal In-Reply-To: <000001c1f62f$c4937b20$ed23bd41@PremiumFood> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 558 Hello, I seem to have some trouble installing some server. Excuse me, since I am only a linux newbie, but here are the problems I observed. What's particular curious is that I didn't experience these problems on other server which has a slightly older versions of vserver. -Even though I have Bind running in the root server, the domain names in the child servers are not resolved. For example, ping redhat.com returns with host not found(or something like that). I remember on the old server the bind in the root server resolves the names for the child servers(?). Even after installing and starting bind in the child server, the names are still unresolved. -Also, when I start a vserver or enter it, I am getting the message, SIOCSIFBRDADDR: Cannot assign requested address SIOCSIFFLAGS: Cannot assign requested address -In addition, webmin doesn't seem to work. It used to work fine on the old server (in a vserver). But now it doesn't run, and during startup, the message. (I am still working on this, maybe this isn't vserver-related) I have tried to solve these problems, but since I am a linux newbie, I don't know how to. I would appreciate any help. Thanks, Peter From vserver.error@solucorp.qc.ca Wed May 8 02:42:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g486gQiA022051; Wed, 8 May 2002 02:42:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g486P4R25991 for vserver.list; Wed, 8 May 2002 02:25:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp13.dti.ne.jp (smtp13.dti.ne.jp [202.216.228.48]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g486P3h25987 for ; Wed, 8 May 2002 02:25:03 -0400 Received: from posha.cats.yamato (PPPa232.ibaraki-ip.dti.ne.jp [210.159.157.232]) by smtp13.dti.ne.jp (8.12.1/3.7W) with SMTP id g486P1SW026653 for ; Wed, 8 May 2002 15:25:01 +0900 (JST) Date: Wed, 8 May 2002 15:25:01 +0900 (JST) Message-Id: <200205080625.g486P1SW026653@smtp13.dti.ne.jp> From: "S.Yamto" To: vserver@solucorp.qc.ca Subject: [vserver] Re: [Q] Can not ForwardX11 in ssh In-Reply-To: Your message of "Sat, 27 Apr 2002 14:35:00 +0900 (JST)". <200204270535.g3R5Z0SW027908@smtp13.dti.ne.jp> X-Mailer: mnews [version 1.22] 1999-12/19(Sun) X-Dispatcher: Nomail 0.4.9 (Caravanserai) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 559 I posted "Can not ForwardX11" and "can not telnet localhost" before. I think I've found my faults. That was all from v_xinetd and v_sshd. The machine running vserver is located remotely, and I was running the commands in a shell invoked by the sshd, which is `chbind'ed. So all the programms including zebedee, sshd and xinetd were also `chbinded'. (I have tested "/etc/init.d/v_xinetd stop; /etc/init.d/xinetd start" with the same failure.) ``netstat -atn | grep LISTEN'' revealed that sshd is listening only to the eth0 address. I disabled v_xinetd and v_sshd and then rebooted the machine, then all worked. I am now running xinetd (for telnet and invoking zebedee) and v_sshd, and everything runs fine, thank you. # I was wondering why so many people can live without port forwarding :-P # I learned that "EXPERIMENTS WITHOUT CONSOLE IS DANGEROUS." Regards, -------------- S.Yamato/$BBgOB?50l(B From vserver.error@solucorp.qc.ca Wed May 8 09:24:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48DOhiA025401; Wed, 8 May 2002 09:24:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48DCfC03246 for vserver.list; Wed, 8 May 2002 09:12:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48DCeh03242 for ; Wed, 8 May 2002 09:12:41 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:19463 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Wed, 8 May 2002 15:12:29 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Wed, 8 May 2002 15:12:16 +0200 Date: Wed, 8 May 2002 15:12:16 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] Problem: "Cannot assign requested address", Bind, webmin, and others Message-ID: <20020508151216.F25124@4t2.com> References: <000001c1f62f$c4937b20$ed23bd41@PremiumFood> <000a01c1f643$13674020$ed23bd41@PremiumFood> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <000a01c1f643$13674020$ed23bd41@PremiumFood>; from peterkwanchan@yahoo.com on Tue, May 07, 2002 at 10:47:28PM -0500 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 560 On Tue, May 07, 2002 at 10:47:28PM -0500, Peter Kwan Chan wrote: > > -Even though I have Bind running in the root server, the domain names in > the child servers are not resolved. For example, ping redhat.com returns > with host not found(or something like that). I remember on the old > server the bind in the root server resolves the names for the child > servers(?). Even after installing and starting bind in the child server, > the names are still unresolved. check the /etc/resolv.conf in your vserver. there should be an entry nameserver IP-Adress with the IP of your main server - or any other box running a well configured bind. > -Also, when I start a vserver or enter it, I am getting the message, > > SIOCSIFBRDADDR: Cannot assign requested address > SIOCSIFFLAGS: Cannot assign requested address check for correct settings of IPROOT= in your /etc/vservers/*.conf and make sure you've got an Interface configured for this IP on your hosting server. > -In addition, webmin doesn't seem to work. It used to work fine on the > old server (in a vserver). But now it doesn't run, and during startup, > the message. (I am still working on this, maybe this isn't > vserver-related) probably related to the above. Tom From vserver.error@solucorp.qc.ca Wed May 8 12:27:46 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48GRjiA026705; Wed, 8 May 2002 12:27:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48FuGx08262 for vserver.list; Wed, 8 May 2002 11:56:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48FuGh08258 for ; Wed, 8 May 2002 11:56:16 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g48FuI606705 for ; Wed, 8 May 2002 08:56:18 -0700 Date: Wed, 8 May 2002 08:56:18 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: vserver Subject: Re: [vserver] Cookbook Vservers In-Reply-To: <1020826367.13169.6.camel@ganymede> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 561 On 8 May 2002, Fran Firman wrote: > I have a fairly good method of getting vservers running on a deb system, > over nfs with a deb system in side the system. > > Over the nfs allows me to move vservers from server to server, esp if > the server it self has a problem. Sounds good. Would you be willing to share it - with credit where due? I'm a Redhat user but this should help any and all. I'd like to add that I want to do it cook book verses HOWTO. Not a lot of side-theory just step by step with specific distribution(s) and generic setups. Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Wed May 8 12:56:13 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48GuCiA026955; Wed, 8 May 2002 12:56:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48GYxb09267 for vserver.list; Wed, 8 May 2002 12:34:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48GYwh09263 for ; Wed, 8 May 2002 12:34:58 -0400 Subject: [vserver] bind to multiple IPs To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Wed, 8 May 2002 11:35:24 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/08/2002 11:34:59 AM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 562 Hello, I'm wondering if the discussion here: http://vserver.vlad.net/list/0096.html ever resulted in the ability to bind multiple IP aliases to a vserver. This would be a very handy feature indeed! Thanks! Justin From vserver.error@solucorp.qc.ca Wed May 8 13:03:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48H3wiA027001; Wed, 8 May 2002 13:03:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48GeBR09486 for vserver.list; Wed, 8 May 2002 12:40:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from fnexchange2.corp.fast.net (fnexchange2.corp.fast.net [209.92.29.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48GeAh09482 for ; Wed, 8 May 2002 12:40:10 -0400 Received: by fnexchange2.corp.fast.net with Internet Mail Service (5.5.2653.19) id ; Wed, 8 May 2002 12:40:11 -0400 Message-ID: <684A8B4FD94E464283C3ABA6AE65214102D9BC67@fnexchange2.corp.fast.net> From: Jerry Wilborn To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] bind to multiple IPs Date: Wed, 8 May 2002 12:40:10 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 563 yes yes yes... that would TOTALLY rock. Jerry Wilborn, Operations Engineer FASTNET - Internet Solutions 610-266-6700 www.fast.net -----Original Message----- From: Justin M Kuntz [mailto:jkuntz@prominic.com] Sent: Wednesday, May 08, 2002 12:35 PM To: vserver@solucorp.qc.ca Subject: [vserver] bind to multiple IPs Hello, I'm wondering if the discussion here: http://vserver.vlad.net/list/0096.html ever resulted in the ability to bind multiple IP aliases to a vserver. This would be a very handy feature indeed! Thanks! Justin From vserver.error@solucorp.qc.ca Wed May 8 13:32:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48HWPiA027269; Wed, 8 May 2002 13:32:25 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48H7uo10255 for vserver.list; Wed, 8 May 2002 13:07:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48H7th10251 for ; Wed, 8 May 2002 13:07:55 -0400 Received: from remtk.solucorp.qc.ca (g36-71.citenet.net [206.123.36.71]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g48H9NA16104 for ; Wed, 8 May 2002 13:09:23 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g48Gfl901302 for vserver@solucorp.qc.ca; Wed, 8 May 2002 12:41:47 -0400 From: Jacques Gelinas Date: Wed, 8 May 2002 12:41:47 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Vserver install from Redhat 7.2 bug X-mailer: tlmpmail 0.6 Message-ID: <20020508124147.6eb5fa26287f@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 564 On Tue, 7 May 2002 20:29:09 -0500, Peter Kwan Chan wrote > Hello, > It seems that the install script called the install_post.sh, which does > not exist. The correct one should be install-post.sh. Fixed. Thanks. Will be in the next release > By the way, I had both my previous issues resolved. :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From jkuntz@prominic.com Wed May 8 13:51:06 2002 Received: from domino-2.prominic.com (hidden-user@s2-f1-gb.prominic.com [63.254.227.1]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48Hp6iA027489 for ; Wed, 8 May 2002 13:51:06 -0400 Subject: apache security / Cookbook Vservers / vserver system usage To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Wed, 8 May 2002 12:51:44 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/08/2002 12:51:06 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 565 Johan -- Your work on securing Apache + PHP etc. could definitely be beneficial in the context of further securing Apache from root exploits by putting the engine inside a vserver. See http://www.solucorp.qc.ca/mlist/index.hc?list=vserver to subscribe to the list - I think you'll find it very beneficial. Rod -- I think this is related to your Cookbook Vservers concept. Lets work on this together. Can you send me a draft of what you've got so far or post it somewhere so we can all begin to look at it? Vlad -- Your post here is especially relevant to vserver in a hosted environment: http://vserver.vlad.net/list/0135.html I think many of us are interested in vserver because it helps our web hosting operations be more secure, scalable, reliable, etc. But rather than each of us re-inventing the wheel about vserver + apache + mysql + standard web hosting security framework, I do think we need to help Jack and the vserver development group by documenting some best practices. Jack and the other real wizards on the mailing list are busy figuring out complex kernel things... so hopefully we can help the vserver effort with sharing our use of it in production environments. vserver has a ton of power. What we need to do is combine its raw power with some boiler-plate ways to help it manage applications. Look at what the commercial offerings have like http://www.sphera.com and http://www.ensim.com ... those places have figured out how to best allow Apache + MySQL + PHP + etc. to be safely segmented from one another on a per-user basis. Lets do the same thing and wrapper each one in vservers. I see two basic approaches for web hosting security with vservers. I will call them Shared Apache and Partitioned Apache, defined as follows: * Partitioned Apache is an instance of Apache (in its own vserver) with all the modules that someone wants bound directly into it, such as mod_perl, mod_php, etc. From what I understand, if mod_php is loaded into an Apache server, any PHP script executed is going to run with the same privs as the Apache base server. Same thing with Perl, etc. This is a problem in the case that more than one untrusted user is going to be using the same Apache server. The solution of course is to give each untrusted user their own Apache vserver. However, this means that each customer must be assigned their own IP address and that multiple virtual domains (for different customers) can not be used to share an IP address... naturally, IPs are hard to come by so this is a problem. So the idea is that customers who want to pay for extra security, reliability, and configuration capabilities of their own Apache Partition will pay a premium. But most customers who are primarily concerned with cost will want a Shared Apache. * Shared Apache is an instance of Apache (in its own vserver), but with no security-hole modules compiled in, and multiple untrusted customers each given their own home directory for cgi-bin, etc. Shared Apache is basically Partitioned Apache but meant to be shared among many untrusted, unrelated customers. The key to security in a Shared Apache environment is suexec or cgiwrap must be used to wrapper any programmable logic done by each untrusted user. Really most "semi-safe" hosting environments right now are using this basic model of an suexec/cgiwrap with an Apache server running lots of virtual domains to host many different customers on the same Apache engine, and typically sharing the same IP address. This is great in terms of resource sharing for IPs, memory, and processing time since only one Apache instance is used. But what if that Apache instance gets hacked? That's why it should be wrappered in a vserver of course. Frankly I've looked into both Ensim and Sphera. Both are extremely expensive, and they are closed proprietary technology that requires pretty much full adoption of their automation systems. The core technology at work in Ensim may be more polished than vserver right now... but certainly vserver is so far along that it has proven its potential already for becoming part of the core Linux kernel down the road. What vserver needs to become polished for web hosting is: 1) Ensim-like resource guarantees. This means having minimum resource guarantees, but allow for burstability when technically feasible in terms of CPU and bandwidth. There should be quotas on disk space and memory usage, as well as possibly file descriptors... maybe we can think of other resources which are generally limited and can cause a crash if someone exhausts them. I know ulimit can do a lot of this on a per-process basis but we need to make it on a per-vserver basis. 2) Sphera-like application support inside Apache. Sphera does a GREAT job of having an integrated system for everything from Tomcat to MySQL. I'm not proposing we go that far with documenting this stuff, but I think the more we can combine what is needed by web-hosters and ISPs within Rod's idea of cookbook vservers, the more attractive vserver will look. Here is a great article on these other web hosting systems - it's short but hits the major points of resource isolation: http://hosting.developersnetwork.com/Articles/Articles.asp?Article=290 Let me know your thoughts... Justin From vserver.error@solucorp.qc.ca Wed May 8 14:04:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48I4AiA027548; Wed, 8 May 2002 14:04:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48Hp6j12064 for vserver.list; Wed, 8 May 2002 13:51:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48Hp5h12060 for ; Wed, 8 May 2002 13:51:05 -0400 Subject: [vserver] apache security / Cookbook Vservers / vserver system usage To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Wed, 8 May 2002 12:51:44 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/08/2002 12:51:06 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 566 Johan -- Your work on securing Apache + PHP etc. could definitely be beneficial in the context of further securing Apache from root exploits by putting the engine inside a vserver. See http://www.solucorp.qc.ca/mlist/index.hc?list=vserver to subscribe to the list - I think you'll find it very beneficial. Rod -- I think this is related to your Cookbook Vservers concept. Lets work on this together. Can you send me a draft of what you've got so far or post it somewhere so we can all begin to look at it? Vlad -- Your post here is especially relevant to vserver in a hosted environment: http://vserver.vlad.net/list/0135.html I think many of us are interested in vserver because it helps our web hosting operations be more secure, scalable, reliable, etc. But rather than each of us re-inventing the wheel about vserver + apache + mysql + standard web hosting security framework, I do think we need to help Jack and the vserver development group by documenting some best practices. Jack and the other real wizards on the mailing list are busy figuring out complex kernel things... so hopefully we can help the vserver effort with sharing our use of it in production environments. vserver has a ton of power. What we need to do is combine its raw power with some boiler-plate ways to help it manage applications. Look at what the commercial offerings have like http://www.sphera.com and http://www.ensim.com ... those places have figured out how to best allow Apache + MySQL + PHP + etc. to be safely segmented from one another on a per-user basis. Lets do the same thing and wrapper each one in vservers. I see two basic approaches for web hosting security with vservers. I will call them Shared Apache and Partitioned Apache, defined as follows: * Partitioned Apache is an instance of Apache (in its own vserver) with all the modules that someone wants bound directly into it, such as mod_perl, mod_php, etc. From what I understand, if mod_php is loaded into an Apache server, any PHP script executed is going to run with the same privs as the Apache base server. Same thing with Perl, etc. This is a problem in the case that more than one untrusted user is going to be using the same Apache server. The solution of course is to give each untrusted user their own Apache vserver. However, this means that each customer must be assigned their own IP address and that multiple virtual domains (for different customers) can not be used to share an IP address... naturally, IPs are hard to come by so this is a problem. So the idea is that customers who want to pay for extra security, reliability, and configuration capabilities of their own Apache Partition will pay a premium. But most customers who are primarily concerned with cost will want a Shared Apache. * Shared Apache is an instance of Apache (in its own vserver), but with no security-hole modules compiled in, and multiple untrusted customers each given their own home directory for cgi-bin, etc. Shared Apache is basically Partitioned Apache but meant to be shared among many untrusted, unrelated customers. The key to security in a Shared Apache environment is suexec or cgiwrap must be used to wrapper any programmable logic done by each untrusted user. Really most "semi-safe" hosting environments right now are using this basic model of an suexec/cgiwrap with an Apache server running lots of virtual domains to host many different customers on the same Apache engine, and typically sharing the same IP address. This is great in terms of resource sharing for IPs, memory, and processing time since only one Apache instance is used. But what if that Apache instance gets hacked? That's why it should be wrappered in a vserver of course. Frankly I've looked into both Ensim and Sphera. Both are extremely expensive, and they are closed proprietary technology that requires pretty much full adoption of their automation systems. The core technology at work in Ensim may be more polished than vserver right now... but certainly vserver is so far along that it has proven its potential already for becoming part of the core Linux kernel down the road. What vserver needs to become polished for web hosting is: 1) Ensim-like resource guarantees. This means having minimum resource guarantees, but allow for burstability when technically feasible in terms of CPU and bandwidth. There should be quotas on disk space and memory usage, as well as possibly file descriptors... maybe we can think of other resources which are generally limited and can cause a crash if someone exhausts them. I know ulimit can do a lot of this on a per-process basis but we need to make it on a per-vserver basis. 2) Sphera-like application support inside Apache. Sphera does a GREAT job of having an integrated system for everything from Tomcat to MySQL. I'm not proposing we go that far with documenting this stuff, but I think the more we can combine what is needed by web-hosters and ISPs within Rod's idea of cookbook vservers, the more attractive vserver will look. Here is a great article on these other web hosting systems - it's short but hits the major points of resource isolation: http://hosting.developersnetwork.com/Articles/Articles.asp?Article=290 Let me know your thoughts... Justin From vserver.error@solucorp.qc.ca Wed May 8 15:27:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48JRmaC028330; Wed, 8 May 2002 15:27:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48JE9R14771 for vserver.list; Wed, 8 May 2002 15:14:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48JE8h14767 for ; Wed, 8 May 2002 15:14:08 -0400 Received: from remtk.solucorp.qc.ca (g39-156.citenet.net [206.123.39.156]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g48JFbA27936 for ; Wed, 8 May 2002 15:15:37 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g48IPOm01732 for vserver@solucorp.qc.ca; Wed, 8 May 2002 14:25:24 -0400 From: Jacques Gelinas Date: Wed, 8 May 2002 14:25:24 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] locking problems with samba X-mailer: tlmpmail 0.6 Message-ID: <20020508142524.a864a1234472@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 567 On Tue, 7 May 2002 11:22:23 -0500, Thomas Weber wrote > Hi, > > Anyone looking into these problems? I'll have to put this server into > production soon and need to decide on my samba setup. Me starting today ... --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed May 8 15:28:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48JSUaC028338; Wed, 8 May 2002 15:28:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48JECH14789 for vserver.list; Wed, 8 May 2002 15:14:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48JECh14785 for ; Wed, 8 May 2002 15:14:12 -0400 Received: from remtk.solucorp.qc.ca (g39-156.citenet.net [206.123.39.156]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g48JFfA27961 for ; Wed, 8 May 2002 15:15:41 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g48IQTF01734 for vserver@solucorp.qc.ca; Wed, 8 May 2002 14:26:29 -0400 From: Jacques Gelinas Date: Wed, 8 May 2002 14:26:29 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] locking problems with samba - cups X-mailer: tlmpmail 0.6 Message-ID: <20020508142629.c55b5e7b3405@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 568 On Tue, 16 Apr 2002 06:54:08 -0500, James MacLean wrote > > Thomas Weber wrote: > > > Hi there, > > > i've got problems running samba in a vserver. On a share that's accessible > > > by multiple (Windows)users I get lockups on the client side when someone > > > tries to access a file that's already opened by another user. > > > any ideas? > > Possibly totally unrelated but this past weekend I went through an > exercise to get CUPS running in a vserver. One big hangup was that CUPS is > hardcoded everywhere to talk via localhost. In cup's case, it wasn't just > the host 'localhost' or the ip '127.0.0.1' but the hex coded localhost > '0x7f000001' everywhere :(. > > So I've been setting /etc/hosts to say that localhost is actually the > vserver's IP. Newer ctx kernel handle this 127.0.0.1 -> iproot address translation on the fly. Which kernel were you using ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed May 8 15:30:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48JUaaC028374; Wed, 8 May 2002 15:30:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48JEAu14777 for vserver.list; Wed, 8 May 2002 15:14:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48JE9h14773 for ; Wed, 8 May 2002 15:14:09 -0400 Received: from remtk.solucorp.qc.ca (g39-156.citenet.net [206.123.39.156]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g48JFcA27944 for ; Wed, 8 May 2002 15:15:38 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g48I0ge01724 for vserver@solucorp.qc.ca; Wed, 8 May 2002 14:00:42 -0400 From: Jacques Gelinas Date: Wed, 8 May 2002 14:00:42 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] initrd option X-mailer: tlmpmail 0.6 Message-ID: <20020508140042.72793e5ca4ab@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 569 On Tue, 7 May 2002 15:08:43 -0500, Roderick A. Anderson wrote > I ran into a situation where I was required to make an initrd file for > 18ctx-10 (system with SCSI drives.) It is working just fine now. My > questions is is there any harm with creating and using an initrd for a > system that does not need it to boot? No. An initrd is a general purpose solution to do things very early during the boot process. Loading scsi drivers is just one of those. For the xtermkit project, we are creating an initrd which attempts to load network drivers until one fits in place. So this creates a single boot strategy for many different machine. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed May 8 15:37:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48JaxaC028456; Wed, 8 May 2002 15:36:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48JEB314783 for vserver.list; Wed, 8 May 2002 15:14:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48JEBh14779 for ; Wed, 8 May 2002 15:14:11 -0400 Received: from remtk.solucorp.qc.ca (g39-156.citenet.net [206.123.39.156]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g48JFdA27955 for ; Wed, 8 May 2002 15:15:39 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g48Hvcg01720 for vserver@solucorp.qc.ca; Wed, 8 May 2002 13:57:38 -0400 From: Jacques Gelinas Date: Wed, 8 May 2002 13:57:38 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Redhat Install Script error? X-mailer: tlmpmail 0.6 Message-ID: <20020508135738.565e22da6c0d@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 570 On Mon, 6 May 2002 09:44:27 -0500, Peter Kwan Chan wrote > Also, an error message sometimes pop up in the list of packages > installed, for example, > > /proc is empty (not mounted ?) > > or > > awk: cmd. line:2: fatal: cannot open file `/etc/fstab' for reading (No > such file or directory) > > Is this normal? Yes. The script simply dumps rpm in place without much prior setup. This could be fixed, but in general, these errors do not affect a virtual server. Installing a real linux like this would produce a barely working linux installation. The difference between a vserver and a real installation is that the real one must handle hardware configuration while a vserver is just 'renting' the place with 'all services contract'. This script will have to be rework a little, but the real interest will be to create an upgrade script (7.2 -" 7.3). --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed May 8 19:58:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g48Nw5aC030410; Wed, 8 May 2002 19:58:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g48NcvL22042 for vserver.list; Wed, 8 May 2002 19:38:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g48Ncvh22038 for ; Wed, 8 May 2002 19:38:57 -0400 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 3.35 #1) id 175b1N-0005aB-00 for vserver@solucorp.qc.ca; Wed, 08 May 2002 20:38:57 -0300 Date: Wed, 8 May 2002 20:38:57 -0300 (ADT) From: James MacLean To: Subject: Re: [vserver] locking problems with samba - cups In-Reply-To: <20020508142629.c55b5e7b3405@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 571 On Wed, 8 May 2002, Jacques Gelinas wrote: > On Tue, 16 Apr 2002 06:54:08 -0500, James MacLean wrote > > > Thomas Weber wrote: > > > > Hi there, > > > > i've got problems running samba in a vserver. On a share that's accessible > > > > by multiple (Windows)users I get lockups on the client side when someone > > > > tries to access a file that's already opened by another user. > > > > any ideas? > > > > Possibly totally unrelated but this past weekend I went through an > > exercise to get CUPS running in a vserver. One big hangup was that CUPS is > > hardcoded everywhere to talk via localhost. In cup's case, it wasn't just > > the host 'localhost' or the ip '127.0.0.1' but the hex coded localhost > > '0x7f000001' everywhere :(. > > > > So I've been setting /etc/hosts to say that localhost is actually the > > vserver's IP. > > Newer ctx kernel handle this 127.0.0.1 -> iproot address translation on > the fly. Which kernel were you using ? Hi Jacques, Actually I would have been trying it originally on a 2.4.18 + ctx-10. Now that time has past I'm unsure exactly what led me to force the localhosts all to local vserver IP, but I certainly remember it fixed it ;). I think the problem was always showing itself when you used the web interface to add a printer. It would appear to stall, and I seemed to remember it was (according to strace maybe) to be trying to do something using 127.0.0.1 and getting an error something like permission denied. So I thought I would just setup the obvious settings in the code to be the local IP instead of 127.0.0.1. That's when I also noticed it was hardcoded in quite a few places in hex, and after altering them, it worked. Now chances are you'll be able to do a default CUPS install and not have the same problem :(. I'm currently running ctx-10 on 2.4.19-pre8, and I could probably bring it up and see if it shows up again if you can not see it on your end. JES -- James B. MacLean macleajb@ednet.ns.ca Department of Education Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Thu May 9 04:24:29 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g498OSaC002282; Thu, 9 May 2002 04:24:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g497PPj00419 for vserver.list; Thu, 9 May 2002 03:25:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g497PNh00415 for ; Thu, 9 May 2002 03:25:24 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 175iIg-0002MB-00 for ; Thu, 09 May 2002 09:25:18 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 175iIg-0002Lw-00 for ; Thu, 09 May 2002 09:25:18 +0200 Sender: jon@silicide.dk Message-ID: <3CDA245E.EF391BE7@silicide.dk> Date: Thu, 09 May 2002 09:25:18 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: vserver on NFS (was Re: [vserver] Cookbook Vservers References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 572 "Roderick A. Anderson" wrote: > > On 8 May 2002, Fran Firman wrote: > > > I have a fairly good method of getting vservers running on a deb system, > > over nfs with a deb system in side the system. > > > > Over the nfs allows me to move vservers from server to server, esp if > > the server it self has a problem. > > Sounds good. Would you be willing to share it - with credit where due? > I'm a Redhat user but this should help any and all. > > I'd like to add that I want to do it cook book verses HOWTO. Not a lot of > side-theory just step by step with specific distribution(s) and generic > setups. Please include some performance numbers, i'm not sure running over NFS is fast. JonB From vserver.error@solucorp.qc.ca Thu May 9 05:02:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4992VaC002525; Thu, 9 May 2002 05:02:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g498OpC02831 for vserver.list; Thu, 9 May 2002 04:24:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g498Ooh02827 for ; Thu, 9 May 2002 04:24:50 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 175jEI-0002N9-00 for ; Thu, 09 May 2002 10:24:50 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 175jEI-0002Mz-00 for ; Thu, 09 May 2002 10:24:50 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Thu, 09 May 2002 10:24:50 +0200 (CEST) Received: (qmail 76138 invoked from network); 9 May 2002 08:24:32 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 9 May 2002 08:24:32 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g497PPj00419 for vserver.list; Thu, 9 May 2002 03:25:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g497PNh00415 for ; Thu, 9 May 2002 03:25:24 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 175iIg-0002MB-00 for ; Thu, 09 May 2002 09:25:18 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 175iIg-0002Lw-00 for ; Thu, 09 May 2002 09:25:18 +0200 Sender: jon@silicide.dk Message-ID: <3CDA245E.EF391BE7@silicide.dk> Date: Thu, 09 May 2002 09:25:18 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: vserver on NFS (was Re: [vserver] Cookbook Vservers References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 573 "Roderick A. Anderson" wrote: > > On 8 May 2002, Fran Firman wrote: > > > I have a fairly good method of getting vservers running on a deb system, > > over nfs with a deb system in side the system. > > > > Over the nfs allows me to move vservers from server to server, esp if > > the server it self has a problem. > > Sounds good. Would you be willing to share it - with credit where due? > I'm a Redhat user but this should help any and all. > > I'd like to add that I want to do it cook book verses HOWTO. Not a lot of > side-theory just step by step with specific distribution(s) and generic > setups. Please include some performance numbers, i'm not sure running over NFS is fast. JonB From vserver.error@solucorp.qc.ca Thu May 9 07:55:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g49Bt4aC003535; Thu, 9 May 2002 07:55:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g49BThF06860 for vserver.list; Thu, 9 May 2002 07:29:43 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-199-197.in-addr.btopenworld.com [213.122.199.197]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g49BTfh06856 for ; Thu, 9 May 2002 07:29:42 -0400 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Thu, 9 May 2002 12:29:28 +0100 From: "John Lyons" To: Subject: RE: [vserver] apache security / Cookbook Vservers / vserver system usage Date: Thu, 9 May 2002 12:29:27 +0100 Message-ID: <005d01c1f74c$c80ffa30$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 574 > Your post here is especially relevant to vserver in a hosted > environment: > http://vserver.vlad.net/list/0135.html > > I think many of us are interested in vserver because it helps our web > hosting operations be more secure, scalable, reliable, etc. Slightly changing the approach here, I think you're looking at using vservers within a hosting environment in the sense that you offer individual hosting accounts to customers but host those accounts on vservers. Yes, this is a good use for the vserver. We're doing this already. We're not that heavily into apache/php/mysql hardening we're just using the latest php4.1.2 rpm packages so that we can unify everything across multiple vservers. To us the advantage of the vserver is that we've now got apache, mysql, smtp/pop and bind each running in their own vservers. From this we've got some enhanced security and when the load from any one of those services gets too much we can easily move them to a separate server. The other use that vserver is good for is giving each customer their own vserver in the FreeVSD style. We've just launched this to a select number of our own customers which is proving to be very popular! Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Thu May 9 12:44:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g49GicaC005874; Thu, 9 May 2002 12:44:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g49GOaH14479 for vserver.list; Thu, 9 May 2002 12:24:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g49GOZh14475 for ; Thu, 9 May 2002 12:24:35 -0400 Subject: [vserver] vserver with reiserfs or ext3 To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Thu, 9 May 2002 11:24:44 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/09/2002 11:24:36 AM MIME-Version: 1.0 Content-type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g49GOZh14475 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 575 Sam -- It seems you are the guru when it comes to ReiserFS support with vserver. :) Having a journaling filesystem is of utmost importance to me. So my choices are ext3 or ReiserFS. Currently I have several systems running ReiserFS on SuSE 7.3 - but none of them are using vserver kernel patches (yet?). I'm installing a new system - Red Hat 7.2 - with ext3 simply because it seems like right now vserver is most tested on this platform. But some messages I've seen in the mailing list archive have made me unclear on the status of which filesystems support _all_ of the vserver features including immutable flags and unification. Back in Nov 2001 this was posted by you: http://vserver.vlad.net/list/0066.html along with this link to why ReiserFS doesn't support extended attributes: http://www.namesys.com/stream_ans.html Has this changed by now (May 9, 2002)? I mean would you consider ReiserFS now feature complete in terms of vserver's requirements? How about ext3? Based on this message: http://vserver.vlad.net/list/0513.html it sounded like some of the ext2 attributes had to be mapped to ext3 unused bits, which I assume may not be a permanent solution if vserver has to officially request those bits to be reserved from the ext3 management team. (I have no idea of the actual process of managing filesystem development, I'm simply making an assumption about bits needing to be well-known, etc): Currently I'm using on the Red Hat 7.2 system 2.4.18ctx-10. Is the 2.4.19-pre3 kernel the one to be using if I want feature complete ReiserFS support for vserver? Or do you still need to build a patch of some kind? Thanks! Justin -------------------------- Excellent, it looks like inode attributes on reiserfs are in the latest stable kernel pre-release. I feel another patch coming on... Sam. Begin forwarded message: Date: Tue, 12 Mar 2002 14:40:16 +0300 From: Oleg Drokin To: Sam Vilain Subject: inode attributes Hello! On Tue, Mar 12, 2002 at 11:20:00AM +0000, Sam Vilain wrote: > btw, nice to see inode attributes back in the "pending" patches. Any idea> when this patch will make it into the mainstream kernel? It is already. Download 2.4.19-pre3 and enjoy. Bye,    Oleg From vserver.error@solucorp.qc.ca Thu May 9 12:46:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g49GkDaC005899; Thu, 9 May 2002 12:46:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g49G4Ne13905 for vserver.list; Thu, 9 May 2002 12:04:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g49G4Nh13901 for ; Thu, 9 May 2002 12:04:23 -0400 Subject: RE: [vserver] apache security / Cookbook Vservers / vserver system usage To: vserver@solucorp.qc.ca Cc: support@nsnoc.com X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Thu, 9 May 2002 11:04:32 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/09/2002 11:04:24 AM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 576 John, Thanks for the reply. Indeed, my intent is to have dual security at suexec and vserver levels for the "Shared Apache" method. It sounds like you are doing "Partitioned Apache" so that each customer right now gets their own Apache and vserver. Definitely that seems to be the more straightforward approach when it is not necessary to share IPs between many customers. What OS are you running? Red Hat 7.2, SuSE 7.3, etc? Are you using ReiserFS or ext3? I am trying to decide right now which filesystem is safest to use with vserver... I really like ReiserFS but I thought I read earlier in the mailing list archive that the unification and immutable features aren't supported on Reiser. One of my associates did some testing and felt that ext3 wasn't mature enough or had some problems relative to Reiser. I'd love to hear your experience. Incidentally, we are using the http://www.3Ware.com IDE hardware RAID controllers for RAID 10 support on our Linux boxes across 4 drives. For about $300 this is a good investment, although it does rquire in vserver's case for a recompiled kernel to be made. No big deal - but I just wanted to offer that advice. Thanks! Justin From vserver.error@solucorp.qc.ca Thu May 9 15:42:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g49JgsaC007144; Thu, 9 May 2002 15:42:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g49JSaJ19818 for vserver.list; Thu, 9 May 2002 15:28:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail4.messagelabs.com (mail4.messagelabs.com [212.125.75.12]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g49JSZh19814 for ; Thu, 9 May 2002 15:28:35 -0400 X-VirusChecked: Checked Received: (qmail 19763 invoked from network); 9 May 2002 19:28:26 -0000 Received: from porgy.logica.co.uk (158.234.250.67) by server-4.tower-4.messagelabs.com with SMTP; 9 May 2002 19:28:26 -0000 Received: from shannon.ie.logica.com (shannon.ie.logica.com [158.234.96.46]) by porgy.logica.co.uk (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id UAA21219 for ; Thu, 9 May 2002 20:28:26 +0100 Received: from ruth.ie.logica.com ([158.234.96.113]) by shannon.ie.logica.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2448.0) id KGKL5SFB; Thu, 9 May 2002 20:28:24 +0100 Received: from pc243.ie.logica.com (pc243.ie.logica.com [158.234.98.243]) by ruth.ie.logica.com (8.9.1/8.9.0) with ESMTP id UAA03288 for ; Thu, 9 May 2002 20:28:25 +0100 (BST) Subject: [vserver] rsh between virtual server From: Lew Teck Kheng To: Vserver mailing list Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3.99 Date: 09 May 2002 20:28:10 +0100 Message-Id: <1020972491.12666.1.camel@maximus> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 577 hi all : After being thru reading the redhat user guide about rsh service , i still not able to rsh between virtual server. I alway get "Permission Denied". Any ideas ? Many many thanks. cheers -- ======================================================================== Lew Teck Kheng System Engineer Asia LMN System Engineering (Malaysia) (+603) 7725 6890 www.logica.com "Logica Make MMS Real Person to Person MMS demonstrated live using devices from 8 manufacturers on the Orange France GPRS Network at the 3 GSM World Congress in Cannes." ======================================================================== ________________________________________________________________________ This email has been scanned for all viruses by the MessageLabs SkyScan service. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.messagelabs.com ________________________________________________________________________ From vserver.error@solucorp.qc.ca Thu May 9 18:01:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g49M1QaC008452; Thu, 9 May 2002 18:01:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g49LmZ223701 for vserver.list; Thu, 9 May 2002 17:48:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g49LmYh23697 for ; Thu, 9 May 2002 17:48:34 -0400 Received: from aksmtpmdr1.telecom.co.nz (aksmtpmdr1 [146.171.1.20]) by smtpout.telecom.co.nz (Postfix) with SMTP id 292C845E81 for ; Fri, 10 May 2002 09:48:28 +1200 (NZST) Received: from 192.168.192.252 by aksmtpmdr1.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Fri, 10 May 2002 09:48:26 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 175vjo-0006qI-00 for ; Fri, 10 May 2002 09:46: 13 +1200 Subject: Re: vserver on NFS (was Re: [vserver] Cookbook Vservers From: "Fran Firman" To: vserver In-Reply-To: <3CDA245E.EF391BE7@silicide.dk> References: <3CDA245E.EF391BE7@silicide.dk> X-Mailer: Ximian Evolution 1.0.3 Date: 10 May 2002 09:46:12 +1200 Message-ID: <1020980772.26116.8.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10C4312054281-01-01 Content-Type: multipart/signed; boundary="=-GbUjWUSw9VpEB7nm4Wrw"; micalg=pgp-sha1; protocol="application/pgp-signature" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 578 --=-GbUjWUSw9VpEB7nm4Wrw Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Performance on our system seems fine. Thou I do shift /tmp to the local harddrive. for a time dd if=3D/dev/zero of=3Dblah bs=3D1k count=3D100k=20 (create a 100 MByte file takes) On the nfs array =3D 21.66s On the local HD =3D 15.4s The server talks to a switch via 100M which talks to a Firwall via 100M which talks to the nfs array via Gig E. The array has 8x18Gb Ultra Wide Scsi disks. F. On Thu, 2002-05-09 at 19:25, Jon Bendtsen wrote: > "Roderick A. Anderson" wrote: > >=20 > > On 8 May 2002, Fran Firman wrote: > >=20 > > > I have a fairly good method of getting vservers running on a deb syst= em, > > > over nfs with a deb system in side the system. > > > > > > Over the nfs allows me to move vservers from server to server, esp if > > > the server it self has a problem. > >=20 > > Sounds good. Would you be willing to share it - with credit where due? > > I'm a Redhat user but this should help any and all. > >=20 > > I'd like to add that I want to do it cook book verses HOWTO. Not a lot= of > > side-theory just step by step with specific distribution(s) and generic > > setups. >=20 > Please include some performance numbers, i'm not sure running over NFS > is > fast. >=20 >=20 >=20 > JonB >=20 >=20 >=20 >=20 >=20 >=20 >=20 >=20 --=-GbUjWUSw9VpEB7nm4Wrw Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iEYEABECAAYFAjza7iMACgkQv1V2oVWAPhZbUgCfcIDF8CHYwapmrBrThUvVA8kT MS8Anip1aFx0w89m2x+71qypCUjDLxec =fZgq -----END PGP SIGNATURE----- --=-GbUjWUSw9VpEB7nm4Wrw-- From vserver.error@solucorp.qc.ca Thu May 9 18:59:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g49MxGaC008899; Thu, 9 May 2002 18:59:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g49MjqW25001 for vserver.list; Thu, 9 May 2002 18:45:52 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g49Mjph24997 for ; Thu, 9 May 2002 18:45:51 -0400 Received: from host213-1-177-234.btinternet.com ([213.1.177.234] helo=home4v9eek8u3l) by tungsten.btinternet.com with smtp (Exim 3.22 #8) id 175wfM-0005K3-00 for vserver@solucorp.qc.ca; Thu, 09 May 2002 23:45:41 +0100 From: "John Lyons" To: Subject: RE: [vserver] apache security / Cookbook Vservers / vserver system usage Date: Thu, 9 May 2002 23:42:19 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 In-Reply-To: Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 579 > What OS are you running? Red Hat 7.2 RedHat 7.2 > ReiserFS or ext3? Initially installed with ext3, patched kernel (our network cards aren't installed with the pre compiled) got everything working fine for 2 months. Upgraded kernel and patch to the next version in March and lost all Ext3 support in the kernel. I'm off to the datacentre tomorrow to install network cards in the servers so we'll have one for internet traffic and one for internal ssh and backups. Hopefully I'll be upgrading to the latest kernel and patch version at the same time. > earlier in the mailing list archive that the unification and immutable > features aren't supported on Reiser. One of my associates did > some testing > and felt that ext3 wasn't mature enough or had some problems relative to > Reiser. Beyond loosing support with a kernel upgrade ext3, has proved fine on all of our non vserver machines. I do like the ability for a server to get a hard reboot and not need a 70 mile drive to the data centre to fix the file system. > I'd love to hear your experience. Incidentally, we are using the > http://www.3Ware.com IDE hardware RAID controllers for RAID 10 support on > our Linux boxes across 4 drives. I've got other customers in our rack using one of these. Very impressive. Quite tempted to use one on an nfs server for backups etc. Regards John Lyons Netserve Consultants Ltd www.domaincity.co.uk From vserver.error@solucorp.qc.ca Thu May 9 21:36:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A1a7aC010390; Thu, 9 May 2002 21:36:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A1Jkv28126 for vserver.list; Thu, 9 May 2002 21:19:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from carbon (carbon.btinternet.com [194.73.73.92]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A1Jjh28122 for ; Thu, 9 May 2002 21:19:46 -0400 Received: from host213-122-10-163.in-addr.btopenworld.com ([213.122.10.163] helo=home4v9eek8u3l) by carbon with smtp (Exim 3.22 #8) id 175z4T-0000HK-00 for vserver@solucorp.qc.ca; Fri, 10 May 2002 02:19:45 +0100 From: "John Lyons" To: Subject: [vserver] ctx-10 kernel compile Date: Fri, 10 May 2002 02:16:25 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 580 I think I'm going mad here. It's 2am and this ain't working :-( RedHat 7.2 server. I've unziped the 2.4.18 kernel source, and applied the 2.1.18ctx10 patch, all wored fine. I've run: make dep clean bzImage modules modules_install install No errors reported. Boot now has: -rw-r--r-- 1 root root 478238 May 11 02:05 System.map-2.4.18ctx-10 -rw-r--r-- 1 root root 945043 May 11 02:05 vmlinuz-2.4.18ctx-10 grub.conf has: [root@svr9 grub]# cat grub.conf # grub.conf generated by anaconda #boot=/dev/hda default=0 timeout=5 splashimage=(hd0,0)/grub/splash.xpm.gz title Red Hat Linux (2.4.7-18-ctx10) root (hd0,0) kernel /vmlinuz-2.4.18ctx-10 ro root=/dev/hda2 That's the only entry but a restart shows [root@svr9 grub]# uname -a Linux svr9 2.4.17ctx-8 #1 SMP Wed Mar 6 01:15:04 GMT 2002 i686 unknown I'm missing something obvious here, any clues anyone? Regards John Lyons From vserver.error@solucorp.qc.ca Thu May 9 21:36:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A1aGaC010398; Thu, 9 May 2002 21:36:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A1MPj28196 for vserver.list; Thu, 9 May 2002 21:22:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A1MPh28192 for ; Thu, 9 May 2002 21:22:25 -0400 Subject: RE: [vserver] apache security / Cookbook Vservers / vserver system usage To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Thu, 9 May 2002 20:23:32 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/09/2002 08:22:26 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 581 John, Thank you very much for all of the details... so just so I'm clear, basically the only problem you had with ext3 was that you accidentally recompiled a kernel that didn't support it and so you lost support once you rebooted that machine? Have you used ext3 or ReiserFS specifically on machines with vserver patches applied to the kernel? Have the immutability and unification features worked for you even with the latest ctx10 2.4.18 patches? The reason I'm confused is because you said "ext3... has proved fine on all of our non vserver machines". I'm wondering what you're using on your production vserver machines for base OS + filesystem. My plan is Red Hat 7.2 base + compiling our own 2.4.18 kernel from kernel.org w/ vserver patches, ext3, and 3ware support built-in. Our data center is remote also - about 17 miles north of our office. Offices and data center spaces don't tend to mix. :) I've found APC MasterSwitch Plus to be a helpful addition for remote hard rebooting. I want to get a StarTech IP KVM switch to connect to our main KVM matrix so that we can even do remote BIOS/CMOS management. Compaq has a really cool card call the Remote Insight Management Board, which supplies virtual floppy, video, and power control on a per-server basis. I wish I could find something like that for non-Compaq machines. I really appreciate your help with my questions. Thanks again, Justin "John Lyons" .com> cc: Fax to: 05/09/2002 Subject: RE: [vserver] apache security / Cookbook Vservers / vserver system usage 05:42 PM Please respond to vserver > What OS are you running? Red Hat 7.2 RedHat 7.2 > ReiserFS or ext3? Initially installed with ext3, patched kernel (our network cards aren't installed with the pre compiled) got everything working fine for 2 months. Upgraded kernel and patch to the next version in March and lost all Ext3 support in the kernel. I'm off to the datacentre tomorrow to install network cards in the servers so we'll have one for internet traffic and one for internal ssh and backups. Hopefully I'll be upgrading to the latest kernel and patch version at the same time. > earlier in the mailing list archive that the unification and immutable > features aren't supported on Reiser. One of my associates did > some testing > and felt that ext3 wasn't mature enough or had some problems relative to > Reiser. Beyond loosing support with a kernel upgrade ext3, has proved fine on all of our non vserver machines. I do like the ability for a server to get a hard reboot and not need a 70 mile drive to the data centre to fix the file system. > I'd love to hear your experience. Incidentally, we are using the > http://www.3Ware.com IDE hardware RAID controllers for RAID 10 support on > our Linux boxes across 4 drives. I've got other customers in our rack using one of these. Very impressive. Quite tempted to use one on an nfs server for backups etc. Regards John Lyons Netserve Consultants Ltd www.domaincity.co.uk From vserver.error@solucorp.qc.ca Thu May 9 23:45:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A3jNaC011560; Thu, 9 May 2002 23:45:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A3OgM30827 for vserver.list; Thu, 9 May 2002 23:24:42 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A3Ofh30823 for ; Thu, 9 May 2002 23:24:42 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:1544 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Fri, 10 May 2002 05:24:38 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Fri, 10 May 2002 05:24:23 +0200 Date: Fri, 10 May 2002 05:24:23 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] ctx-10 kernel compile Message-ID: <20020510052423.J25124@4t2.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: ; from support@nsnoc.com on Fri, May 10, 2002 at 02:16:25AM +0100 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: O X-Status: X-Keywords: X-UID: 582 On Fri, May 10, 2002 at 02:16:25AM +0100, John Lyons wrote: > > Boot now has: > -rw-r--r-- 1 root root 478238 May 11 02:05 > System.map-2.4.18ctx-10 > -rw-r--r-- 1 root root 945043 May 11 02:05 vmlinuz-2.4.18ctx-10 > > grub.conf has: > [root@svr9 grub]# cat grub.conf > # grub.conf generated by anaconda > #boot=/dev/hda > default=0 > timeout=5 > splashimage=(hd0,0)/grub/splash.xpm.gz > > title Red Hat Linux (2.4.7-18-ctx10) ~~~~~~~~~~~~~~ only cosmetic, but a bit senseless > root (hd0,0) > kernel /vmlinuz-2.4.18ctx-10 ro root=/dev/hda2 > > That's the only entry but a restart shows > > [root@svr9 grub]# uname -a > Linux svr9 2.4.17ctx-8 #1 SMP Wed Mar 6 01:15:04 GMT 2002 i686 unknown > > I'm missing something obvious here, any clues anyone? that's more a grub/booting question than a vserver one. does the grub menu at startup show the same title line as your grub.conf? could be that your editing a grub.conf in the wrong place. Oh, and make sure you really use grub and not lilo ;-) Tom From vserver.error@solucorp.qc.ca Fri May 10 00:13:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A4D3aC011767; Fri, 10 May 2002 00:13:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A3YVN31067 for vserver.list; Thu, 9 May 2002 23:34:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A3YVh31063 for ; Thu, 9 May 2002 23:34:31 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:6920 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Fri, 10 May 2002 05:34:19 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Fri, 10 May 2002 05:34:03 +0200 Date: Fri, 10 May 2002 05:34:03 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] apache security / Cookbook Vservers / vserver system usage Message-ID: <20020510053403.K25124@4t2.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: ; from jkuntz@prominic.com on Thu, May 09, 2002 at 08:23:32PM -0500 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: O X-Status: X-Keywords: X-UID: 583 On Thu, May 09, 2002 at 08:23:32PM -0500, Justin M Kuntz wrote: > > Have you used ext3 or ReiserFS specifically on machines with vserver > patches applied to the kernel? Have the immutability and unification > features worked for you even with the latest ctx10 2.4.18 patches? > > The reason I'm confused is because you said "ext3... has proved fine on all > of our non vserver machines". I'm wondering what you're using on your > production vserver machines for base OS + filesystem. My plan is Red Hat > 7.2 base + compiling our own 2.4.18 kernel from kernel.org w/ vserver > patches, ext3, and 3ware support built-in. for what's it worth: I'm running domino in a minimalistic vserver environment since last december. The box is a P4 with a 3ware controller. Basesystem is RH7.2, self compiled Kernel 2.4.18ctx10. All Filesystems are reiserfs. So far with only few problems, but I mostly blame domino and the domino setup / administrator for these. Tom From vserver.error@solucorp.qc.ca Fri May 10 04:09:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A89waC013852; Fri, 10 May 2002 04:09:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A7tTx04694 for vserver.list; Fri, 10 May 2002 03:55:29 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A7tSh04690 for ; Fri, 10 May 2002 03:55:28 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 1765FR-0002ou-00 for ; Fri, 10 May 2002 09:55:29 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 1765FR-0002oj-00 for ; Fri, 10 May 2002 09:55:29 +0200 Sender: jon@silicide.dk Message-ID: <3CDB7CF1.ECAA80E8@silicide.dk> Date: Fri, 10 May 2002 09:55:29 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] rsh between virtual server References: <1020972491.12666.1.camel@maximus> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 584 Lew Teck Kheng wrote: > > hi all : > > After being thru reading the redhat user guide about rsh service , i > still not able to rsh between virtual server. I alway get "Permission > Denied". Not knowing much (anything?) about rsh, since i use ssh, but but but Do all your vservers share the same ip ?? Did you allow rsh connections from the ip in question. Did you consider that 127.0.0.1 might be the ip they are connecting from ? JonB From vserver.error@solucorp.qc.ca Fri May 10 04:15:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A8F2aC013898; Fri, 10 May 2002 04:15:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A7pwV04594 for vserver.list; Fri, 10 May 2002 03:51:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A7pwh04590 for ; Fri, 10 May 2002 03:51:58 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 1765C2-0002oQ-00 for ; Fri, 10 May 2002 09:51:58 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 1765C2-0002oF-00 for ; Fri, 10 May 2002 09:51:58 +0200 Sender: jon@silicide.dk Message-ID: <3CDB7C1E.3A6805BF@silicide.dk> Date: Fri, 10 May 2002 09:51:58 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] apache security / Cookbook Vservers / vserver system usage References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 585 John Lyons wrote: > > I'd love to hear your experience. Incidentally, we are using the > > http://www.3Ware.com IDE hardware RAID controllers for RAID 10 support on > > our Linux boxes across 4 drives. > > I've got other customers in our rack using one of these. Very impressive. > Quite tempted to use one on an nfs server for backups etc. Oh yeah, i forgot to mention in my other post that i did some comparisons between a 3ware and regular software raid. The performance is roughly the same, but do put the 3ware card in a real chipset. I had half performance on a via chipset, and full performance on a serverworks. It didnt matter if i used the 32bit pci, or the full 64bit potential of the 3ware card, possibly because i only have 4 disks. JonB From vserver.error@solucorp.qc.ca Fri May 10 04:31:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A8V9aC014090; Fri, 10 May 2002 04:31:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A8FKV05846 for vserver.list; Fri, 10 May 2002 04:15:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A8FKh05842 for ; Fri, 10 May 2002 04:15:20 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 1765Ye-0002q6-00 for ; Fri, 10 May 2002 10:15:20 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 1765Ye-0002pw-00 for ; Fri, 10 May 2002 10:15:20 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Fri, 10 May 2002 10:15:20 +0200 (CEST) Received: (qmail 83176 invoked from network); 10 May 2002 08:15:06 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 10 May 2002 08:15:06 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A7pwV04594 for vserver.list; Fri, 10 May 2002 03:51:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A7pwh04590 for ; Fri, 10 May 2002 03:51:58 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 1765C2-0002oQ-00 for ; Fri, 10 May 2002 09:51:58 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 1765C2-0002oF-00 for ; Fri, 10 May 2002 09:51:58 +0200 Sender: jon@silicide.dk Message-ID: <3CDB7C1E.3A6805BF@silicide.dk> Date: Fri, 10 May 2002 09:51:58 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] apache security / Cookbook Vservers / vserver system usage References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 586 John Lyons wrote: > > I'd love to hear your experience. Incidentally, we are using the > > http://www.3Ware.com IDE hardware RAID controllers for RAID 10 support on > > our Linux boxes across 4 drives. > > I've got other customers in our rack using one of these. Very impressive. > Quite tempted to use one on an nfs server for backups etc. Oh yeah, i forgot to mention in my other post that i did some comparisons between a 3ware and regular software raid. The performance is roughly the same, but do put the 3ware card in a real chipset. I had half performance on a via chipset, and full performance on a serverworks. It didnt matter if i used the 32bit pci, or the full 64bit potential of the 3ware card, possibly because i only have 4 disks. JonB From vserver.error@solucorp.qc.ca Fri May 10 04:33:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A8XGaC014097; Fri, 10 May 2002 04:33:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A7lmu04465 for vserver.list; Fri, 10 May 2002 03:47:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A7llh04460 for ; Fri, 10 May 2002 03:47:48 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 17657u-0002o1-00 for ; Fri, 10 May 2002 09:47:42 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17657u-0002nq-00 for ; Fri, 10 May 2002 09:47:42 +0200 Sender: jon@silicide.dk Message-ID: <3CDB7B1E.5C557027@silicide.dk> Date: Fri, 10 May 2002 09:47:42 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] apache security / Cookbook Vservers / vserver system usage References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 587 Justin M Kuntz wrote: > > John, > > Thanks for the reply. Indeed, my intent is to have dual security at suexec > and vserver levels for the "Shared Apache" method. It sounds like you are > doing "Partitioned Apache" so that each customer right now gets their own > Apache and vserver. Definitely that seems to be the more straightforward > approach when it is not necessary to share IPs between many customers. You can even do this partitioning even when you share a single ip. What you do is that you use a reverseproxy in apache, and run that server on the real ip, then you just "get" the files from the customers server, which could use a 10.x.y.z ip. You can even run the reverse proxy apache inside a vserver. > What OS are you running? Red Hat 7.2, SuSE 7.3, etc? Are you using > ReiserFS or ext3? I am trying to decide right now which filesystem is > safest to use with vserver... I really like ReiserFS but I thought I read > earlier in the mailing list archive that the unification and immutable > features aren't supported on Reiser. One of my associates did some testing > and felt that ext3 wasn't mature enough or had some problems relative to > Reiser. I'm using ext3 anywhere i can get to it. At home i have my vserver running on ext3, but i dont do unification. At work i have trouble with a reiserfs filesystem, but not my ext3 filesystems. Work is not yet running in a vserver. > I'd love to hear your experience. Incidentally, we are using the > http://www.3Ware.com IDE hardware RAID controllers for RAID 10 support on > our Linux boxes across 4 drives. For about $300 this is a good investment, > although it does rquire in vserver's case for a recompiled kernel to be > made. No big deal - but I just wanted to offer that advice. Yeah, i like them as well, though i would like to have their hotswap hd cases as well. JonB From vserver.error@solucorp.qc.ca Fri May 10 04:35:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A8ZPaC014120; Fri, 10 May 2002 04:35:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A8AEW05704 for vserver.list; Fri, 10 May 2002 04:10:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A8ADh05700 for ; Fri, 10 May 2002 04:10:13 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 1765Ti-0002pl-00 for ; Fri, 10 May 2002 10:10:14 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 1765Th-0002pb-00 for ; Fri, 10 May 2002 10:10:13 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Fri, 10 May 2002 10:10:13 +0200 (CEST) Received: (qmail 77202 invoked from network); 10 May 2002 08:10:04 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 10 May 2002 08:10:04 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A7tTx04694 for vserver.list; Fri, 10 May 2002 03:55:29 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A7tSh04690 for ; Fri, 10 May 2002 03:55:28 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 1765FR-0002ou-00 for ; Fri, 10 May 2002 09:55:29 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 1765FR-0002oj-00 for ; Fri, 10 May 2002 09:55:29 +0200 Sender: jon@silicide.dk Message-ID: <3CDB7CF1.ECAA80E8@silicide.dk> Date: Fri, 10 May 2002 09:55:29 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] rsh between virtual server References: <1020972491.12666.1.camel@maximus> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 588 Lew Teck Kheng wrote: > > hi all : > > After being thru reading the redhat user guide about rsh service , i > still not able to rsh between virtual server. I alway get "Permission > Denied". Not knowing much (anything?) about rsh, since i use ssh, but but but Do all your vservers share the same ip ?? Did you allow rsh connections from the ip in question. Did you consider that 127.0.0.1 might be the ip they are connecting from ? JonB From vserver.error@solucorp.qc.ca Fri May 10 04:48:09 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A8m9aC014190; Fri, 10 May 2002 04:48:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A8YOs06226 for vserver.list; Fri, 10 May 2002 04:34:24 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hofmann (pc4-woki3-0-cust99.gfd.cable.ntl.com [213.107.77.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A8YNh06222 for ; Fri, 10 May 2002 04:34:24 -0400 Received: from hofmann ([127.0.0.1]) by hofmann with smtp (Exim 3.35 #1 (Debian)) id 1765qz-0001oB-00 for ; Fri, 10 May 2002 09:34:17 +0100 Date: Fri, 10 May 2002 09:34:17 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] rsh between virtual server In-Reply-To: <1020972491.12666.1.camel@maximus> References: <1020972491.12666.1.camel@maximus> X-Mailer: Sylpheed version 0.7.4 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 589 Yes. ssh is a drop-in replacement for rsh, and `ssh -v -p 60 host' run on the client end with `sshd -d -p 69' on the server end will certainly reveal your hosts.equiv/.rhosts/etc configuration problem. On 09 May 2002 20:28:10 +0100 Lew Teck Kheng wrote: > hi all : > > After being thru reading the redhat user guide about rsh service , i > still not able to rsh between virtual server. I alway get "Permission > Denied". > > Any ideas ? > > Many many thanks. > > cheers > -- > ======================================================================== > Lew Teck Kheng > System Engineer > Asia LMN System Engineering (Malaysia) > (+603) 7725 6890 > www.logica.com > "Logica Make MMS Real > Person to Person MMS demonstrated live using devices from 8 > manufacturers > on the Orange France GPRS Network at the 3 GSM World Congress in > Cannes." > ======================================================================== > > > ________________________________________________________________________ > This email has been scanned for all viruses by the MessageLabs SkyScan > service. For more information on a proactive anti-virus service working > around the clock, around the globe, visit http://www.messagelabs.com > ________________________________________________________________________ > > -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 Hi, I'm a .signature virus! Add me to your ~/.signature, please! From vserver.error@solucorp.qc.ca Fri May 10 04:48:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A8meaC014199; Fri, 10 May 2002 04:48:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A8VcM06174 for vserver.list; Fri, 10 May 2002 04:31:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hofmann (pc4-woki3-0-cust99.gfd.cable.ntl.com [213.107.77.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A8Vbh06170 for ; Fri, 10 May 2002 04:31:37 -0400 Received: from hofmann ([127.0.0.1]) by hofmann with smtp (Exim 3.35 #1 (Debian)) id 1765oD-0001ny-00; Fri, 10 May 2002 09:31:25 +0100 Date: Fri, 10 May 2002 09:31:18 +0100 From: Sam Vilain To: "Justin M Kuntz" Cc: vserver@solucorp.qc.ca Subject: [vserver] Re: vserver with reiserfs or ext3 In-Reply-To: References: X-Mailer: Sylpheed version 0.7.4 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-107.0 required=5.0 tests=IN_REP_TO,UNIFIED_PATCH,A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 590 Justin, Sorry, I haven't released a patch for this recently. Once you get the reiserfs inode attributes patch patch (from ftp://ftp.namesys.com/pub/reiserfs-for-2.4/2.4.18.pending in the case of 2.4.18, or by using a 2.4.19-preN kernel), then the changes to allow immutability (assuming you have the ctx10 patch) are fairly minimal; this patch works for me: diff -ur linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt/fs/reiserfs/inode.c linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt-C/fs/reiserfs/inode.c --- linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt/fs/reiserfs/inode.c Tue Apr 23 16:49:34 2002 +++ linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt-C/fs/reiserfs/inode.c Tue Apr 23 18:28:34 2002 @@ -1587,7 +1587,7 @@ /* symlink cannot be immutable or append only, right? */ if( S_ISLNK( inode -> i_mode ) ) - inode -> i_flags &= ~ ( S_IMMUTABLE | S_APPEND ); + inode -> i_flags &= ~ ( S_IMMUTABLE_FILE | S_APPEND ); inode->i_mtime = inode->i_atime = inode->i_ctime = CURRENT_TIME; inode->i_size = i_size; @@ -2124,10 +2124,14 @@ inode -> i_flags |= S_SYNC; else inode -> i_flags &= ~S_SYNC; - if( sd_attrs & REISERFS_IMMUTABLE_FL ) - inode -> i_flags |= S_IMMUTABLE; + if( sd_attrs & REISERFS_IMMUTABLE_FILE_FL ) + inode -> i_flags |= S_IMMUTABLE_FILE; else - inode -> i_flags &= ~S_IMMUTABLE; + inode -> i_flags &= ~S_IMMUTABLE_FILE; + if( sd_attrs & REISERFS_IMMUTABLE_LINK_FL ) + inode -> i_flags |= S_IMMUTABLE_LINK; + else + inode -> i_flags &= ~S_IMMUTABLE_LINK; if( sd_attrs & REISERFS_NOATIME_FL ) inode -> i_flags |= S_NOATIME; else @@ -2142,10 +2146,14 @@ void i_attrs_to_sd_attrs( struct inode *inode, __u16 *sd_attrs ) { if( reiserfs_attrs( inode -> i_sb ) ) { - if( inode -> i_flags & S_IMMUTABLE ) - *sd_attrs |= REISERFS_IMMUTABLE_FL; + if( inode -> i_flags & S_IMMUTABLE_FILE ) + *sd_attrs |= REISERFS_IMMUTABLE_FILE_FL; + else + *sd_attrs &= ~REISERFS_IMMUTABLE_FILE_FL; + if( inode -> i_flags & S_IMMUTABLE_LINK ) + *sd_attrs |= REISERFS_IMMUTABLE_LINK_FL; else - *sd_attrs &= ~REISERFS_IMMUTABLE_FL; + *sd_attrs &= ~REISERFS_IMMUTABLE_LINK_FL; if( inode -> i_flags & S_SYNC ) *sd_attrs |= REISERFS_SYNC_FL; else diff -ur linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt/fs/reiserfs/ioctl.c linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt-C/fs/reiserfs/ioctl.c --- linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt/fs/reiserfs/ioctl.c Tue Apr 23 16:49:34 2002 +++ linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt-C/fs/reiserfs/ioctl.c Tue Apr 23 18:29:10 2002 @@ -47,7 +47,7 @@ if (get_user(flags, (int *) arg)) return -EFAULT; - if ( ( flags & REISERFS_IMMUTABLE_FL ) && + if ( ( flags & REISERFS_IMMUTABLE_FILE_FL ) && !capable( CAP_LINUX_IMMUTABLE ) ) return -EPERM; diff -ur linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt/include/linux/reiserfs_fs.h linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt-C/include/linux/reiserfs_fs.h --- linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt/include/linux/reiserfs_fs.h Tue Apr 23 18:09:33 2002 +++ linux-2.4.18-ac3-ctx10-reiser-crypto-netdev-preempt-C/include/linux/reiserfs_fs.h Tue Apr 23 18:26:46 2002 @@ -723,7 +723,8 @@ /* we want common flags to have the same values as in ext2, so chattr(1) will work without problems */ -#define REISERFS_IMMUTABLE_FL EXT2_IMMUTABLE_FL +#define REISERFS_IMMUTABLE_FILE_FL EXT2_IMMUTABLE_FILE_FL +#define REISERFS_IMMUTABLE_LINK_FL EXT2_IMMUTABLE_LINK_FL #define REISERFS_SYNC_FL EXT2_SYNC_FL #define REISERFS_NOATIME_FL EXT2_NOATIME_FL #define REISERFS_NODUMP_FL EXT2_NODUMP_FL @@ -739,7 +740,8 @@ #define REISERFS_NOTAIL_FL (0x00008000) /* EXT2_NOTAIL_FL */ /* persistent flags that file inherits from the parent directory */ -#define REISERFS_INHERIT_MASK ( REISERFS_IMMUTABLE_FL | \ +#define REISERFS_INHERIT_MASK ( REISERFS_IMMUTABLE_FILE_FL | \ + REISERFS_IMMUTABLE_LINK_FL | \ REISERFS_SYNC_FL | \ REISERFS_NOATIME_FL | \ REISERFS_NODUMP_FL | \ Most of the work is still being done by the immutability macros in the main ctx10 patch and by the kernel's may_delete() functions, etc. Assuming that after this patch your kernel compiles (if something is wrong it will just barf, because I don't define the old XXX_IMMUTABLE macros - only the XXX_IMMUTABLE_LINK and XXX_IMMUTABLE_FILE pair), then reiserfs works. I do recommend applying the patch to e2fsprogs, as then you will have admin visibility of the new inode attribute. With the out-of-the-box vserver kernel, ext2/3 are fully supported, but unification with reiserfs needs a patch. This will change when the ctx patches are based on the 2.4.19 linux kernel release. Good luck, Sam. On Thu, 9 May 2002 11:24:44 -0500 "Justin M Kuntz" wrote: > Sam -- > > It seems you are the guru when it comes to ReiserFS support with vserver. > :) Having a journaling filesystem is of utmost importance to me. So my > choices are ext3 or ReiserFS. Currently I have several systems running > ReiserFS on SuSE 7.3 - but none of them are using vserver kernel patches > (yet?). > > I'm installing a new system - Red Hat 7.2 - with ext3 simply because it > seems like right now vserver is most tested on this platform. But some > messages I've seen in the mailing list archive have made me unclear on the > status of which filesystems support _all_ of the vserver features including > immutable flags and unification. > > Back in Nov 2001 this was posted by you: > http://vserver.vlad.net/list/0066.html > > along with this link to why ReiserFS doesn't support extended attributes: > http://www.namesys.com/stream_ans.html > > Has this changed by now (May 9, 2002)? I mean would you consider ReiserFS > now feature complete in terms of vserver's requirements? How about ext3? > Based on this message: > http://vserver.vlad.net/list/0513.html > it sounded like some of the ext2 attributes had to be mapped to ext3 unused > bits, which I assume may not be a permanent solution if vserver has to > officially request those bits to be reserved from the ext3 management team. > (I have no idea of the actual process of managing filesystem development, > I'm simply making an assumption about bits needing to be well-known, etc): > > Currently I'm using on the Red Hat 7.2 system 2.4.18ctx-10. Is the > 2.4.19-pre3 kernel the one to be using if I want feature complete ReiserFS > support for vserver? Or do you still need to build a patch of some kind? > > Thanks! > > Justin > > -------------------------- > > Excellent, it looks like inode attributes on reiserfs are in the latest > stable kernel pre-release. > > > I feel another patch coming on... > > > Sam. > > > Begin forwarded message: > > > Date: Tue, 12 Mar 2002 14:40:16 +0300 > From: Oleg Drokin > To: Sam Vilain > Subject: inode attributes > > > Hello! > > > On Tue, Mar 12, 2002 at 11:20:00AM +0000, Sam Vilain wrote: > > > > btw, nice to see inode attributes back in the "pending" patches. Any > idea> when this patch will make it into the mainstream kernel? > It is already. > Download 2.4.19-pre3 and enjoy. > > > Bye, >    Oleg > > > > -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 Hi, I'm a .signature virus! Add me to your ~/.signature, please! From vserver.error@solucorp.qc.ca Fri May 10 04:51:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4A8pUaC014227; Fri, 10 May 2002 04:51:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A8YUm06236 for vserver.list; Fri, 10 May 2002 04:34:30 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A8YTh06232 for ; Fri, 10 May 2002 04:34:30 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 1765rC-0002qg-00 for ; Fri, 10 May 2002 10:34:30 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 1765rC-0002qW-00 for ; Fri, 10 May 2002 10:34:30 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Fri, 10 May 2002 10:34:30 +0200 (CEST) Received: (qmail 5760 invoked from network); 10 May 2002 08:33:20 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 10 May 2002 08:33:20 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A7lmu04465 for vserver.list; Fri, 10 May 2002 03:47:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A7llh04460 for ; Fri, 10 May 2002 03:47:48 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 17657u-0002o1-00 for ; Fri, 10 May 2002 09:47:42 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17657u-0002nq-00 for ; Fri, 10 May 2002 09:47:42 +0200 Sender: jon@silicide.dk Message-ID: <3CDB7B1E.5C557027@silicide.dk> Date: Fri, 10 May 2002 09:47:42 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] apache security / Cookbook Vservers / vserver system usage References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 591 Justin M Kuntz wrote: > > John, > > Thanks for the reply. Indeed, my intent is to have dual security at suexec > and vserver levels for the "Shared Apache" method. It sounds like you are > doing "Partitioned Apache" so that each customer right now gets their own > Apache and vserver. Definitely that seems to be the more straightforward > approach when it is not necessary to share IPs between many customers. You can even do this partitioning even when you share a single ip. What you do is that you use a reverseproxy in apache, and run that server on the real ip, then you just "get" the files from the customers server, which could use a 10.x.y.z ip. You can even run the reverse proxy apache inside a vserver. > What OS are you running? Red Hat 7.2, SuSE 7.3, etc? Are you using > ReiserFS or ext3? I am trying to decide right now which filesystem is > safest to use with vserver... I really like ReiserFS but I thought I read > earlier in the mailing list archive that the unification and immutable > features aren't supported on Reiser. One of my associates did some testing > and felt that ext3 wasn't mature enough or had some problems relative to > Reiser. I'm using ext3 anywhere i can get to it. At home i have my vserver running on ext3, but i dont do unification. At work i have trouble with a reiserfs filesystem, but not my ext3 filesystems. Work is not yet running in a vserver. > I'd love to hear your experience. Incidentally, we are using the > http://www.3Ware.com IDE hardware RAID controllers for RAID 10 support on > our Linux boxes across 4 drives. For about $300 this is a good investment, > although it does rquire in vserver's case for a recompiled kernel to be > made. No big deal - but I just wanted to offer that advice. Yeah, i like them as well, though i would like to have their hotswap hd cases as well. JonB From vserver.error@solucorp.qc.ca Fri May 10 06:18:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4AAIGaC014685; Fri, 10 May 2002 06:18:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4A9qjr07733 for vserver.list; Fri, 10 May 2002 05:52:45 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4A9qjh07729 for ; Fri, 10 May 2002 05:52:45 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:46601 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Fri, 10 May 2002 11:51:30 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Fri, 10 May 2002 11:51:23 +0200 Date: Fri, 10 May 2002 11:51:22 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] apache security / Cookbook Vservers / vserver system usage Message-ID: <20020510115122.L25124@4t2.com> References: <3CDB7B1E.5C557027@silicide.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <3CDB7B1E.5C557027@silicide.dk>; from jon+vserver@silicide.dk on Fri, May 10, 2002 at 09:47:42AM +0200 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 592 On Fri, May 10, 2002 at 09:47:42AM +0200, Jon Bendtsen wrote: > > You can even do this partitioning even when you share a single ip. > What you do is that you use a reverseproxy in apache, and run that > server on the real ip, then you just "get" the files from the customers > server, which could use a 10.x.y.z ip. You can even run the reverse > proxy > apache inside a vserver. or squid in accelerator mode - might even improve performance a bit. > > What OS are you running? Red Hat 7.2, SuSE 7.3, etc? Are you using > > ReiserFS or ext3? I am trying to decide right now which filesystem is > > safest to use with vserver... I really like ReiserFS but I thought I read > > earlier in the mailing list archive that the unification and immutable > > features aren't supported on Reiser. One of my associates did some testing > > and felt that ext3 wasn't mature enough or had some problems relative to > > Reiser. > > I'm using ext3 anywhere i can get to it. At home i have my vserver > running > on ext3, but i dont do unification. At work i have trouble with a > reiserfs > filesystem, but not my ext3 filesystems. Work is not yet running in a > vserver. hmm, never had reiserfs problems. I think both are fine, depends what you wanna do. reiserfs is probably better for - huge directories (many entries) - filesystems with many many files - it just won't run out of inodes, which is one of the main advantages for me - disk space efficience (saves a noteable amount of disk space) - ok, not a big point these days. ext3 is - back and forward compatible with ext2 - has journaling even for file data, not only fs-metadata [..3ware..] > Yeah, i like them as well, though i would like to have their hotswap hd > cases as well. We do hotswap on 3ware with common IDE Mobile Racks/Cases - no problems so far. Note that you need only ATA66 specified cases since the 3ware (at least the 6xxx series) only do ATA66. Tom From vserver.error@solucorp.qc.ca Fri May 10 07:45:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4ABjHaC015179; Fri, 10 May 2002 07:45:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4ABUbo09832 for vserver.list; Fri, 10 May 2002 07:30:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-145-202.in-addr.btopenworld.com [213.122.145.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4ABUZh09825 for ; Fri, 10 May 2002 07:30:36 -0400 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Fri, 10 May 2002 12:30:23 +0100 From: "John Lyons" To: Subject: RE: [vserver] apache security / Cookbook Vservers / vserver system usage Date: Fri, 10 May 2002 12:30:22 +0100 Message-ID: <013601c1f816$12e597d0$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 593 > Thank you very much for all of the details... so just so I'm clear, > basically the only problem you had with ext3 was that you accidentally > recompiled a kernel that didn't support it and so you lost > support once you rebooted that machine? Yes, Ext3 was running fine on the vserver machines until I buggered it up :-) > Have you used ext3 or ReiserFS specifically on machines with vserver > patches applied to the kernel? Have the immutability and unification > features worked for you even with the latest ctx10 2.4.18 patches? I need to go an rebuild the RH installation on both vserver hosts we were running ctx-8. A fresh start with Ext3 and ctx-10 is probably in order as I don't think I can get back to ext3 from 2 without starting from scratch. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Fri May 10 09:57:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4ADvUaC016307; Fri, 10 May 2002 09:57:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4ADlMb13318 for vserver.list; Fri, 10 May 2002 09:47:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp017.mail.yahoo.com (smtp017.mail.yahoo.com [216.136.174.114]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4ADlLh13313 for ; Fri, 10 May 2002 09:47:22 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 10 May 2002 13:47:22 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Problem: "Cannot assign requested address", Bind, webmin, and others Date: Fri, 10 May 2002 08:47:15 -0500 Message-ID: <000701c1f829$3281cec0$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <20020508151216.F25124@4t2.com> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 594 Thanks for your help. I have the name server and webmin issue resolved. However, I still can't figure out why it says "Cannot assign requested address". I check the IP root to make sure it is the correct one. Every service also starts up fine, and I am able to connect to them through the IP. (HTTP, FTP, webmin, SSH). This is not really a problem currently, but I am just concerned that such a message is showing up. Thanks, Peter -----Original Message----- From: Thomas Weber [mailto:x@4t2.com] Sent: Wednesday, May 08, 2002 8:12 AM To: vserver@solucorp.qc.ca Subject: Re: [vserver] Problem: "Cannot assign requested address", Bind, webmin, and others On Tue, May 07, 2002 at 10:47:28PM -0500, Peter Kwan Chan wrote: > > -Even though I have Bind running in the root server, the domain names in > the child servers are not resolved. For example, ping redhat.com returns > with host not found(or something like that). I remember on the old > server the bind in the root server resolves the names for the child > servers(?). Even after installing and starting bind in the child server, > the names are still unresolved. check the /etc/resolv.conf in your vserver. there should be an entry nameserver IP-Adress with the IP of your main server - or any other box running a well configured bind. > -Also, when I start a vserver or enter it, I am getting the message, > > SIOCSIFBRDADDR: Cannot assign requested address > SIOCSIFFLAGS: Cannot assign requested address check for correct settings of IPROOT= in your /etc/vservers/*.conf and make sure you've got an Interface configured for this IP on your hosting server. > -In addition, webmin doesn't seem to work. It used to work fine on the > old server (in a vserver). But now it doesn't run, and during startup, > the message. (I am still working on this, maybe this isn't > vserver-related) probably related to the above. Tom From vserver.error@solucorp.qc.ca Fri May 10 11:29:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4AFTqaC017072; Fri, 10 May 2002 11:29:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4AFA6S15671 for vserver.list; Fri, 10 May 2002 11:10:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4AFA6h15667 for ; Fri, 10 May 2002 11:10:06 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 176C22-00033Q-00 for ; Fri, 10 May 2002 17:10:06 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 176C22-00033F-00 for ; Fri, 10 May 2002 17:10:06 +0200 Sender: jon@silicide.dk Message-ID: <3CDBE2CE.187EE33C@silicide.dk> Date: Fri, 10 May 2002 17:10:06 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: vserver on NFS (was Re: [vserver] Cookbook Vservers References: <3CDA245E.EF391BE7@silicide.dk> <1020980772.26116.8.camel@ganymede> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 595 Fran Firman wrote: > > Performance on our system seems fine. > > Thou I do shift /tmp to the local harddrive. > > for a time dd if=/dev/zero of=blah bs=1k count=100k > > (create a 100 MByte file takes) > > On the nfs array = 21.66s > > On the local HD = 15.4s 100% = 15.4 1% = 0.154 140.64935% = 21.66seconds not that bad, but not good enough. This is one big file, depending on the service type, you have lots of small files, or has to do pretty random access. I would asume the startup overhead of getting the first few bytes over NFS is much higher than from the disk. But perhaps the added benefit of a single backup place and the ease of moving a vserver to another host makes running vservers on NFS the best solution. It has made me rethink an old idea I had myself. My idea was to create bootable cd images useable for turning any linux installation into a vserver, to try it out. Possibly this could be coupled with your idea, so one could get a really fast deployment. JonB From vserver.error@solucorp.qc.ca Fri May 10 11:54:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4AFsbaC017290; Fri, 10 May 2002 11:54:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4AFVjv16381 for vserver.list; Fri, 10 May 2002 11:31:45 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4AFVih16377 for ; Fri, 10 May 2002 11:31:45 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 176CMz-000346-00 for ; Fri, 10 May 2002 17:31:45 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 176CMz-00033w-00 for ; Fri, 10 May 2002 17:31:45 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Fri, 10 May 2002 17:31:45 +0200 (CEST) Received: (qmail 56215 invoked from network); 10 May 2002 15:29:54 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 10 May 2002 15:29:54 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4AFA6S15671 for vserver.list; Fri, 10 May 2002 11:10:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4AFA6h15667 for ; Fri, 10 May 2002 11:10:06 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 176C22-00033Q-00 for ; Fri, 10 May 2002 17:10:06 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 176C22-00033F-00 for ; Fri, 10 May 2002 17:10:06 +0200 Sender: jon@silicide.dk Message-ID: <3CDBE2CE.187EE33C@silicide.dk> Date: Fri, 10 May 2002 17:10:06 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: vserver on NFS (was Re: [vserver] Cookbook Vservers References: <3CDA245E.EF391BE7@silicide.dk> <1020980772.26116.8.camel@ganymede> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 596 Fran Firman wrote: > > Performance on our system seems fine. > > Thou I do shift /tmp to the local harddrive. > > for a time dd if=/dev/zero of=blah bs=1k count=100k > > (create a 100 MByte file takes) > > On the nfs array = 21.66s > > On the local HD = 15.4s 100% = 15.4 1% = 0.154 140.64935% = 21.66seconds not that bad, but not good enough. This is one big file, depending on the service type, you have lots of small files, or has to do pretty random access. I would asume the startup overhead of getting the first few bytes over NFS is much higher than from the disk. But perhaps the added benefit of a single backup place and the ease of moving a vserver to another host makes running vservers on NFS the best solution. It has made me rethink an old idea I had myself. My idea was to create bootable cd images useable for turning any linux installation into a vserver, to try it out. Possibly this could be coupled with your idea, so one could get a really fast deployment. JonB From vserver.error@solucorp.qc.ca Fri May 10 14:03:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4AI3GaC018108; Fri, 10 May 2002 14:03:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4AHnL920521 for vserver.list; Fri, 10 May 2002 13:49:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4AHnKh20517 for ; Fri, 10 May 2002 13:49:21 -0400 Subject: [vserver] SIOCS... errors - any ideas? To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Fri, 10 May 2002 12:52:03 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/10/2002 12:49:22 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 597 Hello, I'm having the following errors - does anyone know how to fix them? I'm running a fresh install of Red Hat 7.2 base with ext3 on all filesystems. I have 2.4.18-ctx10 kernel that I built because I needed to include 3ware and ext3 support. Thanks! Justin [root@linux-4 opt]# cat /proc/version Linux version 2.4.18ctx-10 (root@linux-4.prominic.com) (gcc version 2.96 20000731 (Red Hat Linux 7.1 2.96-98)) #4 SMP Wed May 8 22:12:58 EGST 2002 [root@linux-4 opt]# /usr/sbin/vserver 0001 start Starting the virtual server 0001 Server 0001 is not running SIOCSIFADDR: File exists SIOCSIFFLAGS: Cannot assign requested address SIOCSIFNETMASK: Cannot assign requested address SIOCSIFBRDADDR: Cannot assign requested address SIOCSIFFLAGS: Cannot assign requested address ipv4root is now 172.16.128.100 Host name is now jmk1.prominic.com Domain name is now prominic.com New security context is 11 Can't chroot to directory . (Permission denied) [root@linux-4 opt]# ifconfig -a eth0 Link encap:Ethernet HWaddr 00:04:76:21:5A:42 inet addr:172.16.128.99 Bcast:172.16.255.255 Mask:255.255.0.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:45120 errors:0 dropped:0 overruns:0 frame:0 TX packets:12158 errors:0 dropped:0 overruns:0 carrier:0 collisions:107 txqueuelen:100 RX bytes:11119397 (10.6 Mb) TX bytes:2259431 (2.1 Mb) Interrupt:11 Base address:0xb400 eth0:0 Link encap:Ethernet HWaddr 00:04:76:21:5A:42 inet addr:172.16.128.100 Bcast:172.16.255.255 Mask:255.255.0.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:11 Base address:0xb400 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:4925 errors:0 dropped:0 overruns:0 frame:0 TX packets:4925 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:1225344 (1.1 Mb) TX bytes:1225344 (1.1 Mb) [root@linux-4 opt]# cat /etc/vservers/0001.conf # Description: Vserver #0001 # Select an unused context (this is optional) # The default is to allocate a free context on the fly # In general you don't need to force a context #S_CONTEXT= # Select the IP number assigned to the virtual server # This IP must be one IP of the server, either an interface # or an IP alias IPROOT=172.16.128.100 # You can define on which device the IP alias will be done # The IP alias will be set when the server is started and unset # when the server is stopped # The netmask and broadcast are computed by default from IPROOTDEV #IPROOTMASK= #IPROOTBCAST= IPROOTDEV=eth0 # Uncomment the onboot line if you want to enable this # virtual server at boot time ONBOOT=yes # You can set a different host name for the vserver # If empty, the host name of the main server is used S_HOSTNAME=jmk1.prominic.com # You can set a different NIS domain for the vserver # If empty, the current on is kept # Set it to "none" to have no NIS domain set S_DOMAINNAME=prominic.com # You can set the priority level (nice) of all process in the vserver # Even root won't be able to raise it S_NICE= # You can set various flags for the new security context # lock: Prevent the vserver from setting new security context # sched: Merge scheduler priority of all processes in the vserver # so that it acts a like a single one. # nproc: Limit the number of processes in the vserver according to ulimit # (instead of a per user limit, this becomes a per vserver limit) # private: No other process can join this security context. Even root # Do not forget the quotes around the flags S_FLAGS="lock nproc" # You can set various ulimit flags and they will be inherited by the # vserver. You enter here various command line argument of ulimit # ULIMIT="-H -u 200" # The example above, combined with the nproc S_FLAGS will limit the # vserver to a maximum of 200 processes ULIMIT="-H -u 1000" # You can set various capabilities. By default, the vserver are run # with a limited set, so you can let root run in a vserver and not # worry about it. He can\'t take over the machine. In some cases # you can to give a little more capabilities \(such as CAP_NET_RAW\) # S_CAPS="CAP_NET_RAW" S_CAPS="" [root@linux-4 opt]# From vserver.error@solucorp.qc.ca Fri May 10 15:14:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4AJEFaC018718; Fri, 10 May 2002 15:14:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4AJ12x22682 for vserver.list; Fri, 10 May 2002 15:01:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4AJ12h22678 for ; Fri, 10 May 2002 15:01:02 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:17677 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Fri, 10 May 2002 21:00:51 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Fri, 10 May 2002 21:00:46 +0200 Date: Fri, 10 May 2002 21:00:45 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] SIOCS... errors - any ideas? Message-ID: <20020510210045.N25124@4t2.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: ; from jkuntz@prominic.com on Fri, May 10, 2002 at 12:52:03PM -0500 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 598 On Fri, May 10, 2002 at 12:52:03PM -0500, Justin M Kuntz wrote: > [root@linux-4 opt]# cat /proc/version > Linux version 2.4.18ctx-10 (root@linux-4.prominic.com) (gcc version 2.96 > 20000731 (Red Hat Linux 7.1 2.96-98)) #4 SMP Wed May 8 22:12:58 EGST 2002 > [root@linux-4 opt]# /usr/sbin/vserver 0001 start > Starting the virtual server 0001 > Server 0001 is not running > SIOCSIFADDR: File exists > SIOCSIFFLAGS: Cannot assign requested address > SIOCSIFNETMASK: Cannot assign requested address > SIOCSIFBRDADDR: Cannot assign requested address > SIOCSIFFLAGS: Cannot assign requested address > ipv4root is now 172.16.128.100 > Host name is now jmk1.prominic.com > Domain name is now prominic.com > New security context is 11 > Can't chroot to directory . (Permission denied) > [root@linux-4 opt]# ifconfig -a > eth0 Link encap:Ethernet HWaddr 00:04:76:21:5A:42 > inet addr:172.16.128.99 Bcast:172.16.255.255 Mask:255.255.0.0 > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > RX packets:45120 errors:0 dropped:0 overruns:0 frame:0 > TX packets:12158 errors:0 dropped:0 overruns:0 carrier:0 > collisions:107 txqueuelen:100 > RX bytes:11119397 (10.6 Mb) TX bytes:2259431 (2.1 Mb) > Interrupt:11 Base address:0xb400 > > eth0:0 Link encap:Ethernet HWaddr 00:04:76:21:5A:42 > inet addr:172.16.128.100 Bcast:172.16.255.255 Mask:255.255.0.0 > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > Interrupt:11 Base address:0xb400 > > lo Link encap:Local Loopback > inet addr:127.0.0.1 Mask:255.0.0.0 > UP LOOPBACK RUNNING MTU:16436 Metric:1 > RX packets:4925 errors:0 dropped:0 overruns:0 frame:0 > TX packets:4925 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:0 > RX bytes:1225344 (1.1 Mb) TX bytes:1225344 (1.1 Mb) > > [root@linux-4 opt]# cat /etc/vservers/0001.conf > # Description: Vserver #0001 > > # Select an unused context (this is optional) > # The default is to allocate a free context on the fly > # In general you don't need to force a context > #S_CONTEXT= > # Select the IP number assigned to the virtual server > # This IP must be one IP of the server, either an interface > # or an IP alias > IPROOT=172.16.128.100 > # You can define on which device the IP alias will be done > # The IP alias will be set when the server is started and unset > # when the server is stopped > # The netmask and broadcast are computed by default from IPROOTDEV > #IPROOTMASK= > #IPROOTBCAST= > IPROOTDEV=eth0 As I understand it: If you have the IP Aliases already defined you won't need the IPROOTDEV line. Comment it out. If you use IPROOTDEV and IPROOT, vserver tries to asign an alias of ${IPROOT} to ${IPROOTDEV} - in your case it fails to do so because it already exists. Tom From vserver.error@solucorp.qc.ca Fri May 10 15:34:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4AJY1aC018898; Fri, 10 May 2002 15:34:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4AJHWJ23089 for vserver.list; Fri, 10 May 2002 15:17:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from monserveur.net ([205.151.16.128]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4AJHWh23085 for ; Fri, 10 May 2002 15:17:32 -0400 Received: from [205.151.16.4] (helo=jvandal) by monserveur.net with asmtp (Exim 3.35 #9) id 176Fzc-0003d1-00 for vserver@solucorp.qc.ca; Fri, 10 May 2002 15:23:52 -0400 Message-ID: <00c801c1f857$75cae940$1400010a@infoteck.ca> From: "Joel Vandal" To: References: Subject: Re: [vserver] SIOCS... errors - any ideas? Date: Fri, 10 May 2002 15:18:26 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.1 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK version=2.01 Status: O X-Status: X-Keywords: X-UID: 599 > Starting the virtual server 0001 > Server 0001 is not running > SIOCSIFADDR: File exists > SIOCSIFFLAGS: Cannot assign requested address > SIOCSIFNETMASK: Cannot assign requested address > SIOCSIFBRDADDR: Cannot assign requested address > SIOCSIFFLAGS: Cannot assign requested address If I'm not wrong, vservers will automatically create the interface. To remove it, try: " ifconfig eth0:0 down " and restart vservers. > Can't chroot to directory . (Permission denied) I've solve this problem using: chmod 000 /vservers chmod 644 /vservers/0001 -- Joel Vandal From vserver.error@solucorp.qc.ca Fri May 10 15:35:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4AJZsaC018930; Fri, 10 May 2002 15:35:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4AJNJB23219 for vserver.list; Fri, 10 May 2002 15:23:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from merlin.zolotek.net (bts-0640.dialup.zetnet.co.uk [194.247.50.128]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4AJNHh23215 for ; Fri, 10 May 2002 15:23:17 -0400 Resent-Date: Fri, 10 May 2002 15:23:17 -0400 Resent-Message-Id: <200205101923.g4AJNHh23215@dns.solucorp.qc.ca> Received: from bts-0640.dialup.zetnet.co.uk (merlin.zolotek.net [127.0.0.1]) by merlin.zolotek.net (Weasel v1.20) for ; 10 May 2002 20:23:17 From: "Lyn St George" Resent-From: "Lyn St George" To: "vserver@solucorp.qc.ca" X-Original-To: "Christian" Date: Fri, 10 May 2002 18:30:55 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: [vserver] Re: vserver - did your patch ever get finished? Message-ID: <200205102023.00000029@merlin.zolotek.net> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.1 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK version=2.01 Status: O X-Status: X-Keywords: X-UID: 600 On Thu, 9 May 2002 19:01:16 +0200, Christian wrote: >On Wed, 8 May 2002 23:19:43 -0500 >"Justin M Kuntz" wrote: > >> http://vserver.vlad.net/list/0269.html >> >> From that message, you indicated some financial incentive might help the >> patch along. I don't have a ton to spend, but can you give me an idea >> of how much and a timeframe you'd need to get it done and _merged_ with >> Jack's code? >> > >a few days ago "Lyn St George" asked me about the patch >and wanted to work further on it. I send him my old code. I would still >work on it, but its low on priority to me. I have no 'testing-machine' >available and don't need the patch for my use at this time. So i would >need the money to buy an second-hand test machine and some refound for the >actual work lets guess $500 or so. Maybe chances are good that Lyn >implements it or his own use or we can work cooperative on that. The patch >itself isn't really hard work but maintaining and proprosing it for >inclusion in the main tree might be some annoyina task *G*. I still >wondered that no programmer who works for an isp already adopted the idea >and maintains it further. I will get onto this and start work ASAP, but it's really just a matter of finding the time :/ For my own purposes - ie, webhosting - I consider this principle of multiple IPs within a VS to be essential, even if only for an option. While one excellent use of VS is to put each user inside his own isolated sandbox, another good use is to put many users inside the one VS - if those users are to have SSL, SSH, or FTP, then each user must have a unique IP. I still haven't had the time to even install the VS stuff on a local test box, but will soon ..... >Greetings Christian > >> Thanks! >> >> Justin Kuntz >> http://www.Prominic.NET >> Phone: 217-356-2888 x 101 | Fax: 356-3356 | Pager: 888-241-0647 >> Internet: jkuntz@prominic.com | NotesNet: Justin Kuntz@Prominic@Notes >> Net"In the middle of difficulty lies opportunity." -- Albert Einstein >> >> > - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Fri May 10 15:41:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4AJfIaC018993; Fri, 10 May 2002 15:41:19 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4AJLBY23177 for vserver.list; Fri, 10 May 2002 15:21:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4AJLBh23173 for ; Fri, 10 May 2002 15:21:11 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 5A898108D for ; Fri, 10 May 2002 21:22:30 +0200 (CEST) Subject: RE: [vserver] apache security / Cookbook Vservers / vserver system usage From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: <013601c1f816$12e597d0$0100a8c0@johnnew> References: <013601c1f816$12e597d0$0100a8c0@johnnew> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-Btx/gBiX5221R1JNlJo4" X-Mailer: Ximian Evolution 1.0.3 Date: 10 May 2002 21:21:04 +0200 Message-Id: <1021058465.2719.65.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.0 required=5.0 tests=IN_REP_TO,SUBJ_HAS_SPACES,A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 601 --=-Btx/gBiX5221R1JNlJo4 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Fri, 2002-05-10 at 13:30, John Lyons wrote: >=20 > I need to go an rebuild the RH installation on both vserver hosts we were > running ctx-8. A fresh start with Ext3 and ctx-10 is probably in order as= I > don't think I can get back to ext3 from 2 without starting from scratch. >=20 Why shouldn't you be able to do that? Just boot on the new ext3-enabled ker= nel and it should work 100%. If it for some reason barfs about it having been run as ext2 for a while (can't see why it should), you can convert it to and from ext3 without having to umount anything - see http://people.spoiled.org/jha/ext3-faq.html. =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-Btx/gBiX5221R1JNlJo4 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA83B2g4c1kHlhtW8oRAomXAJ4ug90rJ4aIYRaLUUIkquxV9p9uyACfdduN lJ01OEecG8VETjTi3aE1vXI= =oAPh -----END PGP SIGNATURE----- --=-Btx/gBiX5221R1JNlJo4-- From vserver.error@solucorp.qc.ca Fri May 10 15:57:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4AJvhaC019127; Fri, 10 May 2002 15:57:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4AJeeg23760 for vserver.list; Fri, 10 May 2002 15:40:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from taz.eijk.nu (node-d-0565.a2000.nl [62.195.5.101]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4AJebh23755 for ; Fri, 10 May 2002 15:40:37 -0400 Received: from eijk.nu (localhost.localdomain [127.0.0.1]) by taz.eijk.nu (8.12.1/linuxconf) with ESMTP id g4AJd8lA007133 for ; Fri, 10 May 2002 21:39:09 +0200 Message-ID: <3CDC21DC.4040601@eijk.nu> Date: Fri, 10 May 2002 21:39:08 +0200 From: Stefan van der Eijk User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0rc1) Gecko/00200203 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] GR security & CTX References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.3 required=5.0 tests=SUPERLONG_LINE,A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 602 James, >On Tue, 7 May 2002, Stefan van der Eijk wrote: > > >>Yesterday's error seems to be gone (I did some tweaking in the patch, >>the patch was attached to my post yesterday), but a new one has come up: >> >>/usr/bin/gcc-3.0.4 -D__KERNEL__ -I/home/cooker/RPM/BUILD/linux/include -Wall -Wstrict-prototypes -Wno-trigraphs -O2 -fno-strict-aliasing -fno-common -fomit-frame-pointer -pipe -mpreferred-stack-boundary=2 -march=i586 -DMODULE -DMODVERSIONS -include /home/cooker/RPM/BUILD/linux/include/linux/modversions.h -nostdinc -I /usr/lib/gcc-lib/i586-mandrake-linux-gnu/3.0.4/include -DKBUILD_BASENAME=inode -c -o inode.o inode.c >>inode.c: In function `reiserfs_new_inode': >>inode.c:1528: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) >>inode.c:1528: (Each undeclared identifier is reported only once >>inode.c:1528: for each function it appears in.) >>inode.c:1590: `S_IMMUTABLE' undeclared (first use in this function) >>inode.c: In function `sd_attrs_to_i_attrs': >>inode.c:2127: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) >>inode.c:2128: `S_IMMUTABLE' undeclared (first use in this function) >>inode.c: In function `i_attrs_to_sd_attrs': >>inode.c:2145: `S_IMMUTABLE' undeclared (first use in this function) >>inode.c:2146: `EXT2_IMMUTABLE_FL' undeclared (first use in this function) >>make[2]: *** [inode.o] Error 1 >>make[2]: Leaving directory `/home/cooker/RPM/BUILD/linux/fs/reiserfs' >>make[1]: *** [_modsubdir_reiserfs] Error 2 >>make[1]: Leaving directory `/home/cooker/RPM/BUILD/linux/fs' >>make: *** [_mod_fs] Error 2 >>error: Bad exit status from /home/cooker/tmp/rpm-tmp.46847 (%build) >> >> > >These look like the changes to the DEFINES that are in the 2.4.19-pre >kernels where EXT2_IMMUTABLE_FL becomes EXT2_IMMUTABLE_FILE_FL and >EXT2_IMMUTABLE_LINK_FL depending ? Dido for S_IMMUTABLE to >S_IMMUTABLE_{FILE|LINK}. Look in include/linux/fs.h for them. > Disclaimer: I've got no programming skills, and am doing this by trying to think logically... The thing that puzzles me is that this is happening in the reiserfs directory, which isn't touched by the ctx patch. Does this mean that if reiserfs (and the other filessytems that might bork after this one is fixed) need to be patched in order to cope with the changes that are made against include/linux/fs.h ? Stefan From vserver.error@solucorp.qc.ca Fri May 10 17:47:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4ALlgaC020051; Fri, 10 May 2002 17:47:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4ALS1b26917 for vserver.list; Fri, 10 May 2002 17:28:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4ALS0h26912 for ; Fri, 10 May 2002 17:28:01 -0400 Subject: Re: [vserver] SIOCS... errors - any ideas? To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Fri, 10 May 2002 16:30:46 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/10/2002 04:28:02 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: O X-Status: X-Keywords: X-UID: 603 Joel -- Thank you for your advice below. You are right, vservers do create the ipalias when they are started. I've followed the two steps you suggested below and now here is what happens: Do you have any idea what I need to do next to get it working? I mean the message "Server 0001 is not running" is showing up both after the start command and after the enter command, so I'm assuming something is still wrong. Thanks! Justin [root@linux-4 opt]# /usr/sbin/vserver 0001 start Starting the virtual server 0001 Server 0001 is not running ipv4root is now 172.16.128.100 Host name is now jmk1.prominic.com Domain name is now prominic.com New security context is 16 [root@linux-4 opt]# /usr/sbin/vserver 0001 enter Server 0001 is not running ipv4root is now 172.16.128.100 Host name is now jmk1.prominic.com Domain name is now prominic.com New security context is 17 [root@jmk1 /]# "Joel Vandal" rveur.net> cc: Fax to: 05/10/2002 Subject: Re: [vserver] SIOCS... errors - any ideas? 02:18 PM Please respond to vserver > Starting the virtual server 0001 > Server 0001 is not running > SIOCSIFADDR: File exists > SIOCSIFFLAGS: Cannot assign requested address > SIOCSIFNETMASK: Cannot assign requested address > SIOCSIFBRDADDR: Cannot assign requested address > SIOCSIFFLAGS: Cannot assign requested address If I'm not wrong, vservers will automatically create the interface. To remove it, try: " ifconfig eth0:0 down " and restart vservers. > Can't chroot to directory . (Permission denied) I've solve this problem using: chmod 000 /vservers chmod 644 /vservers/0001 -- Joel Vandal From vserver.error@solucorp.qc.ca Sat May 11 05:23:46 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4B9NjaC025484; Sat, 11 May 2002 05:23:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4B8PWT09886 for vserver.list; Sat, 11 May 2002 04:25:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from prserv.net (out1.prserv.net [32.97.166.31]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4B8PVh09882 for ; Sat, 11 May 2002 04:25:31 -0400 Received: from slip139-92-140-235.dub.ie.prserv.net ([139.92.140.235]) by prserv.net (out1) with SMTP id <2002051108252320102tp86ce>; Sat, 11 May 2002 08:25:24 +0000 Subject: Re: [vserver] rsh between virtual server From: Lew Teck Kheng To: vserver@solucorp.qc.ca In-Reply-To: <3CDB7CF1.ECAA80E8@silicide.dk> References: <1020972491.12666.1.camel@maximus> <3CDB7CF1.ECAA80E8@silicide.dk> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3.99 Date: 11 May 2002 09:25:04 +0100 Message-Id: <1021105508.1307.4.camel@maximus> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.2 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST,KNOWN_BAD_DIALUPS version=2.01 Status: O X-Status: X-Keywords: X-UID: 604 hi all : Thank for the reply. I managed to solved the problem. To rsh as root , you need to comment out two line in the PAM rsh configuration. Cheers On Fri, 2002-05-10 at 08:55, Jon Bendtsen wrote: > Lew Teck Kheng wrote: > > > > hi all : > > > > After being thru reading the redhat user guide about rsh service , i > > still not able to rsh between virtual server. I alway get "Permission > > Denied". > > Not knowing much (anything?) about rsh, since i use ssh, but but but > Do all your vservers share the same ip ?? > Did you allow rsh connections from the ip in question. Did you consider > that 127.0.0.1 might be the ip they are connecting from ? > > > > JonB > > > -- ======================================================================== Lew Teck Kheng System Engineer Asia LMN System Engineering (Malaysia) (+603) 7725 6890 www.logica.com "Logica Make MMS Real Person to Person MMS demonstrated live using devices from 8 manufacturers on the Orange France GPRS Network at the 3 GSM World Congress in Cannes." ======================================================================== From vserver.error@solucorp.qc.ca Sat May 11 12:03:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4BG3RaC027484; Sat, 11 May 2002 12:03:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4BFk3r18642 for vserver.list; Sat, 11 May 2002 11:46:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.trekia.se (stratos.trekia.se [212.105.83.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4BFjth18636 for ; Sat, 11 May 2002 11:46:01 -0400 Received: from localhost (jonas@localhost) by mail.trekia.se (8.11.1/8.11.1) with ESMTP id g4BFjnw21541 for ; Sat, 11 May 2002 17:45:49 +0200 X-Authentication-Warning: stratos.trekia.se: jonas owned process doing -bs Date: Sat, 11 May 2002 17:45:49 +0200 (CEST) From: jonasb@hem.passagen.se X-X-Sender: jonas@stratos To: vserver@solucorp.qc.ca Subject: [vserver] MOSIX In-Reply-To: <1021105508.1307.4.camel@maximus> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-0.8 required=5.0 tests=IN_REP_TO,NO_REAL_NAME version=2.01 Status: O X-Status: X-Keywords: X-UID: 605 Has anyone tried to run MOSIX + vserver? htp://www.mosix.org/ http://openmosix.sourceforge.net/ From vserver.error@solucorp.qc.ca Sat May 11 14:12:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4BICIoN028504; Sat, 11 May 2002 14:12:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4BHwgg21438 for vserver.list; Sat, 11 May 2002 13:58:42 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp015.mail.yahoo.com (smtp015.mail.yahoo.com [216.136.173.59]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4BHwfh21434 for ; Sat, 11 May 2002 13:58:42 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 11 May 2002 17:58:41 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] iptables? Date: Sat, 11 May 2002 12:58:38 -0500 Message-ID: <000901c1f915$7ab27630$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal In-Reply-To: <3CD5A1C8.2060406@eijk.nu> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 606 Does vserver supports iptables manipulation inside a vserver? I tried but it gave me a permission denied message. If it doesn't support iptables currently, would this be a possibility? Thanks, Peter From vserver.error@solucorp.qc.ca Sat May 11 14:17:09 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4BIH9oN028527; Sat, 11 May 2002 14:17:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4BHvbD21420 for vserver.list; Sat, 11 May 2002 13:57:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp012.mail.yahoo.com (smtp012.mail.yahoo.com [216.136.173.32]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4BHvbh21413 for ; Sat, 11 May 2002 13:57:37 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 11 May 2002 17:57:36 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Problem: "Cannot assign requested address", Bind, webmin, and others Date: Sat, 11 May 2002 12:57:33 -0500 Message-ID: <000801c1f915$5410c860$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal In-Reply-To: <000701c1f829$3281cec0$ed23bd41@PremiumFood> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 607 Following the advice of another message, I have figured why the error message came up. Because I already had IP alias done in the root server, all I had to was to comment out the IPDEV line in the conf file, and the error disappear. Peter -----Original Message----- From: Peter Kwan Chan [mailto:peterkwanchan@yahoo.com] Sent: Friday, May 10, 2002 8:47 AM To: vserver@solucorp.qc.ca Subject: RE: [vserver] Problem: "Cannot assign requested address", Bind, webmin, and others Thanks for your help. I have the name server and webmin issue resolved. However, I still can't figure out why it says "Cannot assign requested address". I check the IP root to make sure it is the correct one. Every service also starts up fine, and I am able to connect to them through the IP. (HTTP, FTP, webmin, SSH). This is not really a problem currently, but I am just concerned that such a message is showing up. Thanks, Peter -----Original Message----- From: Thomas Weber [mailto:x@4t2.com] Sent: Wednesday, May 08, 2002 8:12 AM To: vserver@solucorp.qc.ca Subject: Re: [vserver] Problem: "Cannot assign requested address", Bind, webmin, and others On Tue, May 07, 2002 at 10:47:28PM -0500, Peter Kwan Chan wrote: > > -Even though I have Bind running in the root server, the domain names in > the child servers are not resolved. For example, ping redhat.com returns > with host not found(or something like that). I remember on the old > server the bind in the root server resolves the names for the child > servers(?). Even after installing and starting bind in the child server, > the names are still unresolved. check the /etc/resolv.conf in your vserver. there should be an entry nameserver IP-Adress with the IP of your main server - or any other box running a well configured bind. > -Also, when I start a vserver or enter it, I am getting the message, > > SIOCSIFBRDADDR: Cannot assign requested address > SIOCSIFFLAGS: Cannot assign requested address check for correct settings of IPROOT= in your /etc/vservers/*.conf and make sure you've got an Interface configured for this IP on your hosting server. > -In addition, webmin doesn't seem to work. It used to work fine on the > old server (in a vserver). But now it doesn't run, and during startup, > the message. (I am still working on this, maybe this isn't > vserver-related) probably related to the above. Tom From vserver.error@solucorp.qc.ca Sat May 11 17:25:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4BLPOoN029559; Sat, 11 May 2002 17:25:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4BL1Si25008 for vserver.list; Sat, 11 May 2002 17:01:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4BL1Sh25004 for ; Sat, 11 May 2002 17:01:28 -0400 Subject: [vserver] install-rh72 and update process To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Sat, 11 May 2002 16:06:49 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/11/2002 04:01:29 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 608 Hello, I've used the /usr/lib/vserver/install-rh7.2 script to install my first vserver. I notice when I do ps -ef inside the vserver, I see the "update" task is running: However, vps shows both the root sever and the vserver are now running update: root@linux-4 vservers]# vps -ef | grep -i update root 7 0 MAIN 0 0 20:02 ? 00:00:01 [kupdated] root 4091 8 rh72 3829 0 20:51 ? 00:00:00 update (sync) When I read the "man update" it makes it sound like it is bad to have more than one update running. Should I remove the update from the inittab in the rh72 base vserver? Thanks! Justin From vserver.error@solucorp.qc.ca Sat May 11 20:06:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4C06JoN030512; Sat, 11 May 2002 20:06:19 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4BNqgc28448 for vserver.list; Sat, 11 May 2002 19:52:42 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-140-48.in-addr.btopenworld.com [213.122.140.48]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4BNqeh28444 for ; Sat, 11 May 2002 19:52:41 -0400 Received: from 213.122.140.48 by john-new ([213.122.140.48] running VPOP3) with SMTP for ; Sun, 12 May 2002 00:52:31 +0100 From: "John Lyons" To: Subject: RE: [vserver] apache security / Cookbook Vservers / vserver systemusage Date: Sun, 12 May 2002 00:52:30 +0100 Message-ID: <001e01c1f946$ea6b6be0$308c7ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal In-Reply-To: <1021058465.2719.65.camel@amd.vsen.dk> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 609 > Why shouldn't you be able to do that? Just boot on the new > ext3-enabled kernel and it should work 100%. I'm having all sorts of problems with this server. [root@svr9 root]# cat /proc/version Linux version 2.4.17ctx-8 (root@svr9) [root@svr9 boot]# ls -l total 1556 drwxr-xr-x 2 root root 4096 May 11 12:40 grub -rw-r--r-- 1 root root 405 Mar 6 01:29 kernel.h -rw-r--r-- 1 root root 13312 May 11 15:14 map lrwxrwxrwx 1 root root 23 May 11 13:35 System.map -> System.map-2.4.18ctx-10 -rw-r--r-- 1 root root 504426 May 11 13:35 System.map-2.4.18ctx-10 lrwxrwxrwx 1 root root 20 May 11 13:35 vmlinuz -> vmlinuz-2.4.18ctx-10 -rw-r--r-- 1 root root 1052007 May 11 13:35 vmlinuz-2.4.18ctx-10 According to grub I've only got one available kernel to boot from. From vserver.error@solucorp.qc.ca Sat May 11 20:15:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4C0FBoN030655; Sat, 11 May 2002 20:15:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4BNtvn28545 for vserver.list; Sat, 11 May 2002 19:55:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-140-48.in-addr.btopenworld.com [213.122.140.48]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4BNtth28541 for ; Sat, 11 May 2002 19:55:56 -0400 Received: from 213.122.140.48 by john-new ([213.122.140.48] running VPOP3) with SMTP for ; Sun, 12 May 2002 00:55:48 +0100 From: "John Lyons" To: Subject: RE: [vserver] apache security / Cookbook Vservers / vserver systemusage Date: Sun, 12 May 2002 00:55:47 +0100 Message-ID: <001f01c1f947$5f6cbac0$308c7ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal In-Reply-To: <1021058465.2719.65.camel@amd.vsen.dk> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 610 > > > I need to go an rebuild the RH installation on both vserver > hosts we were > > running ctx-8. A fresh start with Ext3 and ctx-10 is > probably in order as I > > don't think I can get back to ext3 from 2 without starting > from scratch. > > > Why shouldn't you be able to do that? Just boot on the new > ext3-enabled kernel > and it should work 100%. I'm having all sorts of problems with this server. [root@svr9 root]# cat /proc/version Linux version 2.4.17ctx-8 (root@svr9) [root@svr9 boot]# ls -l total 1556 drwxr-xr-x 2 root root 4096 May 11 12:40 grub -rw-r--r-- 1 root root 405 Mar 6 01:29 kernel.h -rw-r--r-- 1 root root 13312 May 11 15:14 map lrwxrwxrwx 1 root root 23 May 11 13:35 System.map -> System.map-2.4.18ctx-10 -rw-r--r-- 1 root root 504426 May 11 13:35 System.map-2.4.18ctx-10 lrwxrwxrwx 1 root root 20 May 11 13:35 vmlinuz -> vmlinuz-2.4.18ctx-10 -rw-r--r-- 1 root root 1052007 May 11 13:35 vmlinuz-2.4.18ctx-10 According to grub I've only got one available kernel to boot from. default=0 timeout=5 splashimage=(hd0,0)/grub/splash.xpm.gz title Red Hat Linux (2.4.7-18-ctx10) root (hd0,0) kernel /vmlinuz ro root=/dev/hda2 I've almost given up trying to get it upgraded now to ctx-10. locate and grep find no files called or containging ctx-8 but everytime the server boots it's back to ctx-8. Only thing that I can think of is that it is the ctx-10 kernel but it's being misreported but I don't know how that could happen. :-( Regards John From vserver.error@solucorp.qc.ca Sat May 11 20:36:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4C0aKoN030770; Sat, 11 May 2002 20:36:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4C0LvB29236 for vserver.list; Sat, 11 May 2002 20:21:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-5-239.in-addr.btopenworld.com [213.122.5.239]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4C0Lth29232 for ; Sat, 11 May 2002 20:21:56 -0400 Received: from 213.122.5.239 by john-new ([213.122.5.239] running VPOP3) with SMTP for ; Sun, 12 May 2002 01:21:44 +0100 From: "John Lyons" To: Subject: RE: [vserver] iptables? Date: Sun, 12 May 2002 01:21:43 +0100 Message-ID: <002001c1f94a$feee70e0$308c7ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal In-Reply-To: <000901c1f915$7ab27630$ed23bd41@PremiumFood> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 611 > Does vserver supports iptables manipulation inside a vserver? I tried > but it gave me a permission denied message. If it doesn't support > iptables currently, would this be a possibility? I'm not into the tech side of this but I would guess that if it can be done it will be as a result of you giving the root user within the verserver additional rights in the conf file for the vserver. Regards John Lyons From vserver.error@solucorp.qc.ca Sun May 12 04:47:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4C8lVoN016169; Sun, 12 May 2002 04:47:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4C8Oep17293 for vserver.list; Sun, 12 May 2002 04:24:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4C8Och17289 for ; Sun, 12 May 2002 04:24:39 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 176oej-0003p5-00 for ; Sun, 12 May 2002 10:24:37 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 176oei-0003ou-00 for ; Sun, 12 May 2002 10:24:36 +0200 Sender: jon@silicide.dk Message-ID: <3CDE26C4.26839690@silicide.dk> Date: Sun, 12 May 2002 10:24:36 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] iptables? References: <000901c1f915$7ab27630$ed23bd41@PremiumFood> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 612 Peter Kwan Chan wrote: > > Does vserver supports iptables manipulation inside a vserver? I tried > but it gave me a permission denied message. If it doesn't support > iptables currently, would this be a possibility? cant you just set it up in the root server running on bare iron ? JonB From vserver.error@solucorp.qc.ca Sun May 12 05:04:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4C94goN016263; Sun, 12 May 2002 05:04:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4C8n7T17755 for vserver.list; Sun, 12 May 2002 04:49:07 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4C8n7h17751 for ; Sun, 12 May 2002 04:49:07 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 176p2R-0003pf-00 for ; Sun, 12 May 2002 10:49:07 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 176p2R-0003pV-00 for ; Sun, 12 May 2002 10:49:07 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.46] by localhost with POP3 (fetchmail-5.9.0) for jon+vserver@silicide.dk (multi-drop); Sun, 12 May 2002 10:49:07 +0200 (CEST) Received: (qmail 34151 invoked from network); 12 May 2002 08:47:35 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by 194.239.148.46 with SMTP; 12 May 2002 08:47:35 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4C8Oep17293 for vserver.list; Sun, 12 May 2002 04:24:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (62.61.158.2.generic-hostname.arrowhead.dk [62.61.158.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4C8Och17289 for ; Sun, 12 May 2002 04:24:39 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 176oej-0003p5-00 for ; Sun, 12 May 2002 10:24:37 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 176oei-0003ou-00 for ; Sun, 12 May 2002 10:24:36 +0200 Sender: jon@silicide.dk Message-ID: <3CDE26C4.26839690@silicide.dk> Date: Sun, 12 May 2002 10:24:36 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.3 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] iptables? References: <000901c1f915$7ab27630$ed23bd41@PremiumFood> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 613 Peter Kwan Chan wrote: > > Does vserver supports iptables manipulation inside a vserver? I tried > but it gave me a permission denied message. If it doesn't support > iptables currently, would this be a possibility? cant you just set it up in the root server running on bare iron ? JonB From vserver.error@solucorp.qc.ca Sun May 12 10:35:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4CEZboN017868; Sun, 12 May 2002 10:35:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4CDkw623955 for vserver.list; Sun, 12 May 2002 09:46:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4CDkvh23951 for ; Sun, 12 May 2002 09:46:57 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 36D8C108D for ; Sun, 12 May 2002 15:48:13 +0200 (CEST) Subject: RE: [vserver] apache security / Cookbook Vservers / vserver systemusage From: klavs klavsen To: vserver@solucorp.qc.ca In-Reply-To: <001f01c1f947$5f6cbac0$308c7ad5@johnnew> References: <001f01c1f947$5f6cbac0$308c7ad5@johnnew> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-IzDLIQljiIAn8btRfoBd" X-Mailer: Ximian Evolution 1.0.3 Date: 12 May 2002 15:46:43 +0200 Message-Id: <1021211205.2155.1.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.0 required=5.0 tests=IN_REP_TO,SUBJ_HAS_SPACES,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 614 --=-IzDLIQljiIAn8btRfoBd Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Sun, 2002-05-12 at 01:55, John Lyons wrote: >=20 > I've almost given up trying to get it upgraded now to ctx-10. locate and > grep find no files called or containging ctx-8 but everytime the server > boots it's back to ctx-8. Only thing that I can think of is that it is t= he > ctx-10 kernel but it's being misreported but I don't know how that could > happen. :-( Seems youre not quite up2date on grub :-) Nor am I. That's why I stick to lilo. keep a bootdisk handy.. if you don't have one, mkbootdisk will help ya :-) set up /etc/lilo properly - it's much easier than grub, and run lilo. Reboot and there should be no problems. =20 --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-IzDLIQljiIAn8btRfoBd Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA83nJD4c1kHlhtW8oRAvR6AJ9WoogIhwTLNI1AkXgM9069nerNywCfVR/M r9pJ4jX3B0NADm9obBjbHkE= =1OeH -----END PGP SIGNATURE----- --=-IzDLIQljiIAn8btRfoBd-- From vserver.error@solucorp.qc.ca Sun May 12 13:15:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4CHFVoN018742; Sun, 12 May 2002 13:15:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4CGoT927746 for vserver.list; Sun, 12 May 2002 12:50:29 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp015.mail.yahoo.com (smtp015.mail.yahoo.com [216.136.173.59]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4CGoSh27741 for ; Sun, 12 May 2002 12:50:29 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 12 May 2002 16:50:28 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] iptables? Date: Sun, 12 May 2002 11:50:25 -0500 Message-ID: <000801c1f9d5$1d5c8f00$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <3CDE26C4.26839690@silicide.dk> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 615 I could, but I was just wondering if each vserver could get to manage its own firewall. I could already think of an implementation: script in each vserver could call a daemon in the main server, which is then responsible for validating the request (so each vserver only create rules that apply to itself), and set the iptables policy on the main server. Peter -----Original Message----- From: jon@silicide.dk [mailto:jon@silicide.dk] On Behalf Of Jon Bendtsen Sent: Sunday, May 12, 2002 3:25 AM To: vserver@solucorp.qc.ca Subject: Re: [vserver] iptables? Peter Kwan Chan wrote: > > Does vserver supports iptables manipulation inside a vserver? I tried > but it gave me a permission denied message. If it doesn't support > iptables currently, would this be a possibility? cant you just set it up in the root server running on bare iron ? JonB From vserver.error@solucorp.qc.ca Sun May 12 17:02:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4CL2roN020008; Sun, 12 May 2002 17:02:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4CKl6V32128 for vserver.list; Sun, 12 May 2002 16:47:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4CKl4h32124 for ; Sun, 12 May 2002 16:47:05 -0400 Received: from aksmtpmdr1.telecom.co.nz (aksmtpmdr1 [146.171.1.20]) by smtpout.telecom.co.nz (Postfix) with SMTP id 8409D45F70 for ; Mon, 13 May 2002 08:46:58 +1200 (NZST) Received: from 192.168.192.252 by aksmtpmdr1.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Mon, 13 May 2002 08:46:53 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 1770Cp-0003aw-00 for ; Mon, 13 May 2002 08:44: 35 +1200 Subject: Re: vserver on NFS (was Re: [vserver] Cookbook Vservers From: "Fran Firman" To: vserver In-Reply-To: <3CDBE2CE.187EE33C@silicide.dk> References: <3CDA245E.EF391BE7@silicide.dk> <1020980772.26116.8.camel@ganymede> <3CDBE2CE.187EE33C@silicide.dk> X-Mailer: Ximian Evolution 1.0.3 Date: 13 May 2002 08:44:35 +1200 Message-ID: <1021236275.11078.3.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10C00B37315790-01-01 Content-Type: multipart/signed; boundary="=-j3CDFRo7WNeUqPaSfteM"; micalg=pgp-sha1; protocol="application/pgp-signature" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 616 --=-j3CDFRo7WNeUqPaSfteM Content-Type: text/plain Content-Transfer-Encoding: quoted-printable > not that bad, but not good enough. This is one big file, > depending on the service type, you have lots of small files, > or has to do pretty random access. I would asume the startup > overhead of getting the first few bytes over NFS is much=20 > higher than from the disk. But perhaps the added benefit of > a single backup place and the ease of moving a vserver to > another host makes running vservers on NFS the best solution. It was mainly the being able to move vservers around that was the biggest advantage. But for times when a program wants to create some temp file on /tmp, is why I created a local /tmp for the vserver. Also I noticed, that with IDE, even with dma on , if you hit the HD hard, the cpu usage is quite high, where even maxing a 100M link doesn't seem to bother the CPU much.=20 >=20 > It has made me rethink an old idea I had myself. My idea was > to create bootable cd images useable for turning any linux > installation into a vserver, to try it out. Possibly this > could be coupled with your idea, so one could get a really > fast deployment.=20 >=20 >=20 We are thinking along the same idea as well. An even quicker deployment (assuming that each pc is the same hardware), would be a tftp boot option... ???? Thou then do lose the advantage of the /tmp on the local HD. Fran. --=-j3CDFRo7WNeUqPaSfteM Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iEYEABECAAYFAjze1DIACgkQv1V2oVWAPhYXrACeJpyrBquirCof+GSQuoO1zEjH Q/kAn2eaNmwOXsv1Bnt8Pe3gmlNVjLwl =fqKD -----END PGP SIGNATURE----- --=-j3CDFRo7WNeUqPaSfteM-- From vserver.error@solucorp.qc.ca Sun May 12 23:58:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4D3weoN022659; Sun, 12 May 2002 23:58:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4D3f6L07087 for vserver.list; Sun, 12 May 2002 23:41:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp015.mail.yahoo.com (smtp015.mail.yahoo.com [216.136.173.59]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4D3f6h07083 for ; Sun, 12 May 2002 23:41:06 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 13 May 2002 03:41:06 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] Support vserver name longer than 4 characters? Date: Sun, 12 May 2002 22:41:01 -0500 Message-ID: <000001c1fa30$01542330$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal In-Reply-To: <3CB40BC3.CE7A8199@silicide.dk> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 617 Hello, I read on the "newserver" screen that vserver name can only be 4 characters or less. Is there any reason why there is such a restriction? Any plan to extend it? Thanks, Peter From vserver.error@solucorp.qc.ca Mon May 13 14:39:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4DIdnoN029536; Mon, 13 May 2002 14:39:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4DI6Kb29577 for vserver.list; Mon, 13 May 2002 14:06:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail4.messagelabs.com (mail4.messagelabs.com [212.125.75.12]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4DI6Jh29573 for ; Mon, 13 May 2002 14:06:19 -0400 X-VirusChecked: Checked Received: (qmail 2960 invoked from network); 13 May 2002 18:06:14 -0000 Received: from porgy.logica.co.uk (158.234.250.67) by server-5.tower-4.messagelabs.com with SMTP; 13 May 2002 18:06:14 -0000 Received: from shannon.ie.logica.com (shannon.ie.logica.com [158.234.96.46]) by porgy.logica.co.uk (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id TAA22042 for ; Mon, 13 May 2002 19:06:13 +0100 Received: from ruth.ie.logica.com ([158.234.96.113]) by shannon.ie.logica.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2448.0) id KGKL5W6L; Mon, 13 May 2002 19:06:11 +0100 Received: from pc243.ie.logica.com (pc243.ie.logica.com [158.234.98.243]) by ruth.ie.logica.com (8.9.1/8.9.0) with ESMTP id TAA23097 for ; Mon, 13 May 2002 19:06:12 +0100 (BST) Subject: [vserver] Apache services and LVS From: Lew Teck Kheng To: Vserver mailing list Content-Type: text/plain Content-Transfer-Encoding: 7bit Message-Id: <1021313147.1522.74.camel@maximus> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.0.3.99 Date: 13 May 2002 19:05:52 +0100 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 618 hi all : I am trying to implement multiple apache service behind a LVS (linux vritual server for load balancing). I can see the incoming packet but somehow the vserver cannot route the packet outside LVS ? Have anybody successfully attempt such setup ? many many thanks ________________________________________________________________________ This email has been scanned for all viruses by the MessageLabs SkyScan service. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.messagelabs.com ________________________________________________________________________ From vserver.error@solucorp.qc.ca Mon May 13 14:47:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4DIlwoN029675; Mon, 13 May 2002 14:47:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4DHO5t28375 for vserver.list; Mon, 13 May 2002 13:24:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4DHO4h28371 for ; Mon, 13 May 2002 13:24:04 -0400 Subject: [vserver] rh72 default vserver install - inittab issues (vserver version 0.17) To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Mon, 13 May 2002 12:33:48 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/13/2002 12:24:05 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.3 required=5.0 tests=LINE_OF_YELLING,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 619 Hello, I've used the /usr/lib/vserver/install-rh7.2 script to create my first vserver. The only problem I noticed with this process is the install-rh7.2 script references install_post.sh when really it should be install-post.sh Now that I have my verver up and running on 2.4.18-ctx10 with vserver 0.17, I wanted to understand better the boot process and what is the minimum process list that should be operating in a vserver environment. The /usr/lib/vserver/install-post.sh script was very helpful to understand what vserver is doing after installing the RPMs. The inittab does a few things I think should be disabled, and I'd like to hear your thoughts. First, the default sysinit is called: si::sysinit:/etc/rc.d/rc.sysinit ... and this rc.sysinit script does all sorts of things which could and probably should be trimmed down for a vserver. Notably, it does file system checking, starts up pre-syslog logging, etc. I noticed the update daemon doesn't look like it needs to be running on vservers as well as the main server, so I commented that out as follows: # Things to run in every runlevel. #JMK - I think this should not be running since the main server runs kupdate #ud::once:/sbin/update I assume these lines probably wouldn't mean much in a vserver because the primary init is not going to know to tell the vserver inits what is happening in case of powerfailure or ctrl-alt-del by default, without special configuration... so I left them alone for now: ca::ctrlaltdel:/sbin/shutdown -t3 -r now pf::powerfail:/sbin/shutdown -f -h +2 "Power Failure; System Shutting Down" pr:12345:powerokwait:/sbin/shutdown -c "Power Restored; Shutdown Cancelled" The tty inputs I assume can all be disabled since the vserver has no control over the main machine's console anyway, and they'll just generate needless /var/log/messages traffic in the vserver about not having access to the ttys? # Run gettys in standard runlevels #1:2345:respawn:/sbin/mingetty tty1 #2:2345:respawn:/sbin/mingetty tty2 #3:2345:respawn:/sbin/mingetty tty3 #4:2345:respawn:/sbin/mingetty tty4 #5:2345:respawn:/sbin/mingetty tty5 #6:2345:respawn:/sbin/mingetty tty6 This leaves me with my big question being what to do with syslog and minilogd. I assume that the processes running inside the vserver are going to try to talk to the standard logging mechanism inside that vserver. Red Hat has a white paper on this which is a good read: http://www.redhat.com/support/wpapers/redhat/initscripts/index.html#toc So this is what I get after running "vserver rh72 start" followed by "vserver rh72 enter": [root@vserver:rh72 log]ps -ef UID PID PPID C STIME TTY TIME CMD root 1 0 0 May11 ? 00:00:06 init [3] root 14695 1 0 13:14 ? 00:00:00 minilogd root 14911 14900 0 13:15 pts/3 00:00:00 /bin/bash -login root 14965 14911 0 13:15 pts/3 00:00:00 ps -ef [root@vserver:rh72 log] Now, minilogd is running but I think it is just collecting the messages and not actually writing them anywhere until we start syslog. But starting syslog also attempts to start a kernel log daemon, which I don't think we want since the main server is already going to be running a kernel log daemon - right? [root@vserver:rh72 init.d]./syslog start Starting system logger: [ OK ] Starting kernel logger: [ OK ] [root@vserver:rh72 init.d]ps -ef UID PID PPID C STIME TTY TIME CMD root 1 0 0 May11 ? 00:00:06 init [3] root 14911 14900 0 13:15 pts/3 00:00:00 /bin/bash -login root 14979 1 0 13:16 ? 00:00:00 syslogd -m 0 root 14987 14911 0 13:16 pts/3 00:00:00 ps -ef [root@vserver:rh72 init.d] So somehow by running syslog, it is disabling the minilogd and replacing that with syslogd, and I'm not sure why the kerneld doesn't startup too. I'd appreciate any ideas or suggestions to further streamline the startup process and make sure minimal services and logging are loaded which won't interfere with the root server. For now I'm going to re-enable syslog inside the vserver as follows: [root@vserver:rh72 /]chkconfig --level 2345 syslog on Thanks! Justin From vserver.error@solucorp.qc.ca Mon May 13 17:59:29 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4DLxToN006586; Mon, 13 May 2002 17:59:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4DKXtI01215 for vserver.list; Mon, 13 May 2002 16:33:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpout.telecom.co.nz (smtpout.telecom.co.nz [146.171.14.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4DKXsh01210 for ; Mon, 13 May 2002 16:33:55 -0400 Received: from aksmtpmdr1.telecom.co.nz (aksmtpmdr1 [146.171.1.20]) by smtpout.telecom.co.nz (Postfix) with SMTP id CD38545E52 for ; Tue, 14 May 2002 08:33:52 +1200 (NZST) Received: from 192.168.192.252 by aksmtpmdr1.telecom.co.nz with ESMTP ( Tumbleweed MMS SMTP Relay (MMS v4.7);); Tue, 14 May 2002 08:33:46 +1200 X-Server-Uuid: 9e124d90-33fb-11d3-a293-006008c1e5af Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 177MTb-0005Lh-00 for ; Tue, 14 May 2002 08:31: 23 +1200 Subject: Re: [vserver] Support vserver name longer than 4 characters? From: "Fran Firman" To: vserver In-Reply-To: <000001c1fa30$01542330$ed23bd41@PremiumFood> References: <000001c1fa30$01542330$ed23bd41@PremiumFood> X-Mailer: Ximian Evolution 1.0.3 Date: 14 May 2002 08:31:09 +1200 Message-ID: <1021321883.11079.57.camel@ganymede> MIME-Version: 1.0 X-WSS-ID: 10FEFCA0581411-01-01 Content-Type: multipart/signed; boundary="=-hU629oSu/phgdHS348xu"; micalg=pgp-sha1; protocol="application/pgp-signature" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 620 --=-hU629oSu/phgdHS348xu Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Well I never saw that - been creating the vservers by hand. And I've been using names like web_server , imap_server And it all seems ok. Under vserver-stat the full name is shown under ifconfig the subinterfaces are called. eth0:web_ eth0:imap So I think it means that the first 4 chars have to be unique, not the total length has to be four. Fran. On Mon, 2002-05-13 at 15:41, Peter Kwan Chan wrote: > Hello, > I read on the "newserver" screen that vserver name can only be 4 > characters or less. Is there any reason why there is such a restriction? > Any plan to extend it? >=20 > Thanks, >=20 > Peter >=20 >=20 --=-hU629oSu/phgdHS348xu Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA84CKGv1V2oVWAPhYRAop+AJ92gOGaB6hCnUytKkpgIuJFEiCHjwCfX46O gO8w3kD0nyrdmz2JMiWSZxg= =4FP+ -----END PGP SIGNATURE----- --=-hU629oSu/phgdHS348xu-- From vserver.error@solucorp.qc.ca Mon May 13 23:35:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4E3ZEoN009892; Mon, 13 May 2002 23:35:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4E34HR10963 for vserver.list; Mon, 13 May 2002 23:04:17 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4E34Hh10959 for ; Mon, 13 May 2002 23:04:17 -0400 Received: from remtk.solucorp.qc.ca (g36-125.citenet.net [206.123.36.125]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g4E36eA59811 for ; Mon, 13 May 2002 23:06:40 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g4E2ese02420 for vserver@solucorp.qc.ca; Mon, 13 May 2002 22:40:54 -0400 From: Jacques Gelinas Date: Mon, 13 May 2002 22:40:54 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Support vserver name longer than 4 characters? X-mailer: tlmpmail 0.6 Message-ID: <20020513224054.c8a80746a024@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 621 On Sun, 12 May 2002 22:41:01 -0500, Peter Kwan Chan wrote > Hello, > I read on the "newserver" screen that vserver name can only be 4 > characters or less. Is there any reason why there is such a restriction? > Any plan to extend it? The real limit is 10. I will change this in the next release. This is a mistake on my side. Here is the story. For every vserver, you assign an IP alias combining the network device and the name. So for vserver abc, you get the IP alias eth0:abc. The limit in the kernel for a network device name (alias or not) is 15 ( I think, I have not looked in the code). So if you remove eth0:, you have 10 character for the vserver name. The mistake came from looking at ifconfig output. ifconfig truncate the network device name while formating, leaving only 4 characters visible. 10 should be plenty. Note that newvserver doest no enforce any limit. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon May 13 23:35:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4E3ZKoN009899; Mon, 13 May 2002 23:35:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4E34Mp10974 for vserver.list; Mon, 13 May 2002 23:04:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4E34Lh10970 for ; Mon, 13 May 2002 23:04:21 -0400 Received: from remtk.solucorp.qc.ca (g36-125.citenet.net [206.123.36.125]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g4E36iA59820 for ; Mon, 13 May 2002 23:06:44 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g4E2x4r02429 for vserver@solucorp.qc.ca; Mon, 13 May 2002 22:59:04 -0400 From: Jacques Gelinas Date: Mon, 13 May 2002 22:59:04 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] rh72 default vserver install - inittab issues (vserver version 0.17) X-mailer: tlmpmail 0.6 Message-ID: <20020513225904.c66f938c382b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 622 On Mon, 13 May 2002 12:33:48 -0500, Justin M Kuntz wrote > > Hello, > > I've used the /usr/lib/vserver/install-rh7.2 script to create my first > vserver. The only problem I noticed with this process is the install-rh7.2 > script references install_post.sh when really it should be install-post.sh > > Now that I have my verver up and running on 2.4.18-ctx10 with vserver 0.17, > I wanted to understand better the boot process and what is the minimum > process list that should be operating in a vserver environment. The > /usr/lib/vserver/install-post.sh script was very helpful to understand what > vserver is doing after installing the RPMs. > > The inittab does a few things I think should be disabled, and I'd like to > hear your thoughts. First, the default sysinit is called: > si::sysinit:/etc/rc.d/rc.sysinit > > ... and this rc.sysinit script does all sorts of things which could and > probably should be trimmed down for a vserver. Notably, it does file > system checking, starts up pre-syslog logging, etc. I noticed the update > daemon doesn't look like it needs to be running on vservers as well as the > main server, so I commented that out as follows: rc.sysinit does not contain anything useful (or doable by) for a vserver. > # Things to run in every runlevel. > #JMK - I think this should not be running since the main server runs > kupdate > #ud::once:/sbin/update Indeed update is only needed a single time on the physical server. > I assume these lines probably wouldn't mean much in a vserver because the > primary init is not going to know to tell the vserver inits what is > happening in case of powerfailure or ctrl-alt-del by default, without > special configuration... so I left them alone for now: > ca::ctrlaltdel:/sbin/shutdown -t3 -r now > pf::powerfail:/sbin/shutdown -f -h +2 "Power Failure; System Shutting Down" > pr:12345:powerokwait:/sbin/shutdown -c "Power Restored; Shutdown Cancelled" Right. > The tty inputs I assume can all be disabled since the vserver has no > control over the main machine's console anyway, and they'll just generate > needless /var/log/messages traffic in the vserver about not having access > to the ttys? > # Run gettys in standard runlevels > #1:2345:respawn:/sbin/mingetty tty1 > #2:2345:respawn:/sbin/mingetty tty2 > #3:2345:respawn:/sbin/mingetty tty3 > #4:2345:respawn:/sbin/mingetty tty4 > #5:2345:respawn:/sbin/mingetty tty5 > #6:2345:respawn:/sbin/mingetty tty6 If you create say /dev/tty2 in a vserver, then it would be possible to have one console per vserver. A neat way to switch between them as needed. /dev/ttyX are not created by default on vservers. You will need to trim the tty usage on the root server, in its own /etc/inittab. > This leaves me with my big question being what to do with syslog and > minilogd. I assume that the processes running inside the vserver are going > to try to talk to the standard logging mechanism inside that vserver. Red > Hat has a white paper on this which is a good read: > http://www.redhat.com/support/wpapers/redhat/initscripts/index.html#toc No, by default they can't reach the root syslog. They talk to the syslog daemon using /dev/log, which is a unix domain socket. In general, each vserver runs its own syslogd process, so each has its own set of /var/log files. In general a vserver will also run crond, so log files are rotated once in a while. Note that a syslogd daemon can setup multiple /dev/log socket. or you can use hard links to setup /dev/log using the root server /dev/log in every vserver. This way, logging would go to the root log files. This could be used in a high security setup, where logging become invisible to a vserver (and thus an attacker wanting to cleanup). Another solution would be to run one syslogd setup per vserver, but in the root server. This will avoid mixing messages from each vservers. > So this is what I get after running "vserver rh72 start" followed by > "vserver rh72 enter": > [root@vserver:rh72 log]ps -ef > UID PID PPID C STIME TTY TIME CMD > root 1 0 0 May11 ? 00:00:06 init [3] > root 14695 1 0 13:14 ? 00:00:00 minilogd > root 14911 14900 0 13:15 pts/3 00:00:00 /bin/bash -login > root 14965 14911 0 13:15 pts/3 00:00:00 ps -ef > [root@vserver:rh72 log] > > Now, minilogd is running but I think it is just collecting the messages and > not actually writing them anywhere until we start syslog. But starting > syslog also attempts to start a kernel log daemon, which I don't think we > want since the main server is already going to be running a kernel log > daemon - right? Yes klogd can't grab kernel message (capability). But start the syslog service anyway. It fails to start klogd but syslogd starts and work fine. > [root@vserver:rh72 init.d]./syslog start > Starting system logger: [ OK ] > Starting kernel logger: [ OK ] > [root@vserver:rh72 init.d]ps -ef > UID PID PPID C STIME TTY TIME CMD > root 1 0 0 May11 ? 00:00:06 init [3] > root 14911 14900 0 13:15 pts/3 00:00:00 /bin/bash -login > root 14979 1 0 13:16 ? 00:00:00 syslogd -m 0 > root 14987 14911 0 13:16 pts/3 00:00:00 ps -ef > [root@vserver:rh72 init.d] > > > So somehow by running syslog, it is disabling the minilogd and replacing > that with syslogd, and I'm not sure why the kerneld doesn't startup too. You don't need kernel on a 2.4 kernel. Further, kerneld can,t work in a vserver since a vserver is not allowed to load kernel module. Or you mean klogd. klogd is not allowed to work in a vserver because of the capability system. If it was allowed, it would steal message away from the root server. > I'd appreciate any ideas or suggestions to further streamline the startup > process and make sure minimal services and logging are loaded which won't > interfere with the root server. In general, we do not run /sbin/init in a vserver. We simply start services in runlevel 3 (whatever is defined in /etc/inittab as the default). In general we have sshd, syslog and crond running. > For now I'm going to re-enable syslog inside the vserver as follows: > [root@vserver:rh72 /]chkconfig --level 2345 syslog on Yes this is we do on our vserver. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue May 14 06:08:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4EA86oN013768; Tue, 14 May 2002 06:08:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4E9kWb21100 for vserver.list; Tue, 14 May 2002 05:46:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtprelay01.ilcampo.com (smtprelay01.ilcampo.com [193.172.126.25]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4E9kUh21096 for ; Tue, 14 May 2002 05:46:31 -0400 Received: (qmail 10067 invoked from network); 14 May 2002 09:46:29 -0000 Received: from offpulse.ilcampo.com (HELO Kees) (Kees.Schrama?siennax@193.172.126.230) by smtprelay01.ilcampo.com with SMTP; 14 May 2002 09:46:29 -0000 From: "Kees Schrama" To: Subject: [vserver] Multicast between vservers Date: Tue, 14 May 2002 11:49:13 +0200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300 Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 623 Hi, Is it possible to have multiple vservers listen to the same IP multicast address? The reason for this: we have a application in a clustered setup. This means that multiple instances of this application run, each in a different verserver. The vservers all have IP adresses in the same subnet. Each application uses the same multicast address in order to communicate with its neighbours. However, it seems that only one vserver at a time is able to receive multicast, because the multicast traffic (multicast-subnet) can be routed only to one (and-only-one) virtual-interface at a time. It seems to me that the problem is the single routing table that is used by all vservers, so that only one interface at a time can receive multicast. Can anyone confirm my findings? Or am I missing something? Thanks! Kees Schrama From vserver.error@solucorp.qc.ca Tue May 14 12:59:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4EGxcoN016883; Tue, 14 May 2002 12:59:39 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4EFTwC29419 for vserver.list; Tue, 14 May 2002 11:29:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from iteckmailx.infoteck.qc.ca (smtp2.infoteck.qc.ca [205.151.16.14]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4EFTwh29415 for ; Tue, 14 May 2002 11:29:58 -0400 Received: from [205.151.16.16] (port=1677 helo=ITeckShield.infoteck.qc.ca) by iteckmailx.infoteck.qc.ca with smtp (Exim 4.04) id 177e8S-0006fp-00 for vserver@solucorp.qc.ca; Tue, 14 May 2002 11:22:44 -0400 Received: from iteck4.infoteck.qc.ca(205.151.16.4) by ITeckShield.infoteck.qc.ca via csmap id 4916; Tue, 14 May 2002 11:23:14 -0400 (EDT) Message-ID: <00ff01c1fb5c$536f9870$1400010a@infoteck.ca> From: "Joel Vandal" To: , "Justin M Kuntz" References: Subject: Re: [vserver] SIOCS... errors - any ideas? Date: Tue, 14 May 2002 11:30:49 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.1 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK version=2.01 Status: RO X-Status: X-Keywords: X-UID: 624 > Do you have any idea what I need to do next to get it working? I mean the > message "Server 0001 is not running" is showing up both after the start > command and after the enter command, so I'm assuming something is still > wrong. You must have at less one service running on your vserver, can you try to do: vservers 0001 service sshd start then log on your vservers and activate default service. -- Joel Vandal From vserver.error@solucorp.qc.ca Tue May 14 14:12:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4EICPoN017557; Tue, 14 May 2002 14:12:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4EHXmD00726 for vserver.list; Tue, 14 May 2002 13:33:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4EHXlh00722 for ; Tue, 14 May 2002 13:33:48 -0400 Subject: [vserver] context count To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Tue, 14 May 2002 12:46:02 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/14/2002 12:33:48 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 625 Hello, Am I correct in my understanding that the security context is essentially 4 hex digits (2 bytes long)? So if I were to start and stop vservers in a continuous loop for 65535 times, then on the next time it will fail? Thanks, Justin From vserver.error@solucorp.qc.ca Tue May 14 14:25:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4EIProN017737; Tue, 14 May 2002 14:25:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4EI0RO01527 for vserver.list; Tue, 14 May 2002 14:00:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from iteckmailx.infoteck.qc.ca (smtp2.infoteck.qc.ca [205.151.16.14]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4EI0Rh01523 for ; Tue, 14 May 2002 14:00:27 -0400 Received: from [205.151.16.16] (port=4417 helo=ITeckShield.infoteck.qc.ca) by iteckmailx.infoteck.qc.ca with smtp (Exim 4.04) id 177gU9-0000FW-00 for vserver@solucorp.qc.ca; Tue, 14 May 2002 13:53:17 -0400 Received: from iteck4.infoteck.qc.ca(205.151.16.4) by ITeckShield.infoteck.qc.ca via csmap id 6190; Tue, 14 May 2002 13:53:49 -0400 (EDT) Message-ID: <01bf01c1fb71$5c7d8250$1400010a@infoteck.ca> From: "Joel Vandal" To: References: Subject: Re: [vserver] context count Date: Tue, 14 May 2002 14:01:23 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 626 > Am I correct in my understanding that the security context is essentially 4 > hex digits (2 bytes long)? So if I were to start and stop vservers in a > continuous loop for 65535 times, then on the next time it will fail? If you check on the Kernel Patch, on signal.c (sys_new_s_context function) you will see something like: #define MAX_S_CONTEXT 65535 if (alloc_ctx == 1) { ... } else if (alloc_ctx > MAX_S_CONTEXT) { alloc_ctx = 2; } I assume that when the countern reach 65535, they restart the count at 2 (Context 0 and 1 are reserved). -- Joel Vandal From vserver.error@solucorp.qc.ca Tue May 14 15:30:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4EJUAoN018286; Tue, 14 May 2002 15:30:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4EIJaW02025 for vserver.list; Tue, 14 May 2002 14:19:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4EIJZh02019 for ; Tue, 14 May 2002 14:19:35 -0400 Subject: [vserver] per-vserver timezones To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: "Justin M Kuntz" Date: Tue, 14 May 2002 13:31:54 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/14/2002 01:19:36 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-100.0 required=5.0 tests=A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 627 Hello, Is it possible for vservers to operate in different timezones from one another and from the main server? I understand the actual raw time across all vservers would be the same, but I'd like each vserver to interpret the timezone differently. Thanks! Justin From vserver.error@solucorp.qc.ca Tue May 14 15:47:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4EJlBoN018407; Tue, 14 May 2002 15:47:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4EIZGH02465 for vserver.list; Tue, 14 May 2002 14:35:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from iteckmailx.infoteck.qc.ca (smtp2.infoteck.qc.ca [205.151.16.14]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4EIZGh02461 for ; Tue, 14 May 2002 14:35:16 -0400 Received: from [205.151.16.16] (port=1164 helo=ITeckShield.infoteck.qc.ca) by iteckmailx.infoteck.qc.ca with smtp (Exim 4.04) id 177h1q-0000ky-00 for vserver@solucorp.qc.ca; Tue, 14 May 2002 14:28:06 -0400 Received: from iteck4.infoteck.qc.ca(205.151.16.4) by ITeckShield.infoteck.qc.ca via csmap id 6367; Tue, 14 May 2002 14:28:38 -0400 (EDT) Message-ID: <01e901c1fb76$39f959c0$1400010a@infoteck.ca> From: "Joel Vandal" To: References: Subject: Re: [vserver] per-vserver timezones Date: Tue, 14 May 2002 14:36:13 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 628 > Is it possible for vservers to operate in different timezones from one > another and from the main server? I understand the actual raw time across > all vservers would be the same, but I'd like each vserver to interpret the > timezone differently. I try to set different Timezone on 3 vservers and when I check the time, they show the time corresponding to my timezone. main server: mar mai 14 14:34:12 EDT 2002 (America/Montreal) vserver1 : mar mai 14 20:34:21 CEST 2002 (Europe/Paris) vserver2 : mar mai 14 19:34:43 BST 2002 (Great Britain) vserver3 : mar mai 14 22:34:52 MUT 2002 (India/Maurice) -- Joel Vandal From vserver.error@solucorp.qc.ca Tue May 14 17:08:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4EL8WoN019087; Tue, 14 May 2002 17:08:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4EKf9X06375 for vserver.list; Tue, 14 May 2002 16:41:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from imf12bis.bellsouth.net (mail012.mail.bellsouth.net [205.152.58.32]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4EKf9h06369 for ; Tue, 14 May 2002 16:41:09 -0400 Received: from localhost.localdomain ([66.157.153.33]) by imf12bis.bellsouth.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with ESMTP id <20020514204235.MEUQ18573.imf12bis.bellsouth.net@localhost.localdomain> for ; Tue, 14 May 2002 16:42:35 -0400 Content-Type: text/plain; charset="us-ascii" From: Billy Hager To: Subject: [vserver] Virtual Network Devices Date: Tue, 14 May 2002 16:40:27 -0400 User-Agent: KMail/1.4.1 MIME-Version: 1.0 Message-Id: <200205141640.27327.whager@bellsouth.net> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g4EKf9h06369 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 629 I am working with a computer which has one network card and runs one vserver. Outside the vserver the computer acts a print/nfs server for my local network. Inside the shell server is a full Linux distrobution running as a shell server. I would like to set up a situation where no network traffic from the vserver ever goes anywhere else but the internet. I don't want people on the vserver using my printer and poking around my local network. ;) I would like to create a virtual network interface that I could connect the vserver to and filter with iptables. User Mode Linux(UML) uses virtual network devices to manage its network, and I know I could use it. Unfortunately, UML creates a layer of complexity that I don't want to deal with. Is there another way that I can create a virtual network interface without using UML? TUN/TAP looks promising, and that's what UML uses to create its virtual network. Again, I have been unable to find a solution that doesn't use UML. Does anyone know of any solutions that don't require UML? Another option would be to buy a second network card and switch. The vserver would be bound to one card(eth0) and everything else would use the other card(eth1). That's a $60+ solution, though, and I don't learn anything in the process. There must be a way to set up a virtual network. Thanks in advance, Billy Hager whager@bellsouth.net From vserver.error@solucorp.qc.ca Tue May 14 19:34:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4ENYnoN020890; Tue, 14 May 2002 19:34:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4EM7w208586 for vserver.list; Tue, 14 May 2002 18:07:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4EM7vh08582 for ; Tue, 14 May 2002 18:07:57 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:11794 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Wed, 15 May 2002 00:07:44 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Wed, 15 May 2002 00:07:36 +0200 Date: Wed, 15 May 2002 00:07:35 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] per-vserver timezones Message-ID: <20020515000735.T25124@4t2.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: ; from jkuntz@prominic.com on Tue, May 14, 2002 at 01:31:54PM -0500 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 630 On Tue, May 14, 2002 at 01:31:54PM -0500, Justin M Kuntz wrote: > > Hello, > > Is it possible for vservers to operate in different timezones from one > another and from the main server? I understand the actual raw time across > all vservers would be the same, but I'd like each vserver to interpret the > timezone differently. For redhat you want to use timeconfig within each timeserver to set the timezone (or /etc/localtime if you wanne do it manually). I also recommend to run your PCs Hardware/Bios Clock at GMT/UTC. Tom From vserver.error@solucorp.qc.ca Tue May 14 22:22:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4F2MGoN022182; Tue, 14 May 2002 22:22:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4F1fAs12712 for vserver.list; Tue, 14 May 2002 21:41:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp012.mail.yahoo.com (smtp012.mail.yahoo.com [216.136.173.32]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4F1f9h12708 for ; Tue, 14 May 2002 21:41:09 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 15 May 2002 01:41:06 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Virtual Network Devices Date: Tue, 14 May 2002 20:41:00 -0500 Message-ID: <000001c1fbb1$91ebfdf0$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal In-Reply-To: <200205141640.27327.whager@bellsouth.net> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-102.0 required=5.0 tests=IN_REP_TO,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 631 I am not a networking expert, but if I may ask, would iptables work? I can imagine that you can setup rules so that no traffics coming from the outside can get in, or vice versa. Peter -----Original Message----- From: Billy Hager [mailto:whager@bellsouth.net] Sent: Tuesday, May 14, 2002 3:40 PM To: vserver@solucorp.qc.ca Subject: [vserver] Virtual Network Devices I am working with a computer which has one network card and runs one vserver. Outside the vserver the computer acts a print/nfs server for my local network. Inside the shell server is a full Linux distrobution running as a shell server. I would like to set up a situation where no network traffic from the vserver ever goes anywhere else but the internet. I don't want people on the vserver using my printer and poking around my local network. ;) I would like to create a virtual network interface that I could connect the vserver to and filter with iptables. User Mode Linux(UML) uses virtual network devices to manage its network, and I know I could use it. Unfortunately, UML creates a layer of complexity that I don't want to deal with. Is there another way that I can create a virtual network interface without using UML? TUN/TAP looks promising, and that's what UML uses to create its virtual network. Again, I have been unable to find a solution that doesn't use UML. Does anyone know of any solutions that don't require UML? Another option would be to buy a second network card and switch. The vserver would be bound to one card(eth0) and everything else would use the other card(eth1). That's a $60+ solution, though, and I don't learn anything in the process. There must be a way to set up a virtual network. Thanks in advance, Billy Hager whager@bellsouth.net From vserver.error@solucorp.qc.ca Wed May 15 01:50:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4F5oZoN023811; Wed, 15 May 2002 01:50:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4F50sJ17128 for vserver.list; Wed, 15 May 2002 01:00:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from imf11bis.bellsouth.net (mail311.mail.bellsouth.net [205.152.58.171]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4F50rh17124 for ; Wed, 15 May 2002 01:00:53 -0400 Received: from localhost.localdomain ([66.157.153.33]) by imf11bis.bellsouth.net (InterMail vM.5.01.04.05 201-253-122-122-105-20011231) with ESMTP id <20020515050221.EHM20943.imf11bis.bellsouth.net@localhost.localdomain> for ; Wed, 15 May 2002 01:02:21 -0400 Content-Type: text/plain; charset="iso-8859-1" From: Billy Hager To: vserver@solucorp.qc.ca Subject: Re: [vserver] Virtual Network Devices Date: Wed, 15 May 2002 01:00:51 -0400 User-Agent: KMail/1.4.1 References: <000001c1fbb1$91ebfdf0$ed23bd41@PremiumFood> In-Reply-To: <000001c1fbb1$91ebfdf0$ed23bd41@PremiumFood> MIME-Version: 1.0 Message-Id: <200205150100.51587.whager@bellsouth.net> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g4F50rh17124 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 632 Actually, that gives me an idea. My vserver is traped in a single security context. Is there a netfilter module I can use to filter by security context? Billy Hager whager@bellsouth.net On Tuesday 14 May 2002 09:41 pm, you wrote: > I am not a networking expert, but if I may ask, would iptables work? I > can imagine that you can setup rules so that no traffics coming from the > outside can get in, or vice versa. > > Peter > From vserver.error@solucorp.qc.ca Wed May 15 02:34:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4F6Y4oN024097; Wed, 15 May 2002 02:34:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4F52Sx17169 for vserver.list; Wed, 15 May 2002 01:02:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4F52Sh17165 for ; Wed, 15 May 2002 01:02:28 -0400 Subject: [vserver] screen in vserver? To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.9 November 16, 2001 Message-ID: From: "Justin M Kuntz" Date: Tue, 14 May 2002 23:59:38 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 05/15/2002 12:02:29 AM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 633 Hello -- Sorry for another probably dumb question - but I'm having trouble getting "screen" to work in a vserver. I get an error about: Cannot open your terminal '/dev/pts/2' - please check. I intentially don't want my vservers to be tied at this point to any of the virtual terminals accessible from the main keyboard console. Is it possibly to fake the pts entries for screen? If so, do I need to create multiple pts entries using mknod? In other words, am I limited to the number of pts as the number of instances of screen I can use per vserver? Thanks, Justin From vserver.error@solucorp.qc.ca Wed May 15 04:47:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4F8l6oN025978; Wed, 15 May 2002 04:47:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4F7WAh20209 for vserver.list; Wed, 15 May 2002 03:32:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from home.2interactive.com (home.2interactive.com [64.170.22.11]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4F7W9h20205 for ; Wed, 15 May 2002 03:32:09 -0400 Received: (qmail 18721 invoked by uid 505); 15 May 2002 07:31:37 -0000 Received: from twistedhammer@subdimension.com by home.2interactive.com by uid 502 with qmail-scanner-1.10 (. Clear:0. Processed in 0.06677 secs); 15 May 2002 07:31:37 -0000 X-Qmail-Scanner-Mail-From: twistedhammer@subdimension.com via home.2interactive.com X-Qmail-Scanner: 1.10 (Clear:0. Processed in 0.06677 secs) Received: from unknown (HELO subdimension.com) (66.81.61.120) by 0 with SMTP; 15 May 2002 07:31:30 -0000 Date: Wed, 15 May 2002 00:30:24 -0700 (PDT) From: James Gibson X-X-Sender: james@camero.fantasia.tld To: vserver@solucorp.qc.ca Subject: Re: [vserver] Virtual Network Devices In-Reply-To: <200205150100.51587.whager@bellsouth.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-2.0 required=5.0 tests=IN_REP_TO version=2.01 Status: RO X-Status: X-Keywords: X-UID: 634 I doubt it.. not that it's a bad idea, it's just unnecessary.. look at it this way: your vserver is also trapped to a single IP address. Just set up your iptables to disallow any traffic from your internal subnet to or from the vserver, with the exception of your gateway. If you wanted to make your life even easier do it this way: say your subnet is 192.168.1.0/24. set your vserver to be on a different subnet, say 192.168.2.0/24, then configure your gateway to listen on that subnet as well (i.e. setup an alias). as long as the gateway box is configured to not route traffic onto the 192.168.1.0/24 subnet from the 192.168.2.0/24 subnet you should be fine. James Gibson On Wed, 15 May 2002, Billy Hager wrote: > Actually, that gives me an idea. My vserver is traped in a single security > context. Is there a netfilter module I can use to filter by security > context? > > Billy Hager > whager@bellsouth.net > > > On Tuesday 14 May 2002 09:41 pm, you wrote: > > I am not a networking expert, but if I may ask, would iptables work? I > > can imagine that you can setup rules so that no traffics coming from the > > outside can get in, or vice versa. > > > > Peter > > > > From vserver.error@solucorp.qc.ca Wed May 15 08:39:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4FCdooN027458; Wed, 15 May 2002 08:39:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4FB21q25286 for vserver.list; Wed, 15 May 2002 07:02:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4FB20h25280 for ; Wed, 15 May 2002 07:02:00 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:22024 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Wed, 15 May 2002 13:01:44 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Wed, 15 May 2002 13:01:35 +0200 Date: Wed, 15 May 2002 13:01:34 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] Support vserver name longer than 4 characters? Message-ID: <20020515130134.U25124@4t2.com> References: <20020513224054.c8a80746a024@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20020513224054.c8a80746a024@remtk.solucorp.qc.ca>; from jack@solucorp.qc.ca on Mon, May 13, 2002 at 10:40:54PM -0500 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-101.9 required=5.0 tests=IN_REP_TO,SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 635 On Mon, May 13, 2002 at 10:40:54PM -0500, Jacques Gelinas wrote: > The mistake came from looking at ifconfig output. ifconfig truncate the > network device name while formating, leaving only 4 characters visible. > > 10 should be plenty. Note that newvserver doest no enforce any limit. And if you already have the IP aliases defined on the hosting system (no IPROOTDEV in the config) I don't see a limit. I have a box where my vserver names are the FQDNames of the hosted systems. Or might this change in future releases? Tom From vserver.error@solucorp.qc.ca Wed May 15 11:09:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4FF9aoN028534; Wed, 15 May 2002 11:09:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4FDWaa29140 for vserver.list; Wed, 15 May 2002 09:32:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns.kopteri.net (ns.kopteri.net [212.246.72.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4FDWZh29136 for ; Wed, 15 May 2002 09:32:36 -0400 Received: from netland.fi (gw.netland.fi [212.246.72.6]) by ns.kopteri.net (8.12.1/8.11.2) with ESMTP id g4FDWYBn003700 for ; Wed, 15 May 2002 16:32:35 +0300 Message-ID: <3CE2C4BD.9090306@netland.fi> Date: Wed, 15 May 2002 16:27:41 -0400 From: Jukka Laaksola User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0rc1) Gecko/20020417 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] NIS problem in vservers Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 636 Hi there! I am having a problem with vserver v0.17 and kernel 2.4.18ctx-10. My vserver root has IP 10.10.10.35 and I have two virtual servers: v1 is 10.10.10.40 and v2 is 10.10.10.41. There is a second computer with IP 10.10.10.18. The goal is to get the NIS working between the virtual servers. When I am having a NIS server on v1 and a NIS client on the second computer everything works fine. But a NIS client on a virtual server doesn't found the NIS server on other virtual server or on the second computer. Here is a Ethereal's capture when I am having NIS server on the second computer, 10.10.10.18, and NIS client on v2, 10.10.10.41. Portmap handling looks good, but the source IP changes to vserver root's IP on YPSERV-protocol... Then NIS server doesn't answer anymore. wierd? Ethereal capture: Source Destination Protocol Info ----------- ----------- -------- ---- 10.10.10.41 10.10.10.18 Portmap V2 GETPORT Call XID 0x6a4f3187 10.10.10.18 10.10.10.41 Portmap V2 GETPORT Reply XID 0x6a4f3187 10.10.10.41 10.10.10.18 Portmap V2 GETPORT Call XID 0x61709c74 10.10.10.18 10.10.10.41 Portmap V2 GETPORT Reply XID 0x61709c74 10.10.10.35 10.10.10.18 YPSERV V2 DOMAIN_NONACK Call XID 0x5e1ce23c 10.10.10.35 10.10.10.18 YPSERV V2 DOMAIN_NONACK Call XID 0x5f1ce23c My v1.conf and v2.conf: IPROOT=10.10.10.4x IPROOTDEV=eth0 S_HOSTNAME=10.10.10.4x S_DOMAINNAME=our_nis.domain S_FLAGS="lock nproc" ULIMIT="-H -u 1000" S_CAPS="CAP_SYS_RESOURCE CAP_NET_RAW CAP_NET_BIND_SERVICE" I have tried every CAP_NET_* combination in the S_CAPS, but nothing works.. And there is an other strange thing with IPs. I have NFSD on v1, 10.10.10.40, and I am mounting v1:/home on the vserver root, 10.10.10.35, over NFS it works ok. I can read and write NFSed directory. But on the v1's log says: mountd[6738]: NFS mount of /home attempted from 10.10.10.40 mountd[6738]: /home has been mounted by 10.10.10.40 There should be 10.10.10.35, right? That's not a big problem because NFS works fine, but I think there might be a connection between these two problems. Many thanks Jukka -- Jukka Laaksola From vserver.error@solucorp.qc.ca Wed May 15 14:43:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4FIhboN030160; Wed, 15 May 2002 14:43:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4FHBtC02391 for vserver.list; Wed, 15 May 2002 13:11:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-74-250.telepac.pt [213.13.74.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4FHBsh02387 for ; Wed, 15 May 2002 13:11:54 -0400 Received: (qmail 32147 invoked from network); 15 May 2002 17:10:30 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 15 May 2002 17:10:30 -0000 Message-ID: <3CE29685.9080801@vgertech.com> Date: Wed, 15 May 2002 18:10:29 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0rc1) Gecko/20020502 Debian/1.0rc1-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] screen in vserver? References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=-99.9 required=5.0 tests=SUBJ_ENDS_IN_Q_MARK,A_FROM_IN_AUTO_WLIST version=2.01 Status: RO X-Status: X-Keywords: X-UID: 637 Hi, this is because /dev/pts/2 is crw------- root root this can happen if you login as root and then "su - USER". If you "enter" the vserver via ssh, /dev/pts/2 will have the permissions you want. (This is "normal" behaviour even in the "main" server) HTH, Nuno Silva Justin M Kuntz wrote: > Hello -- > > Sorry for another probably dumb question - but I'm having trouble getting > "screen" to work in a vserver. I get an error about: > Cannot open your terminal '/dev/pts/2' - please check. > > I intentially don't want my vservers to be tied at this point to any of the > virtual terminals accessible from the main keyboard console. > > Is it possibly to fake the pts entries for screen? If so, do I need to > create multiple pts entries using mknod? In other words, am I limited to > the number of pts as the number of instances of screen I can use per > vserver? > > Thanks, > > Justin > From vserver.error@solucorp.qc.ca Fri May 17 17:05:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4HL5JoN022757; Fri, 17 May 2002 17:05:19 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4HJJS707919 for vserver.list; Fri, 17 May 2002 15:19:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from office.atnet.at (media.atnet.at [194.152.160.170]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4HJJQh07909 for ; Fri, 17 May 2002 15:19:27 -0400 Received: by office.atnet.at (Postfix, from userid 4713) id 568592FED1; Fri, 17 May 2002 21:19:20 +0200 (CEST) Sender: gst@media.atnet.at To: vserver@solucorp.qc.ca Subject: [vserver] suggestion: extended chroot From: Guenther Starnberger Date: 17 May 2002 21:19:20 +0200 Message-ID: Lines: 40 User-Agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/20.7 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-Spam-Status: No, hits=0.0 required=5.0 tests= version=2.01 Status: RO X-Status: X-Keywords: X-UID: 638 i just read the thread about about using vserver and apache ("[vserver] apache security ..."). using a shared apache with vserver would be cool, but there is one feature that i really miss :) many users (at least on my webserver), don't set the access rights on their files right, and allow other users to read passwds, etc. in their scripts. some users even store world writable files :/ it would be possible to modify suexec to execute each cgi of a user in his own vserver - but the problem with this method is, that i would have to create/copy all the required system files/dirs for each user. a nice solution would be, to create a directory in the vserver tree for each user, and disallow access to the directories of all other users (and make them invisible) for this user (at kernel level). for example: /home/vserverchroot/ ... is the subdir where i store my vserver rootdir /home/vserverchroot/home/foo/ ... homedir of foo /home/vserverchroot/home/bar/ ... homedir of bar i could then place some special vserverchroot call in my suexec.c and can be sure that user "foo" isn't able to sniff on the files of "bar". (he can't even see his homedirectory). i don't have to copy all the system files because each user is in the same "vserverchroot". additionally i could set the context of the cgi to the uid of "foo" in suexec so that he can only see his own processes. cu /gst -- /// guenther starnberger || at-net || JID: \\\ \\\ GST-RIPE || http://www.vbs.at/ || gst@jabber.at /// From vserver.error@solucorp.qc.ca Sat May 18 16:37:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4IKbONC009779; Sat, 18 May 2002 16:37:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4IIrg206911 for vserver.list; Sat, 18 May 2002 14:53:42 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linux969.dn.net ([216.167.77.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4IIrfk06907 for ; Sat, 18 May 2002 14:53:41 -0400 Received: from mbyrk (tunnel-44-17.vpn.uib.no [129.177.44.17]) by linux969.dn.net (8.9.3/8.9.3) with ESMTP id UAA06636 for ; Sat, 18 May 2002 20:53:41 +0200 From: "Magnus Byrkjeflot" To: Subject: [vserver] Memory problem. Date: Sat, 18 May 2002 20:53:40 +0200 Message-ID: <000301c1fe9d$55337200$11720d0a@mbyrk> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 639 Hello. I have setup vserver on my RH7.3 Athlon system, and I'm having problems with something that looks like memory leaks. The system boots up fine with 50MB memory usage, but when I start one or two vservers the memory usage jumps to 600MB. I've got 1G memory installed, and have compiled the kernel with big memory support.. (?) Thanks, Magnus Byrkjeflot From vserver.error@solucorp.qc.ca Sat May 18 16:42:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4IKgFNC009816; Sat, 18 May 2002 16:42:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4IIrfV06905 for vserver.list; Sat, 18 May 2002 14:53:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linux969.dn.net ([216.167.77.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4IIrfk06901 for ; Sat, 18 May 2002 14:53:41 -0400 Received: from mbyrk (tunnel-44-17.vpn.uib.no [129.177.44.17]) by linux969.dn.net (8.9.3/8.9.3) with ESMTP id UAA06633 for ; Sat, 18 May 2002 20:53:40 +0200 From: "Magnus Byrkjeflot" To: Subject: [vserver] Memory problems cont. Date: Sat, 18 May 2002 20:53:40 +0200 Message-ID: <000201c1fe9d$54809cc0$11720d0a@mbyrk> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 640 Forgot to mention that I'm running the latest ctx kernel on a stripped down RH7.3 system. This means no services running except sshd in root server. USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND root 1 0.0 0.0 1372 480 ? S 14:02 0:13 init [3] root 2 0.0 0.0 0 0 ? SW 14:02 0:00 [keventd] root 3 0.0 0.0 0 0 ? SWN 14:02 0:00 [ksoftirqd_CPU0] root 4 0.0 0.0 0 0 ? SW 14:02 0:00 [kswapd] root 5 0.0 0.0 0 0 ? SW 14:02 0:00 [bdflush] root 6 0.0 0.0 0 0 ? SW 14:02 0:14 [kupdated] root 7 0.1 0.0 0 0 ? SW 14:02 0:37 [kjournald] root 479 0.0 0.0 1428 588 ? S 14:03 0:00 syslogd -m 0 root 484 0.0 0.0 1364 444 ? S 14:03 0:00 klogd -x rpc 504 0.0 0.0 1504 540 ? S 14:03 0:00 portmap root 645 0.0 0.1 2620 1232 ? S 14:03 0:00 /usr/sbin/sshd root 708 0.0 0.0 1536 616 ? S 14:03 0:00 crond root 745 0.0 0.0 1636 628 ? S 14:03 0:00 rhnsd --interval 120 root 752 0.0 0.0 1344 400 tty1 S 14:03 0:00 /sbin/mingetty tty1 root 753 0.0 0.0 1344 400 tty2 S 14:03 0:00 /sbin/mingetty tty2 root 754 0.0 0.0 1344 400 tty3 S 14:03 0:00 /sbin/mingetty tty3 root 755 0.0 0.0 1344 400 tty4 S 14:03 0:00 /sbin/mingetty tty4 root 756 0.0 0.0 1344 400 tty5 S 14:03 0:00 /sbin/mingetty tty5 root 757 0.0 0.0 1344 400 tty6 S 14:03 0:00 /sbin/mingetty tty6 root 760 0.0 0.1 3580 1924 ? R 14:03 0:00 /usr/sbin/sshd root 761 0.0 0.1 2456 1308 pts/0 S 14:03 0:00 -bash root 1462 0.0 0.0 2716 756 pts/0 R 20:45 0:00 ps -aux From vserver.error@solucorp.qc.ca Mon May 20 08:15:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4KCEtNC019146; Mon, 20 May 2002 08:14:56 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4KAnVi04936 for vserver.list; Mon, 20 May 2002 06:49:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail4.messagelabs.com (mail4.messagelabs.com [212.125.75.12]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4KAnUk04932 for ; Mon, 20 May 2002 06:49:31 -0400 X-VirusChecked: Checked Received: (qmail 15774 invoked from network); 20 May 2002 10:49:24 -0000 Received: from porgy.logica.co.uk (158.234.250.67) by server-6.tower-4.messagelabs.com with SMTP; 20 May 2002 10:49:24 -0000 Received: from lat.logica.co.uk (lat.logica.co.uk [158.234.190.58]) by porgy.logica.co.uk (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id LAA23753 for ; Mon, 20 May 2002 11:49:22 +0100 Received: from maximus (158.234.191.190 [158.234.191.190]) by lat.logica.co.uk with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2448.0) id KYY0VTVK; Mon, 20 May 2002 18:49:18 +0800 Subject: [vserver] Default route for each vserver From: Lew Teck Kheng To: Vserver mailing list Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.5.99 Date: 20 May 2002 11:48:47 +0100 Message-Id: <1021891732.9815.167.camel@maximus> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 641 hi all : I have multiple apache web server running on private IP at 192.168.100.x but i seem to connect to the outside network or gateway. Is there anyway i can get network in vserver to connect to the outside world , let say internet ? This is the only last thing i need to do to get the whole cluster running. many many thanks cheers ________________________________________________________________________ This email has been scanned for all viruses by the MessageLabs SkyScan service. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.messagelabs.com ________________________________________________________________________ From vserver.error@solucorp.qc.ca Mon May 20 23:09:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4L39BNC028010; Mon, 20 May 2002 23:09:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4L1TSb28338 for vserver.list; Mon, 20 May 2002 21:29:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from billsbox.net (adsl-157-152-254.gnv.bellsouth.net [66.157.152.254]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4L1TRk28334 for ; Mon, 20 May 2002 21:29:27 -0400 Received: from localhost (localhost [[UNIX: localhost]]) by billsbox.net (8.11.6/8.11.6) id g4L1SMK02400 for vserver@dns.solucorp.qc.ca; Mon, 20 May 2002 21:28:22 -0400 Content-Type: text/plain; charset="us-ascii" From: Billy Hager To: Vserver mailing list Subject: [vserver] Network troubles. Date: Mon, 20 May 2002 21:28:21 -0400 User-Agent: KMail/1.4.1 MIME-Version: 1.0 Message-Id: <200205202128.22027.whager@bellsouth.net> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g4L1TRk28334 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 642 All right here are my troubles. :( I have a vserver located on a machine on my local network. In comming connections from anywhere(internet/local net) work fine. Out going connections to the local network work fine. Out going connections to computers outside my local network (i.e. anything where I have to go through my default gw) don't seem to be working properly. More specificly, connections comming from the vserver don't apear to be masqueraded when they should be. I'm sure It's just something stupid that I'm doing, so here goes some more info about my network .... Interfaces: eth0: 192.168.1.223/24 <---- My local network eth0:1 192.168.2.223/24 <---- IP addr my vserver is bound to eth1: <---- DSL Modem plugged in here ppp0: <--- pppoe device for DSL. Dynamic IP. (default gw) Netfilter setup: /proc/sys/net/ipv4/ip_forward = 1 /proc/sys/net/ipv4/ip_dynaddr = 1 iptables -t nat -A POSTROUTING -o ppp+ -j MASQUERADE Everything else is set do accept by default. This isn't secure, but I'm just trying to get this to work first. I believe the packets aren't getting masqueraded correctly because of this sample output from "tcpdump -i ppp0" when I run "dig google.com". 09:03:37.445715 192.168.2.223.mpnjsomb > 205.152.46.254.domain: 4+ A? google.com. (28) (DF) 09:03:42.446408 192.168.2.223.srsp > 205.152.0.5.domain: 4+ A? google.com. (28) (DF) Using the exact same filesystem I have achieved out going net access when I connected my DSL modem to a linksys DSL/CABLE router on my network. I would love to just use the linksys device, unfortunately, it's unreliable. I can't depend on it to hold an internet connection. If I had some more hardware I would set up a second box as a firewall and everything would be great, but I dont. Has anyone ever been in a simular situation? -- Billy Hager | AIM: wwhager2 whager@bellsouth.net | http://www.billsbox.net From vserver.error@solucorp.qc.ca Tue May 21 20:21:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4M0LKNC007501; Tue, 21 May 2002 20:21:20 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4LMiMk29414 for vserver.list; Tue, 21 May 2002 18:44:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from billsbox.net (adsl-157-152-254.gnv.bellsouth.net [66.157.152.254]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4LMiLk29410 for ; Tue, 21 May 2002 18:44:22 -0400 Received: from localhost (localhost [[UNIX: localhost]]) by billsbox.net (8.11.6/8.11.6) id g4LMhKO02409 for vserver@dns.solucorp.qc.ca; Tue, 21 May 2002 18:43:20 -0400 Content-Type: text/plain; charset="us-ascii" From: Billy Hager To: Vserver mailing list Subject: [vserver] Follow up: Network troubles. Date: Tue, 21 May 2002 18:43:19 -0400 User-Agent: KMail/1.4.1 MIME-Version: 1.0 Message-Id: <200205211843.19925.whager@bellsouth.net> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g4LMiLk29410 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 643 What I have done since my last message .... My connection to the internet is on a dynamic IP address, so when I set up NAT, I set the target to MASQUERADE, like every good boy should. ;) It seems, though, that NAT doesn't change the source address of packets comming from my vserver when the connection origionates from the vserver. i.e My vserver is on eth:1 192.168.2.223 and my connection to the internet is on ppp0. Any packet the vserver sent to the internet still had 192.168.2.223 as the source address when the connection originated from the vserver. That's what happens when MASQUERADE is the target. when I use "SNAT --to ", NAT handles packets comming from connections initiated on the vserver properly. It changes the source address to reflect the address I give to it as a command line option For exactness, here is what I was using .... iptables -t nat -A POSTROUTING -o ppp+ -j MASQUERADE And what works ... iptables -t nat -A POSTROUTING -o ppp+ -j SNAT --to My start up scripts are going to be a little longer now, but I've got something that works. Does anyone know why SNAT works but not MASQUERADE? -- Billy Hager | AIM: wwhager2 whager@bellsouth.net | http://www.billsbox.net From vserver.error@solucorp.qc.ca Wed May 22 21:08:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4N189NC022257; Wed, 22 May 2002 21:08:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4MNTZZ31713 for vserver.list; Wed, 22 May 2002 19:29:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp015.mail.yahoo.com (smtp015.mail.yahoo.com [216.136.173.59]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4MNTYk31709 for ; Wed, 22 May 2002 19:29:34 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 22 May 2002 23:29:33 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] Possible bug on server status report Date: Wed, 22 May 2002 18:29:29 -0500 Message-ID: <000001c201e8$85c02dc0$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: <20020513225904.c66f938c382b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 644 I have just encountered something really strange. I set up a test vserver to test software compatibility, and I created it on top of an rh72 reference server. After a few reboots/installation and so on, the server would no longer start, and vserver-stat shows that it is not running. Being a lazy person, I decided to just wipe it out and rebuild a new testing environment, but when I did rm -rf /vservers/test, it gave me permission denied and cannot unlink message. I know from my experience that this means the server is still running (because its complaining about /dev and /proc). I rebooted the main server, but the error persists. I then did a vserver test stop (even though all tools report that test isn't running), and then I am able to remove the server. I suspect that somehow something isn't clean up properly, or that the server is started, but not reported to be so. I don't really have a problem on this; but I thought the developer may want to be aware of this. Peter From vserver.error@solucorp.qc.ca Fri May 24 17:35:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4OLZENC014710; Fri, 24 May 2002 17:35:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4OLFPI28044 for vserver.list; Fri, 24 May 2002 17:15:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.acun.net (mail.acun.net [206.27.86.5]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4OLFNk28039 for ; Fri, 24 May 2002 17:15:24 -0400 Received: from darkstar (nosyarntyou@darkstar.acun.net [206.27.86.12]) by mail.acun.net (8.11.6/8.11.6) with ESMTP id g4OLG5628425 for ; Fri, 24 May 2002 17:16:05 -0400 Content-Type: text/plain; charset="us-ascii" From: George To: vserver@solucorp.qc.ca Subject: [vserver] Vservers as routers Date: Fri, 24 May 2002 17:15:45 -0400 X-Mailer: KMail [version 1.4] MIME-Version: 1.0 Message-Id: <200205241715.45761.thumper@acun.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g4OLFNk28039 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 645 I wanted to solve a problem and use one physical machine. How I would like it to work: I have a wan card connecting to a frame-relay network. I have a 4 port ethernet card to make my local connections. Now I've had problems with the single machine (no vservser) even with iptables because the wan connects ( are all bridged to eth0 ( in this example ) and several types of traffic are difficult to keep off of the LAN, thus the need to connect to a non-bridged box for routing and filtering of trash. As far as I can tell vservers bind to 1 address or all addresses, I need to define a range of ip's to bind to to make this work. This assumes that the bridge does not poison the network at some lower level. Wan bridged to eth0, eth0 and all wan ips defined in a vserver as *bridge* eth0 physically connected to eth1 by crossover cable. eth1, eth2, and eth3 are bound to the vserver as *router* the root server should not have any access anywhere. This works with 2 machines, but, would be cool to do it with 1 and vservers. Any ideas? Sub note: Add to feature wish list: definable ranges of ips to allow vservers to bind to. George From vserver.error@solucorp.qc.ca Fri May 24 20:26:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4P0QMNC016227; Fri, 24 May 2002 20:26:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4P045w31579 for vserver.list; Fri, 24 May 2002 20:04:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-123-48-173.in-addr.btopenworld.com [213.123.48.173]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4P043k31575 for ; Fri, 24 May 2002 20:04:03 -0400 Received: from 213.123.48.173 by john-new ([213.123.48.173] running VPOP3) with SMTP for ; Sat, 25 May 2002 01:03:50 +0100 From: "John Lyons" To: Subject: [vserver] rebootmgr failing to start. Date: Sat, 25 May 2002 01:03:49 +0100 Message-ID: <003701c2037f$a6760ec0$ad307bd5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: <200205241715.45761.thumper@acun.com> X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 646 I'm running ctx-10 kernel 2.4.18 and vserver version 18. everything works fine except starting the reboot manager. I can't see anything in the scrip to point to what it's trying to bind to? [root@svr10 init.d]# ./rebootmgr start Starting the reboot manager [root@svr10 init.d]# bind: Permission denied Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Sat May 25 06:03:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4PA2rNC021339; Sat, 25 May 2002 06:02:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4P9ajI09269 for vserver.list; Sat, 25 May 2002 05:36:45 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ahriman.bucharest.roedu.net (ahriman.bucharest.roedu.net [141.85.128.71]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4P9aik09265 for ; Sat, 25 May 2002 05:36:44 -0400 Received: (qmail 14242 invoked by uid 1000); 25 May 2002 09:46:43 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 25 May 2002 09:46:43 -0000 Date: Sat, 25 May 2002 12:46:43 +0300 (EEST) From: Mihai RUSU X-X-Sender: To: Subject: [vserver] vserver + xfs Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 647 Hi I need to compile and use a vserver + XFS enabled kernel. Because of stability issues we use in production usually redhat based kernels (like 2.4.9-31 XFS 1.1). If I try tu patch a 2.4.9-31XFS_1.1 with patch-2.4.18-ctx10 I get several failures. Does anyone have a XFS + vserver kernel ? success story ? Thanks ---------------------------- Mihai RUSU Disclaimer: Any views or opinions presented within this e-mail are solely those of the author and do not necessarily represent those of any company, unless otherwise specifically stated. From vserver.error@solucorp.qc.ca Mon May 27 21:44:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4S1inNC004446; Mon, 27 May 2002 21:44:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4S1GMF04642 for vserver.list; Mon, 27 May 2002 21:16:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hotmail.com (f105.law3.hotmail.com [209.185.241.105]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4S1GLk04638 for ; Mon, 27 May 2002 21:16:21 -0400 Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Mon, 27 May 2002 18:16:18 -0700 Received: from 209.128.145.232 by lw3fd.law3.hotmail.msn.com with HTTP; Tue, 28 May 2002 01:16:18 GMT X-Originating-IP: [209.128.145.232] From: "Nathan Hoult" To: vserver@solucorp.qc.ca Subject: [vserver] 2 people 1 computer possibility? Date: Tue, 28 May 2002 01:16:18 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 28 May 2002 01:16:18.0609 (UTC) FILETIME=[452E0A10:01C205E5] Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 648 I have read some of the information about the Vserver but I didn't see my question answered. I would like to have 2 people using the computer at once by having 2 mice,keyboards,sound cards, and video cards. There is a person who has done this (http://cambuca.ldhs.cetuc.puc-rio.br/multiuser/) with a hack to Xfree86 4.1 but it doesn't always work and is buggy. #1 have to reboot and make PCI card the bootup card. #2 have to start it second X in a certian amount of time ( < 20min i think...) #3 can not chnage VT once they are both started (no ctrl+alt F[x]) or i get a hard freeze (cant even telent in) #4 cant do full screen on the AGP screen. #5 do not have second sound card yet BUT if i did no way that i know of to output display X to X sound card, have to do it per program (if it can be done). #6 cant use GDM as a login manager, workes but about 33% of the time if the (PCI) logs out it will freeze the AGP user. #7 only SOME card combinations work, fortunetly i had a heap of old ones around. once up it is stable. It CAN do it but heck last weekend i tried to get Unreal Tournament working because a friend came over, and man it took a while to set up than i had to tell them all the problems... played for a bit but they still see no reason to leave Windows. One of the problems XFree has is the VT only allowed 1 keyboard input. so... Could I use a modifyed Vserver, install X on it and tell it to use the USB keyboard as input(/dev/input/event1), second video card (PCI 0:7:0), second sound card(dont have yet), and mouse(/dev/input/mice)? and yes, I KNOW you can export X to another computer but ever tried to play "Return to castle Wolfstine" or a DVD over 100M/bit? :-) (maybe over gigabit?) I use: Mandrake 8.1 with modifyed kernel for usb mouse/keyboard Ath 1.33 256 meg 2100 DDR GF2 Pro (AGP) NVIDIA TNT (PCI) YES this has enough power to play 2 player Diablo2 with server with no/little lag. YES it is cheeper to buy a dual Ath now and have it for 4 years than 2 celrons now and 2 P4 in 2 years. (Celrons wouldent play anything!) NO i am not the only one who wants this. i have got a couple e-mails just from people looking on the XFree mainling list NO the 2 monitors do not interfeer with eachother. YES i know that this is not the intent of the Vserver. _________________________________________________________________ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx From vserver.error@solucorp.qc.ca Tue May 28 08:50:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4SCnqNC014316; Tue, 28 May 2002 08:49:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4SCSmG21846 for vserver.list; Tue, 28 May 2002 08:28:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4SCSlk21842 for ; Tue, 28 May 2002 08:28:48 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 1347EFFC for ; Tue, 28 May 2002 14:30:49 +0200 (CEST) Subject: [vserver] using vserver eth-aliases in iptables From: klavs klavsen To: Vserver Mailinglist Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-sIZ9zb5kpfLjntlqLfUK" X-Mailer: Ximian Evolution 1.0.5 Date: 28 May 2002 14:28:41 +0200 Message-Id: <1022588922.2205.23.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 649 --=-sIZ9zb5kpfLjntlqLfUK Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi guys, I have a small annoyance/problem. I use a script called fwbuilder, when I generate my firewall script, and I wanted to add the rules for my vservers on the machine. To do this, I added a new interface called eth0:web (my vserver name is web) and then when it adds the rules for it, iptables won't accept an -i eth0:web interface :-( Do you have any ideas if this is something that can be easily fixed? Shouldn't one be able to use the vserver interfaces as any other alias with iptables? --=20 Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant=20 kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA=20 Fingerprint =3D A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter --=-sIZ9zb5kpfLjntlqLfUK Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQA883f54c1kHlhtW8oRArfFAJ9zLWLQswFMwH4jTuthDEElPKOGYgCZASn0 D54ZdSOkFzSzsvX0NAjd5mg= =/0Wb -----END PGP SIGNATURE----- --=-sIZ9zb5kpfLjntlqLfUK-- From vserver.error@solucorp.qc.ca Tue May 28 10:17:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4SEGpNC015289; Tue, 28 May 2002 10:16:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4SDfLZ23686 for vserver.list; Tue, 28 May 2002 09:41:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-195-219.in-addr.btopenworld.com [213.122.195.219]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4SDfKk23682 for ; Tue, 28 May 2002 09:41:20 -0400 Received: from 192.168.0.1 by john-new ([192.168.0.1] running VPOP3) with SMTP for ; Tue, 28 May 2002 14:41:03 +0100 From: "John Lyons" To: Subject: RE: [vserver] using vserver eth-aliases in iptables Date: Tue, 28 May 2002 14:41:02 +0100 Message-ID: <011301c2064d$4f464950$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal In-Reply-To: <1022588922.2205.23.camel@amd.vsen.dk> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 650 > To do this, I added a new interface called eth0:web (my > vserver name is > web) and then when it adds the rules for it, iptables won't > accept an -i > eth0:web interface :-( > > Do you have any ideas if this is something that can be easily fixed? This is the script I use for my firewall accounting. IPTABLES="/sbin/iptables" EXTERNAL_INTERFACE="eth0" SUBNET1="1.2.3" FIRST1=10 LAST1=50 I=$FIRST1; while [ $I -le $LAST1 ]; do $IPTABLES -A INPUT -i $EXTERNAL_INTERFACE -d $SUBNET1.$I -j ACCEPT $IPTABLES -A OUTPUT -o $EXTERNAL_INTERFACE -s $SUBNET1.$I -j ACCEPT let I=$I+1; done; Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Wed May 29 02:30:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4T6UbNC025196; Wed, 29 May 2002 02:30:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4T63Id15180 for vserver.list; Wed, 29 May 2002 02:03:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4T63Ik15176 for ; Wed, 29 May 2002 02:03:18 -0400 Received: from remtk.solucorp.qc.ca (g36-73.citenet.net [206.123.36.73]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g4T68GA76395 for ; Wed, 29 May 2002 02:08:16 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g4T5pt602735 for vserver@solucorp.qc.ca; Wed, 29 May 2002 01:51:55 -0400 From: Jacques Gelinas Date: Wed, 29 May 2002 01:51:55 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Memory problem. X-mailer: tlmpmail 0.6 Message-ID: <20020529015155.1dc5450adbee@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 651 On Sat, 18 May 2002 20:53:40 -0500, Magnus Byrkjeflot wrote > Hello. > > I have setup vserver on my RH7.3 Athlon system, and I'm having problems > with something that looks like memory leaks. > The system boots up fine with 50MB memory usage, but when I start one or > two vservers the memory usage jumps to 600MB. I've got 1G memory > installed, and have compiled the kernel with big memory support.. What do you get if you execute the free command The important information is the last column of the -/+buffer line For example, on my notebook with 192meg, I have this total used free shared buffers cached Mem: 190996 176900 14096 0 1752 39684 -/+ buffers/cache: 135464 55532 Swap: 136512 11228 125284 I tells me that 55meg are still not used, yet only 14meg are free. The difference is in the cache. Linux (the kernel) caches as much as it can. Is this what you see ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed May 29 12:50:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4TGoLNC031388; Wed, 29 May 2002 12:50:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4TGHnb00456 for vserver.list; Wed, 29 May 2002 12:17:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4TGHnk00452 for ; Wed, 29 May 2002 12:17:49 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g4TGHk328458; Wed, 29 May 2002 09:17:46 -0700 Date: Wed, 29 May 2002 09:17:46 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: , Linuxconf Mailing List Subject: [vserver] Re: [linuxconf] re: What's up with Linuxconf!!? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 652 On Wed, 29 May 2002, Jacques Gelinas wrote: > To get linuxconf, pick from www.solucorp.qc.ca/linuxconf/download.hc. The > current version does work on rh7.3. > There is one known issues with IP aliases though. Jacques, Is this a problem for those of us using LC and Vservers? Rod -- Why is it so easy to throw caution to the wind. Shouldn't it be heavier and shaped like an anvil? Jon Anderson From vserver.error@solucorp.qc.ca Wed May 29 16:15:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4TKFMNC000985; Wed, 29 May 2002 16:15:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4TJsAA06201 for vserver.list; Wed, 29 May 2002 15:54:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.acun.net (mail.acun.net [206.27.86.5]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4TJs9k06197 for ; Wed, 29 May 2002 15:54:09 -0400 Received: from darkstar (nosyarntyou@darkstar.acun.net [206.27.86.12]) by mail.acun.net (8.11.6/8.11.6) with ESMTP id g4TJsEV27594 for ; Wed, 29 May 2002 15:54:15 -0400 Content-Type: text/plain; charset="iso-8859-1" From: George To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver + xfs Date: Wed, 29 May 2002 15:54:38 -0400 X-Mailer: KMail [version 1.4] References: In-Reply-To: MIME-Version: 1.0 Message-Id: <200205291554.38057.thumper@acun.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g4TJs9k06197 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 653 I applied the xfs patch to a stock 2.4.18 then applied the vserver patch and hand applied the hunks that failed, it compiles properly and runs. the only problem is you cannot do the unification of vservers. I had one other problem, not sure what it was caused by, after 28 days of uptime, klogd zombied and put a 68 load average on the server making it unuseable, forcing me to hard reset it. I'm beginning to rethink my choice, although XFS is what I consider the best choice, I may move to ext3 as I understand that unification of the vservers does work there, unless I missed something. I'm eating up disk space, so unfication has become important. George On Saturday 25 May 2002 5:46 am, Mihai RUSU wrote: > Hi > > I need to compile and use a vserver + XFS enabled kernel. Because of > stability issues we use in production usually redhat based kernels (like > 2.4.9-31 XFS 1.1). If I try tu patch a 2.4.9-31XFS_1.1 with > patch-2.4.18-ctx10 I get several failures. Does anyone have a XFS + > vserver kernel ? success story ? > > Thanks > > ---------------------------- > Mihai RUSU > > Disclaimer: Any views or opinions presented within this e-mail are solely > those of the author and do not necessarily represent those of any company, > unless otherwise specifically stated. From vserver.error@solucorp.qc.ca Wed May 29 22:43:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4U2gcNC004608; Wed, 29 May 2002 22:42:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4U2H8l16422 for vserver.list; Wed, 29 May 2002 22:17:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp013.mail.yahoo.com (smtp013.mail.yahoo.com [216.136.173.57]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g4U2H7k16418 for ; Wed, 29 May 2002 22:17:07 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 30 May 2002 02:17:07 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] Wtmp and last not working? Date: Wed, 29 May 2002 21:17:09 -0500 Message-ID: <000001c20780$1a6c2ae0$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 654 I noticed that wtmp and the "last" command don't work in vserver. Any reason why or anyway to fix it? Thanks, Peter From vserver.error@solucorp.qc.ca Thu May 30 08:22:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g4UCMUNC010204; Thu, 30 May 2002 08:22:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g4UC3il32109 for vserver.list; Thu, 30 May 2002 08:03:44 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g4UC3hk32105 for ; Thu, 30 May 2002 08:03:44 -0400 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 4.04) id 17DOed-0007hb-00; Thu, 30 May 2002 09:03:43 -0300 Date: Thu, 30 May 2002 09:03:43 -0300 (ADT) From: James MacLean To: Subject: [vserver] Abend in skbuff.c Message-ID: MIME-Version: 1.0 Content-Type: MULTIPART/MIXED; BOUNDARY="-477232845-1193377641-1022760223=:27954" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 655 This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. Send mail to mime@docserver.cac.washington.edu for more info. ---477232845-1193377641-1022760223=:27954 Content-Type: TEXT/PLAIN; charset=US-ASCII Hi Folks, Wondering does this look like a possible vserver bug, or just a kernel bug? If it is a kernel bug, who is the correct person to present it too? It's 2.4.19-pre8 with vserver patches, plus others. Since it's in skbuff.c I expect I should be forwarding this elsewhere, but to whom? I did not see any skbuff patches after pre4-5. JES -- James B. MacLean macleajb@ednet.ns.ca Department of Education Nova Scotia, Canada B3M 4B2 ---477232845-1193377641-1022760223=:27954 Content-Type: TEXT/plain; name="ksymabend.txt" Content-Transfer-Encoding: BASE64 Content-ID: Content-Description: Abend in skbuff.c Content-Disposition: attachment; filename="ksymabend.txt" a3N5bW9vcHMgMi40LjUgb24gaTY4NiAyLjQuMTktcDhhbGwuICBPcHRpb25z IHVzZWQNCiAgICAgLVYgKGRlZmF1bHQpDQogICAgIC1rIC9wcm9jL2tzeW1z IChkZWZhdWx0KQ0KICAgICAtbCAvcHJvYy9tb2R1bGVzIChkZWZhdWx0KQ0K ICAgICAtbyAvbGliL21vZHVsZXMvMi40LjE5LXA4YWxsLyAoZGVmYXVsdCkN CiAgICAgLW0gL3Vzci9zcmMvbGludXgvU3lzdGVtLm1hcCAoZGVmYXVsdCkN Cg0KV2FybmluZzogWW91IGRpZCBub3QgdGVsbCBtZSB3aGVyZSB0byBmaW5k IHN5bWJvbCBpbmZvcm1hdGlvbi4gIEkgd2lsbA0KYXNzdW1lIHRoYXQgdGhl IGxvZyBtYXRjaGVzIHRoZSBrZXJuZWwgYW5kIG1vZHVsZXMgdGhhdCBhcmUg cnVubmluZw0KcmlnaHQgbm93IGFuZCBJJ2xsIHVzZSB0aGUgZGVmYXVsdCBv cHRpb25zIGFib3ZlIGZvciBzeW1ib2wgcmVzb2x1dGlvbi4NCklmIHRoZSBj dXJyZW50IGtlcm5lbCBhbmQvb3IgbW9kdWxlcyBkbyBub3QgbWF0Y2ggdGhl IGxvZywgeW91IGNhbiBnZXQNCm1vcmUgYWNjdXJhdGUgb3V0cHV0IGJ5IHRl bGxpbmcgbWUgdGhlIGtlcm5lbCB2ZXJzaW9uIGFuZCB3aGVyZSB0byBmaW5k DQptYXAsIG1vZHVsZXMsIGtzeW1zIGV0Yy4gIGtzeW1vb3BzIC1oIGV4cGxh aW5zIHRoZSBvcHRpb25zLg0KDQpNYXkgMzAgMDg6MzU6MTYgbWlsbyBrZXJu ZWw6IGtlcm5lbCBCVUcgYXQgc2tidWZmLmM6MTc0IQ0KTWF5IDMwIDA4OjM1 OjE2IG1pbG8ga2VybmVsOiBpbnZhbGlkIG9wZXJhbmQ6IDAwMDANCk1heSAz MCAwODozNToxNiBtaWxvIGtlcm5lbDogQ1BVOiAgICAxDQpNYXkgMzAgMDg6 MzU6MTYgbWlsbyBrZXJuZWw6IEVJUDogICAgMDAxMDpbPGMwMjFhM2NhPl0g ICAgVGFpbnRlZDogR0YNCk1heSAzMCAwODozNToxNiBtaWxvIGtlcm5lbDog RUZMQUdTOiAwMDAxMDI4Ng0KTWF5IDMwIDA4OjM1OjE2IG1pbG8ga2VybmVs OiBlYXg6IDAwMDAwMDNhICAgZWJ4OiBmMmQzNWUwMCAgIGVjeDogZmZmZmZm ZmYgICBlZHg6IGYwZTk4MDAwDQpNYXkgMzAgMDg6MzU6MTYgbWlsbyBrZXJu ZWw6IGVzaTogMDAwMDAwMDAgICBlZGk6IDAwMDAwMWYwICAgZWJwOiBmMWJj ZWFkYyAgIGVzcDogZjBlOTlkOTANCk1heSAzMCAwODozNToxNiBtaWxvIGtl cm5lbDogZHM6IDAwMTggICBlczogMDAxOCAgIHNzOiAwMDE4DQpNYXkgMzAg MDg6MzU6MTYgbWlsbyBrZXJuZWw6IFByb2Nlc3MgZHNtYyAocGlkOiA1OTkz LCBzdGFja3BhZ2U9ZjBlOTkwMDApDQpNYXkgMzAgMDg6MzU6MTYgbWlsbyBr ZXJuZWw6IFN0YWNrOiBjMDJhYTQ4MCBjMDIzYmJiZCBmMmQzNWUwMCAwMDAw MDAwMCBmMWJjZWEwMCBjMDIzYmJiZCAwMDAwMDY1NCAwMDAwMDFmMCANCk1h eSAzMCAwODozNToxNiBtaWxvIGtlcm5lbDogICAgICAgIGY2YmU4NjAwIDAw MDAwNWI0IDAwMDAwMjg2IGY2NTE1NmMwIDAwMDAwNWVhIGY4OTBhMDZiIGYy ZDQ5ODQwIGYxYmNlYWRjIA0KTWF5IDMwIDA4OjM1OjE2IG1pbG8ga2VybmVs OiAgICAgICAgZjBlOTllMDAgZjYwMmY4YTAgZjBlOTgwMDAgNDEzMGFlMDgg MDAwMDVhYTQgMDAwMGE1NjQgMDAwMDA1YjQgMDAwMDAwMDAgDQpNYXkgMzAg MDg6MzU6MTYgbWlsbyBrZXJuZWw6IENhbGwgVHJhY2U6IFs8YzAyM2JiYmQ+ XSBbPGMwMjNiYmJkPl0gWzxmODkwYTA2Yj5dIFs8YzAyMWU3ZmU+XSBbPGMw MjFiNmI1Pl0gDQpNYXkgMzAgMDg6MzU6MTYgbWlsbyBrZXJuZWw6ICAgIFs8 YzAyNWE4ODM+XSBbPGMwMjE2YmVlPl0gWzxjMDI0ZDNmND5dIFs8YzAyMTdj MGQ+XSBbPGMwMjMzMjg0Pl0gWzxjMDIzMzY4ND5dIA0KTWF5IDMwIDA4OjM1 OjE2IG1pbG8ga2VybmVsOiAgICBbPGY4OTUzM2Y4Pl0gWzxjMDIxZWFlOT5d IFs8YzAyMTdjNDk+XSBbPGMwMjE4Mzk2Pl0gWzxjMDEwOGM1Yj5dIA0KTWF5 IDMwIDA4OjM1OjE2IG1pbG8ga2VybmVsOiBDb2RlOiAwZiAwYiBhZSAwMCA1 MiA5NiAyYSBjMCA1YiA1ZSA4MyBlNyBlZiBiOCAwMCBlMCBmZiBmZiAyMSBl MCANCg0KDQo+PkVJUDsgYzAyMWEzY2EgPGFsbG9jX3NrYis0YS8xYzA+ICAg PD09PT09DQoNCj4+ZWJ4OyBmMmQzNWUwMCA8X2VuZCszMjlhYWQyYy8zODU3 ZGYyYz4NCj4+ZWN4OyBmZmZmZmZmZiA8RU5EX09GX0NPREUrNzZhYjYyMC8/ Pz8/Pg0KPj5lZHg7IGYwZTk4MDAwIDxfZW5kKzMwYjBjZjJjLzM4NTdkZjJj Pg0KPj5lYnA7IGYxYmNlYWRjIDxfZW5kKzMxODQzYTA4LzM4NTdkZjJjPg0K Pj5lc3A7IGYwZTk5ZDkwIDxfZW5kKzMwYjBlY2JjLzM4NTdkZjJjPg0KDQpU cmFjZTsgYzAyM2JiYmQgPHRjcF9zZW5kbXNnKzI4ZC8xMzQwPg0KVHJhY2U7 IGMwMjNiYmJkIDx0Y3Bfc2VuZG1zZysyOGQvMTM0MD4NClRyYWNlOyBmODkw YTA2YiA8WzgxMzl0b29dcnRsODEzOV9zdGFydF94bWl0KzRiL2YwPg0KVHJh Y2U7IGMwMjFlN2ZlIDxuZXRfdHhfYWN0aW9uK2VlLzE2MD4NClRyYWNlOyBj MDIxYjZiNSA8c2tiX2NoZWNrc3VtKzQ1LzI0MD4NClRyYWNlOyBjMDI1YTg4 MyA8aW5ldF9zZW5kbXNnKzMzLzQwPg0KVHJhY2U7IGMwMjE2YmVlIDxzb2Nr X3NlbmRtc2crNmUvOTA+DQpUcmFjZTsgYzAyNGQzZjQgPHRjcF92NF9yY3Yr NDM0LzZkMD4NClRyYWNlOyBjMDIxN2MwZCA8c3lzX3NlbmR0bytjZC9mMD4N ClRyYWNlOyBjMDIzMzI4NCA8aXBfbG9jYWxfZGVsaXZlcitmNC8xOTA+DQpU cmFjZTsgYzAyMzM2ODQgPGlwX3JjdiszNjQvNDAwPg0KVHJhY2U7IGY4OTUz M2Y4IDxbdm1uZXRdVk5ldEJyaWRnZVJlY2VpdmVGcm9tRGV2KzFjOC8xZDg+ DQpUcmFjZTsgYzAyMWVhZTkgPG5ldF9yeF9hY3Rpb24rMWY5LzMyMD4NClRy YWNlOyBjMDIxN2M0OSA8c3lzX3NlbmQrMTkvMjA+DQpUcmFjZTsgYzAyMTgz OTYgPHN5c19zb2NrZXRjYWxsKzEwNi8xZDA+DQpUcmFjZTsgYzAxMDhjNWIg PHN5c3RlbV9jYWxsKzMzLzM4Pg0KDQpDb2RlOyAgYzAyMWEzY2EgPGFsbG9j X3NrYis0YS8xYzA+DQowMDAwMDAwMCA8X0VJUD46DQpDb2RlOyAgYzAyMWEz Y2EgPGFsbG9jX3NrYis0YS8xYzA+ICAgPD09PT09DQogICAwOiAgIDBmIDBi ICAgICAgICAgICAgICAgICAgICAgdWQyYSAgICAgIDw9PT09PQ0KQ29kZTsg IGMwMjFhM2NjIDxhbGxvY19za2IrNGMvMWMwPg0KICAgMjogICBhZSAgICAg ICAgICAgICAgICAgICAgICAgIHNjYXMgICAlZXM6KCVlZGkpLCVhbA0KQ29k ZTsgIGMwMjFhM2NkIDxhbGxvY19za2IrNGQvMWMwPg0KICAgMzogICAwMCA1 MiA5NiAgICAgICAgICAgICAgICAgIGFkZCAgICAlZGwsMHhmZmZmZmY5Nigl ZWR4KQ0KQ29kZTsgIGMwMjFhM2QwIDxhbGxvY19za2IrNTAvMWMwPg0KICAg NjogICAyYSBjMCAgICAgICAgICAgICAgICAgICAgIHN1YiAgICAlYWwsJWFs DQpDb2RlOyAgYzAyMWEzZDIgPGFsbG9jX3NrYis1Mi8xYzA+DQogICA4OiAg IDViICAgICAgICAgICAgICAgICAgICAgICAgcG9wICAgICVlYngNCkNvZGU7 ICBjMDIxYTNkMyA8YWxsb2Nfc2tiKzUzLzFjMD4NCiAgIDk6ICAgNWUgICAg ICAgICAgICAgICAgICAgICAgICBwb3AgICAgJWVzaQ0KQ29kZTsgIGMwMjFh M2Q0IDxhbGxvY19za2IrNTQvMWMwPg0KICAgYTogICA4MyBlNyBlZiAgICAg ICAgICAgICAgICAgIGFuZCAgICAkMHhmZmZmZmZlZiwlZWRpDQpDb2RlOyAg YzAyMWEzZDcgPGFsbG9jX3NrYis1Ny8xYzA+DQogICBkOiAgIGI4IDAwIGUw IGZmIGZmICAgICAgICAgICAgbW92ICAgICQweGZmZmZlMDAwLCVlYXgNCkNv ZGU7ICBjMDIxYTNkYyA8YWxsb2Nfc2tiKzVjLzFjMD4NCiAgMTI6ICAgMjEg ZTAgICAgICAgICAgICAgICAgICAgICBhbmQgICAgJWVzcCwlZWF4DQoNCg0K MSB3YXJuaW5nIGlzc3VlZC4gIFJlc3VsdHMgbWF5IG5vdCBiZSByZWxpYWJs ZS4NCg== ---477232845-1193377641-1022760223=:27954-- From vserver.error@solucorp.qc.ca Thu Jun 6 05:01:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5691YLP023998; Thu, 6 Jun 2002 05:01:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g568MLs13582 for vserver.list; Thu, 6 Jun 2002 04:22:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from april.netcraft.com.au (april.netcraft.com.au [203.16.231.73]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g568MIY13577 for ; Thu, 6 Jun 2002 04:22:19 -0400 Received: (from g@localhost) by april.netcraft.com.au (8.11.6/8.11.6) id g568MAn18559 for vserver@solucorp.qc.ca; Thu, 6 Jun 2002 17:52:10 +0930 Date: Thu, 6 Jun 2002 17:52:10 +0930 From: "Geoffrey D. Bennett" To: vserver@solucorp.qc.ca Subject: [vserver] vserver names with '/' in them Message-ID: <20020606175210.K7905@april.netcraft.com.au> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 656 Hi there, I'm using vserver to provide multiple vservers for multiple companies, and it makes sense (to me) to put the vservers into subdirectories named by the company name. Eg: /vservers/foo/auth, foo/mail, foo/www, bar/auth, bar/mail, bar/www, etc... The only troubles I have encountered with this are: - I didn't think to mkdir /var/run/vservers/foo before "vserver foo/auth start" the first time (therefore the .ctx lock file wasn't created) - vps doesn't look in subdirectories beneath /var/run/vservers If anyone else intends to try a similar vserver layout, the below patch to vps may be useful. Regards, Geoffrey. --- /usr/sbin/vps Thu May 2 14:46:49 2002 +++ vps Thu Jun 6 00:40:27 2002 @@ -7,11 +7,14 @@ # version 1.0 # 1.1 Added error messages +# 2002-06-06 g@netcraft.com.au Added support for subdirectories in $lockdir + +use DirHandle; $lockdir = "/var/run/vservers"; $pid_length = 5; -get_server_names(); +get_server_names($lockdir, ""); $context=get_context("self"); if ($context == -1) { @@ -87,16 +90,20 @@ sub get_server_names { - opendir LOCKDIR, "$lockdir"; - while ($file=readdir(LOCKDIR)) { - if (-f "$lockdir/$file") { - open FILE, "$lockdir/$file"; + my($dir_name, $prefix) = @_; + my($dir) = new DirHandle($dir_name); + + while ($file=$dir->read()) { + if (-f "$dir_name/$file") { + open FILE, "$dir_name/$file"; $file =~ s/(.+)\.ctx/$1/; while () { if (/S_CONTEXT=(\d+)/) { - $name{$1} = $file; + $name{$1} = "$prefix$file"; } } + } elsif ($file !~ /^\./ and -d _) { + get_server_names("$dir_name/$file", "$file/"); } } } -- Geoffrey D. Bennett, RHCE, RHCX geoffrey@netcraft.com.au Senior Systems Engineer http://www.netcraft.com.au/geoffrey/ NetCraft Australia Pty Ltd http://www.netcraft.com.au/linux/ From vserver.error@solucorp.qc.ca Thu Jun 6 23:19:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g573IKLP001786; Thu, 6 Jun 2002 23:18:20 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g572hut09303 for vserver.list; Thu, 6 Jun 2002 22:43:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp7.jaring.my (smtp7.jaring.my [61.6.32.57]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g572hsY09299 for ; Thu, 6 Jun 2002 22:43:54 -0400 Received: from chiahow (j20.dms31.jaring.my [161.142.127.214]) by smtp7.jaring.my (8.11.4/8.11.4) with ESMTP id g572hYc01871 for ; Fri, 7 Jun 2002 10:43:38 +0800 (MYT) From: "Ng Chia How" To: Subject: [vserver] iManager Control Panel for Vserver Date: Fri, 7 Jun 2002 10:44:52 +0800 Message-ID: <000001c20dcd$5b205ea0$ce31fea9@chiahow> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0001_01C20E10.69439EA0" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 657 This is a multi-part message in MIME format. ------=_NextPart_000_0001_01C20E10.69439EA0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Hi Guys, Does anyone knows that where can I download iManager Control Panel for Vserver? This software seems like very useful as most of the VPS service providers are using it. Regards, NG CHIA HOW ------=_NextPart_000_0001_01C20E10.69439EA0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable

Hi Guys,

=A0=A0=A0=A0=A0=A0=A0=A0=A0=A0=A0 Does = anyone knows that where can I download iManager = Control Panel for Vserver? This software seems like = very useful as most of the VPS service providers are using = it.

 

 

 

Regards,

 

NG CHIA = HOW

 

------=_NextPart_000_0001_01C20E10.69439EA0-- From vserver.error@solucorp.qc.ca Sun Jun 9 15:08:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g59J8ELP022138; Sun, 9 Jun 2002 15:08:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g59IXk910551 for vserver.list; Sun, 9 Jun 2002 14:33:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from john-new (host213-122-111-222.in-addr.btopenworld.com [213.122.111.222]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g59IXdY10547 for ; Sun, 9 Jun 2002 14:33:45 -0400 Received: from 213.122.111.222 by john-new ([213.122.111.222] running VPOP3) with SMTP for ; Sun, 9 Jun 2002 19:33:26 +0100 From: "John Lyons" To: Subject: RE: [vserver] iManager Control Panel for Vserver Date: Sun, 9 Jun 2002 19:33:25 +0100 Message-ID: <002401c20fe4$250219d0$de6f7ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <000001c20dcd$5b205ea0$ce31fea9@chiahow> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Server: VPOP3 V1.3.4 - Registered to: n0Pk1LL4 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 658 >Does anyone knows that where can I download iManager Control Panel for Vserver? This software seems like very useful as most of the VPS service providers are using it. I think the package that you're referring to was designed for use with the FreeBSD virtual private server package not the RedHat Vserver software. Having never used it I couldn't say where you can get it from but I do know it's not part of the vserver package. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Tue Jun 18 07:12:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5IBBniZ031204; Tue, 18 Jun 2002 07:11:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5IAMCh06326 for vserver.list; Tue, 18 Jun 2002 06:22:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from saarland.sz-sb.de (saarland.sz-sb.de [212.88.192.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5IAMAY06321 for ; Tue, 18 Jun 2002 06:22:10 -0400 Received: from camelot.sz-sb.de (dmz1-camelot.sz-sb.de [212.88.192.2]) by saarland.sz-sb.de (8.9.3+Sun/8.9.3) with SMTP id MAA28011 for ; Tue, 18 Jun 2002 12:22:09 +0200 (MEST) Received: from ([172.16.151.102]) by camelot.sz-sb.de; Tue, 18 Jun 2002 12:22:07 +0200 (MEST) Received: from laplinux.triervf.de (172.16.113.72 [172.16.113.72]) by trierx0.triervf.de with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2655.55) id M74M1D39; Tue, 18 Jun 2002 12:22:00 +0200 Subject: [vserver] Does anyone use vserver as failover-cluster ? From: d m To: vserver@solucorp.qc.ca Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.7 Date: 18 Jun 2002 12:21:54 +0200 Message-Id: <1024395718.13074.19.camel@laplinux> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 659 Hi, I was wondering if anyone out there is using the vserver as failover-cluster (Hot-Standby, or two vservers as active-active) ? Does a tool (e.g. cluster-manager) exists to set up one easily? What would be best to get a useable cluster (rsyncs,drbd,coda,shared storage) ? Regards, Daniel From vserver.error@solucorp.qc.ca Tue Jun 18 11:10:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5IF9wiZ000864; Tue, 18 Jun 2002 11:09:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5IEiYP13085 for vserver.list; Tue, 18 Jun 2002 10:44:34 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rock2.everdesk.com (customer-171.datility.net [12.149.183.171] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5IEiXY13079 for ; Tue, 18 Jun 2002 10:44:34 -0400 Received: by rock2.everdesk.com (Postfix, from userid 503) id D61C98869A; Tue, 18 Jun 2002 09:44:27 -0500 (CDT) To: "d m" From: "Denis Medvedev" Subject: Re: [vserver] Does anyone use vserver as failover-cluster ? X-Everdesk-Local: everdesk.com Errors-To: "Denis Medvedev" Cc: vserver@solucorp.qc.ca MIME-Version: 1.0 Content-ID: <16427.1024411467.1@rock2.everdesk.com> Content-Type: text/plain Content-Transfer-Encoding: 8bit Message-Id: <20020618144427.D61C98869A@rock2.everdesk.com> Date: Tue, 18 Jun 2002 09:44:27 -0500 (CDT) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 660 > From: "d m" > To: vserver@solucorp.qc.ca > Date: 18 Jun 2002 12:21:54 +0200 > Subject: [vserver] Does anyone use vserver as failover-cluster ? > > > Hi, > > I was wondering if anyone out there is using the vserver as > failover-cluster (Hot-Standby, or two vservers as active-active) ? I am (Hot-Standby) > > Does a tool (e.g. cluster-manager) exists to set up one easily? I use postgresql as main database. I do regular pg_dump and transfer results via rsync For work files - I transfer them via rsync too. > > What would be best to get a useable cluster (rsyncs,drbd,coda,shared > storage) ? What is drbd? I tried the following for my HA: 1) CODA - awful... I was not able to force it to run properly 2) PostgreSQL mirroring - awful... not worked as promised 3) rsync - great! Thought of trying Intermezzo... > > Regards, > > Daniel -- Sent using everdesk.com server From vserver.error@solucorp.qc.ca Tue Jun 18 13:17:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5IHHKiZ002265; Tue, 18 Jun 2002 13:17:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5IGuVh17311 for vserver.list; Tue, 18 Jun 2002 12:56:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5IGuUY17307 for ; Tue, 18 Jun 2002 12:56:30 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g5IGv9S15549 for vserver@solucorp.qc.ca; Tue, 18 Jun 2002 12:57:09 -0400 From: Jacques Gelinas Date: Tue, 18 Jun 2002 12:57:09 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Does anyone use vserver as failover-cluster ? X-mailer: tlmpmail 0.6 Message-ID: <20020618125709.af60e2a490e7@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 661 On Tue, 18 Jun 2002 12:21:54 -0500, d m wrote > Hi, > > I was wondering if anyone out there is using the vserver as > failover-cluster (Hot-Standby, or two vservers as active-active) ? One of our goal is to have a `any-server` backup: A server cloning many other and being able to replace other on the fly. Our backup strategy is using rsync and the backup machine moves that to tape. The backup machine can be use as a failover, manually. > Does a tool (e.g. cluster-manager) exists to set up one easily? Note that using heartbeat for example could easily be done to toggle vservers. > What would be best to get a useable cluster (rsyncs,drbd,coda,shared > storage) ? We have played with nbd (network block devices) with some success (good performance as well), but never gone in production with that. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Jun 18 16:57:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5IKvM9D002624; Tue, 18 Jun 2002 16:57:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5IKLoG23922 for vserver.list; Tue, 18 Jun 2002 16:21:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rhenium.btinternet.com (rhenium.btinternet.com [194.73.73.93]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5IKLnY23918 for ; Tue, 18 Jun 2002 16:21:50 -0400 Received: from host213-122-193-41.in-addr.btopenworld.com ([213.122.193.41] helo=home4v9eek8u3l) by rhenium.btinternet.com with smtp (Exim 3.22 #8) id 17KPU4-0005zd-00 for vserver@solucorp.qc.ca; Tue, 18 Jun 2002 21:21:49 +0100 From: "John Lyons" To: Subject: [vserver] vdu resource hog? Date: Tue, 18 Jun 2002 21:16:12 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 In-Reply-To: <20020618125709.af60e2a490e7@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 662 I'm not sure about the underlying code for the vdu script as I'm not a programmer but from my experience I'm running 7 virtual servers each at about 500mb of unified disk space and about 100 ununified. running vdu /vservers/* seems to produce the correct results but it takes 20 to 30 seconds per vs to perform the calculation and the server load rises to 2.00 or 3.00 for 5 to 10 mins. Is there anything in the source code for the script that's causing the high loads? Regards John Lyons Netserve Consultants Ltd www.domaincity.co.uk From vserver.error@solucorp.qc.ca Wed Jun 19 06:11:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5JAAl9D011213; Wed, 19 Jun 2002 06:10:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5J8fjh09151 for vserver.list; Wed, 19 Jun 2002 04:41:45 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from saarland.sz-sb.de (saarland.sz-sb.de [212.88.192.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5J8fiY09147 for ; Wed, 19 Jun 2002 04:41:44 -0400 Received: from camelot.sz-sb.de (dmz1-camelot.sz-sb.de [212.88.192.2]) by saarland.sz-sb.de (8.9.3+Sun/8.9.3) with SMTP id KAA07311; Wed, 19 Jun 2002 10:41:33 +0200 (MEST) Received: from ([172.16.151.102]) by camelot.sz-sb.de; Wed, 19 Jun 2002 10:41:32 +0200 (MEST) Received: from laplinux.triervf.de (172.16.113.72 [172.16.113.72]) by trierx0.triervf.de with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2655.55) id M74M1HFM; Wed, 19 Jun 2002 10:41:29 +0200 Subject: Re: [vserver] Does anyone use vserver as failover-cluster ? From: d m To: Denis Medvedev Cc: vserver@solucorp.qc.ca In-Reply-To: <20020618144427.D61C98869A@rock2.everdesk.com> References: <20020618144427.D61C98869A@rock2.everdesk.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.7 Date: 19 Jun 2002 10:41:15 +0200 Message-Id: <1024476079.13072.82.camel@laplinux> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 663 Denis, thank's 4 your suggestions. > > What would be best to get a useable cluster (rsyncs,drbd,coda,shared > > storage) ? > What is drbd? 'Drbd is a block device which is designed to build high availability clusters. This is done by mirroring a whole block device via (a dedicated) network. You could see it as a network raid 1' from http://www.complang.tuwien.ac.at/reisner/drbd/ Regards, Daniel From vserver.error@solucorp.qc.ca Thu Jun 20 00:15:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5K4FI9D023869; Thu, 20 Jun 2002 00:15:19 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5K3ulT03021 for vserver.list; Wed, 19 Jun 2002 23:56:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5K3ukY03017 for ; Wed, 19 Jun 2002 23:56:46 -0400 Received: from remtk.solucorp.qc.ca (g36-114.citenet.net [206.123.36.114]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g5K3xLA77018 for ; Wed, 19 Jun 2002 23:59:21 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g5K3i2E05898 for vserver@solucorp.qc.ca; Wed, 19 Jun 2002 23:44:02 -0400 From: Jacques Gelinas Date: Wed, 19 Jun 2002 23:44:02 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vdu resource hog? X-mailer: tlmpmail 0.6 Message-ID: <20020619234402.e7f2a10d2aa9@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 664 On Tue, 18 Jun 2002 21:16:12 -0500, John Lyons wrote > > I'm not sure about the underlying code for the vdu script as I'm not a > programmer but from my experience I'm running 7 virtual servers each at > about 500mb of unified disk space and about 100 ununified. > > running vdu /vservers/* seems to produce the correct results but it takes 20 > to 30 seconds per vs to perform the calculation and the server load rises to > 2.00 or 3.00 for 5 to 10 mins. vdu is a single process. It scans directories and count size. It ignores files with more than one link (assumes they are unified). vdu is not a script. vdu is not capable to raising the load to 2 or 3. Since it is a single process it can only raise it to 1. Now, vdu is scanning directories and directories, so access the disk somewhat. Here, doing a vdu on 5 vservers based on a rh7.2 full install of the first CD, takes 45 seconds (varies a lot from run to run) on a idle notebook. Something else is battling propably to access the hard drive on your server > Is there anything in the source code for the script that's causing the high > loads? No. Try to run du /vservers/* >/dev/null to see if you are getting the same result. Here du is faster than vdu. I don't know why yet. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Jun 20 20:47:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5L0lQ9D004227; Thu, 20 Jun 2002 20:47:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5KNuTT32503 for vserver.list; Thu, 20 Jun 2002 19:56:29 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hawaii.rr.com (hnlmail2.hawaii.rr.com [24.25.227.35]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5KNuSY32499 for ; Thu, 20 Jun 2002 19:56:28 -0400 Received: from RIKU ([24.94.74.219]) by hawaii.rr.com with Microsoft SMTPSVC(5.5.1877.517.51); Thu, 20 Jun 2002 13:56:23 -1000 Message-ID: <002101c218b5$d590d0a0$0d01000a@RIKU> From: "Warren Togami" To: Subject: [vserver] mount --bind read-only? Date: Thu, 20 Jun 2002 13:54:36 -1000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 665 Is there any possibility of extending the kernel to allow read-only mount --bind? From vserver.error@solucorp.qc.ca Fri Jun 21 01:07:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5L57F9D007197; Fri, 21 Jun 2002 01:07:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5L4n3m06272 for vserver.list; Fri, 21 Jun 2002 00:49:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from actmail.com (actmail.com [209.221.151.8]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5L4n2Y06268 for ; Fri, 21 Jun 2002 00:49:02 -0400 Received: from gollum.actmail.com [12.230.128.123] by actmail.com with ESMTP (SMTPD32-6.06) id A038EB805AA; Thu, 20 Jun 2002 21:48:56 -0700 Message-Id: <5.1.0.14.2.20020620214353.054d8878@pop.actmail.com> X-Sender: rogerw@actmail.com@pop.actmail.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Thu, 20 Jun 2002 21:46:15 -0700 To: vserver@solucorp.qc.ca From: Roger Weiss Subject: Re: [vserver] iManager Control Panel for Vserver In-Reply-To: <000001c20dcd$5b205ea0$ce31fea9@chiahow> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 666 iManager is a control panel written for Verio. http://www.viaverio.com/support/virtual/admin/imanager/install.cfm It is not available for use outside of their FreeBSD platform. Best regards, Roger At 6/6/2002 07:44 PM, you wrote: >Hi Guys, > > Does anyone knows that where can I download iManager Control > Panel for Vserver? This software seems like very useful as most of the > VPS service providers are using it. > > > > > > > >Regards, > > > >NG CHIA HOW > > From vserver.error@solucorp.qc.ca Fri Jun 21 08:05:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5LC4e9D011693; Fri, 21 Jun 2002 08:04:41 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5LBPFO14536 for vserver.list; Fri, 21 Jun 2002 07:25:15 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ambience.com.au (valhalla.asgard.net [64.23.60.160]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5LBPEY14532 for ; Fri, 21 Jun 2002 07:25:14 -0400 Received: from [150.101.194.237] (HELO win2000) by ambience.com.au (CommuniGate Pro SMTP 3.5.7) with SMTP id 467486 for vserver@solucorp.qc.ca; Fri, 21 Jun 2002 07:25:08 -0400 Message-ID: <000901c21916$50e90aa0$0101a8c0@win2000> From: "Mark Holmes" To: Subject: [vserver] /proc on a vserver Date: Fri, 21 Jun 2002 21:25:13 +1000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 667 I'm trying to setup a firewall in a vserver using shorewall and iptables. I have sorted out the IPROOT by setting it to 0.0.0.0 so the vserver can see both interfaces on the machine (which happens to be vmware). When I stop shorewall I get the following: "/proc/sys/net/ipv4/ip_forward: Permission denied" plus heaps more during start. I have CAP_SYS_RAW, CAP_SYS_MODULE, and CAP_NET_ADMIN in my .conf file. I assume ip_forward is getting a 0 / 1 written to it but the operation is failing due to some sort of capability / permission thing. The attributes rw seem the same a the root server. Any help would be great. A couple of other things I had to do to get this far is: 1. Copy the netfilter modules and depmod.conf to the appropriate directories in the vserver so modules would load. 2. Create a messages file in /var/log so for shorewall. (just needs to be there, not writable, yet) Multiple IP's on the one vserver has been mention a little on the list and this is one application where I think it would be useful. Thanks in advance. Mark. From vserver.error@solucorp.qc.ca Fri Jun 21 14:45:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5LIiv9D016142; Fri, 21 Jun 2002 14:44:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5LHmpu23764 for vserver.list; Fri, 21 Jun 2002 13:48:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5LHmoY23759 for ; Fri, 21 Jun 2002 13:48:50 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g5LHmhG18210; Fri, 21 Jun 2002 10:48:43 -0700 Date: Fri, 21 Jun 2002 10:48:43 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: , Subject: [vserver] spamd running on vserver Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 668 Anyone have spamd (Spamassassin 2.20) running on a vserver? I have it installed on a plain RHL 7.2 (2.4.2-2) system which works fine and on a vserver RHL 7.2 (2.4.18ctx-10) which reports connection denied for each call to spamc. Mostly identical firewall rules (one allows a few more services than the other). I'm starting to suspect it is the old lo device problem - which I mostly don't understand anyway. Searching in the dark and don't even know what I'm looking for. Any ideas as to how I can determine what the problem is. I have tried -D -A and -i (using the ip for the main server) which is where I have it running but it didn't give me any good information. TIA, Rod -- Please don't tell my mother I'm a System Administrator. She thinks I play piano in a bordello. From vserver.error@solucorp.qc.ca Sat Jun 22 10:24:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5MEOZ9D028853; Sat, 22 Jun 2002 10:24:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5MEC6615024 for vserver.list; Sat, 22 Jun 2002 10:12:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5MEC0Y15018 for ; Sat, 22 Jun 2002 10:12:05 -0400 Received: from host62-6-89-197.in-addr.btopenworld.com ([62.6.89.197] helo=johnnew) by protactinium.btinternet.com with smtp (Exim 3.22 #8) id 17LlcM-0003Kk-00 for vserver@solucorp.qc.ca; Sat, 22 Jun 2002 15:11:59 +0100 From: "John Lyons" To: Subject: RE: [vserver] spamd running on vserver Date: Sat, 22 Jun 2002 15:11:42 +0100 Message-ID: <006c01c219f6$bcc08ce0$5763063e@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 669 > Anyone have spamd (Spamassassin 2.20) running on a vserver? I have it > installed on a plain RHL 7.2 (2.4.2-2) system which works > fine and on a > vserver RHL 7.2 (2.4.18ctx-10) which reports connection > denied for each > call to spamc. Mostly identical firewall rules (one allows a > few more > services than the other). I've installed several spam packages on a vserver but not got as far as spamassassin. I'm not sure why you've needed to use IPtables/chains to get spamassassin running? My only thoughts are that you've started spamassassin on the host server and that's bound itself to all of the Ip addresses on the server thereby making it impossible to start within a vs. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Sat Jun 22 14:35:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5MIYv9D031831; Sat, 22 Jun 2002 14:34:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5MIRIb20324 for vserver.list; Sat, 22 Jun 2002 14:27:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5MIRIY20320 for ; Sat, 22 Jun 2002 14:27:18 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g5MIRK727902 for ; Sat, 22 Jun 2002 11:27:20 -0700 Date: Sat, 22 Jun 2002 11:27:20 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: RE: [vserver] spamd running on vserver In-Reply-To: <006c01c219f6$bcc08ce0$5763063e@johnnew> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 670 On Sat, 22 Jun 2002, John Lyons wrote: > I've installed several spam packages on a vserver but not got as far as > spamassassin. Sorry I think I goofed up in my explanation. I'm trying to run it on the main server for now. > I'm not sure why you've needed to use IPtables/chains to get spamassassin > running? The daemonized version listens on a port and unless you want to let the world use it it needs to be blocked. The default RHL 7.2 creates, for the most part, the correct firewall rules. > My only thoughts are that you've started spamassassin on the host server and > that's bound itself to all of the Ip addresses on the server thereby making > it impossible to start within a vs. As above I'm only running it on the main server. I'm going to try plain old Spamassassin next but really want the daemon version (less resources and shorter start up time) running instead. If SA runs it will hold me for awhile and I'll look into the init script v_* to see if it will solve the problem. Wish I was more of a programmer and understood the network stuff better. (Wish in one hand and spit in the other - see which fills first.) Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Sat Jun 22 19:16:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5MNGV9D002038; Sat, 22 Jun 2002 19:16:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5MN8pi25423 for vserver.list; Sat, 22 Jun 2002 19:08:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.wild98webhosting.com (server.wild98.com [64.26.141.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5MN8pY25419 for ; Sat, 22 Jun 2002 19:08:51 -0400 Received: from idouglas (lsanca2-ar26-4-46-131-186.lsanca2.dsl-verizon.net [4.46.131.186]) by www.wild98webhosting.com (8.11.6/linuxconf) with SMTP id g5MN8jW32071 for ; Sat, 22 Jun 2002 19:08:45 -0400 From: "Ian Douglas" To: Subject: [vserver] basic questions about vserver Date: Sat, 22 Jun 2002 16:11:59 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 671 Hey all. I've been subscribed to the list for a few months now, lurking as it were. I went to the vserver web site today and have a few quick questions I'm hoping someone can answer. 1. Is there a recommended brand and version of Linux to use with vserver? I understand that vserver requires kernel 2.4 and has a 2.4.18 patch available with the download, but curious to know about success with RedHat vs SuSE vs Debian vs FreeBSD. Current target is RedHat 7.3, but have a version of Debian handy and have FreeBSD around here somewhere... 2. What is the recommendedation about hard drive setup? Should each vserver be given its own partition? How large should that partition be? If all vservers can be put on one large drive, say, a 60GB drive, is there any way to approximate how much disk space will be needed for say 100 vservers? 3. (related to #2) Does each vserver have a full and complete installation of Linux on it, or are utilities/applications shared between vservers? 4. How does vserver work with virtual web hosting with sharing IP addresses? If I wanted each domain I host to be its own vserver, does each of them have to have their own IP address, or can multiple vservers be on the same IP? How would I configure Apache on each vserver with this in mind? Or *can* I even run Apache on each vserver if each needs to bind to port 80? 5. With regards to unique IP addresses, I currently have resellers who each get a unique IP address, and their resale customers share their IP address with the reseller ... should I just limit each reseller to their own vserver then and use Apache's setup? Thanks for any info. -id From vserver.error@solucorp.qc.ca Sat Jun 22 20:04:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5N0429D002372; Sat, 22 Jun 2002 20:04:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5MNs4D26274 for vserver.list; Sat, 22 Jun 2002 19:54:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from spruce.he.net (spruce.he.net [216.218.159.210]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5MNs3Y26270 for ; Sat, 22 Jun 2002 19:54:04 -0400 Received: (from jqh1@localhost) by spruce.he.net (8.8.6/8.8.2) id QAA22758 for vserver@solucorp.qc.ca; Sat, 22 Jun 2002 16:54:10 -0700 Received: from smtp.comcast.net (smtp.comcast.net [24.153.64.2]) by spruce.he.net (8.8.6/8.8.2) with ESMTP id QAA22752 for <+vserver+edmcman+f19ce4d3b9.vserver#solucorp.qc.ca@spamgourmet.com>; Sat, 22 Jun 2002 16:54:10 -0700 Received: from 68.82.224.217 (pcp01472890pcs.lncstr01.pa.comcast.net [68.82.224.217]) by mtaout04.icomcast.net (iPlanet Messaging Server 5.1 HotFix 0.8 (built May 13 2002)) with ESMTP id <0GY4009SRT22WY@mtaout04.icomcast.net> for +vserver+edmcman+f19ce4d3b9.vserver#solucorp.qc.ca@spamgourmet.com; Sat, 22 Jun 2002 19:54:02 -0400 (EDT) Date: Sat, 22 Jun 2002 19:54:02 -0400 From: vserver.100.edmcman@spamgourmet.com Subject: Re: [vserver] basic questions about vserver In-reply-to: To: "vserver@solucorp.qc.ca" <+vserver+edmcman+f19ce4d3b9.vserver#solucorp.qc.ca@spamgourmet.com> Message-id: <19215775503.20020622195402@despammed.com> MIME-version: 1.0 X-Mailer: The Bat! (v1.60m) Personal Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT X-Priority: 3 (Normal) References: Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 672 Saturday, June 22, 2002, 7:11:59 PM, Ian Douglas - linux@wild98.com wrote: IDlwc> Hey all. IDlwc> I've been subscribed to the list for a few months now, lurking as it were. I IDlwc> went to the vserver web site today and have a few quick questions I'm hoping IDlwc> someone can answer. IDlwc> 1. Is there a recommended brand and version of Linux to use with vserver? I IDlwc> understand that vserver requires kernel 2.4 and has a 2.4.18 patch available IDlwc> with the download, but curious to know about success with RedHat vs SuSE vs IDlwc> Debian vs FreeBSD. Current target is RedHat 7.3, but have a version of IDlwc> Debian handy and have FreeBSD around here somewhere... Vserver works with any distribution, however it works better with SysV based distributions (RedHat, Mandrake, SuSE I think) IDlwc> 2. What is the recommendedation about hard drive setup? Should each vserver IDlwc> be given its own partition? How large should that partition be? If all IDlwc> vservers can be put on one large drive, say, a 60GB drive, is there any way IDlwc> to approximate how much disk space will be needed for say 100 vservers? Vservers go in their own directories IDlwc> 3. (related to #2) Does each vserver have a full and complete installation IDlwc> of Linux on it, or are utilities/applications shared between vservers? Some stuff is copied, you could share apps using a symlink. IDlwc> 4. How does vserver work with virtual web hosting with sharing IP addresses? IDlwc> If I wanted each domain I host to be its own vserver, does each of them have IDlwc> to have their own IP address, or can multiple vservers be on the same IP? IDlwc> How would I configure Apache on each vserver with this in mind? Or *can* I IDlwc> even run Apache on each vserver if each needs to bind to port 80? Apache can do vhosting based on domains without vserver, so you can do more than one domain per ip (for apache only). IDlwc> 5. With regards to unique IP addresses, I currently have resellers who each IDlwc> get a unique IP address, and their resale customers share their IP address IDlwc> with the reseller ... should I just limit each reseller to their own vserver IDlwc> then and use Apache's setup? You could just give the reseller access to the vserver and let them do the vhosting stuff. IDlwc> Thanks for any info. ------------------------------------------------------------- |Eddie J Schwartz http://www.m00.net| | AIM: The Cypher ICQ: 35576339 YHOO: edmcman2 MSN: ^^ | | "We Trills have an expression--at forty, you think you | | know everything. At four hundred, you realize you know | | nothing." - Dax, Star Trek Deep Space 9 | ------------------------------------------------------------- From vserver.error@solucorp.qc.ca Sat Jun 22 21:25:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5N1PD9D003066; Sat, 22 Jun 2002 21:25:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5N1F1T27790 for vserver.list; Sat, 22 Jun 2002 21:15:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from protactinium.btinternet.com (protactinium.btinternet.com [194.73.73.176]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5N1F0Y27752 for ; Sat, 22 Jun 2002 21:15:00 -0400 Received: from host213-1-188-254.btinternet.com ([213.1.188.254] helo=johnnew) by protactinium.btinternet.com with smtp (Exim 3.22 #8) id 17Lvxz-0003on-00 for vserver@solucorp.qc.ca; Sun, 23 Jun 2002 02:14:59 +0100 From: "John Lyons" To: Subject: RE: [vserver] basic questions about vserver Date: Sun, 23 Jun 2002 02:14:43 +0100 Message-ID: <00aa01c21a53$5de2d630$5763063e@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 673 > 1. Is there a recommended brand and version of Linux to use > with vserver? RH7.2 seems the stable choice for most users. > 2. What is the recommendedation about hard drive setup? > Should each vserver > be given its own partition? How large should that partition be? If all > vservers can be put on one large drive, say, a 60GB drive, is > there any way > to approximate how much disk space will be needed for say 100 > vservers? Personally I just create a partition for Vservers and use that. Putting 1 verver per partition would give you problems further down the line if you ever wanted to share packages between vservers using the unification process. > 3. (related to #2) Does each vserver have a full and complete > installation > of Linux on it, or are utilities/applications shared between vservers? They can have their own full file system and packages which stand alone. You can also unify selected packages (or all) ie share them between several vservers. The unification can be done so as to allow the vserver owner to upgrade or remove the package themselves or they can be set to prevent vserver owners from changing anything other than the conf files. > 4. How does vserver work with virtual web hosting with > sharing IP addresses? Same as normal apache hosting. > If I wanted each domain I host to be its own vserver, does > each of them have > to have their own IP address, yes, each vserver needs its own IP address so 1 domain per vs would mean 1 IP per domain. or can multiple vservers be on > the same IP? Not that I'm aware of. > How would I configure Apache on each vserver with this in > mind? Use the rpm install with php and apache, works like a treat out of the box. > 5. With regards to unique IP addresses, I currently have > resellers who each > get a unique IP address, and their resale customers share > their IP address > with the reseller ... should I just limit each reseller to > their own vserver > then and use Apache's setup? Probably yes. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Sun Jun 23 00:46:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5N4k89D005084; Sun, 23 Jun 2002 00:46:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5N4b8T31092 for vserver.list; Sun, 23 Jun 2002 00:37:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from billsbox1.billsbox.net (adsl-157-154-85.gnv.bellsouth.net [66.157.154.85]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5N4b2Y31088 for ; Sun, 23 Jun 2002 00:37:03 -0400 Received: from localhost (localhost [[UNIX: localhost]]) by billsbox1.billsbox.net (8.11.6/8.11.6) id g5N4ZJV05678 for vserver@solucorp.qc.ca; Sun, 23 Jun 2002 00:35:19 -0400 Content-Type: text/plain; charset="iso-8859-1" From: Billy Hager To: vserver@solucorp.qc.ca Subject: Re: [vserver] basic questions about vserver Date: Sun, 23 Jun 2002 00:35:18 -0400 User-Agent: KMail/1.4.1 References: In-Reply-To: MIME-Version: 1.0 Message-Id: <200206230035.18836.whager@bellsouth.net> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g5N4b2Y31088 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 674 > 1. Is there a recommended brand and version of Linux to use with vserver? Slackware is my favorite Linux distribution, but so far I have installed vserver on SuSE 7.3(another favorite) using the rpm install. I would recommend that you use the Linux distribution that you feel most comfortable securing. >Debian vs FreeBSD. Current target is RedHat 7.3, but have a version of >Debian handy and have FreeBSD around here somewhere... How would you use FreeBSD? > 2. What is the recommendation about hard drive setup? Should each vserver > be given its own partition? How large should that partition be? If all > vservers can be put on one large drive, say, a 60GB drive, is there any way > to approximate how much disk space will be needed for say 100 vservers? As John said I would put all the vservers in a single partition. > 3. (related to #2) Does each vserver have a full and complete installation > of Linux on it, or are utilities/applications shared between vservers? Install, exactly, only the software you need to run your vserver. When I made my vserver setup, I used the Slackware 8.0 tar balls to create a custom filesystem. Pick out only the packages you need and untar them into a directory and, presto, custom filesystem. Less packages mean fewer possible security concerns. If users don't need to change the base system on the vserver I would suggest making it immutable, too. > 4. How does vserver work with virtual web hosting with sharing IP > addresses? If I wanted each domain I host to be its own vserver, does each > of them have to have their own IP address, or can multiple vservers be on > the same IP? How would I configure Apache on each vserver with this in > mind? Or *can* I even run Apache on each vserver if each needs to bind to > port 80? Each different instance of a particular program binding to a particular port needs to be on its own IP address. It is entirely possible to run apache in its own vserver and the programs users use to access their files(ftp, ssh, etc) on another. When setting things up keep thinking, "How can I separate my users from stuff I don't want them to mess up.". That is one of the greatest powers of vservers. > 5. With regards to unique IP addresses, I currently have resellers who each > get a unique IP address, and their resale customers share their IP address > with the reseller ... should I just limit each reseller to their own > vserver then and use Apache's setup? If everyone is using the same IP, I would use Virtual Hosts. > Thanks for any info. > > -id -- Billy Hager | AIM: wwhager2 whager@bellsouth.net | http://www.billsbox.net From vserver.error@solucorp.qc.ca Sun Jun 23 15:45:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5NJj89D002258; Sun, 23 Jun 2002 15:45:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5NJEk827138 for vserver.list; Sun, 23 Jun 2002 15:14:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.wild98webhosting.com (server.wild98.com [64.26.141.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5NJEkY27134 for ; Sun, 23 Jun 2002 15:14:46 -0400 Received: from idouglas (lsanca2-ar26-4-46-131-186.lsanca2.dsl-verizon.net [4.46.131.186]) by www.wild98webhosting.com (8.11.6/linuxconf) with SMTP id g5NJEjW19459 for ; Sun, 23 Jun 2002 15:14:46 -0400 From: "Ian Douglas" To: Subject: RE: [vserver] basic questions about vserver Date: Sun, 23 Jun 2002 12:18:03 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-reply-to: <200206230035.18836.whager@bellsouth.net> X-MIMEOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 675 Okay, thanks everyone for the thoughts and comments to my questions. Guess I was sorta hoping there would be some kind of 'step-by-step' guide for installing vserver. ;o) I got the packages installed, got the new kernel installed, ran 'newvserver' and made a vserver, but YIKES, it took like 1.5GB - it copied absolutely everything, libraries, /usr/share/doc/, etc. During the process, it asked which paths to share, I thought it meant something like "which directory paths do you not want to copy to the vserver", that it would have done it via symlink for me or something. Anyhow, when I type "vserver w98 start" I see this: Starting the virtual server w98 Server w98 is not running ipv4root is now 192.168.100.15 Host name is now wild98.com New security context is 2 Can't execute /etc/rc.d/rc (Too many levels of symbolic links) ... and now I'm lost. :o) Any other help would be appreciated. From vserver.error@solucorp.qc.ca Sun Jun 23 19:44:37 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5NNiI9D004714; Sun, 23 Jun 2002 19:44:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5NNUbt00646 for vserver.list; Sun, 23 Jun 2002 19:30:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rhenium.btinternet.com (rhenium.btinternet.com [194.73.73.93]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5NNUaY00642 for ; Sun, 23 Jun 2002 19:30:36 -0400 Received: from host213-1-134-179.in-addr.btopenworld.com ([213.1.134.179] helo=johnnew) by rhenium.btinternet.com with smtp (Exim 3.22 #8) id 17MGoQ-0000ie-00 for vserver@solucorp.qc.ca; Mon, 24 Jun 2002 00:30:30 +0100 From: "John Lyons" To: Subject: RE: [vserver] basic questions about vserver Date: Mon, 24 Jun 2002 00:30:15 +0100 Message-ID: <008d01c21b0d$ee4661f0$94b27ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 676 > I got the packages installed, got the new kernel installed, > ran 'newvserver' > and made a vserver, but YIKES, it took like 1.5GB - it copied > absolutely > everything, libraries, /usr/share/doc/, etc. During the > process, it asked Sounds like the vserver you've built was based on the host server. If that's the case, and your host server was a fairly typical installation then 1.5gb is about right. With some good slimming, you'll be able to cut out the packages that you don't need and get it down to 350 to 500mb per vs. If you unify every package using the vbuild utility when you create the server and check the disk space using the vdu package rather than du you'll probably find your vs is taking up only 20mb of space. > Anyhow, when I type "vserver w98 start" I see this: > > Starting the virtual server w98 > Server w98 is not running > ipv4root is now 192.168.100.15 > Host name is now wild98.com > New security context is 2 > Can't execute /etc/rc.d/rc (Too many levels of symbolic links) That doesn't look like RH to me :-( I'm lost too. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Mon Jun 24 00:20:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5O4Jr9D007382; Mon, 24 Jun 2002 00:19:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5O47xY05923 for vserver.list; Mon, 24 Jun 2002 00:07:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5O47wY05919 for ; Mon, 24 Jun 2002 00:07:58 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 4E20F7A52F; Mon, 24 Jun 2002 05:07:54 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 45BB29213B for ; Mon, 24 Jun 2002 05:07:54 +0100 (BST) Date: Mon, 24 Jun 2002 05:07:54 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: [vserver] -ac scheduler Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 677 Just been building ctx10 against 2.4.19-pre10-ac2 (which has the new Ingo Molnar scheduler). Unfortunately, the rejects it's throwing up in linux/kernel/sched.c are more than I can manage--has anyone who understands both the new and old schedulers patched this up enough to get it to work? Messing about with schedulers isn't my /favourite/ passtime! :-) -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Jun 24 15:43:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5OJgi9D011429; Mon, 24 Jun 2002 15:42:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5OJGcS26111 for vserver.list; Mon, 24 Jun 2002 15:16:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5OJGbY26107 for ; Mon, 24 Jun 2002 15:16:38 -0400 Received: from hofmann (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g5OJCSP01741 for ; Mon, 24 Jun 2002 20:12:28 +0100 Received: from hofmann ([127.0.0.1]) by hofmann with smtp (Exim 3.35 #1 (Debian)) id 17MZKE-0003Vb-00 for ; Mon, 24 Jun 2002 20:16:34 +0100 Date: Mon, 24 Jun 2002 20:16:33 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] mount --bind read-only? In-Reply-To: <002101c218b5$d590d0a0$0d01000a@RIKU> References: <002101c218b5$d590d0a0$0d01000a@RIKU> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 678 No. Think of it as a directory hard link. On Thu, 20 Jun 2002 13:54:36 -1000 "Warren Togami" wrote: > Is there any possibility of extending the kernel to allow read-only > mount --bind? > > -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 Although Mr Chavez 'was democratically elected,' one had to bear in mind that 'Legitimacy is something that is conferred not just by a majority of the voters, however" - The office of George "Dubya" Bush commenting on the Venezuelan election From vserver.error@solucorp.qc.ca Tue Jun 25 01:12:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5P5Cb9D007885; Tue, 25 Jun 2002 01:12:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5P4pAU05699 for vserver.list; Tue, 25 Jun 2002 00:51:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts17-srv.bellnexxia.net (tomts17.bellnexxia.net [209.226.175.71]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5P4p9Y05695 for ; Tue, 25 Jun 2002 00:51:09 -0400 Received: from dynacom1 ([65.94.160.26]) by tomts17-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020625045109.CYPM4312.tomts17-srv.bellnexxia.net@dynacom1> for ; Tue, 25 Jun 2002 00:51:09 -0400 Message-ID: <000a01c21bd1$09f10360$1aa05e41@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: Subject: [vserver] Just want to see Date: Tue, 25 Jun 2002 00:46:08 +0200 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0007_01C21BE1.B1E8A2C0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 679 This is a multi-part message in MIME format. ------=_NextPart_000_0007_01C21BE1.B1E8A2C0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hey, just want to see if i am really subscrited :) ------=_NextPart_000_0007_01C21BE1.B1E8A2C0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hey, just want to see if i am really = subscrited=20 :)
------=_NextPart_000_0007_01C21BE1.B1E8A2C0-- From vserver.error@solucorp.qc.ca Tue Jun 25 02:50:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5P6nq9D008670; Tue, 25 Jun 2002 02:49:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5P6WHk07696 for vserver.list; Tue, 25 Jun 2002 02:32:17 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts19-srv.bellnexxia.net (tomts19.bellnexxia.net [209.226.175.73]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5P6WHY07692 for ; Tue, 25 Jun 2002 02:32:17 -0400 Received: from dynacom1 ([65.94.160.26]) by tomts19-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020625063205.VGC11814.tomts19-srv.bellnexxia.net@dynacom1> for ; Tue, 25 Jun 2002 02:32:05 -0400 Message-ID: <000901c21bdf$25956580$1aa05e41@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: References: <000a01c21bd1$09f10360$1aa05e41@dynacom1> Subject: Re: [vserver] Just want to see Date: Tue, 25 Jun 2002 02:27:52 +0200 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0006_01C21BEF.E8440220" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 680 This is a multi-part message in MIME format. ------=_NextPart_000_0006_01C21BEF.E8440220 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable I have a question, i am actually using vserver and i want to load = vserver with specific ip examble /vserver/A have range from = 196.123.112.1 to 196.123.112.32 and /vserver/B have range from = 196.123.112.33 to 196.123.112.64 When i try ifconfig eth0:1 in the vserver it say permission denied SIOCSIFADDR: Permission denied SIOCSIFFLAGS: Permission denied and i try to find more info about that... All I know is that there is currently no support for multi-IP currently. = Someone did write a patch that allows the chbind command to bind a range = of=20 IP's to a vserver instead of a single ip, but it is no longer maintained = as=20 it never made it in the latest releases...=20 This is the only thing i found, thank again=20 Me :) ------=_NextPart_000_0006_01C21BEF.E8440220 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
I have a question, i am actually using = vserver and=20 i want to load vserver with specific ip examble /vserver/A have range = from=20 196.123.112.1 to 196.123.112.32 and /vserver/B have range from = 196.123.112.33 to=20 196.123.112.64
When i try ifconfig eth0:1 in the = vserver it say=20 permission denied
SIOCSIFADDR: Permission = denied
SIOCSIFFLAGS: Permission = denied
 
and i try to find more info about=20 that...
All I know is that there is currently = no support=20 for multi-IP currently.
Someone did write a patch that allows = the chbind=20 command to bind a range of
IP's to a vserver instead of a single ip, = but it=20 is no longer maintained as
it never made it in the latest = releases...=20
 
This is the only thing i found, thank = again=20
Me :)
------=_NextPart_000_0006_01C21BEF.E8440220-- From vserver.error@solucorp.qc.ca Tue Jun 25 14:17:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PIGj9D016424; Tue, 25 Jun 2002 14:16:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PHkZw24727 for vserver.list; Tue, 25 Jun 2002 13:46:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts5-srv.bellnexxia.net (tomts5.bellnexxia.net [209.226.175.25]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PHkZY24723 for ; Tue, 25 Jun 2002 13:46:35 -0400 Received: from dynacom1 ([65.94.160.26]) by tomts5-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020625174625.HOU18547.tomts5-srv.bellnexxia.net@dynacom1> for ; Tue, 25 Jun 2002 13:46:25 -0400 Message-ID: <004b01c21c3d$5aa8f440$1aa05e41@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: Subject: [vserver] Vserver Multi-ip Date: Tue, 25 Jun 2002 13:42:15 +0200 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0048_01C21C4E.1E089160" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 681 This is a multi-part message in MIME format. ------=_NextPart_000_0048_01C21C4E.1E089160 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi Cedrik (and other), do you talk french ? I have a few questions about = the multi-ip in vserver. You have suggest to load many vserver for each = IP. I have customer that have virtual server running under webmin at the = moment. We have try the vserve software and think this is pretty good... = but the problem is on multi-ip support. When we try to attribute ip = ifconfig eth0:1 (ip) it say permission denied. The solution to the = problem is the patch but we can't find one. Do you have a suggestion = regarding to the vserver to support multi-ip or even another software = that can give root access to user (excluding ProVSD)=20 Best Regards, Jean-Philippe B=E9=EFque =C9lectronique Box Comm. = www.eboxw.net ------=_NextPart_000_0048_01C21C4E.1E089160 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi Cedrik (and other), do you talk = french ? I have=20 a few questions about the multi-ip in vserver. You have suggest to load = many=20 vserver for each IP. I have customer that have virtual server running = under=20 webmin at the moment. We have try the vserve software and think this is = pretty=20 good... but the problem is on multi-ip support. When we try to attribute = ip=20 ifconfig eth0:1 (ip) it say permission denied. The solution to the = problem is=20 the patch but we can't find one. Do you have a suggestion regarding to = the=20 vserver to support multi-ip or even another software that can give root = access=20 to user (excluding ProVSD)
 
Best Regards, Jean-Philippe B=E9=EFque = =C9lectronique Box=20 Comm. www.eboxw.net
= ------=_NextPart_000_0048_01C21C4E.1E089160-- From vserver.error@solucorp.qc.ca Tue Jun 25 14:39:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PIcp9D016566; Tue, 25 Jun 2002 14:38:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PIKCJ25648 for vserver.list; Tue, 25 Jun 2002 14:20:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g5PIKBY25644 for ; Tue, 25 Jun 2002 14:20:11 -0400 Received: (qmail 11262 invoked by uid 0); 25 Jun 2002 18:20:10 -0000 Received: from p50838ade.dip.t-dialin.net (HELO starbase) (80.131.138.222) by mail.gmx.net (mp001-rz3) with SMTP; 25 Jun 2002 18:20:10 -0000 Date: Tue, 25 Jun 2002 20:17:03 +0200 From: Christian To: vserver@solucorp.qc.ca Cc: jpbeique@sympatico.ca.lyn@zolotek.net Subject: Re: [vserver] Just want to see Message-Id: <20020625201703.72a24eb2.chth@gmx.net> In-Reply-To: <000901c21bdf$25956580$1aa05e41@dynacom1> References: <000a01c21bd1$09f10360$1aa05e41@dynacom1> <000901c21bdf$25956580$1aa05e41@dynacom1> X-Mailer: Sylpheed version 0.7.8 (GTK+ 1.2.10; i386-debian-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 682 On Tue, 25 Jun 2002 02:27:52 +0200 wrote: > I have a question, i am actually using vserver and i want to load > vserver with specific ip examble /vserver/A have range from > 196.123.112.1 to 196.123.112.32 and /vserver/B have range from > 196.123.112.33 to 196.123.112.64 When i try ifconfig eth0:1 in the > vserver it say permission denied SIOCSIFADDR: Permission denied > SIOCSIFFLAGS: Permission denied > > and i try to find more info about that... > All I know is that there is currently no support for multi-IP currently. > > Someone did write a patch that allows the chbind command to bind a range > of IP's to a vserver instead of a single ip, but it is no longer > maintained as it never made it in the latest releases... > > This is the only thing i found, thank again > Me :) > no longer maintained isn't really true .. i just had no need and no time for it. BUT! it seems that i need the thing next time, so expect a new version within the next weeks (dont expect it to soon ... 3-4 weeks maybe). Question: anyone worked further on the multi-ip patch? so we can merge our work on it. greetings Christian From vserver.error@solucorp.qc.ca Tue Jun 25 14:45:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PIiG9D016656; Tue, 25 Jun 2002 14:44:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PINm725733 for vserver.list; Tue, 25 Jun 2002 14:23:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from fnexchange2.corp.fast.net (fnexchange2.corp.fast.net [209.92.29.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PINmY25728 for ; Tue, 25 Jun 2002 14:23:48 -0400 Received: by fnexchange2.corp.fast.net with Internet Mail Service (5.5.2653.19) id ; Tue, 25 Jun 2002 14:23:49 -0400 Message-ID: <684A8B4FD94E464283C3ABA6AE652141036C749E@fnexchange2.corp.fast.net> From: Jerry Wilborn To: "'vserver@solucorp.qc.ca'" Cc: jpbeique@sympatico.ca.lyn@zolotek.net Subject: RE: [vserver] Just want to see Date: Tue, 25 Jun 2002 14:23:41 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 683 no, but i'd considder you one of the coolest people alive if you were to release an updated patch! =) Jerry Wilborn, Network Operations FASTNET - Internet Solutions 610-266-6700 www.fast.net -----Original Message----- From: Christian [mailto:chth@gmx.net] Sent: Tuesday, June 25, 2002 2:17 PM To: vserver@solucorp.qc.ca Cc: jpbeique@sympatico.ca.lyn@zolotek.net Subject: Re: [vserver] Just want to see On Tue, 25 Jun 2002 02:27:52 +0200 wrote: > I have a question, i am actually using vserver and i want to load > vserver with specific ip examble /vserver/A have range from > 196.123.112.1 to 196.123.112.32 and /vserver/B have range from > 196.123.112.33 to 196.123.112.64 When i try ifconfig eth0:1 in the > vserver it say permission denied SIOCSIFADDR: Permission denied > SIOCSIFFLAGS: Permission denied > > and i try to find more info about that... > All I know is that there is currently no support for multi-IP currently. > > Someone did write a patch that allows the chbind command to bind a range > of IP's to a vserver instead of a single ip, but it is no longer > maintained as it never made it in the latest releases... > > This is the only thing i found, thank again > Me :) > no longer maintained isn't really true .. i just had no need and no time for it. BUT! it seems that i need the thing next time, so expect a new version within the next weeks (dont expect it to soon ... 3-4 weeks maybe). Question: anyone worked further on the multi-ip patch? so we can merge our work on it. greetings Christian From vserver.error@solucorp.qc.ca Tue Jun 25 15:28:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PJRF9D017122; Tue, 25 Jun 2002 15:27:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PJ7Xn27003 for vserver.list; Tue, 25 Jun 2002 15:07:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.catv.telemach.ro ([212.146.66.245]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PJ7WY26999 for ; Tue, 25 Jun 2002 15:07:33 -0400 Received: from 127.0.0.1 (localhost.localdomain [127.0.0.1]) by dummy.domain.name (Postfix) with SMTP id A8EAE17D45 for ; Tue, 25 Jun 2002 22:07:32 +0300 (EEST) Received: from mach2 (mach2 [10.85.0.1]) by mail.catv.telemach.ro (Postfix) with ESMTP id 5F9CB17D44 for ; Tue, 25 Jun 2002 22:07:32 +0300 (EEST) Date: Tue, 25 Jun 2002 22:07:32 +0300 (EEST) From: Razvan Cosma X-X-Sender: razvan@mach2 To: "vserver@solucorp.qc.ca" Subject: Re: [vserver] Vserver Multi-ip In-Reply-To: <004b01c21c3d$5aa8f440$1aa05e41@dynacom1> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by dns.solucorp.qc.ca id g5PJ7WY26999 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 684 On Tue, 25 Jun 2002, Électronique Box Communications wrote: >Do you have a suggestion regarding to the vserver to support multi-ip >or even another software that can give root access to user (excluding >ProVSD) > > Best Regards, Jean-Philippe Béďque Électronique Box Comm. www.eboxw.net > My guess is vserver was specifically designed to avoid root access and I for one am more than happy with this approach, if you need such a level of independence between virtual hosts, vmware seems like the only production-level stable solution. From vserver.error@solucorp.qc.ca Tue Jun 25 16:00:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PJx69D017528; Tue, 25 Jun 2002 15:59:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PJF9D27216 for vserver.list; Tue, 25 Jun 2002 15:15:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts5-srv.bellnexxia.net (tomts5.bellnexxia.net [209.226.175.25]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PJF9Y27212 for ; Tue, 25 Jun 2002 15:15:09 -0400 Received: from dynacom1 ([65.94.160.26]) by tomts5-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020625191502.CULI18547.tomts5-srv.bellnexxia.net@dynacom1> for ; Tue, 25 Jun 2002 15:15:02 -0400 Message-ID: <006901c21c49$bbc78280$1aa05e41@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: References: Subject: Re: [vserver] Vserver Multi-ip Date: Tue, 25 Jun 2002 15:10:52 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 685 Razvan, vmware cannot be controled when you don't have physical access to the server. You need Xwindows and it is eating so much CPU and memory ... it is not very interesting. For the release it could be very interesting if that can support multi-ip :P i'm ready to help your project and maybe do something if it can be done in the next week. We really need that... Bewst regards, Jean-Philippe Béďque Électronique Box Comm. www.eboxw.net From vserver.error@solucorp.qc.ca Tue Jun 25 16:03:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PK2G9D017608; Tue, 25 Jun 2002 16:02:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PJm2028270 for vserver.list; Tue, 25 Jun 2002 15:48:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blue.zolotek.net (www.zolotek.net [209.61.188.119] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PJm1Y28263 for ; Tue, 25 Jun 2002 15:48:01 -0400 Received: from dial-62-64-238-216.access.uk.tiscali.com (dial-62-64-238-216.access.uk.tiscali.com [62.64.238.216]) by blue.zolotek.net (8.9.3/8.9.3) with SMTP id VAA28837 for ; Tue, 25 Jun 2002 21:03:40 +0100 Message-Id: <200206252003.VAA28837@blue.zolotek.net> From: "Lyn St George" To: "vserver@solucorp.qc.ca" Date: Tue, 25 Jun 2002 20:48:06 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: Re: [vserver] Just want to see Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 686 On Tue, 25 Jun 2002 20:17:03 +0200, Christian wrote: > >no longer maintained isn't really true .. i just had no need and no time >for it. >BUT! it seems that i need the thing next time, so expect a new version >within the next weeks (dont expect it to soon ... 3-4 weeks maybe). > >Question: anyone worked further on the multi-ip patch? so we can merge our >work on it. Sorry - I know I promised to do this but the fact is that I just haven't had any spare time from then to now :( I'm not sure when I will either, but I have to agree that the multi-ip patch is very important for a number of people. When you start, please tell me and I'll do my best to assist with it. >greetings Christian > - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Tue Jun 25 16:49:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PKn89D017964; Tue, 25 Jun 2002 16:49:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PKGof28903 for vserver.list; Tue, 25 Jun 2002 16:16:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from fnexchange2.corp.fast.net (fnexchange2.corp.fast.net [209.92.29.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PKGoY28899 for ; Tue, 25 Jun 2002 16:16:50 -0400 Received: by fnexchange2.corp.fast.net with Internet Mail Service (5.5.2653.19) id ; Tue, 25 Jun 2002 16:16:51 -0400 Message-ID: <684A8B4FD94E464283C3ABA6AE652141036C74A3@fnexchange2.corp.fast.net> From: Jerry Wilborn To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] Vserver Multi-ip Date: Tue, 25 Jun 2002 16:16:48 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 687 the billing department for ensim has been unresponsive for months for our account, guess they dont need money. im not sure that it has been overcome, but there used to be a 2G limit on virtual drives. the kernel is custom compiled by ensim so forget about using reiserfs. there is a per virtual server charge (this doesnt exist for vserver). of course, i'm just a bit peaved at the whole billing thing, so my opinion could be totally wrong =) Jerry Wilborn, Network Operations FASTNET - Internet Solutions 610-266-6700 www.fast.net -----Original Message----- From: Paul Menage [mailto:pmenage@ensim.com] Sent: Tuesday, June 25, 2002 4:06 PM To: vserver@solucorp.qc.ca Cc: pmenage@ensim.com Subject: Re: [vserver] Vserver Multi-ip >problem is the patch but we can't find one. Do you have a suggestion >regarding to the vserver to support multi-ip or even another software >that can give root access to user (excluding ProVSD) > Ensim "private servers" support multiple IP addresses per virtual private server, along with about as full (virtual) root access as it's possible to allow without compromising the security of the host server or the other private servers on that host, e.g. they run quite happily with the standard RedHat inittab and init scripts, and have (what appears to be) full access to the network for applications like tcpdump. They also have RAM/swap quotas, disk quota/bandwidth and network bandwidth limits. They're somewhere between VMware and vserver both in terms of level of virtualisation, and performance overhead. Quite a few ISPs offer Ensim private servers, including www.remarkablehosting.com Paul From vserver.error@solucorp.qc.ca Tue Jun 25 17:09:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PL929D018155; Tue, 25 Jun 2002 17:09:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PK6Fx28666 for vserver.list; Tue, 25 Jun 2002 16:06:15 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nasdaq.ms.ensim.com (gateway2.ensim.com [65.164.64.250] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PK6EY28662 for ; Tue, 25 Jun 2002 16:06:14 -0400 Received: from pmenage-dt.ensim.com (pmenage.ensim.com [10.12.71.1]) by nasdaq.ms.ensim.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id NR6DD9P7; Tue, 25 Jun 2002 13:06:07 -0700 Received: from localhost ([127.0.0.1] helo=ensim.com ident=pmenage) by pmenage-dt.ensim.com with esmtp (Exim 3.13 #1 (Debian)) id 17MwZQ-0003DD-00; Tue, 25 Jun 2002 13:05:48 -0700 X-Mailer: exmh version 2.5 01/15/2001 with nmh-1.0 From: Paul Menage To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver Multi-ip cc: pmenage@ensim.com In-reply-to: Your message of "Tue, 25 Jun 2002 13:42:15 +0200." <004b01c21c3d$5aa8f440$1aa05e41@dynacom1> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Date: Tue, 25 Jun 2002 13:05:48 -0700 Sender: pmenage@ensim.com Message-Id: Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g5PK6EY28662 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 688 >problem is the patch but we can't find one. Do you have a suggestion >regarding to the vserver to support multi-ip or even another software >that can give root access to user (excluding ProVSD) > Ensim "private servers" support multiple IP addresses per virtual private server, along with about as full (virtual) root access as it's possible to allow without compromising the security of the host server or the other private servers on that host, e.g. they run quite happily with the standard RedHat inittab and init scripts, and have (what appears to be) full access to the network for applications like tcpdump. They also have RAM/swap quotas, disk quota/bandwidth and network bandwidth limits. They're somewhere between VMware and vserver both in terms of level of virtualisation, and performance overhead. Quite a few ISPs offer Ensim private servers, including www.remarkablehosting.com Paul From vserver.error@solucorp.qc.ca Tue Jun 25 18:08:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PM7v9D018746; Tue, 25 Jun 2002 18:07:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PLGc130650 for vserver.list; Tue, 25 Jun 2002 17:16:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nasdaq.ms.ensim.com (gateway2.ensim.com [65.164.64.250] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PLGcY30646 for ; Tue, 25 Jun 2002 17:16:38 -0400 Received: from pmenage-dt.ensim.com (pmenage.ensim.com [10.12.71.1]) by nasdaq.ms.ensim.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id NR6DD9Z8; Tue, 25 Jun 2002 14:16:38 -0700 Received: from localhost ([127.0.0.1] helo=ensim.com ident=pmenage) by pmenage-dt.ensim.com with esmtp (Exim 3.13 #1 (Debian)) id 17Mxff-0003Kg-00; Tue, 25 Jun 2002 14:16:19 -0700 X-Mailer: exmh version 2.5 01/15/2001 with nmh-1.0 From: Paul Menage To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver Multi-ip cc: pmenage@ensim.com In-reply-to: Your message of "Tue, 25 Jun 2002 16:16:48 EDT." <684A8B4FD94E464283C3ABA6AE652141036C74A3@fnexchange2.corp.fast.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Tue, 25 Jun 2002 14:16:19 -0700 Sender: pmenage@ensim.com Message-Id: Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 689 > >the billing department for ensim has been unresponsive for months for our >account, guess they dont need money. I can't say what the problem might be here, but I've forwarded it to someone who can. > >im not sure that it has been overcome, but there used to be a 2G limit on >virtual drives. That was fixed a *long* time ago - about 2 months after the first release back in 2000. > >the kernel is custom compiled by ensim so forget about using reiserfs. We now ship the patched kernel source with the virtualisation software, so it is possible to make your own changes. > >there is a per virtual server charge (this doesnt exist for vserver). Yes, this can be considered a drawback compared to vserver when looked at on its own. However, we do have great support and engineering staff to handle any issues that might crop up. Paul From vserver.error@solucorp.qc.ca Tue Jun 25 18:21:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PMKq9D018905; Tue, 25 Jun 2002 18:20:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PLFs030624 for vserver.list; Tue, 25 Jun 2002 17:15:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts20-srv.bellnexxia.net (tomts20.bellnexxia.net [209.226.175.74]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PLFsY30620 for ; Tue, 25 Jun 2002 17:15:54 -0400 Received: from dynacom1 ([65.94.160.26]) by tomts20-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020625211554.PML15453.tomts20-srv.bellnexxia.net@dynacom1> for ; Tue, 25 Jun 2002 17:15:54 -0400 Message-ID: <00c701c21c5a$9a013540$1aa05e41@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: References: Subject: Re: [vserver] Vserver Multi-ip Date: Tue, 25 Jun 2002 17:11:37 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 690 FreeVSD doesn't exist anymore... You have to pay 2300$ to buy a complete version with full licenses. From vserver.error@solucorp.qc.ca Tue Jun 25 18:28:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PMRc9D018981; Tue, 25 Jun 2002 18:27:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PL1oP30081 for vserver.list; Tue, 25 Jun 2002 17:01:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rhenium.btinternet.com (rhenium.btinternet.com [194.73.73.93]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PL1oY30077 for ; Tue, 25 Jun 2002 17:01:50 -0400 Received: from host62-6-84-97.in-addr.btopenworld.com ([62.6.84.97] helo=home4v9eek8u3l) by rhenium.btinternet.com with smtp (Exim 3.22 #8) id 17MxRd-0005QZ-00 for vserver@solucorp.qc.ca; Tue, 25 Jun 2002 22:01:49 +0100 From: "John Lyons" To: Subject: RE: [vserver] Vserver Multi-ip Date: Tue, 25 Jun 2002 21:55:48 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 691 > My guess is vserver was specifically designed to avoid root access and > I for one am more than happy with this approach, if you need such a level I've not followed all of this thread but vserver gives full root access to the server but the extent of that access is controled by the privaledges given in the vservers conf file. If you want a virtual server system that doesn't provide anything close to root access then you should be looking at FreeVSD but in most cases vserver beats Freevsd. Regards John Lyons Netserve Consultants Ltd www.domaincity.co.uk From vserver.error@solucorp.qc.ca Tue Jun 25 19:09:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PN9V9D019481; Tue, 25 Jun 2002 19:09:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PMCIX31944 for vserver.list; Tue, 25 Jun 2002 18:12:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp016.mail.yahoo.com (smtp016.mail.yahoo.com [216.136.174.113]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g5PMCHY31940 for ; Tue, 25 Jun 2002 18:12:18 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 25 Jun 2002 22:12:16 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Vserver Multi-ip Date: Tue, 25 Jun 2002 17:12:07 -0500 Message-ID: <000001c21c95$59411ee0$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-reply-to: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 692 Just out of curiosity, since the Linux Kernel is GPL, does that mean your patch would also be GPL? Peter -----Original Message----- From: pmenage@ensim.com [mailto:pmenage@ensim.com] Sent: Tuesday, June 25, 2002 4:16 PM To: vserver@solucorp.qc.ca Cc: pmenage@ensim.com Subject: Re: [vserver] Vserver Multi-ip > >the billing department for ensim has been unresponsive for months for our >account, guess they dont need money. I can't say what the problem might be here, but I've forwarded it to someone who can. > >im not sure that it has been overcome, but there used to be a 2G limit on >virtual drives. That was fixed a *long* time ago - about 2 months after the first release back in 2000. > >the kernel is custom compiled by ensim so forget about using reiserfs. We now ship the patched kernel source with the virtualisation software, so it is possible to make your own changes. > >there is a per virtual server charge (this doesnt exist for vserver). Yes, this can be considered a drawback compared to vserver when looked at on its own. However, we do have great support and engineering staff to handle any issues that might crop up. Paul From vserver.error@solucorp.qc.ca Tue Jun 25 19:14:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PNDi9D019523; Tue, 25 Jun 2002 19:13:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PMjxm32643 for vserver.list; Tue, 25 Jun 2002 18:45:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts9-srv.bellnexxia.net (tomts9.bellnexxia.net [209.226.175.53]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PMjwY32639 for ; Tue, 25 Jun 2002 18:45:59 -0400 Received: from dynacom1 ([65.94.161.99]) by tomts9-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020625224559.RKGF1645.tomts9-srv.bellnexxia.net@dynacom1> for ; Tue, 25 Jun 2002 18:45:59 -0400 Message-ID: <000501c21c67$31805b60$63a15e41@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: References: <000001c21c95$59411ee0$ed23bd41@PremiumFood> Subject: Re: [vserver] Vserver Multi-ip Date: Tue, 25 Jun 2002 18:41:45 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 693 Yes the patch will be GPL ... i think Best regards, Jean-Philippe Béďque , Électronique Box Comm. www.eboxw.net From vserver.error@solucorp.qc.ca Tue Jun 25 19:19:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5PNIr9D019570; Tue, 25 Jun 2002 19:18:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5PMqwi00334 for vserver.list; Tue, 25 Jun 2002 18:52:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from bill.aqvs.co.uk (bill.aqvs.co.uk [195.224.50.198]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5PMqvY00330 for ; Tue, 25 Jun 2002 18:52:57 -0400 Received: from notebook1 (pam80-1-20-118.man.dial.ntli.net [80.1.20.118]) by bill.aqvs.co.uk (8.11.0/8.11.0) with SMTP id g5PMkgu29042 for ; Tue, 25 Jun 2002 23:46:42 +0100 Message-ID: <001101c21c9a$f54f4730$14010a0a@mastokes.local> From: "Bill Brigden" To: References: <00c701c21c5a$9a013540$1aa05e41@dynacom1> Subject: Re: [vserver] Vserver Multi-ip Date: Tue, 25 Jun 2002 23:52:17 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 694 Freevsd does exist - but you can only get it off the CVS server...check the mailing list archives on the site for that.... A branched project from FreeVSD was OpenVDS, but little has been done to the core of VSD since it branched... Bill. ----- Original Message ----- From: "Électronique Box Communications" To: Sent: Tuesday, June 25, 2002 4:11 PM Subject: Re: [vserver] Vserver Multi-ip > FreeVSD doesn't exist anymore... You have to pay 2300$ to buy a complete > version with full licenses. > From vserver.error@solucorp.qc.ca Tue Jun 25 22:03:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5Q22g9D021383; Tue, 25 Jun 2002 22:02:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5Q1isd03798 for vserver.list; Tue, 25 Jun 2002 21:44:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5Q1irY03794 for ; Tue, 25 Jun 2002 21:44:53 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 124157A560; Wed, 26 Jun 2002 02:44:54 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 0343F9213B for ; Wed, 26 Jun 2002 02:44:53 +0100 (BST) Date: Wed, 26 Jun 2002 02:44:53 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Vserver Multi-ip In-Reply-To: <00c701c21c5a$9a013540$1aa05e41@dynacom1> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by dns.solucorp.qc.ca id g5Q1irY03794 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 695 On Tue, 25 Jun 2002, Électronique Box Communications wrote: > FreeVSD doesn't exist anymore... You have to pay 2300$ to buy a complete > version with full licenses. Something like? cvs -d:pserver:anonymous@cvs.freevsd.org:/usr/local/cvsroot co freevsd ...and I tried to checkout a copy just now and it doesn't like me anymore. I've emailed the list, we'll see whether anyone says anything. The website is down for because of DNS problems, and a missing dot: $ dig www.freevsd.org. | grep CNAME www.freevsd.org. 23h39m54s IN CNAME freevsd.org.freevsd.org. Although freevsd.org just points to the commerical site now. My attiude has always been to recommend paying them for something as a thank-you, since they (or mostly DSVR) went and developed FreeVSD and released it, and now need to make their money back to pay the poor developers; however... -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Tue Jun 25 22:05:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5Q24u9D021396; Tue, 25 Jun 2002 22:04:56 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5Q1pjb04015 for vserver.list; Tue, 25 Jun 2002 21:51:45 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts14-srv.bellnexxia.net (tomts14.bellnexxia.net [209.226.175.35]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5Q1piY04011 for ; Tue, 25 Jun 2002 21:51:45 -0400 Received: from dynacom1 ([65.94.161.99]) by tomts14-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020626015148.KJPR20747.tomts14-srv.bellnexxia.net@dynacom1> for ; Tue, 25 Jun 2002 21:51:48 -0400 Message-ID: <000701c21c81$24874940$63a15e41@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: References: Subject: Re: [vserver] Vserver Multi-ip Date: Tue, 25 Jun 2002 21:47:30 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 696 Ok, but FreeVSD isn't working on a Debian Server, i get a version of the software and try to install it, the install doc say that i need RedHat 6.2* or 7.* but i'm on Debian so it is not for me... anyway i'm waiting for the patch for multi-ip vserver is the best... Best Regards, Jean-Philippe Béďque, Électronique Box Comm. www.eboxw.net From vserver.error@solucorp.qc.ca Tue Jun 25 22:29:13 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5Q2Sq9D021774; Tue, 25 Jun 2002 22:28:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5Q2Aj204493 for vserver.list; Tue, 25 Jun 2002 22:10:45 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5Q2AiY04489 for ; Tue, 25 Jun 2002 22:10:44 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 72C7D7A562; Wed, 26 Jun 2002 03:10:45 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 6D47B9213E for ; Wed, 26 Jun 2002 03:10:45 +0100 (BST) Date: Wed, 26 Jun 2002 03:10:45 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Vserver Multi-ip In-Reply-To: <000701c21c81$24874940$63a15e41@dynacom1> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by dns.solucorp.qc.ca id g5Q2AiY04489 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 697 On Tue, 25 Jun 2002, Électronique Box Communications wrote: > Ok, but FreeVSD isn't working on a Debian Server There's a large ISP in Canada who use it by the bucket load (large-scale) with Debian Hosts+Skels. I was considering packaging it, but then I came across the vserver patches, which are far better suited to my task in hand. > i get a version of the software and try to install it, the install doc > say that i need RedHat 6.2* or 7.* but i'm on Debian so it is not for > me... Time to find your $EDITOR and tweek as required! ;-) It's nothing more than a bunch of scripts for mangling skels, (although the lastest build may have some kernels mods in it?). The frontend and middleware are probably worth looking at in combination with vserver on the backend, and some fresh to glue to stick them together. > anyway i'm waiting for the patch for multi-ip vserver is the best... If you need it and can't provide the time/skills yourself, would you be prepared to _fund_ one of the developers to implement it? -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Wed Jun 26 00:14:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5Q4EV9D022942; Wed, 26 Jun 2002 00:14:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5Q3owl06426 for vserver.list; Tue, 25 Jun 2002 23:50:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts8-srv.bellnexxia.net (tomts8.bellnexxia.net [209.226.175.52]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5Q3orY06422 for ; Tue, 25 Jun 2002 23:50:58 -0400 Received: from dynacom1 ([65.94.161.99]) by tomts8-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020626035047.IOUA18868.tomts8-srv.bellnexxia.net@dynacom1> for ; Tue, 25 Jun 2002 23:50:47 -0400 Message-ID: <000501c21c91$c9c287c0$63a15e41@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: References: Subject: Re: [vserver] Vserver Multi-ip Date: Tue, 25 Jun 2002 23:45:57 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 698 fund ? From vserver.error@solucorp.qc.ca Wed Jun 26 02:49:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5Q6nD9D024012; Wed, 26 Jun 2002 02:49:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5Q6OJl09553 for vserver.list; Wed, 26 Jun 2002 02:24:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from firefox.mindgate.net (firefox.mindgate.net [203.177.6.14]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g5Q6OIY09549 for ; Wed, 26 Jun 2002 02:24:18 -0400 Received: (qmail 19629 invoked from network); 26 Jun 2002 06:15:53 -0000 Received: from proxy59.mindgate.net (HELO tec.mindgate.net) (203.177.6.59) by firefox.mindgate.net with SMTP; 26 Jun 2002 06:15:53 -0000 Date: Wed, 26 Jun 2002 14:25:56 +0800 (PHT) From: Pong X-Sender: fdeg@tec.mindgate.net To: vserver@solucorp.qc.ca Subject: RE: [vserver] Vserver Multi-ip In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 699 On Tue, 25 Jun 2002, John Lyons wrote: > > My guess is vserver was specifically designed to avoid root access and > > I for one am more than happy with this approach, if you need such a level > > If you want a virtual server system that doesn't provide anything close to > root access then you should be looking at FreeVSD but in most cases vserver > beats Freevsd. > yes because you also must consider being rooted inside freevsd so you need vserver patch to protect the host and other virtual server clients from the intruder. also, try combining the LIDS patch together with vserver so you can globally turn off and enforce the privileges that needs to be dropped within all vservers. pong From vserver.error@solucorp.qc.ca Wed Jun 26 04:53:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5Q8qr9D025940; Wed, 26 Jun 2002 04:52:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5Q8Nbq13148 for vserver.list; Wed, 26 Jun 2002 04:23:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from idaya.com ([217.204.14.66]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5Q8NaY13144 for ; Wed, 26 Jun 2002 04:23:36 -0400 Received: from idaya.co.uk (toor@[217.206.44.130]) by idaya.com (8.11.6/8.11.2) with ESMTP id g5Q8NZ530204 for ; Wed, 26 Jun 2002 04:23:35 -0400 Message-ID: <3D1979FB.9070503@idaya.co.uk> Date: Wed, 26 Jun 2002 09:23:23 +0100 From: Damion Parry User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020513 X-Accept-Language: en, en-us MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver Multi-ip References: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: A X-Keywords: X-UID: 700 Hello, We've just moved all of the freeVSD stuff to a new server, and yes it was down for a short time, apologies, but CVS is back, and the mailing list should be. Damion. Paul Sladen wrote: > On Tue, 25 Jun 2002, Électronique Box Communications wrote: > > >>FreeVSD doesn't exist anymore... You have to pay 2300$ to buy a complete >>version with full licenses. > > > Something like? > > cvs -d:pserver:anonymous@cvs.freevsd.org:/usr/local/cvsroot co freevsd > > ...and I tried to checkout a copy just now and it doesn't like me anymore. > I've emailed the list, we'll see whether anyone says anything. > > The website is down for because of DNS problems, and a missing dot: > > $ dig www.freevsd.org. | grep CNAME > www.freevsd.org. 23h39m54s IN CNAME freevsd.org.freevsd.org. > > Although freevsd.org just points to the commerical site now. > > My attiude has always been to recommend paying them for something as a > thank-you, since they (or mostly DSVR) went and developed FreeVSD and > released it, and now need to make their money back to pay the poor > developers; however... > > -Paul From vserver.error@solucorp.qc.ca Thu Jun 27 12:31:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5RGVA9D014763; Thu, 27 Jun 2002 12:31:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5RFDeg23245 for vserver.list; Thu, 27 Jun 2002 11:13:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5RFDaY23241 for ; Thu, 27 Jun 2002 11:13:40 -0400 Received: from localhost (alien.vlad.net [208.236.0.236]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5RFDK9E013802 for ; Thu, 27 Jun 2002 11:13:21 -0400 Date: Thu, 27 Jun 2002 11:13:20 -0400 (EDT) From: Vlad To: vserver@solucorp.qc.ca Subject: [vserver] vserver update script In-Reply-To: <3D1979FB.9070503@idaya.co.uk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-VirusScanner: Found to be clean, Found to be clean Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: RO X-Status: X-Keywords: X-UID: 701 I recall someone saying something about vserver (redhat) update scripts that would update all the files on the vserver (or create a vserver) directly from redhat cd's. Does anybody still maintain this and furthermore, has anybody used it at all to make upgrades to their systems? I have both types of vservers (with links to the root server and separate fs copies) so I am wondering if anybody has encountered any problems before I go ahead and start destroying stuff. -Vlad From vserver.error@solucorp.qc.ca Thu Jun 27 15:11:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5RJBB9D016575; Thu, 27 Jun 2002 15:11:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5RIZBL27811 for vserver.list; Thu, 27 Jun 2002 14:35:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blue.wowweb.dk (0x503e3545.arcnxx10.adsl-dhcp.tele.dk [80.62.53.69]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5RIZ2Y27807 for ; Thu, 27 Jun 2002 14:35:10 -0400 Received: from there (boa.wowweb.dk [10.0.0.7]) by blue.wowweb.dk (Postfix) with SMTP id 4B6BB11855 for ; Thu, 27 Jun 2002 20:35:00 +0200 (CEST) Content-Type: text/plain; charset="iso-8859-1" From: Jesper Andersen <424242424242424242@j-f.dk> To: vserver@solucorp.qc.ca Subject: [vserver] Compiling the utils Date: Thu, 27 Jun 2002 20:34:56 +0200 X-Mailer: KMail [version 1.3.2] MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: <20020627183500.4B6BB11855@blue.wowweb.dk> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 702 I am trying to compile the utils for vserver but it doesn't go too well as you can see below. I guess the problem is that I use gcc version 3.1?? ----- vserver-0.17# make g++ -c -o syscall.o syscall.cc gcc -funsigned-char -Wall -g -DVERSION=\"0.17\" chbind.cc syscall.o -o chbind \ -lstdc++ In file included from /usr/include/g++-v3/backward/iostream.h:31, from vutil.h:11, from chbind.cc:16: /usr/include/g++-v3/backward/backward_warning.h:32:2: warning: #warning This file includes at least one deprecated or antiquated header. Please consider using one of the 32 headers found in section 17.4.1.2 of the C++ standard. Examples include substituting the header for the header for C++ includes, or instead of the deprecated header . To disable this warning use -Wno-deprecated. In file included from chbind.cc:16: vutil.h:12:22: pfstream.h: No such file or directory In file included from chbind.cc:16: vutil.h:27: 'string' is used as a type, but is not defined as a type. vutil.h:28: 'string' is used as a type, but is not defined as a type. vutil.h:29: parse error before `&' token vutil.h:32: missing ';' before right brace vutil.h:34: ISO C++ forbids defining types within return type vutil.h:34: semicolon missing after declaration of `class PACKAGE' vutil.h: In function `int PACKAGE(const char*, const char*)': vutil.h:35: only constructors take base initializers vutil.h:35: confused by earlier errors, bailing out make: *** [chbind] Error 1 ----- -- Jesper From vserver.error@solucorp.qc.ca Thu Jun 27 18:01:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5RM1p9D018485; Thu, 27 Jun 2002 18:01:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5RLLbr31876 for vserver.list; Thu, 27 Jun 2002 17:21:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from iteckmailx.infoteck.qc.ca (smtp2.infoteck.qc.ca [205.151.16.14]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5RLLbY31872 for ; Thu, 27 Jun 2002 17:21:37 -0400 Received: from [205.151.16.16] (port=1370 helo=ITeckShield.infoteck.qc.ca) by iteckmailx.infoteck.qc.ca with smtp (Exim 4.04) id 17Nghs-0003dA-00 for vserver@solucorp.qc.ca; Thu, 27 Jun 2002 17:21:36 -0400 Received: from iteck4.infoteck.qc.ca(205.151.16.4) by ITeckShield.infoteck.qc.ca via csmap id 22486; Thu, 27 Jun 2002 17:16:25 -0400 (EDT) Message-ID: <009701c21e20$cd38be70$1400010a@infoteck.ca> From: "Joel Vandal" To: References: <000301c21e1e$e9234490$ed23bd41@PremiumFood> Subject: Re: [vserver] Vserver process number limit does not work Date: Thu, 27 Jun 2002 17:22:54 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 703 Hi, > S_CAPS="CAP_NET_RAW CAP_SYS_RESOURCE" > Would this explains the lack of limit? I think you self answer your problem... remove CAP_SYS_RESOURCE and the limit will work /* Override resource limits. Set resource limits. */ #define CAP_SYS_RESOURCE 24 :) -- Joel Vandal From vserver.error@solucorp.qc.ca Thu Jun 27 18:44:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5RMiZ9D018981; Thu, 27 Jun 2002 18:44:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5RL9VT31554 for vserver.list; Thu, 27 Jun 2002 17:09:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp013.mail.yahoo.com (smtp013.mail.yahoo.com [216.136.173.57]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g5RL9UY31550 for ; Thu, 27 Jun 2002 17:09:31 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 27 Jun 2002 21:09:29 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] Vserver process number limit does not work Date: Thu, 27 Jun 2002 16:09:22 -0500 Message-ID: <000301c21e1e$e9234490$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 704 I was surprised to find that on one of my vserver, even after setting the nproc option and setting the limit to ULIMIT="-H -u 100", the vserver at one point had over 166 processes. Is the process-limiting feature unimplemented? Or is this a bug? Also, I have the following flag enabled, S_CAPS="CAP_NET_RAW CAP_SYS_RESOURCE" Would this explains the lack of limit? Peter From vserver.error@solucorp.qc.ca Thu Jun 27 19:38:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5RNbw9D019609; Thu, 27 Jun 2002 19:37:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5RM5S400410 for vserver.list; Thu, 27 Jun 2002 18:05:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp014.mail.yahoo.com (smtp014.mail.yahoo.com [216.136.173.58]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g5RM5RY00406 for ; Thu, 27 Jun 2002 18:05:27 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 27 Jun 2002 22:05:26 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Vserver process number limit does not work Date: Thu, 27 Jun 2002 17:05:19 -0500 Message-ID: <000601c21e26$ba10d110$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <009701c21e20$cd38be70$1400010a@infoteck.ca> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 705 Yes, thank you very much! I gave that capability so that the vserver could run BIND, but I forgot that that would also affect the limit. Thanks, Peter -----Original Message----- From: Joel Vandal [mailto:jvandal@infoteck.qc.ca] Sent: Thursday, June 27, 2002 4:23 PM To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver process number limit does not work Hi, > S_CAPS="CAP_NET_RAW CAP_SYS_RESOURCE" > Would this explains the lack of limit? I think you self answer your problem... remove CAP_SYS_RESOURCE and the limit will work /* Override resource limits. Set resource limits. */ #define CAP_SYS_RESOURCE 24 :) -- Joel Vandal From vserver.error@solucorp.qc.ca Thu Jun 27 19:40:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5RNdw9D019624; Thu, 27 Jun 2002 19:39:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5RM7tc00459 for vserver.list; Thu, 27 Jun 2002 18:07:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g5RM7sY00455 for ; Thu, 27 Jun 2002 18:07:54 -0400 Received: (qmail 27706 invoked by uid 0); 27 Jun 2002 22:07:53 -0000 Received: from pd95308b7.dip.t-dialin.net (HELO starbase) (217.83.8.183) by mail.gmx.net (mp004-rz3) with SMTP; 27 Jun 2002 22:07:53 -0000 Date: Fri, 28 Jun 2002 00:04:47 +0200 From: Christian To: vserver@solucorp.qc.ca Subject: Re: [vserver] Compiling the utils Message-Id: <20020628000447.606561e0.chth@gmx.net> In-Reply-To: <20020627183500.4B6BB11855@blue.wowweb.dk> References: <20020627183500.4B6BB11855@blue.wowweb.dk> X-Mailer: Sylpheed version 0.7.8 (GTK+ 1.2.10; i386-debian-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 706 On Thu, 27 Jun 2002 20:34:56 +0200 Jesper Andersen <424242424242424242@j-f.dk> wrote: > I am trying to compile the utils for vserver but it doesn't go too well > as you can see below. I guess the problem is that I use gcc version > 3.1?? > a) try using gcc/++ 2.95.x, it uses some nonstandard / deprecated stuff. (or get a prebuild binary) b) wait until someone fixes it for standard ISO-C++ compilance .. i will do it when i work on the multi-ip patch in some time. Be patient (or send me some money to priortize it :) cheers Christian From vserver.error@solucorp.qc.ca Fri Jun 28 07:53:29 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5SBqu9D027707; Fri, 28 Jun 2002 07:52:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5SBU6317035 for vserver.list; Fri, 28 Jun 2002 07:30:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5SBU5Y17031 for ; Fri, 28 Jun 2002 07:30:05 -0400 Received: from remtk.solucorp.qc.ca (g36-90.citenet.net [206.123.36.90]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g5SBY5A71583 for ; Fri, 28 Jun 2002 07:34:05 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g5SAmH732519 for vserver@solucorp.qc.ca; Fri, 28 Jun 2002 06:48:17 -0400 From: Jacques Gelinas Date: Fri, 28 Jun 2002 06:48:17 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Compiling the utils X-mailer: tlmpmail 0.6 Message-ID: <20020628064817.7cdf6e973f99@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 707 On Fri, 28 Jun 2002 00:04:47 -0500, Christian wrote > On Thu, 27 Jun 2002 20:34:56 +0200 > Jesper Andersen <424242424242424242@j-f.dk> wrote: > > > I am trying to compile the utils for vserver but it doesn't go too well > > as you can see below. I guess the problem is that I use gcc version > > 3.1?? > > > > a) try using gcc/++ 2.95.x, it uses some nonstandard / deprecated stuff. > (or get a prebuild binary) What is replacing ipfstream in the C++ ? Do you have a list of nonstandard stuff ? I will fix it. The difficulty maybe to fix it and have it compiled on older G++. Not sure --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Jun 28 08:33:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5SCWb9D028303; Fri, 28 Jun 2002 08:32:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5SBU7g17041 for vserver.list; Fri, 28 Jun 2002 07:30:07 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5SBU6Y17037 for ; Fri, 28 Jun 2002 07:30:06 -0400 Received: from remtk.solucorp.qc.ca (g36-90.citenet.net [206.123.36.90]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g5SBY6A71587 for ; Fri, 28 Jun 2002 07:34:06 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g5SBRsd32704 for vserver@solucorp.qc.ca; Fri, 28 Jun 2002 07:27:55 -0400 From: Jacques Gelinas Date: Fri, 28 Jun 2002 07:27:54 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver Multi-ip X-mailer: tlmpmail 0.6 Message-ID: <20020628072754.57eac5886e1b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 708 On Tue, 25 Jun 2002 13:05:48 -0500, Paul Menage wrote > > > Ensim "private servers" support multiple IP addresses per virtual > private server, along with about as full (virtual) root access as it's > possible to allow without compromising the security of the host server > or the other private servers on that host, e.g. they run quite happily > with the standard RedHat inittab and init scripts, and have (what > appears to be) full access to the network for applications like tcpdump. vserver handle this as well. Set the fakeinit S_FLAGS in the configuration and the vserver with boot simply by running /sbin/init and /etc/inittab will be used normally. Strip the stuff you do not need (such as the boot time initialisation and the vconsoles) and there you go. To handle tcpdump, provide the vserver with the proper privilege (CAP_NET_ADMIN I would say) and it will be able to use such utility. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Jun 28 09:04:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5SD479D028649; Fri, 28 Jun 2002 09:04:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5SBU8517047 for vserver.list; Fri, 28 Jun 2002 07:30:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5SBU8Y17043 for ; Fri, 28 Jun 2002 07:30:08 -0400 Received: from remtk.solucorp.qc.ca (g36-90.citenet.net [206.123.36.90]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g5SBY7A71590 for ; Fri, 28 Jun 2002 07:34:07 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g5SAwJo32523 for vserver@solucorp.qc.ca; Fri, 28 Jun 2002 06:58:19 -0400 From: Jacques Gelinas Date: Fri, 28 Jun 2002 06:58:19 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver update script X-mailer: tlmpmail 0.6 Message-ID: <20020628065819.cc581e4af2ec@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: A X-Keywords: X-UID: 709 On Thu, 27 Jun 2002 11:13:20 -0500, Vlad wrote > > I recall someone saying something about vserver (redhat) update scripts > that would update all the files on the vserver (or create a vserver) > directly from redhat cd's. Does anybody still maintain this and > furthermore, has anybody used it at all to make upgrades to their systems? > I have both types of vservers (with links to the root server and separate > fs copies) so I am wondering if anybody has encountered any problems > before I go ahead and start destroying stuff. The script to install directly from a CD is in /usr/lib/vserver. Currently there is one to install from a rh7.2 CD. I will release a new version with support for 7.3. Further, the newvserver utility will offer the ability to install from a CD directly in the menu and will use these script directly (note this stuff is already done, just not released yet). For the upgrade part, no script are available yet. Performing the upgrade generally involve the following steps -Doing rework in distribution dependant configuration file, as needed. In general, this does not affect a vserver since this stuff applies to low level configuration. -Handling deprecated packages. For example, a package foo may evolve in two packages: foo-client and foo-server. RPM can't handle this kind of relation (the package has a new name). So in that case, the offending package must be removed and then the upgrade performed. -Computing the new dependencies and potentially adding new packages to solve it. I have written a module to handle that and I am testing it here. The cool thing about vservers is that you can test your upgrade over and over without rebooting or loosing anything. You simply do -create a new test vserver out of a production one: 1 minute -assign a new IP to it -perform the upgrade -test it -erase it and try again. In general, the original production vserver should just stay there in case the upgrade has some hidden side effect. You archive it and delete it few week later. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Jun 28 11:05:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5SF539D029738; Fri, 28 Jun 2002 11:05:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5SDavN20030 for vserver.list; Fri, 28 Jun 2002 09:36:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g5SDauY20025 for ; Fri, 28 Jun 2002 09:36:56 -0400 Received: (qmail 28011 invoked by uid 0); 28 Jun 2002 13:36:55 -0000 Received: from pd9e39f23.dip.t-dialin.net (HELO starbase) (217.227.159.35) by mail.gmx.net (mp001-rz3) with SMTP; 28 Jun 2002 13:36:55 -0000 Date: Fri, 28 Jun 2002 15:33:48 +0200 From: Christian To: vserver@solucorp.qc.ca Subject: Re: [vserver] Compiling the utils Message-Id: <20020628153348.42c6dbae.chth@gmx.net> In-Reply-To: <20020628064817.7cdf6e973f99@remtk.solucorp.qc.ca> References: <20020628064817.7cdf6e973f99@remtk.solucorp.qc.ca> X-Mailer: Sylpheed version 0.7.8 (GTK+ 1.2.10; i386-debian-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 710 On Fri, 28 Jun 2002 06:48:17 -0500 Jacques Gelinas wrote: > On Fri, 28 Jun 2002 00:04:47 -0500, Christian wrote > > On Thu, 27 Jun 2002 20:34:56 +0200 > > Jesper Andersen <424242424242424242@j-f.dk> wrote: > > > > > I am trying to compile the utils for vserver but it doesn't go too > > > well as you can see below. I guess the problem is that I use gcc > > > version 3.1?? > > > > > > > a) try using gcc/++ 2.95.x, it uses some nonstandard / deprecated > > stuff.(or get a prebuild binary) > > What is replacing ipfstream in the C++ ? > > Do you have a list of nonstandard stuff ? I will fix it. The difficulty > maybe to fix it and have it compiled on older G++. Not sure ipfstream was a gnu extension and is not in the new libstdc++ the standard supports no stream thing with such semantics, u would need to convert it to stringstreams (#include ) or using a normal fstream and save stream positions with pos_type/tell/seek for backtracking in a parser. wiht pre-adjusting the buffer u will get a good performance. anyways i didnt looked that the current source but it seems it will need some semantic changes to adapt it to ISO-C++. the other problem is that many stock 2.95 g++'s didn't come with the sstream header (there is a sstream for g++ 2.95 but its not in the package) so it might need some fallback for both possibilities. cya Christian From vserver.error@solucorp.qc.ca Fri Jun 28 12:35:29 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5SGZA9D030581; Fri, 28 Jun 2002 12:35:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5SFj5T23045 for vserver.list; Fri, 28 Jun 2002 11:45:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5SFj4Y23041 for ; Fri, 28 Jun 2002 11:45:04 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g5SFj0407932 for ; Fri, 28 Jun 2002 08:45:00 -0700 Date: Fri, 28 Jun 2002 08:45:00 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: [vserver] partd on running system Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 711 This is a little off-topic and may actually apply more to a non-vserver system. In a fit of newbie-ism/madness I created a 'remotely located' system with multiple partitions thinking to enforce quotas that way. Of course to use unification this doesn't work very well. I was thinking I'd run partd and glob those partions back into one big one and then be able to use unification. The last time I read up on partd there was some CYA about tunning it on an running system. Has anyone on the list used partd - tried it on a running system? TIA, Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Fri Jun 28 12:39:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5SGdT9D030604; Fri, 28 Jun 2002 12:39:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5SFDwx22271 for vserver.list; Fri, 28 Jun 2002 11:13:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5SFDwY22267 for ; Fri, 28 Jun 2002 11:13:58 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g5SBc5I32712 for vserver@solucorp.qc.ca; Fri, 28 Jun 2002 07:38:05 -0400 From: Jacques Gelinas Date: Fri, 28 Jun 2002 07:38:05 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Just want to see X-mailer: tlmpmail 0.6 Message-ID: <20020628073805.1b4f8b4d0dfa@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 712 On Tue, 25 Jun 2002 20:17:03 -0500, Christian wrote > no longer maintained isn't really true .. i just had no need and no time > for it. > BUT! it seems that i need the thing next time, so expect a new version > within the next weeks (dont expect it to soon ... 3-4 weeks maybe). > > Question: anyone worked further on the multi-ip patch? so we can merge our > work on it. Lately I have experienced some problems with the current handling of the loopback device. For now, we fold everything magically with the ipv4root. This works for most software. But some server uses the loopback to talk to themselve and check the origin of a request to tell them apart (local request, external request). Using the current vserver, they can't make the difference because any access to 127.0.0.1 is turned to the ipv4root. So even for simple cases, we need to support the loopback and the ipv4root separatly. So the multi-IP solution is needed. I will release a new vserver kit this week. On the kernel side, there is nothing new since ctx10 except a little change to allow binding to the broadcast address. The multi-IP is also needed to handle vservers inside vservers which is a neat way to handle complete project control to a co-admin. The major issue with multi-IP is to support "bind any" -> "bind all the IP specified" and to have a fake loopback. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Sun Jun 30 10:56:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5UEud9D014662; Sun, 30 Jun 2002 10:56:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5UEdpI27557 for vserver.list; Sun, 30 Jun 2002 10:39:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5UEdoY27553 for ; Sun, 30 Jun 2002 10:39:50 -0400 Received: from localhost (alien.vlad.net [208.236.0.236]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5UEdb9E014397 for ; Sun, 30 Jun 2002 10:39:37 -0400 Date: Sun, 30 Jun 2002 10:39:37 -0400 (EDT) From: Vlad To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver update script In-Reply-To: <20020628065819.cc581e4af2ec@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-VirusScanner: Found to be clean, Found to be clean Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: RO X-Status: X-Keywords: X-UID: 713 So how do you perform updates on the vserver? Do you just boot up the root server with a cd and upgrade the distribution? Does that break the vservers or anything? -Vlad On Fri, 28 Jun 2002, Jacques Gelinas wrote: > On Thu, 27 Jun 2002 11:13:20 -0500, Vlad wrote > > > > I recall someone saying something about vserver (redhat) update scripts > > that would update all the files on the vserver (or create a vserver) > > directly from redhat cd's. Does anybody still maintain this and > > furthermore, has anybody used it at all to make upgrades to their systems? > > I have both types of vservers (with links to the root server and separate > > fs copies) so I am wondering if anybody has encountered any problems > > before I go ahead and start destroying stuff. > > The script to install directly from a CD is in /usr/lib/vserver. Currently > there is one to install from a rh7.2 CD. > > I will release a new version with support for 7.3. Further, the newvserver > utility will offer the ability to install from a CD directly in the menu and > will use these script directly (note this stuff is already done, just not released > yet). > > For the upgrade part, no script are available yet. Performing the upgrade generally > involve the following steps > > -Doing rework in distribution dependant configuration file, as needed. In > general, this does not affect a vserver since this stuff applies to > low level configuration. > > -Handling deprecated packages. For example, a package foo may evolve in > two packages: foo-client and foo-server. RPM can't handle this kind of relation > (the package has a new name). So in that case, the offending package must > be removed and then the upgrade performed. > > -Computing the new dependencies and potentially adding new packages > to solve it. > > I have written a module to handle that and I am testing it here. The cool thing > about vservers is that you can test your upgrade over and over without rebooting > or loosing anything. You simply do > > -create a new test vserver out of a production one: 1 minute > -assign a new IP to it > -perform the upgrade > -test it > -erase it and try again. > > In general, the original production vserver should just stay there in case the upgrade > has some hidden side effect. You archive it and delete it few week later. > > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > From vserver.error@solucorp.qc.ca Sun Jun 30 12:03:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5UG2v9D015407; Sun, 30 Jun 2002 12:02:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5UFakb28937 for vserver.list; Sun, 30 Jun 2002 11:36:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from localhost.localdomain (pia153-99.pioneernet.net [66.114.153.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5UFajY28933 for ; Sun, 30 Jun 2002 11:36:45 -0400 Received: from casonmaster (casonmaster [127.0.0.1]) by localhost.localdomain (8.11.6/8.11.6) with ESMTP id g5UFdIX16688 for ; Sun, 30 Jun 2002 08:39:18 -0700 From: "Wray Cason" To: vserver@solucorp.qc.ca Subject: Re: [vserver] Real ZOO web site, welcome! Date: Sun, 30 Jun 2002 08:39:18 +0900 Message-Id: <20020630083918.M74893@auxiliumcomputing.com> In-Reply-To: <200206300822.g5U8MRY10936@dns.solucorp.qc.ca> References: <200206300822.g5U8MRY10936@dns.solucorp.qc.ca> X-Mailer: Open WebMail 1.64 20020415 X-OriginatingIP: 192.168.0.2 (auxiliumcomputing) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 714 DOH! I'm sure this is already fixed right? I would rather not get this stuff on this mailing list. > I got your email from ICQ, may be it will be interested? > The BEST zoo site on the @net! > Sex With Dogs > Horse Blow Jobs. > Snake Fuck. > REAL ANIMAL FUCKING! > 100% HARDCORE! > rol.rape-sexy.com > > ----------------------------------------------------------------------- > unsub > Good luck. -- Wray Cason "Wrayman" Auxilium Computing www.auxiliumcomputing.com wrayman@auxiliumcomputing.com main: 206-595-2080 fax: 425-895-9825 From vserver.error@solucorp.qc.ca Sun Jun 30 14:48:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5UIlU9D017484; Sun, 30 Jun 2002 14:47:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5UITKI32659 for vserver.list; Sun, 30 Jun 2002 14:29:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.ispcal.com (home.2interactive.com [64.169.151.11] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g5UITJY32655 for ; Sun, 30 Jun 2002 14:29:20 -0400 Received: (qmail 18304 invoked by uid 508); 30 Jun 2002 18:22:58 -0000 Received: from twistedhammer@subdimension.com by mail.ispcal.com by uid 505 with qmail-scanner-1.12 (sweep: 2.9/3.56. . Clear:. Processed in 1.268041 secs); 30 Jun 2002 18:22:58 -0000 Received: from unknown (HELO subdimension.com) (66.81.41.87) by 0 with SMTP; 30 Jun 2002 18:22:56 -0000 Date: Sun, 30 Jun 2002 11:29:07 -0700 (PDT) From: James Gibson X-X-Sender: james@camero.fantasia.tld To: vserver@solucorp.qc.ca Subject: SPAM - was Re: [vserver] Real ZOO web site In-Reply-To: <20020630083918.M74893@auxiliumcomputing.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 715 On Sun, 30 Jun 2002, Wray Cason wrote: > DOH! > > I'm sure this is already fixed right? I would rather not get this stuff on > this mailing list. It seems to be an epidemic... the number of spams-per-list on other lists I'm on has definitly increased in the last couple months.. maybe this is Bush's Al Queda hack-attack? =p In any case, yeah.. I'm not pleased either to be getting this kind of stuff. Could the admins please make sure that at least the basic precautions are being taken (i.e. rbl filtering, don't accept mail from non-subscribed addresses, etc..). Thanks. And keep up the good work, vserver rocks! --James Gibson From vserver.error@solucorp.qc.ca Sun Jun 30 19:01:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g5UN159D019834; Sun, 30 Jun 2002 19:01:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g5ULSkv03766 for vserver.list; Sun, 30 Jun 2002 17:28:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g5ULSjY03762 for ; Sun, 30 Jun 2002 17:28:45 -0400 Received: from host213-122-191-138.in-addr.btopenworld.com ([213.122.191.138] helo=johnnew) by tungsten.btinternet.com with smtp (Exim 3.22 #8) id 17OmFL-00019O-00 for vserver@solucorp.qc.ca; Sun, 30 Jun 2002 22:28:40 +0100 From: "John Lyons" To: Subject: [vserver] IP address binding Date: Sun, 30 Jun 2002 22:28:27 +0100 Message-ID: <005b01c2207d$1319e460$ab017ad5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 716 I'm not sure if the problems I'm having are just normal redhat network setup problems or whether there is something vserver related that's causing the problems. I've configured a second network card on the host server so that I can run backups over a private IP address range network rather than via the public switches. I've got the same setup on host servers that don't run vserver and everything seems fine. Whatever IP address that I ping or connect to from the host server it always comes from the base IP for the host server as configured using eth0. ie if I ping 127.0.0.1 or 10.10.10.1 the 'pinging from' address is always the public IP address of the host server rather than being from 127.0.0.1 and 10.10.10.10 as it is on the other servers. When I connect to the private ip of the backup server it sees the connection as coming from a public IP rather than the private IP address of eth1 which is where the connection should be flowing over. Is this a side effect of the vserver and is there any way to stop it? (my bandwidth costs are taken from the public switches so I can't backup via that!) Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 From vserver.error@solucorp.qc.ca Mon Jul 1 04:16:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g618GN9D026183; Mon, 1 Jul 2002 04:16:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6173GI14972 for vserver.list; Mon, 1 Jul 2002 03:03:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g61739Y14968 for ; Mon, 1 Jul 2002 03:03:12 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 17OvD0-0005KK-00 for ; Mon, 01 Jul 2002 09:02:50 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17OvD0-0005K9-00 for ; Mon, 01 Jul 2002 09:02:50 +0200 Sender: jon@silicide.dk Message-ID: <3D1FFE99.592D473D@silicide.dk> Date: Mon, 01 Jul 2002 09:02:50 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver update script References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 717 Vlad wrote: > > So how do you perform updates on the vserver? Do you just boot up the root > server with a cd and upgrade the distribution? Does that break the > vservers or anything? Well, i just do a apt-get update;apt-get upgrade on my debian system. If i want to change from debian stable to testing, or unstable, i do a dist-upgrade once or twice from stable. i suppose other people install rpm packages or tgz. packages other ways. JonB From vserver.error@solucorp.qc.ca Mon Jul 1 04:38:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g618bs9D026384; Mon, 1 Jul 2002 04:37:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g618N2w17469 for vserver.list; Mon, 1 Jul 2002 04:23:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g618MtY17462 for ; Mon, 1 Jul 2002 04:22:57 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 17OwSK-0005R7-00 for ; Mon, 01 Jul 2002 10:22:44 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17OwSK-0005Qx-00 for ; Mon, 01 Jul 2002 10:22:44 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.61] by localhost with POP3 (fetchmail-5.9.11) for jon+vserver@silicide.dk (multi-drop); Mon, 01 Jul 2002 10:22:44 +0200 (CEST) Received: (qmail 69699 invoked from network); 1 Jul 2002 08:16:54 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by dht.dk with SMTP; 1 Jul 2002 08:16:54 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6173GI14972 for vserver.list; Mon, 1 Jul 2002 03:03:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g61739Y14968 for ; Mon, 1 Jul 2002 03:03:12 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 17OvD0-0005KK-00 for ; Mon, 01 Jul 2002 09:02:50 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17OvD0-0005K9-00 for ; Mon, 01 Jul 2002 09:02:50 +0200 Sender: jon@silicide.dk Message-ID: <3D1FFE99.592D473D@silicide.dk> Date: Mon, 01 Jul 2002 09:02:50 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver update script References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 718 Vlad wrote: > > So how do you perform updates on the vserver? Do you just boot up the root > server with a cd and upgrade the distribution? Does that break the > vservers or anything? Well, i just do a apt-get update;apt-get upgrade on my debian system. If i want to change from debian stable to testing, or unstable, i do a dist-upgrade once or twice from stable. i suppose other people install rpm packages or tgz. packages other ways. JonB From vserver.error@solucorp.qc.ca Mon Jul 1 13:34:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g61HYQ9D031836; Mon, 1 Jul 2002 13:34:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g61GMtA29264 for vserver.list; Mon, 1 Jul 2002 12:22:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tungsten.btinternet.com (tungsten.btinternet.com [194.73.73.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g61GMsY29260 for ; Mon, 1 Jul 2002 12:22:55 -0400 Received: from host213-1-133-169.in-addr.btopenworld.com ([213.1.133.169] helo=johnnew) by tungsten.btinternet.com with smtp (Exim 3.22 #8) id 17P3wy-00024v-00 for vserver@solucorp.qc.ca; Mon, 01 Jul 2002 17:22:53 +0100 From: "John Lyons" To: Subject: RE: [vserver] IP address binding Date: Mon, 1 Jul 2002 17:22:38 +0100 Message-ID: <006e01c2211b$84a40310$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <005b01c2207d$1319e460$ab017ad5@johnnew> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 719 If anyone has a similar problem to this, I've managed to fix it by running the backup process via chbind. John > -----Original Message----- > From: John Lyons [mailto:support@nsnoc.com] > Sent: 30 June 2002 22:28 > To: vserver@solucorp.qc.ca > Subject: [vserver] IP address binding > > > > I'm not sure if the problems I'm having are just normal > redhat network setup > problems or whether there is something vserver related that's > causing the > problems. > > I've configured a second network card on the host server so > that I can run > backups over a private IP address range network rather than > via the public > switches. I've got the same setup on host servers that don't > run vserver and > everything seems fine. > > Whatever IP address that I ping or connect to from the host > server it always > comes from the base IP for the host server as configured > using eth0. ie if > I ping 127.0.0.1 or 10.10.10.1 the 'pinging from' address is > always the > public IP address of the host server rather than being from > 127.0.0.1 and > 10.10.10.10 as it is on the other servers. > > When I connect to the private ip of the backup server it sees > the connection > as coming from a public IP rather than the private IP address > of eth1 which > is where the connection should be flowing over. > > Is this a side effect of the vserver and is there any way to stop it? > (my bandwidth costs are taken from the public switches so I > can't backup via > that!) > > Regards > > John Lyons > DomainCity > http://www.domaincity.co.uk > support@domaincity.co.uk > ICQ 74187012 > From vserver.error@solucorp.qc.ca Mon Jul 1 14:40:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g61IdV9D032686; Mon, 1 Jul 2002 14:39:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g61HuBP31477 for vserver.list; Mon, 1 Jul 2002 13:56:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g61HuAY31473 for ; Mon, 1 Jul 2002 13:56:10 -0400 Received: from hofmann (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g61HpOP19056 for ; Mon, 1 Jul 2002 18:51:24 +0100 Received: from hofmann ([127.0.0.1]) by hofmann with smtp (Exim 3.35 #1 (Debian)) id 17P5PD-0001Sw-00 for ; Mon, 01 Jul 2002 18:56:07 +0100 Date: Mon, 1 Jul 2002 18:56:07 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver update script Message-Id: <20020701185607.485d895b.sv@easyspace.com> In-Reply-To: References: <20020628065819.cc581e4af2ec@remtk.solucorp.qc.ca> Organization: Easyspace Ltd X-Mailer: Sylpheed version 0.7.4 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: PI2{lKxF*i|]%@A&-0AV/%sXN)UJ<+SeG}%8Cn%**KZ[f_OSx{xw&Rstfu?!x^ZJ%LV@4Z% Zr"EZm.GQFy@;"V82_:?cJ`kQ3+ Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 720 Vlad wrote: > So how do you perform updates on the vserver? Do you just boot up the root > server with a cd and upgrade the distribution? Does that break the > vservers or anything? Do RedHat upgrades EVER work? -- Sam Vilain, sv@easyspace.com Easyspace: an accredited ICANN GPG: http://sam.vilain.net/sam.asc registrar & web hosting company 7D74 2A09 B2D3 C30F F78E Have your domain run by techies 278A A425 30A9 05B5 2F13 with a clue. www.easyspace.com What would life be if we had no courage to attempt anything ? VINCENT van GOGH From vserver.error@solucorp.qc.ca Mon Jul 1 16:06:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g61K6E9D001291; Mon, 1 Jul 2002 16:06:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g61JdEU01593 for vserver.list; Mon, 1 Jul 2002 15:39:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rock2.everdesk.com (customer-171.datility.net [12.149.183.171] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g61JdEY01589 for ; Mon, 1 Jul 2002 15:39:14 -0400 Received: by rock2.everdesk.com (Postfix, from userid 503) id 9FDCE880F1; Mon, 1 Jul 2002 14:39:07 -0500 (CDT) To: "Sam Vilain" , vserver@solucorp.qc.ca From: "Denis Medvedev" Subject: Re[2]: [vserver] vserver update script X-Everdesk-Local: everdesk.com Errors-To: "Denis Medvedev" MIME-Version: 1.0 Content-ID: <344.1025552347.1@rock2.everdesk.com> Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 8bit Message-Id: <20020701193907.9FDCE880F1@rock2.everdesk.com> Date: Mon, 1 Jul 2002 14:39:07 -0500 (CDT) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 721 > From: "Sam Vilain" > To: vserver@solucorp.qc.ca > Date: Mon, 1 Jul 2002 18:56:07 +0100 > Subject: Re: [vserver] vserver update script > > > Vlad wrote: > >> So how do you perform updates on the vserver? Do you just boot up the >> root server with a cd and upgrade the distribution? Does that break the >> vservers or anything? > > Do RedHat upgrades EVER work? I don't know. I use Mandrake urpmi package. It works plain great! I successfully upgraded my Mandrake vserver against all recent apache and sshd troubles. > -- > Sam Vilain, sv@easyspace.com Easyspace: an accredited ICANN > GPG: http://sam.vilain.net/sam.asc registrar & web hosting company > 7D74 2A09 B2D3 C30F F78E Have your domain run by techies > 278A A425 30A9 05B5 2F13 with a clue. www.easyspace.com > > What would life be if we had no courage to attempt anything ? > VINCENT van GOGH -- Sent using everdesk.com server From vserver.error@solucorp.qc.ca Mon Jul 1 19:53:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g61NrD9D003921; Mon, 1 Jul 2002 19:53:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g61N8LC06470 for vserver.list; Mon, 1 Jul 2002 19:08:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.ispcal.com (mail.ispcal.com [64.169.151.11]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g61N8JY06465 for ; Mon, 1 Jul 2002 19:08:20 -0400 Received: (qmail 10274 invoked by uid 508); 1 Jul 2002 23:01:46 -0000 Received: from twistedhammer@subdimension.com by mail.ispcal.com by uid 505 with qmail-scanner-1.12 (sweep: 2.9/3.56. . Clear:. Processed in 1.208125 secs); 01 Jul 2002 23:01:46 -0000 Received: from unknown (HELO subdimension.com) (66.81.60.148) by 0 with SMTP; 1 Jul 2002 23:01:45 -0000 Date: Mon, 1 Jul 2002 16:38:35 -0700 (PDT) From: James Gibson X-X-Sender: james@camero.fantasia.tld To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver update script In-Reply-To: <20020701185607.485d895b.sv@easyspace.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 722 On Mon, 1 Jul 2002, Sam Vilain wrote: > Vlad wrote: > > > So how do you perform updates on the vserver? Do you just boot up the root > > server with a cd and upgrade the distribution? Does that break the > > vservers or anything? > > Do RedHat upgrades EVER work? I'm afraid I must say 'yes'. Not that I'm a fan of Red Hat, but I have seen a successful update of Red Hat. The humorous thing was, that we put off applying all the numerous security patchs until the next morning... by morning it had been r00ted... --James From vserver.error@solucorp.qc.ca Tue Jul 2 08:24:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g62CNf9D012183; Tue, 2 Jul 2002 08:23:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g62BxOg24125 for vserver.list; Tue, 2 Jul 2002 07:59:24 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g62BxNY24121 for ; Tue, 2 Jul 2002 07:59:23 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g62BxIr09112 for ; Tue, 2 Jul 2002 04:59:18 -0700 Date: Tue, 2 Jul 2002 04:59:18 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: [vserver] Cyclades multi-port board for vserver Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 723 I do not have a really good way to test this in all its variations so I am hoping for some ideas on whether this will work and if I have the correct plan. I am going to create a new system for a 'very' small ISP and would like to isolate everything I can into vservers. The main server would only have ssh access. The vservers would be for the main dial-in accounts, some domain hosting, the web server, and possibly a name server. The plan is to create the correct /dev entries for the Cyclades board in a vserver and remove them from the main server. My primary area of concern is loading the Cyclades driver/module. I am guessing I can only load it in the main server. Will the vserver see it? Or can I load it in a vserver? I see similar possibilities for multi-modem boards or even a serial port with a modem attached for companies that want to allow dial-in to their servers/network without the expense of a RAS or exposure to the wilds of the Internet. Thoughts, ideas? TIA, Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Tue Jul 2 09:09:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g62D9V9D012532; Tue, 2 Jul 2002 09:09:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g62CoEE25535 for vserver.list; Tue, 2 Jul 2002 08:50:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g62CoDY25531 for ; Tue, 2 Jul 2002 08:50:14 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id B64637A54D; Tue, 2 Jul 2002 13:50:12 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id B0FF19216E for ; Tue, 2 Jul 2002 13:50:12 +0100 (BST) Date: Tue, 2 Jul 2002 13:50:12 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Cyclades multi-port board for vserver In-Reply-To: Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 724 On Tue, 2 Jul 2002, Roderick A. Anderson wrote: > The plan is to create the correct /dev entries for the Cyclades board > in a vserver and remove them from the main server. Yup, or even leave them in both since they're not going to be used in the host server. > Will the vserver see it? Or can I load it in a vserver? There's only one kernel involved, so the only place to load the module is in the main server; somebody will be able to confirm, but module loading is probably disabled in the vservers anyway for security reasons. HTH, -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Tue Jul 2 09:57:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g62Dul9D013044; Tue, 2 Jul 2002 09:56:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g62DiG026948 for vserver.list; Tue, 2 Jul 2002 09:44:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g62DiFY26944 for ; Tue, 2 Jul 2002 09:44:16 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g62DiGv09734 for ; Tue, 2 Jul 2002 06:44:17 -0700 Date: Tue, 2 Jul 2002 06:44:16 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: VServer Patch List Subject: Re: [vserver] Cyclades multi-port board for vserver In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 725 On Tue, 2 Jul 2002, Paul Sladen wrote: Thanks for the quick reply. I'm hoping to work on this today but I did have enough other stuff to keep me busy until I heard. > On Tue, 2 Jul 2002, Roderick A. Anderson wrote: > > > The plan is to create the correct /dev entries for the Cyclades board > > in a vserver and remove them from the main server. > > Yup, or even leave them in both since they're not going to be used in the > host server. This makes a little sense to me. What about mgetty stuff. Typically it is in inittab and /etc and /etc/ppp. Is the vserver inittab read and used? > There's only one kernel involved, so the only place to load the module is in > the main server; somebody will be able to confirm, but module loading is > probably disabled in the vservers anyway for security reasons. Makes lots of sense. Thanks, Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Tue Jul 2 13:34:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g62HYa9D015378; Tue, 2 Jul 2002 13:34:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g62Gxae00512 for vserver.list; Tue, 2 Jul 2002 12:59:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from isomedia.com (mail.isomedia.com [207.115.64.4]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g62GxYY00506 for ; Tue, 2 Jul 2002 12:59:35 -0400 Received: from freya (pm118.focal.isomedia.com [66.147.197.33] (may be forged)) by isomedia.com (8.11.6/8.11.6) with SMTP id g62HCVG25468 for ; Tue, 2 Jul 2002 10:12:31 -0700 Received: by localhost with Microsoft MAPI; Tue, 2 Jul 2002 09:59:52 -0700 Message-ID: <01C221AF.358CAB80.sarisky@caltech.edu> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: [vserver] AOLserver, PostgreSQL Date: Tue, 2 Jul 2002 09:59:51 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 Encoding: 15 TEXT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 726 Hello! I'm about to start playing with vserver, and need to run aolserver and postgresql within a vserver. I wonder if anyone has tried either of these programs within a vserver, if they worked, and if there was anything special you had to do to get "normal" operation. Also, on a sort of related question: Can a vserver make tcp connections to another vserver on the same physical machine? Or to the host? I'm guessing the traffic goes out to the router, and then right back to the same physical machine? Thanks in advance! Cathy Sarisky From vserver.error@solucorp.qc.ca Tue Jul 2 13:40:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g62HdG9D015439; Tue, 2 Jul 2002 13:39:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g62HFLv00900 for vserver.list; Tue, 2 Jul 2002 13:15:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rock2.everdesk.com (customer-171.datility.net [12.149.183.171] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g62HFKY00896 for ; Tue, 2 Jul 2002 13:15:20 -0400 Received: by rock2.everdesk.com (Postfix, from userid 503) id A2298880F1; Tue, 2 Jul 2002 12:15:19 -0500 (CDT) To: "Cathy Sarisky" From: "Denis Medvedev" Subject: Re: [vserver] AOLserver, PostgreSQL X-Everdesk-Local: everdesk.com Errors-To: "Denis Medvedev" Cc: vserver@solucorp.qc.ca MIME-Version: 1.0 Content-ID: <32351.1025630119.1@rock2.everdesk.com> Content-Type: text/plain Content-Transfer-Encoding: 8bit Message-Id: <20020702171519.A2298880F1@rock2.everdesk.com> Date: Tue, 2 Jul 2002 12:15:19 -0500 (CDT) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 727 > From: "Cathy Sarisky" > To: "'vserver@solucorp.qc.ca'" > Date: Tue, 2 Jul 2002 09:59:51 -0700 > Subject: [vserver] AOLserver, PostgreSQL > > > Hello! > > I'm about to start playing with vserver, and need to run aolserver and > postgresql within a vserver. I wonder if anyone has tried either of these > programs within a vserver, if they worked, and if there was anything > special you had to do to get "normal" operation. I tried Mandrake's postgresql from 8.2 Mandrake within vserver - works perfect. Note: you should use MOST RECENT vserver software. I expect no troubles with aol server also. > > Also, on a sort of related question: Can a vserver make tcp connections > to another vserver on the same physical machine? Or to the host? I'm > guessing the traffic goes out to the router, and then right back to the > same physical machine? No. The packets will, of course, be emitted to ethernet, but they will go directly to the other interface. You can telnet from one vserver to another without going to router. > > Thanks in advance! > > Cathy Sarisky -- Sent using everdesk.com server From vserver.error@solucorp.qc.ca Tue Jul 2 13:48:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g62Hm69D015558; Tue, 2 Jul 2002 13:48:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g62HFMa00916 for vserver.list; Tue, 2 Jul 2002 13:15:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rock2.everdesk.com (customer-171.datility.net [12.149.183.171] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g62HFLY00912 for ; Tue, 2 Jul 2002 13:15:21 -0400 Received: by rock2.everdesk.com (Postfix, from userid 503) id 5CE248869B; Tue, 2 Jul 2002 12:15:21 -0500 (CDT) To: "'vserver@solucorp.qc.ca'" From: "Denis Medvedev" Subject: [vserver] SELinux anyone? X-Everdesk-Local: everdesk.com Errors-To: "Denis Medvedev" MIME-Version: 1.0 Content-ID: <32370.1025630121.1@rock2.everdesk.com> Content-Type: text/plain Content-Transfer-Encoding: 8bit Message-Id: <20020702171521.5CE248869B@rock2.everdesk.com> Date: Tue, 2 Jul 2002 12:15:21 -0500 (CDT) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 728 Is it possible to crossbred (mix) SELinux (http://selinux.sf.net) and vserver? Is it worth it? Did anybody try it? -- Sent using everdesk.com server From vserver.error@solucorp.qc.ca Tue Jul 2 14:50:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g62Io99D016141; Tue, 2 Jul 2002 14:50:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g62IMc002828 for vserver.list; Tue, 2 Jul 2002 14:22:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from isomedia.com (mail.isomedia.com [207.115.64.4]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g62IMcY02824 for ; Tue, 2 Jul 2002 14:22:38 -0400 Received: from freya (pm118.focal.isomedia.com [66.147.197.33] (may be forged)) by isomedia.com (8.11.6/8.11.6) with SMTP id g62IZdG25043 for ; Tue, 2 Jul 2002 11:35:39 -0700 Received: by localhost with Microsoft MAPI; Tue, 2 Jul 2002 11:23:00 -0700 Message-ID: <01C221BA.D2CBCB00.sarisky@caltech.edu> From: Cathy Sarisky To: "vserver@solucorp.qc.ca" Subject: [vserver] ftp down? Date: Tue, 2 Jul 2002 11:22:59 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 Encoding: 4 TEXT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 729 The website links are timing out, and attempts to ftp to ftp.solucorp.qc.ca are giving "connection refused" errors. Is there a mirror? Thanks! From vserver.error@solucorp.qc.ca Tue Jul 2 19:06:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g62N659D018708; Tue, 2 Jul 2002 19:06:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g62MIrR09673 for vserver.list; Tue, 2 Jul 2002 18:18:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca ([206.162.172.138]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g62MIqY09669 for ; Tue, 2 Jul 2002 18:18:53 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g62MJji17453 for vserver@dns.solucorp.qc.ca; Tue, 2 Jul 2002 18:19:45 -0400 From: Jacques Gelinas Date: Tue, 2 Jul 2002 18:19:45 -0500 To: Vserver mailing list Subject: [vserver] kernel ctx-12 and vserver 0.18 X-mailer: tlmpmail 0.6 Message-ID: <20020702181945.570ba7b325b9@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 730 Just to say they are out. The biggest change is the multi-ip support. You can have up to 16 IP per vservers. The server software must specifically bind each IP. For example, for apache, this means multiple listen statement. But it works. Note that vserver-0.18 works with both older and newer kernels (the set_ipv4root syscall had to be changed), so you can upgrade to vserver-0.18, install the kernel and reboot whatever kernel (ctx-10 or 12) and your vservers will still work. A complete changelog will follow. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Jul 2 19:11:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g62NAd9D019053; Tue, 2 Jul 2002 19:10:39 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g62MiPY10289 for vserver.list; Tue, 2 Jul 2002 18:44:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca ([206.162.172.138]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g62MiOY10285 for ; Tue, 2 Jul 2002 18:44:24 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g62MjHi17568 for vserver@solucorp.qc.ca; Tue, 2 Jul 2002 18:45:17 -0400 From: Jacques Gelinas Date: Tue, 2 Jul 2002 18:45:17 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] AOLserver, PostgreSQL X-mailer: tlmpmail 0.6 Message-ID: <20020702184517.9b8d22e26a0f@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 731 On Tue, 2 Jul 2002 09:59:51 -0500, Cathy Sarisky wrote > Hello! > > I'm about to start playing with vserver, and need to run aolserver and > postgresql within a vserver. I wonder if anyone has tried either of these > programs within a vserver, if they worked, and if there was anything special > you had to do to get "normal" operation. postgresql work out of the box with a recent vserver kernel (around ctx-7 or 8) > Also, on a sort of related question: Can a vserver make tcp connections to > another vserver on the same physical machine? Yes > Or to the host? Yes It is forced to use it own IP as the source. It can't bind to any other, so can't hide itself. > I'm guessing > the traffic goes out to the router, and then right back to the same physical > machine? No. The packet won't reach outside. From the kernel point of view, all these address are local, so nothing goes to the wire. You can (we do that all the time) create firewalls on the root server, controlling which vserver talk to which, using which service and so on. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Jul 2 19:15:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g62NEl9D019481; Tue, 2 Jul 2002 19:14:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g62MU2j10035 for vserver.list; Tue, 2 Jul 2002 18:30:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca ([206.162.172.138]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g62MU1Y10031 for ; Tue, 2 Jul 2002 18:30:01 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g62MUrp17551 for vserver@solucorp.qc.ca; Tue, 2 Jul 2002 18:30:53 -0400 From: Jacques Gelinas Date: Tue, 2 Jul 2002 18:30:53 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] ftp down? X-mailer: tlmpmail 0.6 Message-ID: <20020702183053.d9b1752d1cd0@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: A X-Keywords: X-UID: 732 On Tue, 2 Jul 2002 11:22:59 -0500, Cathy Sarisky wrote > The website links are timing out, and attempts to ftp to ftp.solucorp.qc.ca are > giving "connection refused" errors. Is there a mirror? Indeed the ftp service is off. I have asked the administrator. No official mirror --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Jul 2 20:37:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g630b19D021363; Tue, 2 Jul 2002 20:37:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g63016r12015 for vserver.list; Tue, 2 Jul 2002 20:01:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g63016Y12011 for ; Tue, 2 Jul 2002 20:01:06 -0400 Received: from localhost (alien.vlad.net [208.236.0.236]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6300x9E020801 for ; Tue, 2 Jul 2002 20:00:59 -0400 Date: Tue, 2 Jul 2002 20:00:59 -0400 (EDT) From: Vlad To: vserver@solucorp.qc.ca Subject: [vserver] mirror In-Reply-To: <20020702183053.d9b1752d1cd0@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-VirusScanner: Found to be clean, Found to be clean Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: RO X-Status: X-Keywords: X-UID: 733 I just wanted to run this by you.. We finally got indexed by google (the mailing list that is). I am not sure when this happened but the search on the site turns up results so I suppose all is good. -Vlad From vserver.error@solucorp.qc.ca Tue Jul 2 20:46:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g630k69D021483; Tue, 2 Jul 2002 20:46:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g630SrB12566 for vserver.list; Tue, 2 Jul 2002 20:28:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g630SrY12562 for ; Tue, 2 Jul 2002 20:28:53 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 6308C7A56B; Wed, 3 Jul 2002 01:28:53 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 6255C92171 for ; Wed, 3 Jul 2002 01:28:53 +0100 (BST) Date: Wed, 3 Jul 2002 01:28:53 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] kernel ctx-12 and vserver 0.18 In-Reply-To: <20020702181945.570ba7b325b9@remtk.solucorp.qc.ca> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 734 On Tue, 2 Jul 2002, Jacques Gelinas wrote: > Just to say they are out. Could find them linked from the website, and ftp.solucorp.qc.ca appears to be down. (Perhaps I'm just being too fast ;-). > Note that vserver-0.18 works with both older and newer kernels (the set_ipv4root > syscall had to be changed) I was wondering why the set_ipv4root hadn't been designed so that it could be passed a struct in the first place. Therefore maintaining binary compatibility across upgrades by checking a version field in the structure. Another advantage in having a single set_iproot() call would allow for arbitary expansion to include IPv6 addresses. > A complete changelog will follow. Presumabley binding to * will now bind to the first configured IP address? Thanks for the work, -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Tue Jul 2 20:53:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g630qr9D021678; Tue, 2 Jul 2002 20:52:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g630aK912808 for vserver.list; Tue, 2 Jul 2002 20:36:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.ispcal.com (home.2interactive.com [64.169.151.11] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g630aJY12804 for ; Tue, 2 Jul 2002 20:36:19 -0400 Received: (qmail 18303 invoked by uid 508); 3 Jul 2002 00:29:46 -0000 Received: from twistedhammer@subdimension.com by mail.ispcal.com by uid 505 with qmail-scanner-1.12 (sweep: 2.9/3.56. . Clear:. Processed in 1.386121 secs); 03 Jul 2002 00:29:46 -0000 Received: from unknown (HELO subdimension.com) (66.81.53.234) by 0 with SMTP; 3 Jul 2002 00:29:44 -0000 Date: Tue, 2 Jul 2002 18:10:06 -0700 (PDT) From: James Gibson X-X-Sender: james@camero.fantasia.tld To: Vserver mailing list Subject: Re: [vserver] kernel ctx-12 and vserver 0.18 In-Reply-To: <20020702181945.570ba7b325b9@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 735 On Tue, 2 Jul 2002, Jacques Gelinas wrote: > Just to say they are out. The biggest change is the multi-ip support. You can > have up to 16 IP per vservers. The server software must specifically bind > each IP. For example, for apache, this means multiple listen statement. But > it works. Looking good. =) Any word on a solution for the 127.0.0.1 issues yet? --James From vserver.error@solucorp.qc.ca Tue Jul 2 20:59:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g630xc9D021833; Tue, 2 Jul 2002 20:59:39 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g630eLT12947 for vserver.list; Tue, 2 Jul 2002 20:40:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g630eLY12942 for ; Tue, 2 Jul 2002 20:40:21 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 335A67A56B; Wed, 3 Jul 2002 01:40:21 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 32A8D92171 for ; Wed, 3 Jul 2002 01:40:21 +0100 (BST) Date: Wed, 3 Jul 2002 01:40:21 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] mirror In-Reply-To: Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 736 On Tue, 2 Jul 2002, Vlad wrote: > We finally got indexed by google (the mailing list that is). It been in there for quite a while, and unfortunately gets much higher and relevant hits than the main http://www.solucorp.qc.ca/miscprj/s_context.hc address. The progress seems to be to search for `vserver patch', or `s_context', hit the list archives, and navigate up to http://vserver.vlad.net/. Then click on the link, (it's good that the main page is clearly marked "click here"), as the page location is not entirely memorable... ;-). As a point of amusement, I wouldn't really suggest people rush off picking up every combination of *.org that the VSD forkers did! :-) I'll like to the main page from a couple of place and in a couple of months after GoogleBot has been around, it might spark an improvement. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Tue Jul 2 22:17:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g632H39D025173; Tue, 2 Jul 2002 22:17:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6319N813706 for vserver.list; Tue, 2 Jul 2002 21:09:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-74-250.telepac.pt [213.13.74.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6319IY13701 for ; Tue, 2 Jul 2002 21:09:22 -0400 Received: (qmail 6774 invoked from network); 3 Jul 2002 01:08:06 -0000 Received: from localhost (HELO sectium.com) (nuno@127.0.0.1) by localhost with SMTP; 3 Jul 2002 01:08:06 -0000 Message-ID: <3D224E75.20509@sectium.com> Date: Wed, 03 Jul 2002 02:08:05 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] nice patch: CPU Cap processor Usage Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 737 Just saw this one in freshmeat and couldn't resist sharing it with the folks from the excelent vserver package :) http://www.tls-technologies.com/CPU/cpu-intro.html It's like the "nice" command but you can limit processor usage (by percentage) for a given task. I hope this works well with vserver or even gets integrated with it! :) Regards, Nuno Silva From vserver.error@solucorp.qc.ca Wed Jul 3 06:48:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g63Am79D010272; Wed, 3 Jul 2002 06:48:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g63AJeu27735 for vserver.list; Wed, 3 Jul 2002 06:19:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g63AJdY27731 for ; Wed, 3 Jul 2002 06:19:39 -0400 Received: from hofmann (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g63AEiP23754 for ; Wed, 3 Jul 2002 11:14:44 +0100 Received: from hofmann ([127.0.0.1]) by hofmann with smtp (Exim 3.35 #1 (Debian)) id 17PhEZ-0000ci-00; Wed, 03 Jul 2002 11:19:39 +0100 Date: Wed, 3 Jul 2002 11:19:39 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Cc: mdl@everdesk.com Subject: Re: [vserver] SELinux anyone? In-Reply-To: <20020702171521.5CE248869B@rock2.everdesk.com> References: <20020702171521.5CE248869B@rock2.everdesk.com> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 738 "Denis Medvedev" wrote: > Is it possible to crossbred (mix) SELinux (http://selinux.sf.net) and > vserver? Is it worth it? Did anybody try it? You will need to: -> apply the vserver patch to the SELinux kernel; several parts of the patch, such as the extra ext2 immutability bit and the scheduler changes are pretty much "nice to haves" and are not required for core functionality. -> read through the /usr/sbin/vserver script that comes with the vserver distribution and adapt it to fit harbouring the new distribution. -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 Real software engineers aren't too happy about the existence of users, either. Users always seem to have the wrong idea about what the implementation and verification of algorithms is all about. From vserver.error@solucorp.qc.ca Wed Jul 3 07:22:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g63BM09D011155; Wed, 3 Jul 2002 07:22:01 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g63B7Z528886 for vserver.list; Wed, 3 Jul 2002 07:07:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g63B7YY28882 for ; Wed, 3 Jul 2002 07:07:35 -0400 Received: from hofmann (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (8.11.0/8.11.0) with ESMTP id g63B2eP18621 for ; Wed, 3 Jul 2002 12:02:40 +0100 Received: from hofmann ([127.0.0.1]) by hofmann with smtp (Exim 3.35 #1 (Debian)) id 17Phyy-0000kV-00 for ; Wed, 03 Jul 2002 12:07:36 +0100 Date: Wed, 3 Jul 2002 12:07:36 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] nice patch: CPU Cap processor Usage In-Reply-To: <3D224E75.20509@sectium.com> References: <3D224E75.20509@sectium.com> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 739 What I would like would be something like being able to plug the networking scheduling modules (QoS) into the CPU scheduler :-) If a Token Bucket Filter system were to be used, the extra cpu is still available when not in use. Hmm, wonder if they're fast enough or whether it would require huge scheduler hackery... Nuno Silva wrote: > > Just saw this one in freshmeat and couldn't resist sharing it with the > folks from the excelent vserver package :) > > http://www.tls-technologies.com/CPU/cpu-intro.html > > It's like the "nice" command but you can limit processor usage (by > percentage) for a given task. > > I hope this works well with vserver or even gets integrated with it! :) > > Regards, > Nuno Silva > > > -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 Beauty is only skin deep, but Ugly goes straight to the bone. From vserver.error@solucorp.qc.ca Wed Jul 3 09:58:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g63Dw89D015967; Wed, 3 Jul 2002 09:58:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g63DePT00660 for vserver.list; Wed, 3 Jul 2002 09:40:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g63DeNY00655 for ; Wed, 3 Jul 2002 09:40:24 -0400 Subject: [vserver] vserver patches/new features To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.5 September 22, 2000 Message-ID: From: "Viorel B. Stan" Date: Wed, 3 Jul 2002 16:38:29 +0300 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 07/03/2002 08:40:24 AM MIME-Version: 1.0 Content-type: multipart/mixed; Boundary="0__=C2256BEB004810648f9e8a93df938690918cC2256BEB00481064" Content-Disposition: inline Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 740 --0__=C2256BEB004810648f9e8a93df938690918cC2256BEB00481064 Content-type: text/plain; charset=us-ascii For some project I'm working on I need to execute commands inside a vserver, under a certain vserver uid. I've patched a bit the capchroot file to accept 1 extra command line parameter specifying the UID for the command; it uses suid to change the uid before spawning a command. Patched the vserver script also by adding a "suexec" option, similar to the "exec" one. It would be cool if this feature will be included in the next vserver release. I can help with that if needed. Here are the sources for the above stuff: (See attached file: myvserver)(See attached file: mycapchroot.cc) or patches for the vserver 0.17 files: (See attached file: vserver.patch)(See attached file: capchroot.patch) Viorel B STAN Prominic.RO SRL - President Prominic.NET, Inc. - Systems Architect & Developer viorel@prominic.com --0__=C2256BEB004810648f9e8a93df938690918cC2256BEB00481064 Content-type: application/octet-stream; name="myvserver" Content-Disposition: attachment; filename="myvserver" Content-transfer-encoding: base64 IyEvYmluL3NoCiMgVGhpcyBpcyBhIHNjcmlwdCB0byBjb250cm9sIGEgdmlydHVhbCBzZXJ2ZXIK dnNlcnZlcl9ta25vZCgpewoJbWtub2QgJDEgJDIgJDMgJDQKCWNobW9kICQ1ICQxCn0KCm1vdW50 cHJvYygpCnsKCW1rZGlyIC1wICQxL3Byb2MgJDEvZGV2L3B0cwoJaWYgWyAhIC1kICQxL3Byb2Mv MSBdIDsgdGhlbgoJCW1vdW50IC10IHByb2Mgbm9uZSAkMS9wcm9jCgkJbW91bnQgLXQgZGV2cHRz IG5vbmUgJDEvZGV2L3B0cwoJZmkKfQp1bW91bnRwcm9jKCkKewoJdW1vdW50ICQxL3Byb2MgMj4v ZGV2L251bGwKCXVtb3VudCAkMS9kZXYvcHRzIDI+L2Rldi9udWxsCn0KCiMgQ2hlY2sgdGhhdCB0 aGUgdnNlcnZlcnMgcGFyZW50IGRpcmVjdG9yeSBoYXMgcGVybWlzc2lvbiAwMDAKIyBUaGlzIGlz IHRoZSBrZXkgdG8gYXZvaWQgY2hyb290IGVzY2FwZQp0ZXN0cGVybSgpCnsKCVBFUk09YC91c3Iv bGliL3ZzZXJ2ZXIvc2hvd3Blcm0gL3ZzZXJ2ZXJzLyQxLy4uYAoJaWYgWyAiJFBFUk0iICE9IDAw MCBdIDsgdGhlbgoJCWVjaG8KCQllY2hvICIqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioq KioqKioqKioqKioqKioqKioqKioqKioqKioqIgoJCWVjaG8gL3ZzZXJ2ZXJzLyQxLy4uIGhhcyBp bnNlY3VyZSBwZXJtaXNzaW9ucy4KCQllY2hvIEEgdnNlcnZlciBhZG1pbmlzdHJhdG9yIG1heSBi ZSBhYmxlIHRvIHZpc2l0IHRoZSByb290IHNlcnZlci4KCQllY2hvIFRvIGZpeCB0aGlzLCBkbwoJ CWVjaG8gIgkiIGNobW9kIDAwMCAvdnNlcnZlcnMvJDEvLi4KCQllY2hvIGRvIGl0IGFueXRpbWUg eW91IHdhbnQsIGV2ZW4gaWYgdnNlcnZlcnMgYXJlIHJ1bm5pbmcuCgkJZWNobyAiKioqKioqKioq KioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiIKCQllY2hv CglmaQp9CiMgU2V0IHRoZSBJUCBhbGlhcyBuZWVkZWQgYnkgYSB2c2VydmVyCmlmY29uZmlnX2lw cm9vdCgpCnsKCWlmIFsgIiRJUFJPT1QiICE9ICIiIC1hICIkSVBST09UIiAhPSAiMC4wLjAuMCIg LWEgIiRJUFJPT1RERVYiICE9ICIiIF0gO3RoZW4KCQkjIENvbXB1dGUgdGhlIGRlZmF1bHQgbmV0 bWFzaywgaWYgbWlzc2luZwoJCWV2YWwgYC91c3IvbGliL3ZzZXJ2ZXIvaWZzcGVjICRJUFJPT1RE RVYgIiRJUFJPT1QiICIkSVBST09UTUFTSyIgIiRJUFJPT1RCQ0FTVCJgCgkJSVBST09UTUFTSz0k TkVUTUFTSwoJCUlQUk9PVEJDQVNUPSRCQ0FTVAoJCS9zYmluL2lmY29uZmlnICRJUFJPT1RERVY6 JDEgJElQUk9PVCBuZXRtYXNrICRJUFJPT1RNQVNLIGJyb2FkY2FzdCAkSVBST09UQkNBU1QKCWZp CglpZiBbICIkSVBST09UQkNBU1QiID0gIiIgXSA7IHRoZW4KCQlJUFJPT1RCQ0FTVD0yNTUuMjU1 LjI1NS4yNTUKCWZpCn0KaWZjb25maWdfaXByb290X29mZigpCnsKCWlmIFsgIiRJUFJPT1QiICE9 ICIiIC1hICIkSVBST09UIiAhPSAiMC4wLjAuMCIgLWEgIiRJUFJPT1RERVYiICE9ICIiIF0gO3Ro ZW4KCQkvc2Jpbi9pZmNvbmZpZyAkSVBST09UREVWOiQxIGRvd24KCWZpCn0KIyBFeHRyYWN0IHRo ZSBpbml0aWFsIHJ1bmxldmVsIGZyb20gdGhlIHZzZXJ2ZXIgaW5pdHRhYgpnZXRfaW5pdGRlZmF1 bHQoKQp7CglJTklUREVGQVVMVD1gZ3JlcCA6aW5pdGRlZmF1bHQgL3ZzZXJ2ZXJzLyQxL2V0Yy9p bml0dGFiIHwgc2VkICdzLzovIC9nJyB8ICggcmVhZCBhIGxldmVsIGI7IGVjaG8gJGxldmVsKWAK fQoKdXNhZ2UoKQp7CgllY2hvIHZzZXJ2ZXIgc2VydmVyLW5hbWUgY29tbWFuZCAuLi4KCWVjaG8K CWVjaG8gc2VydmVyLW5hbWUgaXMgYSBkaXJlY3RvcnkgaW4gL3ZzZXJ2ZXJzCgllY2hvCgllY2hv IFRoZSBjb21tYW5kcyBhcmU6CgllY2hvICIgYnVpbGQgICA6IENyZWF0ZSBhIHZpcnR1YWwgc2Vy dmVyIGJ5IGNvcHlpbmcgdGhlIHBhY2thZ2VzIgoJZWNobyAiICAgICAgICAgICBvZiB0aGUgcm9v dCBzZXJ2ZXIiCgllY2hvICIgZW50ZXIgICA6IEVudGVyIGluIHRoZSB2aXJ0dWFsIHNlcnZlciBj b250ZXh0IGFuZCBzdGFydHMgYSBzaGVsbCIKCWVjaG8gIiAgICAgICAgICAgU2FtZSBhcyBcInZz ZXJ2ZXIgbmFtZSBleGVjIC9iaW4vc2hcIiIKCWVjaG8gIiBleGVjICAgIDogRXhlYyBhIGNvbW1h bmQgaW4gdGhlIHZpcnR1YWwgc2VydmVyIGNvbnRleHQiCgllY2hvICIgc3VleGVjICA6IEV4ZWMg YSBjb21tYW5kIGluIHRoZSB2aXJ0dWFsIHNlcnZlciBjb250ZXh0IHVpZCIKCWVjaG8gIiBzZXJ2 aWNlIDogQ29udHJvbCBhIHNlcnZpY2UgaW5zaWRlIGEgdnNlcnZlciIKCWVjaG8gIiAgICAgICAg ICAgdnNlcnZlciBuYW1lIHNlcnZpY2Ugc2VydmljZS1uYW1lIHN0YXJ0L3N0b3AvcmVzdGFydC9z dGF0dXMiCgllY2hvICIgc3RhcnQgICA6IFN0YXJ0cyB0aGUgdmFyaW91cyBzZXJ2aWNlcyBpbiB0 aGUgdnNlcnZlciwgcnVubGV2ZWwgMyIKCWVjaG8gIiBzdG9wICAgIDogRW5kcyBhbGwgc2Vydmlj ZXMgYW5kIGtpbGxzIHRoZSByZW1haW5pbmcgcHJvY2Vzc2VzIgoJZWNobyAiIHJ1bm5pbmcgOiBU ZWxscyBpZiBhIHZpcnR1YWwgc2VydmVyIGlzIHJ1bm5pbmciCgllY2hvICIgICAgICAgICAgIEl0 IHJldHVybnMgcHJvcGVyIGV4aXQgY29kZSwgc28geW91IGNhbiB1c2UgaXQgYXMgYSB0ZXN0Igp9 CgoKaWYgWyAkIyAtbHQgMiBdIDsgdGhlbgoJdXNhZ2UKZWxpZiBbICIkMiIgPSAiYnVpbGQiIF0g OyB0aGVuCgkjIEVpdGhlciB0aGUgZGlyZWN0b3J5IGRvZXMgbm90IGV4aXN0IG9yIGlzIGVtcHR5 CglOQlNVQj1gbHMgL3ZzZXJ2ZXJzLyQxIDI+L2Rldi9udWxsIHwgZ3JlcCAtdiBsb3N0K2ZvdW5k IHwgd2MgLWxgIAoJTkJTVUI9YGV4cHIgJE5CU1VCYAoJaWYgWyAiJE5CU1VCIiAhPSAwIF0gOyB0 aGVuCgkJZWNobyBWaXJ0dWFsIHNlcnZlciAvdnNlcnZlcnMvJDEgYWxyZWFkeSBleGlzdAoJZWxz ZQoJCWlmIFsgISAtZCAvdnNlcnZlcnMgXSA7IHRoZW4KCQkJbWtkaXIgL3ZzZXJ2ZXJzIHx8IGV4 aXQgMQoJCQljaG1vZCAwMDAgL3ZzZXJ2ZXJzCgkJCWVjaG8gRGlyZWN0b3J5IC92c2VydmVycyB3 YXMgY3JlYXRlZCB3aXRoIHBlcm1pc3Npb25zIDAwMAoJCWZpCgkJbWtkaXIgLXAgL3ZzZXJ2ZXJz LyQxIHx8IGV4aXQgMQoJCWNobW9kIDc1NSAvdnNlcnZlcnMvJDEKCQljcCAtYXggL3NiaW4gL2Jp biAvZXRjIC91c3IgL3ZhciAvbGliIC92c2VydmVycy8kMS8uIHx8IGV4aXQgMQoJCWNkIC92c2Vy dmVycy8kMSB8fCBleGl0IDEKCQlybSAtZnIgbGliL21vZHVsZXMvKgoJCXJtIC1mIHZhci9zcG9v bC9tYWlsLyoKCQlybSAtZiBgZmluZCB2YXIvcnVuIC10eXBlIGZgCgkJcm0gLWYgYGZpbmQgdmFy L2xvZyAtdHlwZSBmYAoJCXRvdWNoIHZhci9sb2cvd3RtcAoJCXJtIC1mIHZhci9sb2NrL3N1YnN5 cy8qCgkJcm0gLWYgZXRjL2Nyb24uZC9rbW9kCgkJbWtkaXIgcHJvYyB0bXAgaG9tZSByb290IGJv b3QKCQl0ZXN0IC1mIC9yb290Ly5iYXNocmMgJiYgY3AgLWEgL3Jvb3QvLmJhc2hyYyByb290Ly4K CQl0ZXN0IC1mIC9yb290Ly5iYXNoX3Byb2ZpbGUgJiYgY3AgLWEgL3Jvb3QvLmJhc2hfcHJvZmls ZSByb290Ly4KCQljaG1vZCAxNzc3IHRtcAoJCWNobW9kIDc1MCByb290CgkJIyBDcmVhdGUgYSBt aW5pbWFsIGRldiBzbyB0aGUgdmlydHVhbCBzZXJ2ZXIgY2FuJ3QgZ3JhYgoJCSMgbW9yZSBwcml2 aWxlZ2VzCgkJbWtkaXIgZGV2IGRldi9wdHMKCQl2c2VydmVyX21rbm9kIGRldi9udWxsIGMgMSAz IDY2NgoJCXZzZXJ2ZXJfbWtub2QgZGV2L3plcm8gYyAxIDUgNjY2CgkJdnNlcnZlcl9ta25vZCBk ZXYvZnVsbCBjIDEgNyA2NjYKCQl2c2VydmVyX21rbm9kIGRldi9yYW5kb20gYyAxIDggNjQ0CgkJ dnNlcnZlcl9ta25vZCBkZXYvdXJhbmRvbSBjIDEgOSA2NDQKCQl2c2VydmVyX21rbm9kIGRldi90 dHkgYyA1IDAgNjY2CgkJdnNlcnZlcl9ta25vZCBkZXYvcHRteCBjIDUgMiA2NjYKCQkjIFR1cm4g b2ZmIHNvbWUgc2VydmljZSB1c2VsZXNzIG9uIGEgdnNlcnZlcgoJCSMJCXZzZXJ2ZXJfdHVybm9m ZiBhcG1kIG5ldHdvcmsgYXV0b2ZzIGRoY3BkIGdwbSBpcGNoYWlucyBpcHRhYmxlcyBcCgkJIwkJ CWlyZGEgaXNkbiBrZXl0YWJsZSBrdWR6dSBsaW51eGNvbmYtc2V0dXAgbmV0ZnMgbmZzIG5mc2xv Y2sgXAoJCSMJCQlwY21jaWEgcG9ydG1hcCBwcHBvZSByYW5kb20gcmF3ZGV2aWNlcyByaG5zZCBy c3RhdGQgcnVzZXJkIFwKCQkjCQkJcndhbGxkIHJ3aG9kIHNlbmRtYWlsIHNtYiBzbm1wZCB2X2h0 dHBkIGhfeGluZXRkIHZfc3NoZCB2c2VydmVycyBcCgkJIwkJCXhmcyB5cGJpbmQgeGluZXRkCgkJ KAoJCQljZCBldGMvcmMuZC9pbml0LmQgfHwgY2QgZXRjL2luaXQuZAoJCQlmb3Igc2VydiBpbiAq CgkJCWRvCgkJCQljYXNlICRzZXJ2IGluCgkJCQkqLmJha3wqfnxmdW5jdGlvbnN8a2lsbGFsbHxo YWx0fHNpbmdsZSkKCQkJCQk7OwoJCQkJKikKCQkJCQkvdXNyL2xpYi92c2VydmVyL2NhcGNocm9v dCAvdnNlcnZlcnMvJDEgL3NiaW4vY2hrY29uZmlnIC0tbGV2ZWwgMjM0NSAkc2VydiBvZmYKCQkJ CQk7OwoJCQkJZXNhYwoJCQlkb25lCgkJKQoJCXJtIC1mIGV0Yy9yYy5kL3JjNi5kL1MqcmVib290 CgkJIyBDcmVhdGUgYSBkdW1teSAvZXRjL2ZzdGFiIGFuZCAvZXRjL210YWIgdG8gcGxlYXNlCgkJ IyBkZiBhbmQgbGludXhjb25mLiBXZSB1c2UgaGR2MSwgd2hpY2ggZG9lcyBub3QgZXhpc3QKCQkj IHRvIHJlbWluZCB0aGUgYWRtaW4gdGhhdCBpdCBpcyBub3QgdGhlIHJlYWwgZHJpdmUKCQllY2hv IC9kZXYvaGR2MSAvIGV4dDIgZGVmYXVsdHMgMSAxID5ldGMvZnN0YWIKCQllY2hvIC9kZXYvaGR2 MSAvIGV4dDIgcncgMCAwID5ldGMvbXRhYgoJCSMgSW5zdGFsbCB0aGUgdnJlYm9vdCB1dGlsaXR5 CgkJY3AgLWEgL3Vzci9saWIvdnNlcnZlci92cmVib290IHNiaW4vLgoJCWxuIC1zZiB2cmVib290 IHNiaW4vdmhhbHQKCgkJZWNobyBEaXJlY3RvcnkgL3ZzZXJ2ZXJzLyQxIGhhcyBiZWVuIHBvcHVs YXRlZAoJCWlmIFsgISAtZCAvZXRjL3ZzZXJ2ZXJzIF0gOyB0aGVuCgkJCW1rZGlyIC9ldGMvdnNl cnZlcnMKCQkJY2htb2QgNjAwIC9ldGMvdnNlcnZlcnMKCQkJZWNobyBEaXJlY3RvcnkgL2V0Yy92 c2VydmVycyBoYXMgYmVlbiBjcmVhdGVkCgkJZmkKCQlpZiBbICEgLWYgL2V0Yy92c2VydmVycy8k MS5jb25mIF0gOyB0aGVuCgkJCUNPTkY9L2V0Yy92c2VydmVycy8kMS5jb25mCgkJCWNhdCA+JENP TkYgPDwtRU9GCiMgU2VsZWN0IGFuIHVudXNlZCBjb250ZXh0ICh0aGlzIGlzIG9wdGlvbmFsKQoj IFRoZSBkZWZhdWx0IGlzIHRvIGFsbG9jYXRlIGEgZnJlZSBjb250ZXh0IG9uIHRoZSBmbHkKIyBJ biBnZW5lcmFsIHlvdSBkb24ndCBuZWVkIHRvIGZvcmNlIGEgY29udGV4dAojU19DT05URVhUPQoj IFNlbGVjdCB0aGUgSVAgbnVtYmVyIGFzc2lnbmVkIHRvIHRoZSB2aXJ0dWFsIHNlcnZlcgojIFRo aXMgSVAgbXVzdCBiZSBvbmUgSVAgb2YgdGhlIHNlcnZlciwgZWl0aGVyIGFuIGludGVyZmFjZQoj IG9yIGFuIElQIGFsaWFzCklQUk9PVD0xLjIuMy40CiMgVGhlIG5ldG1hc2sgYW5kIGJyb2FkY2Fz dCBhcmUgY29tcHV0ZWQgYnkgZGVmYXVsdCBmcm9tIElQUk9PVERFVgojSVBST09UTUFTSz0KI0lQ Uk9PVEJDQVNUPQojIFlvdSBjYW4gZGVmaW5lIG9uIHdoaWNoIGRldmljZSB0aGUgSVAgYWxpYXMg d2lsbCBiZSBkb25lCiMgVGhlIElQIGFsaWFzIHdpbGwgYmUgc2V0IHdoZW4gdGhlIHNlcnZlciBp cyBzdGFydGVkIGFuZCB1bnNldAojIHdoZW4gdGhlIHNlcnZlciBpcyBzdG9wcGVkCiNJUFJPT1RE RVY9ZXRoMAojIFVuY29tbWVudCB0aGUgb25ib290IGxpbmUgaWYgeW91IHdhbnQgdG8gZW5hYmxl IHRoaXMKIyB2aXJ0dWFsIHNlcnZlciBhdCBib290IHRpbWUKI09OQk9PVD15ZXMKIyBZb3UgY2Fu IHNldCBhIGRpZmZlcmVudCBob3N0IG5hbWUgZm9yIHRoZSB2c2VydmVyCiMgSWYgZW1wdHksIHRo ZSBob3N0IG5hbWUgb2YgdGhlIG1haW4gc2VydmVyIGlzIHVzZWQKU19IT1NUTkFNRT0KIyBZb3Ug Y2FuIHNldCBhIGRpZmZlcmVudCBOSVMgZG9tYWluIGZvciB0aGUgdnNlcnZlcgojIElmIGVtcHR5 LCB0aGUgY3VycmVudCBvbiBpcyBrZXB0CiMgU2V0IGl0IHRvICJub25lIiB0byBoYXZlIG5vIE5J UyBkb21haW4gc2V0ClNfRE9NQUlOTkFNRT0KIyBZb3UgY2FuIHNldCB0aGUgcHJpb3JpdHkgbGV2 ZWwgKG5pY2UpIG9mIGFsbCBwcm9jZXNzIGluIHRoZSB2c2VydmVyCiMgRXZlbiByb290IHdvbid0 IGJlIGFibGUgdG8gcmFpc2UgaXQKU19OSUNFPQojIFlvdSBjYW4gc2V0IHZhcmlvdXMgZmxhZ3Mg Zm9yIHRoZSBuZXcgc2VjdXJpdHkgY29udGV4dAojIGxvY2s6IFByZXZlbnQgdGhlIHZzZXJ2ZXIg ZnJvbSBzZXR0aW5nIG5ldyBzZWN1cml0eSBjb250ZXh0CiMgc2NoZWQ6IE1lcmdlIHNjaGVkdWxl ciBwcmlvcml0eSBvZiBhbGwgcHJvY2Vzc2VzIGluIHRoZSB2c2VydmVyCiMgICAgICAgIHNvIHRo YXQgaXQgYWN0cyBhIGxpa2UgYSBzaW5nbGUgb25lLgojIG5wcm9jOiBMaW1pdCB0aGUgbnVtYmVy IG9mIHByb2Nlc3NlcyBpbiB0aGUgdnNlcnZlciBhY2NvcmRpbmcgdG8gdWxpbWl0CiMgICAgICAg IChpbnN0ZWFkIG9mIGEgcGVyIHVzZXIgbGltaXQsIHRoaXMgYmVjb21lcyBhIHBlciB2c2VydmVy IGxpbWl0KQojIHByaXZhdGU6IE5vIG90aGVyIHByb2Nlc3MgY2FuIGpvaW4gdGhpcyBzZWN1cml0 eSBjb250ZXh0LiBFdmVuIHJvb3QKIyBEbyBub3QgZm9yZ2V0IHRoZSBxdW90ZXMgYXJvdW5kIHRo ZSBmbGFncwpTX0ZMQUdTPSJsb2NrIG5wcm9jIgojIFlvdSBjYW4gc2V0IHZhcmlvdXMgdWxpbWl0 IGZsYWdzIGFuZCB0aGV5IHdpbGwgYmUgaW5oZXJpdGVkIGJ5IHRoZQojIHZzZXJ2ZXIuIFlvdSBl bnRlciBoZXJlIHZhcmlvdXMgY29tbWFuZCBsaW5lIGFyZ3VtZW50IG9mIHVsaW1pdAojIFVMSU1J VD0iLUggLXUgMjAwIgojIFRoZSBleGFtcGxlIGFib3ZlLCBjb21iaW5lZCB3aXRoIHRoZSBucHJv YyBTX0ZMQUdTIHdpbGwgbGltaXQgdGhlCiMgdnNlcnZlciB0byBhIG1heGltdW0gb2YgMjAwIHBy b2Nlc3NlcwpVTElNSVQ9Ii1IIC11IDEwMDAiCiMgWW91IGNhbiBzZXQgdmFyaW91cyBjYXBhYmls aXRpZXMuIEJ5IGRlZmF1bHQsIHRoZSB2c2VydmVyIGFyZSBydW4KIyB3aXRoIGEgbGltaXRlZCBz ZXQsIHNvIHlvdSBjYW4gbGV0IHJvb3QgcnVuIGluIGEgdnNlcnZlciBhbmQgbm90CiMgd29ycnkg YWJvdXQgaXQuIEhlIGNhbid0IHRha2Ugb3ZlciB0aGUgbWFjaGluZS4gSW4gc29tZSBjYXNlcwoj IHlvdSBjYW4gdG8gZ2l2ZSBhIGxpdHRsZSBtb3JlIGNhcGFiaWxpdGllcyAoc3VjaCBhcyBDQVBf TkVUX1JBVykKIyBTX0NBUFM9IkNBUF9ORVRfUkFXIgpTX0NBUFM9IiIKCQkJRU9GCgkJCWVjaG8g JENPTkYgaGFzIGJlZW4gY3JlYXRlZC4gTG9vayBhdCBpdFwhCgkJZmkKCWZpCmVsaWYgWyAhIC1m IC9ldGMvdnNlcnZlcnMvJDEuY29uZiBdIDsgdGhlbgoJZWNobyBObyBjb25maWd1cmF0aW9uIGZv ciB0aGlzIHZzZXJ2ZXI6IC9ldGMvdnNlcnZlcnMvJDEuY29uZgoJZXhpdCAxCmVsaWYgWyAhIC1k IC92c2VydmVycy8kMS8uIF0gOyB0aGVuCgllY2hvIE5vIGRpcmVjdG9yeSBmb3IgdGhpcyB2c2Vy dmVyOiAvdnNlcnZlcnMvJDEKCWV4aXQgMQplbGlmIFsgIiQyIiA9ICJzdGFydCIgXSA7IHRoZW4K CWVjaG8gU3RhcnRpbmcgdGhlIHZpcnR1YWwgc2VydmVyICQxCgl0ZXN0cGVybSAkMQoJaWYgISAv dXNyL3NiaW4vdnNlcnZlciAkMSBydW5uaW5nCgl0aGVuCgkJdGVzdCAteCAvZXRjL3ZzZXJ2ZXJz LyQxLnNoICYmIC9ldGMvdnNlcnZlcnMvJDEuc2ggcHJlLXN0YXJ0ICQxCgkJSVBST09UPQoJCUlQ Uk9PVE1BU0s9CgkJSVBST09UQkNBU1Q9CgkJSVBST09UREVWPQoJCVNfTklDRT0KCQlTX0ZMQUdT PQoJCS4gL2V0Yy92c2VydmVycy8kMS5jb25mCgkJaWZjb25maWdfaXByb290ICQxCgkJY2QgL3Zz ZXJ2ZXJzLyQxIHx8IGV4aXQgMQoJCXJtIC1mIGBmaW5kIHZhci9ydW4gLXR5cGUgZmAKCQl0b3Vj aCB2YXIvcnVuL3V0bXAKCQlybSAtZiAgdmFyL2xvY2svc3Vic3lzLyoKCQltb3VudHByb2MgL3Zz ZXJ2ZXJzLyQxCgkJQ1RYT1BUPQoJCUhPU1RPUFQ9CgkJRE9NQUlOT1BUPQoJCU5JQ0VDTUQ9CgkJ RkxBR1M9CgkJQ0FQUz0KCQlnZXRfaW5pdGRlZmF1bHQgJDEKCQlTVEFSVENNRD0iL2V0Yy9yYy5k L3JjICRJTklUREVGQVVMVCIKCQlESVNDT05ORUNUPQoJCWZvciBmIGluICRTX0ZMQUdTIGR1bW15 CgkJZG8KCQkJY2FzZSAkZiBpbgoJCQlkdW1teSkKCQkJCTs7CgkJCWZha2Vpbml0KQoJCQkJRkxB R1M9IiRGTEFHUyAtLWZsYWcgJGYiCgkJCQlTVEFSVENNRD0vc2Jpbi9pbml0CgkJCQlESVNDT05O RUNUPS0tZGlzY29ubmVjdAoJCQkJOzsKCQkJKikKCQkJCUZMQUdTPSIkRkxBR1MgLS1mbGFnICRm IgoJCQkJOzsKCQkJZXNhYwoJCWRvbmUKCQlmb3IgZiBpbiAkU19DQVBTIGR1bW15CgkJZG8KCQkJ Y2FzZSAkZiBpbgoJCQlkdW1teSkKCQkJCTs7CgkJCSFDQVBfU1lTX0NIUk9PVCkKCQkJCUNIUk9P VE9QVD0tLW5vY2hyb290CgkJCQk7OwoJCQkqKQoJCQkJQ0FQUz0iJENBUFMgLS1jYXAgJGYiCgkJ CQk7OwoJCQllc2FjCgkJZG9uZQoJCWlmIFsgIiRTX0NPTlRFWFQiICE9ICIiIF0gOyB0aGVuCgkJ CUNUWE9QVD0iLS1jdHggJFNfQ09OVEVYVCIKCQlmaQoJCWlmIFsgIiRTX0hPU1ROQU1FIiAhPSAi IiBdIDsgdGhlbgoJCQlIT1NUT1BUPSItLWhvc3RuYW1lICRTX0hPU1ROQU1FIgoJCQlleHBvcnQg SE9TVE5BTUU9JFNfSE9TVE5BTUUKCQlmaQoJCWlmIFsgIiRTX0RPTUFJTk5BTUUiICE9ICIiIF0g OyB0aGVuCgkJCURPTUFJTk9QVD0iLS1kb21haW5uYW1lICRTX0RPTUFJTk5BTUUiCgkJZmkKCQlp ZiBbICIkU19OSUNFIiAhPSAiIiBdIDsgdGhlbgoJCQlOSUNFQ01EPSJuaWNlIC0kU19OSUNFIgoJ CWZpCgkJbWtkaXIgLXAgL3Zhci9ydW4vdnNlcnZlcnMKCQljaG1vZCA3MDAgL3Zhci9ydW4vdnNl cnZlcnMKCQlpZiBbICIkVUxJTUlUIiAhPSAiIiBdIDsgdGhlbgoJCQl1bGltaXQgJFVMSU1JVAoJ CWZpCgkJI2VjaG8gRkxBR1M9JEZMQUdTCgkJI2VjaG8gQ0FQUz0kQ0FQUwoJCSMgV2Ugc3dpdGNo IHRvIC92c2VydmVycy8kMSBub3csIGJlY2F1c2UgYWZ0ZXIgdGhlCgkJIyBzZWN1cml0eSBjb250 ZXh0IHN3aXRjaCAvdnNlcnZlcnMgZGlyZWN0b3J5IGJlY29tZXMgYSBkZWFkIHpvbmUuCgkJY2Qg L3ZzZXJ2ZXJzLyQxCgkJJE5JQ0VDTUQgL3Vzci9zYmluL2NoYmluZCAtLWlwICRJUFJPT1QgLS1i Y2FzdCAkSVBST09UQkNBU1QgXAoJCQkvdXNyL3NiaW4vY2hjb250ZXh0ICRESVNDT05ORUNUICRD QVBTICRGTEFHUyAkQ1RYT1BUICRIT1NUT1BUICRET01BSU5PUFQgLS1zZWN1cmUgXAoJCQkvdXNy L2xpYi92c2VydmVyL3NhdmVfc19jb250ZXh0IC92YXIvcnVuL3ZzZXJ2ZXJzLyQxLmN0eCBcCgkJ CS91c3IvbGliL3ZzZXJ2ZXIvY2FwY2hyb290ICRDSFJPT1RPUFQgLiAkU1RBUlRDTUQKCQlzbGVl cCAyCgkJdGVzdCAteCAvZXRjL3ZzZXJ2ZXJzLyQxLnNoICYmIC9ldGMvdnNlcnZlcnMvJDEuc2gg cG9zdC1zdGFydCAkMQoJZmkKZWxpZiBbICIkMiIgPSAicnVubmluZyIgXSA7IHRoZW4KCWlmIFsg ISAtZiAvdmFyL3J1bi92c2VydmVycy8kMS5jdHggXSA7IHRoZW4KCQllY2hvIFNlcnZlciAkMSBp cyBub3QgcnVubmluZwoJCWV4aXQgMQoJZWxzZQoJCS4gL3Zhci9ydW4vdnNlcnZlcnMvJDEuY3R4 CgkJTkI9YC91c3Ivc2Jpbi9jaGNvbnRleHQgLS1zaWxlbnQgLS1jdHggJFNfQ09OVEVYVCBwcyBh eCB8IHdjIC1sYAoJCU5CPWBldmFsIGV4cHIgJE5CICsgMGAKCQlpZiBbICIkTkIiIC1ndCAzIF0g OyB0aGVuCgkJCWVjaG8gU2VydmVyICQxIGlzIHJ1bm5pbmcKCQkJZXhpdCAwCgkJZWxzZQoJCQll Y2hvIFNlcnZlciAkMSBpcyBub3QgcnVubmluZwoJCQlleGl0IDEKCQlmaQoJZmkKZWxpZiBbICIk MiIgPSAic3RvcCIgXSA7IHRoZW4KCWVjaG8gU3RvcHBpbmcgdGhlIHZpcnR1YWwgc2VydmVyICQx CglpZiAvdXNyL3NiaW4vdnNlcnZlciAkMSBydW5uaW5nCgl0aGVuCgkJdGVzdCAteCAvZXRjL3Zz ZXJ2ZXJzLyQxLnNoICYmIC9ldGMvdnNlcnZlcnMvJDEuc2ggcHJlLXN0b3AgJDEKCQlJUFJPT1Q9 CgkJSVBST09UTUFTSz0KCQlJUFJPT1RCQ0FTVD0KCQlJUFJPT1RERVY9CgkJaWZjb25maWdfaXBy b290ICQxCgkJLiAvZXRjL3ZzZXJ2ZXJzLyQxLmNvbmYKCQkuIC92YXIvcnVuL3ZzZXJ2ZXJzLyQx LmN0eAoJCWNkIC92c2VydmVycy8kMQoJCW1vdW50cHJvYyAvdnNlcnZlcnMvJDEKCQkjIFRoZSBm YWtlaW5pdCBmbGFnIHRlbGwgdXMgaG93IHRvIHR1cm4gb2ZmIHRoZSBzZXJ2ZXIKCQlTVE9QQ01E PSIvZXRjL3JjLmQvcmMgNiIKCQlmb3IgZiBpbiAkU19GTEFHUyBkdW1teQoJCWRvCgkJCWNhc2Ug JGYgaW4KCQkJZmFrZWluaXQpCgkJCQlGTEFHUz0iJEZMQUdTIC0tZmxhZyAkZiIKCQkJCVNUT1BD TUQ9Ii9zYmluL2luaXQgNiIKCQkJCTs7CgkJCSopCgkJCQk7OwoJCQllc2FjCgkJZG9uZQoKCQlj ZCAvdnNlcnZlcnMvJDEKCQkvdXNyL3NiaW4vY2hiaW5kIC0taXAgJElQUk9PVCAtLWJjYXN0ICRJ UFJPT1RCQ0FTVCBcCgkJCS91c3Ivc2Jpbi9jaGNvbnRleHQgLS1zZWN1cmUgLS1jdHggJFNfQ09O VEVYVCBcCgkJCS91c3IvbGliL3ZzZXJ2ZXIvY2FwY2hyb290IC4gJFNUT1BDTUQKCQllY2hvIHNs ZWVwIDUKCQlzbGVlcCAyCgkJZWNobyBLaWxsaW5nIGFsbCBwcm9jZXNzZXMKCQkvdXNyL3NiaW4v Y2hiaW5kIC0tc2lsZW50IC0taXAgJElQUk9PVCAtLWJjYXN0ICRJUFJPT1RCQ0FTVCBcCgkJCS91 c3Ivc2Jpbi9jaGNvbnRleHQgLS1zZWN1cmUgLS1zaWxlbnQgLS1jdHggJFNfQ09OVEVYVCBcCgkJ CS91c3IvbGliL3ZzZXJ2ZXIvdnNlcnZlcmtpbGxhbGwKCQlpZiBbICIkSVBST09UIiAhPSAiIiAt YSAiJElQUk9PVERFViIgIT0gIiIgXSA7dGhlbgoJCQkvc2Jpbi9pZmNvbmZpZyAkSVBST09UREVW OiQxIGRvd24KCQlmaQoJZmkKCSMgV2UgdW1vdW50IGFueXdheSwgYmVjYXVzZSAiZW50ZXIiIGVz dGFibGlzaCB0aGUgbW91bnQKCSMgYnV0IHdoZW4geW91IGV4aXQsIHRoZSBzZXJ2ZXIgaXMgY29u c2lkZXJlZCBub3QgcnVubmluZwoJdW1vdW50cHJvYyAvdnNlcnZlcnMvJDEKCXRlc3QgLXggL2V0 Yy92c2VydmVycy8kMS5zaCAmJiAvZXRjL3ZzZXJ2ZXJzLyQxLnNoIHBvc3Qtc3RvcCAkMQoJaWZj b25maWdfaXByb290X29mZgplbGlmIFsgIiQyIiA9ICJyZXN0YXJ0IiBdIDsgdGhlbgoJaWYgL3Vz ci9zYmluL3ZzZXJ2ZXIgJDEgcnVubmluZwoJdGhlbgoJCSQwICQxIHN0b3AKCQkkMCAkMSBzdGFy dAoJZmkKZWxpZiBbICIkMiIgPSAiZXhlYyIgXSA7IHRoZW4KCUlQUk9PVD0KCUlQUk9PVE1BU0s9 CglJUFJPT1RCQ0FTVD0KCUlQUk9PVERFVj0KCS4gL2V0Yy92c2VydmVycy8kMS5jb25mCgljZCAv dnNlcnZlcnMvJDEKCWlmY29uZmlnX2lwcm9vdCAkMQoJbW91bnRwcm9jIC92c2VydmVycy8kMQoJ UFMxPSJbXHVAdnNlcnZlcjokMSBcV10iCglleHBvcnQgUFMxCglWU0VSVkVSPSQxCglzaGlmdAoJ c2hpZnQKCUNBUFM9Cglmb3IgZiBpbiAkU19DQVBTIGR1bW15CglkbwoJCWNhc2UgJGYgaW4KCQlk dW1teSkKCQkJOzsKCQkhQ0FQX1NZU19DSFJPT1QpCgkJCUNIUk9PVE9QVD0tLW5vY2hyb290CgkJ CTs7CgkJKikKCQkJQ0FQUz0iJENBUFMgLS1jYXAgJGYiCgkJCTs7CgkJZXNhYwoJZG9uZQoJaWYg JDAgJFZTRVJWRVIgcnVubmluZwoJdGhlbgoJCS4gL3Zhci9ydW4vdnNlcnZlcnMvJFZTRVJWRVIu Y3R4CgkJY2QgL3ZzZXJ2ZXJzLyRWU0VSVkVSCgkJL3Vzci9zYmluL2NoYmluZCAtLWlwICRJUFJP T1QgLS1iY2FzdCAkSVBST09UQkNBU1QgXAoJCQkvdXNyL3NiaW4vY2hjb250ZXh0ICRDQVBTIC0t c2VjdXJlIC0tY3R4ICRTX0NPTlRFWFQgXAoJCQkvdXNyL2xpYi92c2VydmVyL2NhcGNocm9vdCAu ICQqCgllbHNlCgkJdGVzdCAteCAvZXRjL3ZzZXJ2ZXJzLyQxLnNoICYmIC9ldGMvdnNlcnZlcnMv JDEuc2ggcHJlLXN0YXJ0ICQxCgkJQ1RYT1BUPQoJCUhPU1RPUFQ9CgkJRE9NQUlOT1BUPQoJCWlm IFsgIiRTX0NPTlRFWFQiICE9ICIiIF0gOyB0aGVuCgkJCUNUWE9QVD0iLS1jdHggJFNfQ09OVEVY VCIKCQlmaQoJCWlmIFsgIiRTX0hPU1ROQU1FIiAhPSAiIiBdIDsgdGhlbgoJCQlIT1NUT1BUPSIt LWhvc3RuYW1lICRTX0hPU1ROQU1FIgoJCQlleHBvcnQgSE9TVE5BTUU9JFNfSE9TVE5BTUUKCQlm aQoJCWlmIFsgIiRTX0RPTUFJTk5BTUUiICE9ICIiIF0gOyB0aGVuCgkJCURPTUFJTk9QVD0iLS1k b21haW5uYW1lICRTX0RPTUFJTk5BTUUiCgkJZmkKCQlta2RpciAtcCAvdmFyL3J1bi92c2VydmVy cwoJCWNkIC92c2VydmVycy8kVlNFUlZFUgoJCS91c3Ivc2Jpbi9jaGJpbmQgLS1pcCAkSVBST09U IC0tYmNhc3QgJElQUk9PVEJDQVNUIFwKCQkJL3Vzci9zYmluL2NoY29udGV4dCAkQ0FQUyAtLXNl Y3VyZSAkQ1RYT1BUICRIT1NUT1BUICRET01BSU5PUFQgXAoJCQkvdXNyL2xpYi92c2VydmVyL3Nh dmVfc19jb250ZXh0IC92YXIvcnVuL3ZzZXJ2ZXJzLyRWU0VSVkVSLmN0eCBcCgkJCS91c3IvbGli L3ZzZXJ2ZXIvY2FwY2hyb290ICRDSFJPT1RPUFQgLiAkKgoJZmkKZWxpZiBbICIkMiIgPSAic3Vl eGVjIiBdIDsgdGhlbgogICAgICAgIElQUk9PVD0KICAgICAgICBJUFJPT1RNQVNLPQogICAgICAg IElQUk9PVEJDQVNUPQogICAgICAgIElQUk9PVERFVj0KICAgICAgICAuIC9ldGMvdnNlcnZlcnMv JDEuY29uZgogICAgICAgIGNkIC92c2VydmVycy8kMQogICAgICAgIGlmY29uZmlnX2lwcm9vdCAk MQogICAgICAgIG1vdW50cHJvYyAvdnNlcnZlcnMvJDEKICAgICAgICBQUzE9IltcdUB2c2VydmVy OiQxIFxXXSIKICAgICAgICBleHBvcnQgUFMxCiAgICAgICAgVlNFUlZFUj0kMQoJVVNFUklEPSQz CiAgICAgICAgc2hpZnQKICAgICAgICBzaGlmdAoJc2hpZnQKICAgICAgICBDQVBTPQoJZWNobyAk VVNFUklECiAgICAgICAgZm9yIGYgaW4gJFNfQ0FQUyBkdW1teQogICAgICAgIGRvCiAgICAgICAg ICAgICAgICBjYXNlICRmIGluCiAgICAgICAgICAgICAgICBkdW1teSkKICAgICAgICAgICAgICAg ICAgICAgICAgOzsKICAgICAgICAgICAgICAgICFDQVBfU1lTX0NIUk9PVCkKICAgICAgICAgICAg ICAgICAgICAgICAgQ0hST09UT1BUPS0tbm9jaHJvb3QKICAgICAgICAgICAgICAgICAgICAgICAg OzsKICAgICAgICAgICAgICAgICopCiAgICAgICAgICAgICAgICAgICAgICAgIENBUFM9IiRDQVBT IC0tY2FwICRmIgogICAgICAgICAgICAgICAgICAgICAgICA7OwogICAgICAgICAgICAgICAgZXNh YwogICAgICAgIGRvbmUKICAgICAgICBpZiAkMCAkVlNFUlZFUiBydW5uaW5nCiAgICAgICAgdGhl bgogICAgICAgICAgICAgICAgLiAvdmFyL3J1bi92c2VydmVycy8kVlNFUlZFUi5jdHgKICAgICAg ICAgICAgICAgIGNkIC92c2VydmVycy8kVlNFUlZFUgogICAgICAgICAgICAgICAgL3Vzci9zYmlu L2NoYmluZCAtLWlwICRJUFJPT1QgLS1iY2FzdCAkSVBST09UQkNBU1QgXAogICAgICAgICAgICAg ICAgICAgICAgICAvdXNyL3NiaW4vY2hjb250ZXh0ICRDQVBTIC0tc2VjdXJlIC0tY3R4ICRTX0NP TlRFWFQgXAogICAgICAgICAgICAgICAgICAgICAgICAvdXNyL2xpYi92c2VydmVyL215Y2FwY2hy b290IC4gLXN1aWQgJFVTRVJJRCAiJCoiCiAgICAgICAgZWxzZQogICAgICAgICAgICAgICAgdGVz dCAteCAvZXRjL3ZzZXJ2ZXJzLyQxLnNoICYmIC9ldGMvdnNlcnZlcnMvJDEuc2ggcHJlLXN0YXJ0 ICQxCiAgICAgICAgICAgICAgICBDVFhPUFQ9CiAgICAgICAgICAgICAgICBIT1NUT1BUPQogICAg ICAgICAgICAgICAgRE9NQUlOT1BUPQogICAgICAgICAgICAgICAgaWYgWyAiJFNfQ09OVEVYVCIg IT0gIiIgXSA7IHRoZW4KICAgICAgICAgICAgICAgICAgICAgICAgQ1RYT1BUPSItLWN0eCAkU19D T05URVhUIgogICAgICAgICAgICAgICAgZmkKICAgICAgICAgICAgICAgIGlmIFsgIiRTX0hPU1RO QU1FIiAhPSAiIiBdIDsgdGhlbgogICAgICAgICAgICAgICAgICAgICAgICBIT1NUT1BUPSItLWhv c3RuYW1lICRTX0hPU1ROQU1FIgogICAgICAgICAgICAgICAgICAgICAgICBleHBvcnQgSE9TVE5B TUU9JFNfSE9TVE5BTUUKICAgICAgICAgICAgICAgIGZpCiAgICAgICAgICAgICAgICBpZiBbICIk U19ET01BSU5OQU1FIiAhPSAiIiBdIDsgdGhlbgogICAgICAgICAgICAgICAgICAgICAgICBET01B SU5PUFQ9Ii0tZG9tYWlubmFtZSAkU19ET01BSU5OQU1FIgogICAgICAgICAgICAgICAgZmkKICAg ICAgICAgICAgICAgIG1rZGlyIC1wIC92YXIvcnVuL3ZzZXJ2ZXJzCiAgICAgICAgICAgICAgICBj ZCAvdnNlcnZlcnMvJFZTRVJWRVIKICAgICAgICAgICAgICAgIC91c3Ivc2Jpbi9jaGJpbmQgLS1p cCAkSVBST09UIC0tYmNhc3QgJElQUk9PVEJDQVNUIFwKICAgICAgICAgICAgICAgICAgICAgICAg L3Vzci9zYmluL2NoY29udGV4dCAkQ0FQUyAtLXNlY3VyZSAkQ1RYT1BUICRIT1NUT1BUICRET01B SU5PUFQgXAogICAgICAgICAgICAgICAgICAgICAgICAvdXNyL2xpYi92c2VydmVyL3NhdmVfc19j b250ZXh0IC92YXIvcnVuL3ZzZXJ2ZXJzLyRWU0VSVkVSLmN0eCBcCiAgICAgICAgICAgICAgICAg ICAgICAgIC91c3IvbGliL3ZzZXJ2ZXIvbXljYXBjaHJvb3QgJENIUk9PVE9QVCAuIC1zdWlkICRV U0VSSUQgIiQqIgogICAgICAgIGZpCgplbGlmIFsgIiQyIiA9ICJlbnRlciIgXSA7IHRoZW4KCXRl c3RwZXJtICQxCglleGVjICQwICQxIGV4ZWMgL2Jpbi9iYXNoIC1sb2dpbgplbGlmIFsgIiQyIiA9 ICJzZXJ2aWNlIiBdIDsgdGhlbgoJVlNFUlZFUj0kMQoJc2hpZnQKCXNoaWZ0CglleGVjICQwICRW U0VSVkVSIGV4ZWMgL3NiaW4vc2VydmljZSAkKgplbGlmIFsgIiQyIiA9ICJjaGtjb25maWciIF0g OyB0aGVuCglWU0VSVkVSPSQxCglzaGlmdAoJc2hpZnQKCWV4ZWMgJDAgJFZTRVJWRVIgZXhlYyAv c2Jpbi9jaGtjb25maWcgJCoKZWxzZQoJZWNobyBDb21tYW5kIHVua25vd24gJDIKCWVjaG8KCXVz YWdlCmZpCgo= --0__=C2256BEB004810648f9e8a93df938690918cC2256BEB00481064 Content-type: application/octet-stream; name="mycapchroot.cc" Content-Disposition: attachment; filename="mycapchroot.cc" Content-transfer-encoding: base64 LyoKCVRoaXMgY2hyb290IGNvbW1hbmQgZG9lcyB2ZXJ5IGxpdHRsZS4gT25jZSB0aGUgY2hyb290 CglzeXN0ZW0gY2FsbCBpcyBleGVjdXRlZCwgaXQgKG9wdGlvbikgcmVtb3ZlIHRoZSBDQVBfU1lT X0NIUk9PVAoJY2FwYWJpbGl0eS4gVGhlbiBpdCBleGVjdXRlcyBpdHMgYXJndW1lbnQKKi8KI2lu Y2x1ZGUgPHN0ZGlvLmg+CiNpbmNsdWRlIDxzdHJpbmcuaD4KI2luY2x1ZGUgPGVycm5vLmg+CiNp bmNsdWRlIDx1bmlzdGQuaD4KI2luY2x1ZGUgPGxpbnV4L2NhcGFiaWxpdHkuaD4KI2luY2x1ZGUg InZ1dGlsLmgiCgojaW5jbHVkZSA8cHdkLmg+CiNpbmNsdWRlIDxzeXMvdHlwZXMuaD4KCmludCBt YWluIChpbnQgYXJnYywgY2hhciAqYXJndltdKQp7CglpZiAoYXJnYyA8IDMpewoJCWZwcmludGYg KHN0ZGVyciwiY2FwY2hyb290IHZlcnNpb24gJXNcbiIsVkVSU0lPTik7CgkJZnByaW50ZiAoc3Rk ZXJyCgkJCSwiY2FwY2hyb290IC0tbm9jaHJvb3QgZGlyZWN0b3J5IFstc3VpZCB1aWRdIGNvbW1h bmQgYXJndW1lbnRcbiIKCQkJICItLW5vY2hyb290IHJlbW92ZSB0aGUgQ0FQX1NZU19DSFJPT1Qg Y2FwYWJpbGl0eVxuIgoJCQkgImFmdGVyIHRoZSBjaHJvb3Qgc3lzdGVtIGNhbGxcbiIpOwoJfWVs c2V7CgkJYm9vbCBub2Nocm9vdCA9IGZhbHNlOwoJCWludCBkaXIgPSAxOwoJCWlmIChzdHJjbXAo YXJndlsxXSwiLS1ub2Nocm9vdCIpPT0wKXsKCQkJbm9jaHJvb3QgPSB0cnVlOwoJCQlkaXIgPSAy OwoJCX0KCQljaGFyKiB1aWQgPSBOVUxMOwoJCWlmIChzdHJjbXAoYXJndlsyXSwiLXN1aWQiKT09 MCAmJiBhcmdjID4gMykgewoJCQlpZiAoYXJnYyA+IDQpIHsKCQkJCXVpZCA9IGFyZ3ZbM107CgkJ CX0KCQl9CgkJaWYgKGNocm9vdCAoYXJndltkaXJdKSA9PSAtMSl7CgkJCWZwcmludGYgKHN0ZGVy ciwiQ2FuJ3QgY2hyb290IHRvIGRpcmVjdG9yeSAlcyAoJXMpXG4iLGFyZ3ZbZGlyXQoJCQkJLHN0 cmVycm9yKGVycm5vKSk7CgkJfSBlbHNlIHsKCQkJaWYgKG5vY2hyb290KXsKCQkJCWNhbGxfbmV3 X3NfY29udGV4dCAoLTIsMTw8Q0FQX1NZU19DSFJPT1QsMCk7CgkJCX0KCgkJCWlmICh1aWQgIT0g TlVMTCkgewoJCQkJZGlyKz0yOwoJCQkJc3RydWN0IHBhc3N3ZCAqcCA9IE5VTEw7CgkJCQlwID0g Z2V0cHduYW0odWlkKTsKCQkJCWlmICAocCA9PSBOVUxMKSB7CgkJCQkJZnByaW50ZiAoc3RkZXJy LCJVc2VyIG5vdCBmb3VuZCAlcyAoJXMpXG4iLHVpZAogICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgCQkgLHN0cmVycm9yKGVycm5vKSk7CgkJCQkJcmV0dXJuIC0xOwoJCQkJfSBlbHNlIHsK CQkJCQlhcmd2W2Rpci0xXT0iL2Jpbi9zaCI7CgkJCQkJYXJndltkaXJdPSItYyI7CgkJCQkJc2V0 dWlkKHAtPnB3X3VpZCk7CgkJCQkJZGlyLT0yOwoJCQkJfQoJCQl9IAoJCQkKCQkJaW50IGNtZCA9 IGRpciArIDE7CgkJCWV4ZWN2cCAoYXJndltjbWRdLGFyZ3YrY21kKTsKCQkJZnByaW50ZiAoc3Rk ZXJyLCJDYW4ndCBleGVjdXRlICVzICglcylcbiIsYXJndltjbWRdCgkJCQksc3RyZXJyb3IoZXJy bm8pKTsKCQl9Cgl9CglyZXR1cm4gLTE7Cn0KCgo= --0__=C2256BEB004810648f9e8a93df938690918cC2256BEB00481064 Content-type: application/octet-stream; name="vserver.patch" Content-Disposition: attachment; filename="vserver.patch" Content-transfer-encoding: base64 NzdkNzYKPCAJZWNobyAiIHN1ZXhlYyAgOiBFeGVjIGEgY29tbWFuZCBpbiB0aGUgdmlydHVhbCBz ZXJ2ZXIgY29udGV4dCB1aWQiCjQzNiw0OTZkNDM0CjwgZWxpZiBbICIkMiIgPSAic3VleGVjIiBd IDsgdGhlbgo8ICAgICAgICAgSVBST09UPQo8ICAgICAgICAgSVBST09UTUFTSz0KPCAgICAgICAg IElQUk9PVEJDQVNUPQo8ICAgICAgICAgSVBST09UREVWPQo8ICAgICAgICAgLiAvZXRjL3ZzZXJ2 ZXJzLyQxLmNvbmYKPCAgICAgICAgIGNkIC92c2VydmVycy8kMQo8ICAgICAgICAgaWZjb25maWdf aXByb290ICQxCjwgICAgICAgICBtb3VudHByb2MgL3ZzZXJ2ZXJzLyQxCjwgICAgICAgICBQUzE9 IltcdUB2c2VydmVyOiQxIFxXXSIKPCAgICAgICAgIGV4cG9ydCBQUzEKPCAgICAgICAgIFZTRVJW RVI9JDEKPCAJVVNFUklEPSQzCjwgICAgICAgICBzaGlmdAo8ICAgICAgICAgc2hpZnQKPCAJc2hp ZnQKPCAgICAgICAgIENBUFM9CjwgCWVjaG8gJFVTRVJJRAo8ICAgICAgICAgZm9yIGYgaW4gJFNf Q0FQUyBkdW1teQo8ICAgICAgICAgZG8KPCAgICAgICAgICAgICAgICAgY2FzZSAkZiBpbgo8ICAg ICAgICAgICAgICAgICBkdW1teSkKPCAgICAgICAgICAgICAgICAgICAgICAgICA7Owo8ICAgICAg ICAgICAgICAgICAhQ0FQX1NZU19DSFJPT1QpCjwgICAgICAgICAgICAgICAgICAgICAgICAgQ0hS T09UT1BUPS0tbm9jaHJvb3QKPCAgICAgICAgICAgICAgICAgICAgICAgICA7Owo8ICAgICAgICAg ICAgICAgICAqKQo8ICAgICAgICAgICAgICAgICAgICAgICAgIENBUFM9IiRDQVBTIC0tY2FwICRm Igo8ICAgICAgICAgICAgICAgICAgICAgICAgIDs7CjwgICAgICAgICAgICAgICAgIGVzYWMKPCAg ICAgICAgIGRvbmUKPCAgICAgICAgIGlmICQwICRWU0VSVkVSIHJ1bm5pbmcKPCAgICAgICAgIHRo ZW4KPCAgICAgICAgICAgICAgICAgLiAvdmFyL3J1bi92c2VydmVycy8kVlNFUlZFUi5jdHgKPCAg ICAgICAgICAgICAgICAgY2QgL3ZzZXJ2ZXJzLyRWU0VSVkVSCjwgICAgICAgICAgICAgICAgIC91 c3Ivc2Jpbi9jaGJpbmQgLS1pcCAkSVBST09UIC0tYmNhc3QgJElQUk9PVEJDQVNUIFwKPCAgICAg ICAgICAgICAgICAgICAgICAgICAvdXNyL3NiaW4vY2hjb250ZXh0ICRDQVBTIC0tc2VjdXJlIC0t Y3R4ICRTX0NPTlRFWFQgXAo8ICAgICAgICAgICAgICAgICAgICAgICAgIC91c3IvbGliL3ZzZXJ2 ZXIvY2FwY2hyb290IC4gLXN1aWQgJFVTRVJJRCAiJCoiCjwgICAgICAgICBlbHNlCjwgICAgICAg ICAgICAgICAgIHRlc3QgLXggL2V0Yy92c2VydmVycy8kMS5zaCAmJiAvZXRjL3ZzZXJ2ZXJzLyQx LnNoIHByZS1zdGFydCAkMQo8ICAgICAgICAgICAgICAgICBDVFhPUFQ9CjwgICAgICAgICAgICAg ICAgIEhPU1RPUFQ9CjwgICAgICAgICAgICAgICAgIERPTUFJTk9QVD0KPCAgICAgICAgICAgICAg ICAgaWYgWyAiJFNfQ09OVEVYVCIgIT0gIiIgXSA7IHRoZW4KPCAgICAgICAgICAgICAgICAgICAg ICAgICBDVFhPUFQ9Ii0tY3R4ICRTX0NPTlRFWFQiCjwgICAgICAgICAgICAgICAgIGZpCjwgICAg ICAgICAgICAgICAgIGlmIFsgIiRTX0hPU1ROQU1FIiAhPSAiIiBdIDsgdGhlbgo8ICAgICAgICAg ICAgICAgICAgICAgICAgIEhPU1RPUFQ9Ii0taG9zdG5hbWUgJFNfSE9TVE5BTUUiCjwgICAgICAg ICAgICAgICAgICAgICAgICAgZXhwb3J0IEhPU1ROQU1FPSRTX0hPU1ROQU1FCjwgICAgICAgICAg ICAgICAgIGZpCjwgICAgICAgICAgICAgICAgIGlmIFsgIiRTX0RPTUFJTk5BTUUiICE9ICIiIF0g OyB0aGVuCjwgICAgICAgICAgICAgICAgICAgICAgICAgRE9NQUlOT1BUPSItLWRvbWFpbm5hbWUg JFNfRE9NQUlOTkFNRSIKPCAgICAgICAgICAgICAgICAgZmkKPCAgICAgICAgICAgICAgICAgbWtk aXIgLXAgL3Zhci9ydW4vdnNlcnZlcnMKPCAgICAgICAgICAgICAgICAgY2QgL3ZzZXJ2ZXJzLyRW U0VSVkVSCjwgICAgICAgICAgICAgICAgIC91c3Ivc2Jpbi9jaGJpbmQgLS1pcCAkSVBST09UIC0t YmNhc3QgJElQUk9PVEJDQVNUIFwKPCAgICAgICAgICAgICAgICAgICAgICAgICAvdXNyL3NiaW4v Y2hjb250ZXh0ICRDQVBTIC0tc2VjdXJlICRDVFhPUFQgJEhPU1RPUFQgJERPTUFJTk9QVCBcCjwg ICAgICAgICAgICAgICAgICAgICAgICAgL3Vzci9saWIvdnNlcnZlci9zYXZlX3NfY29udGV4dCAv dmFyL3J1bi92c2VydmVycy8kVlNFUlZFUi5jdHggXAo8ICAgICAgICAgICAgICAgICAgICAgICAg IC91c3IvbGliL3ZzZXJ2ZXIvY2FwY2hyb290ICRDSFJPT1RPUFQgLiAtc3VpZCAkVVNFUklEICIk KiIKPCAgICAgICAgIGZpCjwgCg== --0__=C2256BEB004810648f9e8a93df938690918cC2256BEB00481064 Content-type: application/octet-stream; name="capchroot.patch" Content-Disposition: attachment; filename="capchroot.patch" Content-transfer-encoding: base64 MTMsMTVkMTIKPCAjaW5jbHVkZSA8cHdkLmg+CjwgI2luY2x1ZGUgPHN5cy90eXBlcy5oPgo8IAoy MWMxOAo8IAkJCSwiY2FwY2hyb290IC0tbm9jaHJvb3QgZGlyZWN0b3J5IFstc3VpZCB1aWRdIGNv bW1hbmQgYXJndW1lbnRcbiIKLS0tCj4gCQkJLCJjYXBjaHJvb3QgLS1ub2Nocm9vdCBkaXJlY3Rv cnkgY29tbWFuZCBhcmd1bWVudFxuIgozMSwzNmQyNwo8IAkJY2hhciogdWlkID0gTlVMTDsKPCAJ CWlmIChzdHJjbXAoYXJndlsyXSwiLXN1aWQiKT09MCAmJiBhcmdjID4gMykgewo8IAkJCWlmIChh cmdjID4gNCkgewo8IAkJCQl1aWQgPSBhcmd2WzNdOwo8IAkJCX0KPCAJCX0KNDBjMzEKPCAJCX0g ZWxzZSB7Ci0tLQo+IAkJfWVsc2V7CjQ0LDYwZDM0CjwgCjwgCQkJaWYgKHVpZCAhPSBOVUxMKSB7 CjwgCQkJCWRpcis9MjsKPCAJCQkJc3RydWN0IHBhc3N3ZCAqcCA9IE5VTEw7CjwgCQkJCXAgPSBn ZXRwd25hbSh1aWQpOwo8IAkJCQlpZiAgKHAgPT0gTlVMTCkgewo8IAkJCQkJZnByaW50ZiAoc3Rk ZXJyLCJVc2VyIG5vdCBmb3VuZCAlcyAoJXMpXG4iLHVpZAo8ICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAJCSAsc3RyZXJyb3IoZXJybm8pKTsKPCAJCQkJCXJldHVybiAtMTsKPCAJCQkJ fSBlbHNlIHsKPCAJCQkJCWFyZ3ZbZGlyLTFdPSIvYmluL3NoIjsKPCAJCQkJCWFyZ3ZbZGlyXT0i LWMiOwo8IAkJCQkJc2V0dWlkKHAtPnB3X3VpZCk7CjwgCQkJCQlkaXItPTI7CjwgCQkJCX0KPCAJ CQl9IAo8IAkJCQo= --0__=C2256BEB004810648f9e8a93df938690918cC2256BEB00481064-- From vserver.error@solucorp.qc.ca Thu Jul 4 15:28:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g64JRL9D009791; Thu, 4 Jul 2002 15:27:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g64HinC12207 for vserver.list; Thu, 4 Jul 2002 13:44:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca ([206.162.172.138]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g64HimY12203 for ; Thu, 4 Jul 2002 13:44:48 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g64HjhU17183 for vserver@dns.solucorp.qc.ca; Thu, 4 Jul 2002 13:45:43 -0400 From: Jacques Gelinas Date: Thu, 4 Jul 2002 13:45:43 -0500 To: Vserver mailing list Subject: [vserver] vserver 0.18 and kernel ctx-12 change log X-mailer: tlmpmail 0.6 Message-ID: <20020704134543.fa9cba9f8ed9@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 741 vserver 0.18 Change log 1. Enhancements 1.1. Building vservers out of RedHat CDs The newvserver utility has been enhanced so you can interactively build vservers from the first Redhat CD or either 7.2 or 7.3. This is done by using the /usr/lib/vserver/install-rh7,2 or install-rh7.3 script. The later is new in vserver 0.18. The build process configure properly /etc/sysconfig/network to help some package operate properly. netatalk for one grabs the host name from /etc/sysconfig/network. 1.2. kernel ctx-12: binding to the broadcast address ctx-12 allows this. A normal kernel allows this as well. 1.3. kernel ctx-12: multi-IP The new kernel supports multiple IP numbers assigned to a vserver. This allows a vserver to setup services on more than one IP. To make use of that, you simply enter several IP number in the IPROOT field of the vserver configuration file: IPROOT="192.168.1.1 192.168.1.2" Do not forget the quotes! The vserver utility will create the necessary IP aliases. The first one is created using the vserver name (eth0:name) and the other are adding a number as a suffix (eth0:name1, eth0:name2, ...). The multi-IP support keeps the original semantic of the vserver in some ways. A service doing a bind ANY (bind to 0.0.0.0) will setup its IP service on the first IP number of the vserver. If you wants to listen to several IP, you will need to configure your service for each IP number explicitly. For example, for apache, you will need multiple listen statements. By default, apache has a "listen 80" statement (a bind any) which translate in a vserver to a listen first-ip-of-the- vserver:80. So you must simply add listen statement for the remaining IP. For example, for the above IPROOT statement: listen 192.168.1.2:80 This departs from the normal behavior of a Unix/Linux OS. When you do a bind any, you end up listening to every IP configured on the box. It was not possible to achieve that easily in the kernel, while keeping performance high (100%) and yet control which IP may be use by a vserver. So this is a compromise. Time will tell how usable it is. 2. Bug fixes 2.1. Building the package on rh6.2 The vserver source do include linux/capability.h. Mixing kernel and glibc header is not a good thing (generally), but glibc do not provide support for capabilities yet. This was causing some strange problem (remember the thread "C++ sucks". This was fixed by moving the #include capability.h> after the other #include in various source. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Jul 5 17:33:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g65LXI9D006396; Fri, 5 Jul 2002 17:33:19 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g65L6C817775 for vserver.list; Fri, 5 Jul 2002 17:06:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts5-srv.bellnexxia.net (tomts5.bellnexxia.net [209.226.175.25]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g65L6BY17770 for ; Fri, 5 Jul 2002 17:06:11 -0400 Received: from [209.226.175.15] by tomts5-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020705210555.OUAM1514.tomts5-srv.bellnexxia.net@[209.226.175.15]> for ; Fri, 5 Jul 2002 17:05:55 -0400 From: To: Subject: Re: [vserver] vserver 0.18 and kernel ctx-12 change log Date: Fri, 5 Jul 2002 17:06:13 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Message-Id: <20020705210555.OUAM1514.tomts5-srv.bellnexxia.net@[209.226.175.15]> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g65L6BY17770 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 742 The patch for multiple IP is setted on the vserver but we don't know how it work... there is no DOC FAQ about it and nothing how it is working Best regards, Jean-Philippe Béďque, www.eboxw.net From vserver.error@solucorp.qc.ca Fri Jul 5 19:41:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g65Nev9D010528; Fri, 5 Jul 2002 19:40:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g65N5RD20342 for vserver.list; Fri, 5 Jul 2002 19:05:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g65N5NY20337 for ; Fri, 5 Jul 2002 19:05:27 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g65N5M607476 for ; Fri, 5 Jul 2002 16:05:22 -0700 Date: Fri, 5 Jul 2002 16:05:22 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] vserver 0.18 and kernel ctx-12 change log In-Reply-To: <20020705210555.OUAM1514.tomts5-srv.bellnexxia.net@[209.226.175.15]> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 743 On Fri, 5 Jul 2002 jpbeique@sympatico.ca wrote: > The patch for multiple IP is setted on the vserver but we don't know > how it work... there is no DOC FAQ about it and nothing how it is > working How about this link from the main vserver page at solucorp.qc.ca. http://www.solucorp.qc.ca/changes.hc?projet=vserver&version=0.18#kernel%20ctx-12:%20multi-IP Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Fri Jul 5 19:52:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g65NqM9D010869; Fri, 5 Jul 2002 19:52:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g65N8gr20408 for vserver.list; Fri, 5 Jul 2002 19:08:42 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp011.mail.yahoo.com (smtp011.mail.yahoo.com [216.136.173.31]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g65N8gY20404 for ; Fri, 5 Jul 2002 19:08:42 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 5 Jul 2002 23:08:41 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] vserver 0.18 and kernel ctx-12 change log Date: Fri, 5 Jul 2002 18:08:26 -0500 Message-ID: <000301c22478$e00a92e0$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal In-Reply-To: <20020705210555.OUAM1514.tomts5-srv.bellnexxia.net@[209.226.175.15]> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g65N8gY20404 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 744 Read the change log. I remember it describes the use of multi-IP. Peter -----Original Message----- From: jpbeique@sympatico.ca [mailto:jpbeique@sympatico.ca] Sent: Friday, July 05, 2002 4:06 PM To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver 0.18 and kernel ctx-12 change log The patch for multiple IP is setted on the vserver but we don't know how it work... there is no DOC FAQ about it and nothing how it is working Best regards, Jean-Philippe Béďque, www.eboxw.net From vserver.error@solucorp.qc.ca Sun Jul 7 11:50:09 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g67Fna9D012075; Sun, 7 Jul 2002 11:49:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g67FM5i13999 for vserver.list; Sun, 7 Jul 2002 11:22:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linuxfriends (cpu183.adsl.qc.bellglobal.com [207.236.226.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g67FM5Y13995 for ; Sun, 7 Jul 2002 11:22:05 -0400 Received: from www-data by linuxfriends with local (Exim 3.35 #1 (Debian)) id 17QraW-0006SZ-00 for ; Sat, 06 Jul 2002 11:35:08 -0400 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver 0.18 and kernel ctx-12 change log Message-ID: <1025969707.3d270e2bbf9e9@linuxfriends.sympatico.ca> Date: Sat, 06 Jul 2002 11:35:07 -0400 (EDT) From: shuri@linuxfriends.wox.org References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 192.168.1.3 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 745 En réponse ŕ "Roderick A. Anderson" : Thanx for Multiple IP support !!! Vserver still the best Virtual Server Apps :) > On Fri, 5 Jul 2002 jpbeique@sympatico.ca wrote: > > > The patch for multiple IP is setted on the vserver but we don't know > > how it work... there is no DOC FAQ about it and nothing how it is > > working > > How about this link from the main vserver page at solucorp.qc.ca. > > http://www.solucorp.qc.ca/changes.hc?projet=vserver&version=0.18#kernel% 20ctx-12:%20multi-IP > > > Rod > -- > "Open Source Software - Sometimes you get more than you paid for..." > > From vserver.error@solucorp.qc.ca Mon Jul 8 07:31:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g68BUt9D019138; Mon, 8 Jul 2002 07:30:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g68Adkh06824 for vserver.list; Mon, 8 Jul 2002 06:39:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail1.messagelabs.com (mail1.messagelabs.com [212.125.75.4]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g68AdjY06820 for ; Mon, 8 Jul 2002 06:39:45 -0400 X-VirusChecked: Checked Received: (qmail 14909 invoked from network); 8 Jul 2002 10:39:38 -0000 Received: from porgy.logica.co.uk (158.234.250.67) by server-3.tower-1.messagelabs.com with SMTP; 8 Jul 2002 10:39:38 -0000 Received: from lat.logica.co.uk (lat.logica.co.uk [158.234.190.58]) by porgy.logica.co.uk (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id LAA02051 for ; Mon, 8 Jul 2002 11:39:06 +0100 Received: from maximus (158.234.191.190 [158.234.191.190]) by lat.logica.co.uk with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2448.0) id MTJ1MTRA; Mon, 8 Jul 2002 18:39:02 +0800 Subject: [vserver] Access external network from vservers From: Lew Teck Kheng To: Vserver mailing list Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8.99 Date: 08 Jul 2002 18:38:58 +0800 Message-Id: <1026124743.1457.36.camel@maximus> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 746 hi all : I have installed a cluster using vservers (using the latest vservers) I have two network cards which are eth0 and eth1(which is not use). I am using eth0 to access the LAN and internet. I have 4 vservers running using eth0 device using the private IP 192.168.100.x. My primary eth0 have a LAN IP address. Somehow when i in the vserver i only manage to ping the eth0 not the LAN or any gateway. When I check the routing table on vservers , the default gateway is set. I just wondering how vservers can be configure to access internet ? Thank you very much in advance cheers ________________________________________________________________________ This email has been scanned for all viruses by the MessageLabs SkyScan service. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.messagelabs.com ________________________________________________________________________ From vserver.error@solucorp.qc.ca Mon Jul 8 09:04:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g68D409D022221; Mon, 8 Jul 2002 09:04:01 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g68CB7M09001 for vserver.list; Mon, 8 Jul 2002 08:11:07 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g68CB6Y08994 for ; Mon, 8 Jul 2002 08:11:06 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g68CB2F30164 for ; Mon, 8 Jul 2002 05:11:02 -0700 Date: Mon, 8 Jul 2002 05:11:02 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: [vserver] Vserver 0.18 and kernle 2.4.28ctx-10 Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 747 Is it OK, ie. no broken computers, to run the vserver 0.18 and this older kernel? I do realize there is some new functionality in the new kernels but I'm not ready to make a trip to the colo at this time. TIA, Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Mon Jul 8 09:05:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g68D519D022276; Mon, 8 Jul 2002 09:05:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g68COao09320 for vserver.list; Mon, 8 Jul 2002 08:24:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gate.weos.de (mail.weos.de [194.245.114.202]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g68COZY09316 for ; Mon, 8 Jul 2002 08:24:35 -0400 Received: from localhost (halbslinux.weos.de [192.168.101.95]) by gate.weos.de (8.11.3/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id g68COWp29942; Mon, 8 Jul 2002 14:24:32 +0200 Subject: Re: [vserver] Access external network from vservers From: Huibert Alblas To: vserver@solucorp.qc.ca Cc: Lew Teck Kheng In-Reply-To: <1026124743.1457.36.camel@maximus> References: <1026124743.1457.36.camel@maximus> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 08 Jul 2002 14:22:21 +0200 Message-Id: <1026130941.6375.39.camel@localhost> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 748 Am Mon, 2002-07-08 um 12.38 schrieb Lew Teck Kheng: > hi all : > > I have installed a cluster using vservers (using the latest vservers) > > I have two network cards which are eth0 and eth1(which is not use). > > I am using eth0 to access the LAN and internet. > > I have 4 vservers running using eth0 device using the private IP > 192.168.100.x. > > My primary eth0 have a LAN IP address. > > Somehow when i in the vserver i only manage to ping the eth0 not the LAN > or any gateway. > > When I check the routing table on vservers , the default gateway is set. > > I just wondering how vservers can be configure to access internet ? > > Thank you very much in advance Just a wild guess, if you're using youre vservers in separate subnet from the normal LAN: Are you sure the machine you're trying to ping know the route back to your subnet. Halb -- Your civilization has built the Internet.(+2sci) This obsoletes the Hollywood wonder.(+1hap) From vserver.error@solucorp.qc.ca Wed Jul 10 12:31:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6AGUe9D001159; Wed, 10 Jul 2002 12:30:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6AEop918696 for vserver.list; Wed, 10 Jul 2002 10:50:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6AEopY18692 for ; Wed, 10 Jul 2002 10:50:51 -0400 Received: from lsm-0-94.lsm ([192.168.0.94] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17SInq-0002bp-00 for ; Wed, 10 Jul 2002 16:50:50 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6A9cjT04213 for vserver@solucorp.qc.ca; Wed, 10 Jul 2002 05:38:45 -0400 From: Jacques Gelinas Date: Wed, 10 Jul 2002 05:38:45 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Vserver 0.18 and kernle 2.4.28ctx-10 X-mailer: tlmpmail 0.6 Message-ID: <20020710053845.b50ce0c04aff@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 749 On Mon, 8 Jul 2002 05:11:02 -0500, Roderick A. Anderson wrote > Is it OK, ie. no broken computers, to run the vserver 0.18 and this older > kernel? I do realize there is some new functionality in the new kernels > but I'm not ready to make a trip to the colo at this time. Yes vserver 0.18 detect the older kernel and adapts. The utilities will simply warn if you attempt to assign more than one IP to a vserver since kernel ctx-10 does not support that feature. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Jul 10 13:48:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6AHmG9D004051; Wed, 10 Jul 2002 13:48:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6AGrM921991 for vserver.list; Wed, 10 Jul 2002 12:53:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp014.mail.yahoo.com (smtp014.mail.yahoo.com [216.136.173.58]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6AGrLY21987 for ; Wed, 10 Jul 2002 12:53:21 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 10 Jul 2002 16:53:20 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] bug in 'newserver' Date: Wed, 10 Jul 2002 11:53:18 -0500 Message-ID: <000001c22832$4b63c220$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 750 I was setting up multiple IP for a vserver, and while I entered all the IPs correctly in the newserver utility, it didn't work. I found out that the quotes in the conf files are missing; maybe when the multi-IP support was added the quotes were not put in? e.g. Currently: IPROOT=12.34.56.78 12.34.56.78 Should be: IPROOT="12.34.56.78 12.34.56.78" Also, is quota support in the development agenda? Thanks, Peter From vserver.error@solucorp.qc.ca Wed Jul 10 15:07:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6AJ7E9D006855; Wed, 10 Jul 2002 15:07:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6AIjx124880 for vserver.list; Wed, 10 Jul 2002 14:45:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.emcc.at (janus.mc.tuwien.ac.at [128.130.175.82]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6AIjvY24874 for ; Wed, 10 Jul 2002 14:45:58 -0400 Received: (from herbert@localhost) by www.emcc.at (8.11.1/8.11.0) id g6AIjvR23110; Wed, 10 Jul 2002 20:45:57 +0200 Date: Wed, 10 Jul 2002 20:45:57 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: [vserver] vserver quota support Message-ID: <20020710204557.A23083@janus.logic.tuwien.ac.at> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 751 >> Also, is quota support in the development agenda? > > Quota works fine if each vserver is mounted on a different LVM share, or > loopback filesystem. I think this is not good enough ... because hardlinks are VERY useful to reduce required diskspace and user/group quotas are not sufficient to handle this ... > I'm don't know (like with the binding-to-every-IP option) whether it is > really practical in the tradeoff for time spent implementing it. > > Somebody will probably say something if this is /not/ the case. I read the documentation, suggesting to combine context and 16bit user id to 32bit uid to make quota possible ... After some DEEP look into the kernel sources, I think (please correct me if I am wrong) that it should be possible to add a third kind of quota (context quota) which limits the space available to an entire context ... my suggestion is to make the following uid mapping in/near the virtual filesystem layer: Process [context/16,uid/16] <--> Filesystem [uid/32] 32bit uid support is in linux 2.4.x for almost all file systems since 2.4.12 or so. I am willing to try the required modifications next week (or the week after) and would be happy to get some suggestions/ideas from you ... best, Herbert From vserver.error@solucorp.qc.ca Wed Jul 10 15:37:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6AJbC9D007921; Wed, 10 Jul 2002 15:37:12 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6AI72i23813 for vserver.list; Wed, 10 Jul 2002 14:07:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6AI71Y23808 for ; Wed, 10 Jul 2002 14:07:02 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 261C97A54D; Wed, 10 Jul 2002 19:07:01 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 187B79218A for ; Wed, 10 Jul 2002 19:07:01 +0100 (BST) Date: Wed, 10 Jul 2002 19:07:00 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: vserver@solucorp.qc.ca Subject: Re: [vserver] quotaing In-Reply-To: <000001c22832$4b63c220$ed23bd41@PremiumFood> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 752 On Wed, 10 Jul 2002, Peter Kwan Chan wrote: > Also, is quota support in the development agenda? Quota works fine if each vserver is mounted on a different LVM share, or loopback filesystem. I'm don't know (like with the binding-to-every-IP option) whether it is really practical in the tradeoff for time spent implementing it. Somebody will probably say something if this is /not/ the case. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Wed Jul 10 17:33:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6ALWF9D012354; Wed, 10 Jul 2002 17:32:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6AK31Q26857 for vserver.list; Wed, 10 Jul 2002 16:03:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6AK30Y26851 for ; Wed, 10 Jul 2002 16:03:00 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g6AK2qS23412 for ; Wed, 10 Jul 2002 13:02:52 -0700 Date: Wed, 10 Jul 2002 13:02:52 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: re: [vserver] Vserver 0.18 and kernle 2.4.28ctx-10 In-Reply-To: <20020710053845.b50ce0c04aff@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 753 On Wed, 10 Jul 2002, Jacques Gelinas wrote: > Yes vserver 0.18 detect the older kernel and adapts. The utilities > will simply warn if you attempt to assign more than one IP to a > vserver since kernel ctx-10 does not support that feature. Thanks Jacques. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Wed Jul 10 23:12:29 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B3Bh9D024557; Wed, 10 Jul 2002 23:11:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B1l3a02363 for vserver.list; Wed, 10 Jul 2002 21:47:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linuxfriends (cpu183.adsl.qc.bellglobal.com [207.236.226.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B1l2Y02359 for ; Wed, 10 Jul 2002 21:47:02 -0400 Received: from www-data by linuxfriends with local (Exim 3.35 #1 (Debian)) id 17S6mU-00066t-00 for ; Tue, 09 Jul 2002 22:00:38 -0400 To: vserver@solucorp.qc.ca Subject: [vserver] Can't chroot to directory . (Permission denied) Message-ID: <1026266438.3d2b95464cd2e@linuxfriends.sympatico.ca> Date: Tue, 09 Jul 2002 22:00:38 -0400 (EDT) From: shuri@linuxfriends.wox.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 192.168.1.3 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 754 Hi i got a strange error when i do chmod 000 /vservers/VSERVERNAME/.. BOXNAME:/# vserver VSERVERNAME start Starting the virtual server VSERVERNAME Server VSERVERNAME is not running ipv4root is now 205.236.14.28 Host name is now VSERVERNAME.whatever.com New security context is 26 Can't chroot to directory . (Permission denied) and the server do not start CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME 0 63 333Mb 24Kb 1m40.87 1m00.23 1h28m56 root server and if i do not chmod 000 /vservers/VSERVERNAME/.. CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME 0 63 333Mb 24Kb 1m40.87 1m00.23 1h28m56 root server 23 9 19Mb 2Kb m01.00 m00.48 12m03.02 eclipse then vserserver work I got vserver running on 3 box and is the only box i got his error any ideas ? From vserver.error@solucorp.qc.ca Thu Jul 11 01:59:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B5xA9D030388; Thu, 11 Jul 2002 01:59:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B5Tw406852 for vserver.list; Thu, 11 Jul 2002 01:29:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B5TwY06848 for ; Thu, 11 Jul 2002 01:29:58 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g6B5Txb08985 for ; Wed, 10 Jul 2002 22:29:59 -0700 Date: Wed, 10 Jul 2002 22:29:58 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] Can't chroot to directory . (Permission denied) In-Reply-To: <1026266438.3d2b95464cd2e@linuxfriends.sympatico.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 755 On Tue, 9 Jul 2002 shuri@linuxfriends.wox.org wrote: > i got a strange error when i do > chmod 000 /vservers/VSERVERNAME/.. Why not just chmod 000 /vservers ? On my running system I see d--------- 7 root root 1024 Mar 20 00:27 vservers from the root directory and drwxr-xr-x 15 root root 4096 Jan 3 2002 cda drwxr-xr-x 15 root root 4096 Mar 19 23:22 rim drwxr-xr-x 15 root root 4096 Jan 3 2002 tux from the /vservers directory. I'd like to try your commands but don't want to mess with a working box and the test server is powered-down for hardware upgrades. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Thu Jul 11 03:33:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B7XF9D001149; Thu, 11 Jul 2002 03:33:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B6dHT08249 for vserver.list; Thu, 11 Jul 2002 02:39:17 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.emcc.at (janus.mc.tuwien.ac.at [128.130.175.82]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B6dGY08245 for ; Thu, 11 Jul 2002 02:39:16 -0400 Received: (from herbert@localhost) by www.emcc.at (8.11.1/8.11.0) id g6B6dGH25030 for vserver@solucorp.qc.ca; Thu, 11 Jul 2002 08:39:16 +0200 Date: Thu, 11 Jul 2002 08:39:16 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: [vserver] Can't chroot to directory . (Permission denied) Message-ID: <20020711083916.B24992@janus.logic.tuwien.ac.at> References: <1026266438.3d2b95464cd2e@linuxfriends.sympatico.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <1026266438.3d2b95464cd2e@linuxfriends.sympatico.ca>; from shuri@linuxfriends.wox.org on Tue, Jul 09, 2002 at 10:00:38PM -0400 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 756 On Tue, Jul 09, 2002 at 10:00:38PM -0400, shuri@linuxfriends.wox.org wrote: > Hi > > i got a strange error when i do > chmod 000 /vservers/VSERVERNAME/.. > > BOXNAME:/# vserver VSERVERNAME start > Starting the virtual server VSERVERNAME > Server VSERVERNAME is not running > ipv4root is now 205.236.14.28 > Host name is now VSERVERNAME.whatever.com > New security context is 26 > Can't chroot to directory . (Permission denied) same for me (tested with 2.4.18ctx-12 and vserver-admin-0.18-1) ----------- # vserver TE01 start Starting the virtual server TE01 Server TE01 is not running ipv4root is now 192.168.0.1 Host name is now VSERVERNAME.whatever.com New security context is 1001 Can't chroot to directory . (Permission denied) ----------- > I got vserver running on 3 box and is the only box i got his error > > any ideas ? maybe you use different (read older) admin tools on two of your three machines and something changed in vserver ... best, Herbert From vserver.error@solucorp.qc.ca Thu Jul 11 03:53:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B7r39D001819; Thu, 11 Jul 2002 03:53:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B7cDS09870 for vserver.list; Thu, 11 Jul 2002 03:38:13 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns.kopteri.net (ns.kopteri.net [212.246.72.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B7cCY09863 for ; Thu, 11 Jul 2002 03:38:13 -0400 Received: from netland.fi (gw.netland.fi [212.246.72.6]) by ns.kopteri.net (8.11.6/8.11.2) with ESMTP id g6B7c8Q22358 for ; Thu, 11 Jul 2002 10:38:08 +0300 Message-ID: <3D2D359D.50503@netland.fi> Date: Thu, 11 Jul 2002 10:37:01 +0300 From: Jukka Laaksola User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020607 X-Accept-Language: fi, en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel ctx-12 and vserver 0.18 References: <20020710175436.3f6e95eef725@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 757 Jacques Gelinas wrote: > > The other is NIS. The NIS server and client (ypbind) works correctly inside vservers, > but ypwhich fails to talk to ypbind. I have vserver 0.17 and ctx-10. I have in /etc/hosts on 10.10.10.41 ----- 10.10.10.41 vserver2 localhost 10.10.10.40 vserver1 --- [root@vserver2 /]ypwhich ypwhich: Can't communicate with ypbind [root@vserver2 /]ypwhich localhost vserver1 [root@vserver2 /] So I have for a work around changed /etc/init.d/ypbind startup script to use "ypwhich localhost" and it will found the NIS server. > > Anyone knows of other package needing special handling on the loopback ? I'm not sure if this is a real loopback problem or what. Portmap only in vservers works fine for me. But I need to run portmap also in the main server for NFS-server. This is need special tricking. If I start portmap normally in the main server then portmap in a vserver can't bind the udp address. Now I use in main server "chbind --ip 127.0.0.1 /etc/init.d/portmap start". Then I need to use rinetd for forwarding nfs-servers IP's (192.168.0.3) tcp port 111 to localhost port 111. I haven't found a solution for forwarding udp port also. rinetd.conf: ----- 193.168.0.3 111 127.0.0.1 111 ----- But despite of that Vserver is a very good solution for our ha-cluster. At the failover we can swap the vservers to the second machine of the cluster with the drbd and the Heartbeat. So thanks for all of you. -- Jukka Laaksola Netland Oy From vserver.error@solucorp.qc.ca Thu Jul 11 03:59:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B7wP9D001989; Thu, 11 Jul 2002 03:58:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B6uEx08681 for vserver.list; Thu, 11 Jul 2002 02:56:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B6uDY08673 for ; Thu, 11 Jul 2002 02:56:13 -0400 Received: from lsm-0-94.lsm ([192.168.0.94] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17SXs5-0003wn-02 for ; Thu, 11 Jul 2002 08:56:13 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6ALsa103100 for vserver@solucorp.qc.ca; Wed, 10 Jul 2002 17:54:36 -0400 From: Jacques Gelinas Date: Wed, 10 Jul 2002 17:54:36 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel ctx-12 and vserver 0.18 X-mailer: tlmpmail 0.6 Message-ID: <20020710175436.3f6e95eef725@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 758 On Tue, 2 Jul 2002 18:10:06 -0500, James Gibson wrote > On Tue, 2 Jul 2002, Jacques Gelinas wrote: > > Just to say they are out. The biggest change is the multi-ip support. You can > > have up to 16 IP per vservers. The server software must specifically bind > > each IP. For example, for apache, this means multiple listen statement. But > > it works. > > Looking good. =) > > Any word on a solution for the 127.0.0.1 issues yet? No. Currently, we have two applications which seems to have problems with this and I am unsure if this is the real problem. In ctx-12, I made a little change. An application calling 127.0.0.1 is remapped to the ipv4root as before, but the socket origin stays 127.0.0.1, so service checking that can see the request is local. The two problems I have now are samba. If your turn off oplock and and level2 oplock oplock = no level2 oplock = no in the global section, samba works fine, We have one vserver acting as a PDC in production with this right now. The other is NIS. The NIS server and client (ypbind) works correctly inside vservers, but ypwhich fails to talk to ypbind. Anyone knows of other package needing special handling on the loopback ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Jul 11 04:10:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B8AZ9D003424; Thu, 11 Jul 2002 04:10:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B6uEC08693 for vserver.list; Thu, 11 Jul 2002 02:56:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B6uEY08677 for ; Thu, 11 Jul 2002 02:56:14 -0400 Received: from lsm-0-94.lsm ([192.168.0.94] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17SXs6-0003wn-02 for ; Thu, 11 Jul 2002 08:56:14 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6ALn2f03006 for vserver@solucorp.qc.ca; Wed, 10 Jul 2002 17:49:02 -0400 From: Jacques Gelinas Date: Wed, 10 Jul 2002 17:49:02 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel ctx-12 and vserver 0.18 X-mailer: tlmpmail 0.6 Message-ID: <20020710174902.286b19c102f2@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 759 On Wed, 3 Jul 2002 01:28:53 -0500, Paul Sladen wrote > On Tue, 2 Jul 2002, Jacques Gelinas wrote: > > Note that vserver-0.18 works with both older and newer kernels (the set_ipv4root > > syscall had to be changed) > > I was wondering why the set_ipv4root hadn't been designed so that it could > be passed a struct in the first place. Therefore maintaining binary > compatibility across upgrades by checking a version field in the structure. It works differently. The kernel advertises (using /proc/self/status), the version of the system call it supports. So instead of putting kludge (compatibility tricks) in the kernel, they go in the application (chbind). Given this system call will probably be only called by one utility, it is better to keep the compatibility issues outside the kernel. Makes the kernel thiner... > Another advantage in having a single set_iproot() call would allow for > arbitary expansion to include IPv6 addresses. Yes, the system will probably change again, allowing to specify arbitrary address family type. > > A complete changelog will follow. > > Presumabley binding to * will now bind to the first configured IP address? Yes. Doing differently would slow down things. The current implementation slows down bind a little bit, but does not slow down the rest of the networking code and bind is generally used only at service initialisation. I would like to find a way to provide the true semantic nevertheless without losing any performance. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Jul 11 04:12:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B8Bo9D003521; Thu, 11 Jul 2002 04:11:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B6uEH08689 for vserver.list; Thu, 11 Jul 2002 02:56:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B6uDY08674 for ; Thu, 11 Jul 2002 02:56:13 -0400 Received: from lsm-0-94.lsm ([192.168.0.94] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17SXs5-0003wn-03 for ; Thu, 11 Jul 2002 08:56:13 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6AM17R03115 for vserver@solucorp.qc.ca; Wed, 10 Jul 2002 18:01:07 -0400 From: Jacques Gelinas Date: Wed, 10 Jul 2002 18:01:07 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Cyclades multi-port board for vserver X-mailer: tlmpmail 0.6 Message-ID: <20020710180107.a86639284873@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 760 On Tue, 2 Jul 2002 06:44:16 -0500, Roderick A. Anderson wrote > > Yup, or even leave them in both since they're not going to be used in the > > host server. > > This makes a little sense to me. What about mgetty stuff. Typically it > is in inittab and /etc and /etc/ppp. Is the vserver inittab read and > used? Yes inittab fully works, but you need to specify the special flag fakeinit. This tells the vserver utility to start the vserver, not by running directly the various service, but simply by starting /sbin/init. This is not the default (you have to enter fakeinit in the S_FLAGS line of the configuration file). This is not the default because -starting a vserver is less pretty. Normally, starting a vserver shows all the services starting and when done, you are back to the prompt. With fakeinit, /sbin/init is started and it never exits. So you don't know if all the services really started. Call this a visual flaw. -The /etc/inittab file has to be adjust to remove useless stuff (from a vserver perpective). Normally all tty stuff have to go and the sysinit stuff as well. But the mgetty stuff will certainly work. You can even change runlevel using telinit if you want. Each vserver has a private /sbin/init. the option is called fakeinit because /sbin/init behave differently if its process ID is not 1. So fakeinit fakes this and a normal /sbin/init believes it. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Jul 11 04:24:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B8Oh9D003960; Thu, 11 Jul 2002 04:24:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B7xAX10492 for vserver.list; Thu, 11 Jul 2002 03:59:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B7x9Y10488 for ; Thu, 11 Jul 2002 03:59:09 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 17SYqy-0002f7-00 for ; Thu, 11 Jul 2002 09:59:08 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17SYqy-0002ew-00 for ; Thu, 11 Jul 2002 09:59:08 +0200 Sender: jon@silicide.dk Message-ID: <3D2D3ACC.B22B6C47@silicide.dk> Date: Thu, 11 Jul 2002 09:59:08 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Can't chroot to directory . (Permission denied) References: <1026266438.3d2b95464cd2e@linuxfriends.sympatico.ca> <20020711083916.B24992@janus.logic.tuwien.ac.at> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: vserver@solucorp.qc.ca Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 761 Herbert Poetzl wrote: > > On Tue, Jul 09, 2002 at 10:00:38PM -0400, shuri@linuxfriends.wox.org wrote: > > Hi > > > > i got a strange error when i do > > chmod 000 /vservers/VSERVERNAME/.. > > > > BOXNAME:/# vserver VSERVERNAME start > > Starting the virtual server VSERVERNAME > > Server VSERVERNAME is not running > > ipv4root is now 205.236.14.28 > > Host name is now VSERVERNAME.whatever.com > > New security context is 26 > > Can't chroot to directory . (Permission denied) > > same for me (tested with 2.4.18ctx-12 and > vserver-admin-0.18-1) well, thats because you are doing it wrong. It's just supposed to be chmod 000 /vservers If you make a chmod 000 on the next dir, you are doing a chmod 000 / on that server, naturally that wont work. JonB From vserver.error@solucorp.qc.ca Thu Jul 11 04:30:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B8Ug9D004184; Thu, 11 Jul 2002 04:30:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B6uEG08688 for vserver.list; Thu, 11 Jul 2002 02:56:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B6uDY08675 for ; Thu, 11 Jul 2002 02:56:13 -0400 Received: from lsm-0-94.lsm ([192.168.0.94] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17SXs6-0003wn-00 for ; Thu, 11 Jul 2002 08:56:14 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6ALcaX02998 for vserver@solucorp.qc.ca; Wed, 10 Jul 2002 17:38:36 -0400 From: Jacques Gelinas Date: Wed, 10 Jul 2002 17:38:36 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver patches/new features X-mailer: tlmpmail 0.6 Message-ID: <20020710173836.d97674762724@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 762 On Wed, 3 Jul 2002 16:38:29 -0500, Viorel B. Stan wrote > For some project I'm working on I need to execute commands inside a > vserver, under a certain vserver uid. I've patched a bit the capchroot file > to accept 1 extra command line parameter specifying the UID for the > command; it uses suid to change the uid before spawning a command. > Patched the vserver script also by adding a "suexec" option, similar to the > "exec" one. > It would be cool if this feature will be included in the next vserver > release. I can help with that if needed. I have reworked your patch. The option -suid became --suid and I made the option order not relevant. I also reworked your vserver patch. I created a suexec like you did and then implement the old exec as "suexec root". Less duplication this way. Will be in the next release. Thanks! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Jul 11 05:07:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B9719D005315; Thu, 11 Jul 2002 05:07:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B8R6W11852 for vserver.list; Thu, 11 Jul 2002 04:27:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B8R5Y11848 for ; Thu, 11 Jul 2002 04:27:05 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 17SZI0-0002gc-00 for ; Thu, 11 Jul 2002 10:27:04 +0200 Received: from localhost ([127.0.0.1]) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17SZI0-0002gS-00 for ; Thu, 11 Jul 2002 10:27:04 +0200 Delivered-To: silicide_dk-jon+vserver@silicide.dk Received: from mail.dht.dk [194.239.148.61] by localhost with POP3 (fetchmail-5.9.11) for jon+vserver@silicide.dk (multi-drop); Thu, 11 Jul 2002 10:27:04 +0200 (CEST) Received: (qmail 52448 invoked from network); 11 Jul 2002 08:25:14 -0000 Received: from dns.solucorp.qc.ca (207.253.4.241) by dht.dk with SMTP; 11 Jul 2002 08:25:14 -0000 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B7xAX10492 for vserver.list; Thu, 11 Jul 2002 03:59:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B7x9Y10488 for ; Thu, 11 Jul 2002 03:59:09 -0400 Received: from mail by ns1.silicide.dk with local (Exim 3.33 #1 (Debian)) id 17SYqy-0002f7-00 for ; Thu, 11 Jul 2002 09:59:08 +0200 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17SYqy-0002ew-00 for ; Thu, 11 Jul 2002 09:59:08 +0200 Sender: jon@silicide.dk Message-ID: <3D2D3ACC.B22B6C47@silicide.dk> Date: Thu, 11 Jul 2002 09:59:08 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Can't chroot to directory . (Permission denied) References: <1026266438.3d2b95464cd2e@linuxfriends.sympatico.ca> <20020711083916.B24992@janus.logic.tuwien.ac.at> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Envelope-To: jon+vserver@silicide.dk Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 763 Herbert Poetzl wrote: > > On Tue, Jul 09, 2002 at 10:00:38PM -0400, shuri@linuxfriends.wox.org wrote: > > Hi > > > > i got a strange error when i do > > chmod 000 /vservers/VSERVERNAME/.. > > > > BOXNAME:/# vserver VSERVERNAME start > > Starting the virtual server VSERVERNAME > > Server VSERVERNAME is not running > > ipv4root is now 205.236.14.28 > > Host name is now VSERVERNAME.whatever.com > > New security context is 26 > > Can't chroot to directory . (Permission denied) > > same for me (tested with 2.4.18ctx-12 and > vserver-admin-0.18-1) well, thats because you are doing it wrong. It's just supposed to be chmod 000 /vservers If you make a chmod 000 on the next dir, you are doing a chmod 000 / on that server, naturally that wont work. JonB From vserver.error@solucorp.qc.ca Thu Jul 11 05:11:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B9As9D005452; Thu, 11 Jul 2002 05:10:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B8H3o11636 for vserver.list; Thu, 11 Jul 2002 04:17:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.emcc.at (janus.mc.tuwien.ac.at [128.130.175.82]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B8H2Y11632 for ; Thu, 11 Jul 2002 04:17:02 -0400 Received: (from herbert@localhost) by www.emcc.at (8.11.1/8.11.0) id g6B8H1Q25267 for vserver@solucorp.qc.ca; Thu, 11 Jul 2002 10:17:01 +0200 Date: Thu, 11 Jul 2002 10:17:01 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] Can't chroot to directory . (Permission denied) Message-ID: <20020711101701.E24992@janus.logic.tuwien.ac.at> References: <1026266438.3d2b95464cd2e@linuxfriends.sympatico.ca> <20020711083916.B24992@janus.logic.tuwien.ac.at> <3D2D3ACC.B22B6C47@silicide.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3D2D3ACC.B22B6C47@silicide.dk>; from jon+vserver@silicide.dk on Thu, Jul 11, 2002 at 09:59:08AM +0200 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 764 On Thu, Jul 11, 2002 at 09:59:08AM +0200, Jon Bendtsen wrote: > Herbert Poetzl wrote: > > > > On Tue, Jul 09, 2002 at 10:00:38PM -0400, shuri@linuxfriends.wox.org wrote: > > > Hi > > > > > > i got a strange error when i do > > > chmod 000 /vservers/VSERVERNAME/.. > > > > > > BOXNAME:/# vserver VSERVERNAME start > > > Starting the virtual server VSERVERNAME > > > Server VSERVERNAME is not running > > > ipv4root is now 205.236.14.28 > > > Host name is now VSERVERNAME.whatever.com > > > New security context is 26 > > > Can't chroot to directory . (Permission denied) > > > > same for me (tested with 2.4.18ctx-12 and > > vserver-admin-0.18-1) > > well, thats because you are doing it wrong. It's just supposed to be > chmod 000 /vservers > If you make a chmod 000 on the next dir, you are doing a chmod 000 / > on that server, naturally that wont work. hmmm ... but how could it then be that shuri@linuxfriends.wox.org has the problem only with one of three machines? PS: I never said it should work ... (not even tried it before ;) best, Herbert From vserver.error@solucorp.qc.ca Thu Jul 11 05:27:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B9Qj9D005950; Thu, 11 Jul 2002 05:26:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B8xCi12648 for vserver.list; Thu, 11 Jul 2002 04:59:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.emcc.at (janus.mc.tuwien.ac.at [128.130.175.82]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B8xBY12644 for ; Thu, 11 Jul 2002 04:59:12 -0400 Received: (from herbert@localhost) by www.emcc.at (8.11.1/8.11.0) id g6B8xBs25356 for vserver@solucorp.qc.ca; Thu, 11 Jul 2002 10:59:11 +0200 Date: Thu, 11 Jul 2002 10:59:11 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel ctx-12 and vserver 0.18 Message-ID: <20020711105911.F24992@janus.logic.tuwien.ac.at> References: <20020710175436.3f6e95eef725@remtk.solucorp.qc.ca> <3D2D359D.50503@netland.fi> <20020711100046.D24992@janus.logic.tuwien.ac.at> <3D2D44B2.3060808@netland.fi> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3D2D44B2.3060808@netland.fi>; from jukka.laaksola@netland.fi on Thu, Jul 11, 2002 at 11:41:22AM +0300 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 765 On Thu, Jul 11, 2002 at 11:41:22AM +0300, Jukka Laaksola wrote: > Herbert Poetzl wrote: > > On Thu, Jul 11, 2002 at 10:37:01AM +0300, Jukka Laaksola wrote: > > > >>Jacques Gelinas wrote: > >> > >>>Anyone knows of other package needing special handling on the loopback ? > >> > >>I'm not sure if this is a real loopback problem or what. > >>Portmap only in vservers works fine for me. But I need to run portmap > >>also in the main server for NFS-server. This is need special tricking. > >>If I start portmap normally in the main server then portmap in a vserver > >> can't bind the udp address. Now I use in main server "chbind --ip > >>127.0.0.1 /etc/init.d/portmap start". Then I need to use rinetd for > >>forwarding nfs-servers IP's (192.168.0.3) tcp port 111 to localhost port > >>111. I haven't found a solution for forwarding udp port also. > > > > > > have you tried running portmap in two different > > virtual hosts? > > > > if this works, a simple chbind --ip > > should do the trick ... > > (like the v_sshd, v_httpd, etc ... scripts) > > Yes I have portmap working well in two different virtual hosts and even > portmap with that chbind --ip 127.0.0.1 in the main server too at the > same time. > > chbind --ip starts portmap well, but NFS-server or any other > RPC-programs can't connect it. > > --------/var/log/messages------- > Jul 11 11:26:02 kopteri2 nfs: Starting NFS services: succeeded > Jul 11 11:26:02 kopteri2 rpc.rquotad: Cannot register service: RPC: > Unable to receive; errno = Connection refused > Jul 11 11:26:02 kopteri2 rpc.rquotad: rpc.rquotad: unable to register > (RQUOTAPROG, RQUOTAVERS, udp). > Jul 11 11:26:02 kopteri2 nfs: rpc.rquotad startup failed > Jul 11 11:26:02 kopteri2 rpc.mountd: unable to register (mountd, 1, udp). > Jul 11 11:26:02 kopteri2 rpc.mountd: Cannot register service: RPC: > Unable to receive; errno = Connection refused > Jul 11 11:26:02 kopteri2 nfs: rpc.mountd startup failed > Jul 11 11:27:42 kopteri2 kernel: portmap: server localhost not > responding, timed out > Jul 11 11:29:22 kopteri2 kernel: portmap: server localhost not > responding, timed out > Jul 11 11:31:02 kopteri2 kernel: portmap: server localhost not > responding, timed out > Jul 11 11:31:02 kopteri2 rpc.nfsd: nfssvc: Input/output error > Jul 11 11:31:02 kopteri2 nfs: rpc.nfsd startup failed > --------/var/log/messages------- > > I have tried also put " localhost" in main server's /etc/hosts. > but that doesn't help either. > I think vserver system handles localhost and 127.0.0.1 different in the > main server and virtual hosts.... hmm maybe you could use ip(chains,tables) port forwarding to direct the requests to one of the virtual servers ... (it's just an idea, I do not know if this works ...) best, Herbert From vserver.error@solucorp.qc.ca Thu Jul 11 05:30:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6B9TR9D006024; Thu, 11 Jul 2002 05:29:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B80lX10568 for vserver.list; Thu, 11 Jul 2002 04:00:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.emcc.at (janus.mc.tuwien.ac.at [128.130.175.82]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B80kY10564 for ; Thu, 11 Jul 2002 04:00:46 -0400 Received: (from herbert@localhost) by www.emcc.at (8.11.1/8.11.0) id g6B80k525218 for vserver@solucorp.qc.ca; Thu, 11 Jul 2002 10:00:46 +0200 Date: Thu, 11 Jul 2002 10:00:46 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel ctx-12 and vserver 0.18 Message-ID: <20020711100046.D24992@janus.logic.tuwien.ac.at> References: <20020710175436.3f6e95eef725@remtk.solucorp.qc.ca> <3D2D359D.50503@netland.fi> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3D2D359D.50503@netland.fi>; from jukka.laaksola@netland.fi on Thu, Jul 11, 2002 at 10:37:01AM +0300 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 766 On Thu, Jul 11, 2002 at 10:37:01AM +0300, Jukka Laaksola wrote: > Jacques Gelinas wrote: > > > > The other is NIS. The NIS server and client (ypbind) works correctly inside vservers, > > but ypwhich fails to talk to ypbind. > > I have vserver 0.17 and ctx-10. > > I have in /etc/hosts on 10.10.10.41 > ----- > 10.10.10.41 vserver2 localhost > 10.10.10.40 vserver1 > --- > [root@vserver2 /]ypwhich > ypwhich: Can't communicate with ypbind > [root@vserver2 /]ypwhich localhost > vserver1 > [root@vserver2 /] > > So I have for a work around changed /etc/init.d/ypbind startup script to > use "ypwhich localhost" and it will found the NIS server. > > > > > Anyone knows of other package needing special handling on the loopback ? > > I'm not sure if this is a real loopback problem or what. > Portmap only in vservers works fine for me. But I need to run portmap > also in the main server for NFS-server. This is need special tricking. > If I start portmap normally in the main server then portmap in a vserver > can't bind the udp address. Now I use in main server "chbind --ip > 127.0.0.1 /etc/init.d/portmap start". Then I need to use rinetd for > forwarding nfs-servers IP's (192.168.0.3) tcp port 111 to localhost port > 111. I haven't found a solution for forwarding udp port also. have you tried running portmap in two different virtual hosts? if this works, a simple chbind --ip should do the trick ... (like the v_sshd, v_httpd, etc ... scripts) best, Herbert From vserver.error@solucorp.qc.ca Thu Jul 11 06:10:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6BA9f9D007294; Thu, 11 Jul 2002 06:09:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B8gVX12268 for vserver.list; Thu, 11 Jul 2002 04:42:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns.kopteri.net (ns.kopteri.net [212.246.72.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B8gUY12264 for ; Thu, 11 Jul 2002 04:42:30 -0400 Received: from netland.fi (gw.netland.fi [212.246.72.6]) by ns.kopteri.net (8.11.6/8.11.2) with ESMTP id g6B8gTQ27689 for ; Thu, 11 Jul 2002 11:42:29 +0300 Message-ID: <3D2D44B2.3060808@netland.fi> Date: Thu, 11 Jul 2002 11:41:22 +0300 From: Jukka Laaksola User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020607 X-Accept-Language: fi, en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel ctx-12 and vserver 0.18 References: <20020710175436.3f6e95eef725@remtk.solucorp.qc.ca> <3D2D359D.50503@netland.fi> <20020711100046.D24992@janus.logic.tuwien.ac.at> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 767 Herbert Poetzl wrote: > On Thu, Jul 11, 2002 at 10:37:01AM +0300, Jukka Laaksola wrote: > >>Jacques Gelinas wrote: >> >>>Anyone knows of other package needing special handling on the loopback ? >> >>I'm not sure if this is a real loopback problem or what. >>Portmap only in vservers works fine for me. But I need to run portmap >>also in the main server for NFS-server. This is need special tricking. >>If I start portmap normally in the main server then portmap in a vserver >> can't bind the udp address. Now I use in main server "chbind --ip >>127.0.0.1 /etc/init.d/portmap start". Then I need to use rinetd for >>forwarding nfs-servers IP's (192.168.0.3) tcp port 111 to localhost port >>111. I haven't found a solution for forwarding udp port also. > > > have you tried running portmap in two different > virtual hosts? > > if this works, a simple chbind --ip > should do the trick ... > (like the v_sshd, v_httpd, etc ... scripts) Yes I have portmap working well in two different virtual hosts and even portmap with that chbind --ip 127.0.0.1 in the main server too at the same time. chbind --ip starts portmap well, but NFS-server or any other RPC-programs can't connect it. --------/var/log/messages------- Jul 11 11:26:02 kopteri2 nfs: Starting NFS services: succeeded Jul 11 11:26:02 kopteri2 rpc.rquotad: Cannot register service: RPC: Unable to receive; errno = Connection refused Jul 11 11:26:02 kopteri2 rpc.rquotad: rpc.rquotad: unable to register (RQUOTAPROG, RQUOTAVERS, udp). Jul 11 11:26:02 kopteri2 nfs: rpc.rquotad startup failed Jul 11 11:26:02 kopteri2 rpc.mountd: unable to register (mountd, 1, udp). Jul 11 11:26:02 kopteri2 rpc.mountd: Cannot register service: RPC: Unable to receive; errno = Connection refused Jul 11 11:26:02 kopteri2 nfs: rpc.mountd startup failed Jul 11 11:27:42 kopteri2 kernel: portmap: server localhost not responding, timed out Jul 11 11:29:22 kopteri2 kernel: portmap: server localhost not responding, timed out Jul 11 11:31:02 kopteri2 kernel: portmap: server localhost not responding, timed out Jul 11 11:31:02 kopteri2 rpc.nfsd: nfssvc: Input/output error Jul 11 11:31:02 kopteri2 nfs: rpc.nfsd startup failed --------/var/log/messages------- I have tried also put " localhost" in main server's /etc/hosts. but that doesn't help either. I think vserver system handles localhost and 127.0.0.1 different in the main server and virtual hosts.... -- Jukka Laaksola Netland Oy From vserver.error@solucorp.qc.ca Thu Jul 11 07:11:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6BBAS9D009498; Thu, 11 Jul 2002 07:10:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6B9dJX13691 for vserver.list; Thu, 11 Jul 2002 05:39:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6B9dJY13687 for ; Thu, 11 Jul 2002 05:39:19 -0400 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 4.05) id 17SaPu-0007zp-00 for vserver@solucorp.qc.ca; Thu, 11 Jul 2002 06:39:18 -0300 Date: Thu, 11 Jul 2002 06:39:18 -0300 (ADT) From: James MacLean To: Subject: Re: [vserver] kernel ctx-12 and vserver 0.18 In-Reply-To: <20020710175436.3f6e95eef725@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Scanner: exiscan for exim4 (http://duncanthrax.net/exiscan/) *17SaPu-0007zp-00*Ytn38dyfGy6* Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 768 I still have to make changes to CUPS to get it to work properly. This was with the latest released cups. It shows up when you attempt to install a printer. Maybe I am the only one :)? Jim On Wed, 10 Jul 2002, Jacques Gelinas wrote: > Anyone knows of other package needing special handling on the loopback ? > > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > > -- James B. MacLean macleajb@ednet.ns.ca Department of Education Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Thu Jul 11 08:05:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6BC4j9D011205; Thu, 11 Jul 2002 08:04:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6BAZe815120 for vserver.list; Thu, 11 Jul 2002 06:35:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ahriman.bucharest.roedu.net (ahriman.bucharest.roedu.net [141.85.128.71]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6BAZdY15116 for ; Thu, 11 Jul 2002 06:35:40 -0400 Received: (qmail 17881 invoked by uid 1000); 11 Jul 2002 10:47:50 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 11 Jul 2002 10:47:50 -0000 Date: Thu, 11 Jul 2002 13:47:50 +0300 (EEST) From: Mihai RUSU X-X-Sender: To: Subject: Re: [vserver] RH 2.4.9-21XFS kernel w/ctx-8 (was: ctx-8 kernel patches against -ac available) In-Reply-To: <3393.204.118.209.253.1014910410.squirrel@webmail.thedeacon.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 769 On Thu, 28 Feb 2002, Paul Kreiner wrote: > > I haven't tried moving the immutable-link stuff into XFS just yet... > although I took a first look at it yesterday. Probably over the next few > days I might try it, if people are interested. I have no real need for the > unlink stuff in my environment though, so it's not been a priority. > > _Paul K. > Hi I understand that XFS has no idea about immutable si I will do without it. Did you patched a newer version of XFS/kernel ? I am interested about a 2.4.9-31XFS_1.1 release or the contributed 2.4.18-3 XFS 1.1. Thanks ---------------------------- Mihai RUSU Disclaimer: Any views or opinions presented within this e-mail are solely those of the author and do not necessarily represent those of any company, unless otherwise specifically stated. From vserver.error@solucorp.qc.ca Thu Jul 11 08:10:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6BC9r9D011409; Thu, 11 Jul 2002 08:09:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6BAfq415256 for vserver.list; Thu, 11 Jul 2002 06:41:52 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns.kopteri.net (ns.kopteri.net [212.246.72.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6BAfpY15252 for ; Thu, 11 Jul 2002 06:41:52 -0400 Received: from netland.fi (gw.netland.fi [212.246.72.6]) by ns.kopteri.net (8.11.6/8.11.2) with ESMTP id g6BAfpQ05472 for ; Thu, 11 Jul 2002 13:41:51 +0300 Message-ID: <3D2D60AB.8060205@netland.fi> Date: Thu, 11 Jul 2002 13:40:43 +0300 From: Jukka Laaksola User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020607 X-Accept-Language: fi, en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel ctx-12 and vserver 0.18 References: <20020710175436.3f6e95eef725@remtk.solucorp.qc.ca> <3D2D359D.50503@netland.fi> <20020711100046.D24992@janus.logic.tuwien.ac.at> <3D2D44B2.3060808@netland.fi> <20020711105911.F24992@janus.logic.tuwien.ac.at> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 770 Herbert Poetzl wrote: >> > On Thu, Jul 11, 2002 at 10:37:01AM +0300, Jukka Laaksola wrote: >> > >> >>I'm not sure if this is a real loopback problem or what. >> >>Portmap only in vservers works fine for me. But I need to run portmap >> >>also in the main server for NFS-server. This is need special tricking. >> >>If I start portmap normally in the main server then portmap in a vserver >> >> can't bind the udp address. Now I use in main server "chbind --ip >> >>127.0.0.1 /etc/init.d/portmap start". Then I need to use rinetd for >> >>forwarding nfs-servers IP's (192.168.0.3) tcp port 111 to localhost port >> >>111. I haven't found a solution for forwarding udp port also. > > > hmm maybe you could use ip(chains,tables) port forwarding > to direct the requests to one of the virtual servers ... > (it's just an idea, I do not know if this works ...) > I had the same idea before rinetd... I tried with iptables forward those portmap ports(111/tcp/udp) from NFS IP to localhost, but it doesn't work. No idea why... Actually I don't want port forwarding to virtual servers... I have one IP on main server for NFS-server. NFS-server is in the main server, not in any of virtual hosts, because we need rquotad and kernel side NFS-server. -- Jukka Laaksola Netland Oy From vserver.error@solucorp.qc.ca Thu Jul 11 08:30:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6BCUP9D012060; Thu, 11 Jul 2002 08:30:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6BCHDk17338 for vserver.list; Thu, 11 Jul 2002 08:17:13 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6BCHCY17331 for ; Thu, 11 Jul 2002 08:17:12 -0400 Received: from lsm-0-94.lsm ([192.168.0.94] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17Scsg-0004TI-02 for ; Thu, 11 Jul 2002 14:17:10 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6B9baj03484 for vserver@solucorp.qc.ca; Thu, 11 Jul 2002 05:37:36 -0400 From: Jacques Gelinas Date: Thu, 11 Jul 2002 05:37:36 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Can't chroot to directory . (Permission denied) X-mailer: tlmpmail 0.6 Message-ID: <20020711053736.ef28f7ee6aff@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 771 On Wed, 10 Jul 2002 22:29:58 -0500, Roderick A. Anderson wrote > On Tue, 9 Jul 2002 shuri@linuxfriends.wox.org wrote: > > > i got a strange error when i do > > chmod 000 /vservers/VSERVERNAME/.. > > Why not just chmod 000 /vservers ? > > On my running system I see > > d--------- 7 root root 1024 Mar 20 00:27 vservers > > from the root directory > > and > > drwxr-xr-x 15 root root 4096 Jan 3 2002 cda > drwxr-xr-x 15 root root 4096 Mar 19 23:22 rim > drwxr-xr-x 15 root root 4096 Jan 3 2002 tux > > from the /vservers directory. > > I'd like to try your commands but don't want to mess with a working box > and the test server is powered-down for hardware upgrades. On a typical installation, there is a single volume / and /vservers lies in it. So /vservers/cda/.. is indeed /vservers. But if you are out of disk space, you may want to move cda to say /disk2/vservers/cda and create a symlink /vservers/cda -> /disk4/vservers/cda. By ensuring that /vservers/cda/.. is 000, we plug the chroot hole in all cases. Now, I can't replicate this bug with ctx-12 and vserver 0.18. Those who have the bug, can you tell us the directory layout you have. Is there any symlink or something particular ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Jul 11 08:31:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6BCVL9D012091; Thu, 11 Jul 2002 08:31:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6BBbr516445 for vserver.list; Thu, 11 Jul 2002 07:37:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6BBbqY16441 for ; Thu, 11 Jul 2002 07:37:52 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17ScGX-0002xU-00 for ; Thu, 11 Jul 2002 13:37:45 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D2D6E09.EC86CA8C@silicide.dk> Date: Thu, 11 Jul 2002 13:37:45 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Can't chroot to directory . (Permission denied) References: <1026266438.3d2b95464cd2e@linuxfriends.sympatico.ca> <20020711083916.B24992@janus.logic.tuwien.ac.at> <3D2D3ACC.B22B6C47@silicide.dk> <20020711101701.E24992@janus.logic.tuwien.ac.at> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17ScGX-0002xU-00*SAMZvaDM.FU* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 772 Herbert Poetzl wrote: > > On Thu, Jul 11, 2002 at 09:59:08AM +0200, Jon Bendtsen wrote: [cut] > > well, thats because you are doing it wrong. It's just supposed to be > > chmod 000 /vservers > > If you make a chmod 000 on the next dir, you are doing a chmod 000 / > > on that server, naturally that wont work. > > hmmm ... but how could it then be that > shuri@linuxfriends.wox.org has the problem > only with one of three machines? I think it is because he did differently on the other 2 machines. He remembered that he had to do a chmod 000, but forgot it should only be the /vserver dir. > PS: I never said it should work ... > (not even tried it before ;) Well, get started, i like vserver very much. JonB From vserver.error@solucorp.qc.ca Thu Jul 11 08:56:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6BCtf9D012934; Thu, 11 Jul 2002 08:55:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6BCHD117340 for vserver.list; Thu, 11 Jul 2002 08:17:13 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6BCHCY17332 for ; Thu, 11 Jul 2002 08:17:12 -0400 Received: from lsm-0-94.lsm ([192.168.0.94] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17Scsh-0004TI-00 for ; Thu, 11 Jul 2002 14:17:11 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6B9i8M03488 for vserver@solucorp.qc.ca; Thu, 11 Jul 2002 05:44:08 -0400 From: Jacques Gelinas Date: Thu, 11 Jul 2002 05:44:08 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver quota support X-mailer: tlmpmail 0.6 Message-ID: <20020711054408.edb6a2563225@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 773 On Wed, 10 Jul 2002 20:45:57 -0500, Herbert Poetzl wrote > I'm don't know (like with the binding-to-every-IP option) whether it is > > really practical in the tradeoff for time spent implementing it. > > > > Somebody will probably say something if this is /not/ the case. > > I read the documentation, suggesting to > combine context and 16bit user id to 32bit uid > to make quota possible ... > > After some DEEP look into the kernel sources, > I think (please correct me if I am wrong) that > it should be possible to add a third kind of > quota (context quota) which limits the space > available to an entire context ... > > my suggestion is to make the following uid > mapping in/near the virtual filesystem layer: > > Process [context/16,uid/16] <--> Filesystem [uid/32] I have tought about this solution as well and came with the following ideas context/16,0 would represent a special case and would maintain the sum for all files in a given context. context/16,uid/16 would do what you propose The same would be done for group, with no special case. To make this working, you will need to assign context number by hand to vservers (which is supported). I was thinking of changing the way security context would be assigned. Currently 0 is the original (when you boot), 1 is the magic context used to see everything and then a free context is allocated from 2 and up. I would change this to 1000. This means that the first 998 security context would only be usable when explicitly requested. Any vservers not setting S_CONTEXT would end up using 1000 and up. > I am willing to try the required modifications > next week (or the week after) and would be happy > to get some suggestions/ideas from you ... Give it a shot and get back ? If you are an idea to let root in a vserver setup the quota itself for its uid range, welcome also :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Jul 11 09:15:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6BDEn9D013618; Thu, 11 Jul 2002 09:14:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6BCHEY17345 for vserver.list; Thu, 11 Jul 2002 08:17:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6BCHEY17341 for ; Thu, 11 Jul 2002 08:17:14 -0400 Received: from lsm-0-94.lsm ([192.168.0.94] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17Scsg-0004TI-01 for ; Thu, 11 Jul 2002 14:17:10 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6B9XVc03482 for vserver@solucorp.qc.ca; Thu, 11 Jul 2002 05:33:31 -0400 From: Jacques Gelinas Date: Thu, 11 Jul 2002 05:33:31 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] quotaing X-mailer: tlmpmail 0.6 Message-ID: <20020711053331.0532f1443cdd@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 774 On Wed, 10 Jul 2002 19:07:00 -0500, Paul Sladen wrote > On Wed, 10 Jul 2002, Peter Kwan Chan wrote: > > > Also, is quota support in the development agenda? > > Quota works fine if each vserver is mounted on a different LVM share, or > loopback filesystem. Yes but there is another issue. You may want to limit quota per user in a vserver and allow the vserver administrator to handle it. To handle quota he needs access to the block device and this opens a security issue. > I'm don't know (like with the binding-to-every-IP option) whether it is > really practical in the tradeoff for time spent implementing it. > > Somebody will probably say something if this is /not/ the case. Future will tell. Maybe it will be really needed for general vserver acceptance. For now, no big priority. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Jul 11 09:33:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6BDXK9D014319; Thu, 11 Jul 2002 09:33:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6BCHFl17350 for vserver.list; Thu, 11 Jul 2002 08:17:15 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6BCHFY17346 for ; Thu, 11 Jul 2002 08:17:15 -0400 Received: from lsm-0-94.lsm ([192.168.0.94] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17Scsh-0004TI-01 for ; Thu, 11 Jul 2002 14:17:11 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6B9SZH03474 for vserver@solucorp.qc.ca; Thu, 11 Jul 2002 05:28:35 -0400 From: Jacques Gelinas Date: Thu, 11 Jul 2002 05:28:35 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] bug in 'newserver' X-mailer: tlmpmail 0.6 Message-ID: <20020711052835.112f3df0cd78@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 775 On Wed, 10 Jul 2002 11:53:18 -0500, Peter Kwan Chan wrote > I was setting up multiple IP for a vserver, and while I entered all the > IPs correctly in the newserver utility, it didn't work. > > I found out that the quotes in the conf files are missing; maybe when > the multi-IP support was added the quotes were not put in? > > e.g. > Currently: IPROOT=12.34.56.78 12.34.56.78 > Should be: IPROOT="12.34.56.78 12.34.56.78" Yes you are right, I added the quotes. Thanks! > Also, is quota support in the development agenda? What I am in mind right now global/per vserver resource limitation (file handle, memory, stuff in ulimit) disk quota Fixing some issues with stuff like NIS and samba oplock Probably in reverse order :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Jul 11 11:38:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6BFbo9D018581; Thu, 11 Jul 2002 11:37:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6BE4HS20183 for vserver.list; Thu, 11 Jul 2002 10:04:17 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.emcc.at (janus.mc.tuwien.ac.at [128.130.175.82]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6BE4GY20179 for ; Thu, 11 Jul 2002 10:04:16 -0400 Received: (from herbert@localhost) by www.emcc.at (8.11.1/8.11.0) id g6BE4Gk26070 for vserver@solucorp.qc.ca; Thu, 11 Jul 2002 16:04:16 +0200 Date: Thu, 11 Jul 2002 16:04:16 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver quota support Message-ID: <20020711160416.A26003@janus.logic.tuwien.ac.at> References: <20020711054408.edb6a2563225@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020711054408.edb6a2563225@remtk.solucorp.qc.ca>; from jack@solucorp.qc.ca on Thu, Jul 11, 2002 at 05:44:08AM -0500 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 776 On Thu, Jul 11, 2002 at 05:44:08AM -0500, Jacques Gelinas wrote: > On Wed, 10 Jul 2002 20:45:57 -0500, Herbert Poetzl wrote > > I'm don't know (like with the binding-to-every-IP option) whether it is > > > really practical in the tradeoff for time spent implementing it. > > > > > > Somebody will probably say something if this is /not/ the case. > > > > I read the documentation, suggesting to > > combine context and 16bit user id to 32bit uid > > to make quota possible ... > > > > After some DEEP look into the kernel sources, > > I think (please correct me if I am wrong) that > > it should be possible to add a third kind of > > quota (context quota) which limits the space > > available to an entire context ... > > > > my suggestion is to make the following uid > > mapping in/near the virtual filesystem layer: > > > > Process [context/16,uid/16] <--> Filesystem [uid/32] > > I have tought about this solution as well and came with the > following ideas > > context/16,0 would represent a special case and would > maintain the sum for all files in a given context. yes, but, what I meant was to do the mapping at the filesystem layer (vfs layer) and to hide this mapping entirely from the process layer ... what you would get is the same behaviour as before except for the limitation to 16bit (or whatever number you like between 1 and 32 ;) for the uid and the rest for the context ... then I add a third context counter (that seems easy to me, less than 10 lines which need to be patched) context.quota which handles the entire context ... this way you can have quota for the root user too a nice sideeffect (at least in my opinion) would be that the "shared" files (read hardlinked) would not be accounted for the quota, only the files produced within the context ... > context/16,uid/16 would do what you propose > > The same would be done for group, with no special case. could be applied for groups as well as for uid (I didn't think about that one before ...) > To make this working, you will need to assign context number > by hand to vservers (which is supported). I was thinking of > changing the way security context would be assigned. yeah, I didn't mention it, because I already use fixed context numbers, because I found it irritating to get a random number for any virtual server ... > Currently 0 is the original (when you boot), 1 is the magic context > used to see everything and then a free context is allocated from > 2 and up. > I would change this to 1000. This means that the first 998 > security context would only be usable when explicitly requested. > Any vservers not setting S_CONTEXT would end up using 1000 and up. hmm ... maybe, but I would not make this number fixed because if I think about the variable number of bits (1..32) to finetune your contexts/user/group ratio it would be nice not to restrain this decision ... (well at the first shot it will definitely be a kernel compile time decision ...) > > I am willing to try the required modifications > > next week (or the week after) and would be happy > > to get some suggestions/ideas from you ... > > Give it a shot and get back ? > > If you are an idea to let root in a vserver setup the > quota itself for its uid > range, welcome also :-) I had some ideas to make the virtual server more configurable by the maintainer of the virtual server (the vserver root user)... one idea how this can be done for quota would be to write a file containing the quota limits for all virtual users inside the vserver and to join this information, adapting the uid/gid to the "real" uid/gid from outside, where the actual quota limits are set on regular basis or on demand. (like the rebootmgr) of course you have make additional security checks to keep the system safe/secure ... (i.e. uid/gid range, root permissions etc.) best, Herbert From vserver.error@solucorp.qc.ca Thu Jul 11 21:52:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6C1po9D016023; Thu, 11 Jul 2002 21:51:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6C0wAi04991 for vserver.list; Thu, 11 Jul 2002 20:58:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rhenium.btinternet.com (rhenium.btinternet.com [194.73.73.93]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6C0w9Y04987 for ; Thu, 11 Jul 2002 20:58:09 -0400 Received: from host213-122-15-97.in-addr.btopenworld.com ([213.122.15.97] helo=johnnew) by rhenium.btinternet.com with smtp (Exim 3.22 #8) id 17Sol1-0007Le-00 for vserver@solucorp.qc.ca; Fri, 12 Jul 2002 01:58:03 +0100 From: "John Lyons" To: Subject: RE: [vserver] bug in 'newserver' Date: Fri, 12 Jul 2002 01:57:43 +0100 Message-ID: <004501c2293f$21bf0340$0ea401d5@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <20020711052835.112f3df0cd78@remtk.solucorp.qc.ca> Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 777 > What I am in mind right now > > global/per vserver resource limitation (file handle, > memory, stuff in ulimit) > disk quota > Fixing some issues with stuff like NIS and samba oplock > > Probably in reverse order :-) Personal preference would be the resource limitations first but as I can't write software to save my life I have to leave these things to the pros. :-) Just in case anyone is interested in feedback from someone using vserver in a commercial environment we've been running 2 live host servers with 12 vservers for about 3 months after starting trials in December. Our only scare has been this week when a site on one virtual server got advertised in a national paper and at the same time an existing site (10gb per month traffic) got moved from a shared hosting server onto a virtual server. Celleron 900 servers with 512mb ram, approx 350 to 400 processes and about 15Gb per month of data transfer. Load has been fairly level at about 0.2 to 0.4. The increase in traffic to the two sites which are both database intensive has pushed the traffic for the host server over 50Gb per month and the processes up to 450+ Loads have been rocketing to 100+ and while the speed on the two sites has suffered I have to report that the whole system has run faultlessly. The busiest vserver has handled 200,000+ visitors this week alone! The bonus of course was being able to zip and move one of the busy vservers over to a spare hosting server to reduce the overall loads. No hassle, took 15 mins and no one even noticed :-) Regards John Lyons From vserver.error@solucorp.qc.ca Fri Jul 12 09:12:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6CDC99D008614; Fri, 12 Jul 2002 09:12:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6CCYZi21948 for vserver.list; Fri, 12 Jul 2002 08:34:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6CCYYY21944 for ; Fri, 12 Jul 2002 08:34:34 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g6CCYaD23569 for ; Fri, 12 Jul 2002 05:34:36 -0700 Date: Fri, 12 Jul 2002 05:34:35 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: [vserver] /vservers on NFS mount? Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 778 With all the discussion that ran for awhile on NFS, filesystems, etc. I got _really_ confused (which is not hard to do :-). My question. Can I mount a NFS share on the main server as /vservers and have it work? And - a little off topic - can I "mount --bind" a NFS share? Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Fri Jul 12 11:16:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6CFFd9D012821; Fri, 12 Jul 2002 11:15:39 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6CEPw727568 for vserver.list; Fri, 12 Jul 2002 10:25:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6CEPvY27563 for ; Fri, 12 Jul 2002 10:25:57 -0400 Received: from hofmann (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id 50FDD1904A for ; Fri, 12 Jul 2002 15:20:11 +0100 (BST) Received: from hofmann ([127.0.0.1]) by hofmann with smtp (Exim 3.35 #1 (Debian)) id 17T1Mb-00016D-00 for ; Fri, 12 Jul 2002 15:25:41 +0100 Date: Fri, 12 Jul 2002 15:25:41 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] quotaing In-Reply-To: <20020711053331.0532f1443cdd@remtk.solucorp.qc.ca> References: <20020711053331.0532f1443cdd@remtk.solucorp.qc.ca> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 779 Jacques Gelinas wrote: > > Quota works fine if each vserver is mounted on a different LVM share, or > > loopback filesystem. > Yes but there is another issue. You may want to limit quota per user in > a vserver and allow the vserver administrator to handle it. To handle quota > he needs access to the block device and this opens a security issue. Is it much of a security issue to give them a /dev entry for their own LVM partition? I guess the answer is yes, a malicious user could hang the kernel by frigging with the block device themselves. But if it was there, but they just couldn't open it, they could still call quotactl() on it and quotas would still work. Is this your intention for the new unused CAP_OPENDEV capability? -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 Real Computer Scientists Don't Write Code From vserver.error@solucorp.qc.ca Fri Jul 12 11:50:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6CFo19D014030; Fri, 12 Jul 2002 11:50:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6CERY627617 for vserver.list; Fri, 12 Jul 2002 10:27:34 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6CERYY27613 for ; Fri, 12 Jul 2002 10:27:34 -0400 Received: from hofmann (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id C260D1904A for ; Fri, 12 Jul 2002 15:21:52 +0100 (BST) Received: from hofmann ([127.0.0.1]) by hofmann with smtp (Exim 3.35 #1 (Debian)) id 17T1OF-00016J-00 for ; Fri, 12 Jul 2002 15:27:23 +0100 Date: Fri, 12 Jul 2002 15:27:23 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver quota support Message-Id: <20020712152723.4e6ddbbf.sv@easyspace.com> In-Reply-To: <20020710204557.A23083@janus.logic.tuwien.ac.at> References: <20020710204557.A23083@janus.logic.tuwien.ac.at> Organization: Easyspace Ltd X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: PI2{lKxF*i|]%@A&-0AV/%sXN)UJ<+SeG}%8Cn%**KZ[f_OSx{xw&Rstfu?!x^ZJ%LV@4Z% Zr"EZm.GQFy@;"V82_:?cJ`kQ3+ Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 780 Herbert Poetzl wrote: > > Quota works fine if each vserver is mounted on a different LVM share, or > > loopback filesystem. > I think this is not good enough ... > because hardlinks are VERY useful to reduce > required diskspace and user/group quotas > are not sufficient to handle this ... mount --bind is your friend -- Sam Vilain, sv@easyspace.com Easyspace: an accredited ICANN GPG: http://sam.vilain.net/sam.asc registrar & web hosting company 7D74 2A09 B2D3 C30F F78E Have your domain run by techies 278A A425 30A9 05B5 2F13 with a clue. www.easyspace.com "An intellectual is someone whose mind watches itself" - Camus - From vserver.error@solucorp.qc.ca Fri Jul 12 16:11:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6CKAo9D023741; Fri, 12 Jul 2002 16:10:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6CJgib02748 for vserver.list; Fri, 12 Jul 2002 15:42:44 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts5-srv.bellnexxia.net (tomts5.bellnexxia.net [209.226.175.25]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6CJghY02744 for ; Fri, 12 Jul 2002 15:42:44 -0400 Received: from [209.226.175.22] by tomts5-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020712194226.BHPA1514.tomts5-srv.bellnexxia.net@[209.226.175.22]> for ; Fri, 12 Jul 2002 15:42:26 -0400 From: To: Subject: [vserver] Vserver {Listen problem} Date: Fri, 12 Jul 2002 15:42:49 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Message-Id: <20020712194226.BHPA1514.tomts5-srv.bellnexxia.net@[209.226.175.22]> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g6CJghY02744 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 781 Hi, we are now using Vserver with the multiple ip patch. We have encounter some little problem with the new version maybe it is a internet problem but we just want to know if anybody have the same problem and how to repair it. We want to make up a range of ip on the net, for SSH and apache you have to say listen on port : ip:80 for example but for service such as Webmin / remote administrative tools and all services that need connections to the server they are no listen on ip... is it normal that we cannot reach these ip (except if we add the listen on ip:port) in the code allowed by specific, and limited program. Best regards, Jean-Philippe Béďque www.eboxw.net From vserver.error@solucorp.qc.ca Fri Jul 12 18:50:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6CMnm9D029302; Fri, 12 Jul 2002 18:49:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6CMUJ806282 for vserver.list; Fri, 12 Jul 2002 18:30:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from isomedia.com (mail.isomedia.com [207.115.64.4]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6CMUIY06278 for ; Fri, 12 Jul 2002 18:30:19 -0400 Received: from freya (pm113.focal.isomedia.com [66.147.197.28] (may be forged)) by isomedia.com (8.11.6/8.11.6) with SMTP id g6CMhvn25562 for ; Fri, 12 Jul 2002 15:43:57 -0700 Received: by localhost with Microsoft MAPI; Fri, 12 Jul 2002 15:28:47 -0700 Message-ID: <01C229B8.D098EEC0.sarisky@caltech.edu> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] problems with starting vservers on boot and/or fakeinit. Date: Fri, 12 Jul 2002 15:28:45 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 Encoding: 36 TEXT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 782 Hrm. I'm not sure that made much sense. Let me add to it a bit. I've got fakeinit set in the config file. Upon vserver startup, a ps reveals the following processes running in the vserver: init minilogd /bin/bash -login /bin/bash /etc/rc.d/rc 5 /sbin/askrunlevel --interactive I've set sshd (or v_sshd - tried both) to start using ntsysv, but it does not start. I'm suspecting askrunlevel is making trouble...? On Friday, July 12, 2002 2:57 PM, Cathy Sarisky [SMTP:sarisky@caltech.edu] wrote: > Hello, > > I'm having vserver problems with ctx10, running on a Mandrake 8.0 system. > > If I issue a "service vservers restart" command, the server with onboot=yes > does not restart unless I include fakeinit in s_flags. Nor does "vserver > servername start" work. I *can* get the server to start without fakeinit if I > > issue a "vserver server service sshd start" command, but this seems like a > kludge? > I looked at the online docs at solucorp and searched the mailing list, but I > haven't had any success figuring out how to get a vserver to start at boot and > > run services. > If someone could provide a push in the right direction, I'd very much > appreciate it! > Cathy Sarisky From vserver.error@solucorp.qc.ca Fri Jul 12 18:55:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6CMsi9D029463; Fri, 12 Jul 2002 18:54:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6CLwAO05582 for vserver.list; Fri, 12 Jul 2002 17:58:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from isomedia.com (mail.isomedia.com [207.115.64.4]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6CLwAY05578 for ; Fri, 12 Jul 2002 17:58:10 -0400 Received: from freya (pm113.focal.isomedia.com [66.147.197.28] (may be forged)) by isomedia.com (8.11.6/8.11.6) with SMTP id g6CMBgn14944 for ; Fri, 12 Jul 2002 15:11:43 -0700 Received: by localhost with Microsoft MAPI; Fri, 12 Jul 2002 14:56:32 -0700 Message-ID: <01C229B4.4FD1D940.sarisky@caltech.edu> From: Cathy Sarisky To: "vserver@solucorp.qc.ca" Subject: [vserver] problems with starting vservers on boot and/or fakeinit. Date: Fri, 12 Jul 2002 14:56:31 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 Encoding: 15 TEXT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 783 Hello, I'm having vserver problems with ctx10, running on a Mandrake 8.0 system. If I issue a "service vservers restart" command, the server with onboot=yes does not restart unless I include fakeinit in s_flags. Nor does "vserver servername start" work. I *can* get the server to start without fakeinit if I issue a "vserver server service sshd start" command, but this seems like a kludge? I looked at the online docs at solucorp and searched the mailing list, but I haven't had any success figuring out how to get a vserver to start at boot and run services. If someone could provide a push in the right direction, I'd very much appreciate it! Cathy Sarisky From vserver.error@solucorp.qc.ca Fri Jul 12 19:49:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6CNnN9D031416; Fri, 12 Jul 2002 19:49:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6CNTAh07648 for vserver.list; Fri, 12 Jul 2002 19:29:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linuxfriends (cpu183.adsl.qc.bellglobal.com [207.236.226.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6CNT9Y07644 for ; Fri, 12 Jul 2002 19:29:10 -0400 Received: from www-data by linuxfriends with local (Exim 3.35 #1 (Debian)) id 17SnaT-000805-00 for ; Thu, 11 Jul 2002 19:43:05 -0400 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver {Listen problem} Message-ID: <1026430985.3d2e18090fca3@linuxfriends.sympatico.ca> Date: Thu, 11 Jul 2002 19:43:05 -0400 (EDT) From: shuri@linuxfriends.wox.org References: <20020712194226.BHPA1514.tomts5-srv.bellnexxia.net@[209.226.175.22]> In-Reply-To: <20020712194226.BHPA1514.tomts5-srv.bellnexxia.net@[209.226.175.22]> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 192.168.1.3 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 784 Hello I got the same problems with MultipleIP, i try to acess the 16 ips i got on my vserver. I can only acess 2 Ips from the internet, one for apache with the listen argument in the .conf and one for ssh also with listen argument in .conf Is it possible to use others ips without the listen argument for others services for exemple; Eggdrops , Webmin , proftpd , SpyBnc etc... plz if anyone know how to do that help me :) thanx all > Hi, we are now using Vserver with the multiple ip patch. We have > encounter some little problem with the new version maybe it is a > internet problem but we just want to know if anybody have the same > problem and how to repair it. > > We want to make up a range of ip on the net, for SSH and apache you have > to say listen on port : ip:80 for example but for service such as Webmin > / remote administrative tools and all services that need connections to > the server they are no listen on ip... is it normal that we cannot reach > these ip (except if we add the listen on ip:port) in the code allowed by > specific, and limited program. > > Best regards, Jean-Philippe Béďque www.eboxw.net > > From vserver.error@solucorp.qc.ca Fri Jul 12 22:13:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6D2Cm9D004223; Fri, 12 Jul 2002 22:12:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6D1ocg10303 for vserver.list; Fri, 12 Jul 2002 21:50:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6D1oXY10299 for ; Fri, 12 Jul 2002 21:50:38 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 4A25F7A5CE; Sat, 13 Jul 2002 02:50:33 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 43D639218A for ; Sat, 13 Jul 2002 02:50:33 +0100 (BST) Date: Sat, 13 Jul 2002 02:50:33 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Vserver {Listen problem} In-Reply-To: <1026430985.3d2e18090fca3@linuxfriends.sympatico.ca> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 785 On Thu, 11 Jul 2002 shuri@linuxfriends.wox.org wrote: > > We want to make up a range of ip on the net, for SSH and apache you have > > to say listen on port : ip:80 Yes, you have to put specific bind/listen statements in for each IP address you need to bind to within the vserver. Since you only had 1 IP address up until 2days ago, it can't be that much hassle. ;-) The main ligitimate use for this I can see if HTTPS hosting. > I got the same problems with MultipleIP, i try to acess the 16 ips i got on my > vserver. I can only acess 2 Ips from the internet, one for apache with the > listen argument in the .conf and one for ssh also with listen argument in .conf Same reason; software in the vserver will only listen on the first IP address unless you explicitly tell it to listen on other IP/ports too.n > Is it possible to use others ips without the listen argument for others > services for exemple; Eggdrops , Webmin , proftpd , SpyBnc etc... It's application-specific how you tell it to bind to a different ip/port; it also sounds like a waste of [precious] IP-space... If you post some more details, I, or somebody else maybe able to help further. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Fri Jul 12 22:18:29 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6D2Hf9D004409; Fri, 12 Jul 2002 22:17:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6D210C10484 for vserver.list; Fri, 12 Jul 2002 22:01:00 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6D210Y10473 for ; Fri, 12 Jul 2002 22:01:00 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 6D5497A5CE; Sat, 13 Jul 2002 03:01:01 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 6C5FE9218A for ; Sat, 13 Jul 2002 03:01:01 +0100 (BST) Date: Sat, 13 Jul 2002 03:01:01 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] problems with starting vservers on boot and/or fakeinit. In-Reply-To: <01C229B8.D098EEC0.sarisky@caltech.edu> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 786 On Fri, 12 Jul 2002, Cathy Sarisky wrote: > I've got fakeinit set in the config file. > > Upon vserver startup, a ps reveals the following processes running in the > /bin/bash /etc/rc.d/rc 5 > /sbin/askrunlevel --interactive The two ways to start up all the bits, pieces (daemons) within the vserver is either by calling /etc/init.d/rc (Or where-ever it is on non-Debian boxen. :-) with the runlevel (try 3), or the later hack is to call /sbin/init directly, along this approach needs a kludge to make it think it now running with the initial process number. Yes, it looks like it is starting up and running `/sbin/askrunlevel', check though `/etc/inittab' and comment out the line that starts this if there is one. What happens if your don't do the fakeinit, and do: vserver alpha enter /etc/init.d/rc 3 directly; this should show in more detail what if loading, and may end up asking you for input. Again, this is just trying to diagnose it, you've still got to work out how to disable it! :-) -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Sat Jul 13 06:25:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6DAOg9D022827; Sat, 13 Jul 2002 06:24:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6DA9FB19771 for vserver.list; Sat, 13 Jul 2002 06:09:15 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6DA9EY19767 for ; Sat, 13 Jul 2002 06:09:15 -0400 Received: from lsm-1-140.lsm ([192.168.1.140] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17TJpy-0001Lc-00 for ; Sat, 13 Jul 2002 12:09:14 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6DA9Ql05125 for vserver@solucorp.qc.ca; Sat, 13 Jul 2002 12:09:26 +0200 From: Jacques Gelinas Date: Sat, 13 Jul 2002 12:09:26 0100 To: vserver@solucorp.qc.ca Subject: re: [vserver] /vservers on NFS mount? X-mailer: tlmpmail 0.6 Message-ID: <20020713120926.d6ebbc87e25d@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 787 On Fri, 12 Jul 2002 05:34:35 0100, Roderick A. Anderson wrote > With all the discussion that ran for awhile on NFS, filesystems, etc. I > got _really_ confused (which is not hard to do :-). > > My question. Can I mount a NFS share on the main server as /vservers and > have it work? I would say it will work. Unification won't, but the rest should. > And - a little off topic - can I "mount --bind" a NFS share? Yes. I did it once. mount --bind does not care and also does not care about previous mount point. I mean, you can do mount server:/some_dir /mnt/somedir and then mount --bind /mnt/somedir/thisdir/thatdir /vservers/xxx/home --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Sat Jul 13 06:27:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6DAR39D023049; Sat, 13 Jul 2002 06:27:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6DAH3i19970 for vserver.list; Sat, 13 Jul 2002 06:17:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nostromo.abul.org (gw-lsm.abul.org [147.210.68.141]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6DAH2Y19966 for ; Sat, 13 Jul 2002 06:17:03 -0400 Received: from lsm-1-140.lsm ([192.168.1.140] helo=remtk.solucorp.qc.ca ident=root) by nostromo.abul.org with esmtp (Exim 3.35 #1 (Debian)) id 17TJxW-0001Lf-00 for ; Sat, 13 Jul 2002 12:17:02 +0200 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6DAHEr05132 for vserver@solucorp.qc.ca; Sat, 13 Jul 2002 12:17:14 +0200 From: Jacques Gelinas Date: Sat, 13 Jul 2002 12:17:14 0100 To: vserver@solucorp.qc.ca Subject: Re: [vserver] quotaing X-mailer: tlmpmail 0.6 Message-ID: <20020713121714.0bd971bc51ae@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 788 On Fri, 12 Jul 2002 15:25:41 0100, Sam Vilain wrote > Jacques Gelinas wrote: > > > > Quota works fine if each vserver is mounted on a different LVM share, or > > > loopback filesystem. > > Yes but there is another issue. You may want to limit quota per user in > > a vserver and allow the vserver administrator to handle it. To handle quota > > he needs access to the block device and this opens a security issue. > > Is it much of a security issue to give them a /dev entry for their own LVM partition? At first tought, I would say no > I guess the answer is yes, a malicious user could hang the kernel by frigging with > the block device themselves. Yep you are right. local file system drivers (ext2, name it) all assume the file system is clean, so one can corrupt the fs by writing to the device and then just access some file and the kernel will go wild. > But if it was there, but they just couldn't open it, they could still call quotactl() > on it and quotas would still work. Is this your intention for the new unused CAP_OPENDEV > capability? Not exactly. Capability are no so good in that case because it is an all or nothing. We could have a capability to prevent some operation on block device and then operation of char device, but this is too harsh. We could also have an extended bit on the file as well. Another solution would be to do something like ln -s /proc/mydisk /dev/hdv1 and have mydisk as a magic device (a little like /dev/tty) filtering some commands and passing other to the real disk. Now a vserver may span several disk, so we may need something more intelligent. Some application play directly with the quotactl system call. Very few. One possibility would be to modify those to use a proxy thing a little like vreboot is doing. I don't like it, because it means changing apps here and there (although for a very special purpose) like freevsd. Another solution is a devfs like thing to replace our little /dev. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Sat Jul 13 11:59:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6DFxa9D001775; Sat, 13 Jul 2002 11:59:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6DFZlp25971 for vserver.list; Sat, 13 Jul 2002 11:35:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linuxfriends (cpu183.adsl.qc.bellglobal.com [207.236.226.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6DFZlY25967 for ; Sat, 13 Jul 2002 11:35:47 -0400 Received: from www-data by linuxfriends with local (Exim 3.35 #1 (Debian)) id 17T2fz-0000GT-00 for ; Fri, 12 Jul 2002 11:49:47 -0400 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver {Listen problem} Message-ID: <1026488987.3d2efa9b40c10@linuxfriends.sympatico.ca> Date: Fri, 12 Jul 2002 11:49:47 -0400 (EDT) From: shuri@linuxfriends.wox.org References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 192.168.1.3 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 789 > > > Is it possible to use others ips without the listen argument for > others > > services for exemple; Eggdrops , Webmin , proftpd , SpyBnc etc... > > It's application-specific how you tell it to bind to a different > ip/port; > it also sounds like a waste of [precious] IP-space... > > If you post some more details, I, or somebody else maybe able to help > further. > -Paul > -- > Nottingham, GB OK for example Proftpd is an ftpserver,if i set it in a vserver on port 21 for exemple it connot start beaucause the main server use the port 21 and proftpd do not use listen argument if i set to other prt for exemple 221 in vserver it connect to the MAIN SERVER i got to shutdow the ftp in the main server for the vserver to reach. this is strange ... Webmin is a controle panel for user,it run but i cannot connect from the internet Wemin use 3argument port=10001 host=IP listen=10000 But is not working in a vserser all eggdrop return an stramge error:NO SERVER WILL ACCEPT YOUR CONNECTION is Like mulitiple IP in a vserver can only be use by apache or Software with listen argument is the .conf any idea for all IPS in a vserver to be use only by the vserver that own thoses ips like a real server... thx all for comments and sorry for my bad english > > > From vserver.error@solucorp.qc.ca Sat Jul 13 12:16:09 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6DGFh9D002367; Sat, 13 Jul 2002 12:15:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6DG3RF26418 for vserver.list; Sat, 13 Jul 2002 12:03:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from iteckmailx.infoteck.qc.ca (smtp2.infoteck.qc.ca [205.151.16.14]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6DG3RY26414 for ; Sat, 13 Jul 2002 12:03:27 -0400 Received: from [205.151.16.16] (port=3732 helo=ITeckShield.infoteck.qc.ca) by iteckmailx.infoteck.qc.ca with smtp (Exim 4.04) id 17TPMg-0007C3-00 for vserver@solucorp.qc.ca; Sat, 13 Jul 2002 12:03:22 -0400 Received: from iteck4.infoteck.qc.ca(205.151.16.4) by ITeckShield.infoteck.qc.ca via csmap id 16590; Sat, 13 Jul 2002 11:55:03 -0400 (EDT) Message-ID: <003601c22a86$fd4b25e0$1400010a@infoteck.ca> From: "Joel Vandal" To: References: <1026488987.3d2efa9b40c10@linuxfriends.sympatico.ca> Subject: Re: [vserver] Vserver {Listen problem} Date: Sat, 13 Jul 2002 12:04:28 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 790 > OK for example Proftpd is an ftpserver,if i set it in a vserver on port 21 for > exemple it connot start beaucause the main server use the port 21 and > proftpd do not use listen argument if i set to other prt for exemple 221 in > vserver it connect to the MAIN SERVER i got to shutdow the ftp in the main > server for the vserver to reach. this is strange ... On the main server, you must start service using chbind (check v_sshd, v_xinetd, etc... for sample) -- Joel From vserver.error@solucorp.qc.ca Sat Jul 13 12:48:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6DGmi9D003386; Sat, 13 Jul 2002 12:48:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6DGSR726935 for vserver.list; Sat, 13 Jul 2002 12:28:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linuxfriends (cpu183.adsl.qc.bellglobal.com [207.236.226.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6DGSQY26931 for ; Sat, 13 Jul 2002 12:28:27 -0400 Received: from www-data by linuxfriends with local (Exim 3.35 #1 (Debian)) id 17T3Ux-0000M0-00 for ; Fri, 12 Jul 2002 12:42:27 -0400 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver {Listen problem} Message-ID: <1026492146.3d2f06f2f073d@linuxfriends.sympatico.ca> Date: Fri, 12 Jul 2002 12:42:26 -0400 (EDT) From: shuri@linuxfriends.wox.org References: <1026488987.3d2efa9b40c10@linuxfriends.sympatico.ca> <003601c22a86$fd4b25e0$1400010a@infoteck.ca> In-Reply-To: <003601c22a86$fd4b25e0$1400010a@infoteck.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 192.168.1.3 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 791 Yes I know But for sshd and apache is ok but for webmin , ftpd and others softwares , i do not see v_webmin or v_ftp ... how we start thoses software ? > > OK for example Proftpd is an ftpserver,if i set it in a vserver on > port 21 > for > > exemple it connot start beaucause the main server use the port 21 and > > proftpd do not use listen argument if i set to other prt for exemple > 221 > in > > vserver it connect to the MAIN SERVER i got to shutdow the ftp in the > main > > server for the vserver to reach. this is strange ... > > On the main server, you must start service using chbind (check v_sshd, > v_xinetd, etc... for sample) > > -- > Joel > > > From vserver.error@solucorp.qc.ca Sat Jul 13 13:23:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6DHN29D004723; Sat, 13 Jul 2002 13:23:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6DH5Xh27628 for vserver.list; Sat, 13 Jul 2002 13:05:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6DH5WY27624 for ; Sat, 13 Jul 2002 13:05:33 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 770D47A5CD; Sat, 13 Jul 2002 18:05:32 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 6F65C9214E for ; Sat, 13 Jul 2002 18:05:32 +0100 (BST) Date: Sat, 13 Jul 2002 18:05:32 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver {Listen problem} In-Reply-To: <1026492146.3d2f06f2f073d@linuxfriends.sympatico.ca> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 792 On Fri, 12 Jul 2002 shuri@linuxfriends.wox.org wrote: > Yes I know But for sshd and apache is ok but for webmin , ftpd and others > softwares , i do not see v_webmin or v_ftp ... how we start thoses software ? You have to do *some* work, time to write your own. :-) If you feel that the files you've created would be useful to somebody else, then you could submit them so that others don't have to suffer the same problems... :-) Have a look at the content of the other v_daemon scripts, and cut-and-paste [and *modify*] the `chbind' line; Or alternatively look through the documentation, or source/script files to find out how to make it bind to an alternate port. Or don't run Webmin on your host server... -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Sat Jul 13 13:57:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6DHvW9D005974; Sat, 13 Jul 2002 13:57:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6DHhpc28352 for vserver.list; Sat, 13 Jul 2002 13:43:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from iteckmailx.infoteck.qc.ca (smtp2.infoteck.qc.ca [205.151.16.14]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6DHhoY28348 for ; Sat, 13 Jul 2002 13:43:50 -0400 Received: from [205.151.16.16] (port=4598 helo=ITeckShield.infoteck.qc.ca) by iteckmailx.infoteck.qc.ca with smtp (Exim 4.04) id 17TQvv-0007kb-00 for vserver@solucorp.qc.ca; Sat, 13 Jul 2002 13:43:51 -0400 Received: from iteck4.infoteck.qc.ca(205.151.16.4) by ITeckShield.infoteck.qc.ca via csmap id 17403; Sat, 13 Jul 2002 13:35:31 -0400 (EDT) Message-ID: <005e01c22a95$06ac15f0$1400010a@infoteck.ca> From: "Joel Vandal" To: References: Subject: Re: [vserver] Vserver {Listen problem} Date: Sat, 13 Jul 2002 13:45:06 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 793 > You have to do *some* work, time to write your own. :-) If you feel that > the files you've created would be useful to somebody else, then you could > submit them so that others don't have to suffer the same problems... :-) Here is two (2) wrapper for Webmin and Exim. Here a simple procedure using redhat ... - Create a file (like the following) on /etc/init.d . (webmin = /etc/init.d/v_webmin ...) - chkconfig --del webmin (disable the webmin startup) - chkconfig --level 345 v_webmin on - service webmin stop - service v_webmin start =====cut===== #!/bin/sh # chkconfig: - 55 25 # description: Wrapper to start webmin bound to a single IP IP=eth0 if [ -f /etc/vservices/webmin.conf ] ; then . /etc/vservices/webmin.conf fi exec /usr/sbin/chbind --ip $IP /etc/init.d/webmin $* =====cut===== #!/bin/sh # chkconfig: - 80 30 # description: Wrapper to start exim bound to a single IP IP=10.1.0.3 if [ -f /etc/vservices/exim.conf ] ; then . /etc/vservices/exim.conf fi exec /usr/sbin/chbind --ip $IP /etc/init.d/exim $* =====cut===== -- Joel From vserver.error@solucorp.qc.ca Sat Jul 13 14:02:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6DI2H9D006177; Sat, 13 Jul 2002 14:02:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6DHgmr28336 for vserver.list; Sat, 13 Jul 2002 13:42:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from skessa.this.is (this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6DHgmY28332 for ; Sat, 13 Jul 2002 13:42:48 -0400 Received: from skessa.this.is (www-data@localhost.this.is [127.0.0.1]) by skessa.this.is (8.12.3/8.12.3/Debian -4) with ESMTP id g6DHgl6F009151 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=FAIL) for ; Sat, 13 Jul 2002 17:42:48 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.3/8.12.3/Debian -4) id g6DHglVe009149 for vserver@solucorp.qc.ca; Sat, 13 Jul 2002 17:42:47 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver {Listen problem} Message-ID: <1026582167.3d306697c26ee@this.is> Date: Sat, 13 Jul 2002 17:42:47 +0000 (GMT) From: ragnar@this.is References: <1026488987.3d2efa9b40c10@linuxfriends.sympatico.ca> <003601c22a86$fd4b25e0$1400010a@infoteck.ca> In-Reply-To: <003601c22a86$fd4b25e0$1400010a@infoteck.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 194.144.127.80 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 794 Hi, Quoting Joel Vandal : > > Proftpd > > connot start beaucause the main server use the port 21 > On the main server, you must start service using chbind (check v_sshd, > v_xinetd, etc... for sample) Or optionally, not run any service on the main server with it's only access from console. If you must use ssh there is an option for sshd ListenAddress 0.0.0.0 Best ragnar@this.is From vserver.error@solucorp.qc.ca Sat Jul 13 14:57:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6DIvU9D008027; Sat, 13 Jul 2002 14:57:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6DIbZ029382 for vserver.list; Sat, 13 Jul 2002 14:37:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linuxfriends (cpu183.adsl.qc.bellglobal.com [207.236.226.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6DIbZY29378 for ; Sat, 13 Jul 2002 14:37:35 -0400 Received: from www-data by linuxfriends with local (Exim 3.35 #1 (Debian)) id 17T5Vw-0000Uc-00 for ; Fri, 12 Jul 2002 14:51:36 -0400 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver {Listen problem} Message-ID: <1026499896.3d2f2538a4b88@linuxfriends.sympatico.ca> Date: Fri, 12 Jul 2002 14:51:36 -0400 (EDT) From: shuri@linuxfriends.wox.org References: <005e01c22a95$06ac15f0$1400010a@infoteck.ca> In-Reply-To: <005e01c22a95$06ac15f0$1400010a@infoteck.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 192.168.1.3 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 795 Thanx a lot for the advice thoses wrapper work very well you can do the same thing with proftpd :) > > Here is two (2) wrapper for Webmin and Exim. > > Here a simple procedure using redhat ... > > - Create a file (like the following) on /etc/init.d . (webmin = > /etc/init.d/v_webmin ...) > - chkconfig --del webmin (disable the webmin startup) > - chkconfig --level 345 v_webmin on > - service webmin stop > - service v_webmin start > > =====cut===== > #!/bin/sh > # chkconfig: - 55 25 > # description: Wrapper to start webmin bound to a single IP > IP=eth0 > if [ -f /etc/vservices/webmin.conf ] ; then > . /etc/vservices/webmin.conf > fi > exec /usr/sbin/chbind --ip $IP /etc/init.d/webmin $* > > =====cut===== > #!/bin/sh > # chkconfig: - 80 30 > # description: Wrapper to start exim bound to a single IP > IP=10.1.0.3 > if [ -f /etc/vservices/exim.conf ] ; then > . /etc/vservices/exim.conf > fi > exec /usr/sbin/chbind --ip $IP /etc/init.d/exim $* > > =====cut===== > > -- > Joel > > > > From vserver.error@solucorp.qc.ca Sun Jul 14 15:15:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6EJEl9D023903; Sun, 14 Jul 2002 15:14:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6EIqeU03092 for vserver.list; Sun, 14 Jul 2002 14:52:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts11-srv.bellnexxia.net (tomts11.bellnexxia.net [209.226.175.55]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6EIqeY03087 for ; Sun, 14 Jul 2002 14:52:40 -0400 Received: from dynacom1 ([206.172.246.180]) by tomts11-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020714185247.BPZS26542.tomts11-srv.bellnexxia.net@dynacom1> for ; Sun, 14 Jul 2002 14:52:47 -0400 Message-ID: <000501c22b34$d0e41ee0$b4f6acce@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: References: <005e01c22a95$06ac15f0$1400010a@infoteck.ca> <1026499896.3d2f2538a4b88@linuxfriends.sympatico.ca> Subject: Re: [vserver] Vserver {Listen problem} Date: Sun, 14 Jul 2002 14:48:54 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 796 Hi, we would like to know if it is possible to have a localhost on a vservers otherwise is there any script who can bind all ips on specific services because it is difficult to always run a script for all services running on a server... Best regards , Jean-Philippe Béďque www.eboxw.net From vserver.error@solucorp.qc.ca Sun Jul 14 17:17:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6ELHV9D029665; Sun, 14 Jul 2002 17:17:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6EKheK05453 for vserver.list; Sun, 14 Jul 2002 16:43:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts8-srv.bellnexxia.net (tomts8.bellnexxia.net [209.226.175.52]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6EKhdY05449 for ; Sun, 14 Jul 2002 16:43:39 -0400 Received: from dynacom1 ([206.172.246.180]) by tomts8-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020714204320.ZGGS18868.tomts8-srv.bellnexxia.net@dynacom1> for ; Sun, 14 Jul 2002 16:43:20 -0400 Message-ID: <000501c22b44$52432da0$b4f6acce@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: References: <005e01c22a95$06ac15f0$1400010a@infoteck.ca> <1026499896.3d2f2538a4b88@linuxfriends.sympatico.ca> <000501c22b34$d0e41ee0$b4f6acce@dynacom1> Subject: Re: [vserver] Vserver Problem Date: Sun, 14 Jul 2002 16:39:54 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 797 Hi, we try to bind service such as BNC / egg With a psybnc we specify the ip like: PSYBNC.SYSTEM.HOST1=200.200.1.1 and it is connecting only with the first ip in the vserver .. however if i try to connect with 200.200.1.103 it will connect with the 200.200.1.1... For eggdrop it is simply not working and error say [21:19] Failed connect to Caen.FR.EU.Undernet.org (Unforseen error 1) [21:19] * NO SERVERS WILL ACCEPT MY CONNECTION. What can we do ? Thank... J-P From vserver.error@solucorp.qc.ca Mon Jul 15 07:11:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6FBBX9D029027; Mon, 15 Jul 2002 07:11:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6FAiQI23330 for vserver.list; Mon, 15 Jul 2002 06:44:26 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6FAiPY23326 for ; Mon, 15 Jul 2002 06:44:25 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 3BD037A5E3; Mon, 15 Jul 2002 11:44:24 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 3AF729214E for ; Mon, 15 Jul 2002 11:44:24 +0100 (BST) Date: Mon, 15 Jul 2002 11:44:24 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Vserver Problem In-Reply-To: <000501c22b44$52432da0$b4f6acce@dynacom1> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by dns.solucorp.qc.ca id g6FAiPY23326 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 798 On Sun, 14 Jul 2002, Électronique Box Communications wrote: > With a psybnc we specify the ip like: PSYBNC.SYSTEM.HOST1=200.200.1.1 This is you telling the daemon which IP address it should use as its source port? > try to connect with 200.200.1.103 it will connect with the 200.200.1.1... So presumabley it tries to connection with this address, ----^^^^^^^^^^^ which, if that address is not available within the vserver, will fail. Perhaps if you could give some more information about your setup (what IP addresses are actually bound to the host box, which are bound to the vserver), that would be helpful as currently it looks like it is doing exactly what it is told...? > For eggdrop it is simply not working and error say > [21:19] Failed connect to Caen.FR.EU.Undernet.org (Unforseen error 1) > [21:19] * NO SERVERS WILL ACCEPT MY CONNECTION. Totally unrelated to the vserver issue at all; are you running identd? -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Jul 15 08:22:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6FCLx9D031374; Mon, 15 Jul 2002 08:22:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6FC3bt25096 for vserver.list; Mon, 15 Jul 2002 08:03:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6FC3aY25092 for ; Mon, 15 Jul 2002 08:03:36 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g6FC3V521439 for ; Mon, 15 Jul 2002 05:03:31 -0700 Date: Mon, 15 Jul 2002 05:03:31 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] Vserver {Listen problem} In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 799 On Sat, 13 Jul 2002, Paul Sladen wrote: > You have to do *some* work, time to write your own. :-) If you feel that > the files you've created would be useful to somebody else, then you could > submit them so that others don't have to suffer the same problems... :-) I was in the process of doing this. My issue was with a simplistic installation and a boot to a non-vserver kernel would get me the fits as I saw the error messages from the v_* scripts. I have come up with a naive hack of looking at /proc/sys/kernel/osrelease and if it contains a 'ctx' then it does a chbind otherwise it just calls the normal script. (Does that make any sense?) Best, Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Mon Jul 15 18:38:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6FMbk9D022683; Mon, 15 Jul 2002 18:37:47 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6FLhBV10843 for vserver.list; Mon, 15 Jul 2002 17:43:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linuxfriends (cpu183.adsl.qc.bellglobal.com [207.236.226.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6FLhAY10839 for ; Mon, 15 Jul 2002 17:43:11 -0400 Received: from www-data by linuxfriends with local (Exim 3.35 #1 (Debian)) id 17TrLz-0001g5-00 for ; Sun, 14 Jul 2002 17:56:31 -0400 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver Problem Message-ID: <1026683790.3d31f38ee8151@linuxfriends.sympatico.ca> Date: Sun, 14 Jul 2002 17:56:30 -0400 (EDT) From: shuri@linuxfriends.wox.org References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 192.168.1.3 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 800 > Perhaps if you could give some more information about your setup (what > IP > addresses are actually bound to the host box, which are bound to the > vserver), that would be helpful as currently it looks like it is doing > exactly what it is told...? > OK first The vserver got 16 Real IPS form X.X.X.1 to X.X.X.17 -Starting Spybnc on any IP Is working Configuration File: psybnc.conf logging to log/psybnc.log Listening on: X.X.X.15 port 31337 psyBNC2.2.2-cBtITLdDMSNp started (PID 19338) -Connecting to Psybnc on X.X.X.15 port 31337 Is also working but on irc when i dns the user connect on this psybnc the resolv is the first IP of the verver X.X.X.1 and not X.X.X.15 it supposed to resolv to the same ip the bnc is listening to > > For eggdrop it is simply not working and error say > > [21:19] Failed connect to Caen.FR.EU.Undernet.org (Unforseen error 1) > > [21:19] * NO SERVERS WILL ACCEPT MY CONNECTION. > > Totally unrelated to the vserver issue at all; are you running identd? about eggdrops on the same vserver eggdrops can only be start on the first ips of the virtal X.X.X.1 if i try with other ips for example ( set my-ip "X.X.X.13." ) the eggdrop start but no process is running Eggdrop v1.6.10 (C) 1997 Robey Pointer (C) 2002 Eggheads [22:38] --- Loading eggdrop v1.6.10 (Mon Jul 15 2002) [22:38] Module loaded: dns [22:38] Module loaded: channels [22:38] Module loaded: server [22:38] Module loaded: ctcp [22:38] Module loaded: irc [22:38] Module loaded: notes (with lang support) [22:38] Module loaded: console (with lang support) [22:38] Module loaded: blowfish [22:38] Module loaded: uptime [22:38] Userinfo TCL v1.07 loaded (URL BF GF IRL EMAIL DOB PHONE ICQ). [22:38] use '.help userinfo' for commands. [22:38] Userfile loaded, unpacking... [22:38] === MaxNet: 1 channels, 1 users. Launched into the background (pid: 21730) shuri@eclipse:~/eggdrop$ ps ax PID TTY STAT TIME COMMAND 1 ? S 0:11 init [2] 3065 ? S 0:00 /sbin/syslogd 3071 ? S 0:00 /usr/sbin/named 3081 ? S 0:00 /usr/sbin/pwcheck 3228 ? S 0:00 /usr/sbin/sshd 3239 ? S 0:00 /usr/sbin/cron 3243 ? S 0:00 /usr/sbin/xinetd -reuse 3244 ? S 0:01 /usr/sbin/apache 3246 ? S 0:00 pure-ftpd (SERVER) 7578 ? S 0:00 /usr/sbin/apache 7579 ? S 0:00 /usr/sbin/apache 7580 ? S 0:00 /usr/sbin/apache 7581 ? S 0:00 /usr/sbin/apache 7582 ? S 0:00 /usr/sbin/apache 9563 ? S 0:00 /usr/sbin/apache 17369 ? S 0:00 /usr/sbin/sshd 17371 ? S 0:00 /usr/sbin/sshd 17372 pts/6 S 0:00 -bash 18733 pts/6 S 0:00 bash 19338 pts/6 S 0:00 ./psybnc psybnc.conf 21726 pts/6 S 0:00 bash 21734 pts/6 R 0:00 ps ax All the ips in the virtual was test with the listen apache argument and all was connecting from the web to the vserver all services in the root server was start with v_SERVER scripts to bind to one ips all the services in the vserver ( apache , ssh ftp )is binding to one ips also any idea someone ? Thx From vserver.error@solucorp.qc.ca Mon Jul 15 20:10:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6G0Ai9D026027; Mon, 15 Jul 2002 20:10:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6FNaiI13049 for vserver.list; Mon, 15 Jul 2002 19:36:44 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6FNahY13045 for ; Mon, 15 Jul 2002 19:36:43 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id DC7857A5CB; Tue, 16 Jul 2002 00:36:42 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id DB8E29214E for ; Tue, 16 Jul 2002 00:36:42 +0100 (BST) Date: Tue, 16 Jul 2002 00:36:42 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Vserver Problem In-Reply-To: <1026683790.3d31f38ee8151@linuxfriends.sympatico.ca> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 801 On Sun, 14 Jul 2002 shuri@linuxfriends.wox.org wrote: > > > > Perhaps if you could give some more information about your setup > > OK first The vserver got 16 Real IPS form X.X.X.1 to X.X.X.17 > -Starting Psybnc on any IP Is working For those as confused as me, according to the web: ``[...] bnc is short for a 'bouncer.' A bnc acts as a proxy for irc, allowing you to hide your real IP address and use a vhost (vanity host - something like 'this.is.a.l33t.vhost.com')'' Hmm, what a good use of precious IP address space (!)... > Listening on: X.X.X.15 port 31337 > -Connecting to Psybnc on X.X.X.15 port 31337 Is also working > > but on irc when i dns the user connect on this psybnc > the resolv is the first IP of the verver X.X.X.1 and not X.X.X.15 This is the server-side (proxy) port that it is listening on for the incoming connection from your IRC client. > it supposed to resolv to the same ip the bnc is listening to There will be another to set the IP that it originates outgoing connection to the IRC server from (does it call this the `vhost'?), at the moment it's just using the default one. Read the config file/manual for how to set this. > about eggdrops Now I have actually heard of Eggdrop ;-). For other people: ``Eggdrop is the world's most popular Open Source IRC bot, designed for flexibility and ease of use, and is freely distributable'' > on the same vserver eggdrops can only be start on the first ips of the > virtal X.X.X.1 if i try with other ips for example ( set my-ip > "X.X.X.13." ) the eggdrop start but no process is running I don't use it myself, but most references to using `set my-ip' are shown in conjuction with `set my-hostname'--do you need to set this. Can you turn on debugging output? Can you grep the source files to find the actual code that is generating that particular error-message/ exit-path? -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Thu Jul 18 09:47:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6IDlcfH006681; Thu, 18 Jul 2002 09:47:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6IC1eM29677 for vserver.list; Thu, 18 Jul 2002 08:01:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-72-81.telepac.pt [213.13.72.81]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6IC1bY29672 for ; Thu, 18 Jul 2002 08:01:37 -0400 Received: (qmail 5179 invoked from network); 18 Jul 2002 11:59:06 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 18 Jul 2002 11:59:06 -0000 Message-ID: <3D36AD8A.4020805@vgertech.com> Date: Thu, 18 Jul 2002 12:59:06 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] multi-nic References: <3D368713.90608@netland.fi> Content-Type: text/plain; charset=ISO-8859-15; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 804 Hi, one quick hack is to have the ip configuration up before you start vservers and comment out IPROOTDEV in vservername.conf. Hth, Nuno Jukka Laaksola wrote: > Hello! > > I have a little problem with vservers multi-IP configuration. I read the > manual and didn't found any help. > > I have two ethernet cards on my main host, eth0 and eth1. > > eth0: network 10.10.10.0/24 > eth1: network 192.168.0.0/24 > > With vserver-0.17 I got one ip, 10.10.10.40, worked well in the virtual > host. Now with vserver-0.18's multi-ip support I thought I can get > access to the both of my networks. > > If I set IPROOT="192.0.168.11 10.10.10.40" in my virtual host's config. > It tries to set both ips as aliases for eth0. My IPROOTDEV=eth0. > > I also tried put IPROOTDEV="eth0 eth1", but that wasn't work either. > > So is it somehow possible to use two nic in one virtual host? > 10.10.10.40 as eth0:v1 and 192.168.0.11 as eth1:v1. > If it isn't possible, is it in the todo list? > > Very happy vserver user Jukka From vserver.error@solucorp.qc.ca Thu Jul 18 11:12:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6IFC7fH010008; Thu, 18 Jul 2002 11:12:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6IDDBr31253 for vserver.list; Thu, 18 Jul 2002 09:13:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hofmann (pc2-woki1-6-cust25.gfd.cable.ntl.com [80.6.41.25]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6IDDAY31249 for ; Thu, 18 Jul 2002 09:13:10 -0400 Received: from hofmann ([127.0.0.1]) by hofmann with smtp (Exim 3.35 #1 (Debian)) id 17VB5e-0002Oe-00 for ; Thu, 18 Jul 2002 14:13:06 +0100 Date: Thu, 18 Jul 2002 14:13:05 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: [vserver] SIOCGIFCONF ioctl() X-Mailer: Sylpheed version 0.7.4 (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: A X-Keywords: X-UID: 805 It looks like the SIOCGIFCONF ioctl needs some work for iproot; ie, if you make a socket and then call the SIOCGIFCONF ioctl, you can still see all the interfaces. There's a for loop in the dev_ifconf() function in net/core/dev.c that looks like the one to change. Should be fairly simple. The program `dnsmasq' (http://thekelleys.org.uk/dnsmasq/doc.html) is an example program that fetches the list of interfaces in this manner. -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 Real computer scientists don't write the user interfaces, they merely argue over what they should look like. From vserver.error@solucorp.qc.ca Thu Jul 18 18:16:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6IMGQfH025853; Thu, 18 Jul 2002 18:16:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6IKMtR09808 for vserver.list; Thu, 18 Jul 2002 16:22:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6IKMsY09804 for ; Thu, 18 Jul 2002 16:22:54 -0400 Received: from localhost (alien.vlad.net [208.236.0.236]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6IKMifI021812 for ; Thu, 18 Jul 2002 16:22:44 -0400 Date: Thu, 18 Jul 2002 16:22:44 -0400 (EDT) From: Vlad To: vserver@solucorp.qc.ca Subject: [vserver] gentoo image In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-VirusScanner: Found to be clean, Found to be clean Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: RO X-Status: X-Keywords: X-UID: 806 Does anybody out here happen to have vserver running gentoo distro? If so, would you be willing to share an image with the rest of us? :) -Vlad From vserver.error@solucorp.qc.ca Thu Jul 18 19:39:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6INcifH028853; Thu, 18 Jul 2002 19:38:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6ILrNt12199 for vserver.list; Thu, 18 Jul 2002 17:53:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com ([64.21.143.232]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6ILrMY12195 for ; Thu, 18 Jul 2002 17:53:22 -0400 Received: (qmail 5603 invoked from network); 18 Jul 2002 21:53:22 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 18 Jul 2002 21:53:22 -0000 Message-Id: <5.1.0.14.2.20020718175226.04ffc750@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Thu, 18 Jul 2002 17:53:10 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] I can't SSH to the ip of the vserver sends me to the main server Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 807 I can't SSH to the ip of the vserver sends me to the main server. How do I enable it so when i ssh to the ip of the vserver it sends me to the vserver? Thanx __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Thu Jul 18 19:43:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6INhVfH029011; Thu, 18 Jul 2002 19:43:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6IM5Yg12515 for vserver.list; Thu, 18 Jul 2002 18:05:34 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com ([64.21.143.232]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6IM5XY12510 for ; Thu, 18 Jul 2002 18:05:33 -0400 Received: (qmail 23718 invoked from network); 18 Jul 2002 22:05:34 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 18 Jul 2002 22:05:34 -0000 Message-Id: <5.1.0.14.2.20020718180517.0568ec90@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Thu, 18 Jul 2002 18:05:19 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] Fwd: I can't SSH to the ip of the vserver sends me to the main server Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 808 >Date: Thu, 18 Jul 2002 17:53:10 -0400 >To: vserver@solucorp.qc.ca >From: Jason Silverglate >Subject: I can't SSH to the ip of the vserver sends me to the main server > >I can't SSH to the ip of the vserver sends me to the main server. How >do I enable it so when i ssh to the ip of the vserver it sends me to the >vserver? > >Thanx > >__________________ >Jay Silver jason@pwebtech.com ICQ 103463692 >Pegasus Web Technologies >http://www.pwebtech.com >Web Hosting and Dedicated Servers __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Thu Jul 18 20:47:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6J0l7fH031508; Thu, 18 Jul 2002 20:47:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6IMuQD13678 for vserver.list; Thu, 18 Jul 2002 18:56:26 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6IMuQY13674 for ; Thu, 18 Jul 2002 18:56:26 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 594487A5DC; Thu, 18 Jul 2002 23:56:26 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 5336692152 for ; Thu, 18 Jul 2002 23:56:26 +0100 (BST) Date: Thu, 18 Jul 2002 23:56:26 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] I can't SSH to the ip of the vserver sends me to the main server In-Reply-To: <5.1.0.14.2.20020718180517.0568ec90@mail.pwebtech.com> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 809 On Thu, 18 Jul 2002, Jason Silverglate wrote: > On Thu, 18 Jul 2002, Jason Silverglate wrote: Are you aware that you sent this twice? > >I can't SSH to the ip of the vserver sends me to the main server. How > >do I enable it so when i ssh to the ip of the vserver it sends me to the > >vserver? Read the docs/scripts about this script on the host box: /etc/{init,rc}.d/v_ssh By default the SSH daemon on the main server is started first, and listens on all IP addresses bound on the machine. It grab port 22 on all addresses before the sshd in the vserver gets a chance. Either use the above script, or use the `Listen' command in /etc/ssh/sshd_config to restrict it to only listen on the host server's main IP address. This does not affect the vservers as they are already restricted in which IP addresses they can bind to. HTH, HAND, -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Thu Jul 18 21:45:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6J1ihfH001253; Thu, 18 Jul 2002 21:44:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6INagq14590 for vserver.list; Thu, 18 Jul 2002 19:36:42 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com ([64.21.143.232]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6INagY14586 for ; Thu, 18 Jul 2002 19:36:42 -0400 Received: (qmail 16741 invoked from network); 18 Jul 2002 23:36:42 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 18 Jul 2002 23:36:42 -0000 Message-Id: <5.1.0.14.2.20020718193507.057b5cf0@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Thu, 18 Jul 2002 19:36:24 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] chbind operation not permitted. Please help Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 810 I get the below when running that the following command. root@woof [/etc/rc.d/init.d]# chbind --ip 209.X.X.194 /etc/rc.d/init.d/sshd start Can't set the ipv4 root (Operation not permitted) __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Thu Jul 18 21:55:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6J1sofH001627; Thu, 18 Jul 2002 21:54:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6J0AjP15319 for vserver.list; Thu, 18 Jul 2002 20:10:45 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp012.mail.yahoo.com (smtp012.mail.yahoo.com [216.136.173.32]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6J0AiY15315 for ; Thu, 18 Jul 2002 20:10:44 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 19 Jul 2002 00:10:43 -0000 From: "Peter Kwan Chan" To: Cc: Subject: RE: [vserver] I can't SSH to the ip of the vserver sends me to the main server Date: Thu, 18 Jul 2002 19:10:41 -0500 Message-ID: <000001c22eb8$b8d59360$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal In-Reply-To: <5.1.0.14.2.20020718175226.04ffc750@mail.pwebtech.com> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 811 This is a very common situation. You need to make sure the service running in the main server doesn't already bind the addresses that the vserver will need. Usually, the services in the main server simply bind to localhost, and in turns bind to all IPs on the main server, thereby blocking any service in the vservers from starting. You need to either explicitly force the services in the main server to bind only to the main server IP, or the vserver package supplies those v_service scripts that you can run to limit the services to only the main IP. (e.g. v_httpd, v_sshd, etc...) By the way, Jay, I thought you had your mind set on FreeVSD? :') Peter -----Original Message----- From: Jason Silverglate [mailto:jason@pwebtech.com] Sent: Thursday, July 18, 2002 4:53 PM To: vserver@solucorp.qc.ca Subject: [vserver] I can't SSH to the ip of the vserver sends me to the main server I can't SSH to the ip of the vserver sends me to the main server. How do I enable it so when i ssh to the ip of the vserver it sends me to the vserver? Thanx __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Thu Jul 18 22:06:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6J26FfH002101; Thu, 18 Jul 2002 22:06:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6J0HD115428 for vserver.list; Thu, 18 Jul 2002 20:17:13 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6J0HDY15424 for ; Thu, 18 Jul 2002 20:17:13 -0400 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 4.05) id 17VLSK-0006QP-00 for vserver@solucorp.qc.ca; Thu, 18 Jul 2002 21:17:12 -0300 Date: Thu, 18 Jul 2002 21:17:12 -0300 (ADT) From: James MacLean To: Subject: Re: [vserver] I can't SSH to the ip of the vserver sends me to the main server In-Reply-To: <5.1.0.14.2.20020718175226.04ffc750@mail.pwebtech.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Scanner: exiscan for exim4 (http://duncanthrax.net/exiscan/) *17VLSK-0006QP-00*vhBcXavWaUc* Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 812 On the main server, make sure SSH is bound only to the main IP and not to 0.0.0.0:22 by looking at the output of "netstat -nap | grep sshd". If it is binding to them all, look at /etc/init.d/v_sshd for a way to fix it, or edit your sshd_config to only bind on that IP. You can from the mainserver enter into the vserver with "vserver enter" and see if "ps ax" shows any sshd running. It (the vserver's sshd) will need to be restarted once the main server's sshd is fixed. Or if all that is annoying you can modify the sshd_config on the vserver and have it bind to a port other and 22, like maybe 23 because telnet just isn't as kewl :). my $.02, JES On Thu, 18 Jul 2002, Jason Silverglate wrote: > I can't SSH to the ip of the vserver sends me to the main server. How do > I enable it so when i ssh to the ip of the vserver it sends me to the vserver? > > Thanx > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > > > > -- James B. MacLean macleajb@ednet.ns.ca Department of Education Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Thu Jul 18 23:12:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6J3BdfH004620; Thu, 18 Jul 2002 23:11:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6J1CBB16552 for vserver.list; Thu, 18 Jul 2002 21:12:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6J1C9Y16548 for ; Thu, 18 Jul 2002 21:12:09 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id DBC587A5EA; Fri, 19 Jul 2002 02:12:08 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id A5D4E92152 for ; Fri, 19 Jul 2002 02:12:08 +0100 (BST) Date: Fri, 19 Jul 2002 02:12:08 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] chbind operation not permitted. Please help In-Reply-To: <5.1.0.14.2.20020718193507.057b5cf0@mail.pwebtech.com> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 813 On Thu, 18 Jul 2002, Jason Silverglate wrote: > > root@woof [/etc/rc.d/init.d]# chbind --ip 209.X.X.194 /etc/rc.d/init.d/sshd > Can't set the ipv4 root (Operation not permitted) What does the following print out: ? $ uname -a ; cat /proc/self/status | tail -8 -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Fri Jul 19 06:59:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6JAxhfH022584; Fri, 19 Jul 2002 06:59:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6J8nRs26726 for vserver.list; Fri, 19 Jul 2002 04:49:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hollo.idg.hu (hollo.idg.hu [213.253.199.83]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6J8nQY26722 for ; Fri, 19 Jul 2002 04:49:27 -0400 Received: by hollo.idg.hu (Postfix, from userid 1000) id 6A0CF1E; Fri, 19 Jul 2002 11:02:44 +0200 (CEST) Date: Fri, 19 Jul 2002 11:02:44 +0200 From: Deim Agoston To: vserver@solucorp.qc.ca Subject: Re: [vserver] I can't SSH to the ip of the vserver sends me to the main server Message-ID: <20020719090244.GA2439@idg.hu> References: <5.1.0.14.2.20020718180517.0568ec90@mail.pwebtech.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 814 On Thu, Jul 18, 2002 at 11:56:26PM +0100, Paul Sladen wrote: > Read the docs/scripts about this script on the host box: > /etc/{init,rc}.d/v_ssh > By default the SSH daemon on the main server is started first, and listens > on all IP addresses bound on the machine. It grab port 22 on all addresses > before the sshd in the vserver gets a chance. Either use the above script, > or use the `Listen' command in /etc/ssh/sshd_config to restrict it to only > listen on the host server's main IP address. Better situation if you bind SSH a port above 1024 and bind it to specific IP after this. Bye, Ago From vserver.error@solucorp.qc.ca Fri Jul 19 16:51:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6JKpHfH006689; Fri, 19 Jul 2002 16:51:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6JJ77Q08824 for vserver.list; Fri, 19 Jul 2002 15:07:07 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6JJ77Y08820 for ; Fri, 19 Jul 2002 15:07:07 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6JJ6gW05695 for vserver@solucorp.qc.ca; Fri, 19 Jul 2002 15:06:42 -0400 From: Jacques Gelinas Date: Fri, 19 Jul 2002 15:06:42 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] chbind operation not permitted. Please help X-mailer: tlmpmail 0.6 Message-ID: <20020719150642.eb526a3f726b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 815 On Thu, 18 Jul 2002 19:36:24 -0500, Jason Silverglate wrote > I get the below when running that the following command. > > root@woof [/etc/rc.d/init.d]# chbind --ip 209.X.X.194 /etc/rc.d/init.d/sshd > start > Can't set the ipv4 root (Operation not permitted) There are two reasons why it may happen ? The current process is already bound to an IP. Only root in the root server is allowed to override that. Or you do not have the CAP_NET_ADMIN privilege. Or (I know, I know, this is the third), there are already some IPs bound to this process, but 209.x.x.194 is not one of them. A vserver may have up to 16 IP and this is always possible for a process to select a subset of those IPs. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Jul 19 17:02:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6JL1kfH005675; Fri, 19 Jul 2002 17:01:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6JJSNM09274 for vserver.list; Fri, 19 Jul 2002 15:28:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6JJSNY09270 for ; Fri, 19 Jul 2002 15:28:23 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6JJRxO05719 for vserver@solucorp.qc.ca; Fri, 19 Jul 2002 15:27:59 -0400 From: Jacques Gelinas Date: Fri, 19 Jul 2002 15:27:59 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] multi-nic X-mailer: tlmpmail 0.6 Message-ID: <20020719152759.3067556b19f1@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 816 On Thu, 18 Jul 2002 12:14:59 -0500, Jukka Laaksola wrote > Hello! > > I have a little problem with vservers multi-IP configuration. I read the > manual and didn't found any help. > > I have two ethernet cards on my main host, eth0 and eth1. > > eth0: network 10.10.10.0/24 > eth1: network 192.168.0.0/24 > > With vserver-0.17 I got one ip, 10.10.10.40, worked well in the virtual > host. Now with vserver-0.18's multi-ip support I thought I can get > access to the both of my networks. > > If I set IPROOT="192.0.168.11 10.10.10.40" in my virtual host's config. > It tries to set both ips as aliases for eth0. My IPROOTDEV=eth0. > > I also tried put IPROOTDEV="eth0 eth1", but that wasn't work either. > > So is it somehow possible to use two nic in one virtual host? > 10.10.10.40 as eth0:v1 and 192.168.0.11 as eth1:v1. > If it isn't possible, is it in the todo list? We will need to change the way we handle that. Instead of having IPROOT and IPROOTDEV, we will have something like IPROOT="eth0/IP1 eth1/IP2 IP3 IP4" IPROOTDEV=eth2 Any IP no explicitly tied to a device will be configured with IPROOTDEV. In the example above, IP3 and IP4 will go on eth2. What do you think ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Jul 19 17:06:46 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6JL6VfH017136; Fri, 19 Jul 2002 17:06:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6JJPXr09236 for vserver.list; Fri, 19 Jul 2002 15:25:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6JJPXY09232 for ; Fri, 19 Jul 2002 15:25:33 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6JJP8w05715 for vserver@solucorp.qc.ca; Fri, 19 Jul 2002 15:25:08 -0400 From: Jacques Gelinas Date: Fri, 19 Jul 2002 15:25:08 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] multi-nic X-mailer: tlmpmail 0.6 Message-ID: <20020719152508.5bb8d1fb4f62@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 817 On Thu, 18 Jul 2002 12:59:06 -0500, Nuno Silva wrote > Hi, > > one quick hack is to have the ip configuration up before you start > vservers and comment out IPROOTDEV in vservername.conf. Yes this is a solution and I suggest you move this configuration stuff right in the per-vserver config script. So for a vserver named foo, you edit /etc/vserverfs/foo.sh. It will look like #!/bin/sh case $1 in pre-start) /sbin/ifconfig eth0:foo x.y.z.w /sbin/ifconfig eth1:foo x.y.z.a ;; post-start) ;; pre-stop) ;; post-stop) /sbin/ifconfig eth0:foo down /sbin/ifconfig eth1:foo down ;; *) echo $0 pre-start echo $0 pre-stop echo $0 post-start echo $0 post-stop ;; esac This way, things are setup and deleted whenever you start/stop the vserver. > Hth, > Nuno > > Jukka Laaksola wrote: > > Hello! > > > > I have a little problem with vservers multi-IP configuration. I read the > > manual and didn't found any help. > > > > I have two ethernet cards on my main host, eth0 and eth1. > > > > eth0: network 10.10.10.0/24 > > eth1: network 192.168.0.0/24 > > > > With vserver-0.17 I got one ip, 10.10.10.40, worked well in the virtual > > host. Now with vserver-0.18's multi-ip support I thought I can get > > access to the both of my networks. > > > > If I set IPROOT="192.0.168.11 10.10.10.40" in my virtual host's config. > > It tries to set both ips as aliases for eth0. My IPROOTDEV=eth0. > > > > I also tried put IPROOTDEV="eth0 eth1", but that wasn't work either. > > > > So is it somehow possible to use two nic in one virtual host? > > 10.10.10.40 as eth0:v1 and 192.168.0.11 as eth1:v1. > > If it isn't possible, is it in the todo list? > > > > Very happy vserver user Jukka > --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Jul 19 17:30:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6JLTwfH010879; Fri, 19 Jul 2002 17:29:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6JLH7Y11644 for vserver.list; Fri, 19 Jul 2002 17:17:07 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6JLH7Y11640 for ; Fri, 19 Jul 2002 17:17:07 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g6JLGg110760 for vserver@solucorp.qc.ca; Fri, 19 Jul 2002 17:16:42 -0400 From: Jacques Gelinas Date: Fri, 19 Jul 2002 17:16:42 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] /vservers on NFS mount? X-mailer: tlmpmail 0.6 Message-ID: <20020719171642.a698d75d263f@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 818 On Wed, 17 Jul 2002 18:44:44 -0500, Roderick A. Anderson wrote > On Sat, 13 Jul 2002, Jacques Gelinas wrote: > > > > My question. Can I mount a NFS share on the main server as /vservers and > > > have it work? > > > > I would say it will work. Unification won't, but the rest should. > > My thoughts are to use some big old monster NAS or SAN device (TeraByte > capacity - RaidZone etc.) and don't care about the extra space used. > > It would be nice to have a unified NFS mount from a system that normally > only provides the NFS services. Does vserver have to be running or > installed for the unification process to be done? That is could I install > only the vserver utilities without the kernel and still do all the admin > and maintenance stuff filesystem-wise? Unification is basically a big bunch of hard link. This part works over NFS. The problem is that it is not secure. If you have vserver1 and vserver1 sharing the same /bin/ls, then vserver1 is allowed to overwrite its /bin/ls with some trojan and then take over verserv2. So unification is done using hard links, but also using some security features found in linux file systems, notably immutability. So if your NFS server does support that (immutability + immutable-may-unlink), then you can use unification safely. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Jul 19 21:23:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6K1NSfH019495; Fri, 19 Jul 2002 21:23:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6K1Av016123 for vserver.list; Fri, 19 Jul 2002 21:10:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6K1AvY16119 for ; Fri, 19 Jul 2002 21:10:57 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g6K1B1e21087 for ; Fri, 19 Jul 2002 18:11:01 -0700 Date: Fri, 19 Jul 2002 18:11:01 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: re: [vserver] /vservers on NFS mount? In-Reply-To: <20020719171642.a698d75d263f@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 819 On Fri, 19 Jul 2002, Jacques Gelinas wrote: > So unification is done using hard links, but also using some security > features found in linux file systems, notably immutability. So if your > NFS server does support that (immutability + immutable-may-unlink), > then you can use unification safely. Thanks. That explains a lot. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Sat Jul 20 17:34:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6KLYEiB001510; Sat, 20 Jul 2002 17:34:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6KEeq630326 for vserver.list; Sat, 20 Jul 2002 10:40:52 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6KEecY30322 for ; Sat, 20 Jul 2002 10:40:49 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 74772108E for ; Sat, 20 Jul 2002 16:44:40 +0200 (CEST) Subject: [vserver] testing my vacation notice - making sure it doesn't mailbomb you. From: klavs klavsen To: Vserver Mailinglist Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.7 Date: 20 Jul 2002 16:42:54 +0200 Message-Id: <1027176174.4950.20.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 820 Sorry for the inconvenience. -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Mon Jul 22 02:02:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6M62DiB029590; Mon, 22 Jul 2002 02:02:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6M5edl19349 for vserver.list; Mon, 22 Jul 2002 01:40:39 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from clinton.rosehosting.com (clinton.rosehosting.com [216.114.78.148]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6M5edY19345 for ; Mon, 22 Jul 2002 01:40:39 -0400 Received: from win (SP2-24.207.235.93.charter-stl.com [24.207.235.93]) by clinton.rosehosting.com (Postfix) with SMTP id E0213FB39 for ; Mon, 22 Jul 2002 00:40:45 -0500 (CDT) Message-ID: <116401c23142$4cfc2230$0a01a8c0@win> From: "Mark Ruzinov" To: References: <1027176174.4950.20.camel@amd.vsen.dk> Subject: Re: [vserver] testing my vacation notice - making sure it doesn't mailbomb you. Date: Mon, 22 Jul 2002 00:40:34 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 1 X-MSMail-Priority: High X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 821 I have several vservers running on one machine. It all works with the latest patch and on RedHat 7.3. Everything was fine until tonight when I tried to restart one of the vservers and it came back with this line. It started a few services, and then this: Starting xinetd: /usr/sbin/vserver: line 499: 1740 Hangup $NICECMD /usr/sbin/chbind $IPOPT --bcast $IPROOTBCAST /usr/sbin/chcontext $DISCONNECT $CAPS $FLAGS $CTXOPT $HOSTOPT $DOMAINOPT --secure /usr/lib/vserver/save_s_context /var/run/vservers/$1.ctx /usr/lib/vserver/capchroot $CHROOTOPT . $STARTCMD The other vservers work fine and do not have this problem when being restarted. Any help is greatly appreciated. MR ----- Original Message ----- From: "klavs klavsen" To: "Vserver Mailinglist" Sent: Saturday, July 20, 2002 09:42 Subject: [vserver] testing my vacation notice - making sure it doesn't mailbomb you. > Sorry for the inconvenience. > > -- > Regards, > Klavs Klavsen > > -------------| This mail has been sent to you by: |------------ > Klavs Klavsen - Open Source Consultant > kl@vsen.dk - http://www.vsen.dk > > Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA > Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA > --------------------[ I believe that... ]----------------------- > It is a myth that people resist change. People resist what other > people make them do, not what they themselves choose to do... > That's why companies that innovate successfully year after year > seek their peopl's ideas, let them initiate new projects and > encourage more experiments. -- Rosabeth Moss Kanter > > From vserver.error@solucorp.qc.ca Mon Jul 22 02:28:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6M6SCiB029678; Mon, 22 Jul 2002 02:28:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6M67ar19918 for vserver.list; Mon, 22 Jul 2002 02:07:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns.kopteri.net (ns.kopteri.net [212.246.72.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6M67YY19913 for ; Mon, 22 Jul 2002 02:07:35 -0400 Received: from netland.fi (gw.netland.fi [212.246.72.6]) by ns.kopteri.net (8.11.6/8.11.2) with ESMTP id g6M67Yk25528 for ; Mon, 22 Jul 2002 09:07:34 +0300 Message-ID: <3D3BA0FD.9080708@netland.fi> Date: Mon, 22 Jul 2002 09:06:53 +0300 From: Jukka Laaksola User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020607 X-Accept-Language: fi, en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] multi-nic References: <20020719152759.3067556b19f1@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 822 Jacques Gelinas wrote: > On Thu, 18 Jul 2002 12:14:59 -0500, Jukka Laaksola wrote > >>Hello! >> >>I have a little problem with vservers multi-IP configuration. I read the >>manual and didn't found any help. >> >>I have two ethernet cards on my main host, eth0 and eth1. >> >>eth0: network 10.10.10.0/24 >>eth1: network 192.168.0.0/24 >> >>With vserver-0.17 I got one ip, 10.10.10.40, worked well in the virtual >>host. Now with vserver-0.18's multi-ip support I thought I can get >>access to the both of my networks. >> >>If I set IPROOT="192.0.168.11 10.10.10.40" in my virtual host's config. >>It tries to set both ips as aliases for eth0. My IPROOTDEV=eth0. >> >>I also tried put IPROOTDEV="eth0 eth1", but that wasn't work either. >> >>So is it somehow possible to use two nic in one virtual host? >>10.10.10.40 as eth0:v1 and 192.168.0.11 as eth1:v1. >>If it isn't possible, is it in the todo list? > > > We will need to change the way we handle that. Instead of having > IPROOT and IPROOTDEV, we will have something like > > IPROOT="eth0/IP1 eth1/IP2 IP3 IP4" > IPROOTDEV=eth2 > > Any IP no explicitly tied to a device will be configured with IPROOTDEV. In > the example above, IP3 and IP4 will go on eth2. > > What do you think ? Sounds good to me. It's quite clear way to configure IPs and devices. Perhaps the feature is in the next version of vserser? Thanks, Jukka -- Jukka Laaksola Netland Oy From vserver.error@solucorp.qc.ca Mon Jul 22 18:41:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6MMeliB004773; Mon, 22 Jul 2002 18:40:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6MME4n10150 for vserver.list; Mon, 22 Jul 2002 18:14:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com ([64.21.143.232]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6MME3Y10146 for ; Mon, 22 Jul 2002 18:14:03 -0400 Received: (qmail 20880 invoked from network); 22 Jul 2002 22:13:59 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 22 Jul 2002 22:13:59 -0000 Message-Id: <5.1.0.14.2.20020722181114.02b26e28@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Mon, 22 Jul 2002 18:11:50 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] Quota LVM problems.. Please help. Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 823 I am getting this root@lvmtest [/scripts]# ./editquota jason 300M edquota: Can't stat() mounted device /dev/hdv1: No such file or directory No filesystems with quota detected. my fstab reads as such root@lvmtest [/]# more /etc/fstab /dev/host1/vservers/lvmtest/ ext3 rw,defaults,usrquota 0 0 any ideas? Thanx __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Mon Jul 22 20:50:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6N0oNiB005664; Mon, 22 Jul 2002 20:50:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6N0JSI12664 for vserver.list; Mon, 22 Jul 2002 20:19:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6N0JSY12660 for ; Mon, 22 Jul 2002 20:19:28 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g6N0JRs19304 for ; Mon, 22 Jul 2002 17:19:27 -0700 Date: Mon, 22 Jul 2002 17:19:26 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] Quota LVM problems.. Please help. In-Reply-To: <5.1.0.14.2.20020722181114.02b26e28@mail.pwebtech.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 824 On Mon, 22 Jul 2002, Jason Silverglate wrote: > I am getting this > root@lvmtest [/scripts]# ./editquota jason 300M > edquota: Can't stat() mounted device /dev/hdv1: No such file or directory > No filesystems with quota detected. > > my fstab reads as such > root@lvmtest [/]# more /etc/fstab > /dev/host1/vservers/lvmtest/ ext3 rw,defaults,usrquota 0 0 This doesn't look a valid fstab entry. Typically (in my limited experience) there should be six entries per line for 'normal' file systems. dev(or label) mount-point type options fs_freq fs_passno I only see five in your line above. Should it be /dev/host1 /vservers/lvmtest ext3 rw,defaults,usrquota 0 0 ^ note the space. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Tue Jul 23 12:43:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6NGghiB013463; Tue, 23 Jul 2002 12:42:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6NG1J903464 for vserver.list; Tue, 23 Jul 2002 12:01:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from linuxfriends (cpu183.adsl.qc.bellglobal.com [207.236.226.187]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6NG1IY03460 for ; Tue, 23 Jul 2002 12:01:19 -0400 Received: from www-data by linuxfriends with local (Exim 3.35 #1 (Debian)) id 17Wfqa-000873-00 for ; Mon, 22 Jul 2002 12:15:44 -0400 To: vserver@solucorp.qc.ca Subject: [vserver] chbind bound on many ips Message-ID: <1027354544.3d3c2fb01baa4@linuxfriends.sympatico.ca> Date: Mon, 22 Jul 2002 12:15:44 -0400 (EDT) From: shuri@mail.eboxw.net MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 192.168.1.3 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: A X-Keywords: X-UID: 825 HI i got identd problems in vserver it seam each vserver need to run his own identd deamon for identd to work running indetd on the root server do not affect vserver is it possible to start a deamon with a script to bound this deamon on many ips exemple !/bin/sh # chkconfig: - 56 50 # description: Wrapper to start identd bound to on many IPS IP=x.x.x.11 x.x.x.12 exec /usr/sbin/chbind --ip $IP /etc/init.d/VSERVICE/identd $* or any way to run identd in each vserver without this error Jul 23 07:09:16 X inetd[20472]: auth/tcp: bind: Address already in use thx shuri From vserver.error@solucorp.qc.ca Tue Jul 23 13:28:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6NHRviB013974; Tue, 23 Jul 2002 13:27:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6NGvig05418 for vserver.list; Tue, 23 Jul 2002 12:57:44 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6NGvgY05414 for ; Tue, 23 Jul 2002 12:57:42 -0400 Received: from hofmann (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id 700A71906F for ; Tue, 23 Jul 2002 17:51:02 +0100 (BST) Received: from hofmann (unknown [127.0.0.3]) by hofmann (Postfix) with SMTP id AE3A655 for ; Tue, 23 Jul 2002 17:57:40 +0100 (BST) Date: Tue, 23 Jul 2002 17:57:40 +0100 From: Sam Vilain To: Vserver Mailinglist Subject: [vserver] Multiple IP patch and `localhost' X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 826 This is a multi-part message in MIME format. --Multipart_Tue__23_Jul_2002_17:57:40_+0100_082aa048 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Hi all, I have been investigating the new patch, ctx-12. Multiple IP addresses opens up the possibility that I think could fix the `localhost' business for good: per-vserver loopback interfaces. In the vserver startup script, the address 127.0.0.N, where N is some arbitrary number allocated in userland, is added to the list of allowable addresses in the set_ipv4root call, and the interface up'ed (not sure if this is strictly needed; try running `netcat -s 127.1.2.3 -p 1234 -l' and then `telnet 127.1.2.3 1234' - it works anyway). There are two ways to get a `localhost' address from an application - one is to try and resolve `localhost', which is fine - but any program with a severe case of C programmer's disease will be doing it using the getaddrinfo() function - see the attached file. This C library call seems to escape /etc/resolv.conf, /etc/nsswitch.conf, /etc/hosts and INADDR_LOOPBACK is #define'd as a constant by glibc in /usr/include/netinet/in.h. This is not necessarily a huge problem, as getaddrinfo() can be redefined via LD_PRELOAD or ld.so.conf, or fixed in the C library. I think per-vserver localhosts would have several advantages: - You get a localhost interface to yourself, for setting up applications that do not support UNIX sockets to listen on, port forwarding, etc. - Applications that listen on localhost don't potentially expose services to the world - More like a real server :-) In other words, some applications may consider binding to an address and having getsockopt() or whatever it is returning the same address a sanity condition. - Make use of that 127.* class A network that has sat so unused for all these years. The only problem will be if any userland applications out there use the incorrect (according to RFC1062) INADDR_LOOPBACK macro. The other possibility would be to find all of the places in the kernel that could accept 127.0.0.1 and translate it to a per-virtual server localhost interface transparently. So userland thinks it's got 127.0.0.1, but the networking stack uses 127.0.0.X. I guess this would save having to make sweeping userland changes, although I think fixing the C library would be The Right Thing(tm) in the long run. Ideas/comments? -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 - A complex system that works is invariably found to have evolved from a simple system that worked. - anon. --Multipart_Tue__23_Jul_2002_17:57:40_+0100_082aa048 Content-Type: text/x-csrc; name="getaddrinfo.c" Content-Disposition: attachment; filename="getaddrinfo.c" Content-Transfer-Encoding: base64 CiNpbmNsdWRlIDxzeXMvdHlwZXMuaD4KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4KI2luY2x1ZGUg PG5ldGRiLmg+CgppbnQgbWFpbiAoY2hhciAqKiBBUkdWKSB7CgoJc3RydWN0IGFkZHJpbmZvIGhp bnRzLCAqcmVzOwoJaW50IHJjOwoJc3RydWN0IHNvY2thZGRyX2luICogbXlzb2NrOwoKCW1lbXNl dCgmaGludHMsIDAsIHNpemVvZihoaW50cykpOwoKCWhpbnRzLmFpX2ZsYWdzID0gMDsKCWhpbnRz LmFpX2ZhbWlseSA9IFBGX0lORVQ7CgoJaWYgKHJjID0gZ2V0YWRkcmluZm8oTlVMTCwgInNzaCIs ICZoaW50cywgJnJlcykpIHsKCQlwcmludGYoIkNhbGwgZmFpbGVkOyByYz0lZFxuIiwgcmMpOwoJ fSBlbHNlIHsKCQlteXNvY2sgPSAoc3RydWN0IHNvY2thZGRyX2luKilyZXMtPmFpX2FkZHI7CgkJ cHJpbnRmKCJsb2NhbGhvc3QgaXMgJXMgKCVzKVxuIiwgcmVzLT5haV9jYW5vbm5hbWUsCgkJICAg ICAgIGluZXRfbnRvYShteXNvY2stPnNpbl9hZGRyKSk7Cgl9Cn0KCg== --Multipart_Tue__23_Jul_2002_17:57:40_+0100_082aa048-- From vserver.error@solucorp.qc.ca Tue Jul 23 13:37:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6NHbNiB014043; Tue, 23 Jul 2002 13:37:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6NHOMU06269 for vserver.list; Tue, 23 Jul 2002 13:24:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6NHOLY06265 for ; Tue, 23 Jul 2002 13:24:21 -0400 Received: from localhost (alien.vlad.net [208.236.0.236]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6NHOAiC013917 for ; Tue, 23 Jul 2002 13:24:10 -0400 Date: Tue, 23 Jul 2002 13:24:10 -0400 (EDT) From: Vlad To: vserver@solucorp.qc.ca Subject: Re: [vserver] chbind bound on many ips In-Reply-To: <1027354544.3d3c2fb01baa4@linuxfriends.sympatico.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-VirusScanner: Found to be clean, Found to be clean Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: RO X-Status: X-Keywords: X-UID: 827 I use xinetd; in the main server /etc/xinetd.conf define bind = x.x.x.x Then in each vserver setup identd to run off xinetd and bind it to the specific IP address. -Vlad On Mon, 22 Jul 2002 shuri@mail.eboxw.net wrote: > HI > i got identd problems in vserver it seam each vserver need to run his own > identd deamon for identd to work running indetd on the root server do not > affect vserver > > is it possible to start a deamon with a script to bound this deamon > on many ips > > exemple > > !/bin/sh > # chkconfig: - 56 50 > # description: Wrapper to start identd bound to on many IPS > IP=x.x.x.11 x.x.x.12 > exec /usr/sbin/chbind --ip $IP /etc/init.d/VSERVICE/identd $* > > or any way to run identd in each vserver without this error > Jul 23 07:09:16 X inetd[20472]: auth/tcp: bind: Address already in use > > thx > > shuri > From vserver.error@solucorp.qc.ca Tue Jul 23 20:58:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6O0w1iB017962; Tue, 23 Jul 2002 20:58:01 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6O0ZXA16836 for vserver.list; Tue, 23 Jul 2002 20:35:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mailman.ipsm.net.nz (smtp.ipsm.net.nz [202.50.116.129]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6O0ZRY16831 for ; Tue, 23 Jul 2002 20:35:32 -0400 Received: from localhost.localdomain ([210.54.11.22]) by mailman.ipsm.net.nz with Microsoft SMTPSVC(5.0.2195.4905); Wed, 24 Jul 2002 12:36:18 +1200 Subject: [vserver] ssh -X vserver From: Fran Firman To: vserver Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.7 Date: 24 Jul 2002 12:31:31 +1200 Message-Id: <1027470691.13106.1285.camel@ganymede> Mime-Version: 1.0 X-OriginalArrivalTime: 24 Jul 2002 00:36:18.0183 (UTC) FILETIME=[1FF5D970:01C232AA] Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 828 When I ssh -X to a vserver, so that the X11 is tunneled back to my console/client, I run a program like xterm and get the error, X11 connection rejected because of wrong authentication. X connection to localhost:10.0 broken (explicit kill or server shutdown). Any ideas??? Thanks. Fran From vserver.error@solucorp.qc.ca Wed Jul 24 04:34:09 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6O8XeiB021286; Wed, 24 Jul 2002 04:33:41 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6O7nLu13168 for vserver.list; Wed, 24 Jul 2002 03:49:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6O7nJY13164 for ; Wed, 24 Jul 2002 03:49:20 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17XGtV-0000Qg-00 for ; Wed, 24 Jul 2002 09:49:13 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D3E5BF9.B34E2FA7@silicide.dk> Date: Wed, 24 Jul 2002 09:49:13 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] ssh -X vserver References: <1027470691.13106.1285.camel@ganymede> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17XGtV-0000Qg-00*.IWijFDE0cE* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 829 Fran Firman wrote: > > When I ssh -X to a vserver, so that the X11 is tunneled back to my > console/client, I run a program like xterm and get the error, > > X11 connection rejected because of wrong authentication. > X connection to localhost:10.0 broken (explicit kill or server > shutdown). > > Any ideas??? This is an X/ssh problem, not related to vserver. Maybe you can solve it by typing xhost + at a local xterm. JonB From vserver.error@solucorp.qc.ca Wed Jul 24 07:13:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6OBD9iB022040; Wed, 24 Jul 2002 07:13:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6OAirx17549 for vserver.list; Wed, 24 Jul 2002 06:44:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6OAipY17545 for ; Wed, 24 Jul 2002 06:44:52 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:25098 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Wed, 24 Jul 2002 12:44:36 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Wed, 24 Jul 2002 12:44:19 +0200 Date: Wed, 24 Jul 2002 12:44:19 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] ssh -X vserver Message-ID: <20020724124419.B16801@4t2.com> References: <1027470691.13106.1285.camel@ganymede> <3D3E5BF9.B34E2FA7@silicide.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <3D3E5BF9.B34E2FA7@silicide.dk>; from jon+vserver@silicide.dk on Wed, Jul 24, 2002 at 09:49:13AM +0200 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 830 On Wed, Jul 24, 2002 at 09:49:13AM +0200, Jon Bendtsen wrote: > Fran Firman wrote: > > > > When I ssh -X to a vserver, so that the X11 is tunneled back to my > > console/client, I run a program like xterm and get the error, > > > > X11 connection rejected because of wrong authentication. > > X connection to localhost:10.0 broken (explicit kill or server > > shutdown). > > > > Any ideas??? > > This is an X/ssh problem, not related to vserver. Maybe you can solve > it by typing xhost + at a local xterm. no, this is probably vserver related due to the localhost issues. you use ssh -X because you don't want to use xhost +, which is a bad idea in general. (Of course this is only one of the reasons to tunnel X11 through ssh) Tom From vserver.error@solucorp.qc.ca Wed Jul 24 08:05:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6OC57iB022434; Wed, 24 Jul 2002 08:05:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6OBe6j18595 for vserver.list; Wed, 24 Jul 2002 07:40:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from vmail.db (bigalke65.insol.de [62.80.100.65] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6OBe5Y18589 for ; Wed, 24 Jul 2002 07:40:05 -0400 Received: from localhost (vmail.db [192.168.0.208]) by vmail.db (8.12.3/8.12.3/SuSE Linux 0.6) with ESMTP id g6OBdWAp001684 for ; Wed, 24 Jul 2002 13:39:32 +0200 Received: from 192.168.0.145 ( [192.168.0.145]) as user dieter@vmail.db by vmail.db with HTTP; Wed, 24 Jul 2002 13:39:32 +0200 Message-ID: <1027510772.3d3e91f4369a4@vmail.db> Date: Wed, 24 Jul 2002 13:39:32 +0200 From: Dieter Bigalke To: vserver@solucorp.qc.ca Subject: Re: [vserver] ssh -X vserver References: <1027470691.13106.1285.camel@ganymede> <3D3E5BF9.B34E2FA7@silicide.dk> <20020724124419.B16801@4t2.com> In-Reply-To: <20020724124419.B16801@4t2.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.1 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 831 Zitat von Thomas Weber : > On Wed, Jul 24, 2002 at 09:49:13AM +0200, Jon Bendtsen wrote: > > Fran Firman wrote: > > > > > > When I ssh -X to a vserver, so that the X11 is tunneled back to my > > > console/client, I run a program like xterm and get the error, > > > > > > X11 connection rejected because of wrong authentication. > > > X connection to localhost:10.0 broken (explicit kill or server > > > shutdown). > > > > > > Any ideas??? > > > > This is an X/ssh problem, not related to vserver. Maybe you can solve > > it by typing xhost + at a local xterm. > > no, this is probably vserver related due to the localhost issues. > you use ssh -X because you don't want to use xhost +, which is a bad idea > in > general. (Of course this is only one of the reasons to tunnel X11 through > ssh) > > Tom > try "X11UseLocalhost no" in sshd_config Dieter ------------------------------------------------- This mail sent through IMP: http://horde.org/imp/ From vserver.error@solucorp.qc.ca Wed Jul 24 11:35:13 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6OFYxiB024367; Wed, 24 Jul 2002 11:35:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6OF4eM24054 for vserver.list; Wed, 24 Jul 2002 11:04:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from april.netcraft.com.au (april.netcraft.com.au [203.16.231.73]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6OF4cY24050 for ; Wed, 24 Jul 2002 11:04:39 -0400 Received: (from g@localhost) by april.netcraft.com.au (8.11.6/8.11.6) id g6OF4b316797 for vserver@solucorp.qc.ca; Thu, 25 Jul 2002 00:34:37 +0930 Date: Thu, 25 Jul 2002 00:34:37 +0930 From: "Geoffrey D. Bennett" To: vserver@solucorp.qc.ca Subject: [vserver] UDP source addr not affected by chbind? Message-ID: <20020725003437.A14778@april.netcraft.com.au> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 832 Hi all, I've just found something strange... if I use 'radclient' (Cistron RADIUS) within a vserver, the source IP address for the UDP packet it sends is the IP address of the base vserver, not the IP address of the vserver. Just as strange is that radclient receives the reply even though the destination IP address is (of course) for the base server. Any hints? This machine is running 2.4.18ctx-10. Thanks, -- Geoffrey D. Bennett, RHCE, RHCX geoffrey@netcraft.com.au Senior Systems Engineer http://www.netcraft.com.au/geoffrey/ NetCraft Australia Pty Ltd http://www.netcraft.com.au/linux/ From vserver.error@solucorp.qc.ca Wed Jul 24 17:52:09 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6OLq5iB028039; Wed, 24 Jul 2002 17:52:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6OLQrA11158 for vserver.list; Wed, 24 Jul 2002 17:26:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from uhura.netgate.net.nz (uhura.netgate.net.nz [202.37.247.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6OLQpY11154 for ; Wed, 24 Jul 2002 17:26:52 -0400 Received: from ganymede (210-54-11-22.ipsm.net.nz [210.54.11.22]) by uhura.netgate.net.nz (8.11.3/8.11.3) with ESMTP id g6OLQiF11761 for ; Thu, 25 Jul 2002 09:26:45 +1200 (NZST) Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 17XTak-0001u2-00 for ; Thu, 25 Jul 2002 09:22:42 +1200 Subject: Re: [vserver] ssh -X vserver From: Fran Firman To: vserver In-Reply-To: <1027510772.3d3e91f4369a4@vmail.db> References: <1027470691.13106.1285.camel@ganymede> <3D3E5BF9.B34E2FA7@silicide.dk> <20020724124419.B16801@4t2.com> <1027510772.3d3e91f4369a4@vmail.db> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-58nDWhkgSiRg/JXSj3tf" X-Mailer: Ximian Evolution 1.0.7 Date: 25 Jul 2002 09:22:41 +1200 Message-Id: <1027545762.7205.4.camel@ganymede> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 833 --=-58nDWhkgSiRg/JXSj3tf Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable That changed it from a display of localhost:10 to wanquery:10 which is a start, but it still doesn't work. Following is the transcript. fran@ganymede:~$ ssh -X wanquery fran@wanquery's password:=20 Linux debian 2.2.20 #1 Mon Dec 31 07:05:08 EST 2001 i686 unknown Most of the programs included with the Debian GNU/Linux system are freely redistributable; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. Last login: Thu Jul 25 09:23:47 2002 from 210.54.11.22 fran@wanquery:~$ echo $DISPLAY wanquery:11.0 fran@wanquery:~$ cat .Xauthority=20 wanquery11MIT-MAGIC-COOKIE-1=CCzL=A4=FB K=AD=BD%nwanquery13MIT-MAGIC-COOKIE= -1a=AB=DDXK,=F0.=C5=AAwanquery14MIT-MAGIC-COOKIE-1#rK"i(SF=C2GR1=F6=E0=FBwa= nquery10MIT-MAGIC-COOKIE-1T=B2eL"R =D3=D2I=B6 @ : $ A'=EC =D4= =DD Zitat von Thomas Weber : >=20 >=20 > try "X11UseLocalhost no" in sshd_config >=20 > Dieter >=20 > ------------------------------------------------- > This mail sent through IMP: http://horde.org/imp/ >=20 >=20 --=-58nDWhkgSiRg/JXSj3tf Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9Pxqhv1V2oVWAPhYRApNfAJ9FQOWqG3IiJ2rhFrrMj5yNdBVSjgCgoo2G WMOG0rdrthjTcQy5Fsj6/ME= =QhWW -----END PGP SIGNATURE----- --=-58nDWhkgSiRg/JXSj3tf-- From vserver.error@solucorp.qc.ca Wed Jul 24 18:59:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6OMx9iB028450; Wed, 24 Jul 2002 18:59:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6OMk8x14981 for vserver.list; Wed, 24 Jul 2002 18:46:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from isomedia.com (mail.isomedia.com [207.115.64.4]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6OMk7Y14977 for ; Wed, 24 Jul 2002 18:46:07 -0400 Received: from freya (pm113.focal.isomedia.com [66.147.197.28] (may be forged)) by isomedia.com (8.11.6/8.11.6) with SMTP id g6OMk1C14346 for ; Wed, 24 Jul 2002 15:46:02 -0700 Received: by localhost with Microsoft MAPI; Wed, 24 Jul 2002 15:43:51 -0700 Message-ID: <01C23328.E87CDA00.sarisky@caltech.edu> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: [vserver] bandmin? Date: Wed, 24 Jul 2002 15:43:49 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 834 I need to track bandwidth usage per vserver (which is per ip, since I'm not using the multi-ip functionality). I thought I'd use bandmin for this, since my dedicated server provider says that I can't use their router to track individual IPs with mrtg. Bandmin is doing fine with the IP assigned to the main server, but isn't seeing traffic to the vserver. Does someone have this working with bandmin, or some other solution? Thanks! Cathy Sarisky From vserver.error@solucorp.qc.ca Wed Jul 24 20:14:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6P0EgiB029068; Wed, 24 Jul 2002 20:14:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6P020Q17274 for vserver.list; Wed, 24 Jul 2002 20:02:00 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp018.mail.yahoo.com (smtp018.mail.yahoo.com [216.136.174.115]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6P01xY17270 for ; Wed, 24 Jul 2002 20:01:59 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 25 Jul 2002 00:01:59 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] bandmin? Date: Wed, 24 Jul 2002 19:01:54 -0500 Message-ID: <000301c2336e$7cef9390$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <01C23328.E87CDA00.sarisky@caltech.edu> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 835 Let me venture a guess. You don't have IP pre-binded on the main server, and instead rely on vserver to bind the IP for you? If this is the case, bandmin won't know about your IP, and thus won't record the traffic. Peter -----Original Message----- From: Cathy Sarisky [mailto:sarisky@caltech.edu] Sent: Wednesday, July 24, 2002 5:44 PM To: 'vserver@solucorp.qc.ca' Subject: [vserver] bandmin? I need to track bandwidth usage per vserver (which is per ip, since I'm not using the multi-ip functionality). I thought I'd use bandmin for this, since my dedicated server provider says that I can't use their router to track individual IPs with mrtg. Bandmin is doing fine with the IP assigned to the main server, but isn't seeing traffic to the vserver. Does someone have this working with bandmin, or some other solution? Thanks! Cathy Sarisky From vserver.error@solucorp.qc.ca Wed Jul 24 21:11:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6P1BHiB029660; Wed, 24 Jul 2002 21:11:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6P0x3C18943 for vserver.list; Wed, 24 Jul 2002 20:59:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from isomedia.com (mail.isomedia.com [207.115.64.4]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6P0x3Y18939 for ; Wed, 24 Jul 2002 20:59:03 -0400 Received: from freya (pm113.focal.isomedia.com [66.147.197.28] (may be forged)) by isomedia.com (8.11.6/8.11.6) with SMTP id g6P0x3C28676 for ; Wed, 24 Jul 2002 17:59:03 -0700 Received: by localhost with Microsoft MAPI; Wed, 24 Jul 2002 17:56:52 -0700 Message-ID: <01C2333B.7DA2BF20.sarisky@caltech.edu> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] bandmin? Date: Wed, 24 Jul 2002 17:56:51 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 836 Hi Peter, I'm not sure if I entirely understand your answer. I have the IP used by my main (not virtual) server set for eth0 (using linuxconf), with the IP for the virtual server listed in the virtual server section. The result from an ifconfig -a is that the IP for the main server is listed for eth0, and the IP for the virtual server is listed twice. Once for eth0:0, and once for eth0:serv (it's a virtual server named serv1...) The iptables list has both IPs listed in the bandmin rules. I did see some traffic logged earlier when I ssh'd to the IP of the vserver but got the main server. (I had forgotten to correct my sshd.conf file.) With a vserver running and connections going to the vserver properly, I don't see any traffic being recorded by bandmin. If you have another minute to spare for my problem, could you please explain what you meant by pre-binding an IP? Thanks in advance, Cathy Sarisky On Wednesday, July 24, 2002 5:02 PM, Peter Kwan Chan [SMTP:peterkwanchan@yah oo.com] wrote: > Let me venture a guess. You don't have IP pre-binded on the main server, > and instead rely on vserver to bind the IP for you? > > If this is the case, bandmin won't know about your IP, and thus won't > record the traffic. > > Peter > > -----Original Message----- > From: Cathy Sarisky [mailto:sarisky@caltech.edu] > Sent: Wednesday, July 24, 2002 5:44 PM > To: 'vserver@solucorp.qc.ca' > Subject: [vserver] bandmin? > > I need to track bandwidth usage per vserver (which is per ip, since I'm > not > using the multi-ip functionality). > > I thought I'd use bandmin for this, since my dedicated server provider > says > that I can't use their router to track individual IPs with mrtg. > > Bandmin is doing fine with the IP assigned to the main server, but isn't > seeing > traffic to the vserver. > > Does someone have this working with bandmin, or some other solution? > Thanks! > > Cathy Sarisky From vserver.error@solucorp.qc.ca Wed Jul 24 21:31:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6P1VOiB029817; Wed, 24 Jul 2002 21:31:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6P1HUl19504 for vserver.list; Wed, 24 Jul 2002 21:17:30 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp014.mail.yahoo.com (smtp014.mail.yahoo.com [216.136.173.58]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6P1HTY19500 for ; Wed, 24 Jul 2002 21:17:30 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 25 Jul 2002 01:17:29 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] bandmin? Date: Wed, 24 Jul 2002 20:17:24 -0500 Message-ID: <000801c23379$09426200$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <01C2333B.7DA2BF20.sarisky@caltech.edu> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 837 Hmm...Now I am not so sure. When I said IP pre-bind, I meant that the IP has been configured on the main server before the vserver starts, which is obviously the case for you. Now, you may want to comment out the IPDev (or one of those lines, I don't remember), so that vserver doesn't attempts to alias the IP again. I am not sure about this either. Try commenting out first, and see if things improve. Also, what's the output for this command? (iptables -L) Make sure you use the latest version of bandmin as well. Peter -----Original Message----- From: Cathy Sarisky [mailto:sarisky@caltech.edu] Sent: Wednesday, July 24, 2002 7:57 PM To: 'vserver@solucorp.qc.ca' Subject: RE: [vserver] bandmin? Hi Peter, I'm not sure if I entirely understand your answer. I have the IP used by my main (not virtual) server set for eth0 (using linuxconf), with the IP for the virtual server listed in the virtual server section. The result from an ifconfig -a is that the IP for the main server is listed for eth0, and the IP for the virtual server is listed twice. Once for eth0:0, and once for eth0:serv (it's a virtual server named serv1...) The iptables list has both IPs listed in the bandmin rules. I did see some traffic logged earlier when I ssh'd to the IP of the vserver but got the main server. (I had forgotten to correct my sshd.conf file.) With a vserver running and connections going to the vserver properly, I don't see any traffic being recorded by bandmin. If you have another minute to spare for my problem, could you please explain what you meant by pre-binding an IP? Thanks in advance, Cathy Sarisky On Wednesday, July 24, 2002 5:02 PM, Peter Kwan Chan [SMTP:peterkwanchan@yah oo.com] wrote: > Let me venture a guess. You don't have IP pre-binded on the main server, > and instead rely on vserver to bind the IP for you? > > If this is the case, bandmin won't know about your IP, and thus won't > record the traffic. > > Peter > > -----Original Message----- > From: Cathy Sarisky [mailto:sarisky@caltech.edu] > Sent: Wednesday, July 24, 2002 5:44 PM > To: 'vserver@solucorp.qc.ca' > Subject: [vserver] bandmin? > > I need to track bandwidth usage per vserver (which is per ip, since I'm > not > using the multi-ip functionality). > > I thought I'd use bandmin for this, since my dedicated server provider > says > that I can't use their router to track individual IPs with mrtg. > > Bandmin is doing fine with the IP assigned to the main server, but isn't > seeing > traffic to the vserver. > > Does someone have this working with bandmin, or some other solution? > Thanks! > > Cathy Sarisky From vserver.error@solucorp.qc.ca Wed Jul 24 21:39:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6P1dBiB029873; Wed, 24 Jul 2002 21:39:12 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6P1QCS19762 for vserver.list; Wed, 24 Jul 2002 21:26:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.13thfloor.at ([212.16.59.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6P1QBY19758 for ; Wed, 24 Jul 2002 21:26:11 -0400 Received: by www.13thfloor.at (Postfix, from userid 1001) id CC981220868; Thu, 25 Jul 2002 03:26:11 +0200 (CEST) Date: Thu, 25 Jul 2002 03:26:11 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] bandmin? Message-ID: <20020725012611.GA28184@www.13thfloor.at> References: <01C2333B.7DA2BF20.sarisky@caltech.edu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <01C2333B.7DA2BF20.sarisky@caltech.edu> User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: F X-Keywords: X-UID: 838 maybe I'm completely wrong, but for my simple setup all I needed to do for traffic accounting per ip/vserver was ... iptables -A INPUT -i eth0 -d iptables -A OUTPUT -o eth0 -s iptables -A INPUT -i eth0 -d iptables -A OUTPUT -o eth0 -s .... and iptables -xvL which gives me ... Chain INPUT (policy ACCEPT 7157991 packets, 932430425 bytes) pkts bytes target prot opt in out source destination 246 19163 all -- eth0 any anywhere domain1 3298 230541 all -- eth0 any anywhere domain2 5158 339958 all -- eth0 any anywhere domain3 .... Chain OUTPUT (policy ACCEPT 7574898 packets, 3080985747 bytes) pkts bytes target prot opt in out source destination 2054 344237 all -- any eth0 domain1 anywhere 2634 466259 all -- any eth0 domain2 anywhere 4059 734240 all -- any eth0 domain3 anywhere .... hope it helps, Herbert PS: if not, please ignore, because it's late and I'm tired ... On Wed, Jul 24, 2002 at 05:56:51PM -0700, Cathy Sarisky wrote: > Hi Peter, > > I'm not sure if I entirely understand your answer. I have the IP used by my > main (not virtual) server set for eth0 (using linuxconf), with the IP for the > virtual server listed in the virtual server section. The result from an > ifconfig -a is that the IP for the main server is listed for eth0, and the IP > for the virtual server is listed twice. Once for eth0:0, and once for > eth0:serv (it's a virtual server named serv1...) > > The iptables list has both IPs listed in the bandmin rules. I did see some > traffic logged earlier when I ssh'd to the IP of the vserver but got the main > server. (I had forgotten to correct my sshd.conf file.) With a vserver > running and connections going to the vserver properly, I don't see any traffic > being recorded by bandmin. > > If you have another minute to spare for my problem, could you please explain > what you meant by pre-binding an IP? > > Thanks in advance, > Cathy Sarisky > > On Wednesday, July 24, 2002 5:02 PM, Peter Kwan Chan [SMTP:peterkwanchan@yah > oo.com] wrote: > > Let me venture a guess. You don't have IP pre-binded on the main server, > > and instead rely on vserver to bind the IP for you? > > > > If this is the case, bandmin won't know about your IP, and thus won't > > record the traffic. > > > > Peter > > > > -----Original Message----- > > From: Cathy Sarisky [mailto:sarisky@caltech.edu] > > Sent: Wednesday, July 24, 2002 5:44 PM > > To: 'vserver@solucorp.qc.ca' > > Subject: [vserver] bandmin? > > > > I need to track bandwidth usage per vserver (which is per ip, since I'm > > not > > using the multi-ip functionality). > > > > I thought I'd use bandmin for this, since my dedicated server provider > > says > > that I can't use their router to track individual IPs with mrtg. > > > > Bandmin is doing fine with the IP assigned to the main server, but isn't > > seeing > > traffic to the vserver. > > > > Does someone have this working with bandmin, or some other solution? > > Thanks! > > > > Cathy Sarisky From vserver.error@solucorp.qc.ca Thu Jul 25 04:58:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6P8wTiB000892; Thu, 25 Jul 2002 04:58:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6P8g1u31571 for vserver.list; Thu, 25 Jul 2002 04:42:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from vmail.db (bigalke65.insol.de [62.80.100.65] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6P8g0Y31567 for ; Thu, 25 Jul 2002 04:42:00 -0400 Received: from localhost (vmail.db [192.168.0.208]) by vmail.db (8.12.3/8.12.3/SuSE Linux 0.6) with ESMTP id g6P8f9Ap001061 for ; Thu, 25 Jul 2002 10:41:09 +0200 Received: from 192.168.0.145 ( [192.168.0.145]) as user dieter@vmail.db by vmail.db with HTTP; Thu, 25 Jul 2002 10:41:09 +0200 Message-ID: <1027586469.3d3fb9a59c2dc@vmail.db> Date: Thu, 25 Jul 2002 10:41:09 +0200 From: Dieter Bigalke To: vserver@solucorp.qc.ca Subject: Re: [vserver] ssh -X vserver References: <1027470691.13106.1285.camel@ganymede> <3D3E5BF9.B34E2FA7@silicide.dk> <20020724124419.B16801@4t2.com> <1027510772.3d3e91f4369a4@vmail.db> <1027545762.7205.4.camel@ganymede> In-Reply-To: <1027545762.7205.4.camel@ganymede> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.1 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 839 Zitat von Fran Firman : > That changed it from a display of localhost:10 to wanquery:10 which is a > start, but it still doesn't work. > > Following is the transcript. ...... > Last login: Thu Jul 25 09:23:47 2002 from 210.54.11.22 > fran@wanquery:~$ echo $DISPLAY > wanquery:11.0 ^^^^^^^^^^^^^^^^^ why 11.0 ? it has to be wanquery:10.0 ..... > > Cheers > > Fran > Dieter ------------------------------------------------- This mail sent through IMP: http://horde.org/imp/ From vserver.error@solucorp.qc.ca Thu Jul 25 07:55:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6PBtMiB001785; Thu, 25 Jul 2002 07:55:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6PBWIM04998 for vserver.list; Thu, 25 Jul 2002 07:32:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from bdep.gov.br ([200.173.218.210]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6PBWHY04994 for ; Thu, 25 Jul 2002 07:32:18 -0400 Received: (qmail 2503 invoked by uid 502); 25 Jul 2002 11:31:55 -0000 Received: from unknown (HELO bdep.gov.br) (10.20.1.12) by mail.bdep.gov.br with SMTP; 25 Jul 2002 11:31:55 -0000 Sender: agsb@solucorp.qc.ca Message-ID: <3D3FF2EC.56E7E2C2@bdep.gov.br> Date: Thu, 25 Jul 2002 09:45:32 -0300 From: Alvaro Gomes Sobral Barcellos X-Mailer: Mozilla 4.79 [en] (X11; U; Linux 2.4.18 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] ctx-12 and gcc 3.1 References: <1027470691.13106.1285.camel@ganymede> <3D3E5BF9.B34E2FA7@silicide.dk> <20020724124419.B16801@4t2.com> <1027510772.3d3e91f4369a4@vmail.db> <1027545762.7205.4.camel@ganymede> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 840 hello, I try to compile vserver tools using glibc-2.2.5 and gcc 3.1 suite, but can't, its stop at some headers (pfstream.h) and class files. any tips or port to C ??? []s agsb From vserver.error@solucorp.qc.ca Thu Jul 25 14:37:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6PIariB004836; Thu, 25 Jul 2002 14:36:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6PIIBt17493 for vserver.list; Thu, 25 Jul 2002 14:18:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp012.mail.yahoo.com (smtp012.mail.yahoo.com [216.136.173.32]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6PIIAY17489 for ; Thu, 25 Jul 2002 14:18:10 -0400 Received: from p0016c74ea.us.kpmg.com (HELO laptop1) (isoga2001@199.207.253.101 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 25 Jul 2002 18:18:09 -0000 From: "dave" To: Subject: [vserver] Vserver Introduction Guide for beginners Date: Thu, 25 Jul 2002 14:17:58 -0400 Message-ID: <53A3C10BA714D511BA9300805FA7FB2A07E2E31A@usmnyexc05.us.kworld.kpmg.com> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0012_01C233E6.14B69580" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 841 This is a multi-part message in MIME format. ------=_NextPart_000_0012_01C233E6.14B69580 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Hi Ho! I'm new to VServers and I must say I'm very impressed! I set a few up last night on my lil' linux box with out any real hassles. I've written up a quick introduction guide to help other newbies. It's at http://caperdu.homelinux.net:8000/vservIntro.html thx - Keep up the good work dave ------=_NextPart_000_0012_01C233E6.14B69580 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Message
Hi=20 Ho!
 
I'm = new to VServers=20 and I must say I'm very impressed! I set a few up last night on my lil' = linux=20 box with out any real hassles. I've written up a quick introduction = guide to=20 help other newbies. It's at http://caperdu= .homelinux.net:8000/vservIntro.html
 
thx - = Keep up the=20 good work
 
dave
------=_NextPart_000_0012_01C233E6.14B69580-- From vserver.error@solucorp.qc.ca Thu Jul 25 17:34:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6PLXniB006400; Thu, 25 Jul 2002 17:33:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6PLGcl22082 for vserver.list; Thu, 25 Jul 2002 17:16:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from uhura.netgate.net.nz (uhura.netgate.net.nz [202.37.247.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6PLGbY22076 for ; Thu, 25 Jul 2002 17:16:38 -0400 Received: from ganymede (210-54-11-22.ipsm.net.nz [210.54.11.22]) by uhura.netgate.net.nz (8.11.3/8.11.3) with ESMTP id g6PLGaF18799 for ; Fri, 26 Jul 2002 09:16:36 +1200 (NZST) Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 17XpuQ-0005jv-00 for ; Fri, 26 Jul 2002 09:12:30 +1200 Subject: Re: [vserver] ssh -X vserver From: Fran Firman To: vserver In-Reply-To: <1027586469.3d3fb9a59c2dc@vmail.db> References: <1027470691.13106.1285.camel@ganymede> <3D3E5BF9.B34E2FA7@silicide.dk> <20020724124419.B16801@4t2.com> <1027510772.3d3e91f4369a4@vmail.db> <1027545762.7205.4.camel@ganymede> <1027586469.3d3fb9a59c2dc@vmail.db> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-EV5Ssg4q++GBhym9jj6V" X-Mailer: Ximian Evolution 1.0.7 Date: 26 Jul 2002 09:12:29 +1200 Message-Id: <1027631550.22011.0.camel@ganymede> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 842 --=-EV5Ssg4q++GBhym9jj6V Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Only if you are the first one in.... ssh automatically increases the screen number as more log in. F. On Thu, 2002-07-25 at 20:41, Dieter Bigalke wrote: > Zitat von Fran Firman : >=20 > > That changed it from a display of localhost:10 to wanquery:10 which is = a > > start, but it still doesn't work. > >=20 > > Following is the transcript. >=20 > ...... >=20 > > Last login: Thu Jul 25 09:23:47 2002 from 210.54.11.22 > > fran@wanquery:~$ echo $DISPLAY > > wanquery:11.0 > ^^^^^^^^^^^^^^^^^ > why 11.0 ? it has to be wanquery:10.0=20 >=20 > ..... > =20 > >=20 > > Cheers > >=20 > > Fran > >=20 >=20 > Dieter >=20 > ------------------------------------------------- > This mail sent through IMP: http://horde.org/imp/ >=20 >=20 --=-EV5Ssg4q++GBhym9jj6V Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9QGm9v1V2oVWAPhYRAhyPAJ4+Cf6ZcPB5OGAUFfnd61ERndyECQCeP2gW GHH/h9o9ad1Zthy8lppF8T0= =4ghn -----END PGP SIGNATURE----- --=-EV5Ssg4q++GBhym9jj6V-- From vserver.error@solucorp.qc.ca Thu Jul 25 19:29:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6PNTgiB007218; Thu, 25 Jul 2002 19:29:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6PN5SO24960 for vserver.list; Thu, 25 Jul 2002 19:05:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from uhura.netgate.net.nz (uhura.netgate.net.nz [202.37.247.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6PN5RY24956 for ; Thu, 25 Jul 2002 19:05:27 -0400 Received: from ganymede (210-54-11-22.ipsm.net.nz [210.54.11.22]) by uhura.netgate.net.nz (8.11.3/8.11.3) with ESMTP id g6PN5QF19409 for ; Fri, 26 Jul 2002 11:05:26 +1200 (NZST) Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 17Xrbj-0007Fk-00 for ; Fri, 26 Jul 2002 11:01:19 +1200 Subject: Re: [vserver] ssh -X vserver From: Fran Firman To: vserver In-Reply-To: <1027631550.22011.0.camel@ganymede> References: <1027470691.13106.1285.camel@ganymede> <3D3E5BF9.B34E2FA7@silicide.dk> <20020724124419.B16801@4t2.com> <1027510772.3d3e91f4369a4@vmail.db> <1027545762.7205.4.camel@ganymede> <1027586469.3d3fb9a59c2dc@vmail.db> <1027631550.22011.0.camel@ganymede> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-hnnpsumI4srCKtpz6Hmv" X-Mailer: Ximian Evolution 1.0.7 Date: 26 Jul 2002 11:01:17 +1200 Message-Id: <1027638079.22011.5.camel@ganymede> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 843 --=-hnnpsumI4srCKtpz6Hmv Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Well Just to let everyone know, the ssh -x option is now working fine. I only did the change for the X11UseLocalhost no and it is now working. Go figure as to why it didn't before. Anyway Thanks for all you help. Fran On Fri, 2002-07-26 at 09:12, Fran Firman wrote: > Only if you are the first one in.... >=20 > ssh automatically increases the screen number as more log in. >=20 > F. >=20 > On Thu, 2002-07-25 at 20:41, Dieter Bigalke wrote: > > Zitat von Fran Firman : > >=20 > > > That changed it from a display of localhost:10 to wanquery:10 which i= s a > > > start, but it still doesn't work. > > >=20 > > > Following is the transcript. > >=20 > > ...... > >=20 > > > Last login: Thu Jul 25 09:23:47 2002 from 210.54.11.22 > > > fran@wanquery:~$ echo $DISPLAY > > > wanquery:11.0 > > ^^^^^^^^^^^^^^^^^ > > why 11.0 ? it has to be wanquery:10.0=20 > >=20 > > ..... > > =20 > > >=20 > > > Cheers > > >=20 > > > Fran > > >=20 > >=20 > > Dieter > >=20 > > ------------------------------------------------- > > This mail sent through IMP: http://horde.org/imp/ > >=20 > >=20 >=20 --=-hnnpsumI4srCKtpz6Hmv Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9QIM9v1V2oVWAPhYRAgw6AKCrUO09rQ4YOALvdlCAawx8e94NwgCgpacU wo5RCTLAhpHvchPutF1bvHE= =/aJ5 -----END PGP SIGNATURE----- --=-hnnpsumI4srCKtpz6Hmv-- From vserver.error@solucorp.qc.ca Fri Jul 26 04:51:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6Q8pXiB011329; Fri, 26 Jul 2002 04:51:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6Q7Xii03389 for vserver.list; Fri, 26 Jul 2002 03:33:44 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6Q7XiY03385 for ; Fri, 26 Jul 2002 03:33:44 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17XzbW-0001tr-00 for ; Fri, 26 Jul 2002 09:33:38 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D40FB52.828905A3@silicide.dk> Date: Fri, 26 Jul 2002 09:33:38 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] ssh -X vserver References: <1027470691.13106.1285.camel@ganymede> <3D3E5BF9.B34E2FA7@silicide.dk> <20020724124419.B16801@4t2.com> <1027510772.3d3e91f4369a4@vmail.db> <1027545762.7205.4.camel@ganymede> <1027586469.3d3fb9a59c2dc@vmail.db> <1027631550.22011.0.camel@ganymede> <1027638079.22011.5.camel@ganymede> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17XzbW-0001tr-00*DnlNI4bLw82* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 844 Fran Firman wrote: > > Well Just to let everyone know, the ssh -x option is now working fine. small x ?? are you sure ?? " -x Disables X11 forwarding. -X Enables X11 forwarding. This can also be specified on a per-host basis in a configuration file. " JonB From vserver.error@solucorp.qc.ca Fri Jul 26 05:07:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6Q976iB011414; Fri, 26 Jul 2002 05:07:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6Q7WV503367 for vserver.list; Fri, 26 Jul 2002 03:32:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6Q7WUY03363 for ; Fri, 26 Jul 2002 03:32:31 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17XzaK-0001ti-00 for ; Fri, 26 Jul 2002 09:32:24 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D40FB08.EA7B0AB4@silicide.dk> Date: Fri, 26 Jul 2002 09:32:24 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver Introduction Guide for beginners References: <53A3C10BA714D511BA9300805FA7FB2A07E2E31A@usmnyexc05.us.kworld.kpmg.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17XzaK-0001ti-00*sE5Sv/erCqQ* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 845 is it just me, or is the site not working correctly ? JonB From vserver.error@solucorp.qc.ca Fri Jul 26 08:51:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6QCpLiB012616; Fri, 26 Jul 2002 08:51:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6QCAxj10533 for vserver.list; Fri, 26 Jul 2002 08:10:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6QCAwY10529 for ; Fri, 26 Jul 2002 08:10:59 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g6QCAsH24360 for ; Fri, 26 Jul 2002 05:10:54 -0700 Date: Fri, 26 Jul 2002 05:10:54 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] Vserver Introduction Guide for beginners In-Reply-To: <3D40FB08.EA7B0AB4@silicide.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 846 On Fri, 26 Jul 2002, Jon Bendtsen wrote: > is it just me, or is the site not working correctly ? Just you :-) I got there yesterday when I saw the post and just tried now 5:10AM Pacific 26 Jul and got there. Even tried a reload so I wasn't using the cached version. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Fri Jul 26 10:28:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6QES6iB013700; Fri, 26 Jul 2002 10:28:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6QDXUL12320 for vserver.list; Fri, 26 Jul 2002 09:33:30 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp013.mail.yahoo.com (smtp013.mail.yahoo.com [216.136.173.57]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6QDXTY12316 for ; Fri, 26 Jul 2002 09:33:29 -0400 Received: from p0016c74ea.us.kpmg.com (HELO laptop1) (isoga2001@199.207.253.101 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 26 Jul 2002 13:33:28 -0000 From: "dave" To: Subject: RE: [vserver] Vserver Introduction Guide for beginners Date: Fri, 26 Jul 2002 09:33:14 -0400 Message-ID: <53A3C10BA714D511BA9300805FA7FB2A07E2E320@usmnyexc05.us.kworld.kpmg.com> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_0001_01C23487.7841E950" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <53A3C10BA714D511BA9300805FA7FB2A07D1E2F2@usmnyexc05.us.kworld.kpmg.com> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 847 This is a multi-part message in MIME format. ------=_NextPart_000_0001_01C23487.7841E950 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Hi I've attached the html file (sans images) in case you are still having problems It needs another going over to improve the look and maybe some more detail in places but I'm working on trying to get my (post-nuke) website working properly first dave -----Original Message----- From: Roderick A. Anderson [mailto:raanders@acm.org] Sent: Friday, July 26, 2002 8:11 AM To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver Introduction Guide for beginners On Fri, 26 Jul 2002, Jon Bendtsen wrote: > is it just me, or is the site not working correctly ? Just you :-) I got there yesterday when I saw the post and just tried now 5:10AM Pacific 26 Jul and got there. Even tried a reload so I wasn't using the cached version. Rod -- "Open Source Software - Sometimes you get more than you paid for..." ------=_NextPart_000_0001_01C23487.7841E950 Content-Type: text/html; name="Vserver_First_steps.html" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="Vserver_First_steps.html" Vserver First steps

Setting up Your First VServer

Platform: Redhat GNU/Linux 7.2

Requirements:1GB free disk

Introduction

Vservers are a great concept that lets you create many virtual servers = inside 1 GNU/Linux server. This is great for virtual hosting, lab tests, = security restrictions and just playing. The Vserver concept is very efficient in = terms of memory and processor use (I have 3 Vservers on this server, a cranky = 380MHz K6 in 128MB RAM). There is a VServer homepage = with mailing list and FAQ

Installing the software

Download the following files from ftp://ftp.solucorp.qc.ca/pu= b/vserver to somewhere under your home directory. I have shown the current latest = versions that I used when setting up my VServer.
  • Linux kernel with Security contexts - = kernel-2.4.18ctx-12.tar.gz
  • Virtual Server software - vserver-0.18-1.src.rpm
  • Virtual Server admin scripts - vserver-admin-0.18-1.i386.rpm
You will also need the Linux config libraries from ftp://ftp.solucorp.qc.ca= /pub/linuxconf/ :
  • linuxconf-lib-1.28r1-1.i386.rpm
  • linuxconf-util-1.28r1-1.i386.rpm
Untar and ungzip the kernel file. This can be performed in 1 = operation,
tar zxvf kernel-2.4.18ctx-12.tar.gz

Become root
Copy the contents of the newly created boot dir into /boot
Copy the newly created lib/modules/2.4.18ctx-12/ directory to = /lib/modules

Update your boot loader. For lilo, edit /etc/lilo.conf by adding the = following section

image=3D/boot/vmlinuz-2.4.18ctx-12
    label=3Dlinux2.4.18ctx-12
    read-only
    root=3D<your boot partition>

NB: My lilo complained that this label was too long. If necessary use a = shorter name like ‘vserver’
The ‘root=3D’ line can be set to whatever your current = kernel’s ‘root=3D’ line is.
You can set the ‘default=3D’ parameter at the top of the = file to your new label. Your new kernel will be booted automatically. Handy if you don’t = have console access to the server.

Next run /sbin/lilo for the changes to take effect.
Reboot your computer

Assuming everything comes up OK -
Install the linuxconf-lib and linuxconf-util packages
rpm -i linuxconf-lib-1.28r1-1.i386.rpm
rpm -i linuxconf-util-1.28r1-1.i386.rpm

Then install the vserver packages
rpm -i vserver-0.18-1.i386.rpm
rpm -i vserver-admin-0.18-1.i386.rpm

The software is installed and now ready to be configured!

Creating your first vserver

A vserver’s configuration is captured in text files under = /etc/vserver. However, there is a easy to use utility, newvserver, that makes creating a new = vserver very easy.
Run /usr/sbin/newvserver to bring up the text-mode configure tool
Fill in the details for your new vserver. Use the arrow keys to move = between lines. Tab changes between the fields and Accept / Cancel. If Tab = doesn’t work (It didn’t with me using TerraTerm) then quit newvserver = (escape a few times) and type:
Export TERM=3Dpcansi
The re-run newvserver and your tab key should work
See the screen shots for how I configured my first VServer
Tab onto ‘Accept’ and press Enter. Nothing will appear to = happen but your VServer is being created. During this time, most of the files that make = up your existing server are being copied to /vserver/<server-name> to make up your virtual server. It takes approximately 10 mins to copy the = files across.

What next? Testing your vserver

Start the vserver by running:
/usr/sbin/vserver <server-name> start
You should see something like the following screenshot as the server = starts up. Now you can enter your vserver by running:
/usr/sbin/vserver <vserver-name> enter
Have a look around. Try running ifconfig, top, ps –ef, df and you = will see how your new server appears
The new server is a copy of your original server. It probably has many = packages running that you wont need in your vserver. I recommend you go and = remove all the stuff you don’t need. (Like X, GNOME, etc). Alternatively, = when you run newvserver,

Setting up a webserver

If you have a web server on the real, root server you will need to = ensure that it is bound to just the real servers IP address. By default it will be bound to all local IPs including those of the vservers. This means = that if you point your web browser at one of the vserver IPs it is the root = webserver that will respond.
To remedy this, stop your root webserver
/etc/init.d/httpd stop
and restart it using the provided vserver-aware httpd start script
/etc/init.d/v_httpd start
This will stat apache bound to the root servers IP address
Stop and start the vserver and the vserver’s copy of apache will = bind successfully to its own IP address
Vserver web1 stop
Vserver web1 start

To make the change permanent:

[root@caperdu rc3.d]# cd /etc/rc3.d/
[root@caperdu rc3.d]# rm S80httpd
rm: remove `S80httpd'? y
[root@caperdu rc3.d]# ln -s ../init.d/v_httpd S80httpd
[root@caperdu rc3.d]# ls -l S80httpd
lrwxrwxrwx   1 root   root   17 Jul 25 = 12:37 S80httpd -> ../init.d/v_httpd

Why Ping doesn’t work:

If you enter your vserver and try to ping something you will get the = following  error:
[root@vserver:web1 /]ping www.yahoo.com
ping: icmp open socket: Operation not permitted

Vservers permissions are governed by ‘capabilities.’ These = are a list of permissions that a vserver has and covers access to resources that might be dangerous in some contexts. The default vserver config created by = newvserver doesn’t allow a vserver access to raw ICMP sockets. This can be = changed by editing /etc/vserver/<vserver-name>.conf
Change the line
S_CAPS=3D""
To read
S_CAPS=3D"CAP_NET_RAW"

Then start and stop the vserver, log back in and try pinging a target. = All should work well.
More info on capabilities here: = http://www.solucorp.qc.ca/miscprj/s_context.hc?s1=3D2&s2=3D4&s3=3D= 0&s4=3D0&full=3D0&prjstate=3D1&nodoc=3D0

Send comments / suggestions to vserverBoy@isoga.net
------=_NextPart_000_0001_01C23487.7841E950-- From vserver.error@solucorp.qc.ca Fri Jul 26 11:03:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6QF3MiB013949; Fri, 26 Jul 2002 11:03:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6QDX4T12313 for vserver.list; Fri, 26 Jul 2002 09:33:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6QDX4Y12309 for ; Fri, 26 Jul 2002 09:33:04 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17Y5DE-00027j-00 for ; Fri, 26 Jul 2002 15:32:56 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D414F87.EFCFE2F7@silicide.dk> Date: Fri, 26 Jul 2002 15:32:55 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver Introduction Guide for beginners References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17Y5DE-00027j-00*4EXh21FB13Q* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 848 "Roderick A. Anderson" wrote: > > On Fri, 26 Jul 2002, Jon Bendtsen wrote: > > > is it just me, or is the site not working correctly ? > > Just you :-) I got there yesterday when I saw the post and just tried now > 5:10AM Pacific 26 Jul and got there. Even tried a reload so I wasn't > using the cached version. It still appears "strange" to me. There is no guide at the frontpage. JonB From vserver.error@solucorp.qc.ca Fri Jul 26 17:07:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6QL7NiB016919; Fri, 26 Jul 2002 17:07:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6QJXkn20504 for vserver.list; Fri, 26 Jul 2002 15:33:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.catv.telemach.ro ([212.146.66.245]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6QJXiY20500 for ; Fri, 26 Jul 2002 15:33:45 -0400 Received: from 127.0.0.1 (localhost [127.0.0.1]) by dummy.domain.name (Postfix) with SMTP id 437A118938 for ; Fri, 26 Jul 2002 22:33:29 +0300 (EEST) Received: from mach2.catv.telemach.ro (mach2.catv.telemach.ro [10.85.0.1]) by mail.catv.telemach.ro (Postfix) with ESMTP id 1D46318936 for ; Fri, 26 Jul 2002 22:33:29 +0300 (EEST) Date: Fri, 26 Jul 2002 22:33:29 +0300 (EEST) From: Razvan Cosma X-X-Sender: razvan@mach2.catv.telemach.ro To: "vserver@solucorp.qc.ca" Subject: Re: [vserver] Vserver Introduction Guide for beginners In-Reply-To: <3D414F87.EFCFE2F7@silicide.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 849 On Fri, 26 Jul 2002, Jon Bendtsen wrote: > "Roderick A. Anderson" wrote: > > > > On Fri, 26 Jul 2002, Jon Bendtsen wrote: > > > > > is it just me, or is the site not working correctly ? > > > > Just you :-) I got there yesterday when I saw the post and just tried now > > 5:10AM Pacific 26 Jul and got there. Even tried a reload so I wasn't > > using the cached version. > > It still appears "strange" to me. There is no guide at the frontpage. > There could be a problem with your proxy (I suspect you are using one). There are a lot of options in eg squid that would prevent you to see the recent version of a page: refresh_pattern, override-expire, override-lastmod, etcetc. From vserver.error@solucorp.qc.ca Sat Jul 27 11:26:48 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6RFQNiB024017; Sat, 27 Jul 2002 11:26:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6REZvq10192 for vserver.list; Sat, 27 Jul 2002 10:35:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6REZuY10188 for ; Sat, 27 Jul 2002 10:35:57 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17YSfc-0002LB-00 for ; Sat, 27 Jul 2002 16:35:48 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D42AFC4.D1672501@silicide.dk> Date: Sat, 27 Jul 2002 16:35:48 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver Introduction Guide for beginners References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17YSfc-0002LB-00*VCDVSZ8gUxQ* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 850 Razvan Cosma wrote: > > On Fri, 26 Jul 2002, Jon Bendtsen wrote: > > > "Roderick A. Anderson" wrote: > > > > > > On Fri, 26 Jul 2002, Jon Bendtsen wrote: > > > > > > > is it just me, or is the site not working correctly ? > > > > > > Just you :-) I got there yesterday when I saw the post and just tried now > > > 5:10AM Pacific 26 Jul and got there. Even tried a reload so I wasn't > > > using the cached version. > > > > It still appears "strange" to me. There is no guide at the frontpage. > > > There could be a problem with your proxy (I suspect you are using one). > There are a lot of options in eg squid that would prevent you to see the > recent version of a page: refresh_pattern, override-expire, > override-lastmod, etcetc. Not to my knowledge, but maybe my ISP has a secret one i use without my knowledge. JonB From vserver.error@solucorp.qc.ca Sat Jul 27 13:29:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6RHTZiB024708; Sat, 27 Jul 2002 13:29:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6RFtFX11967 for vserver.list; Sat, 27 Jul 2002 11:55:15 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from web9806.mail.yahoo.com (web9806.mail.yahoo.com [216.136.129.29]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6RFtEY11962 for ; Sat, 27 Jul 2002 11:55:14 -0400 Message-ID: <20020727155513.13791.qmail@web9806.mail.yahoo.com> Received: from [208.58.108.211] by web9806.mail.yahoo.com via HTTP; Sat, 27 Jul 2002 08:55:13 PDT Date: Sat, 27 Jul 2002 08:55:13 -0700 (PDT) From: dave Subject: Re: [vserver] Vserver Introduction Guide for beginners To: vserver@solucorp.qc.ca In-Reply-To: <3D42AFC4.D1672501@silicide.dk> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 851 the webserver is on port 8000 (Linux box under the TV at home). Some places filter certain outbound ports unless you go through their Web proxy dave --- Jon Bendtsen wrote: > Razvan Cosma wrote: > > > > On Fri, 26 Jul 2002, Jon Bendtsen wrote: > > > > > "Roderick A. Anderson" wrote: > > > > > > > > On Fri, 26 Jul 2002, Jon Bendtsen wrote: > > > > > > > > > is it just me, or is the site not working correctly ? > > > > > > > > Just you :-) I got there yesterday when I saw the post and > just tried now > > > > 5:10AM Pacific 26 Jul and got there. Even tried a reload so > I wasn't > > > > using the cached version. > > > > > > It still appears "strange" to me. There is no guide at the > frontpage. > > > > > There could be a problem with your proxy (I suspect you are using > one). > > There are a lot of options in eg squid that would prevent you to > see the > > recent version of a page: refresh_pattern, override-expire, > > override-lastmod, etcetc. > > Not to my knowledge, but maybe my ISP has a secret one i use > without my knowledge. > > > > JonB __________________________________________________ Do You Yahoo!? Yahoo! Health - Feel better, live better http://health.yahoo.com From vserver.error@solucorp.qc.ca Sun Jul 28 17:17:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6SLHGiB014508; Sun, 28 Jul 2002 17:17:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6SKaxO22794 for vserver.list; Sun, 28 Jul 2002 16:36:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from uhura.netgate.net.nz (uhura.netgate.net.nz [202.37.247.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6SKavY22790 for ; Sun, 28 Jul 2002 16:36:58 -0400 Received: from ganymede (210-54-11-22.ipsm.net.nz [210.54.11.22]) by uhura.netgate.net.nz (8.11.3/8.11.3) with ESMTP id g6SKauF06272 for ; Mon, 29 Jul 2002 08:36:56 +1200 (NZST) Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 17YuiY-0002GF-00 for ; Mon, 29 Jul 2002 08:32:42 +1200 Subject: Re: [vserver] ssh -X vserver From: Fran Firman To: vserver In-Reply-To: <3D40FB52.828905A3@silicide.dk> References: <1027470691.13106.1285.camel@ganymede> <3D3E5BF9.B34E2FA7@silicide.dk> <20020724124419.B16801@4t2.com> <1027510772.3d3e91f4369a4@vmail.db> <1027545762.7205.4.camel@ganymede> <1027586469.3d3fb9a59c2dc@vmail.db> <1027631550.22011.0.camel@ganymede> <1027638079.22011.5.camel@ganymede> <3D40FB52.828905A3@silicide.dk> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-21nZ8JkCtJ3omzVctK0Z" X-Mailer: Ximian Evolution 1.0.7 Date: 29 Jul 2002 08:32:40 +1200 Message-Id: <1027888362.8658.0.camel@ganymede> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 852 --=-21nZ8JkCtJ3omzVctK0Z Content-Type: text/plain Content-Transfer-Encoding: quoted-printable I know - typo... 8-) F. BTW gotta say... I luv vservers.... Thanks to all. On Fri, 2002-07-26 at 19:33, Jon Bendtsen wrote: > Fran Firman wrote: > >=20 > > Well Just to let everyone know, the ssh -x option is now working fine. >=20 > small x ?? are you sure ?? > " -x Disables X11 forwarding. >=20 > -X Enables X11 forwarding. This can also be specified on a > per-host > basis in a configuration file. > " >=20 >=20 >=20 >=20 >=20 > JonB >=20 --=-21nZ8JkCtJ3omzVctK0Z Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9RFTov1V2oVWAPhYRAtirAJ9I5INAti4yh6cSf0V7vQ48x3kWKwCgt5Cz iufLRWA+04bH671clzhPnn4= =HUAU -----END PGP SIGNATURE----- --=-21nZ8JkCtJ3omzVctK0Z-- From vserver.error@solucorp.qc.ca Mon Jul 29 04:44:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6T8iJiB018785; Mon, 29 Jul 2002 04:44:20 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6T8KpT04352 for vserver.list; Mon, 29 Jul 2002 04:20:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6T8KoY04348 for ; Mon, 29 Jul 2002 04:20:50 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17Z5lj-0002sX-00 for ; Mon, 29 Jul 2002 10:20:43 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D44FADB.3EF0E120@silicide.dk> Date: Mon, 29 Jul 2002 10:20:43 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Vserver Introduction Guide for beginners References: <20020727155513.13791.qmail@web9806.mail.yahoo.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17Z5lj-0002sX-00*QFc2XtdyBWI* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 853 dave wrote: > > the webserver is on port 8000 (Linux box under the TV at home). Some > places filter certain outbound ports unless you go through their Web > proxy Well, i'm thr sysadm, so it would have to be the ISP installing the filter, and i doubt that. JonB From vserver.error@solucorp.qc.ca Mon Jul 29 09:14:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6TDE7iB020042; Mon, 29 Jul 2002 09:14:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6TCfht10197 for vserver.list; Mon, 29 Jul 2002 08:41:43 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blue.zolotek.net (www.zolotek.net [209.61.188.119] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6TCfgY10193 for ; Mon, 29 Jul 2002 08:41:42 -0400 Received: from dial-62-64-212-27.access.uk.tiscali.com (dial-62-64-230-130.access.uk.tiscali.com [62.64.230.130]) by blue.zolotek.net (8.12.5/8.12.5) with SMTP id g6TCs7hK013907; Mon, 29 Jul 2002 13:54:08 +0100 Message-Id: <200207291254.g6TCs7hK013907@blue.zolotek.net> From: "Lyn St George" To: "VS" , "VS" Date: Mon, 29 Jul 2002 13:41:56 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: [vserver] MySQL Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 854 Hi all Just started getting vservers up and running. Excellent stuff, and most of it works extremely well. MySQL is proving a problem though - "Can't start server : Bind on unix socket: Permission denied" This is despite setting different socket and port args, and happens even if the main server's MySQL is stopped. I've tried changing all the MySQL bin/ stuff to simple copies instead of hard links, but the same error crops up no matter what I do. I've RTFM closely and done everything suggested there ... I'm at my wit's end on this - does anyone have any experience, insight, or words of wisdom on this one?? (please, before I hit the whiskey bottle ....) - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Mon Jul 29 10:55:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6TEtAiB020788; Mon, 29 Jul 2002 10:55:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6TEbJX13168 for vserver.list; Mon, 29 Jul 2002 10:37:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from trillion_main.trillion21.com (ftp.trillion21.com [208.63.109.12]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6TEbIY13164 for ; Mon, 29 Jul 2002 10:37:19 -0400 Received: from test1.trillion21.com (TEST1 [208.63.109.123]) by trillion_main.trillion21.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 38RKBZTX; Mon, 29 Jul 2002 09:32:28 -0500 Message-Id: <4.3.2.7.0.20020729091158.00d35740@mail.trillion21.com> X-Sender: engled@mail.trillion21.com X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Mon, 29 Jul 2002 09:35:39 -0500 To: vserver@solucorp.qc.ca From: Darryl Subject: [vserver] Kernel help In-Reply-To: <200207291254.g6TCs7hK013907@blue.zolotek.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 855 Could I get some help with a kernel install problem, if I need to go else where just point me there. I'm trying to install kernel-2.4.18ctxsmp-12.tar.gz from the Virtual private server page. I am currently running 2.4.7-10smp, so I downloaded linux-2.4.18.tar.gz and compiled with "make oldconfig" after restarting I cant get either kernel to load and get this error: Request_module[block_major_8 : root fs not mounted VFS : Cannot open root device "805 or 08:05" Please append a correct "root=" boot option Kernel Panic : VFS : unable to mount root FS on 08:05 This is a RedHat 7.2 system on a dual proc Dell Poweredge 2500 I have a copy of my lilo.conf below and I did run /sbin/lilo after making the changes. I ran rdev and got "/dev/sda5 /" so I think I have it set right in lilo. It will still boot the vmlinuz-2.4.7-10smp Kernel. prompt timeout=50 default=linux boot=/dev/sda map=/boot/map install=/boot/boot.b message=/boot/message linear image=/boot/vmlinuz-2.4.7-10smp label=linux initrd=/boot/initrd-2.4.7-10smp.img read-only root=/dev/sda5 image=/boot/vmlinuz-2.4.7-10 label=linux-up initrd=/boot/initrd-2.4.7-10.img read-only root=/dev/sda5 image=/boot/vmlinuz-2.4.18ctxsmp-12 label=vserver read-only root=/dev/sda5 image=/boot/bzImage Label=newkernel-18 read-only root=/dev/sda5 Darryl From vserver.error@solucorp.qc.ca Mon Jul 29 11:39:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6TFd4iB021390; Mon, 29 Jul 2002 11:39:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6TFBBF14049 for vserver.list; Mon, 29 Jul 2002 11:11:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6TFBBY14045 for ; Mon, 29 Jul 2002 11:11:11 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id CD3CC7A5CB; Mon, 29 Jul 2002 16:11:10 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id CC441921F9 for ; Mon, 29 Jul 2002 16:11:10 +0100 (BST) Date: Mon, 29 Jul 2002 16:11:10 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: vserver@solucorp.qc.ca Subject: Re: [vserver] Kernel help In-Reply-To: <4.3.2.7.0.20020729091158.00d35740@mail.trillion21.com> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 856 On Mon, 29 Jul 2002, Darryl wrote: > Request_module[block_major_8 : root fs not mounted > VFS : Cannot open root device "805 or 08:05" > Please append a correct "root=" boot option > Kernel Panic : VFS : unable to mount root FS on 08:05 Have you got SCSI compiled in? (and Ext3/SomeOtherFS if you're not using Ext2)? Have you re-run lilo after making changes? This problem isn't vserver related. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Jul 29 15:08:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6TJ7kiB022952; Mon, 29 Jul 2002 15:07:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6TIkbT19215 for vserver.list; Mon, 29 Jul 2002 14:46:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6TIkaY19211 for ; Mon, 29 Jul 2002 14:46:36 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g6TIkYn23087 for ; Mon, 29 Jul 2002 11:46:34 -0700 Date: Mon, 29 Jul 2002 11:46:34 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] Kernel help In-Reply-To: <4.3.2.7.0.20020729091158.00d35740@mail.trillion21.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 857 On Mon, 29 Jul 2002, Darryl wrote: > I have a copy of my lilo.conf below and I did run /sbin/lilo after making > the changes. I ran rdev and got "/dev/sda5 /" so I think I have it set > right in lilo. It will still boot the vmlinuz-2.4.7-10smp Kernel. You need to mkinitrd and create an img file file since you're using SCSI. Check the list archives since I seem to remember asking this same question. I don't have the actual commands handy but I know it works since I did it on a SCSI system. If you don't find it in the archives check out google. I found some thing using 'mkinitrd example'. > image=/boot/vmlinuz-2.4.18ctxsmp-12 > label=vserver Then add the correct line here (initrd=/boot/vmlinuz-2.4.18ctxsmp-12.img) Cheers, Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Mon Jul 29 15:23:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6TJMWiB023090; Mon, 29 Jul 2002 15:22:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6TIuKb19471 for vserver.list; Mon, 29 Jul 2002 14:56:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6TIuKY19467 for ; Mon, 29 Jul 2002 14:56:20 -0400 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 4.10) id 17ZFgn-0005iI-00 for vserver@solucorp.qc.ca; Mon, 29 Jul 2002 15:56:17 -0300 Date: Mon, 29 Jul 2002 15:56:17 -0300 (ADT) From: James MacLean To: VS Subject: Re: [vserver] MySQL In-Reply-To: <200207291254.g6TCs7hK013907@blue.zolotek.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Scanner: exiscan for exim4 (http://duncanthrax.net/exiscan/) *17ZFgn-0005iI-00*66ze2nnwSgw* Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 858 On Mon, 29 Jul 2002, Lyn St George wrote: > Hi all > > Just started getting vservers up and running. Excellent > stuff, and most of it works extremely well. > > MySQL is proving a problem though - > "Can't start server : Bind on unix socket: Permission denied" Well, I remember having some simple problem getting mysqld to use its /tmp/mysql.sock, but I don't see anything special in my vserver.conf or my.conf (other than bind-address = 142.227.51.3) unless that commented line "# socket = " was what I had used? Anyhow, we have it running here in a vserver with an active /tmp/mysql.sock, so maybe if you strace mysqld when it starts, or try and run it directly instead of using safe_mysqld if that is what you are using? Just some loose thoughts, JES -- James B. MacLean macleajb@ednet.ns.ca Department of Education Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Tue Jul 30 00:33:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6U4WjiB027557; Tue, 30 Jul 2002 00:32:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6U47a331864 for vserver.list; Tue, 30 Jul 2002 00:07:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from si.moris.ru (si.moris.ru [213.242.26.56]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6U47YY31860 for ; Tue, 30 Jul 2002 00:07:35 -0400 Received: from kostia (cerber.moris.ru [213.242.26.58]) by si.moris.ru (8.9.3/8.9.3) with SMTP id IAA06736 for ; Tue, 30 Jul 2002 08:07:28 +0400 Message-ID: <003801c23787$4f6aff00$df01a8c0@kostia> From: "Dmitry Shestopyorov" To: References: <4.3.2.7.0.20020729091158.00d35740@mail.trillion21.com> Subject: Re: [vserver] Kernel help Date: Tue, 30 Jul 2002 09:09:40 +0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 859 > Could I get some help with a kernel install problem, if I need to go else > where just point me there. > > I'm trying to install kernel-2.4.18ctxsmp-12.tar.gz from the Virtual > private server page. I am currently running 2.4.7-10smp, so I downloaded > linux-2.4.18.tar.gz and compiled with "make oldconfig" after restarting I > cant get either kernel to load and get this error: > > Request_module[block_major_8 : root fs not mounted > VFS : Cannot open root device "805 or 08:05" > Please append a correct "root=" boot option > Kernel Panic : VFS : unable to mount root FS on 08:05 > > This is a RedHat 7.2 system on a dual proc Dell Poweredge 2500 > > I have a copy of my lilo.conf below and I did run /sbin/lilo after making > the changes. I ran rdev and got "/dev/sda5 /" so I think I have it set > right in lilo. It will still boot the vmlinuz-2.4.7-10smp Kernel. > > prompt > timeout=50 > default=linux Change this string to default=vservers .... From vserver.error@solucorp.qc.ca Tue Jul 30 10:54:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6UErbiB031870; Tue, 30 Jul 2002 10:53:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6UESZH13250 for vserver.list; Tue, 30 Jul 2002 10:28:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blue.zolotek.net (www.zolotek.net [209.61.188.119] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6UESYY13246 for ; Tue, 30 Jul 2002 10:28:34 -0400 Received: from dial-62-64-212-27.access.uk.tiscali.com (dial-62-64-207-74.access.uk.tiscali.com [62.64.207.74]) by blue.zolotek.net (8.12.5/8.12.5) with SMTP id g6UEew82018062 for ; Tue, 30 Jul 2002 15:41:00 +0100 Message-Id: <200207301441.g6UEew82018062@blue.zolotek.net> From: "Lyn St George" To: "vserver@solucorp.qc.ca" Date: Tue, 30 Jul 2002 15:28:52 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: Re: [vserver] MySQL Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 860 On Mon, 29 Jul 2002 15:56:17 -0300 (ADT), James MacLean wrote: >On Mon, 29 Jul 2002, Lyn St George wrote: > >> Hi all >> >> Just started getting vservers up and running. Excellent >> stuff, and most of it works extremely well. >> >> MySQL is proving a problem though - >> "Can't start server : Bind on unix socket: Permission denied" > >Well, I remember having some simple problem getting mysqld to use its >/tmp/mysql.sock, but I don't see anything special in my vserver.conf or >my.conf (other than bind-address = 142.227.51.3) unless that commented >line "# socket = " was what I had used? Ahh ... "..simple problem" - turns out I couldn't see the wood for the trees. One directory had the wrong ownership .. arrggghhhh. Thanks for the hint, and sorry for the trouble. >Anyhow, we have it running here in a vserver with an active >/tmp/mysql.sock, so maybe if you strace mysqld when it starts, or try and >run it directly instead of using safe_mysqld if that is what you are >using? > >Just some loose thoughts, >JES >-- >James B. MacLean macleajb@ednet.ns.ca >Department of Education >Nova Scotia, Canada >B3M 4B2 > > > - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Tue Jul 30 22:59:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6V2wjiB004791; Tue, 30 Jul 2002 22:58:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6V2SLX29987 for vserver.list; Tue, 30 Jul 2002 22:28:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mailman.ipsm.net.nz (smtp.ipsm.net.nz [202.50.116.129]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g6V2SJY29983 for ; Tue, 30 Jul 2002 22:28:20 -0400 Received: from localhost.localdomain ([210.54.11.22]) by mailman.ipsm.net.nz with Microsoft SMTPSVC(5.0.2195.4905); Wed, 31 Jul 2002 14:29:02 +1200 Subject: [vserver] raw sockets and icmp From: Fran Firman To: vserver Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-CMDvzP7gmv9Z6c9RRwxW" X-Mailer: Ximian Evolution 1.0.7 Date: 31 Jul 2002 14:23:58 +1200 Message-Id: <1028082238.12044.8.camel@ganymede> Mime-Version: 1.0 X-OriginalArrivalTime: 31 Jul 2002 02:29:02.0469 (UTC) FILETIME=[08AE3B50:01C2383A] Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 861 --=-CMDvzP7gmv9Z6c9RRwxW Content-Type: text/plain Content-Transfer-Encoding: quoted-printable >From within a vserver, if I ping from it, or use a raw socket (ie perl IO.pm module), the source ip address of the packet seems to come from the real ip address of the server, not the ip address of the vserver. Is there any way to fix this, so that the connection does come from the ip address of the vserver?. Thanks... Fran. --=-CMDvzP7gmv9Z6c9RRwxW Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9R0o9v1V2oVWAPhYRAs5IAKC4Mm/TXuDFpB87v5PyJVRrH2QjowCfR5YA GmunWKrUN3Ud9fxoy74uUec= =Xf/e -----END PGP SIGNATURE----- --=-CMDvzP7gmv9Z6c9RRwxW-- From vserver.error@solucorp.qc.ca Wed Jul 31 04:24:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6V8OViB007588; Wed, 31 Jul 2002 04:24:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6V83QU05594 for vserver.list; Wed, 31 Jul 2002 04:03:26 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from si.moris.ru (si.moris.ru [213.242.26.56]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6V83NY05590 for ; Wed, 31 Jul 2002 04:03:24 -0400 Received: from kostia (cerber.moris.ru [213.242.26.58]) by si.moris.ru (8.9.3/8.9.3) with SMTP id MAA29547 for ; Wed, 31 Jul 2002 12:03:21 +0400 Message-ID: <01b801c23871$6cf3eba0$df01a8c0@kostia> From: "Dmitry Shestopyorov" To: Subject: [vserver] troubles with sshd Date: Wed, 31 Jul 2002 13:05:32 +0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_01B5_01C23892.F3EB9B00" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 862 This is a multi-part message in MIME format. ------=_NextPart_000_01B5_01C23892.F3EB9B00 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: quoted-printable ssh-server doesn't start on virtual server. When sshd is trying to start it writes in logs: sshd[pid]: fatal: daemon() failed: Success ------=_NextPart_000_01B5_01C23892.F3EB9B00 Content-Type: text/html; charset="koi8-r" Content-Transfer-Encoding: quoted-printable
ssh-server doesn't start on virtual=20 server.
When sshd is trying to start it writes = in=20 logs:
sshd[pid]: fatal: daemon() failed:=20 Success
 
 
------=_NextPart_000_01B5_01C23892.F3EB9B00-- From vserver.error@solucorp.qc.ca Wed Jul 31 05:22:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6V9LgiB007889; Wed, 31 Jul 2002 05:21:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6V8qLi06854 for vserver.list; Wed, 31 Jul 2002 04:52:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6V8qKY06849 for ; Wed, 31 Jul 2002 04:52:20 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17ZpDI-0003gi-00 for ; Wed, 31 Jul 2002 10:52:12 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D47A53C.9D3F841D@silicide.dk> Date: Wed, 31 Jul 2002 10:52:12 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] troubles with sshd References: <01b801c23871$6cf3eba0$df01a8c0@kostia> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17ZpDI-0003gi-00*ZqktlFBFjeQ* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 863 Is something else running on port 22 ? Maybe in another vserver, or the root server ?? Did you ask it to bind to 0.0.0.0, or to a specific ip? JonB From vserver.error@solucorp.qc.ca Wed Jul 31 06:25:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6VAPDiB008215; Wed, 31 Jul 2002 06:25:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6V9SZZ07599 for vserver.list; Wed, 31 Jul 2002 05:28:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from si.moris.ru (si.moris.ru [213.242.26.56]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6V9SYY07595 for ; Wed, 31 Jul 2002 05:28:34 -0400 Received: from kostia (cerber.moris.ru [213.242.26.58]) by si.moris.ru (8.9.3/8.9.3) with SMTP id NAA01129 for ; Wed, 31 Jul 2002 13:28:34 +0400 Message-ID: <01e401c2387d$54936b10$df01a8c0@kostia> From: "Dmitry Shestopyorov" To: References: <01b801c23871$6cf3eba0$df01a8c0@kostia> <3D47A53C.9D3F841D@silicide.dk> Subject: Re: [vserver] troubles with sshd Date: Wed, 31 Jul 2002 14:30:45 +0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 864 > Is something else running on port 22 ? > Maybe in another vserver, or the root server ?? > > Did you ask it to bind to 0.0.0.0, or to a specific ip? > On port 22 in this vserver nothing is runnning. In other vservers and in root server on port 22 nothing is running too. From vserver.error@solucorp.qc.ca Wed Jul 31 06:30:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6VAUHiB008254; Wed, 31 Jul 2002 06:30:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6V9liV07991 for vserver.list; Wed, 31 Jul 2002 05:47:44 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from si.moris.ru (si.moris.ru [213.242.26.56]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6V9lhY07986 for ; Wed, 31 Jul 2002 05:47:43 -0400 Received: from kostia (cerber.moris.ru [213.242.26.58]) by si.moris.ru (8.9.3/8.9.3) with SMTP id NAA02003 for ; Wed, 31 Jul 2002 13:47:42 +0400 Message-ID: <01fb01c23880$011b2240$df01a8c0@kostia> From: "Dmitry Shestopyorov" To: References: <01b801c23871$6cf3eba0$df01a8c0@kostia> Subject: Re: [vserver] troubles with sshd Date: Wed, 31 Jul 2002 14:49:54 +0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_01F8_01C238A1.880B3080" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 865 This is a multi-part message in MIME format. ------=_NextPart_000_01F8_01C238A1.880B3080 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: quoted-printable ssh-server doesn't start on virtual server. When sshd is trying to start it writes in logs: sshd[pid]: fatal: daemon() failed: Success Please sorry. Problem was in me. I didn't make /dev/null in my = vserver. ------=_NextPart_000_01F8_01C238A1.880B3080 Content-Type: text/html; charset="koi8-r" Content-Transfer-Encoding: quoted-printable
 
ssh-server doesn't start on virtual=20 server.
When sshd is trying to start it = writes in=20 logs:
sshd[pid]: fatal: daemon() failed:=20 Success
 
Please sorry. Problem was in me. I = didn't make=20 /dev/null in my vserver.
------=_NextPart_000_01F8_01C238A1.880B3080-- From vserver.error@solucorp.qc.ca Wed Jul 31 15:11:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6VJAkiB011777; Wed, 31 Jul 2002 15:10:47 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6VIAlC20494 for vserver.list; Wed, 31 Jul 2002 14:10:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from k3-media.com (Toronto-HSE-ppp3643171.sympatico.ca [199.243.182.58]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6VIAkY20490 for ; Wed, 31 Jul 2002 14:10:46 -0400 Received: from k3-media.com (k3-media.com [127.0.0.1]) by k3-media.com (8.11.6/8.9.3) with ESMTP id g6VIDc218369 for ; Wed, 31 Jul 2002 14:13:39 -0400 Subject: [vserver] Question about date From: Mathieu Belanger To: vserver@solucorp.qc.ca Content-Type: text/plain; charset=ISO-8859-15 X-Mailer: Ximian Evolution 1.0.8 Date: 31 Jul 2002 14:13:37 -0400 Message-Id: <1028139219.18358.1.camel@k3-media.com> Mime-Version: 1.0 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g6VIAkY20490 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 866 Hello Can i change the date on a virtual server only? So can i have two virtual server running with 2 different date ? Regards -- Mathieu Bélanger Directeur Technologique K3 Média Inc. Tel: 514-861-3332 Fax: 514-861-3398 From vserver.error@solucorp.qc.ca Wed Jul 31 16:31:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6VKVYiB012583; Wed, 31 Jul 2002 16:31:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6VKAO824576 for vserver.list; Wed, 31 Jul 2002 16:10:24 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from trillion_main.trillion21.com (ftp.trillion21.com [208.63.109.12]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6VKAOY24572 for ; Wed, 31 Jul 2002 16:10:24 -0400 Received: from test1.trillion21.com (TEST1 [208.63.109.123]) by trillion_main.trillion21.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 38RKCFBH; Wed, 31 Jul 2002 15:05:25 -0500 Message-Id: <4.3.2.7.0.20020731145430.00d3dbc0@mail.trillion21.com> X-Sender: engled@mail.trillion21.com X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Wed, 31 Jul 2002 15:08:47 -0500 To: vserver@solucorp.qc.ca From: Darryl Subject: Re: [vserver] Kernel help In-Reply-To: References: <4.3.2.7.0.20020729091158.00d35740@mail.trillion21.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 867 At 11:46 AM 7/29/02 -0700, you wrote: >On Mon, 29 Jul 2002, Darryl wrote: > > > I have a copy of my lilo.conf below and I did run /sbin/lilo after making > > the changes. I ran rdev and got "/dev/sda5 /" so I think I have it set > > right in lilo. It will still boot the vmlinuz-2.4.7-10smp Kernel. > >You need to mkinitrd and create an img file file since you're using SCSI. >Check the list archives since I seem to remember asking this same >question. I don't have the actual commands handy but I know it works >since I did it on a SCSI system. > If you don't find it in the archives check out google. I found some >thing using 'mkinitrd example'. > > > image=/boot/vmlinuz-2.4.18ctxsmp-12 > > label=vserver > >Then add the correct line here (initrd=/boot/vmlinuz-2.4.18ctxsmp-12.img) Rod Thanks, that is my problem but it looks like it's a little deeper than that. The Dell PE2500 I'm using has a SCSI card that uses the aacraid moduel that is not in the ctx files. I have changed to redhat 7.3 so that I have a 2.4.18 kernel and would like to use the kernel patch but so far have been unable to figure out how to patch the kernel. On another note, after looking throug some past post I have seen alot about ext3 file system, should I be using it? If not then what? Darryl From vserver.error@solucorp.qc.ca Wed Jul 31 16:34:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g6VKY7iB012594; Wed, 31 Jul 2002 16:34:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g6VKFbQ24725 for vserver.list; Wed, 31 Jul 2002 16:15:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g6VKFaY24721 for ; Wed, 31 Jul 2002 16:15:37 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:54794 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Wed, 31 Jul 2002 22:15:19 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Wed, 31 Jul 2002 22:15:06 +0200 Date: Wed, 31 Jul 2002 22:15:05 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] Question about date Message-ID: <20020731221505.L16801@4t2.com> References: <1028139219.18358.1.camel@k3-media.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <1028139219.18358.1.camel@k3-media.com>; from mbelanger@k3-media.com on Wed, Jul 31, 2002 at 02:13:37PM -0400 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 868 On Wed, Jul 31, 2002 at 02:13:37PM -0400, Mathieu Belanger wrote: > Hello > > Can i change the date on a virtual server only? So can i have two > virtual server running with 2 different date ? different timezones are easy. just set your hardware clock to UTC/GMT and use timeconfig on the main server and in the vservers to set the timezone. more complicated timeoffsets /might/ be possible by compiling your own zoneinfo file and put it in /etc/localtime. I've never done this though. My understanding is that you can't set times totally independent in vservers, so that zoneinfo hack would be one way to work around this. Tom From vserver.error@solucorp.qc.ca Thu Aug 1 04:06:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7185YiB017898; Thu, 1 Aug 2002 04:05:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g717aVg05860 for vserver.list; Thu, 1 Aug 2002 03:36:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g717aQY05856 for ; Thu, 1 Aug 2002 03:36:28 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 955511090 for ; Thu, 1 Aug 2002 09:40:53 +0200 (CEST) Subject: [vserver] port restrictions From: klavs klavsen To: Vserver Mailinglist Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 01 Aug 2002 09:42:57 +0200 Message-Id: <1028187779.5002.8.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 869 I have an idea about how vserver could/should be able to restrict what is allowed to listen on a certain port, in a certain vserver context. One should be able to define PORTS="'named'/53tcp+udp 'listener -Idbname'/1521tcp" which would only allow a process called named to listen on port 53tcp and udp, and a process matching 'listener -Idbname' to listen on port 1521tcp. Then one should be be able to define that no other process can bind any ports, by setting f.ex. ALLOWOTHERPORTS=no the PORTS variable could be enhanced, to allow port-ranges (1023> and 1023><6000), checking for a certain UID/GID and even checking that the process executable has the right SHA-1 hash value. These measures would greatly enhance the vserver security, as a hacker who got hold of root in your vserver would not be able to install a common root kit for instance. As I don't know of any programs which bind ports too often, I don't think there should be a performance problem. Tell me what you think of the idea, and also if you have any ideas as to how it should be implemented (where, when and how) as I'm totally new to kernel/vserver hacking :-) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Thu Aug 1 04:31:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g718V6iB018113; Thu, 1 Aug 2002 04:31:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g718Hdf07317 for vserver.list; Thu, 1 Aug 2002 04:17:39 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g718HcY07313 for ; Thu, 1 Aug 2002 04:17:38 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id A35BD7A560; Thu, 1 Aug 2002 09:17:38 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id A2832922A5 for ; Thu, 1 Aug 2002 09:17:38 +0100 (BST) Date: Thu, 1 Aug 2002 09:17:38 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Kernel help In-Reply-To: <4.3.2.7.0.20020731145430.00d3dbc0@mail.trillion21.com> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 870 On Wed, 31 Jul 2002, Darryl wrote: > > 2.4.18 kernel and would like to use the kernel patch but so far have been > unable to figure out how to patch the kernel. http://www.linuxhq.com/ldp/howto/Kernel-HOWTO-6.html http://www.google.com/search?q=kernel+patch+howto > On another note, after looking throug some past post I have seen alot > about ext3 file system, should I be using it? If not then what? Ext3fs is a journalled filesystem, which basically means you don't have to run fsck on reboot if the computer crashes, or the power goes off. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Thu Aug 1 04:33:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g718WniB018127; Thu, 1 Aug 2002 04:32:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g71885X07050 for vserver.list; Thu, 1 Aug 2002 04:08:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g71882Y07046 for ; Thu, 1 Aug 2002 04:08:02 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 6123D7A560; Thu, 1 Aug 2002 09:07:56 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 58787922A5 for ; Thu, 1 Aug 2002 09:07:56 +0100 (BST) Date: Thu, 1 Aug 2002 09:07:56 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] port restrictions In-Reply-To: <1028187779.5002.8.camel@amd.vsen.dk> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 871 On 1 Aug 2002, klavs klavsen wrote: > > These measures would greatly enhance the vserver security, as a hacker > who got hold of root in your vserver would not be able to install a > common root kit for instance. You *have* root in a vserver. Isn't that the whole point? If you're after a slightly more restrictive setup, you maybe more interested in FreeVSD which works by having a pseudo-root user `admin' and therefore having to proxy anything that does need extra/root permissions, which may give you the abstract you seem to be after. http://www.freevsd.org/ ..and buy a CD or something from Darren and the gang at Idaya to say thanks. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Thu Aug 1 04:55:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g718tSiB018227; Thu, 1 Aug 2002 04:55:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g718B8407195 for vserver.list; Thu, 1 Aug 2002 04:11:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g718B7Y07191 for ; Thu, 1 Aug 2002 04:11:07 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 9DB207A560; Thu, 1 Aug 2002 09:11:07 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 95FEA922A5 for ; Thu, 1 Aug 2002 09:11:07 +0100 (BST) Date: Thu, 1 Aug 2002 09:11:07 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: vserver@solucorp.qc.ca Subject: Re: [vserver] Question about date In-Reply-To: <1028139219.18358.1.camel@k3-media.com> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 872 On 31 Jul 2002, Mathieu Belanger wrote: > > Can i change the date on a virtual server only? So can i have two > virtual server running with 2 different date ? GMT is going to the be the same across all your vservers, (or else something is wrong :-). Running ntpd in the main server and then having local timezones setup in each vserver is probably a good approach. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Thu Aug 1 07:30:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g71BTviB018991; Thu, 1 Aug 2002 07:29:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g71AGoC09865 for vserver.list; Thu, 1 Aug 2002 06:16:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g71AGiY09860 for ; Thu, 1 Aug 2002 06:16:46 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with ESMTP id 813AD1092 for ; Thu, 1 Aug 2002 12:21:17 +0200 (CEST) Subject: Re: [vserver] port restrictions From: klavs klavsen To: Vserver Mailinglist In-Reply-To: References: Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 01 Aug 2002 12:23:22 +0200 Message-Id: <1028197404.5040.4.camel@amd.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 873 On Thu, 2002-08-01 at 10:07, Paul Sladen wrote: > On 1 Aug 2002, klavs klavsen wrote: > > > > These measures would greatly enhance the vserver security, as a hacker > > who got hold of root in your vserver would not be able to install a > > common root kit for instance. > > You *have* root in a vserver. Isn't that the whole point? You don't have root in the original sence, as you are without the capabilities that is root ! - to me, that is the whole point (root - without roots strengths/faults) ! For instance, you can't reconfigure inet interfaces, set an interface into promiscious mode, you can't remove files that are set immutable and so on. The port binding features would just be an added security feature - in my opinion right along the lines that vserver goes - and which I believe is why many users use vserver - for the security features, and its simplicity. > > If you're after a slightly more restrictive setup, you maybe more interested > in FreeVSD which works by having a pseudo-root user `admin' and therefore > having to proxy anything that does need extra/root permissions, which may > give you the abstract you seem to be after. > > http://www.freevsd.org/ > > ..and buy a CD or something from Darren and the gang at Idaya to say thanks. > I have heard nothing good about freevsd, compared to vserver - and also I can see from the mailinglists, that vserver is MUCH easier to setup, so no thanks :-) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Thu Aug 1 10:02:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g71E2LiB020065; Thu, 1 Aug 2002 10:02:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g71CL9R12594 for vserver.list; Thu, 1 Aug 2002 08:21:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g71CL8Y12590 for ; Thu, 1 Aug 2002 08:21:08 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:53519 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Thu, 1 Aug 2002 14:20:56 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Thu, 1 Aug 2002 14:20:50 +0200 Date: Thu, 1 Aug 2002 14:20:50 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] port restrictions Message-ID: <20020801142050.M16801@4t2.com> References: <1028187779.5002.8.camel@amd.vsen.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <1028187779.5002.8.camel@amd.vsen.dk>; from kl@vsen.dk on Thu, Aug 01, 2002 at 09:42:57AM +0200 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 874 On Thu, Aug 01, 2002 at 09:42:57AM +0200, klavs klavsen wrote: > I have an idea about how vserver could/should be able to restrict what > is allowed to listen on a certain port, in a certain vserver context. > > One should be able to define > > PORTS="'named'/53tcp+udp 'listener -Idbname'/1521tcp" which would only > allow a process called named to listen on port 53tcp and udp, and a > process matching 'listener -Idbname' to listen on port 1521tcp. so i hack the box, install my backdoor, mv mybackdoor named, start named and I can bind to port 53(tcp+udp). doesn't sound like some reasonable idea to me, especially regarding all the kernel hacks that'd be involved - and vserver administration would get unecessary complicated. > Then one should be be able to define that no other process can bind any > ports, by setting f.ex. > ALLOWOTHERPORTS=no > > the PORTS variable could be enhanced, to allow port-ranges (1023> and > 1023><6000), checking for a certain UID/GID and even checking that the > process executable has the right SHA-1 hash value. ok, this would block renaming of the process. but consider a box with lots of vservers on it. everytime one of the vserver admins decides to upgrade it's software, he has to coordinate with the main vserver admin to change the configuration. > These measures would greatly enhance the vserver security, as a hacker > who got hold of root in your vserver would not be able to install a > common root kit for instance. if you don't want anything (except for the specified process / port combinations) in the vserver to use some 'random' port for outgoing traffic, just set up some firewalling rules in the main server. if you want users/root to bind to some unspecified ports for outgoing traffic, it's a piece of cake to tune the rootkit to use these ports. > As I don't know of any programs which bind ports too often, I don't > think there should be a performance problem. but it would bloat the kernel and i don't see much gain from it. There other ways to achieve almost the same. just my 2 cents ;-) Tom From vserver.error@solucorp.qc.ca Thu Aug 1 22:19:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g722J7iB025487; Thu, 1 Aug 2002 22:19:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g721wF730919 for vserver.list; Thu, 1 Aug 2002 21:58:15 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts19-srv.bellnexxia.net (tomts19.bellnexxia.net [209.226.175.73]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g721wEY30915 for ; Thu, 1 Aug 2002 21:58:14 -0400 Received: from jhd ([207.236.226.187]) by tomts19-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020802015800.CJPJ10226.tomts19-srv.bellnexxia.net@jhd> for ; Thu, 1 Aug 2002 21:58:00 -0400 Message-ID: <002f01c239c8$1534a7d0$0301a8c0@jhd> From: "-=" To: Subject: [vserver] Multiples IPS Date: Thu, 1 Aug 2002 21:58:22 -0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_002C_01C239A6.8DE143E0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 875 This is a multi-part message in MIME format. ------=_NextPart_000_002C_01C239A6.8DE143E0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hello , is not the first time i write on the mail list for this problem = but i got always this problem .. To make you in the context I got a Root server with 120 real IPS Accessible from the internet From = 207.X.X.1 To 207.X.X.120 ( eth0 to eth0:120 ) I need each vserver to have 16 IPS so i set in one vserver: IPROOT=3D"207.X.X.1 207.X.X.2 207.X.X.2 207.X.X.3 207.X.X.4" But with this configuration some application do not work correctly For exemple=20 -1 eggdrop can only be start on the first IP on the list and i try to = start eggdrop on another IP the eggdrop do not start at all - 2 psybnc can only use the first ips on the list for vhost=20 The only whay i found for those application to work correctely is to set = in a vserver=20 IPROOT=3D but with IPROOT=3D=20 vserver can use all IPS of the ROOT SERVER and 2 vserver can use and = share the same IPS i very nned to limit acess to ip in a vserver and support for eggdrop = and bnc anybody have an idea ? someting i do wrong in the configuration ? is the only problems i got with vserver but the reason why i use vserver = is for eggdrop and bnc thx all for help =20 ------=_NextPart_000_002C_01C239A6.8DE143E0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hello , is not the first time i write = on the mail=20 list for this problem but i got always this problem ..
 
To make you in the context
I got a Root server with 120 real IPS = Accessible=20 from the internet From 207.X.X.1  To 207.X.X.120 ( eth0 to eth0:120 = )
 
I need each vserver to = have 16=20 IPS so i set in one vserver:
IPROOT=3D"207.X.X.1 207.X.X.2 207.X.X.2 = 207.X.X.3=20 207.X.X.4"
 
But with this configuration some = application do not=20 work correctly
 
For exemple
-1 eggdrop can only be start on the = first IP on the=20 list and i try to start eggdrop on another IP the eggdrop = do not=20 start at all
- 2 psybnc can only use the first ips = on the list=20 for vhost
 
The only whay i found for those = application to work=20 correctely is to set in a vserver 
IPROOT=3D
 
but with IPROOT=3D
vserver can use all IPS of the ROOT = SERVER and 2=20 vserver can use and share the same IPS
 
i very nned to limit acess to ip in a = vserver and=20 support for eggdrop and bnc
 
anybody have an idea ? someting i do = wrong in the=20 configuration ?
is the only problems i got with = vserver but=20 the reason why i use vserver is for eggdrop and bnc
 
thx all for help
 
 
 
 
------=_NextPart_000_002C_01C239A6.8DE143E0-- From vserver.error@solucorp.qc.ca Fri Aug 2 05:43:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g729gaiB028593; Fri, 2 Aug 2002 05:42:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g728tlh07183 for vserver.list; Fri, 2 Aug 2002 04:55:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from nninfo2.comm.it ([213.92.77.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g728tjY07178 for ; Fri, 2 Aug 2002 04:55:46 -0400 Received: from microxp ([80.116.183.253]) by nninfo2.comm.it (8.9.3/8.9.3) with SMTP id KAA13124 for ; Fri, 2 Aug 2002 10:55:44 +0200 From: "Dave" To: Subject: [vserver] Problems with restaring virtuals and ethX:Y interfaces Date: Fri, 2 Aug 2002 10:53:50 +0200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 876 Hi, I have a strange problem when I need to stop a vserver. The vserver is stopped properly, but the corresponding interface is not brought down. I can see a SIOCADDR error msg as an output to vserver XXX stop However if I down the interface manually and then start the vserver again, the interface is brought up correctly. Another issue I have, is that the machine running vserver needs a few extra alias IP on it's primary interface (eth0). These are numbered eth0:1 trough eth0:n Doing a total restart of all vservers like this: for vs in `cat /etc/vservers/allvservers` ; do vserver $vs restart ; done will result in the first eth0:1 alias being brought down. I have checked and none of the vservers has the address or name of this aliased interface (i.e. no ip nor vserver called "1"). The system is a redhat 7.3, kernel 2.4.18-ac3-ctx12 (i.e. custom built vanilla 2.4.18 + Alan Cox patches 3 + ctx patch 12). vserver 0.18-1 installed from rpm. Any hints? Dave. From vserver.error@solucorp.qc.ca Fri Aug 2 06:53:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g72ArYiB028930; Fri, 2 Aug 2002 06:53:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g72AIov09138 for vserver.list; Fri, 2 Aug 2002 06:18:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail4.messagelabs.com (mail4.messagelabs.com [212.125.75.12]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g72AInY09134 for ; Fri, 2 Aug 2002 06:18:49 -0400 X-VirusChecked: Checked Received: (qmail 974 invoked from network); 2 Aug 2002 10:15:33 -0000 Received: from porgy.logica.co.uk (158.234.250.67) by server-4.tower-4.messagelabs.com with SMTP; 2 Aug 2002 10:15:33 -0000 Received: from lat.logica.co.uk (lat.logica.co.uk [158.234.190.58]) by porgy.logica.co.uk (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id LAA00554 for ; Fri, 2 Aug 2002 11:15:31 +0100 Received: from maximus (158.234.191.190 [158.234.191.190]) by lat.logica.co.uk with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2448.0) id PHPD212C; Fri, 2 Aug 2002 18:15:27 +0800 Subject: [vserver] Timeout on writing/opening control channel /dev/initctl From: Lew Teck Kheng To: Vserver mailing list Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8.99 Date: 02 Aug 2002 18:15:16 +0800 Message-Id: <1028283321.4878.7.camel@maximus> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 877 hi everyone: I have installed the latest vserver but i always encountered this problem whenver i tried to uninstall a RPM package. Anybody can help me.? Thank you very much for your time. cheers ________________________________________________________________________ This email has been scanned for all viruses by the MessageLabs SkyScan service. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.messagelabs.com ________________________________________________________________________ From vserver.error@solucorp.qc.ca Fri Aug 2 06:57:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g72AvfiB028975; Fri, 2 Aug 2002 06:57:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g72AXwi09569 for vserver.list; Fri, 2 Aug 2002 06:33:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail4.messagelabs.com (mail4.messagelabs.com [212.125.75.12]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g72AXwY09565 for ; Fri, 2 Aug 2002 06:33:58 -0400 X-VirusChecked: Checked Received: (qmail 25458 invoked from network); 2 Aug 2002 10:33:48 -0000 Received: from porgy.logica.co.uk (158.234.250.67) by server-13.tower-4.messagelabs.com with SMTP; 2 Aug 2002 10:33:48 -0000 Received: from lat.logica.co.uk (lat.logica.co.uk [158.234.190.58]) by porgy.logica.co.uk (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id LAA09507 for ; Fri, 2 Aug 2002 11:33:46 +0100 Received: from maximus (158.234.191.190 [158.234.191.190]) by lat.logica.co.uk with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2448.0) id PHPD212F; Fri, 2 Aug 2002 18:33:43 +0800 Subject: [vserver] init q From: Lew Teck Kheng To: Vserver mailing list Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8.99 Date: 02 Aug 2002 18:33:31 +0800 Message-Id: <1028284416.4878.11.camel@maximus> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 878 hi all : I have read thru the doc and vserver can do init via fakeinit. out of my six vservers only one can do "init q" command while the remaining five always give this errors "init: timeout opening/writing control channel /dev/initctl" ? And only one vserver can start the "xinetd" properly when the server start up ? yes , i did run the "v_xinetd" on the root server. Any ideas ?? Thank you very much for your time. Cheers ________________________________________________________________________ This email has been scanned for all viruses by the MessageLabs SkyScan service. For more information on a proactive anti-virus service working around the clock, around the globe, visit http://www.messagelabs.com ________________________________________________________________________ From vserver.error@solucorp.qc.ca Fri Aug 2 10:00:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g72E0TiB030199; Fri, 2 Aug 2002 10:00:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g72Da0h13782 for vserver.list; Fri, 2 Aug 2002 09:36:00 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g72DZxY13778 for ; Fri, 2 Aug 2002 09:35:59 -0400 Received: from remtk.solucorp.qc.ca (g39-238.citenet.net [206.123.39.238]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g72DjsA03835 for ; Fri, 2 Aug 2002 09:45:55 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g724Gcs01580 for vserver@solucorp.qc.ca; Fri, 2 Aug 2002 00:16:38 -0400 From: Jacques Gelinas Date: Fri, 2 Aug 2002 00:16:37 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] ctx-12 and gcc 3.1 X-mailer: tlmpmail 0.6 Message-ID: <20020802001637.c75ffc5ea6ff@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 879 On Thu, 25 Jul 2002 09:45:32 -0500, Alvaro Gomes Sobral Barcellos wrote > hello, > I try to compile vserver tools using glibc-2.2.5 and gcc 3.1 suite, > but can't, its stop at some headers (pfstream.h) and class files. > > any tips or port to C ??? pfstream is an obsolete header. I was unware of this. In the next release (friday) it will be gone. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 2 13:11:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g72HAsiB031405; Fri, 2 Aug 2002 13:10:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g72GmfB18684 for vserver.list; Fri, 2 Aug 2002 12:48:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from garlic.aitec.edu.au (cc4-38.esc.net.au [210.11.55.230] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g72GmdY18680 for ; Fri, 2 Aug 2002 12:48:40 -0400 Received: from localhost (mlawrenc@localhost) by garlic.aitec.edu.au (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id CAA14281 for ; Sat, 3 Aug 2002 02:18:29 +0930 X-Authentication-Warning: garlic.aitec.edu.au: mlawrenc owned process doing -bs Date: Sat, 3 Aug 2002 02:18:26 +0930 (CST) From: Mark Lawrence X-Sender: mlawrenc@garlic.aitec.edu.au To: vserver@solucorp.qc.ca Subject: [vserver] Debian package available Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 880 Hello all, I apologise for the noise if this has already been done, but I am not subscribed and don't know the past history. I have created a debian package of the vserver utilities version 0.18 and included an implementation of "newvserver" based on debootstrap for a debian system. If people would find either of these useful then I would be pleased to mail them to someone, but unfortunately cannot host the package myself. Perhaps the official web site would be a good place? Just one note on the whole /etc/init.d/* thing: For simplicity my package modifies /etc/init.d/rc to prepend "chbind" in front of all system scripts so that you don't have the mess of swapping individual init scripts which are possibly already customized. This probably doesn't work for you if you run multiple IPs in your root server... The changes I had to make to the sources were quite minor. The only place that I think breaks the default installation (make install 'n friends) was the Makefile. Would anyone consider it worth the effort (but more importantly would they be rolled into the distribution) if I produced patches that meant you could build both rpms and debs from the tar.gz? Just a thought because I would rather not go through this effort again when the next version is released :) Cheers, Mark. -- Mark Lawrence (nomad@null.net) Mobile: +41 79 309 0633 From vserver.error@solucorp.qc.ca Fri Aug 2 16:45:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g72KiiiB000672; Fri, 2 Aug 2002 16:44:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g72KNr823927 for vserver.list; Fri, 2 Aug 2002 16:23:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.wild98webhosting.com (server.wild98.com [64.26.141.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g72KNqY23923 for ; Fri, 2 Aug 2002 16:23:52 -0400 Received: from idouglas (lsanca2-ar26-4-46-185-054.lsanca2.dsl-verizon.net [4.46.185.54]) by www.wild98webhosting.com (8.11.6/linuxconf) with SMTP id g72KNpM28597 for ; Fri, 2 Aug 2002 16:23:51 -0400 From: "Ian Douglas" To: Subject: [vserver] FTP service? Date: Fri, 2 Aug 2002 13:25:07 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 In-Reply-To: Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 881 FINALLY got my first vserver machine up and running ... kudos to "dave" for the article he wrote up. Awesome job. Anyhow, I have my server, and on it, one virtual server to poke around and learn about it before adding another handful of vservers, and have noticed that while you've got v_httpd, v_sendmail, v_sshd, v_named, etc., there's no v_ftpd service. I'm currently using ProFTPD, and while it does an amazing job at virtual domain hosting, I'd like to get it up and running on each vserver so each virtual sysadmin can manage their own FTP setup. Did I miss something in the docs about a 'wrapper' application or something of that nature that I can wrap around ProFTPD to work here? I tried to just "service proftpd start" the daemon, but it failed 'cause port 21 was already in use on the main server. Thanks for any info, -id From vserver.error@solucorp.qc.ca Fri Aug 2 17:45:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g72LjQiB001226; Fri, 2 Aug 2002 17:45:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g72LGKH25051 for vserver.list; Fri, 2 Aug 2002 17:16:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g72LGJY25047 for ; Fri, 2 Aug 2002 17:16:20 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:41739 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Fri, 2 Aug 2002 23:15:59 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Fri, 2 Aug 2002 23:15:56 +0200 Date: Fri, 2 Aug 2002 23:15:56 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] FTP service? Message-ID: <20020802231556.T16801@4t2.com> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: ; from linux@wild98.com on Fri, Aug 02, 2002 at 01:25:07PM -0700 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 882 On Fri, Aug 02, 2002 at 01:25:07PM -0700, Ian Douglas wrote: > Anyhow, I have my server, and on it, one virtual server to poke around and > learn about it before adding another handful of vservers, and have noticed > that while you've got v_httpd, v_sendmail, v_sshd, v_named, etc., there's no > v_ftpd service. cat /etc/init.d/v_named | sed -e 's|named|ftpd|' > /etc/init.d/v_ftpd there you got it :-) > Did I miss something in the docs about a 'wrapper' application or something > of that nature that I can wrap around ProFTPD to work here? I tried to just > "service proftpd start" the daemon, but it failed 'cause port 21 was already > in use on the main server. because the ftpd in the main server has bound to that ip+port already. use the script above to start it only on the main servers ip. Tom From vserver.error@solucorp.qc.ca Fri Aug 2 18:18:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g72MI1iB001465; Fri, 2 Aug 2002 18:18:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g72LxdS25895 for vserver.list; Fri, 2 Aug 2002 17:59:39 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from blue.wowweb.dk (0x503e3545.arcnxx10.adsl-dhcp.tele.dk [80.62.53.69]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g72LxaY25891 for ; Fri, 2 Aug 2002 17:59:37 -0400 Received: from x.mufasa.wowweb.dk (unknown [10.0.0.83]) by blue.wowweb.dk (Postfix) with ESMTP id 7D03F1184B for ; Fri, 2 Aug 2002 23:59:32 +0200 (CEST) Content-Type: text/plain; charset="us-ascii" From: Jesper FA <424242424242424242@j-f.dk> To: vserver@solucorp.qc.ca Subject: [vserver] Bind to 0.0.0.0 Date: Fri, 2 Aug 2002 23:58:19 +0200 User-Agent: KMail/1.4.2 MIME-Version: 1.0 Message-Id: <200208022358.19413.424242424242424242@j-f.dk> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g72LxaY25891 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 883 I run kdm in a vserver on 2 diferent root servers which both behave different than I expected. It is regarding the tcp port it listens on shown below. It is allowed to bind to "0.0.0.0". As I understand it it should be forced to use 10.0.0.98 as it is the only IP it is given in the conf file. It is not only an error in netstat. On the root server netstat doesn't report anything listening on port 22051, but I can connect to it. If I on the root server or any other vserver try to bind to port 22051 it failes. The one server is patch version ctx10 and the other ctx12. # vserver x exec netstat -nap Server x is running ipv4root is now 10.0.0.98 New security context is 2 (Not all processes could be identified, non-owned process info will not be shown, you would have to be root to see it all.) Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 0.0.0.0:22051 0.0.0.0:* LISTEN 1168/kdm tcp 0 0 10.0.0.98:22 0.0.0.0:* LISTEN 1159/sshd udp 0 0 10.0.0.98:177 0.0.0.0:* 1168/kdm Active UNIX domain sockets (servers and established) Proto RefCnt Flags Type State I-Node PID/Program name Path -- Jesper 11:37pm up 7 days, 8:06, 9 users, load average: 0.44, 0.29, 0.22 From vserver.error@solucorp.qc.ca Sat Aug 3 05:30:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g739U8iB005967; Sat, 3 Aug 2002 05:30:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g738pGD06260 for vserver.list; Sat, 3 Aug 2002 04:51:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from england.seagull.net (carpediem-it.co.uk [199.254.168.73]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g738pFY06256 for ; Sat, 3 Aug 2002 04:51:15 -0400 Received: from LAPTOP (d-casey.demon.co.uk [194.222.121.214]) by england.seagull.net (8.9.3) with SMTP id BAA27766 sender darren@darrencasey.co.uk for ; Sat, 3 Aug 2002 01:51:07 -0700 Message-ID: <002201c23aca$e0f06190$7d00a8c0@LAPTOP> From: "Darren Casey \(Personal\)" To: References: <20020802231556.T16801@4t2.com> Subject: Re: [vserver] FTP service? Date: Sat, 3 Aug 2002 09:50:50 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4807.1700 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 884 > > Did I miss something in the docs about a 'wrapper' application or something > > of that nature that I can wrap around ProFTPD to work here? I tried to just > > "service proftpd start" the daemon, but it failed 'cause port 21 was already > > in use on the main server. Also try PureFTPD far better then ProFTPD Darren From vserver.error@solucorp.qc.ca Sun Aug 4 00:38:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g744cAiB012301; Sun, 4 Aug 2002 00:38:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g744IZX27800 for vserver.list; Sun, 4 Aug 2002 00:18:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts16-srv.bellnexxia.net (tomts16.bellnexxia.net [209.226.175.4]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g744IZY27796 for ; Sun, 4 Aug 2002 00:18:35 -0400 Received: from dynacom1 ([216.209.243.187]) by tomts16-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020804041841.MQHH19301.tomts16-srv.bellnexxia.net@dynacom1> for ; Sun, 4 Aug 2002 00:18:41 -0400 Message-ID: <000701c23b3b$4270e780$bbf3d1d8@dynacom1> From: =?iso-8859-1?Q?=C9lectronique_Box_Communications?= To: References: <1027354544.3d3c2fb01baa4@linuxfriends.sympatico.ca> Subject: Re: [vserver] identd problem Date: Sun, 4 Aug 2002 00:15:20 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 885 In answer to Shuri, I had the same problem of shuri to run multiple identd daemon on multiple vserver causing crash of the second daemon when you start 2 because they use both 113 port. I have no idea how to find the solution to this problem. Only run once on a vserver and it work but when identd is launch twice the second one cannot start. Also for the address (ip = *) shuri it is normal that everybody have access to the all the adresse. For the type of service you run it is quite hard to find the problem i had the same problem ... Anybody have any comments ideas about that can be very very appreciate and helpfull... Best Regards, Jean-Philippe Béďque , www.eboxw.net From vserver.error@solucorp.qc.ca Sun Aug 4 14:28:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g74ISViB030985; Sun, 4 Aug 2002 14:28:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g74I63r21732 for vserver.list; Sun, 4 Aug 2002 14:06:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.13thfloor.at (www.13thfloor.at [212.16.59.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g74I62Y21728 for ; Sun, 4 Aug 2002 14:06:02 -0400 Received: by www.13thfloor.at (Postfix, from userid 1001) id 2A5EA220964; Sun, 4 Aug 2002 20:06:01 +0200 (CEST) Date: Sun, 4 Aug 2002 20:06:01 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: [vserver] Issues with RPM scripts ... Message-ID: <20020804180601.GB29689@www.13thfloor.at> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 886 hi everyone! I encountered this problem by mere accident, as I upgraded some apache modules on my vservers, and the upgrade didn't reload the apache config, but instead restarted the apache server on the real machine ... vrpm (the script) executes rpm --root /vservers/ ... which is perfect for packages without pre/post install/uninstall scripts interacting with running processes, and/or requiring more than a chrooted environment, but results in strange effects otherwise ... for example: executing 'killall -USR1 httpd' will for sure do a graceful restart of apache, but not for the apache within the vserver *G* one solution to this problem could be: - copy the rpm to /vservers/tmp/ - call vserver exec rpm (this is what I usually do) I think a better (read: more practical) solution could be to enter the virtual server context, reduce the capabilities, but stay within the current filesystem (no chroot), and then call the main rpm with the --root option ... please share your experiences, ideas and thoughts concerning this issue ... best, Herbert PS: thanxs for vserver to everyone involved. From vserver.error@solucorp.qc.ca Sun Aug 4 16:25:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g74KPGiB031662; Sun, 4 Aug 2002 16:25:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g74KAJr24147 for vserver.list; Sun, 4 Aug 2002 16:10:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g74KAIY24143 for ; Sun, 4 Aug 2002 16:10:19 -0400 Received: from host213-123-40-200.in-addr.btopenworld.com ([213.123.40.200] helo=johnnew) by gadolinium.btinternet.com with smtp (Exim 3.22 #8) id 17bRhI-0000M1-00 for vserver@solucorp.qc.ca; Sun, 04 Aug 2002 21:09:57 +0100 From: "John Lyons" To: Subject: RE: [vserver] FTP service? Date: Sun, 4 Aug 2002 20:33:12 +0100 Message-ID: <055d01c23bf2$bfdf1db0$01c9a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 887 > etc., there's no v_ftpd service. > "service proftpd start" the daemon, but it failed 'cause port > 21 was already > in use on the main server. If you have a look at one of the v_ scripts in /etc/init.d you'll see you can easily create a v_ftpd script. What's happened is that Proftpd has started on the host server and bound itself to the ftp port for all IP's on that server. When ftpd tries to start in the virtual server it finds that it's already running bound to that port and IP somewhere else. The v_ scripts bind services running on the host server to the IP of the host server and not every IP that the host server uses. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 From vserver.error@solucorp.qc.ca Sun Aug 4 17:05:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g74L5miB031961; Sun, 4 Aug 2002 17:05:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g74Kp5424946 for vserver.list; Sun, 4 Aug 2002 16:51:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from onebill.twinspot.net (onebill.twinspot.net [62.13.47.101]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g74Kp4Y24942 for ; Sun, 4 Aug 2002 16:51:04 -0400 Received: from p240.linnet.nu ([62.13.47.240] helo=euronetics.se) by onebill.twinspot.net with esmtp for id 17bSKz-0004V7-00; Sun, 04 Aug 2002 22:50:53 +0200 Message-ID: <3D4D93AD.5000602@euronetics.se> Date: Sun, 04 Aug 2002 22:50:53 +0200 From: Tomas Fasth Organization: Euronetics User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: sv, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Debian package available References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 888 Hi Mark, Mark Lawrence wrote: > Hello all, > > I apologise for the noise if this has already been done, but I am not > subscribed and don't know the past history. Your anouncement is the first I have seen. I haven't been on the list for very long either, though. Since I use debian myself, I have been searching for such activities and ultimately failed. I was going to debianize vserver myself, but I'm glad you did it first :) > I have created a debian package of the vserver utilities version 0.18 and > included an implementation of "newvserver" based on debootstrap for a > debian system. If people would find either of these useful then I would be > pleased to mail them to someone, but unfortunately cannot host the package > myself. Perhaps the official web site would be a good place? Are you a debian developer? Perhaps not, since you don't seem to have a natural place to host your packages. May be I can help you? I am in the queue of becoming a developer, and I know a few that are already. Perhaps you would like someone else with debian development experience to review and perhaps even take active part in your packaging effort? > Just one note on the whole /etc/init.d/* thing: For simplicity my package > modifies /etc/init.d/rc to prepend "chbind" in front of all system scripts > so that you don't have the mess of swapping individual init scripts which > are possibly already customized. This probably doesn't work for you if you > run multiple IPs in your root server... This i don't quite understand. If you chbind the rc script (actually, the init process itself?) isn't the rest of the processes going to follow suit? Besides, if you want absolute control over the virtual environments, I think you should do chbind outside their context. > The changes I had to make to the sources were quite minor. The only place > that I think breaks the default installation (make install 'n friends) was > the Makefile. Did you make any changes in the vbuild utility? The idea behind it is great, using hard links to copy a reference root, but it's implemented using rpm, which doesn't work well in a standard debian installation. I haven't had time to tamper with it yet myself. > Would anyone consider it worth the effort (but more > importantly would they be rolled into the distribution) if I produced > patches that meant you could build both rpms and debs from the tar.gz? I myself would appreciate this very much. > Just a thought because I would rather not go through this effort again > when the next version is released :) I concur. And I think lot more people would discover and start using vserver if we succeed to get a vserver package, perhaps in company with a kernel-patch-ctx package, available on the official debian distribution mirrors. // Tomas From vserver.error@solucorp.qc.ca Sun Aug 4 19:04:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g74N3iiB032662; Sun, 4 Aug 2002 19:03:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g74Mnb927073 for vserver.list; Sun, 4 Aug 2002 18:49:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from carbon (carbon.btinternet.com [194.73.73.92]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g74MnbY27069 for ; Sun, 4 Aug 2002 18:49:37 -0400 Received: from host213-122-61-224.in-addr.btopenworld.com ([213.122.61.224] helo=johnnew) by carbon with smtp (Exim 3.22 #8) id 17bUBk-0001Ur-00 for vserver@solucorp.qc.ca; Sun, 04 Aug 2002 23:49:32 +0100 From: "John Lyons" To: Subject: RE: [vserver] Issues with RPM scripts ... Date: Sun, 4 Aug 2002 20:38:25 +0100 Message-ID: <057a01c23c09$1eaef570$01c9a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <20020804180601.GB29689@www.13thfloor.at> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 889 > I encountered this problem by mere accident, as > I upgraded some apache modules on my vservers, > and the upgrade didn't reload the apache config, > but instead restarted the apache server on the > real machine ... > > vrpm (the script) executes > > rpm --root /vservers/ ... I can't say I've had the same problem with this as yourself but my own experience of the vrpm script isn't good. It hangs every time for me irrespective of how I issue the commands or how many virtual servers I attempt to upgrade. John From vserver.error@solucorp.qc.ca Sun Aug 4 19:07:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g74N6viB032684; Sun, 4 Aug 2002 19:06:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g74Mn0627052 for vserver.list; Sun, 4 Aug 2002 18:49:00 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g74Mn0Y27048 for ; Sun, 4 Aug 2002 18:49:00 -0400 Received: from host213-122-61-224.in-addr.btopenworld.com ([213.122.61.224] helo=johnnew) by gadolinium.btinternet.com with smtp (Exim 3.22 #8) id 17bUB6-0004RA-00 for vserver@solucorp.qc.ca; Sun, 04 Aug 2002 23:48:55 +0100 From: "John Lyons" To: Subject: RE: [vserver] FTP service? Date: Sun, 4 Aug 2002 20:33:12 +0100 Message-ID: <057901c23c08$fe489610$01c9a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 890 > etc., there's no v_ftpd service. > "service proftpd start" the daemon, but it failed 'cause port > 21 was already > in use on the main server. If you have a look at one of the v_ scripts in /etc/init.d you'll see you can easily create a v_ftpd script. What's happened is that Proftpd has started on the host server and bound itself to the ftp port for all IP's on that server. When ftpd tries to start in the virtual server it finds that it's already running bound to that port and IP somewhere else. The v_ scripts bind services running on the host server to the IP of the host server and not every IP that the host server uses. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 From vserver.error@solucorp.qc.ca Sun Aug 4 19:07:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g74N7BiB032685; Sun, 4 Aug 2002 19:07:12 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g74Mrbj27202 for vserver.list; Sun, 4 Aug 2002 18:53:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from zolotek.net (zolotek.com [209.61.161.50]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g74MraY27198 for ; Sun, 4 Aug 2002 18:53:37 -0400 Received: from dial-62-64-206-93.access.uk.tiscali.com (dial-62-64-205-86.access.uk.tiscali.com [62.64.205.86]) by zolotek.net (8.12.5/8.12.5) with SMTP id g74N5eNO000813 for ; Mon, 5 Aug 2002 00:05:41 +0100 Message-Id: <200208042305.g74N5eNO000813@zolotek.net> From: "Lyn St George" To: "vserver@solucorp.qc.ca" Date: Sun, 04 Aug 2002 23:27:17 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: Re: [vserver] Debian package available Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 891 On Sun, 04 Aug 2002 22:50:53 +0200, Tomas Fasth wrote: >> The changes I had to make to the sources were quite minor. The only place >> that I think breaks the default installation (make install 'n friends) was >> the Makefile. > >Did you make any changes in the vbuild utility? The idea behind it >is great, using hard links to copy a reference root, but it's >implemented using rpm, which doesn't work well in a standard debian >installation. I haven't had time to tamper with it yet myself. > > > Would anyone consider it worth the effort (but more >> importantly would they be rolled into the distribution) if I produced >> patches that meant you could build both rpms and debs from the tar.gz? > >I myself would appreciate this very much. Another point on this same issue: none of my boxes use rpm, debian, or anything similar. They are all built using tarballs. This means that the 'vbuild' or 'vunify' tools don't work as intended, as there is no package information to query when deciding whether to make links or copies, and so everything gets copied. My solution to this is to hand craft 2 reference servers: ref1 has only things to be hard linked and ref2 only things to be copied. I then modified 'vbuild' to only link (can no longer copy), and modified the 'vserver' script to copy from ref2 and do the other bits. I'm in the process of building a Webmin module to automate this, and if anyone is interested I can release it when finished. - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Sun Aug 4 19:26:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g74NQWiB000308; Sun, 4 Aug 2002 19:26:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g74N6Vp27480 for vserver.list; Sun, 4 Aug 2002 19:06:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.wild98webhosting.com (server.wild98.com [64.26.141.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g74N6UY27476 for ; Sun, 4 Aug 2002 19:06:31 -0400 Received: from idouglas (lsanca2-ar26-4-46-185-054.lsanca2.dsl-verizon.net [4.46.185.54]) by www.wild98webhosting.com (8.11.6/linuxconf) with SMTP id g74N6PM29458 for ; Sun, 4 Aug 2002 19:06:25 -0400 From: "Ian Douglas" To: Subject: RE: [vserver] Issues with RPM scripts ... Date: Sun, 4 Aug 2002 16:08:03 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 In-Reply-To: <057a01c23c09$1eaef570$01c9a8c0@johnnew> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 892 > > vrpm (the script) executes > > rpm --root /vservers/ ... If you use the RedHat up2date command, I imagine you could use rhn_register on each virtual machine, then run up2date on each machine to update any RPM's... root /> vserver myserver enter [root:myserver /] up2date -u -i Since I'm only going to have a handful of virtual servers, this is going to be my approach. Obviously this wouldn't be feasible with people who have dozens of vservers on a machine though. -id From vserver.error@solucorp.qc.ca Mon Aug 5 02:21:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g756KxiB002637; Mon, 5 Aug 2002 02:21:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g755tZa02262 for vserver.list; Mon, 5 Aug 2002 01:55:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.renta.net (ns1.renta.net [203.25.132.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g755tYY02258 for ; Mon, 5 Aug 2002 01:55:34 -0400 Message-Id: <200208050555.g755tYY02258@dns.solucorp.qc.ca> Received: from there (CPE-203-51-206-24.qld.bigpond.net.au [::ffff:203.51.206.24]) by ns1.renta.net with esmtp; Mon, 05 Aug 2002 15:55:32 +1000 Content-Type: text/plain; charset="iso-8859-1" From: Mark Constable To: vserver@solucorp.qc.ca Subject: Re: [vserver] Debian package available Date: Mon, 5 Aug 2002 15:55:29 +1000 X-Mailer: KMail [version 1.3.2] References: <3D4D93AD.5000602@euronetics.se> In-Reply-To: <3D4D93AD.5000602@euronetics.se> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 893 Tomas Fasth wrote: > I concur. And I think lot more people would discover and start using > vserver if we succeed to get a vserver package, perhaps in company > with a kernel-patch-ctx package, available on the official debian > distribution mirrors. Same here, been waiting for a debianized version before using vserver. Thank you Mark Lawrence ! FWIW and close to OT, I just tried the patch-2.4.18ctx-12 against 2.4.19 and there are only two rejects. I've stared at one of them for an hour and I'm not quite comfortable enough with the code to know where to manually adjust the 2.4.19 kernel code. Is anyone working on this patch or interested in getting it to apply against a 2.4.19 kernel ? --markc From vserver.error@solucorp.qc.ca Mon Aug 5 14:36:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g75IZwiB007672; Mon, 5 Aug 2002 14:35:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g75ID5q19741 for vserver.list; Mon, 5 Aug 2002 14:13:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g75ID4Y19737 for ; Mon, 5 Aug 2002 14:13:04 -0400 Received: (from apache@localhost) by email.siteturn.com (8.11.6/8.11.6) id g75I32Z22908; Mon, 5 Aug 2002 11:03:02 -0700 X-Authentication-Warning: email.corp.siteturn.com: apache set sender to celliot@siteturn.com using -f Received: from 66.88.139.179 (SquirrelMail authenticated user celliot) by email.corp.siteturn.com with HTTP; Mon, 5 Aug 2002 11:03:01 -0700 (PDT) Message-ID: <3181.66.88.139.179.1028570581.squirrel@email.corp.siteturn.com> Date: Mon, 5 Aug 2002 11:03:01 -0700 (PDT) Subject: [vserver] Need Help From: To: vserver@solucorp.qc.ca X-Mailer: SquirrelMail (version 1.0.6) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 894 Hello, We are attempting to implement Vservers on our network and are in need of some assistance. We are looking to have a system developed that will allow us to deploy Linux Virtual Private Servers, allowing multiple instances of Red Hat Linux 7.1 or higher, to operate on a single physical server. Familiarity with the VPS technology and prior experience is a must! Each VPS will need to have the ability to have quotas for disk space, CPU usage (%), and memory. System will need to have a central management interface so that we can view all active VPSes and their resources. Backend/Management System will need to be MySQL and either Perl or PHP. We are looking to hire an experienced contractor to complete this project ASAP. If you are interested, please contact me directly at: vps@bouncepath.com The compensation for this job is negotiable, based on experience on prior success. Thank you! From vserver.error@solucorp.qc.ca Mon Aug 5 15:22:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g75JLTiB007930; Mon, 5 Aug 2002 15:21:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g75Iwb020789 for vserver.list; Mon, 5 Aug 2002 14:58:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from student6.rug.ac.be (student6.rug.ac.be [157.193.88.74]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g75IwaY20785 for ; Mon, 5 Aug 2002 14:58:37 -0400 Received: (from ivo@localhost) by student6.rug.ac.be (8.9.3/8.9.3/Debian 8.9.3-21) id UAA18126 for vserver@solucorp.qc.ca; Mon, 5 Aug 2002 20:58:36 +0200 Date: Mon, 5 Aug 2002 20:58:36 +0200 From: Ivo De Decker To: vserver@solucorp.qc.ca Subject: [vserver] vserver and 2.4.19 Message-ID: <20020805205836.B16991@student.rug.ac.be> References: <3D4D93AD.5000602@euronetics.se> <200208050555.g755tYY02258@dns.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <200208050555.g755tYY02258@dns.solucorp.qc.ca>; from markc@renta.net on Mon, Aug 05, 2002 at 03:55:29PM +1000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 895 On Mon, Aug 05, 2002 at 03:55:29PM +1000, Mark Constable wrote: > Tomas Fasth wrote: > > I concur. And I think lot more people would discover and start using > > vserver if we succeed to get a vserver package, perhaps in company > > with a kernel-patch-ctx package, available on the official debian > > distribution mirrors. I am also using debian and I hope the debianized version will be available soon. > Thank you Mark Lawrence ! > > FWIW and close to OT, I just tried the patch-2.4.18ctx-12 against 2.4.19 > and there are only two rejects. I've stared at one of them for an hour > and I'm not quite comfortable enough with the code to know where to > manually adjust the 2.4.19 kernel code. Is anyone working on this patch > or interested in getting it to apply against a 2.4.19 kernel ? I did try to get ctx-12 to apply against 2.4.19-rc3. You need to be carefull, as there are some changes apart from the 2 rejects (if I'm not mistaken the numbers for the kernel calls need to be adjusted). Apart from that, there have been changes in the reiserfs code, when the patch is applied, reiserfs doesn't compile anymore. The changes are related to the immutable flags, and shouldn't be too hard to fix, but I don't use reiserfs, so I didn't bother. I have a patch (it was made for 2.4.19-rc3, but applies to 2.4.19 as well) that works for me. I would rather not send it to the list, because it would be better if someone reviewed the changes first, but if there is enough interest, I can send it... Greetings, Ivo De Decker From vserver.error@solucorp.qc.ca Tue Aug 6 14:08:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g76I7ZiB026596; Tue, 6 Aug 2002 14:07:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g76Hbok20496 for vserver.list; Tue, 6 Aug 2002 13:37:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g76HbnY20492 for ; Tue, 6 Aug 2002 13:37:49 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g76Hbd707828 for vserver@solucorp.qc.ca; Tue, 6 Aug 2002 13:37:39 -0400 From: Jacques Gelinas Date: Tue, 6 Aug 2002 13:37:39 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Debian package available X-mailer: tlmpmail 0.6 Message-ID: <20020806133739.9f842047c66d@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 896 On Sat, 3 Aug 2002 02:18:26 -0500, Mark Lawrence wrote > Hello all, > > I apologise for the noise if this has already been done, but I am not > subscribed and don't know the past history. > > I have created a debian package of the vserver utilities version 0.18 and > included an implementation of "newvserver" based on debootstrap for a > debian system. If people would find either of these useful then I would be > pleased to mail them to someone, but unfortunately cannot host the package > myself. Perhaps the official web site would be a good place? > > Just one note on the whole /etc/init.d/* thing: For simplicity my package > modifies /etc/init.d/rc to prepend "chbind" in front of all system scripts > so that you don't have the mess of swapping individual init scripts which > are possibly already customized. This probably doesn't work for you if you > run multiple IPs in your root server... Maybe, but the goal is not the keep services in the root server. > The changes I had to make to the sources were quite minor. The only place > that I think breaks the default installation (make install 'n friends) was > the Makefile. Would anyone consider it worth the effort (but more > importantly would they be rolled into the distribution) if I produced > patches that meant you could build both rpms and debs from the tar.gz? > > Just a thought because I would rather not go through this effort again > when the next version is released :) I have been working on something like this. Currently I have the /usr/sbin/vserver script which dynamically handle debian and other distribution. So you can have a mix of distributions in vservers. I have done many changes here and there in the script to clean it up. I have not addressed the newvserver script. Please send me yours and I will try to merge that, keeping the dynamic (multi distribution) feature. Currently, you can build the rpm from the Makefile (make buildrpm). I would like to get the equivalent for debian. So please send it to me. Once I have this, I will produce deb and rpm for every releases --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Aug 6 15:03:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g76J3piB026954; Tue, 6 Aug 2002 15:03:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g76Idoe22492 for vserver.list; Tue, 6 Aug 2002 14:39:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.wild98webhosting.com (server.wild98.com [64.26.141.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g76IdnY22488 for ; Tue, 6 Aug 2002 14:39:50 -0400 Received: from idouglas (lsanca2-ar26-4-46-185-054.lsanca2.dsl-verizon.net [4.46.185.54]) by www.wild98webhosting.com (8.11.6/linuxconf) with SMTP id g76IdnM31130 for ; Tue, 6 Aug 2002 14:39:49 -0400 From: "Ian Douglas" To: Subject: [vserver] vserver basics - virtual web hosting Date: Tue, 6 Aug 2002 11:39:43 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Importance: Normal In-Reply-To: <3181.66.88.139.179.1028570581.squirrel@email.corp.siteturn.com> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: A X-Keywords: X-UID: 897 Hey all. After a few botched attempts at making a vserver and then trying to slim the vserver down to the bare necessities (and then realizeing I hadn't done a "vserver server1 enter" and jsut removed a few dozen RPM's I intended to keep on the main server), then trying to make a minimal install on the main server and a vserver copy from that then upgrading the main server (which failed horribly, couldn't use the RedHat 'upgrade' installation to add Xwindows for some reason; So I just did an "everything" install ... /sigh 3.5GB later ... good think hard drives are cheap, a handful of resellers will fill up my 60GB disk pretty quickly. I'm curious to know if any of you could offer some advice on this: I run a virtual web hosting service, and I have some resellers, each of whom I want to give a vserver. I'm having a hard time udnerstanding the services setup. On the main server, if I run 'setup' (RedHat 7.3), I see the typcial services, httpd, named, sendmail, etc., and then v_httpd, v_sendmail. On the MAIN server, should I UN-select the httpd/sendmail services and only run the v_ services? Will vdeliver from Linuxconf still work as intended, or should I need to make a v_linuxconf script? What about POP3 mail (ipop3, make a v_ipop3 script?)? Thanks for the tip earlier with making a v_ftpd script, very helpful. Any other helpful hints would be appreciated greatly. -id From vserver.error@solucorp.qc.ca Tue Aug 6 16:10:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g76KAJiB027602; Tue, 6 Aug 2002 16:10:20 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g76JccK24431 for vserver.list; Tue, 6 Aug 2002 15:38:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g76JcbY24427 for ; Tue, 6 Aug 2002 15:38:37 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17cAA2-0002qo-00 for ; Tue, 06 Aug 2002 21:38:30 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D5025B6.CAB8906D@silicide.dk> Date: Tue, 06 Aug 2002 21:38:30 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver basics - virtual web hosting References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17cAA2-0002qo-00*X1VwkAHnXPA* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 898 Ian Douglas wrote: [cut - removing wrong packages] > I run a virtual web hosting service, and I have some resellers, each of whom > I want to give a vserver. I'm having a hard time udnerstanding the services > setup. how many ip adresses do you have ?? Apache can only run in one vserver/root server, if all uses the same ip. > On the main server, if I run 'setup' (RedHat 7.3), I see the typcial > services, httpd, named, sendmail, etc., and then v_httpd, v_sendmail. On the > MAIN server, should I UN-select the httpd/sendmail services and only run the > v_ services? The v_ services, does, as far as i understand, the same as the other, except it starts the service inside a vserver. You could do a vserver enter. > Any other helpful hints would be appreciated greatly. Give all your vservers a different name, and show that name in the prompt. JonB From vserver.error@solucorp.qc.ca Tue Aug 6 16:18:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g76KHviB027658; Tue, 6 Aug 2002 16:17:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g76Jps424952 for vserver.list; Tue, 6 Aug 2002 15:51:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g76JpqY24947 for ; Tue, 6 Aug 2002 15:51:52 -0400 Received: from localhost (alien.vlad.net [208.236.0.236]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g76JpViC027268 for ; Tue, 6 Aug 2002 15:51:31 -0400 Date: Tue, 6 Aug 2002 15:51:31 -0400 (EDT) From: Vlad To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver basics - virtual web hosting In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-VirusScanner: Found to be clean, Found to be clean Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: RO X-Status: X-Keywords: X-UID: 899 I do pretty much the same thing and I think you're going about this the wrong way; Do not run ANYTHING on the main server except *maybe* sshd; This is just my biased way of doing things of course, but I wouldn't enjoy having the root server owned and having access to every single vserver underneath. Just make sure that you edit the /etc/ssh/sshd_config and specify the ip address to bind sshd to. So turn off all the ftp/pop/etc services on the root server. As far as the individual vservers are concerned make sure you just go with a barebones configuration and install all the services in the individual server. This is both faster and gives you more flexibility (if you don't give certain resellers sql servers or mail or whatever) - you can just up2date them from a local server after the installation - it also allows you to make custom packages, etc. You should be able to get barebone server installations with apache/php/sql/mail/ftp in under 180 megs. At least thats what we give out. -Vlad On Tue, 6 Aug 2002, Ian Douglas wrote: > Hey all. > > After a few botched attempts at making a vserver and then trying to slim the > vserver down to the bare necessities (and then realizeing I hadn't done a > "vserver server1 enter" and jsut removed a few dozen RPM's I intended to > keep on the main server), then trying to make a minimal install on the main > server and a vserver copy from that then upgrading the main server (which > failed horribly, couldn't use the RedHat 'upgrade' installation to add > Xwindows for some reason; So I just did an "everything" install ... /sigh > 3.5GB later ... good think hard drives are cheap, a handful of resellers > will fill up my 60GB disk pretty quickly. > > I'm curious to know if any of you could offer some advice on this: > > I run a virtual web hosting service, and I have some resellers, each of whom > I want to give a vserver. I'm having a hard time udnerstanding the services > setup. > > On the main server, if I run 'setup' (RedHat 7.3), I see the typcial > services, httpd, named, sendmail, etc., and then v_httpd, v_sendmail. On the > MAIN server, should I UN-select the httpd/sendmail services and only run the > v_ services? > > Will vdeliver from Linuxconf still work as intended, or should I need to > make a v_linuxconf script? What about POP3 mail (ipop3, make a v_ipop3 > script?)? > > Thanks for the tip earlier with making a v_ftpd script, very helpful. > > Any other helpful hints would be appreciated greatly. > > -id > > From vserver.error@solucorp.qc.ca Tue Aug 6 16:29:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g76KSviB027769; Tue, 6 Aug 2002 16:28:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g76K0nB25208 for vserver.list; Tue, 6 Aug 2002 16:00:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-75-27.telepac.pt [213.13.75.27]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g76K0mY25204 for ; Tue, 6 Aug 2002 16:00:49 -0400 Received: (qmail 2952 invoked from network); 6 Aug 2002 20:00:40 -0000 Received: from localhost (HELO vgertech.com) (127.0.0.1) by localhost with SMTP; 6 Aug 2002 20:00:40 -0000 Message-ID: <3D502AE8.30605@vgertech.com> Date: Tue, 06 Aug 2002 21:00:40 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Debian package available References: <20020806133739.9f842047c66d@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 900 Jacques Gelinas wrote: [..snip..] > > Once I have this, I will produce deb and rpm for every releases > These are very good news!! Keep up the good work! :) From vserver.error@solucorp.qc.ca Tue Aug 6 17:32:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g76LVriB028264; Tue, 6 Aug 2002 17:31:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g76L03k27309 for vserver.list; Tue, 6 Aug 2002 17:00:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g76L02Y27305 for ; Tue, 6 Aug 2002 17:00:02 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g76Kxqs09803 for vserver@solucorp.qc.ca; Tue, 6 Aug 2002 16:59:52 -0400 From: Jacques Gelinas Date: Tue, 6 Aug 2002 16:59:52 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Issues with RPM scripts ... X-mailer: tlmpmail 0.6 Message-ID: <20020806165952.295865e4bde1@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 901 On Sun, 4 Aug 2002 20:06:01 -0500, Herbert Poetzl wrote > > hi everyone! > > I encountered this problem by mere accident, as > I upgraded some apache modules on my vservers, > and the upgrade didn't reload the apache config, > but instead restarted the apache server on the > real machine ... > > vrpm (the script) executes > > rpm --root /vservers/ ... > > which is perfect for packages without pre/post > install/uninstall scripts interacting with > running processes, and/or requiring more than > a chrooted environment, but results in strange > effects otherwise ... > > for example: executing 'killall -USR1 httpd' > will for sure do a graceful restart of apache, > but not for the apache within the vserver *G* > > one solution to this problem could be: > > - copy the rpm to /vservers/tmp/ > - call vserver exec rpm > > (this is what I usually do) > > I think a better (read: more practical) solution > could be to enter the virtual server context, > reduce the capabilities, but stay within the current > filesystem (no chroot), and then call the main > rpm with the --root option ... This is what the next release will do. I had experienced the same problem and came to this conclusions. It is not reducing the capabiity though. Maybe it should --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Aug 6 17:42:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g76LfwiB028327; Tue, 6 Aug 2002 17:41:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g76LFPw27798 for vserver.list; Tue, 6 Aug 2002 17:15:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.wild98webhosting.com (server.wild98.com [64.26.141.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g76LFOY27794 for ; Tue, 6 Aug 2002 17:15:24 -0400 Received: from idouglas (lsanca2-ar26-4-46-185-054.lsanca2.dsl-verizon.net [4.46.185.54]) by www.wild98webhosting.com (8.11.6/linuxconf) with SMTP id g76LFPM26086 for ; Tue, 6 Aug 2002 17:15:25 -0400 From: "Ian Douglas" To: Subject: RE: [vserver] vserver basics - virtual web hosting Date: Tue, 6 Aug 2002 14:15:20 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Importance: Normal In-Reply-To: <3D5025B6.CAB8906D@silicide.dk> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 902 > how many ip adresses do you have ?? One per reseller; their clients will share their IP using the VirtualHost directive to Apache. > Apache can only run in one vserver/root server, if all uses the same ip. Yup. > > On the main server, if I run 'setup' (RedHat 7.3), I see the typcial > > services, httpd, named, sendmail, etc., and then v_httpd, > v_sendmail. On the > > MAIN server, should I UN-select the httpd/sendmail services and > only run the > > v_ services? > > The v_ services, does, as far as i understand, the same as the other, > except > it starts the service inside a vserver. You could do a vserver enter. So the main server should just run "httpd" and the others shoudl run "v_httpd" ? > Give all your vservers a different name, and show that name in the > prompt. Yeah, already figured that one out after removing all those RPM files... /sigh -id From vserver.error@solucorp.qc.ca Tue Aug 6 19:41:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g76NfSiB029073; Tue, 6 Aug 2002 19:41:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g76NG4p31232 for vserver.list; Tue, 6 Aug 2002 19:16:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.13thfloor.at (www.13thfloor.at [212.16.59.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g76NG3Y31228 for ; Tue, 6 Aug 2002 19:16:03 -0400 Received: by www.13thfloor.at (Postfix, from userid 1001) id F2606220966; Wed, 7 Aug 2002 01:16:02 +0200 (CEST) Date: Wed, 7 Aug 2002 01:16:02 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver basics - virtual web hosting Message-ID: <20020806231602.GA6022@www.13thfloor.at> References: <3D5025B6.CAB8906D@silicide.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 903 On Tue, Aug 06, 2002 at 02:15:20PM -0700, Ian Douglas wrote: > > > On the main server, if I run 'setup' (RedHat 7.3), I see the typcial > > > services, httpd, named, sendmail, etc., and then v_httpd, > > v_sendmail. On the > > > MAIN server, should I UN-select the httpd/sendmail services and > > only run the > > > v_ services? > > > > The v_ services, does, as far as i understand, > > the same as the other, > > except it starts the service inside a vserver. > > You could do a vserver enter. hmm, thats not exactly what they do ... lets take a look at v_httpd: -----snip---- # description: Wrapper to start httpd bound to a single IP IP=eth0 if [ -f /etc/vservices/httpd.conf ] ; then . /etc/vservices/httpd.conf fi exec /usr/sbin/chbind --ip $IP /etc/init.d/httpd $* -----snip----- the chbind tool binds (reduces) the ip address(es) to the given one --ip and calls the _original_ script to start their service ... > So the main server should just run "httpd" and > the others shoudl run "v_httpd" ? so short answer to your question: - call v_xxx in your main server to limit the services to the given ip(s) - call xxx in your virtual servers because the chbind is already in effect because I often have more than one interface ative for the main server, I modified the v_xxx scripts to use the new features of binding to more than one ip address ... for example for the v_sshd script ... -----snip----- IP="eth0 eth1" IPC=`for n in $IP; do echo "--ip $n"; done` if [ -f /etc/vservices/sshd.conf ] ; then . /etc/vservices/sshd.conf fi exec /usr/sbin/chbind $IPC /etc/init.d/sshd $* -----snip----- > > Give all your vservers a different name, and > > show that name in the prompt. > Yeah, already figured that one out after removing > all those RPM files... > /sigh good idea *G* best, Herbert From vserver.error@solucorp.qc.ca Tue Aug 6 21:59:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g771xSiB030212; Tue, 6 Aug 2002 21:59:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g771a6g01896 for vserver.list; Tue, 6 Aug 2002 21:36:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from skessa.this.is (skessa.this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g771a5Y01892 for ; Tue, 6 Aug 2002 21:36:06 -0400 Received: from skessa.this.is (www-data@localhost.this.is [127.0.0.1]) by skessa.this.is (8.12.3/8.12.3/Debian -4) with ESMTP id g771a56F012261 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=FAIL) for ; Wed, 7 Aug 2002 01:36:06 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.3/8.12.3/Debian -4) id g771a5Fv012259 for vserver@solucorp.qc.ca; Wed, 7 Aug 2002 01:36:05 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca Subject: re: [vserver] Debian package available Message-ID: <1028684165.3d507985d3dfa@this.is> Date: Wed, 07 Aug 2002 01:36:05 +0000 (GMT) From: ragnar@this.is References: <20020806133739.9f842047c66d@remtk.solucorp.qc.ca> In-Reply-To: <20020806133739.9f842047c66d@remtk.solucorp.qc.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 194.144.127.80 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 906 Hi, > Once I have this, I will produce deb and rpm for every releases Is that root_server.deb ? The important thing is to have the vservers running debian but having a root_vserver.deb would be cool. With years of debian administration I would (please) be happy to test. Best ragnar From vserver.error@solucorp.qc.ca Wed Aug 7 02:06:29 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7766AiB032329; Wed, 7 Aug 2002 02:06:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g775TcT07273 for vserver.list; Wed, 7 Aug 2002 01:29:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g775TcY07269 for ; Wed, 7 Aug 2002 01:29:38 -0400 Received: (qmail 13305 invoked from network); 7 Aug 2002 05:29:27 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 7 Aug 2002 05:29:27 -0000 Message-Id: <5.1.0.14.2.20020807012931.03314e00@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Wed, 07 Aug 2002 01:30:19 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] Just to be clear about quota and LVM Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 907 nobody has gotten quota working inside a vserver with LVM yet have they? __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Wed Aug 7 05:02:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7791niB001908; Wed, 7 Aug 2002 05:01:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g778WCU12141 for vserver.list; Wed, 7 Aug 2002 04:32:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp010.tiscali.dk (smtp010.tiscali.dk [212.54.64.103]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g778W7Y12137 for ; Wed, 7 Aug 2002 04:32:11 -0400 Received: from lapzap.unispeed.dk (62.79.39.234.adsl.by.worldonline.dk [62.79.39.234]) by smtp010.tiscali.dk (8.12.5/8.12.5) with SMTP id g778W5Ck024793 for ; Wed, 7 Aug 2002 10:32:06 +0200 (MEST) Date: Wed, 7 Aug 2002 10:05:14 +0000 From: Johnny Carlsen To: vserver@solucorp.qc.ca Subject: [vserver] DNS resolving problems in vserver Message-Id: <20020807100514.08e149fb.jcarlsen@post.cybercity.dk> Organization: Unispeed A/S X-Mailer: Sylpheed version 0.8.1 (GTK+ 1.2.10; i686-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 908 Hi, I have a small problem with DNS resolving when running in a vserver. I have in my /etc/resolv.conf the following lines: nameserver 212.54.64.170 nameserver 212.54.64.171 I have no problem pinging these servers, but im still unable to resolv anything. I have the following flags and caps in my /etc/vserver/testserver.conf [snip] S_FLAGS="lock sched nproc" S_CAPS="CAP_NET_RAW CAP_NET_BIND_SERVICE" [snip] I have no such problems on the main server running an almost identical installation using the same nameservers. Anyone got any good ideas? Regards - Johnny Carlsen From vserver.error@solucorp.qc.ca Wed Aug 7 07:09:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77B8oiB002867; Wed, 7 Aug 2002 07:08:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77AKQj14795 for vserver.list; Wed, 7 Aug 2002 06:20:26 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77AKPY14791 for ; Wed, 7 Aug 2002 06:20:25 -0400 Received: from hofmann.snowcra.sh (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id EDB7F19086 for ; Wed, 7 Aug 2002 11:12:28 +0100 (BST) Received: from hofmann (localhost [127.0.0.3]) by hofmann.snowcra.sh (Postfix) with SMTP id 8485B26CC; Wed, 7 Aug 2002 11:20:25 +0100 (BST) Date: Wed, 7 Aug 2002 11:20:25 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Cc: jason@pwebtech.com Subject: Re: [vserver] Just to be clear about quota and LVM Message-Id: <20020807112025.08cc2fe8.sv@easyspace.com> In-Reply-To: <5.1.0.14.2.20020807012931.03314e00@mail.pwebtech.com> References: <5.1.0.14.2.20020807012931.03314e00@mail.pwebtech.com> Organization: Easyspace Ltd X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: PI2{lKxF*i|]%@A&-0AV/%sXN)UJ<+SeG}%8Cn%**KZ[f_OSx{xw&Rstfu?!x^ZJ%LV@4Z% Zr"EZm.GQFy@;"V82_:?cJ`kQ3+ Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 909 Jason Silverglate wrote: > nobody has gotten quota working inside a vserver with LVM yet have they? I have :-) But you have to write wrapper scripts that request the hosting server to run quotactl commands, etc with CAP_SYSADMIN, if you want `root' from inside the vserver to be able to set them up. Otherwise, they seem to work fine. -- Sam Vilain, sv@easyspace.com Easyspace: an accredited ICANN GPG: http://sam.vilain.net/sam.asc registrar & web hosting company 7D74 2A09 B2D3 C30F F78E Have your domain run by techies 278A A425 30A9 05B5 2F13 with a clue. www.easyspace.com America is the only country that went from barbarism to decadence without civilization in between. OSCAR WILDE From vserver.error@solucorp.qc.ca Wed Aug 7 07:18:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77BHViB002981; Wed, 7 Aug 2002 07:17:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77Antg15539 for vserver.list; Wed, 7 Aug 2002 06:49:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtpwarr (mailhost.synstar.co.uk [195.102.9.197]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77AntY15535 for ; Wed, 7 Aug 2002 06:49:55 -0400 Received: from [10.4.10.87] (helo=mailgate.synstar.net) by smtpwarr with esmtp (Exim 3.22 #1) id 17cO6v-0003mI-00 for vserver@solucorp.qc.ca; Wed, 07 Aug 2002 11:32:13 +0100 Received: from there ([10.3.80.113]) by mailgate.synstar.net (8.12.1/8.12.1) with SMTP id g77AtxgU003839 for ; Wed, 7 Aug 2002 10:56:00 GMT Message-Id: <200208071056.g77AtxgU003839@mailgate.synstar.net> Content-Type: text/plain; charset="iso-8859-1" From: Nigel Howard Organization: Synstar Business Continuity To: vserver@solucorp.qc.ca Subject: [vserver] unsubscribe Date: Wed, 7 Aug 2002 11:46:24 +0100 X-Mailer: KMail [version 1.3.2] References: <5.1.0.14.2.20020807012931.03314e00@mail.pwebtech.com> <20020807112025.08cc2fe8.sv@easyspace.com> In-Reply-To: <20020807112025.08cc2fe8.sv@easyspace.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 910 unsubscribe From vserver.error@solucorp.qc.ca Wed Aug 7 07:26:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77BQEiB003099; Wed, 7 Aug 2002 07:26:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77B0vn15886 for vserver.list; Wed, 7 Aug 2002 07:00:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from merlin.zolotek.net (dial-62-64-205-34.access.uk.tiscali.com [62.64.205.34]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g77B0tY15882 for ; Wed, 7 Aug 2002 07:00:56 -0400 Received: from dial-62-64-171-186.access.uk.tiscali.com (merlin.zolotek.net [127.0.0.1]) by merlin.zolotek.net (Weasel v1.20) for ; 07 Aug 2002 12:01:07 From: "Lyn St George" To: "vserver@solucorp.qc.ca" Date: Wed, 07 Aug 2002 12:01:06 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: Re: [vserver] DNS resolving problems in vserver Message-ID: <200208071201.0000002F@merlin.zolotek.net> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 911 On Wed, 7 Aug 2002 10:05:14 +0000, Johnny Carlsen wrote: >Hi, > >I have a small problem with DNS resolving when running in a vserver. > >I have in my /etc/resolv.conf the following lines: >nameserver 212.54.64.170 >nameserver 212.54.64.171 > >I have no problem pinging these servers, but im still unable to resolv >anything. > >I have the following flags and caps in my /etc/vserver/testserver.conf > >[snip] >S_FLAGS="lock sched nproc" >S_CAPS="CAP_NET_RAW CAP_NET_BIND_SERVICE" >[snip] > >I have no such problems on the main server running an almost identical >installation using the same nameservers. > >Anyone got any good ideas? Not yet, but I really need to as I have a similar problem. For me it happens with all vservers bar one, and my eyes are hanging out trying to see any difference between them. All *conf files have the default: S_FLAGS="lock nproc" and S_CAPS empty. The faulty vservers are also difficult to contact - eg httpd, sendmail, fptd all take a long time to respond. I would suspect routing problems except that they all seem to have the same style of configuration. How have you set up your routes? Eg, "IPROOTDEV=eth0", or have you kept the routes in the main server instead? >Regards > - Johnny Carlsen > - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Wed Aug 7 09:16:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77DGriB003849; Wed, 7 Aug 2002 09:16:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77CXs418109 for vserver.list; Wed, 7 Aug 2002 08:33:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp020.tiscali.dk (smtp020.tiscali.dk [212.54.64.104]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77CXrY18105 for ; Wed, 7 Aug 2002 08:33:53 -0400 Received: from lapzap.unispeed.dk (62.79.39.234.adsl.by.worldonline.dk [62.79.39.234]) by smtp020.tiscali.dk (8.12.5/8.12.5) with SMTP id g77CXoXo000927; Wed, 7 Aug 2002 14:33:51 +0200 (MEST) Date: Wed, 7 Aug 2002 14:08:08 +0000 From: Johnny Carlsen To: vserver@solucorp.qc.ca Cc: lyn@zolotek.net Subject: Re: [vserver] DNS resolving problems in vserver Message-Id: <20020807140808.7735e4f1.jrc@unispeed.dk> In-Reply-To: <200208071201.0000002F@merlin.zolotek.net> References: <200208071201.0000002F@merlin.zolotek.net> Organization: Unispeed A/S X-Mailer: Sylpheed version 0.8.1 (GTK+ 1.2.10; i686-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 912 On Wed, 07 Aug 2002 12:01:06 +0000 "Lyn St George" wrote: > Not yet, but I really need to as I have a similar problem. For me > it happens with all vservers bar one, and my eyes are hanging > out trying to see any difference between them. All *conf files > have the default: S_FLAGS="lock nproc" and S_CAPS empty. It seems that the flags and caps aren't the problem then, I better look elsewhere. This is my first vserver ever, so I unfortunateky have no working configuration to compare with. > The faulty vservers are also difficult to contact - eg httpd, > sendmail, fptd all take a long time to respond. I would suspect > routing problems except that they all seem to have the same style of > configuration. This happens in many server programs if they are unable to resolve the ip of the incomming connection - the server will hang til the reverse lookup times out. If you get dns resolvs working, then I think the problem you have with delays will be solved as well. > How have you set up your routes? Eg, "IPROOTDEV=eth0", or > have you kept the routes in the main server instead? My IPROOTDEV is eth0 - and this does not seem to be the problems since "pings" and other non-hostname network activity works just fine. Regards, - Johnny Carlsen From vserver.error@solucorp.qc.ca Wed Aug 7 16:30:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77KTZiB007846; Wed, 7 Aug 2002 16:29:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77IOmc27317 for vserver.list; Wed, 7 Aug 2002 14:24:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.wild98webhosting.com (server.wild98.com [64.26.141.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77IOmY27313 for ; Wed, 7 Aug 2002 14:24:48 -0400 Received: from idouglas (lsanca2-ar26-4-46-185-054.lsanca2.dsl-verizon.net [4.46.185.54]) by www.wild98webhosting.com (8.11.6/linuxconf) with SMTP id g77IOlM09226 for ; Wed, 7 Aug 2002 14:24:48 -0400 From: "Ian Douglas" To: Subject: [vserver] picky detail ... Date: Wed, 7 Aug 2002 11:24:36 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 In-Reply-To: <20020807140808.7735e4f1.jrc@unispeed.dk> Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 913 /etc/rc.d/init.d scripts have a lot of the same options that 'vserver' has, start, stop, restart, etc. But what is the option 'running' not called 'status'? Doesn't seem as intuitive. -id From vserver.error@solucorp.qc.ca Wed Aug 7 16:30:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77KTwiB007850; Wed, 7 Aug 2002 16:29:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77IaIX27595 for vserver.list; Wed, 7 Aug 2002 14:36:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gadolinium.btinternet.com (gadolinium.btinternet.com [194.73.73.111]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77IaIY27591 for ; Wed, 7 Aug 2002 14:36:18 -0400 Received: from host213-122-203-221.in-addr.btopenworld.com ([213.122.203.221] helo=johnnew) by gadolinium.btinternet.com with smtp (Exim 3.22 #8) id 17cVfI-0001NZ-00 for vserver@solucorp.qc.ca; Wed, 07 Aug 2002 19:36:13 +0100 From: "John Lyons" To: Subject: RE: [vserver] DNS resolving problems in vserver Date: Wed, 7 Aug 2002 19:35:58 +0100 Message-ID: <013d01c23e41$4663b0d0$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 914 > > >S_CAPS="CAP_NET_RAW CAP_NET_BIND_SERVICE" > > I have these set and when I try to start my vservers, i see a > message that > says: > > Starting named: capset failed: Operation not permitted Hopefully this will answer a few problems in one. 1) You need to have CAP_NET_RAW set in the conf file for the vserver in order to have any access to the internet. Without it you won't be able to ping anything from within a vserver. I would guess that you won't be able to see http/pop etc on the vservers without it hence the fact that someone couldn't contact the vservers. 2) The above error could be because you've got bind running on the host server? Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Wed Aug 7 16:30:37 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77KU9iB007870; Wed, 7 Aug 2002 16:30:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77JwAn29869 for vserver.list; Wed, 7 Aug 2002 15:58:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77Jw9Y29865 for ; Wed, 7 Aug 2002 15:58:10 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:49165 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Wed, 7 Aug 2002 21:57:47 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Wed, 7 Aug 2002 21:57:41 +0200 Date: Wed, 7 Aug 2002 21:57:41 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] DNS resolving problems in vserver Message-ID: <20020807215741.R16801@4t2.com> References: <013d01c23e41$4663b0d0$0100a8c0@johnnew> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <013d01c23e41$4663b0d0$0100a8c0@johnnew>; from support@nsnoc.com on Wed, Aug 07, 2002 at 07:35:58PM +0100 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 915 On Wed, Aug 07, 2002 at 07:35:58PM +0100, John Lyons wrote: > > > >S_CAPS="CAP_NET_RAW CAP_NET_BIND_SERVICE" > > > > I have these set and when I try to start my vservers, i see a > > message that > > says: > > > > Starting named: capset failed: Operation not permitted > > Hopefully this will answer a few problems in one. > > 1) You need to have CAP_NET_RAW set in the conf file for the vserver in > order to have any access to the internet. Without it you won't be able to > ping anything from within a vserver. I would guess that you won't be able to > see http/pop etc on the vservers without it hence the fact that someone > couldn't contact the vservers. without CAP_NET_RAW you won't be able to ping because ping needs full access to the interface. but normal tcp/upd services will work. Without CAP_NET_RAW, even root in the virtual server won't be able to sniff your network or do other fancy stuff with your interface - very usefull imho. i run many services (pop3s, imaps, http, https...) on a vserver without CAP_NET_RAW. In the case of named it won't help either. > 2) The above error could be because you've got bind running on the host > server? the above error could well be because he didn't read the vserver FAQ ;-) http://www.solucorp.qc.ca/howto.hc?projet=vserver&id=72 Tom From vserver.error@solucorp.qc.ca Wed Aug 7 16:31:09 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77KUwiB007901; Wed, 7 Aug 2002 16:30:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77J2G628259 for vserver.list; Wed, 7 Aug 2002 15:02:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from merlin.zolotek.net (dial-62-64-232-217.access.uk.tiscali.com [62.64.232.217]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g77J2EY28255 for ; Wed, 7 Aug 2002 15:02:15 -0400 Received: from dial-62-64-171-186.access.uk.tiscali.com (merlin.zolotek.net [127.0.0.1]) by merlin.zolotek.net (Weasel v1.20) for ; 07 Aug 2002 20:02:36 From: "Lyn St George" To: "vserver@solucorp.qc.ca" Date: Wed, 07 Aug 2002 20:02:35 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: Re: [vserver] DNS resolving problems in vserver Message-ID: <200208072002.0000002R@merlin.zolotek.net> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 916 On Wed, 7 Aug 2002 14:08:08 +0000, Johnny Carlsen wrote: >On Wed, 07 Aug 2002 12:01:06 +0000 >"Lyn St George" wrote: > >> Not yet, but I really need to as I have a similar problem. For me >> it happens with all vservers bar one, and my eyes are hanging >> out trying to see any difference between them. All *conf files >> have the default: S_FLAGS="lock nproc" and S_CAPS empty. > >It seems that the flags and caps aren't the problem then, I better look >elsewhere. > >This is my first vserver ever, so I unfortunateky have no working >configuration to compare with. > >> The faulty vservers are also difficult to contact - eg httpd, >> sendmail, fptd all take a long time to respond. I would suspect >> routing problems except that they all seem to have the same style of >> configuration. > >This happens in many server programs if they are unable to >resolve the ip of the incomming connection - the server will hang til >the reverse lookup times out. > >If you get dns resolvs working, then I think the problem you have with >delays will be solved as well. Well the answer to this is quite bizarre. The only thing different about the test vserver was that it did not have a domain name. Adding a domain name to its *conf immediately caused this vserver to exhibit the same faults as the other ones. Removing the domain name again let it operate properly. Removing the domain names from the *conf files for all the other vservers immediately let them spring into life also. I can't believe that this is a real solution - it must be a sympton of some other problem. Question is, what?? >> How have you set up your routes? Eg, "IPROOTDEV=eth0", or >> have you kept the routes in the main server instead? > >My IPROOTDEV is eth0 - and this does not seem to be the problems since >"pings" and other non-hostname network activity works just fine. > >Regards, > - Johnny Carlsen > - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Wed Aug 7 16:32:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77KW0iB007913; Wed, 7 Aug 2002 16:32:01 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77HuIh26586 for vserver.list; Wed, 7 Aug 2002 13:56:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.wild98webhosting.com (server.wild98.com [64.26.141.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77HuHY26582 for ; Wed, 7 Aug 2002 13:56:17 -0400 Received: from idouglas (lsanca2-ar26-4-46-185-054.lsanca2.dsl-verizon.net [4.46.185.54]) by www.wild98webhosting.com (8.11.6/linuxconf) with SMTP id g77HuHM04214 for ; Wed, 7 Aug 2002 13:56:17 -0400 From: "Ian Douglas" To: Subject: RE: [vserver] DNS resolving problems in vserver Date: Wed, 7 Aug 2002 10:56:01 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 In-Reply-To: <200208071201.0000002F@merlin.zolotek.net> Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 917 > >S_FLAGS="lock sched nproc" > >S_CAPS="CAP_NET_RAW CAP_NET_BIND_SERVICE" I have these set and when I try to start my vservers, i see a message that says: Starting named: capset failed: Operation not permitted Any ideas? -id From vserver.error@solucorp.qc.ca Wed Aug 7 16:37:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77Kb0iB007949; Wed, 7 Aug 2002 16:37:01 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77IocW27945 for vserver.list; Wed, 7 Aug 2002 14:50:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from telepath.isomedia.com (telepath.isomedia.com [207.115.64.86]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77IobY27941 for ; Wed, 7 Aug 2002 14:50:37 -0400 Received: from freya (pm109.focal.isomedia.com [66.147.197.24] (may be forged)) by telepath.isomedia.com (8.11.6/8.11.6) with SMTP id g77Io6f29864 for ; Wed, 7 Aug 2002 11:50:06 -0700 Received: by localhost with Microsoft MAPI; Wed, 7 Aug 2002 11:47:37 -0700 Message-ID: <01C23E08.3A5366C0.sarisky@pioneernet.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] DNS resolving problems in vserver Date: Wed, 7 Aug 2002 11:47:36 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MailScanner: Found to be clean X-MailScanner-SpamCheck: LEVEL=*, SpamAssassin (score=1.6, required 1, MAY_BE_FORGED) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 918 > 1) You need to have CAP_NET_RAW set in the conf file for the vserver in > order to have any access to the internet. Without it you won't be able to > ping anything from within a vserver. I would guess that you won't be able to > see http/pop etc on the vservers without it hence the fact that someone > couldn't contact the vservers. You can definitely have internet access for a vserver without CAP_NET_RAW. You do lose ping, but tcp and udp work fine. I've currently got a vserver doing domain name service (using tinydns - not BIND), and several serving up web pages, accepting and sending email, etc. Actually, I'm happy to lose ping, since it reduces the likelihood (slightly anyway) of a vserver being used for a DoS attack. HTH, Cathy Sarisky www.acornhosting.net From vserver.error@solucorp.qc.ca Wed Aug 7 16:38:37 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77KbxiB007969; Wed, 7 Aug 2002 16:38:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77J0kB28208 for vserver.list; Wed, 7 Aug 2002 15:00:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77J0jY28204 for ; Wed, 7 Aug 2002 15:00:45 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g77IoP524385 for ; Wed, 7 Aug 2002 11:50:25 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Wed, 7 Aug 2002 12:00:10 -0700 MIME-Version: 1.0 Subject: RE: [vserver] DNS resolving problems in vserver Message-ID: <3D510BCA.9997.A297701@localhost> Priority: normal In-reply-to: <01C23E08.3A5366C0.sarisky@pioneernet.net> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 919 Will SSH depend on CAP_NET_RAW as well for some reason ? I can't seem to get it to work and I have my config set the same way. I can't seem to get ANY network interaction with my vserver. On 7 Aug 2002 at 11:47, Cathy Sarisky wrote: > > 1) You need to have CAP_NET_RAW set in the conf file for the vserver in > > order to have any access to the internet. Without it you won't be able to > > ping anything from within a vserver. I would guess that you won't be able to > > see http/pop etc on the vservers without it hence the fact that someone > > couldn't contact the vservers. > > You can definitely have internet access for a vserver without CAP_NET_RAW. You > do lose ping, but tcp and udp work fine. I've currently got a vserver doing > domain name service (using tinydns - not BIND), and several serving up web > pages, accepting and sending email, etc. Actually, I'm happy to lose ping, > since it reduces the likelihood (slightly anyway) of a vserver being used for a > DoS attack. > > HTH, > > Cathy Sarisky > www.acornhosting.net > From vserver.error@solucorp.qc.ca Wed Aug 7 16:41:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77KeciB008001; Wed, 7 Aug 2002 16:40:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77JD9w28551 for vserver.list; Wed, 7 Aug 2002 15:13:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.sonet.pt (mail.sonet.pt [195.22.25.5] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g77JD8Y28547 for ; Wed, 7 Aug 2002 15:13:08 -0400 Received: (qmail 71689 invoked by uid 1003); 7 Aug 2002 19:32:27 -0000 Received: from unknown (HELO portatil) (217.129.104.214) by mail.sonet.pt with SMTP; 7 Aug 2002 19:32:27 -0000 Message-ID: <00e001c23e46$62b04ff0$a0f4a8c0@portatil> From: "Jorge Filipe Andrade" To: Subject: [vserver] Patch for Kernel 2.4.19 Date: Wed, 7 Aug 2002 20:12:34 +0100 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_00DD_01C23E4E.C437AEF0" X-Priority: 1 X-MSMail-Priority: High X-Mailer: Microsoft Outlook Express 6.00.2600.0000 Disposition-Notification-To: "Jorge Filipe Andrade" X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 920 This is a multi-part message in MIME format. ------=_NextPart_000_00DD_01C23E4E.C437AEF0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hello, Well, kernel 2.4.19 released, right? :) So, when you release the patch-vserver-2.4.19ctx? Best Regards, Jorge Filipe Andrade Departamento T=E9cnico SONET - Servi=E7os Internet, Lda Av. 25 de Abril, 32C / 1=BAB 2800 - 299 Almada http://www.sonet.pt sonet@mail.sonet.pt - - - - - - - - - - - - - - - - - - - - - A l l =F4 s e r v - WebHosting, Housing, Co-Location e Aplica=E7=F5es = Empresariais http://alloserv.sonet.pt - - - - - - - - - - - - - - - - - - - - - ------=_NextPart_000_00DD_01C23E4E.C437AEF0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hello,
 
Well, kernel 2.4.19 released, right? :)
So, when you release the = patch-vserver-2.4.19ctx?
 
Best Regards,
 
Jorge Filipe Andrade
Departamento = T=E9cnico
 
SONET - Servi=E7os Internet, Lda
Av. 25 de Abril, = 32C /=20 1=BAB
2800 - 299 Almada
 
http://www.sonet.pt
sonet@mail.sonet.pt
 
- - - - - - - - - - - - - - - - - - - - -
A l l = =F4 s e r v -=20 WebHosting, Housing, Co-Location e Aplica=E7=F5es Empresariais
http://alloserv.sonet.pt
- - - = - - - - -=20 - - - - - - - - - - - - -
------=_NextPart_000_00DD_01C23E4E.C437AEF0-- From vserver.error@solucorp.qc.ca Wed Aug 7 16:45:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77KjWiB008033; Wed, 7 Aug 2002 16:45:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77JFZ328641 for vserver.list; Wed, 7 Aug 2002 15:15:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from telepath.isomedia.com (telepath.isomedia.com [207.115.64.86]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77JFYY28637 for ; Wed, 7 Aug 2002 15:15:35 -0400 Received: from freya (pm109.focal.isomedia.com [66.147.197.24] (may be forged)) by telepath.isomedia.com (8.11.6/8.11.6) with SMTP id g77JF8304393 for ; Wed, 7 Aug 2002 12:15:08 -0700 Received: by localhost with Microsoft MAPI; Wed, 7 Aug 2002 12:12:39 -0700 Message-ID: <01C23E0B.B96A29A0.sarisky@pioneernet.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] DNS resolving problems in vserver Date: Wed, 7 Aug 2002 12:12:38 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MailScanner: Found to be clean X-MailScanner-SpamCheck: LEVEL=*, SpamAssassin (score=1.6, required 1, MAY_BE_FORGED) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 921 SSH on my vservers works fine, without special permissions. Here's a thought. Is your main server running these services and binding these ports? Log in to the main server (not a vserver) and do a "netstat -an". If you've got services in the main server binding to those ports using 0.0.0.0, that's your problem. Use a wrapper or else edit that service's .conf file in the main server. Don't forget that services run on the main server can (and by default often will) grab ALL the IPs you have, even if you were intending to use some of them for virtual servers. On Wednesday, August 07, 2002 12:00 PM, Russell Anthony [SMTP:ranthony@siteturn.com] wrote: > Will SSH depend on CAP_NET_RAW as well for some reason ? I can't seem > to get it to work and I have my config set the same way. I can't seem to get > > ANY network interaction with my vserver. From vserver.error@solucorp.qc.ca Wed Aug 7 16:52:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77KqfiB008105; Wed, 7 Aug 2002 16:52:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77JJNg28707 for vserver.list; Wed, 7 Aug 2002 15:19:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from telepath.isomedia.com (telepath.isomedia.com [207.115.64.86]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77JJMY28702 for ; Wed, 7 Aug 2002 15:19:22 -0400 Received: from freya (pm109.focal.isomedia.com [66.147.197.24] (may be forged)) by telepath.isomedia.com (8.11.6/8.11.6) with SMTP id g77JJD305579 for ; Wed, 7 Aug 2002 12:19:13 -0700 Received: by localhost with Microsoft MAPI; Wed, 7 Aug 2002 12:16:44 -0700 Message-ID: <01C23E0C.4B9857C0.sarisky@pioneernet.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] DNS resolving problems in vserver Date: Wed, 7 Aug 2002 12:16:43 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MailScanner: Found to be clean X-MailScanner-SpamCheck: LEVEL=*, SpamAssassin (score=1.6, required 1, MAY_BE_FORGED) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 922 I have the following in each vserver's /etc/hosts, which I think helps: 127.0.0.1 my.domainname.com localhost.localdomain localhost 111.222.33.44 my.domainname.com localhost.localdomain localhost (Where 111.222.33.44 is that vserver's assigned IP address.) Hope that helps - it certainly seemed to fix my problems. Cathy Sarisky www.acornhosting.net On Wednesday, August 07, 2002 1:03 PM, Lyn St George [SMTP:lyn@zolotek.net] wrote: > Well the answer to this is quite bizarre. The only thing different > about the test vserver was that it did not have a domain name. > Adding a domain name to its *conf immediately caused this > vserver to exhibit the same faults as the other ones. Removing > the domain name again let it operate properly. Removing the > domain names from the *conf files for all the other vservers > immediately let them spring into life also. From vserver.error@solucorp.qc.ca Wed Aug 7 17:49:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77LmSiB008579; Wed, 7 Aug 2002 17:48:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77LKUW04949 for vserver.list; Wed, 7 Aug 2002 17:20:30 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77LKTY04945 for ; Wed, 7 Aug 2002 17:20:29 -0400 Received: from remtk.solucorp.qc.ca (g36-124.citenet.net [206.123.36.124]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g77LVKA97028 for ; Wed, 7 Aug 2002 17:31:20 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g77LK7h16826 for vserver@solucorp.qc.ca; Wed, 7 Aug 2002 17:20:07 -0400 From: Jacques Gelinas Date: Wed, 7 Aug 2002 17:20:04 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Patch for Kernel 2.4.19 X-mailer: tlmpmail 0.6 Message-ID: <20020807172004.08e07e3eda1a@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 923 On Wed, 7 Aug 2002 20:12:34 -0500, Jorge Filipe Andrade wrote > Hello, > > Well, kernel 2.4.19 released, right? :) > So, when you release the patch-vserver-2.4.19ctx? Today. Almost done. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Aug 7 18:07:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77M7ciB008789; Wed, 7 Aug 2002 18:07:39 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77LTVS05110 for vserver.list; Wed, 7 Aug 2002 17:29:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.wild98webhosting.com (server.wild98.com [64.26.141.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77LTVY05106 for ; Wed, 7 Aug 2002 17:29:31 -0400 Received: from idouglas (lsanca2-ar26-4-46-185-054.lsanca2.dsl-verizon.net [4.46.185.54]) by www.wild98webhosting.com (8.11.6/linuxconf) with SMTP id g77LTVM10883 for ; Wed, 7 Aug 2002 17:29:31 -0400 From: "Ian Douglas" To: Subject: RE: [vserver] DNS resolving problems in vserver Date: Wed, 7 Aug 2002 14:29:20 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 In-Reply-To: <20020807215741.R16801@4t2.com> Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 924 > > > > >S_CAPS="CAP_NET_RAW CAP_NET_BIND_SERVICE" > > > > > > I have these set > > > > 1) You need to have CAP_NET_RAW set in the conf file Uh, yeah ... "I have these set" eluded to that. ;o) > the above error could well be because he didn't read the vserver FAQ ;-) > http://www.solucorp.qc.ca/howto.hc?projet=vserver&id=72 Tom, you are the man, thanks. -id From vserver.error@solucorp.qc.ca Wed Aug 7 18:18:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77MI5iB008925; Wed, 7 Aug 2002 18:18:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77Lo3P05540 for vserver.list; Wed, 7 Aug 2002 17:50:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77Lo2Y05536 for ; Wed, 7 Aug 2002 17:50:02 -0400 Received: from remtk.solucorp.qc.ca (g36-101.citenet.net [206.123.36.101]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g77M0rA99042 for ; Wed, 7 Aug 2002 18:00:53 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g77Lm2e19859 for vserver@solucorp.qc.ca; Wed, 7 Aug 2002 17:48:02 -0400 From: Jacques Gelinas Date: Wed, 7 Aug 2002 17:48:02 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] picky detail ... X-mailer: tlmpmail 0.6 Message-ID: <20020807174802.37cb9e581cae@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 925 On Wed, 7 Aug 2002 11:24:36 -0500, Ian Douglas wrote > /etc/rc.d/init.d scripts have a lot of the same options that 'vserver' has, > start, stop, restart, etc. > > But what is the option 'running' not called 'status'? Doesn't seem as > intuitive. Well, yes and no. the running option is used to test if the server is running. if /usr/sbin/vserver xxx running then do something else do something else fi As such, the output is limited and the return code is useful. status on the other end is not intuitivly testable. It just reports something useful (or not). So we need both :-) I just add it. The status option will tell you if the vserver is running how many processes running its uptime (started since ?) This will be in the next release this week. Thanks! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Aug 7 18:43:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g77MhViB009073; Wed, 7 Aug 2002 18:43:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g77MJHh06105 for vserver.list; Wed, 7 Aug 2002 18:19:17 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g77MJHY06101 for ; Wed, 7 Aug 2002 18:19:17 -0400 Received: from remtk.solucorp.qc.ca (g36-101.citenet.net [206.123.36.101]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g77MU7A01159 for ; Wed, 7 Aug 2002 18:30:08 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g77MFhX20759 for vserver@solucorp.qc.ca; Wed, 7 Aug 2002 18:15:43 -0400 From: Jacques Gelinas Date: Wed, 7 Aug 2002 18:15:43 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] DNS resolving problems in vserver X-mailer: tlmpmail 0.6 Message-ID: <20020807181543.9c2e621c9fbd@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 926 On Wed, 7 Aug 2002 19:35:58 -0500, John Lyons wrote > > > >S_CAPS="CAP_NET_RAW CAP_NET_BIND_SERVICE" > > > > I have these set and when I try to start my vservers, i see a > > message that > > says: > > > > Starting named: capset failed: Operation not permitted > > Hopefully this will answer a few problems in one. > > 1) You need to have CAP_NET_RAW set in the conf file for the vserver in > order to have any access to the internet. Without it you won't be able to > ping anything from within a vserver. I would guess that you won't be able to > see http/pop etc on the vservers without it hence the fact that someone > couldn't contact the vservers. CAP_NET_RAW control the ability to send raw packets. Ping uses this. But answering ping request is handled by the kernel completly independently from the vserver concept. So even if a vserver does not have CAP_NET_RAW it still is pingable. So vserver handling any IP traffic do not need CAP_NET_RAW to operate. Loosing ping ability is a little annoying, but no service relies on that to operate. To operate bind, you need CAP_SYS_RESOURCE because bind is trying to raise some of its ulimits (even if it has plenty). No one, except vserver user is running with lower capabilities. The capability in standard linux is not complete and it is not possible to create environment (context) where some capability are removed. The vserver project handles this. All this to tell that bind developper simply can't tell they have a glitch. Anyway it's in the FAQ :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Aug 7 21:49:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g781nGiB010333; Wed, 7 Aug 2002 21:49:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g781QMa10259 for vserver.list; Wed, 7 Aug 2002 21:26:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g781QLY10255 for ; Wed, 7 Aug 2002 21:26:21 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 378397A784; Thu, 8 Aug 2002 02:26:21 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 3474D92074 for ; Thu, 8 Aug 2002 02:26:21 +0100 (BST) Date: Thu, 8 Aug 2002 02:26:21 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] kernel 2.4.19ctx-13 available In-Reply-To: <20020807204504.f7c1af817d35@remtk.solucorp.qc.ca> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 927 On Wed, 7 Aug 2002, Jacques Gelinas wrote: > > Sparc support, not tested. Again, trivial. Wow excellent, I shall try and find a spare sparc box and check this. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Thu Aug 8 04:18:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g788HZiB013427; Thu, 8 Aug 2002 04:17:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g787oIQ18543 for vserver.list; Thu, 8 Aug 2002 03:50:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gate.weos.de (mail.weos.de [194.245.114.202] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g787oFY18539 for ; Thu, 8 Aug 2002 03:50:16 -0400 Received: from localhost (halbslinux.weos.de [192.168.101.95]) by gate.weos.de (8.11.3/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id g787oCp14317 for ; Thu, 8 Aug 2002 09:50:12 +0200 Subject: RE: [vserver] DNS resolving problems in vserver From: Huibert Alblas To: vserver@solucorp.qc.ca In-Reply-To: <3D510BCA.9997.A297701@localhost> References: <3D510BCA.9997.A297701@localhost> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 08 Aug 2002 09:50:10 +0200 Message-Id: <1028793010.5383.8.camel@localhost> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 928 Am Mit, 2002-08-07 um 21.00 schrieb Russell Anthony: > Will SSH depend on CAP_NET_RAW as well for some reason ? I can't seem > to get it to work and I have my config set the same way. I can't seem to get > ANY network interaction with my vserver. > Hi, on, ssh and the sshd do _not_ need any kind of extra CAPS to be definened in your /etc/vservers/VSERNAME.conf. We are running one sshd on the main server, bound to his IP only, and 3 sshd in vservers in a different subnet, all bound to their own ips, all definened in /etc/ssh2/sshd2.config in all vservers. These are all started from the normal /etc/init.d/ scripts in each vserver. No hassle with v_sshd and so forth. Just wanted to warn, before you're starting to look for clues in the wrong places. :-) Halb weOs ag, development germany > On 7 Aug 2002 at 11:47, Cathy Sarisky wrote: > > > > 1) You need to have CAP_NET_RAW set in the conf file for the vserver in > > > order to have any access to the internet. Without it you won't be able to > > > ping anything from within a vserver. I would guess that you won't be able to > > > see http/pop etc on the vservers without it hence the fact that someone > > > couldn't contact the vservers. > > > > You can definitely have internet access for a vserver without CAP_NET_RAW. You > > do lose ping, but tcp and udp work fine. I've currently got a vserver doing > > domain name service (using tinydns - not BIND), and several serving up web > > pages, accepting and sending email, etc. Actually, I'm happy to lose ping, > > since it reduces the likelihood (slightly anyway) of a vserver being used for a > > DoS attack. > > > > HTH, > > > > Cathy Sarisky > > www.acornhosting.net > > > -- "I love deadlines. I like the whooshing sound they make as they fly by." -- Douglas Adams From vserver.error@solucorp.qc.ca Thu Aug 8 05:00:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g788xoiB013588; Thu, 8 Aug 2002 04:59:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g788WlJ20185 for vserver.list; Thu, 8 Aug 2002 04:32:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp010.tiscali.dk (smtp010.tiscali.dk [212.54.64.103]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g788WkY20181 for ; Thu, 8 Aug 2002 04:32:46 -0400 Received: from lapzap.unispeed.dk (62.79.39.234.adsl.by.worldonline.dk [62.79.39.234]) by smtp010.tiscali.dk (8.12.5/8.12.5) with SMTP id g788WiCk001815; Thu, 8 Aug 2002 10:32:44 +0200 (MEST) Date: Thu, 8 Aug 2002 09:55:48 +0000 From: Johnny Carlsen To: vserver@solucorp.qc.ca Cc: lyn@zolotek.net Subject: Re: [vserver] DNS resolving problems in vserver Message-Id: <20020808095548.4dbec25f.jrc@unispeed.dk> In-Reply-To: <200208072002.0000002R@merlin.zolotek.net> References: <200208072002.0000002R@merlin.zolotek.net> Organization: Unispeed A/S X-Mailer: Sylpheed version 0.8.1 (GTK+ 1.2.10; i686-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 929 On Wed, 07 Aug 2002 20:02:35 +0000 "Lyn St George" wrote: > >If you get dns resolvs working, then I think the problem you have > >with delays will be solved as well. > > Well the answer to this is quite bizarre. The only thing different > about the test vserver was that it did not have a domain name. > Adding a domain name to its *conf immediately caused this > vserver to exhibit the same faults as the other ones. Removing > the domain name again let it operate properly. Removing the > domain names from the *conf files for all the other vservers > immediately let them spring into life also. > > I can't believe that this is a real solution - it must be a sympton > of some other problem. Question is, what?? This actually solved my problem as well, I guess I have to read more about the S_DOMAINNAME and S_HOSTNAME options. ;) - Johnny Carlsen == FOR GOOGLERS == Q: Having problems with dns resolving (nameservers) in your vserver? A: Remove the S_DOMAINNAME from you config file - not sure why, but it works ;) From vserver.error@solucorp.qc.ca Thu Aug 8 08:13:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78CDOiB014930; Thu, 8 Aug 2002 08:13:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78Bf7023993 for vserver.list; Thu, 8 Aug 2002 07:41:07 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78Bf6Y23989 for ; Thu, 8 Aug 2002 07:41:06 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:12807 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Thu, 8 Aug 2002 13:40:49 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Thu, 8 Aug 2002 13:40:38 +0200 Date: Thu, 8 Aug 2002 13:40:37 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] DNS resolving problems in vserver Message-ID: <20020808134037.T16801@4t2.com> References: <200208072002.0000002R@merlin.zolotek.net> <20020808095548.4dbec25f.jrc@unispeed.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20020808095548.4dbec25f.jrc@unispeed.dk>; from jrc@unispeed.dk on Thu, Aug 08, 2002 at 09:55:48AM +0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 930 On Thu, Aug 08, 2002 at 09:55:48AM +0000, Johnny Carlsen wrote: > On Wed, 07 Aug 2002 20:02:35 +0000 > "Lyn St George" wrote: > > > >If you get dns resolvs working, then I think the problem you have > > >with delays will be solved as well. > > > > Well the answer to this is quite bizarre. The only thing different > > about the test vserver was that it did not have a domain name. > > Adding a domain name to its *conf immediately caused this > > vserver to exhibit the same faults as the other ones. Removing > > the domain name again let it operate properly. Removing the > > domain names from the *conf files for all the other vservers > > immediately let them spring into life also. > > > > I can't believe that this is a real solution - it must be a sympton > > of some other problem. Question is, what?? > > This actually solved my problem as well, I guess I have to read more > about the S_DOMAINNAME and S_HOSTNAME options. ;) First of all, make sure that your DNS has correct entries for the hostnames and that the reverse also works. Tom From vserver.error@solucorp.qc.ca Thu Aug 8 10:11:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78EBXiB016288; Thu, 8 Aug 2002 10:11:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78DX2N26773 for vserver.list; Thu, 8 Aug 2002 09:33:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from merlin.zolotek.net (dial-62-64-239-13.access.uk.tiscali.com [62.64.239.13]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g78DX0Y26767 for ; Thu, 8 Aug 2002 09:33:01 -0400 Received: from dial-62-64-202-252.access.uk.tiscali.com (merlin.zolotek.net [127.0.0.1]) by merlin.zolotek.net (Weasel v1.20) for ; 08 Aug 2002 14:33:16 From: "Lyn St George" To: "vserver@solucorp.qc.ca" Date: Thu, 08 Aug 2002 14:33:15 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: Re: [vserver] DNS resolving problems in vserver Message-ID: <200208081433.0000002B@merlin.zolotek.net> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 931 On Thu, 8 Aug 2002 13:40:37 +0200, Thomas Weber wrote: >On Thu, Aug 08, 2002 at 09:55:48AM +0000, Johnny Carlsen wrote: >> On Wed, 07 Aug 2002 20:02:35 +0000 >> "Lyn St George" wrote: >> >> > >If you get dns resolvs working, then I think the problem you have >> > >with delays will be solved as well. >> > >> > Well the answer to this is quite bizarre. The only thing different >> > about the test vserver was that it did not have a domain name. >> > Adding a domain name to its *conf immediately caused this >> > vserver to exhibit the same faults as the other ones. Removing >> > the domain name again let it operate properly. Removing the >> > domain names from the *conf files for all the other vservers >> > immediately let them spring into life also. >> > >> > I can't believe that this is a real solution - it must be a sympton >> > of some other problem. Question is, what?? >> >> This actually solved my problem as well, I guess I have to read more >> about the S_DOMAINNAME and S_HOSTNAME options. ;) > >First of all, make sure that your DNS has correct entries for the hostnames >and that the reverse also works. DNS is fine, in fact there was no change in the DNS configuration when I moved these domains over to vservers. From a vserver both nslookup and dig work correctly. (My mail server went down and I've missed part of this thread, and Google has not yet indexed this part of the archive ...sorry, but could people please repost anything that might help) > Tom > - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Thu Aug 8 11:47:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78FlbiB017118; Thu, 8 Aug 2002 11:47:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78FGtL29365 for vserver.list; Thu, 8 Aug 2002 11:16:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp040.tiscali.dk (smtp040.tiscali.dk [212.54.64.106]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78FGtY29361 for ; Thu, 8 Aug 2002 11:16:55 -0400 Received: from lapzap.unispeed.dk (62.79.39.234.adsl.by.worldonline.dk [62.79.39.234]) by smtp040.tiscali.dk (8.12.5/8.12.5) with SMTP id g78FGpaT000353; Thu, 8 Aug 2002 17:16:51 +0200 (MEST) Date: Thu, 8 Aug 2002 17:13:08 +0000 From: Johnny Carlsen To: vserver@solucorp.qc.ca Cc: lyn@zolotek.net Subject: Re: [vserver] DNS resolving problems in vserver (off topic) Message-Id: <20020808171308.01fa5f66.jrc@unispeed.dk> In-Reply-To: <200208081433.0000002B@merlin.zolotek.net> References: <200208081433.0000002B@merlin.zolotek.net> Organization: Unispeed A/S X-Mailer: Sylpheed version 0.8.1 (GTK+ 1.2.10; i686-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 932 Hi Lyn, > (My mail server went down and I've missed part of this thread, and > Google has not yet indexed this part of the archive ...sorry, but > could people please repost anything that might help) http://vserver.vlad.net/list/200208byindex.html this should help you ;) Regards - Johnny Carlsen From vserver.error@solucorp.qc.ca Thu Aug 8 15:27:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78JQniB018667; Thu, 8 Aug 2002 15:26:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78ImZt02312 for vserver.list; Thu, 8 Aug 2002 14:48:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78ImYY02308 for ; Thu, 8 Aug 2002 14:48:34 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g78Ic7525520 for ; Thu, 8 Aug 2002 11:38:07 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Thu, 8 Aug 2002 11:48:00 -0700 MIME-Version: 1.0 Subject: [vserver] recompile kernel inside vservers? Message-ID: <3D525A70.10241.F44AD97@localhost> Priority: normal X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 933 Is it possible to recompile a kernel inside a vserver to make it differ from the host machine's kernel ? -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Thu Aug 8 15:40:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78JeUiB018740; Thu, 8 Aug 2002 15:40:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78JGMn02977 for vserver.list; Thu, 8 Aug 2002 15:16:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78JGLY02973 for ; Thu, 8 Aug 2002 15:16:22 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g78JGCO11063 for vserver@solucorp.qc.ca; Thu, 8 Aug 2002 15:16:12 -0400 From: Jacques Gelinas Date: Thu, 8 Aug 2002 15:16:12 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] DNS resolving problems in vserver X-mailer: tlmpmail 0.6 Message-ID: <20020808151612.dccee30c4e1d@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 934 On Thu, 8 Aug 2002 09:55:48 -0500, Johnny Carlsen wrote > On Wed, 07 Aug 2002 20:02:35 +0000 > "Lyn St George" wrote: > Q: Having problems with dns resolving (nameservers) in your vserver? > A: Remove the S_DOMAINNAME from you config file - not sure why, but it > works ;) S_DOMAINNAME is related to NIS. Most server do not use NIS. It is generally used to share user entries. Now if you specify S_DOMAINNAME, you are setting the NIS domain and NIS is also used (but less and less) to resolve name like the DNS. In fact, if you look at the file /etc/nsswitch.conf, you will find a line like hosts: files nisplus nis dns This tells the resolver (a part of glibc doing name to IP resolution) to first look in /etc/hosts (files), then check the NIS+ server (using the NIS domainname) and the old NIS server (using S_DOMAINNAME again) and finally, use the DNS. Since you do not have any NIS server on your network, NIS request will fail potentially with some timeout. If you are patient enough, you will see DNS resolution work. So removing (S_DOMAINMAME=nothing) the NIS domain name should fix the issue. Oddly, the NIS domainname (set by the domainname command) is totally unrelated to DNS domain name. For some reason, this goes in the kernel while the DNS preferred domain name goes in /etc/resolv.conf and not the kernel at all. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Aug 8 15:46:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78JjqiB018769; Thu, 8 Aug 2002 15:45:56 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78JIpB03052 for vserver.list; Thu, 8 Aug 2002 15:18:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78JIpY03048 for ; Thu, 8 Aug 2002 15:18:51 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g78JIff11068 for vserver@solucorp.qc.ca; Thu, 8 Aug 2002 15:18:41 -0400 From: Jacques Gelinas Date: Thu, 8 Aug 2002 15:18:41 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Debian package available X-mailer: tlmpmail 0.6 Message-ID: <20020808151841.16b7ecca8a4f@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 935 On Wed, 7 Aug 2002 01:36:05 -0500, ragnar@this.is wrote > Hi, > > > Once I have this, I will produce deb and rpm for every releases > > Is that root_server.deb ? What is root_server.deb ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Aug 8 16:09:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78K9fiB019119; Thu, 8 Aug 2002 16:09:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78JXJf03496 for vserver.list; Thu, 8 Aug 2002 15:33:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78JXJY03492 for ; Thu, 8 Aug 2002 15:33:19 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 8F39C7A795; Thu, 8 Aug 2002 20:33:18 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 88EE592074 for ; Thu, 8 Aug 2002 20:33:18 +0100 (BST) Date: Thu, 8 Aug 2002 20:33:18 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: vserver@solucorp.qc.ca Subject: Re: [vserver] recompile kernel inside vservers? In-Reply-To: <3D525A70.10241.F44AD97@localhost> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 936 On Thu, 8 Aug 2002, Russell Anthony wrote: > Is it possible to recompile a kernel inside a vserver It is perfectly possible to *recompile* a kernel within a vserver, compiling is as normal as any other process. > to make it differ from the host machine's kernel ? There is only *one* kernel in the system. The kernel that the vserver is talking to is the same one that processes in the host server are talking to, it is just that they cannot see each other. Upgrading the kernel on the host server is therefore upgrading the kernel for everyone. If you really want to run seperate kernels you either need to run a full-blown emulator/virtual-machine setup such as Bochs and VMware; or run User Mode Linux (UML) to give you a second, seperate kernel and operating environment running within the first, boot kernel. Both this are significately slower which is why vserver "is so great!". -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Thu Aug 8 16:14:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78KEOiB019164; Thu, 8 Aug 2002 16:14:25 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78JjxM03817 for vserver.list; Thu, 8 Aug 2002 15:45:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78JjwY03813 for ; Thu, 8 Aug 2002 15:45:59 -0400 Subject: [vserver] VSZ and RSS from vserver-stat To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.10 March 22, 2002 Message-ID: From: "Justin M Kuntz" Date: Thu, 8 Aug 2002 14:45:28 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 08/08/2002 02:45:59 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 937 Hello I am very happy with vserver! Thanks to Jacques and everyone for making it so wonderful this quickly! One of the main problems/questions I have right now is about the vserver-stat command. I don't understand the significance of the VSZ and RSS values. I realize the first is for virtual memory pages in use by the vserver and the second is for the resident set size, but I'm not clear on the implications of those values. Does the VSZ always correspond to the actual amount of memory used by the programs running in the vserver? Or does it count shared memory multiple times for each lightweight process/thread? I am seeing some very huge VSZ numbers for programs that should only be taking up 200-500 MB of RAM, and instead I see 2-3 GB of VSZ pages. As for RSS - I must admit, I don't understand what this is. Does it have something to do with kernel structures currently loaded into physical RAM for the vserver? The values are always so small -- less than 1-2 MB typically, that I'm not sure I understand the point. >From an ASP/hosting perspective, it would be very nice to limit the amount of RAM a vserver could allocate. I know this is on the to-do list and I'm anxiously awaiting the feature. In the meantime, I'd like to get a better handle on how the current memory statistics work in terms of these VSZ and RSS items. Thank you! Justin Kuntz http://www.Prominic.NET Phone: 217-356-2888 x 101 | Fax: 356-3356 | Pager: 888-241-0647 Internet: jkuntz@prominic.com | NotesNet: Justin Kuntz@Prominic@Notes Net "In the middle of difficulty lies opportunity." -- Albert Einstein From vserver.error@solucorp.qc.ca Thu Aug 8 16:29:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78KTQiB019251; Thu, 8 Aug 2002 16:29:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78JhqW03723 for vserver.list; Thu, 8 Aug 2002 15:43:52 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78JhpY03719 for ; Thu, 8 Aug 2002 15:43:51 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g78JhgE12423 for vserver@solucorp.qc.ca; Thu, 8 Aug 2002 15:43:42 -0400 From: Jacques Gelinas Date: Thu, 8 Aug 2002 15:43:42 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] vserver basics - virtual web hosting X-mailer: tlmpmail 0.6 Message-ID: <20020808154342.e7b34d611f0b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 938 On Tue, 6 Aug 2002 17:27:50 -0500, Ian Douglas wrote > > so short answer to your question: > > - call v_xxx in your main server to limit > > the services to the given ip(s) > > - call xxx in your virtual servers because > > the chbind is already in effect > > Thanks, that's what I was looking for. There should not be any v_xxx script in a vserver anyway. They get there because people most of the time create a vserver by cloning the root server, so they got copied there. The v_xxxx script have no purpose at all on a vserver. A vserver is tied to one or more IP and has to use only those. A root server has access to all, so the v_xxx script were created to limit the scope of a given service easily. See below > > if [ -f /etc/vservices/sshd.conf ] ; then > > . /etc/vservices/sshd.conf > > fi > > Why would this come into play though? Extra configuration of some kind? Is > it the same as the .conf files otherwise found in just /etc/ ? The /etc/vservers/*.conf are used only for the root server. Normally, for new projects, the root server does not run any service, or at most sshd. As such it does not conflict with any vservers. But most people start from a live server already having some service and then add few vservers. So they have to limit the scope of the services in the root server. By default, the v_xxx script limit to one IP: the main IP of the eth0 device. This may be a problem for some server. Maybe you want eth1 or more than on IP. So you can create a file /etc/vservices/xxx.conf and enter IP=whatever_IP Note that version 0.18 do not support multiple IP there. I just fixed it. While doing so I reworked all the v_xxx scripts to use a common helper script, so they are less redundant. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Aug 8 16:47:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78KkoiB019360; Thu, 8 Aug 2002 16:46:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78JlmG03860 for vserver.list; Thu, 8 Aug 2002 15:47:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp017.mail.yahoo.com (smtp017.mail.yahoo.com [216.136.174.114]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g78JliY03856 for ; Thu, 8 Aug 2002 15:47:48 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 8 Aug 2002 19:47:43 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] recompile kernel inside vservers? Date: Thu, 8 Aug 2002 14:47:35 -0500 Message-ID: <000801c23f14$72486c80$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal In-Reply-To: <3D525A70.10241.F44AD97@localhost> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 939 You can recompile the kernel inside a vserver, but all the vservers and the host server share the same kernel, so there is no way for it to have a custom kernel. Peter -----Original Message----- From: Russell Anthony [mailto:ranthony@siteturn.com] Sent: Thursday, August 08, 2002 1:48 PM To: vserver@solucorp.qc.ca Subject: [vserver] recompile kernel inside vservers? Is it possible to recompile a kernel inside a vserver to make it differ from the host machine's kernel ? -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Thu Aug 8 16:49:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78Kn4iB019374; Thu, 8 Aug 2002 16:49:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78K9fG04387 for vserver.list; Thu, 8 Aug 2002 16:09:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78K9eY04382 for ; Thu, 8 Aug 2002 16:09:40 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17ctbB-0002kq-00 for ; Thu, 08 Aug 2002 22:09:33 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D52CFFD.6045475F@silicide.dk> Date: Thu, 08 Aug 2002 22:09:33 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] recompile kernel inside vservers? References: <3D525A70.10241.F44AD97@localhost> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17ctbB-0002kq-00*0q8gR.ARQ0M* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 940 Russell Anthony wrote: > > Is it possible to recompile a kernel inside a vserver to make it differ from the > host machine's kernel ? No, the vservers all run the same kernel. It gives the advantage of speed. If you want to use different servers, you have to do either: user-mode-linux, UML which runs a linux kernel ontop of another linux kernel. You can run more than one at the same time (i think). borch a GPL'ed? x86 emulator. vmware a commercial x86 emulator Someone has mentioned some other virtual server stuff, i dont really remember the name, and i havent looked at them. All are properly slower than vserver JonB From vserver.error@solucorp.qc.ca Thu Aug 8 16:54:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78KsHiB019410; Thu, 8 Aug 2002 16:54:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78KBoR04466 for vserver.list; Thu, 8 Aug 2002 16:11:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78KBnY04461 for ; Thu, 8 Aug 2002 16:11:50 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17ctdH-0002kz-00 for ; Thu, 08 Aug 2002 22:11:43 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D52D07F.E6070B46@silicide.dk> Date: Thu, 08 Aug 2002 22:11:43 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Debian package available References: <20020808151841.16b7ecca8a4f@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17ctdH-0002kz-00*i4x/H/HP.9g* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 941 Jacques Gelinas wrote: > > On Wed, 7 Aug 2002 01:36:05 -0500, ragnar@this.is wrote > > Hi, > > > > > Once I have this, I will produce deb and rpm for every releases > > > > Is that root_server.deb ? > > What is root_server.deb ? .deb is debians package, like redhat and others call theirs .rpm (i think) root_server means that this package contains the vserver utils, and /vservers, /etc/vservers, and possibly the kernel patch, or a kernel itself. When you install it, you could possibly make vservers in a dir under /vserver, and then run it there. JonB From vserver.error@solucorp.qc.ca Thu Aug 8 17:08:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78L8YiB019497; Thu, 8 Aug 2002 17:08:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78KXGn05137 for vserver.list; Thu, 8 Aug 2002 16:33:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78KXGY05133 for ; Thu, 8 Aug 2002 16:33:16 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g78KMp514072 for ; Thu, 8 Aug 2002 13:22:51 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Thu, 8 Aug 2002 13:32:44 -0700 MIME-Version: 1.0 Subject: Re: [vserver] recompile kernel inside vservers? Message-ID: <3D5272FC.9510.FA48EC4@localhost> Priority: normal In-reply-to: <3D52CFFD.6045475F@silicide.dk> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 942 Discussions came up as to wether or not we want to offer the ability for customers to modify their own kernels. However, I think we'll be sticking with vserver On 8 Aug 2002 at 22:09, Jon Bendtsen wrote: > Russell Anthony wrote: > > > > Is it possible to recompile a kernel inside a vserver to make it differ from the > > host machine's kernel ? > > No, the vservers all run the same kernel. It gives the advantage of > speed. > > If you want to use different servers, you have to do either: > user-mode-linux, UML which runs a linux kernel ontop of another linux > kernel. > You can run more than one at the same time (i think). > borch a GPL'ed? x86 emulator. > vmware a commercial x86 emulator > > Someone has mentioned some other virtual server stuff, i dont really > remember > the name, and i havent looked at them. > > All are properly slower than vserver > > > > JonB > -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Thu Aug 8 18:13:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78MDKiB019914; Thu, 8 Aug 2002 18:13:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78Lcn906483 for vserver.list; Thu, 8 Aug 2002 17:38:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78LcnY06479 for ; Thu, 8 Aug 2002 17:38:49 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g78LccU15542 for vserver@solucorp.qc.ca; Thu, 8 Aug 2002 17:38:38 -0400 From: Jacques Gelinas Date: Thu, 8 Aug 2002 17:38:38 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Timeout on writing/opening control channel /dev/initctl X-mailer: tlmpmail 0.6 Message-ID: <20020808173838.579396ee70a5@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 943 On Fri, 2 Aug 2002 18:15:16 -0500, Lew Teck Kheng wrote > hi everyone: > > I have installed the latest vserver but i always encountered this > problem whenver i tried to uninstall a RPM package. > > Anybody can help me.? I have seen something like this. I did rpm --rebuilddb and the problem went away. Not sure why --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Aug 8 18:18:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g78MIGiB019963; Thu, 8 Aug 2002 18:18:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g78LiDS06605 for vserver.list; Thu, 8 Aug 2002 17:44:13 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g78LiDY06601 for ; Thu, 8 Aug 2002 17:44:13 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g78Li3j15558 for vserver@solucorp.qc.ca; Thu, 8 Aug 2002 17:44:03 -0400 From: Jacques Gelinas Date: Thu, 8 Aug 2002 17:44:03 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Problems with restaring virtuals and ethX:Y interfaces X-mailer: tlmpmail 0.6 Message-ID: <20020808174403.f36947cf81db@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 944 On Fri, 2 Aug 2002 10:53:50 -0500, Dave wrote > Hi, > > I have a strange problem when I need to stop a vserver. > > The vserver is stopped properly, but the corresponding interface is not > brought down. I can see a SIOCADDR error msg as an output to vserver XXX > stop I will release 0.19. I think I nailed something like this lately :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 9 15:02:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g79J1ViB028656; Fri, 9 Aug 2002 15:01:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g79IQoO02292 for vserver.list; Fri, 9 Aug 2002 14:26:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g79IQoY02288 for ; Fri, 9 Aug 2002 14:26:50 -0400 Received: from remtk.solucorp.qc.ca (g36-99.citenet.net [206.123.36.99]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g79IbwA93765 for ; Fri, 9 Aug 2002 14:37:59 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g79IJIR21866 for vserver@solucorp.qc.ca; Fri, 9 Aug 2002 14:19:18 -0400 From: Jacques Gelinas Date: Fri, 9 Aug 2002 14:19:17 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] MySQL X-mailer: tlmpmail 0.6 Message-ID: <20020809141917.5f14c45c355d@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 945 On Mon, 29 Jul 2002 13:41:56 -0500, Lyn St George wrote > Hi all > > Just started getting vservers up and running. Excellent > stuff, and most of it works extremely well. > > MySQL is proving a problem though - > "Can't start server : Bind on unix socket: Permission denied" > > This is despite setting different socket and port args, and > happens even if the main server's MySQL is stopped. I've > tried changing all the MySQL bin/ stuff to simple copies > instead of hard links, but the same error crops up no matter > what I do. I've RTFM closely and done everything suggested > there ... Which version is this ? I am using MySQL on vservers without any problem using vanilla configuration. This is quite strange since the vserver kernel patch does not address unix domain socket at all (does not have to). --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 9 15:06:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g79J6DiB028693; Fri, 9 Aug 2002 15:06:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g79I93801885 for vserver.list; Fri, 9 Aug 2002 14:09:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g79I92Y01881 for ; Fri, 9 Aug 2002 14:09:02 -0400 Received: from remtk.solucorp.qc.ca (g36-99.citenet.net [206.123.36.99]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g79IKBA92445 for ; Fri, 9 Aug 2002 14:20:11 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g79I8Yn21857 for vserver@solucorp.qc.ca; Fri, 9 Aug 2002 14:08:34 -0400 From: Jacques Gelinas Date: Fri, 9 Aug 2002 14:08:34 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] identd problem X-mailer: tlmpmail 0.6 Message-ID: <20020809140834.dfd67ac83c2d@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 946 On Sun, 4 Aug 2002 00:15:20 -0500, =?iso-8859-1?Q?=C9lectronique_Box_Communications?= wrote > In answer to Shuri, > I had the same problem of shuri to run multiple identd daemon on multiple > vserver causing crash of the second daemon when you start 2 because they use > both 113 port. > > I have no idea how to find the solution to this problem. Only run once on a > vserver and it work but when identd is launch twice the second one cannot > start. I can't replicate this problem here. > Also for the address (ip = *) shuri it is normal that everybody have access > to the all the adresse. For the type of service you run it is quite hard to > find the problem i had the same problem ... > > Anybody have any comments ideas about that can be very very appreciate and > helpfull... Which identd server is this ? I am currently testing with two vservers made with redhat 7.2 and running kernel 2.4.19ctx-13 (older ctx kernel should behave the same). Please tell me which identd it is. This is probably the same bug reported with kdm and other services. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 9 15:11:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g79JBEiB028743; Fri, 9 Aug 2002 15:11:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g79HcuY00874 for vserver.list; Fri, 9 Aug 2002 13:38:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g79HcuY00870 for ; Fri, 9 Aug 2002 13:38:56 -0400 Received: from remtk.solucorp.qc.ca (g36-124.citenet.net [206.123.36.124]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g79Ho4A90318 for ; Fri, 9 Aug 2002 13:50:04 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g79Hbv121658 for vserver@solucorp.qc.ca; Fri, 9 Aug 2002 13:37:57 -0400 From: Jacques Gelinas Date: Fri, 9 Aug 2002 13:37:57 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] recompile kernel inside vservers? X-mailer: tlmpmail 0.6 Message-ID: <20020809133757.240c9d85e4a6@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 947 On Thu, 8 Aug 2002 20:33:18 -0500, Paul Sladen wrote > On Thu, 8 Aug 2002, Russell Anthony wrote: > Upgrading the kernel on the host server is therefore upgrading the kernel > for everyone. > > If you really want to run seperate kernels you either need to run a > full-blown emulator/virtual-machine setup such as Bochs and VMware; or run > User Mode Linux (UML) to give you a second, seperate kernel and operating > environment running within the first, boot kernel. > > Both this are significately slower which is why vserver "is so great!". End less secure. You can barely limit what a real emulator/virtual machine does on the network. You can barely monitor what it does also. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 9 15:11:29 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g79JBPiB028746; Fri, 9 Aug 2002 15:11:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g79HctI00868 for vserver.list; Fri, 9 Aug 2002 13:38:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g79HcsY00864 for ; Fri, 9 Aug 2002 13:38:54 -0400 Received: from remtk.solucorp.qc.ca (g36-124.citenet.net [206.123.36.124]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g79Ho3A90313 for ; Fri, 9 Aug 2002 13:50:03 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g79HZ3821656 for vserver@solucorp.qc.ca; Fri, 9 Aug 2002 13:35:03 -0400 From: Jacques Gelinas Date: Fri, 9 Aug 2002 13:35:03 -0500 To: vserver@solucorp.qc.ca Subject: [vserver] vservers and debian X-mailer: tlmpmail 0.6 Message-ID: <20020809133503.bb80a7d64bfa@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 948 Somebody told us he had some patches for Debian. I would like to release 0.19 (with many little enhancements) with it. Please can you send what you have. I will continue your work. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 9 15:13:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g79JCriB028772; Fri, 9 Aug 2002 15:12:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g79Hcvr00880 for vserver.list; Fri, 9 Aug 2002 13:38:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g79HcvY00876 for ; Fri, 9 Aug 2002 13:38:57 -0400 Received: from remtk.solucorp.qc.ca (g36-124.citenet.net [206.123.36.124]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g79Ho6A90322 for ; Fri, 9 Aug 2002 13:50:06 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g79HXYg21654 for vserver@solucorp.qc.ca; Fri, 9 Aug 2002 13:33:34 -0400 From: Jacques Gelinas Date: Fri, 9 Aug 2002 13:33:34 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Debian package available X-mailer: tlmpmail 0.6 Message-ID: <20020809133334.6ddc8a94faac@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 949 On Thu, 8 Aug 2002 22:11:43 -0500, Jon Bendtsen wrote > Jacques Gelinas wrote: > > > > On Wed, 7 Aug 2002 01:36:05 -0500, ragnar@this.is wrote > > > Hi, > > > > > > > Once I have this, I will produce deb and rpm for every releases > > > > > > Is that root_server.deb ? > > > > What is root_server.deb ? > > .deb is debians package, like redhat and others call theirs .rpm After 10 years of work in linux, mind you, I knew what DEB stand for :-) > (i think) root_server means that this package contains the vserver > utils, and > /vservers, /etc/vservers, and possibly the kernel patch, or a kernel > itself. > When you install it, you could possibly make vservers in a dir under > /vserver, > and then run it there. This is pretty much what is vserver and vserver-admin rpm package. I intend to keep the same layout for both the DEB and RPM. I won't put the kernel inside since they evolve generally separatly. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 9 15:18:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g79JHriB028800; Fri, 9 Aug 2002 15:17:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g79IQpc02299 for vserver.list; Fri, 9 Aug 2002 14:26:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g79IQpY02295 for ; Fri, 9 Aug 2002 14:26:51 -0400 Received: from remtk.solucorp.qc.ca (g36-99.citenet.net [206.123.36.99]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g79Ic0A93770 for ; Fri, 9 Aug 2002 14:38:00 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g79IHZK21864 for vserver@solucorp.qc.ca; Fri, 9 Aug 2002 14:17:35 -0400 From: Jacques Gelinas Date: Fri, 9 Aug 2002 14:17:35 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Multiples IPS X-mailer: tlmpmail 0.6 Message-ID: <20020809141735.fbeedad0b598@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 950 On Thu, 1 Aug 2002 21:58:22 -0500, -= wrote > Hello , is not the first time i write on the mail list for this problem but i got > always this problem .. > > To make you in the context > I got a Root server with 120 real IPS Accessible from the internet From 207.X.X.1 > To 207.X.X.120 ( eth0 to eth0:120 ) > > I need each vserver to have 16 IPS so i set in one vserver: > IPROOT="207.X.X.1 207.X.X.2 207.X.X.2 207.X.X.3 207.X.X.4" Note that the current multipe IP support in vservers is kind of ... different. Normally, when a service bind to a port, it does a bind (0.0.0.0), attaching to any possible IP of the machine. In a vserver, bind(0.0.0.0) always bind to the first. Doing differently would slow down things or incure more changes in the kernel. We have to find a way to keep the performance high (100% of a normal linux, currently) and support the same semantic. For now, if a service needs to listen to more than one IP in a vserver, it has to setup multiple sockets. In pratice this is not so annoying. Most services support that. Apache for one supports multiple listen directive. > But with this configuration some application do not work correctly > > For exemple > -1 eggdrop can only be start on the first IP on the list and i try to start eggdrop > on another IP the eggdrop do not start at all > - 2 psybnc can only use the first ips on the list for vhost I will try to replicate with eggdrop. Picking 1.6.12 right now --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 9 17:22:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g79LMSiB030326; Fri, 9 Aug 2002 17:22:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g79JsfZ04375 for vserver.list; Fri, 9 Aug 2002 15:54:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from merlin.zolotek.net (dial-62-64-206-239.access.uk.tiscali.com [62.64.206.239]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g79JscY04368 for ; Fri, 9 Aug 2002 15:54:39 -0400 Received: from dial-62-64-202-252.access.uk.tiscali.com (merlin.zolotek.net [127.0.0.1]) by merlin.zolotek.net (Weasel v1.20) for ; 09 Aug 2002 20:54:46 From: "Lyn St George" To: "vserver@solucorp.qc.ca" Date: Fri, 09 Aug 2002 20:54:45 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: re: [vserver] MySQL Message-ID: <200208092054.0000002X@merlin.zolotek.net> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 951 On Fri, 9 Aug 2002 14:19:17 -0500, Jacques Gelinas wrote: >On Mon, 29 Jul 2002 13:41:56 -0500, Lyn St George wrote >> Hi all >> >> Just started getting vservers up and running. Excellent >> stuff, and most of it works extremely well. >> >> MySQL is proving a problem though - >> "Can't start server : Bind on unix socket: Permission denied" >> >> This is despite setting different socket and port args, and >> happens even if the main server's MySQL is stopped. I've >> tried changing all the MySQL bin/ stuff to simple copies >> instead of hard links, but the same error crops up no matter >> what I do. I've RTFM closely and done everything suggested >> there ... > >Which version is this ? I am using MySQL on vservers without any problem >using vanilla configuration. This is quite strange since the vserver >kernel patch does not address unix domain socket at all (does not have to). Somebody reminded me to look for the simple things, and of course it turned out to be just a misconfiguration :( You're doing some great work here - muchos gracios. >--------------------------------------------------------- >Jacques Gelinas >vserver: run general purpose virtual servers on one box, full speed! >http://www.solucorp.qc.ca/miscprj/s_context.hc > - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Fri Aug 9 22:23:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7A2NIiB032160; Fri, 9 Aug 2002 22:23:19 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7A1upD13233 for vserver.list; Fri, 9 Aug 2002 21:56:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7A1upY13229 for ; Fri, 9 Aug 2002 21:56:51 -0400 Received: from remtk.solucorp.qc.ca (g36-69.citenet.net [206.123.36.69]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7A283A16029 for ; Fri, 9 Aug 2002 22:08:03 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7A1ief23406 for vserver@solucorp.qc.ca; Fri, 9 Aug 2002 21:44:40 -0400 From: Jacques Gelinas Date: Fri, 9 Aug 2002 21:44:40 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] multi-nic X-mailer: tlmpmail 0.6 Message-ID: <20020809214440.b3ee0c17718e@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 952 On Mon, 22 Jul 2002 09:06:53 -0500, Jukka Laaksola wrote > Jacques Gelinas wrote: > > We will need to change the way we handle that. Instead of having > > IPROOT and IPROOTDEV, we will have something like > > > > IPROOT="eth0/IP1 eth1/IP2 IP3 IP4" > > IPROOTDEV=eth2 > > > > Any IP no explicitly tied to a device will be configured with IPROOTDEV. In > > the example above, IP3 and IP4 will go on eth2. > > > > What do you think ? > > Sounds good to me. It's quite clear way to configure IPs and devices. > Perhaps the feature is in the next version of vserser? Finally I implented it using : instead of / IPROOT="eth0:1.2.3.4 eth1:2.3.4.5" One day will implement the / to support per IP netmask... Will be in 0.19. Almost done with the rest... --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 9 23:17:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7A3H0iB032490; Fri, 9 Aug 2002 23:17:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7A29Gf13503 for vserver.list; Fri, 9 Aug 2002 22:09:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7A29GY13499 for ; Fri, 9 Aug 2002 22:09:16 -0400 Received: from remtk.solucorp.qc.ca (g36-69.citenet.net [206.123.36.69]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7A2KSA16481 for ; Fri, 9 Aug 2002 22:20:28 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7A1xsq23695 for vserver@solucorp.qc.ca; Fri, 9 Aug 2002 21:59:54 -0400 From: Jacques Gelinas Date: Fri, 9 Aug 2002 21:59:53 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Multiple IP patch and `localhost' X-mailer: tlmpmail 0.6 Message-ID: <20020809215953.16bbfb897300@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 953 On Tue, 23 Jul 2002 17:57:40 -0500, Sam Vilain wrote > Hi all, > > I have been investigating the new patch, ctx-12. Multiple IP addresses > opens up the possibility that I think could fix the `localhost' business > for good: per-vserver loopback interfaces. > > In the vserver startup script, the address 127.0.0.N, where N is some arbitrary number > allocated in userland, is added to the list of allowable addresses in the set_ipv4root > call, and the interface up'ed (not sure if this is strictly needed; try running `netcat > -s 127.1.2.3 -p 1234 -l' and then `telnet 127.1.2.3 1234' - it works anyway). > > There are two ways to get a `localhost' address from an application - one > is to try and resolve `localhost', which is fine - but any program with a > severe case of C programmer's disease will be doing it using the > getaddrinfo() function - see the attached file. > > This C library call seems to escape /etc/resolv.conf, /etc/nsswitch.conf, > /etc/hosts and INADDR_LOOPBACK is #define'd as a constant by glibc in > /usr/include/netinet/in.h. This is not necessarily a huge problem, as > getaddrinfo() can be redefined via LD_PRELOAD or ld.so.conf, or fixed in > the C library. > > I think per-vserver localhosts would have several advantages: > - You get a localhost interface to yourself, for setting up > applications that do not support UNIX sockets to listen on, port > forwarding, etc. > - Applications that listen on localhost don't potentially expose > services to the world > - More like a real server :-) In other words, some applications may > consider binding to an address and having getsockopt() or whatever it > is returning the same address a sanity condition. > - Make use of that 127.* class A network that has sat so unused for all > these years. > > The only problem will be if any userland applications out there use the incorrect > (according to RFC1062) INADDR_LOOPBACK macro. > > The other possibility would be to find all of the places in the kernel > that could accept 127.0.0.1 and translate it to a per-virtual server > localhost interface transparently. So userland thinks it's got 127.0.0.1, > but the networking stack uses 127.0.0.X. I guess this would save having > to make sweeping userland changes, although I think fixing the C library would be > The Right Thing(tm) in the long run. > > Ideas/comments? There is a major issue with per-vserver loopback. Most application assumes that binding to 0.0.0.0 grabs everything, including the loopback. The private loopback here would mean the application has to bind to localhost as well. Currently, we remap connection to localhost to the ipv4root and this satisfies most client. So if we implement a private loopback, we must also implement the mapping between 0.0.0.0 (ANYADDR) to ipv4root and loopback. Something like this was done to support UDP broadcast. A very minor change was done to struct socket (You all remember the buggy ctx-9) so a socket is bound to two IP address. Thos could be reused to address that. So instead of having 0.0.0.0 remap to handle any IP of the vserver, this could be remap to handle the first IP of the ipv4root set and the private loopback. This is probably very easy to do. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 9 23:53:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7A3roiB032675; Fri, 9 Aug 2002 23:53:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7A2Isj13661 for vserver.list; Fri, 9 Aug 2002 22:18:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from skessa.this.is (skessa.this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7A2IrY13657 for ; Fri, 9 Aug 2002 22:18:53 -0400 Received: from skessa.this.is (www-data@localhost.this.is [127.0.0.1]) by skessa.this.is (8.12.3/8.12.3/Debian -4) with ESMTP id g7A2Ir6F032013 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=FAIL) for ; Sat, 10 Aug 2002 02:18:54 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.3/8.12.3/Debian -4) id g7A2IrKZ032011 for vserver@solucorp.qc.ca; Sat, 10 Aug 2002 02:18:53 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca Subject: Re: [vserver] Debian package available Message-ID: <1028945933.3d54780d8b37a@this.is> Date: Sat, 10 Aug 2002 02:18:53 +0000 (GMT) From: ragnar@this.is References: <20020809133334.6ddc8a94faac@remtk.solucorp.qc.ca> In-Reply-To: <20020809133334.6ddc8a94faac@remtk.solucorp.qc.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 194.144.127.80 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 954 Hello, Sorry for my bad english, > > > > Is that root_server.deb ? > > > > > > What is root_server.deb ? Good question. I was thinking that a Redhat system that would run Debian vservers would be good enough. On the other hand having a Debian root server? Among other things I can not see vrpm in the context of Debian. Best ragnar From vserver.error@solucorp.qc.ca Sat Aug 10 05:38:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7A9boiB002552; Sat, 10 Aug 2002 05:37:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7A9DnJ22052 for vserver.list; Sat, 10 Aug 2002 05:13:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7A9DmY22048 for ; Sat, 10 Aug 2002 05:13:48 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17dSJY-0003cF-00 for ; Sat, 10 Aug 2002 11:13:40 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D54D944.D91AE3E8@silicide.dk> Date: Sat, 10 Aug 2002 11:13:40 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Debian package available References: <20020809133334.6ddc8a94faac@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17dSJY-0003cF-00*1M40rLJppPI* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 955 Jacques Gelinas wrote: > > On Thu, 8 Aug 2002 22:11:43 -0500, Jon Bendtsen wrote > > Jacques Gelinas wrote: > > > > > > On Wed, 7 Aug 2002 01:36:05 -0500, ragnar@this.is wrote > > > > Hi, > > > > > > > > > Once I have this, I will produce deb and rpm for every releases > > > > > > > > Is that root_server.deb ? > > > > > > What is root_server.deb ? > > > > .deb is debians package, like redhat and others call theirs .rpm > > After 10 years of work in linux, mind you, I knew what DEB stand for :-) well excuse me, but if you knew that already, why did you ask what root_server.deb is ? JonB From vserver.error@solucorp.qc.ca Sat Aug 10 05:53:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7A9qniB002613; Sat, 10 Aug 2002 05:52:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7A9VN122370 for vserver.list; Sat, 10 Aug 2002 05:31:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7A9VMY22366 for ; Sat, 10 Aug 2002 05:31:22 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 1E0B27A573; Sat, 10 Aug 2002 10:31:22 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 1613092076 for ; Sat, 10 Aug 2002 10:31:22 +0100 (BST) Date: Sat, 10 Aug 2002 10:31:22 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] multi-nic In-Reply-To: <20020809214440.b3ee0c17718e@remtk.solucorp.qc.ca> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 956 On Fri, 9 Aug 2002, Jacques Gelinas wrote: > On Mon, 22 Jul 2002 09:06:53 -0500, Jukka Laaksola wrote > > Jacques Gelinas wrote: > > > > > > IPROOT="eth0/IP1 eth1/IP2 IP3 IP4" > > > > > Sounds good to me. It's quite clear way to configure IPs and devices. > > Finally I implented it using : instead of / > IPROOT="eth0:1.2.3.4 eth1:2.3.4.5" > One day will implement the / to support per IP netmask... We're running out of seperator characters! ;-) I had assuming/hoped you'd use something other than `:' is make parsing IPv6 addresses slightly easier in the long run--a topic I'll try and look at at $SOMETIME. (I'm assuming it's basically a question of cut+pasting the the IPv4 code). -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Sat Aug 10 05:57:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7A9vciB002679; Sat, 10 Aug 2002 05:57:39 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7A9cfC22516 for vserver.list; Sat, 10 Aug 2002 05:38:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7A9ceY22512 for ; Sat, 10 Aug 2002 05:38:40 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id DBE627A573; Sat, 10 Aug 2002 10:38:40 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id D2E9D92076 for ; Sat, 10 Aug 2002 10:38:40 +0100 (BST) Date: Sat, 10 Aug 2002 10:38:40 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Debian package available In-Reply-To: <3D54D944.D91AE3E8@silicide.dk> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 957 On Sat, 10 Aug 2002, Jon Bendtsen wrote: > Jacques Gelinas wrote: > > On Thu, 8 Aug 2002 22:11:43 -0500, Jon Bendtsen wrote > > > Jacques Gelinas wrote: > > > > On Wed, 7 Aug 2002 01:36:05 -0500, ragnar@this.is wrote > > > > > > Once I have this, I will produce deb and rpm for every releases > > > > > Is that root_server.deb ? > > > > What is root_server.deb ? > > > .deb is debians package, like redhat and others call theirs .rpm > > After 10 years of work in linux, mind you, I knew what DEB stand for :-) > [..] but if you knew that already, why did you ask what root_server.deb is? I hope you said that with a `;-)' smilie on the end as it seems rather harsh otherwise. Not everyone has seen the light and switched to an extremely high-quality GNU/Linux Operating System with a vastly advanced packaging system, which for instance, handles dependencies; and an untouched-record of putting security and stability first. ;-) -Paul PS. Okay, okay, I suppose this could be called a troll...! :) -- Nottingham, GB From vserver.error@solucorp.qc.ca Sat Aug 10 07:26:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7ABOtiB003253; Sat, 10 Aug 2002 07:24:56 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7AAUTU23448 for vserver.list; Sat, 10 Aug 2002 06:30:29 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from skessa.this.is (skessa.this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7AAUSY23444 for ; Sat, 10 Aug 2002 06:30:29 -0400 Received: from skessa.this.is (www-data@localhost.this.is [127.0.0.1]) by skessa.this.is (8.12.3/8.12.3/Debian -4) with ESMTP id g7AAUT6F003929 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=FAIL) for ; Sat, 10 Aug 2002 10:30:29 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.3/8.12.3/Debian -4) id g7AAUSha003927 for vserver@solucorp.qc.ca; Sat, 10 Aug 2002 10:30:28 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca Subject: [vserver] unify file system Message-ID: <1028975428.3d54eb4498112@this.is> Date: Sat, 10 Aug 2002 10:30:28 +0000 (GMT) From: ragnar@this.is MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 194.144.127.80 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 958 Hi, Is there a file system that does transparent unify? It does at least seem to belong in the file system. How much work to modify ext3? Best ragnar From vserver.error@solucorp.qc.ca Sat Aug 10 09:18:46 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7ADIViB003915; Sat, 10 Aug 2002 09:18:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7ABt1125015 for vserver.list; Sat, 10 Aug 2002 07:55:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7ABt0Y24977 for ; Sat, 10 Aug 2002 07:55:00 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 4B3E57A573; Sat, 10 Aug 2002 12:55:00 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 3C66992076 for ; Sat, 10 Aug 2002 12:55:00 +0100 (BST) Date: Sat, 10 Aug 2002 12:55:00 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] unify file system In-Reply-To: <1028975428.3d54eb4498112@this.is> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 959 On Sat, 10 Aug 2002 ragnar@this.is wrote: > > Is there a file system that does transparent unify? This means that when an application closes a file you'd have to compare it's contents to every other file on the system to see if you could find one that matched with the same length and contents; i.e. O(n^2) The shotcut we're [ab]using here is that we know that: /foo/some/lib.so is much more /likely/ to have the same contents and length as: /bar/some/lib.so If you trying to add this sort of problem to a mid/low-level system such as a filesystem then you are introducing *alot* of complexity into something that you would much rather was reliable through simplicity. As with many problem a codepath that is flat, or at least O(N) is much nicer to work with than one that can potentially scale out of control. If you *really* wanted to do it you could possibley do something by means of a filesystem `proxy' so that you weren't touching known-good working code and you could probably do this type of thing [mostly] in userspace, but IMHO a cron job running once a day and comparing hashes is probably the best trade-off. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Sat Aug 10 09:42:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7ADgGiB004041; Sat, 10 Aug 2002 09:42:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7AC7gT25291 for vserver.list; Sat, 10 Aug 2002 08:07:42 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mx2.mail.ru (mx2.mail.ru [194.67.57.12]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7AC7fY25287 for ; Sat, 10 Aug 2002 08:07:42 -0400 Received: from [195.19.254.35] (helo=tranq) by mx2.mail.ru with smtp (Exim SMTP.2) id 17dV1x-000GSX-00 for vserver@solucorp.qc.ca; Sat, 10 Aug 2002 16:07:41 +0400 Date: Sat, 10 Aug 2002 16:07:43 +0400 From: Alexander Shishckin To: vserver@solucorp.qc.ca Subject: [vserver] debian package Message-Id: <20020810160743.3512aae6.guitar_god@mail.ru> In-Reply-To: <1028975428.3d54eb4498112@this.is> References: <1028975428.3d54eb4498112@this.is> Organization: KH X-Mailer: Sylpheed version 0.8.1 (GTK+ 1.2.10; i386-debian-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 960 Hi everyone! I'm looking for a person who does the vserver package for debian since I'd like to be involved in this process. Debian's official archives do not seem to have such package yet. Good luck, -Alexander Shishcin mailto: alex@intero.ru mailto: shisha@hotbox.ru From vserver.error@solucorp.qc.ca Sat Aug 10 16:06:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7AK6ViB005990; Sat, 10 Aug 2002 16:06:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7AJjY602304 for vserver.list; Sat, 10 Aug 2002 15:45:34 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from skessa.this.is (skessa.this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7AJjXY02300 for ; Sat, 10 Aug 2002 15:45:33 -0400 Received: from skessa.this.is (www-data@localhost.this.is [127.0.0.1]) by skessa.this.is (8.12.3/8.12.3/Debian -4) with ESMTP id g7AJjX6F007903 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=FAIL) for ; Sat, 10 Aug 2002 19:45:33 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.3/8.12.3/Debian -4) id g7AJjXl0007901 for vserver@solucorp.qc.ca; Sat, 10 Aug 2002 19:45:33 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca Subject: Re: [vserver] unify file system Message-ID: <1029008733.3d556d5d44b9b@this.is> Date: Sat, 10 Aug 2002 19:45:33 +0000 (GMT) From: ragnar@this.is References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 194.144.127.80 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 961 Hello agin, > The shotcut we're [ab]using here is that we know that: > > /foo/some/lib.so > > is much more /likely/ to have the same contents and length as: > > /bar/some/lib.so Just to confirm (could not find in the FAQ) On can not just unify all files found to be the same? ragnar From vserver.error@solucorp.qc.ca Sat Aug 10 19:35:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7ANYxiB007206; Sat, 10 Aug 2002 19:35:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7ALuOH04756 for vserver.list; Sat, 10 Aug 2002 17:56:24 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7ALuNY04752 for ; Sat, 10 Aug 2002 17:56:23 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id A18017A573; Sat, 10 Aug 2002 22:56:23 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 9B1A292076 for ; Sat, 10 Aug 2002 22:56:23 +0100 (BST) Date: Sat, 10 Aug 2002 22:56:23 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] unify file system In-Reply-To: <1029008733.3d556d5d44b9b@this.is> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 962 On Sat, 10 Aug 2002 ragnar@this.is wrote: > > On can not just unify all files found to be the same? It's not the unifying that's the problem, it's the finding which files are the same that is the hard part. On the other hand I've heard of one University system where a cronjob went through all the user home directories once every morning and collated all the `large' files that the different students had made multiple `backup' copies of. Don't think anyone realised that all the different collections of MP3s were actually getting turned into hard-links to the same place! :) Disk space was the issue there. Disk space is cheap now. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Sat Aug 10 19:59:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7ANwsiB007299; Sat, 10 Aug 2002 19:58:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7AMw0C05832 for vserver.list; Sat, 10 Aug 2002 18:58:00 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp011.mail.yahoo.com (smtp011.mail.yahoo.com [216.136.173.31]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7AMvxY05827 for ; Sat, 10 Aug 2002 18:58:00 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 10 Aug 2002 22:57:59 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] unify file system Date: Sat, 10 Aug 2002 17:57:48 -0500 Message-ID: <000401c240c1$595e4010$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <1029008733.3d556d5d44b9b@this.is> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 963 Well, yes. The question is how you figure out if two files are the same. (Computation-intensive). Peter -----Original Message----- From: ragnar@this.is [mailto:ragnar@this.is] Sent: Saturday, August 10, 2002 2:46 PM To: vserver@solucorp.qc.ca Subject: Re: [vserver] unify file system Hello agin, > The shotcut we're [ab]using here is that we know that: > > /foo/some/lib.so > > is much more /likely/ to have the same contents and length as: > > /bar/some/lib.so Just to confirm (could not find in the FAQ) On can not just unify all files found to be the same? ragnar From vserver.error@solucorp.qc.ca Sat Aug 10 20:11:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7B0B8iB007405; Sat, 10 Aug 2002 20:11:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7ANi1a06694 for vserver.list; Sat, 10 Aug 2002 19:44:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7ANi0Y06690 for ; Sat, 10 Aug 2002 19:44:01 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 4AEB67A79D; Sun, 11 Aug 2002 00:44:01 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 49FB992076 for ; Sun, 11 Aug 2002 00:44:01 +0100 (BST) Date: Sun, 11 Aug 2002 00:44:01 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] More than 16 IPS in a vps is it possible? In-Reply-To: <5.1.0.14.2.20020810191637.026cdca0@mail.pwebtech.com> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 964 On Sat, 10 Aug 2002, Jason Silverglate wrote: > More than 16 IPS in a vps is it possible? Have a look in your patched kernel source for the file: linux/include/linux/sched.h for the following line and change it to match your desires: #define NB_IPV4ROOT 16 Out of interest, for want reason are you wanting so many IP addresses in a single vserver; large scale HTTPS hosting is the only thing that I can justifiably think of and I don't believe most people would host quite this many on a single vserver, let alone a single machine. Again, I am intrigued, do tell. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Sat Aug 10 20:20:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7B0KSiB007452; Sat, 10 Aug 2002 20:20:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7ANc9r06584 for vserver.list; Sat, 10 Aug 2002 19:38:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from force.4t2.com (force.4t2.com [195.230.37.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7ANc9Y06580 for ; Sat, 10 Aug 2002 19:38:09 -0400 Received: from pandemonium.abyss.4t2.com ([192.168.1.10]:8964 "EHLO pandemonium.abyss.4t2.com") by force.4t2.com with ESMTP id ; Sun, 11 Aug 2002 01:37:53 +0200 Received: (x@pandemonium.abyss.4t2.com) by pandemonium.abyss.4t2.com id ; Sun, 11 Aug 2002 01:37:51 +0200 Date: Sun, 11 Aug 2002 01:37:51 +0200 From: Thomas Weber To: vserver@solucorp.qc.ca Subject: Re: [vserver] multi-nic Message-ID: <20020811013751.A23611@4t2.com> References: <20020809214440.b3ee0c17718e@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: ; from vserver@paul.sladen.org on Sat, Aug 10, 2002 at 10:31:22AM +0100 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 965 On Sat, Aug 10, 2002 at 10:31:22AM +0100, Paul Sladen wrote: > On Fri, 9 Aug 2002, Jacques Gelinas wrote: > > On Mon, 22 Jul 2002 09:06:53 -0500, Jukka Laaksola wrote > > > Jacques Gelinas wrote: > > > > > > > > IPROOT="eth0/IP1 eth1/IP2 IP3 IP4" > > > > > > > Sounds good to me. It's quite clear way to configure IPs and devices. > > > > Finally I implented it using : instead of / > > IPROOT="eth0:1.2.3.4 eth1:2.3.4.5" > > One day will implement the / to support per IP netmask... > > We're running out of seperator characters! ;-) > > I had assuming/hoped you'd use something other than `:' is make parsing IPv6 > addresses slightly easier in the long run--a topic I'll try and look at > at $SOMETIME. (I'm assuming it's basically a question of cut+pasting the > the IPv4 code). and it might be confusing since ':' is already the seperator for ip aliases, of course / is as bad also. Tom From vserver.error@solucorp.qc.ca Sat Aug 10 20:55:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7B0tJiB007659; Sat, 10 Aug 2002 20:55:19 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7ANGqb06222 for vserver.list; Sat, 10 Aug 2002 19:16:52 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7ANGpY06218 for ; Sat, 10 Aug 2002 19:16:52 -0400 Received: (qmail 29054 invoked from network); 10 Aug 2002 23:16:53 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 10 Aug 2002 23:16:53 -0000 Message-Id: <5.1.0.14.2.20020810191637.026cdca0@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sat, 10 Aug 2002 19:16:48 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] More than 16 IPS in a vps is it possible? Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 966 More than 16 IPS in a vps is it possible? __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Sat Aug 10 21:47:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7B1lSiB007907; Sat, 10 Aug 2002 21:47:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7B0q5707863 for vserver.list; Sat, 10 Aug 2002 20:52:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mouse.sectium.com (adsl-b3-75-27.telepac.pt [213.13.75.27]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7B0q4Y07859 for ; Sat, 10 Aug 2002 20:52:04 -0400 Received: (qmail 3146 invoked from network); 11 Aug 2002 00:51:45 -0000 Received: from localhost (HELO vgertech.com) (nuno@127.0.0.1) by localhost with SMTP; 11 Aug 2002 00:51:45 -0000 Message-ID: <3D55B521.1070803@vgertech.com> Date: Sun, 11 Aug 2002 01:51:45 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] unify file system References: <000401c240c1$595e4010$ed23bd41@PremiumFood> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 967 Hello! That would be cpu and IO intensive, but would easy to compute md5 checksums of all files and then compare the ones with the same name and the same md5 hash... the real problem is: do you really want to do that to *all* files in the filesystem? it's ok to do that with /bin, /usr/bin, /lib and so on, but /home, /var and /etc have files that can be changed by the system or the users. examples: ---------------------- /var/log/syslog has one single line: system starting up /var/log/messages has one single line: system starting up do you really want to hardlink these files and loose some syslog output? ;) or in /home you have /home/luser/test.c and /home/luser/backup/test.c with the same content. do you really want to hardlink these files and make changes made to test.c hardlinked to backup/test.c? one week after you'll be receiving support calls from the users to restore some files - that were somehow "updated" - from backup :) ---------------------- With /bin the "unify trick" system works well because you don't edit the file. the package management deletes the old bin/lib/whatever and installs a new one. YMMV of course. Regards, Nuno Silva Peter Kwan Chan wrote: > Well, yes. The question is how you figure out if two files are the same. > (Computation-intensive). > > Peter > > -----Original Message----- > From: ragnar@this.is [mailto:ragnar@this.is] > Sent: Saturday, August 10, 2002 2:46 PM > To: vserver@solucorp.qc.ca > Subject: Re: [vserver] unify file system > > Hello agin, > > >>The shotcut we're [ab]using here is that we know that: >> >> /foo/some/lib.so >> >>is much more /likely/ to have the same contents and length as: >> >> /bar/some/lib.so > > > Just to confirm (could not find in the FAQ) > > On can not just unify all files found to be the same? > > ragnar > > From vserver.error@solucorp.qc.ca Sun Aug 11 03:21:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7B7KjiB009557; Sun, 11 Aug 2002 03:20:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7B6H8114814 for vserver.list; Sun, 11 Aug 2002 02:17:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com ([216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7B6H8Y14810 for ; Sun, 11 Aug 2002 02:17:08 -0400 Received: (qmail 26484 invoked from network); 11 Aug 2002 06:17:09 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 11 Aug 2002 06:17:09 -0000 Message-Id: <5.1.0.14.2.20020811021620.02f9f810@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sun, 11 Aug 2002 02:16:41 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: Re: [vserver] More than 16 IPS in a vps is it possible? In-Reply-To: References: <5.1.0.14.2.20020810191637.026cdca0@mail.pwebtech.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 968 For nameservers about 20 pairs of them Jason At 07:44 PM 8/10/2002, you wrote: >On Sat, 10 Aug 2002, Jason Silverglate wrote: > > > More than 16 IPS in a vps is it possible? > >Have a look in your patched kernel source for the file: > > linux/include/linux/sched.h > >for the following line and change it to match your desires: > > #define NB_IPV4ROOT 16 > >Out of interest, for want reason are you wanting so many IP addresses in a >single vserver; large scale HTTPS hosting is the only thing that I can >justifiably think of and I don't believe most people would host quite this >many on a single vserver, let alone a single machine. Again, I am >intrigued, do tell. > > -Paul >-- >Nottingham, GB __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Mon Aug 12 13:07:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CH6siB003067; Mon, 12 Aug 2002 13:06:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CGWx507970 for vserver.list; Mon, 12 Aug 2002 12:32:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from rhenium.btinternet.com (rhenium.btinternet.com [194.73.73.93]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CGWrY07965 for ; Mon, 12 Aug 2002 12:32:59 -0400 Received: from host213-122-203-134.in-addr.btopenworld.com ([213.122.203.134] helo=johnnew) by rhenium.btinternet.com with smtp (Exim 3.22 #8) id 17eI7a-0006tn-00 for vserver@solucorp.qc.ca; Mon, 12 Aug 2002 17:32:47 +0100 From: "John Lyons" To: Subject: RE: [vserver] More than 16 IPS in a vps is it possible? Date: Mon, 12 Aug 2002 15:21:23 +0100 Message-ID: <03a801c2421d$dca2b250$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <5.1.0.14.2.20020811021620.02f9f810@mail.pwebtech.com> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 969 > For nameservers about 20 pairs of them > Ah, you may not need to have multiple IP addresses on the vservers then. >From what I understand the rules about 1 ip to 1 name server have been 'removed' so that you can now have ns1.somehost.com and ns1.another.com both using the same IP address. As per usual NSI don't appear to have accepted that change yet but most other registrars systems appear at the moment to cope with this. Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Mon Aug 12 14:56:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CIudiB003569; Mon, 12 Aug 2002 14:56:39 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CIHbc11596 for vserver.list; Mon, 12 Aug 2002 14:17:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CIHaY11592 for ; Mon, 12 Aug 2002 14:17:36 -0400 Received: from remtk.solucorp.qc.ca (g39-242.citenet.net [206.123.39.242]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7CITFA56305 for ; Mon, 12 Aug 2002 14:29:15 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7CIBmr18537 for vserver@solucorp.qc.ca; Mon, 12 Aug 2002 14:11:48 -0400 From: Jacques Gelinas Date: Mon, 12 Aug 2002 14:11:48 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] More than 16 IPS in a vps is it possible? X-mailer: tlmpmail 0.6 Message-ID: <20020812141148.a3d80bcc5723@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 970 On Sat, 10 Aug 2002 19:16:48 -0500, Jason Silverglate wrote > More than 16 IPS in a vps is it possible? Not with the current kernel. Note that 16 was a 'out of nowhere' limit. I can easily change the kernel to remove that limit altogether. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Aug 12 15:03:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CJ3EiB003613; Mon, 12 Aug 2002 15:03:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CIUZv12205 for vserver.list; Mon, 12 Aug 2002 14:30:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CIUYY12196 for ; Mon, 12 Aug 2002 14:30:35 -0400 Received: from remtk.solucorp.qc.ca (g39-242.citenet.net [206.123.39.242]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7CIgDA57630 for ; Mon, 12 Aug 2002 14:42:13 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7CIRup18600 for vserver@solucorp.qc.ca; Mon, 12 Aug 2002 14:27:56 -0400 From: Jacques Gelinas Date: Mon, 12 Aug 2002 14:27:56 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Debian package available X-mailer: tlmpmail 0.6 Message-ID: <20020812142756.55830db4d709@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 971 On Sat, 10 Aug 2002 02:18:53 -0500, ragnar@this.is wrote > Good question. > > I was thinking that a Redhat system that would > run Debian vservers would be good enough. > > On the other hand having a Debian root server? > Among other things I can not see vrpm in the > context of Debian. vrpm or vaptget or vup2date. Same concept. vrpm is 5 lines of bash I think :-) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Aug 12 15:06:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CJ6RiB003644; Mon, 12 Aug 2002 15:06:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CIcwM13187 for vserver.list; Mon, 12 Aug 2002 14:38:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from telepath2.isomedia.com ([207.115.64.103]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CIcvY13183 for ; Mon, 12 Aug 2002 14:38:57 -0400 Received: from freya (pm140.focal.isomedia.com [66.147.197.55] (may be forged)) by telepath2.isomedia.com (8.11.6/8.11.6) with SMTP id g7CIch823198 for ; Mon, 12 Aug 2002 11:38:43 -0700 Received: by localhost with Microsoft MAPI; Mon, 12 Aug 2002 11:36:04 -0700 Message-ID: <01C241F4.71332C80.sarisky@pioneernet.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: [vserver] upgrades with unification Date: Mon, 12 Aug 2002 11:36:03 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MailScanner: Found to be clean X-MailScanner-SpamCheck: LEVEL=*, SpamAssassin (score=1.6, required 1, MAY_BE_FORGED) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 972 It never fails. I set up a bunch of vservers for clients, and then the requirements for one of the programs in use got upped. So I need to upgrade a handful of vservers. Maybe I'm being dense, but how can I upgrade them, without goofing up unification? I don't want to rebuild them from scratch. Does vunify do this? Could someone give an example? (I did vunify --help, but it didn't help much. :( ) Thanks in advance! Cathy Sarisky From vserver.error@solucorp.qc.ca Mon Aug 12 15:11:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CJBBiB003671; Mon, 12 Aug 2002 15:11:12 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CHxjU10161 for vserver.list; Mon, 12 Aug 2002 13:59:45 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CHxjY10157 for ; Mon, 12 Aug 2002 13:59:45 -0400 Received: from remtk.solucorp.qc.ca (g39-242.citenet.net [206.123.39.242]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7CIBNA54471 for ; Mon, 12 Aug 2002 14:11:23 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7CHiUv18467 for vserver@solucorp.qc.ca; Mon, 12 Aug 2002 13:44:30 -0400 From: Jacques Gelinas Date: Mon, 12 Aug 2002 13:44:30 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Debian package available X-mailer: tlmpmail 0.6 Message-ID: <20020812134430.cc6ac3190180@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 973 On Sat, 10 Aug 2002 11:13:40 -0500, Jon Bendtsen wrote > Jacques Gelinas wrote: > > After 10 years of work in linux, mind you, I knew what DEB stand for :-) > > well excuse me, but if you knew that already, why did you ask what > root_server.deb is ? Obviously, I was not asking about the deb extension. I was asking what root_server stand for. The current package is called vserver and there is also a vserver-admin package. So what root_server stand for ? He answered. For me root_server would have stand as a general purpose package used to install a whole root server: Everything needed to operate vservers and do basic configuration or the root server (which is beyond the vserver package) including hardware and networking and ... At some point, vserver aware distribution will allow one to setup a minimal linux installation used to configure the box administer vservers monitor vserver and some intrusion detection. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Aug 12 15:23:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CJMxiB003745; Mon, 12 Aug 2002 15:22:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CIR4g11892 for vserver.list; Mon, 12 Aug 2002 14:27:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CIR4Y11888 for ; Mon, 12 Aug 2002 14:27:04 -0400 Received: from remtk.solucorp.qc.ca (g39-242.citenet.net [206.123.39.242]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7CIchA57234 for ; Mon, 12 Aug 2002 14:38:43 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7CIQUJ18597 for vserver@solucorp.qc.ca; Mon, 12 Aug 2002 14:26:30 -0400 From: Jacques Gelinas Date: Mon, 12 Aug 2002 14:26:30 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] unify file system X-mailer: tlmpmail 0.6 Message-ID: <20020812142630.c4568dc63296@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 974 On Sat, 10 Aug 2002 10:30:28 -0500, ragnar@this.is wrote > Hi, > > Is there a file system that does transparent unify? > > It does at least seem to belong in the file system. > > How much work to modify ext3? One concept was proposed on linux kernel a while back. It is COW (Copy On Write). This is currently widely used in kernel to handle memory. Applied to file, it would mean that if you do cp a b you end up with a and b both pointing to the same data. The operation does not involve any copy at all. Mostly setting flags on metadata. Then when you modify either file a or file b, new storage is allocated for the modified chunks. a and b are still completly independant, yet they share disk space at the block size level. What is interesting here to us, vserver adict, is that it allows one to create a completly unified vserver, including data (configuration files). While doable, this creates a lot of burden for the fsck coder :-) Note that SMB has this concept and this feature might enter the kernel through smbfs. I don't remember too well, but their seemed to have other advantage to COW. The closest thing to COW is the concept of smapshot found in the LVM. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Aug 12 15:31:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CJVpiB003827; Mon, 12 Aug 2002 15:31:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CJGtb15209 for vserver.list; Mon, 12 Aug 2002 15:16:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CJGtY15205 for ; Mon, 12 Aug 2002 15:16:55 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17eKgJ-0005ut-00 for ; Mon, 12 Aug 2002 21:16:47 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D58099F.3FC6100A@silicide.dk> Date: Mon, 12 Aug 2002 21:16:47 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] upgrades with unification References: <01C241F4.71332C80.sarisky@pioneernet.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17eKgJ-0005ut-00*gs7BhGd0iyY* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 975 Cathy Sarisky wrote: > > It never fails. I set up a bunch of vservers for clients, and then the > requirements for one of the programs in use got upped. So I need to upgrade a > handful of vservers. Maybe I'm being dense, but how can I upgrade them, > without goofing up unification? I don't want to rebuild them from scratch. > Does vunify do this? Could someone give an example? (I did vunify --help, > but it didn't help much. :( ) I dont use unification... But isnt it just a hardlink ?? If you replace the hardlink in the root server, doesnt it affect all the vservers ?? If not, you could possibly upgrade the root server, and then, in the root server, run a script, that unlinks (read rm's) the link, and redoes the link again as a hardlink for all the files in all the vservers. JonB From vserver.error@solucorp.qc.ca Mon Aug 12 15:34:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CJYLiB003841; Mon, 12 Aug 2002 15:34:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CJD2x15107 for vserver.list; Mon, 12 Aug 2002 15:13:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from iteckmailx.infoteck.qc.ca (smtp2.infoteck.qc.ca [205.151.16.14]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CJD2Y15103 for ; Mon, 12 Aug 2002 15:13:02 -0400 Received: from [205.151.16.16] (port=46517 helo=ITeckShield.infoteck.qc.ca) by iteckmailx.infoteck.qc.ca with smtp (Exim 4.10) id 17eKca-0006ff-00 for vserver@solucorp.qc.ca; Mon, 12 Aug 2002 15:12:56 -0400 Received: from smtp2.infoteck.qc.ca(205.151.16.14) by ITeckShield.infoteck.qc.ca via csmap id 898; Mon, 12 Aug 2002 19:12:06 -0400 (EDT) Received: from [205.151.16.4] (port=2864 helo=jvandal) by iteckmailx.infoteck.qc.ca with smtp (Exim 4.10) id 17eKca-0006fc-00 for vserver@solucorp.qc.ca; Mon, 12 Aug 2002 15:12:56 -0400 Message-ID: <012401c24234$749eec20$1400010a@infoteck.ca> From: "Joel Vandal" To: References: <01C241F4.71332C80.sarisky@pioneernet.net> Subject: [vserver] Our installation Date: Mon, 12 Aug 2002 15:14:17 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 976 Hi, Thanks for this great system (vserver) ! Merci Jacques pour ce merveilleux patch + systčme ;) We use it on a few dual and quad (xeon) cpu server. All root servers running with Redhat 7.3 and each take about 100MB since I use minimal installation and remove unused rpms). Most vserver run w/ RH 7.3 but some run w/ Debian and Slackware... -- Joel Vandal From vserver.error@solucorp.qc.ca Mon Aug 12 15:40:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CJdtiB003870; Mon, 12 Aug 2002 15:39:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CJJ8j15282 for vserver.list; Mon, 12 Aug 2002 15:19:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CJJ8Y15278 for ; Mon, 12 Aug 2002 15:19:08 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17eKiU-0005v2-00 for ; Mon, 12 Aug 2002 21:19:02 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D580A26.80428D4@silicide.dk> Date: Mon, 12 Aug 2002 21:19:02 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Debian package available References: <20020812134430.cc6ac3190180@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17eKiU-0005v2-00*vdbl1FBYp.w* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 977 Jacques Gelinas wrote: > > On Sat, 10 Aug 2002 11:13:40 -0500, Jon Bendtsen wrote > > Jacques Gelinas wrote: > > > > After 10 years of work in linux, mind you, I knew what DEB stand for :-) > > > > well excuse me, but if you knew that already, why did you ask what > > root_server.deb is ? > > Obviously, I was not asking about the deb extension. I was asking what > root_server stand for. The current package is called vserver and there is also > a vserver-admin package. So what root_server stand for ? Well, i just tried to answer both questions. > He answered. For me root_server would have stand as a general purpose > package used to install a whole root server: Everything needed to operate vservers > and do basic configuration or the root server (which is beyond the vserver > package) including hardware and networking and ... This is more or less the same as i think, and what i tried to write in my reply to you. (weather or not i succeded is only something you can answer) > At some point, vserver aware distribution will allow one to setup a minimal > linux installation used to > > configure the box > administer vservers > monitor vserver and some intrusion detection. Yes, that would be nice... running debian of course :) JonB From vserver.error@solucorp.qc.ca Mon Aug 12 15:59:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CJx3iB004052; Mon, 12 Aug 2002 15:59:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CJVAW15604 for vserver.list; Mon, 12 Aug 2002 15:31:10 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CJVAY15600 for ; Mon, 12 Aug 2002 15:31:10 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17eKu8-0005vN-00 for ; Mon, 12 Aug 2002 21:31:04 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D580CF8.EC97F4CE@silicide.dk> Date: Mon, 12 Aug 2002 21:31:04 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] upgrades with unification] Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17eKu8-0005vN-00*xifxqq68UZw* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 978 > Cathy Sarisky wrote: > > > > It never fails. I set up a bunch of vservers for clients, and then the > > requirements for one of the programs in use got upped. So I need to upgrade a > > handful of vservers. Maybe I'm being dense, but how can I upgrade them, > > without goofing up unification? I don't want to rebuild them from scratch. > > Does vunify do this? Could someone give an example? (I did vunify --help, > > but it didn't help much. :( ) I dont use unification... But isnt it just a hardlink ?? If you replace the hardlink in the root server, doesnt it affect all the vservers ?? If not, you could possibly upgrade the root server, and then, in the root server, run a script, that unlinks (read rm's) the link, and redoes the link again as a hardlink for all the files in all the vservers. JonB From vserver.error@solucorp.qc.ca Mon Aug 12 16:05:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CK5RiB004121; Mon, 12 Aug 2002 16:05:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CJW6t15618 for vserver.list; Mon, 12 Aug 2002 15:32:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CJW5Y15614 for ; Mon, 12 Aug 2002 15:32:05 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17eKv1-0005va-00 for ; Mon, 12 Aug 2002 21:31:59 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D580D2F.B5641A70@silicide.dk> Date: Mon, 12 Aug 2002 21:31:59 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] Debian package available] Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17eKv1-0005va-00*sTjUcmYWXes* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 979 > Jacques Gelinas wrote: > > > > On Sat, 10 Aug 2002 11:13:40 -0500, Jon Bendtsen wrote > > > Jacques Gelinas wrote: > > > > > > After 10 years of work in linux, mind you, I knew what DEB stand for :-) > > > > > > well excuse me, but if you knew that already, why did you ask what > > > root_server.deb is ? > > > > Obviously, I was not asking about the deb extension. I was asking what > > root_server stand for. The current package is called vserver and there is also > > a vserver-admin package. So what root_server stand for ? Well, i just tried to answer both questions. > > He answered. For me root_server would have stand as a general purpose > > package used to install a whole root server: Everything needed to operate vservers > > and do basic configuration or the root server (which is beyond the vserver > > package) including hardware and networking and ... This is more or less the same as i think, and what i tried to write in my reply to you. (weather or not i succeded is only something you can answer) > > At some point, vserver aware distribution will allow one to setup a minimal > > linux installation used to > > > > configure the box > > administer vservers > > monitor vserver and some intrusion detection. Yes, that would be nice... running debian of course :) JonB From vserver.error@solucorp.qc.ca Mon Aug 12 17:02:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CL2QiB004446; Mon, 12 Aug 2002 17:02:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CKPdR17247 for vserver.list; Mon, 12 Aug 2002 16:25:39 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from relais.videotron.ca (relais.videotron.ca [24.201.245.36]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CKPdY17243 for ; Mon, 12 Aug 2002 16:25:39 -0400 Received: from BLACKHOLE ([24.200.73.36]) by relais.videotron.ca (Videotron-Netscape Messaging Server v4.15 MTA-PRD5) with ESMTP id H0QZEQ00.6IM for ; Mon, 12 Aug 2002 16:25:38 -0400 From: "Natalie Joron" To: Subject: RE: [vserver] Our installation Date: Mon, 12 Aug 2002 16:25:28 -0400 Message-ID: <000301c2423e$69dc0e30$0400000a@BLACKHOLE> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" X-Priority: 1 (Highest) X-MSMail-Priority: High X-Mailer: Microsoft Outlook, Build 10.0.2627 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: High In-Reply-To: <012401c24234$749eec20$1400010a@infoteck.ca> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g7CKPdY17243 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 980 Please unsubscribe cveilleux@videotron.ca -----Original Message----- From: Joel Vandal [mailto:jvandal@infoteck.qc.ca] Sent: 12 aoűt, 2002 15:14 To: vserver@solucorp.qc.ca Subject: [vserver] Our installation Hi, Thanks for this great system (vserver) ! Merci Jacques pour ce merveilleux patch + systčme ;) We use it on a few dual and quad (xeon) cpu server. All root servers running with Redhat 7.3 and each take about 100MB since I use minimal installation and remove unused rpms). Most vserver run w/ RH 7.3 but some run w/ Debian and Slackware... -- Joel Vandal From vserver.error@solucorp.qc.ca Mon Aug 12 17:16:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CLGOiB004550; Mon, 12 Aug 2002 17:16:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CKknY17883 for vserver.list; Mon, 12 Aug 2002 16:46:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from telepath2.isomedia.com ([207.115.64.103]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CKkmY17879 for ; Mon, 12 Aug 2002 16:46:48 -0400 Received: from freya (pm140.focal.isomedia.com [66.147.197.55] (may be forged)) by telepath2.isomedia.com (8.11.6/8.11.6) with SMTP id g7CKkK810751 for ; Mon, 12 Aug 2002 13:46:20 -0700 Received: by localhost with Microsoft MAPI; Mon, 12 Aug 2002 13:43:41 -0700 Message-ID: <01C24206.44F5ED80.sarisky@pioneernet.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] upgrades with unification Date: Mon, 12 Aug 2002 13:43:40 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MailScanner: Found to be clean X-MailScanner-SpamCheck: LEVEL=*, SpamAssassin (score=1.6, required 1, MAY_BE_FORGED) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 981 Ah, I think I understand my problem with vunify. Do I understand correctly that vunify only works with rpms? Eww.. I have stuff built from source. :( From vserver.error@solucorp.qc.ca Mon Aug 12 17:41:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CLfCiB004755; Mon, 12 Aug 2002 17:41:12 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CL5jo18334 for vserver.list; Mon, 12 Aug 2002 17:05:45 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.13thfloor.at (www.13thfloor.at [212.16.59.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CL5iY18330 for ; Mon, 12 Aug 2002 17:05:44 -0400 Received: by www.13thfloor.at (Postfix, from userid 1001) id 0BC1E220A63; Mon, 12 Aug 2002 23:05:38 +0200 (CEST) Date: Mon, 12 Aug 2002 23:05:38 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] upgrades with unification] Message-ID: <20020812210538.GE5563@www.13thfloor.at> References: <3D580CF8.EC97F4CE@silicide.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3D580CF8.EC97F4CE@silicide.dk> User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 982 On Mon, Aug 12, 2002 at 09:31:04PM +0200, Jon Bendtsen wrote: > > Cathy Sarisky wrote: > > > > > > It never fails. I set up a bunch of vservers for clients, and then the > > > requirements for one of the programs in use got upped. > > > So I need to upgrade a > > > handful of vservers. Maybe I'm being dense, but how can I upgrade them, > > > without goofing up unification? I don't want to rebuild them > > > from scratch. first, for the upgrade ... consider the folowing setup: SERV (template used for vservers) SV01 (first server ...) SV02 (second server ...) SV03 ... the package "wossname-0.1.noarch.rpm" needs to be updated to "wossname-0.2.noarch.rpm" ... usually this is done by rpm -U wossname-0.2.noarch.rpm in vserver, you _could_ do it the same way, by copying the package to each vserver SV01,SV02,SV03 ... and manually installing it ... nevertheless a better solution would be to use the vrpm warpper to upgrade all servers at once .. # vrpm SERV SV01 SV02 SV03 ... -- -U wossname-0.2.noarch.rpm if we ignore the issues regarding pre/post scripts I mentioned a few mails ago ... this will upgrade your template _and_ the running/active servers > > > Does vunify do this? Could someone give an example? > > > (I did vunify --help, but it didn't help much. :( ) the unification for this specific package will be broken, but this can easily be fixed with vunify # vunify SERV SV01 SV02 SV03 ... -- wossname (note: vunify uses the package name not the package path ...) > I dont use unification... > But isnt it just a hardlink ?? If you replace the hardlink in the root > server, doesnt it affect all the vservers ?? unification is a little more than just a hardlink. it is a hardlink with additional immuteability (except for removal ;) which means, you would not be able to _change_ the file/link in the root server until you remove the immutable flag or the file. > If not, you could possibly upgrade the root server, and then, in the > root server, run a script, > that unlinks (read rm's) the link, and redoes the link again as a > hardlink for all the files in all the vservers. this is, in a special way, what vunify does ... (except that it requires the package to be installed in all unified servers ...) maybe it would be a good idea to add the vunify functionality to the vrpm script as an option? best, Herbert From vserver.error@solucorp.qc.ca Mon Aug 12 18:03:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CM3AiB004948; Mon, 12 Aug 2002 18:03:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CLgoL19201 for vserver.list; Mon, 12 Aug 2002 17:42:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CLgoY19197 for ; Mon, 12 Aug 2002 17:42:50 -0400 Received: from remtk.solucorp.qc.ca (g36-70.citenet.net [206.123.36.70]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7CLsUA73428 for ; Mon, 12 Aug 2002 17:54:30 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7CLCOQ20268 for vserver@solucorp.qc.ca; Mon, 12 Aug 2002 17:12:24 -0400 From: Jacques Gelinas Date: Mon, 12 Aug 2002 17:12:24 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Our installation X-mailer: tlmpmail 0.6 Message-ID: <20020812171224.01ee01013f01@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 983 On Mon, 12 Aug 2002 15:14:17 -0500, Joel Vandal wrote > Hi, > > Thanks for this great system (vserver) ! Merci Jacques pour ce merveilleux > patch + systčme ;) > > We use it on a few dual and quad (xeon) cpu server. > > All root servers running with Redhat 7.3 and each take about 100MB since I > use minimal installation and remove unused rpms). unification allows you to shrink a fairly fat rh install (complete first CD) and yet use 40-50 megs per vservers. Less work and tuning. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Aug 12 18:42:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CMgTiB005201; Mon, 12 Aug 2002 18:42:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CM79219869 for vserver.list; Mon, 12 Aug 2002 18:07:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from merlin.zolotek.net (dial-62-64-210-165.access.uk.tiscali.com [62.64.210.165]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7CM77Y19865 for ; Mon, 12 Aug 2002 18:07:07 -0400 Received: from dial-62-64-226-229.access.uk.tiscali.com (merlin.zolotek.net [127.0.0.1]) by merlin.zolotek.net (Weasel v1.20) for ; 12 Aug 2002 23:07:27 From: "Lyn St George" To: "vserver@solucorp.qc.ca" Date: Mon, 12 Aug 2002 23:07:26 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: RE: [vserver] upgrades with unification Message-ID: <200208122307.0000002D@merlin.zolotek.net> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 984 On Mon, 12 Aug 2002 13:43:40 -0700, Cathy Sarisky wrote: >Ah, I think I understand my problem with vunify. Do I understand correctly >that vunify only works with rpms? Eww.. I have stuff built from source. :( My servers are also built entirely from tarballs, as I have a personal aversion to that RPM thing. If you have a "template" / "skeleton" / "reference" server from which all the hard links are made to the VS's, then it should be just a matter of upgrading the reference server, without having to use any of the vunify or other scripts. (though it's late and I've just had a few drinks with my cousins ..... ) - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Mon Aug 12 18:52:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CMpuiB005278; Mon, 12 Aug 2002 18:51:56 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CMQTH20425 for vserver.list; Mon, 12 Aug 2002 18:26:29 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from telepath2.isomedia.com ([207.115.64.103]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CMQPY20420 for ; Mon, 12 Aug 2002 18:26:25 -0400 Received: from freya (pm140.focal.isomedia.com [66.147.197.55] (may be forged)) by telepath2.isomedia.com (8.11.6/8.11.6) with SMTP id g7CMQF812913 for ; Mon, 12 Aug 2002 15:26:15 -0700 Received: by localhost with Microsoft MAPI; Mon, 12 Aug 2002 15:23:36 -0700 Message-ID: <01C24214.3A54A480.sarisky@pioneernet.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] upgrades with unification Date: Mon, 12 Aug 2002 15:23:35 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MailScanner: Found to be clean X-MailScanner-SpamCheck: LEVEL=*, SpamAssassin (score=1.6, required 1, MAY_BE_FORGED) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 985 Lyn, Ah, yes, that's exactly what I need, unification on a tarball baby. I do have hard links, but with the immutable-unlink flag, any changes to the reference server won't propagate, if I'm understanding correctly. I need that immutable-unlink flag, so that the vserver users can upgrade. Sam Vilain's perl script (mentioned at http://vserver.vlad.net/list/0485.html) sounded like it might work, except that the script seems to be missing? On Monday, August 12, 2002 4:07 PM, Lyn St George [SMTP:lyn@zolotek.net] wrote: > On Mon, 12 Aug 2002 13:43:40 -0700, Cathy Sarisky wrote: > My servers are also built entirely from tarballs, as I have a personal > aversion to that RPM thing. > > If you have a "template" / "skeleton" / "reference" server from which > all the hard links are made to the VS's, then it should be just a matter > of upgrading the reference server, without having to use any of the > vunify or other scripts. (though it's late and I've just had a few > drinks with my cousins ..... ) From vserver.error@solucorp.qc.ca Mon Aug 12 18:56:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CMuniB005323; Mon, 12 Aug 2002 18:56:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CMYgZ20622 for vserver.list; Mon, 12 Aug 2002 18:34:42 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7CMYgY20618 for ; Mon, 12 Aug 2002 18:34:42 -0400 Received: (qmail 13109 invoked from network); 12 Aug 2002 22:34:43 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 12 Aug 2002 22:34:43 -0000 Message-Id: <5.1.0.14.2.20020812183421.04bc4ca0@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Mon, 12 Aug 2002 18:34:41 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] excuse the stupidity of this question how do we delete a vserver? Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 986 excuse the stupidity of this question how do we delete a vserver? __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Mon Aug 12 19:02:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CN23iB005385; Mon, 12 Aug 2002 19:02:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CMcPX20759 for vserver.list; Mon, 12 Aug 2002 18:38:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CMcOY20755 for ; Mon, 12 Aug 2002 18:38:24 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7CMRL529872 for ; Mon, 12 Aug 2002 15:27:21 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Mon, 12 Aug 2002 15:37:39 -0700 MIME-Version: 1.0 Subject: Re: [vserver] excuse the stupidity of this question how do we delete a vserver? Message-ID: <3D57D643.5510.BF4767@localhost> Priority: normal In-reply-to: <5.1.0.14.2.20020812183421.04bc4ca0@mail.pwebtech.com> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 987 rm /etc/vservers/vserver_name.conf rm /home/vservers/vserver_name ? On 12 Aug 2002 at 18:34, Jason Silverglate wrote: > excuse the stupidity of this question how do we delete a vserver? > > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > > -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Mon Aug 12 19:04:37 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CN4QiB005417; Mon, 12 Aug 2002 19:04:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CMWsA20590 for vserver.list; Mon, 12 Aug 2002 18:32:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7CMWsY20586 for ; Mon, 12 Aug 2002 18:32:54 -0400 Received: (qmail 9834 invoked from network); 12 Aug 2002 22:32:50 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 12 Aug 2002 22:32:50 -0000 Message-Id: <5.1.0.14.2.20020812182836.04bc8068@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Mon, 12 Aug 2002 18:32:48 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] Problem with a unification Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 988 I created a unified VPS off of another Vserver and there is no file system just /dev and /proc and when i try to enter the vserver i get this [root@vserver1 root]# vserver vserver2 enter ********************************************************** /vservers/vserver2/.. has insecure permissions. A vserver administrator may be able to visit the root server. To fix this, do chmod 000 /vservers/vserver2/.. do it anytime you want, even if vservers are running. ********************************************************** Server vserver2 is not running ipv4root is now ip Host name is now vserver2.domain.com New security context is 12 Can't execute /bin/bash (No such file or directory) __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Mon Aug 12 19:09:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CN9AiB005440; Mon, 12 Aug 2002 19:09:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CMg1920835 for vserver.list; Mon, 12 Aug 2002 18:42:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from telepath2.isomedia.com ([207.115.64.103]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CMg0Y20831 for ; Mon, 12 Aug 2002 18:42:00 -0400 Received: from freya (pm140.focal.isomedia.com [66.147.197.55] (may be forged)) by telepath2.isomedia.com (8.11.6/8.11.6) with SMTP id g7CMfi818068 for ; Mon, 12 Aug 2002 15:41:44 -0700 Received: by localhost with Microsoft MAPI; Mon, 12 Aug 2002 15:39:05 -0700 Message-ID: <01C24216.63E71EC0.sarisky@pioneernet.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] Problem with a unification Date: Mon, 12 Aug 2002 15:39:04 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MailScanner: Found to be clean X-MailScanner-SpamCheck: LEVEL=*, SpamAssassin (score=1.6, required 1, MAY_BE_FORGED) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 989 What command did you use to create the new server? On Monday, August 12, 2002 3:33 PM, Jason Silverglate [SMTP:jason@pwebtech.com] wrote: > I created a unified VPS off of another Vserver and there is no file system > just /dev and /proc and when i try to enter the vserver i get this > > [root@vserver1 root]# vserver vserver2 enter > > ********************************************************** > /vservers/vserver2/.. has insecure permissions. > A vserver administrator may be able to visit the root server. > To fix this, do > chmod 000 /vservers/vserver2/.. > do it anytime you want, even if vservers are running. > ********************************************************** > > Server vserver2 is not running > ipv4root is now ip > Host name is now vserver2.domain.com > New security context is 12 > Can't execute /bin/bash (No such file or directory) > > > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > From vserver.error@solucorp.qc.ca Mon Aug 12 19:19:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CNJCiB005520; Mon, 12 Aug 2002 19:19:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CMqOU21060 for vserver.list; Mon, 12 Aug 2002 18:52:24 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CMqNY21056 for ; Mon, 12 Aug 2002 18:52:23 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g7CMqLo12749 for ; Mon, 12 Aug 2002 15:52:21 -0700 Date: Mon, 12 Aug 2002 15:52:21 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: re: [vserver] Our installation In-Reply-To: <20020812171224.01ee01013f01@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 990 On Mon, 12 Aug 2002, Jacques Gelinas wrote: > unification allows you to shrink a fairly fat rh install (complete first CD) > and yet use 40-50 megs per vservers. Less work and tuning. Jacques, Did you solve the RHL 7.3 vserver install issue? I don't remember seeing anything but you saying you were working on it. I'm getting ready to build a new server and would like to make it lean and mean and RHL 7.3 are the way through. :-) Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Mon Aug 12 19:35:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CNZ8iB005651; Mon, 12 Aug 2002 19:35:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CMtH021148 for vserver.list; Mon, 12 Aug 2002 18:55:17 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CMtHY21144 for ; Mon, 12 Aug 2002 18:55:17 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g7CMtL112806 for ; Mon, 12 Aug 2002 15:55:21 -0700 Date: Mon, 12 Aug 2002 15:55:21 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: [vserver] Dual Athlon systems Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 991 I'm looking at a new system and want use a multi-processor MB. I see the smp kernels but have heard there are some problems, sometimes with smp Athlons. Anyone running Vservers on a dual Athlon system? And are you happy? Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Mon Aug 12 19:40:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CNeQiB005679; Mon, 12 Aug 2002 19:40:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CNJZt21739 for vserver.list; Mon, 12 Aug 2002 19:19:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7CNJYY21735 for ; Mon, 12 Aug 2002 19:19:35 -0400 Received: (qmail 12363 invoked from network); 12 Aug 2002 23:19:36 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 12 Aug 2002 23:19:36 -0000 Message-Id: <5.1.0.14.2.20020812191920.04906ca0@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Mon, 12 Aug 2002 19:19:32 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: Re: [vserver] excuse the stupidity of this question how do we delete a vserver? In-Reply-To: <3D57D643.5510.BF4767@localhost> References: <5.1.0.14.2.20020812183421.04bc4ca0@mail.pwebtech.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 992 I did a unify intall and can't delete /proc and /dev in that partition Jason At 06:37 PM 8/12/2002, you wrote: >rm /etc/vservers/vserver_name.conf >rm /home/vservers/vserver_name > >? > >On 12 Aug 2002 at 18:34, Jason Silverglate wrote: > > > excuse the stupidity of this question how do we delete a vserver? > > > > > > __________________ > > Jay Silver jason@pwebtech.com ICQ 103463692 > > Pegasus Web Technologies > > http://www.pwebtech.com > > Web Hosting and Dedicated Servers > > > > > >-- >Russell Anthony >Network Development / Administration __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Mon Aug 12 19:52:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CNqTiB005732; Mon, 12 Aug 2002 19:52:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CNVbn21997 for vserver.list; Mon, 12 Aug 2002 19:31:37 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7CNVbY21993 for ; Mon, 12 Aug 2002 19:31:37 -0400 Received: (qmail 28006 invoked from network); 12 Aug 2002 23:31:38 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 12 Aug 2002 23:31:38 -0000 Message-Id: <5.1.0.14.2.20020812193118.02cd3328@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Mon, 12 Aug 2002 19:31:34 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: RE: [vserver] Problem with a unification In-Reply-To: <01C24216.63E71EC0.sarisky@pioneernet.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 993 I did it threw newvserver and choose vserver1 as its template Jason At 06:39 PM 8/12/2002, you wrote: >What command did you use to create the new server? > >On Monday, August 12, 2002 3:33 PM, Jason Silverglate >[SMTP:jason@pwebtech.com] >wrote: > > I created a unified VPS off of another Vserver and there is no file system > > just /dev and /proc and when i try to enter the vserver i get this > > > > [root@vserver1 root]# vserver vserver2 enter > > > > ********************************************************** > > /vservers/vserver2/.. has insecure permissions. > > A vserver administrator may be able to visit the root server. > > To fix this, do > > chmod 000 /vservers/vserver2/.. > > do it anytime you want, even if vservers are running. > > ********************************************************** > > > > Server vserver2 is not running > > ipv4root is now ip > > Host name is now vserver2.domain.com > > New security context is 12 > > Can't execute /bin/bash (No such file or directory) > > > > > > > > __________________ > > Jay Silver jason@pwebtech.com ICQ 103463692 > > Pegasus Web Technologies > > http://www.pwebtech.com > > Web Hosting and Dedicated Servers > > __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Mon Aug 12 19:55:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CNt1iB005764; Mon, 12 Aug 2002 19:55:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CNXRG22037 for vserver.list; Mon, 12 Aug 2002 19:33:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from telepath2.isomedia.com ([207.115.64.103]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CNXRY22033 for ; Mon, 12 Aug 2002 19:33:27 -0400 Received: from freya (pm140.focal.isomedia.com [66.147.197.55] (may be forged)) by telepath2.isomedia.com (8.11.6/8.11.6) with SMTP id g7CNXQO02204 for ; Mon, 12 Aug 2002 16:33:26 -0700 Received: by localhost with Microsoft MAPI; Mon, 12 Aug 2002 16:30:47 -0700 Message-ID: <01C2421D.9CFB60C0.sarisky@pioneernet.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] excuse the stupidity of this question how do we delete a vserver? Date: Mon, 12 Aug 2002 16:30:47 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 994 stop the vserver, then you'll be able to delete it :) On Monday, August 12, 2002 4:20 PM, Jason Silverglate [SMTP:jason@pwebtech.com] wrote: > I did a unify intall and can't delete /proc and /dev in that partition > > Jason > > At 06:37 PM 8/12/2002, you wrote: > >rm /etc/vservers/vserver_name.conf > >rm /home/vservers/vserver_name > > > >? > > > >On 12 Aug 2002 at 18:34, Jason Silverglate wrote: > > > > > excuse the stupidity of this question how do we delete a vserver? > > > > > > > > > __________________ > > > Jay Silver jason@pwebtech.com ICQ 103463692 > > > Pegasus Web Technologies > > > http://www.pwebtech.com > > > Web Hosting and Dedicated Servers > > > > > > > > > >-- > >Russell Anthony > >Network Development / Administration > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > From vserver.error@solucorp.qc.ca Mon Aug 12 20:00:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7CNxxiB005776; Mon, 12 Aug 2002 20:00:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CNX4b22024 for vserver.list; Mon, 12 Aug 2002 19:33:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CNX3Y22020 for ; Mon, 12 Aug 2002 19:33:03 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7CNM8529089 for ; Mon, 12 Aug 2002 16:22:08 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Mon, 12 Aug 2002 16:32:25 -0700 MIME-Version: 1.0 Subject: Re: [vserver] excuse the stupidity of this question how do we delete a vserver? Message-ID: <3D57E319.13723.F16E73@localhost> Priority: normal In-reply-to: <5.1.0.14.2.20020812191920.04906ca0@mail.pwebtech.com> References: <3D57D643.5510.BF4767@localhost> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 995 i have a non unified install running debian now, and i have the same issue. stop the vserver, and see if it goes away... On 12 Aug 2002 at 19:19, Jason Silverglate wrote: > I did a unify intall and can't delete /proc and /dev in that partition > > Jason > > At 06:37 PM 8/12/2002, you wrote: > >rm /etc/vservers/vserver_name.conf > >rm /home/vservers/vserver_name > > > >? > > > >On 12 Aug 2002 at 18:34, Jason Silverglate wrote: > > > > > excuse the stupidity of this question how do we delete a vserver? > > > > > > > > > __________________ > > > Jay Silver jason@pwebtech.com ICQ 103463692 > > > Pegasus Web Technologies > > > http://www.pwebtech.com > > > Web Hosting and Dedicated Servers > > > > > > > > > >-- > >Russell Anthony > >Network Development / Administration > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > > -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Mon Aug 12 20:21:46 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7D0LPiB005921; Mon, 12 Aug 2002 20:21:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7CNvab22517 for vserver.list; Mon, 12 Aug 2002 19:57:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.wild98webhosting.com (server.wild98.com [64.26.141.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7CNvaY22513 for ; Mon, 12 Aug 2002 19:57:36 -0400 Received: from idouglas (lsanca2-ar26-4-46-185-054.lsanca2.dsl-verizon.net [4.46.185.54]) by www.wild98webhosting.com (8.11.6/linuxconf) with SMTP id g7CNvUX28014 for ; Mon, 12 Aug 2002 19:57:31 -0400 From: "Ian Douglas" To: Subject: RE: [vserver] excuse the stupidity of this question how do we delete a vserver? Date: Mon, 12 Aug 2002 16:57:50 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 In-Reply-To: <5.1.0.14.2.20020812191920.04906ca0@mail.pwebtech.com> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 996 That happened to me as well - tried a 'newvserver' command, got a 'too many open files' error, tried to 'rm' the /vservers/VS01 directory and got the same error. Couldn't do anything about it until I rebooted the main server... ... or am I missing something too? Also, how do I get around the 'too many open files' error when running newvserver? If my main server is up and running, and have VS00 running (vserver VS00 start), I get the 'open files' error. If I stop VS00, I can add a new vserver. Hardly efficient if I need to take down all vservers to add a new one... -id > -----Original Message----- > From: Jason Silverglate [mailto:jason@pwebtech.com] > Sent: Monday, August 12, 2002 4:20 PM > To: vserver@solucorp.qc.ca > Subject: Re: [vserver] excuse the stupidity of this question how do we > delete a vserver? > > > I did a unify intall and can't delete /proc and /dev in that partition > > Jason > > At 06:37 PM 8/12/2002, you wrote: > >rm /etc/vservers/vserver_name.conf > >rm /home/vservers/vserver_name > > > >? > > > >On 12 Aug 2002 at 18:34, Jason Silverglate wrote: > > > > > excuse the stupidity of this question how do we delete a vserver? > > > > > > > > > __________________ > > > Jay Silver jason@pwebtech.com ICQ 103463692 > > > Pegasus Web Technologies > > > http://www.pwebtech.com > > > Web Hosting and Dedicated Servers > > > > > > > > > >-- > >Russell Anthony > >Network Development / Administration > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > > > From vserver.error@solucorp.qc.ca Mon Aug 12 21:27:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7D1RIiB006464; Mon, 12 Aug 2002 21:27:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7D145R23824 for vserver.list; Mon, 12 Aug 2002 21:04:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from telepath2.isomedia.com ([207.115.64.103]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7D144Y23820 for ; Mon, 12 Aug 2002 21:04:05 -0400 Received: from freya (pm140.focal.isomedia.com [66.147.197.55] (may be forged)) by telepath2.isomedia.com (8.11.6/8.11.6) with SMTP id g7D143O28715 for ; Mon, 12 Aug 2002 18:04:04 -0700 Received: by localhost with Microsoft MAPI; Mon, 12 Aug 2002 18:01:24 -0700 Message-ID: <01C2422A.45D45C40.sarisky@pioneernet.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] upgrades with unification Date: Mon, 12 Aug 2002 18:01:22 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 997 I tried out Sam Vilain's unify-dirs script. After running it, I'm getting: ---i---------t with lsattr or 00008010 with showattr. I wanted the files to be unlinkable, but that doesn't seem to be what's happening in practice. (I used -l and -i flags with unify-dirs.) Could someone help me out here? What should I have for a file that is linked but unlinkable? Thanks! Cathy Sarisky From vserver.error@solucorp.qc.ca Mon Aug 12 22:36:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7D2a5iB006871; Mon, 12 Aug 2002 22:36:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7D2Ier25308 for vserver.list; Mon, 12 Aug 2002 22:18:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from bill.aqvs.co.uk (bill.aqvs.co.uk [195.224.50.198]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7D2IeY25304 for ; Mon, 12 Aug 2002 22:18:40 -0400 Received: from notebook1 (pam80-1-22-172.man.dial.ntli.net [80.1.22.172]) by bill.aqvs.co.uk (8.11.0/8.11.0) with ESMTP id g7D2IA416951 for ; Tue, 13 Aug 2002 03:18:10 +0100 From: "Bill Brigden" To: Subject: RE: [vserver] excuse the stupidity of this question how do we delete a vserver? Date: Tue, 13 Aug 2002 03:17:40 +0100 Message-ID: <000001c2426f$9ab98dd0$1e010a0a@mastokes.local> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 Importance: Normal In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 998 A quote from Tim Sellar (tim@idaya.co.uk) of the FreeVSD project may help here: You are at a stage where you are going to need to do some performance tuning of your hosting servers. This involves increasing the default limits for things like file handlers and shared memory segments. You can check the number of allocated file handlers by doing: cat /proc/sys/fs/file-max cat /proc/sys/fs/dquot-max cat /proc/sys/fs/super-max You can check the relevant shared memory segment limits by doing: cat 67108864 >/proc/sys/kernel/shmmax cat 384 >/proc/sys/kernel/shmmni If you are hosting large numbers of virtual servers or have a particularly rich skel these values may have to be increased. This can be done by adding the following lines in your /etc/rc.d/rc.sysinit immediately after the /proc filesystem has been mounted: echo 256000 >/proc/sys/fs/file-max echo 32768 >/proc/sys/fs/dquot-max echo 2048 >/proc/sys/fs/super-max echo 67108864 >/proc/sys/kernel/shmmax echo 384 >/proc/sys/kernel/shmmni The values shown are reasonable examples but may need to altered depending on your systems requirements. ----------------------- I hope this helps - Bill B. -----Original Message----- From: Ian Douglas [mailto:linux@wild98.com] Sent: 13 August 2002 00:58 To: vserver@solucorp.qc.ca Subject: RE: [vserver] excuse the stupidity of this question how do we delete a vserver? That happened to me as well - tried a 'newvserver' command, got a 'too many open files' error, tried to 'rm' the /vservers/VS01 directory and got the same error. Couldn't do anything about it until I rebooted the main server... ... or am I missing something too? Also, how do I get around the 'too many open files' error when running newvserver? If my main server is up and running, and have VS00 running (vserver VS00 start), I get the 'open files' error. If I stop VS00, I can add a new vserver. Hardly efficient if I need to take down all vservers to add a new one... -id > -----Original Message----- > From: Jason Silverglate [mailto:jason@pwebtech.com] > Sent: Monday, August 12, 2002 4:20 PM > To: vserver@solucorp.qc.ca > Subject: Re: [vserver] excuse the stupidity of this question how do we > delete a vserver? > > > I did a unify intall and can't delete /proc and /dev in that partition > > Jason > > At 06:37 PM 8/12/2002, you wrote: > >rm /etc/vservers/vserver_name.conf > >rm /home/vservers/vserver_name > > > >? > > > >On 12 Aug 2002 at 18:34, Jason Silverglate wrote: > > > > > excuse the stupidity of this question how do we delete a vserver? > > > > > > > > > __________________ > > > Jay Silver jason@pwebtech.com ICQ 103463692 > > > Pegasus Web Technologies > > > http://www.pwebtech.com > > > Web Hosting and Dedicated Servers > > > > > > > > > >-- > >Russell Anthony > >Network Development / Administration > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > > > From vserver.error@solucorp.qc.ca Mon Aug 12 23:57:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7D3vXiB007381; Mon, 12 Aug 2002 23:57:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7D3Ynv26846 for vserver.list; Mon, 12 Aug 2002 23:34:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7D3YnY26842 for ; Mon, 12 Aug 2002 23:34:49 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g7D3YrG15731 for ; Mon, 12 Aug 2002 20:34:53 -0700 Date: Mon, 12 Aug 2002 20:34:53 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] excuse the stupidity of this question how do we delete a vserver? In-Reply-To: <3D57D643.5510.BF4767@localhost> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 999 On Mon, 12 Aug 2002, Russell Anthony wrote: > rm /etc/vservers/vserver_name.conf > rm /home/vservers/vserver_name Might also add rm /etc/vservers/vserver_name.sh And as the thread is progressing you might want to stop your server first. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Tue Aug 13 04:15:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7D8EriB009255; Tue, 13 Aug 2002 04:14:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7D7tGK32340 for vserver.list; Tue, 13 Aug 2002 03:55:16 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7D7tGY32336 for ; Tue, 13 Aug 2002 03:55:16 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17eWWE-0006B1-00 for ; Tue, 13 Aug 2002 09:55:10 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D58BB5E.F515593F@silicide.dk> Date: Tue, 13 Aug 2002 09:55:10 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Dual Athlon systems References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17eWWE-0006B1-00*ZtAPBmFasL2* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1000 "Roderick A. Anderson" wrote: > > I'm looking at a new system and want use a multi-processor MB. I see the > smp kernels but have heard there are some problems, sometimes with smp > Athlons. Anyone running Vservers on a dual Athlon system? And are you > happy? I'm not running vserver on a dual athlon, but i am at a dual P200mmx. I do however have one dual athlon here at work, and it has given us quite some trouble, how ever, we do think it was because it became too hot. We also had trouble with the memory used for this server. In the beginning we didnt use reg. memory, so it would only run with a FSB of 200. Later we got some reg. memory, and then it could sort of run with a FSB of 266. We are however, because of the trouble with it, only running it at 200FSB though we are using the reg. memory for it. The board was a tyan tiger? thunder ? anyway, it is a tyan, and there are nothing onboard. no scsi no nothing. The cpu's are 1200MHz athlon MP, running at 900 though, because of the 200 MHz FSB. I dont know any other dual athlon boards. But i do know that you need COOLING. JonB From vserver.error@solucorp.qc.ca Tue Aug 13 04:45:29 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7D8j5iB009501; Tue, 13 Aug 2002 04:45:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7D7dSu32022 for vserver.list; Tue, 13 Aug 2002 03:39:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7D7dRY32018 for ; Tue, 13 Aug 2002 03:39:28 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17eWGp-0006Ao-00 for ; Tue, 13 Aug 2002 09:39:15 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D58B7A3.51FEDA08@silicide.dk> Date: Tue, 13 Aug 2002 09:39:15 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] upgrades with unification] References: <3D580CF8.EC97F4CE@silicide.dk> <20020812210538.GE5563@www.13thfloor.at> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17eWGp-0006Ao-00*zQiNkNWoy9c* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1001 Herbert Poetzl wrote: > > On Mon, Aug 12, 2002 at 09:31:04PM +0200, Jon Bendtsen wrote: > > > Cathy Sarisky wrote: > > I dont use unification... > > But isnt it just a hardlink ?? If you replace the hardlink in the root > > server, doesnt it affect all the vservers ?? > > unification is a little more than just a hardlink. > it is a hardlink with additional immuteability > (except for removal ;) which means, you would not > be able to _change_ the file/link in the root server > until you remove the immutable flag or the file. even the root server has to do this ?? I thought the immutable flag was only used in the vservers. > > If not, you could possibly upgrade the root server, and then, in the > > root server, run a script, > > that unlinks (read rm's) the link, and redoes the link again as a > > hardlink for all the files in all the vservers. > > this is, in a special way, what vunify does ... > (except that it requires the package to be installed > in all unified servers ...) okay, i dont use it, as i consider disk space cheap, and the extra trouble handling a unified file system just add's even more against using it. (then again, i'm only running vservers for myself, so i only have a few vservers, not 49037823923 like an ISP would have. > maybe it would be a good idea to add the vunify > functionality to the vrpm script as an option? Well, what about debian ? and slackware ? JonB From vserver.error@solucorp.qc.ca Tue Aug 13 08:45:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DCjtiB011234; Tue, 13 Aug 2002 08:45:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DCNIE07671 for vserver.list; Tue, 13 Aug 2002 08:23:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7DCNHY07667 for ; Tue, 13 Aug 2002 08:23:17 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g7DCNJA20937 for ; Tue, 13 Aug 2002 05:23:19 -0700 Date: Tue, 13 Aug 2002 05:23:19 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] Dual Athlon systems In-Reply-To: <3D58BB5E.F515593F@silicide.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1002 On Tue, 13 Aug 2002, Jon Bendtsen wrote: > I dont know any other dual athlon boards. But i do know that you need > COOLING. I had this drilled into me from the moment I started building systems from scratch. My home system is an ASUS dual PII/350 (kind of old technology) with SCSI drives. Each SCSI HD has a dual fan bay cooler. The front of the case has a thermo-controlled fan and I payed extra for the high efficiency CPU fan and heat sinks. Along this line I had a customer that was having intermittent system lock ups. Finally had the tech checked inside the case and found the CPU fan was disconnected. And this was only a Pentium 166 or some such. I can only guess what would have been result if this would have been a 800+ MHz processor. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Tue Aug 13 09:20:46 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DDKJiB011497; Tue, 13 Aug 2002 09:20:20 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DCvRf08425 for vserver.list; Tue, 13 Aug 2002 08:57:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mailport.inet.tele.dk (mailport.inet.tele.dk [193.88.13.66]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7DCvQY08421 for ; Tue, 13 Aug 2002 08:57:26 -0400 Received: from niflheim.int.tele.dk (niflheim.int.tele.dk [10.0.0.62]) by mailport.inet.tele.dk (Postfix) with ESMTP id 5C94B9B4E for ; Tue, 13 Aug 2002 14:57:25 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by niflheim.int.tele.dk (Postfix) with ESMTP id 3652CA0ED for ; Tue, 13 Aug 2002 14:57:25 +0200 (CEST) Received: from veers.int.tele.dk (veers.int.tele.dk [10.0.0.10]) by niflheim.int.tele.dk (Postfix) with ESMTP id 2C8389E34 for ; Tue, 13 Aug 2002 14:57:24 +0200 (CEST) Received: by veers.int.tele.dk with Internet Mail Service (5.5.2650.21) id <3Z4JFYC4>; Tue, 13 Aug 2002 14:57:24 +0200 Message-ID: <734513283C7CD511BA0700508BB958CC689D77@palpatine.int.tele.dk> From: Ivan Eriksen To: "'vserver@solucorp.qc.ca'" Subject: [vserver] Can you propergate changes from the vservers to the root server ? Date: Tue, 13 Aug 2002 14:55:27 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" X-Virus-Scanned: by TDC Internet A/S - Intern IT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1003 Hello, I was just wondering if it's possible to propergate changes in the reference server to the root server with vunify ? I guess, what I am asking is : Can I do : vunify refserver / or something similar ? I apologize if this is a FAQ. Thanks, / IE From vserver.error@solucorp.qc.ca Tue Aug 13 13:20:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DHJxiB013540; Tue, 13 Aug 2002 13:19:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DGtQr14696 for vserver.list; Tue, 13 Aug 2002 12:55:26 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7DGtPY14692 for ; Tue, 13 Aug 2002 12:55:25 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7DGiL529557 for ; Tue, 13 Aug 2002 09:44:21 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Tue, 13 Aug 2002 09:54:44 -0700 MIME-Version: 1.0 Subject: Re: [vserver] excuse the stupidity of this question how do we delete a vserver? Message-ID: <3D58D764.22027.4ABB3C1@localhost> Priority: normal References: <3D57D643.5510.BF4767@localhost> In-reply-to: X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1004 I have no .sh files in my /etc/vservers dir. And I overlooked mentioning stopping the server ;) Of course that'll help (allows you to remove proc and dev and other such locked items) On 12 Aug 2002 at 20:34, Roderick A. Anderson wrote: > On Mon, 12 Aug 2002, Russell Anthony wrote: > > > rm /etc/vservers/vserver_name.conf > > rm /home/vservers/vserver_name > > Might also add > > rm /etc/vservers/vserver_name.sh > > And as the thread is progressing you might want to stop your server first. > > > Rod > -- > "Open Source Software - Sometimes you get more than you paid for..." > -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Tue Aug 13 13:43:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DHhZiB013662; Tue, 13 Aug 2002 13:43:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DGw1T14764 for vserver.list; Tue, 13 Aug 2002 12:58:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7DGw0Y14758 for ; Tue, 13 Aug 2002 12:58:00 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7DGl0529753 for ; Tue, 13 Aug 2002 09:47:00 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Tue, 13 Aug 2002 09:57:22 -0700 MIME-Version: 1.0 Subject: RE: [vserver] excuse the stupidity of this question how do we delete a vserver? Message-ID: <3D58D802.17711.4AE1D5D@localhost> Priority: normal In-reply-to: <000001c2426f$9ab98dd0$1e010a0a@mastokes.local> References: X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1005 On 13 Aug 2002 at 3:17, Bill Brigden wrote: > A quote from Tim Sellar (tim@idaya.co.uk) of the FreeVSD project may > help here: > > You are at a stage where you are going to need to do some performance > tuning of your hosting servers. This involves increasing the default > limits for things like file handlers and shared memory segments. > > You can check the number of allocated file handlers by doing: > > cat /proc/sys/fs/file-max > cat /proc/sys/fs/dquot-max > cat /proc/sys/fs/super-max > > You can check the relevant shared memory segment limits by doing: > > cat 67108864 >/proc/sys/kernel/shmmax > cat 384 >/proc/sys/kernel/shmmni you mean : echo 67108864 >/proc/sys/kernel/shmmax echo 384 >/proc/sys/kernel/shmmni don't you ? > If you are hosting large numbers of virtual servers or have a > particularly rich skel these values may have to be increased. This can > be done by adding the following lines in your /etc/rc.d/rc.sysinit > immediately after the /proc filesystem has been mounted: > > echo 256000 >/proc/sys/fs/file-max > echo 32768 >/proc/sys/fs/dquot-max > echo 2048 >/proc/sys/fs/super-max > echo 67108864 >/proc/sys/kernel/shmmax > echo 384 >/proc/sys/kernel/shmmni > > The values shown are reasonable examples but may need to altered > depending on your systems requirements. > > ----------------------- > I hope this helps - Bill B. > > -----Original Message----- > From: Ian Douglas [mailto:linux@wild98.com] > Sent: 13 August 2002 00:58 > To: vserver@solucorp.qc.ca > Subject: RE: [vserver] excuse the stupidity of this question how do we > delete a vserver? > > > That happened to me as well - tried a 'newvserver' command, got a 'too > many open files' error, tried to 'rm' the /vservers/VS01 directory and > got the same error. Couldn't do anything about it until I rebooted the > main server... > > ... or am I missing something too? > > Also, how do I get around the 'too many open files' error when running > newvserver? If my main server is up and running, and have VS00 running > (vserver VS00 start), I get the 'open files' error. If I stop VS00, I > can add a new vserver. Hardly efficient if I need to take down all > vservers to add a new one... > > -id > > > > -----Original Message----- > > From: Jason Silverglate [mailto:jason@pwebtech.com] > > Sent: Monday, August 12, 2002 4:20 PM > > To: vserver@solucorp.qc.ca > > Subject: Re: [vserver] excuse the stupidity of this question how do we > > > delete a vserver? > > > > > > I did a unify intall and can't delete /proc and /dev in that partition > > > > Jason > > > > At 06:37 PM 8/12/2002, you wrote: > > >rm /etc/vservers/vserver_name.conf > > >rm /home/vservers/vserver_name > > > > > >? > > > > > >On 12 Aug 2002 at 18:34, Jason Silverglate wrote: > > > > > > > excuse the stupidity of this question how do we delete a vserver? > > > > > > > > > > > > __________________ > > > > Jay Silver jason@pwebtech.com ICQ 103463692 > > > > Pegasus Web Technologies > > > > http://www.pwebtech.com > > > > Web Hosting and Dedicated Servers > > > > > > > > > > > > > >-- > > >Russell Anthony > > >Network Development / Administration > > > > __________________ > > Jay Silver jason@pwebtech.com ICQ 103463692 > > Pegasus Web Technologies > > http://www.pwebtech.com > > Web Hosting and Dedicated Servers > > > > > > > > -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Tue Aug 13 14:02:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DI2MiB013881; Tue, 13 Aug 2002 14:02:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DHfUO16151 for vserver.list; Tue, 13 Aug 2002 13:41:30 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7DHfTY16147 for ; Tue, 13 Aug 2002 13:41:29 -0400 Received: (qmail 27777 invoked from network); 13 Aug 2002 17:41:31 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 13 Aug 2002 17:41:31 -0000 Message-Id: <5.1.0.14.2.20020813133958.04db0950@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Tue, 13 Aug 2002 13:41:02 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] Unfiied not working what am i doing wrong In-Reply-To: <3D58D764.22027.4ABB3C1@localhost> References: <3D57D643.5510.BF4767@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1006 [root@vserver1 vserver2]# ls dev proc Those are the only directories i get when i do this config for unification lqqqqqqqqqqqqqqqqqqqqq Vserver basic setup qqqqqqqqqqqqqqqqqqqqqqk x x x lqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqk x xtop xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x xVserver name (max 10 chars) xvserver2 x x xVserver description xvserver2 x x xClone vserver x/ vx x xUnified mode x[X] Share disk space x x xNetworking xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x xHost name xvserver2.woof.com x x x xUp to 16 IP numbers x x xIP number(s) x x x xInstall IP on device xeth0 x x xNIS domainname x x x xExtra xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x xStart server x[ ] at boot time x x xNice level x x x xAvailable flags xlock nproc sched hideinfo privatex x xFlags xlock nproc x x xVserver ulimit x-H -u 1000 x x xServices xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x xcrond x[X] Scheduled tasks x x xhttpd x[ ] Web server x x xsshd x[X] Secure shell server x x xsyslog x[X] Message logger x x xxinetd x[X] On demand inet service x x xShared directories xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x xDirectory x/usr x x xDirectory x/ x x xDirectory x/lib x x xDirectory x/var From vserver.error@solucorp.qc.ca Tue Aug 13 14:09:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DI9BiB013926; Tue, 13 Aug 2002 14:09:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DHoNP16421 for vserver.list; Tue, 13 Aug 2002 13:50:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp013.mail.yahoo.com (smtp013.mail.yahoo.com [216.136.173.57]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7DHoNY16417 for ; Tue, 13 Aug 2002 13:50:23 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 13 Aug 2002 17:36:17 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] excuse the stupidity of this question how do we delete a vserver? Date: Tue, 13 Aug 2002 12:36:15 -0500 Message-ID: <002601c242ef$ed621400$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <3D58D764.22027.4ABB3C1@localhost> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1007 The *.sh files are under /etc/vservers. They are there if you created the vserver using newserver. They may not be there if you created vservers using some other means. (I always use newserver myself, so I can't be sure). Peter -----Original Message----- From: Russell Anthony [mailto:ranthony@siteturn.com] Sent: Tuesday, August 13, 2002 11:55 AM To: vserver@solucorp.qc.ca Subject: Re: [vserver] excuse the stupidity of this question how do we delete a vserver? I have no .sh files in my /etc/vservers dir. And I overlooked mentioning stopping the server ;) Of course that'll help (allows you to remove proc and dev and other such locked items) On 12 Aug 2002 at 20:34, Roderick A. Anderson wrote: > On Mon, 12 Aug 2002, Russell Anthony wrote: > > > rm /etc/vservers/vserver_name.conf > > rm /home/vservers/vserver_name > > Might also add > > rm /etc/vservers/vserver_name.sh > > And as the thread is progressing you might want to stop your server first. > > > Rod > -- > "Open Source Software - Sometimes you get more than you paid for..." > -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Tue Aug 13 14:20:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DIJtiB013989; Tue, 13 Aug 2002 14:19:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DI4rY16755 for vserver.list; Tue, 13 Aug 2002 14:04:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp014.mail.yahoo.com (smtp014.mail.yahoo.com [216.136.173.58]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7DI4qY16751 for ; Tue, 13 Aug 2002 14:04:53 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 13 Aug 2002 18:04:52 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Unfiied not working what am i doing wrong Date: Tue, 13 Aug 2002 13:04:50 -0500 Message-ID: <002701c242f3$eb9f0a70$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <5.1.0.14.2.20020813133958.04db0950@mail.pwebtech.com> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1008 Its hard to tell from the output, but did you select the right server to clone from? Peter -----Original Message----- From: Jason Silverglate [mailto:jason@pwebtech.com] Sent: Tuesday, August 13, 2002 12:41 PM To: vserver@solucorp.qc.ca Subject: [vserver] Unfiied not working what am i doing wrong [root@vserver1 vserver2]# ls dev proc Those are the only directories i get when i do this config for unification lqqqqqqqqqqqqqqqqqqqqq Vserver basic setup qqqqqqqqqqqqqqqqqqqqqqk x x x lqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqk x xtop xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x xVserver name (max 10 chars) xvserver2 x x xVserver description xvserver2 x x xClone vserver x/ vx x xUnified mode x[X] Share disk space x x xNetworking xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x xHost name xvserver2.woof.com x x x xUp to 16 IP numbers x x xIP number(s) x x x xInstall IP on device xeth0 x x xNIS domainname x x x xExtra xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x xStart server x[ ] at boot time x x xNice level x x x xAvailable flags xlock nproc sched hideinfo privatex x xFlags xlock nproc x x xVserver ulimit x-H -u 1000 x x xServices xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x xcrond x[X] Scheduled tasks x x xhttpd x[ ] Web server x x xsshd x[X] Secure shell server x x xsyslog x[X] Message logger x x xxinetd x[X] On demand inet service x x xShared directories xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x xDirectory x/usr x x xDirectory x/ x x xDirectory x/lib x x xDirectory x/var From vserver.error@solucorp.qc.ca Tue Aug 13 14:28:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DIRpiB014056; Tue, 13 Aug 2002 14:27:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DIBD916951 for vserver.list; Tue, 13 Aug 2002 14:11:13 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7DIBCY16947 for ; Tue, 13 Aug 2002 14:11:12 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7DI0Bb06027 for ; Tue, 13 Aug 2002 11:00:11 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Tue, 13 Aug 2002 11:10:35 -0700 MIME-Version: 1.0 Subject: [vserver] installing vservers, and a thank you. Message-ID: <3D58E92B.32242.4F123FB@localhost> Priority: normal In-reply-to: <002601c242ef$ed621400$ed23bd41@PremiumFood> References: <3D58D764.22027.4ABB3C1@localhost> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1009 I've been creating my servers by basically copying and modifying a default .conf file, and then making a dir and untar'ing a debian machine (originally supplied by another member of this list, modified significantly by myself). Hopefully soon I'll have it setup so a perl script can do all of the various .conf building on the fly and install a machine via a web interface ;) Only thing I'd be missing then is a .deb to install the host server stuff, and then maybe a .deb to install an intial base install of a vserver to copy from there on out... Maybe I'll look into making those so I can feel like I'm contributing something here :) hehehe If you guys don't mind I'd like to take a line here and thank everyone for their help in getting my setup here kink free and working... You guys have been THE most helpful project group I've ever dealt with in the Linux world. On 13 Aug 2002 at 12:36, Peter Kwan Chan wrote: > The *.sh files are under /etc/vservers. > > They are there if you created the vserver using newserver. They may not > be there if you created vservers using some other means. (I always use > newserver myself, so I can't be sure). > > Peter > > -----Original Message----- > From: Russell Anthony [mailto:ranthony@siteturn.com] > Sent: Tuesday, August 13, 2002 11:55 AM > To: vserver@solucorp.qc.ca > Subject: Re: [vserver] excuse the stupidity of this question how do we > delete a vserver? > > I have no .sh files in my /etc/vservers dir. And I overlooked > mentioning > stopping the server ;) Of course that'll help (allows you to remove proc > and dev > and other such locked items) > > On 12 Aug 2002 at 20:34, Roderick A. Anderson wrote: > > > On Mon, 12 Aug 2002, Russell Anthony wrote: > > > > > rm /etc/vservers/vserver_name.conf > > > rm /home/vservers/vserver_name > > > > Might also add > > > > rm /etc/vservers/vserver_name.sh > > > > And as the thread is progressing you might want to stop your server > first. > > > > > > Rod > > -- > > "Open Source Software - Sometimes you get more than you paid for..." > > > > -- > Russell Anthony > Network Development / Administration > -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Tue Aug 13 15:29:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DJTCiB014539; Tue, 13 Aug 2002 15:29:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DJ6fm18442 for vserver.list; Tue, 13 Aug 2002 15:06:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7DJ6eY18438 for ; Tue, 13 Aug 2002 15:06:40 -0400 Received: (qmail 30031 invoked from network); 13 Aug 2002 19:06:42 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 13 Aug 2002 19:06:42 -0000 Message-Id: <5.1.0.14.2.20020813150527.053740a8@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Tue, 13 Aug 2002 15:06:11 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: RE: [vserver] Unfiied not working what am i doing wrong In-Reply-To: <002701c242f3$eb9f0a70$ed23bd41@PremiumFood> References: <5.1.0.14.2.20020813133958.04db0950@mail.pwebtech.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1010 Well i tried both ways I tried creating it from vserver1 which is a vserver. and it only created the /proc /dev dir. So i then tried and created it from the / which is what this is and the size still comes out to be 1GB instead of the 30MB Jason At 02:04 PM 8/13/2002, you wrote: >Its hard to tell from the output, but did you select the right server to >clone from? > >Peter > >-----Original Message----- >From: Jason Silverglate [mailto:jason@pwebtech.com] >Sent: Tuesday, August 13, 2002 12:41 PM >To: vserver@solucorp.qc.ca >Subject: [vserver] Unfiied not working what am i doing wrong > >[root@vserver1 vserver2]# ls >dev proc > >Those are the only directories i get when i do this config for >unification > > > lqqqqqqqqqqqqqqqqqqqqq Vserver basic setup >qqqqqqqqqqqqqqqqqqqqqqk > x >x > x >lqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqk x > xtop >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > xVserver name (max 10 chars) >xvserver2 x x > xVserver >description xvserver2 x x > xClone >vserver x/ vx x > xUnified mode x[X] Share disk >space x x > xNetworking >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > xHost >name xvserver2.woof.com x x > x xUp to 16 IP >numbers x x > xIP >number(s) x x x > xInstall IP on >device xeth0 x x > xNIS >domainname x x x > xExtra >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > xStart server x[ ] at boot >time x x > xNice >level x x x > xAvailable flags xlock nproc sched >hideinfo privatex x > xFlags xlock >nproc x x > xVserver ulimit x-H -u >1000 x x > xServices >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > xcrond x[X] Scheduled >tasks x x > xhttpd x[ ] Web >server x x > xsshd x[X] Secure shell >server x x > xsyslog x[X] Message >logger x x > xxinetd x[X] On demand inet > >service x x > xShared >directories xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > xDirectory x/usr > x x > xDirectory x/ > x x > xDirectory x/lib > x x > xDirectory x/var __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Tue Aug 13 16:01:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DK0siB014853; Tue, 13 Aug 2002 16:00:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DJTn219122 for vserver.list; Tue, 13 Aug 2002 15:29:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7DJTlY19118 for ; Tue, 13 Aug 2002 15:29:48 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7DJIjb25505 for ; Tue, 13 Aug 2002 12:18:45 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Tue, 13 Aug 2002 12:18:25 -0700 MIME-Version: 1.0 Subject: RE: [vserver] Unfiied not working what am i doing wrong Message-ID: <3D58F911.30159.52F3C51@localhost> Priority: normal In-reply-to: <5.1.0.14.2.20020813150527.053740a8@mail.pwebtech.com> References: <002701c242f3$eb9f0a70$ed23bd41@PremiumFood> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1011 When I tried creating a vserver off of the / it was 1.3 GB (default redhat 7.2 install)... You then have to trim down everything you wont need. Or, create a new, base install, and copy that into the directory. On 13 Aug 2002 at 15:06, Jason Silverglate wrote: > Well i tried both ways > > I tried creating it from vserver1 which is a vserver. and it only created > the /proc /dev dir. So i then tried and created it from the / which is > what this is and the size still comes out to be 1GB instead of the 30MB > > Jason > > At 02:04 PM 8/13/2002, you wrote: > >Its hard to tell from the output, but did you select the right server to > >clone from? > > > >Peter > > > >-----Original Message----- > >From: Jason Silverglate [mailto:jason@pwebtech.com] > >Sent: Tuesday, August 13, 2002 12:41 PM > >To: vserver@solucorp.qc.ca > >Subject: [vserver] Unfiied not working what am i doing wrong > > > >[root@vserver1 vserver2]# ls > >dev proc > > > >Those are the only directories i get when i do this config for > >unification > > > > > > lqqqqqqqqqqqqqqqqqqqqq Vserver basic setup > >qqqqqqqqqqqqqqqqqqqqqqk > > x > >x > > x > >lqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqk x > > xtop > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > > xVserver name (max 10 chars) > >xvserver2 x x > > xVserver > >description xvserver2 x x > > xClone > >vserver x/ vx x > > xUnified mode x[X] Share disk > >space x x > > xNetworking > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > > xHost > >name xvserver2.woof.com x x > > x xUp to 16 IP > >numbers x x > > xIP > >number(s) x x x > > xInstall IP on > >device xeth0 x x > > xNIS > >domainname x x x > > xExtra > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > > xStart server x[ ] at boot > >time x x > > xNice > >level x x x > > xAvailable flags xlock nproc sched > >hideinfo privatex x > > xFlags xlock > >nproc x x > > xVserver ulimit x-H -u > >1000 x x > > xServices > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > > xcrond x[X] Scheduled > >tasks x x > > xhttpd x[ ] Web > >server x x > > xsshd x[X] Secure shell > >server x x > > xsyslog x[X] Message > >logger x x > > xxinetd x[X] On demand inet > > > >service x x > > xShared > >directories xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > > xDirectory x/usr > > x x > > xDirectory x/ > > x x > > xDirectory x/lib > > x x > > xDirectory x/var > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > > -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Tue Aug 13 17:12:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DLCViB015296; Tue, 13 Aug 2002 17:12:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DKOv120854 for vserver.list; Tue, 13 Aug 2002 16:24:57 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7DKOvY20850 for ; Tue, 13 Aug 2002 16:24:57 -0400 Received: (qmail 21394 invoked from network); 13 Aug 2002 20:24:59 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 13 Aug 2002 20:24:59 -0000 Message-Id: <5.1.0.14.2.20020813162401.04d21858@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Tue, 13 Aug 2002 16:24:23 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: RE: [vserver] Unfiied not working what am i doing wrong In-Reply-To: <3D58F911.30159.52F3C51@localhost> References: <5.1.0.14.2.20020813150527.053740a8@mail.pwebtech.com> <002701c242f3$eb9f0a70$ed23bd41@PremiumFood> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1012 True but unifing is supposed to not make it 1.2GB but link all the binaries together. jason At 03:18 PM 8/13/2002, you wrote: >When I tried creating a vserver off of the / it was 1.3 GB (default redhat >7.2 >install)... You then have to trim down everything you wont need. Or, >create a >new, base install, and copy that into the directory. > >On 13 Aug 2002 at 15:06, Jason Silverglate wrote: > > > Well i tried both ways > > > > I tried creating it from vserver1 which is a vserver. and it only created > > the /proc /dev dir. So i then tried and created it from the / which is > > what this is and the size still comes out to be 1GB instead of the 30MB > > > > Jason > > > > At 02:04 PM 8/13/2002, you wrote: > > >Its hard to tell from the output, but did you select the right server to > > >clone from? > > > > > >Peter > > > > > >-----Original Message----- > > >From: Jason Silverglate [mailto:jason@pwebtech.com] > > >Sent: Tuesday, August 13, 2002 12:41 PM > > >To: vserver@solucorp.qc.ca > > >Subject: [vserver] Unfiied not working what am i doing wrong > > > > > >[root@vserver1 vserver2]# ls > > >dev proc > > > > > >Those are the only directories i get when i do this config for > > >unification > > > > > > > > > lqqqqqqqqqqqqqqqqqqqqq Vserver basic setup > > >qqqqqqqqqqqqqqqqqqqqqqk > > > x > > >x > > > x > > >lqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqk x > > > xtop > > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > > > xVserver name (max 10 chars) > > >xvserver2 x x > > > xVserver > > >description xvserver2 x x > > > xClone > > >vserver x/ vx x > > > xUnified mode x[X] Share disk > > >space x x > > > xNetworking > > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > > > xHost > > >name xvserver2.woof.com x x > > > x xUp to 16 IP > > >numbers x x > > > xIP > > >number(s) x x x > > > xInstall IP on > > >device xeth0 x x > > > xNIS > > >domainname x x x > > > xExtra > > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > > > xStart server x[ ] at boot > > >time x x > > > xNice > > >level x x x > > > xAvailable flags xlock nproc sched > > >hideinfo privatex x > > > xFlags xlock > > >nproc x x > > > xVserver ulimit x-H -u > > >1000 x x > > > xServices > > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > > > xcrond x[X] Scheduled > > >tasks x x > > > xhttpd x[ ] Web > > >server x x > > > xsshd x[X] Secure shell > > >server x x > > > xsyslog x[X] Message > > >logger x x > > > xxinetd x[X] On demand inet > > > > > >service x x > > > xShared > > >directories xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x > > > xDirectory x/usr > > > x x > > > xDirectory x/ > > > x x > > > xDirectory x/lib > > > x x > > > xDirectory x/var > > > > __________________ > > Jay Silver jason@pwebtech.com ICQ 103463692 > > Pegasus Web Technologies > > http://www.pwebtech.com > > Web Hosting and Dedicated Servers > > > > > >-- >Russell Anthony >Network Development / Administration __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Tue Aug 13 18:48:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DMmgiB015804; Tue, 13 Aug 2002 18:48:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DML4923814 for vserver.list; Tue, 13 Aug 2002 18:21:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7DML4Y23810 for ; Tue, 13 Aug 2002 18:21:04 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7DML0i09630 for vserver@solucorp.qc.ca; Tue, 13 Aug 2002 18:21:00 -0400 From: Jacques Gelinas Date: Tue, 13 Aug 2002 18:21:00 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Our installation X-mailer: tlmpmail 0.6 Message-ID: <20020813182100.267cf09ba87e@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1013 On Mon, 12 Aug 2002 15:52:21 -0500, Roderick A. Anderson wrote > On Mon, 12 Aug 2002, Jacques Gelinas wrote: > > > unification allows you to shrink a fairly fat rh install (complete first CD) > > and yet use 40-50 megs per vservers. Less work and tuning. > > Jacques, > > Did you solve the RHL 7.3 vserver install issue? I don't remember seeing > anything but you saying you were working on it. > I'm getting ready to build a new server and would like to make it lean > and mean and RHL 7.3 are the way through. vserver 0.19 can install from redhat 7.3 CD. I am sorry (holliday did not help) but I think it is all working nicely. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Aug 13 19:06:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DN6iiB015905; Tue, 13 Aug 2002 19:06:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DMptX24635 for vserver.list; Tue, 13 Aug 2002 18:51:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from bill.aqvs.co.uk (bill.aqvs.co.uk [195.224.50.198]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7DMpsY24631 for ; Tue, 13 Aug 2002 18:51:55 -0400 Received: from notebook1 (pam80-1-15-53.man.dial.ntli.net [80.1.15.53]) by bill.aqvs.co.uk (8.11.0/8.11.0) with ESMTP id g7DMpFZ18622 for ; Tue, 13 Aug 2002 23:51:16 +0100 From: "Bill Brigden" To: Subject: RE: [vserver] excuse the stupidity of this question how do we delete a vserver? Date: Tue, 13 Aug 2002 23:49:53 +0100 Message-ID: <000001c2431b$c12dd6e0$1e010a0a@mastokes.local> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 In-Reply-To: <3D58D802.17711.4AE1D5D@localhost> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1014 I simply copied the mail over, but neglected to see that....you are correct :-) -----Original Message----- From: Russell Anthony [mailto:ranthony@siteturn.com] Sent: 13 August 2002 17:57 To: vserver@solucorp.qc.ca Subject: RE: [vserver] excuse the stupidity of this question how do we delete a vserver? On 13 Aug 2002 at 3:17, Bill Brigden wrote: > A quote from Tim Sellar (tim@idaya.co.uk) of the FreeVSD project may > help here: > > You are at a stage where you are going to need to do some performance > tuning of your hosting servers. This involves increasing the default > limits for things like file handlers and shared memory segments. > > You can check the number of allocated file handlers by doing: > > cat /proc/sys/fs/file-max > cat /proc/sys/fs/dquot-max > cat /proc/sys/fs/super-max > > You can check the relevant shared memory segment limits by doing: > > cat 67108864 >/proc/sys/kernel/shmmax > cat 384 >/proc/sys/kernel/shmmni you mean : echo 67108864 >/proc/sys/kernel/shmmax echo 384 >/proc/sys/kernel/shmmni don't you ? > If you are hosting large numbers of virtual servers or have a > particularly rich skel these values may have to be increased. This can > be done by adding the following lines in your /etc/rc.d/rc.sysinit > immediately after the /proc filesystem has been mounted: > > echo 256000 >/proc/sys/fs/file-max > echo 32768 >/proc/sys/fs/dquot-max > echo 2048 >/proc/sys/fs/super-max > echo 67108864 >/proc/sys/kernel/shmmax > echo 384 >/proc/sys/kernel/shmmni > > The values shown are reasonable examples but may need to altered > depending on your systems requirements. > > ----------------------- > I hope this helps - Bill B. > From vserver.error@solucorp.qc.ca Tue Aug 13 19:10:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7DNAMiB015933; Tue, 13 Aug 2002 19:10:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DMmFO24515 for vserver.list; Tue, 13 Aug 2002 18:48:15 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from merlin.zolotek.net (dial-62-64-205-174.access.uk.tiscali.com [62.64.205.174]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7DMmEY24511 for ; Tue, 13 Aug 2002 18:48:14 -0400 Received: from dial-62-64-226-229.access.uk.tiscali.com (merlin.zolotek.net [127.0.0.1]) by merlin.zolotek.net (Weasel v1.20) for ; 13 Aug 2002 23:48:31 From: "Lyn St George" To: "vserver@solucorp.qc.ca" Date: Tue, 13 Aug 2002 23:48:30 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: RE: [vserver] Unfiied not working what am i doing wrong Message-ID: <200208132348.0000002J@merlin.zolotek.net> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1015 On Tue, 13 Aug 2002 16:24:23 -0400, Jason Silverglate wrote: >True but unifing is supposed to not make it 1.2GB but link all the binaries >together. You probably ran into the same problem I did, ie: the root server is not built from RPMs and so the script has no info to query and then choose which files to link and which to copy. The result is that it copies everything. My solution was to hand build a reference server (in fact 2, one to be linked from and one to be copied). You can then use the vserver script (modified slightly if needed ..) to build the vservers as they are meant to be. >jason - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Tue Aug 13 20:08:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7E07xiB016309; Tue, 13 Aug 2002 20:07:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DNWmP25591 for vserver.list; Tue, 13 Aug 2002 19:32:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7DNWlY25587 for ; Tue, 13 Aug 2002 19:32:48 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g7DNWq806184 for ; Tue, 13 Aug 2002 16:32:52 -0700 Date: Tue, 13 Aug 2002 16:32:52 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: re: [vserver] Our installation In-Reply-To: <20020813182100.267cf09ba87e@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1016 On Tue, 13 Aug 2002, Jacques Gelinas wrote: > vserver 0.19 can install from redhat 7.3 CD. I am sorry (holliday did not help) > but I think it is all working nicely. Great. Holliday? What's that? Oh I remember those thingys. Back before being 'self-employed' that is. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Tue Aug 13 20:20:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7E0KciB016429; Tue, 13 Aug 2002 20:20:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7DNvpV26185 for vserver.list; Tue, 13 Aug 2002 19:57:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mailman.ipsm.net.nz (smtp.ipsm.net.nz [202.50.116.129]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7DNvoY26179 for ; Tue, 13 Aug 2002 19:57:51 -0400 Received: from localhost.localdomain ([210.54.11.22]) by mailman.ipsm.net.nz with Microsoft SMTPSVC(5.0.2195.4905); Wed, 14 Aug 2002 11:58:34 +1200 Subject: [vserver] Pinging From: Fran Firman To: vserver Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-zHF3ikolMl59ozON4xXG" X-Mailer: Ximian Evolution 1.0.7 Date: 14 Aug 2002 11:52:55 +1200 Message-Id: <1029282776.18047.12.camel@ganymede> Mime-Version: 1.0 X-OriginalArrivalTime: 13 Aug 2002 23:58:34.0607 (UTC) FILETIME=[55704FF0:01C24325] Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1017 --=-zHF3ikolMl59ozON4xXG Content-Type: text/plain Content-Transfer-Encoding: quoted-printable I can ping other machines ok, but the source ip address of the icmp connection is coming from the real server, not the ip address of the vserver. This could cause problems later with firewall rules, and routing to the end devices. Here is my vserver.conf file IPROOT=3D210.54.14.178 IPROOTDEV=3Deth0 ONBOOT=3Dno S_CAPS=3DCAP_NET_RAW S_HOSTNAME=3Dtest And here is a dump from tcpdump 11:41:52.850127 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) 11:41:52.850531 210.54.11.22 > 210.54.14.19: icmp: echo reply 11:41:53.850178 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) 11:41:53.850647 210.54.11.22 > 210.54.14.19: icmp: echo reply >From the command ping 210.54.11.22 from with in the vserver. Ideas???? Fran. --=-zHF3ikolMl59ozON4xXG Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9WZvWv1V2oVWAPhYRAj3/AJ9kFJsD91J7TFGp5m/4soNUCEv7SgCgr/kn b4xuBzA9Vnos5Le2oa9psVI= =TmLe -----END PGP SIGNATURE----- --=-zHF3ikolMl59ozON4xXG-- From vserver.error@solucorp.qc.ca Tue Aug 13 20:38:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7E0cViB016498; Tue, 13 Aug 2002 20:38:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7E0Gox26838 for vserver.list; Tue, 13 Aug 2002 20:16:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7E0GnY26834 for ; Tue, 13 Aug 2002 20:16:50 -0400 Received: (qmail 4611 invoked from network); 14 Aug 2002 00:16:52 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by rt1.pwebtech.com with SMTP; 14 Aug 2002 00:16:52 -0000 Message-Id: <5.1.0.14.2.20020813201533.02ed0d60@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Tue, 13 Aug 2002 20:16:07 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: RE: [vserver] Unfiied not working what am i doing wrong In-Reply-To: <200208132348.0000002J@merlin.zolotek.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1018 So do a maybe server build from a rh 7.3 cd and add in other rpms and use that? Other than that how do you build a server by hand/ Thannx Jason At 07:48 PM 8/13/2002, you wrote: >On Tue, 13 Aug 2002 16:24:23 -0400, Jason Silverglate wrote: > > >True but unifing is supposed to not make it 1.2GB but link all the binaries > >together. > >You probably ran into the same problem I did, ie: the root server >is not built from RPMs and so the script has no info >to query and then choose which files to link and which to copy. > >The result is that it copies everything. > >My solution was to hand build a reference server (in fact 2, one >to be linked from and one to be copied). You can then use >the vserver script (modified slightly if needed ..) to build the >vservers as they are meant to be. > > > >jason > >- >Cheers >Lyn St George >+--------------------------------------------------------------------------------- >+ http://www.zolotek.net .. eCommerce hosting, consulting >+ http://www.os2docs.org .. some 'How To' stuff ... >+---------------------------------------------------------------------------------- __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Tue Aug 13 21:39:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7E1cviB016857; Tue, 13 Aug 2002 21:38:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7E07Nf26546 for vserver.list; Tue, 13 Aug 2002 20:07:23 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7E07NY26542 for ; Tue, 13 Aug 2002 20:07:23 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7DNuKb16087 for ; Tue, 13 Aug 2002 16:56:20 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Tue, 13 Aug 2002 17:06:46 -0700 MIME-Version: 1.0 Subject: Re: [vserver] Pinging Message-ID: <3D593CA6.3972.6373C9B@localhost> Priority: normal In-reply-to: <1029282776.18047.12.camel@ganymede> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1019 In my setup when you ifconfig from the main server you get : eth0:test Link encap:Ethernet HWaddr 00:30:48:11:B6:69 inet addr:66.88.139.177 Bcast:66.88.139.191 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:9 eth0:test Link encap:Ethernet HWaddr 00:30:48:11:B6:69 inet addr:66.88.139.176 Bcast:66.88.139.191 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:9 those are actually eth0:test000 and :test001 could you set your IPROOTDEV=eth0:vserver ? On 14 Aug 2002 at 11:52, Fran Firman wrote: > > > I can ping other machines ok, but the source ip address of the icmp > connection is coming from the real server, not the ip address of the > vserver. > > This could cause problems later with firewall rules, and routing to the > end devices. > > Here is my vserver.conf file > > IPROOT=210.54.14.178 > IPROOTDEV=eth0 > ONBOOT=no > S_CAPS=CAP_NET_RAW > S_HOSTNAME=test > > > And here is a dump from tcpdump > > 11:41:52.850127 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) > 11:41:52.850531 210.54.11.22 > 210.54.14.19: icmp: echo reply > 11:41:53.850178 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) > 11:41:53.850647 210.54.11.22 > 210.54.14.19: icmp: echo reply > > >From the command ping 210.54.11.22 from with in the vserver. > > Ideas???? > > > Fran. > -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Tue Aug 13 22:34:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7E2Y7iB017146; Tue, 13 Aug 2002 22:34:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7E12lU27771 for vserver.list; Tue, 13 Aug 2002 21:02:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7E12hY27767 for ; Tue, 13 Aug 2002 21:02:47 -0400 Received: (qmail 19412 invoked by uid 0); 14 Aug 2002 01:02:42 -0000 Received: from zux006-017-182.adsl.green.ch (HELO laptop) (81.6.17.182) by mail.gmx.net (mp008-rz3) with SMTP; 14 Aug 2002 01:02:42 -0000 Message-ID: <015b01c2432d$c1f76340$2200a8c0@vweb.ch> From: "Seiler Thomas" To: References: <01C2422A.45D45C40.sarisky@pioneernet.net> Subject: Re: [vserver] upgrades with unification Date: Wed, 14 Aug 2002 02:58:51 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1020 Hello everyone. > I tried out Sam Vilain's unify-dirs script. After running it, I'm getting: > > ---i---------t with lsattr > or > 00008010 with showattr. I habe a question: Is my understanding of these things correct ? A vanilla 2.4.* Kernel understands only the "immutable flag", that is the "i" in the output of a stock lsattr, (or bit the "10" in the output of showattr). If the Kernel finds this bit set, no-one (not even root) is able to delete or move the file or to change the file's content. So a file with the immutable bit set could not be deleted. even by root on the main server. So set / reset the immutable bit, one needs to have CAP_SYS_ATTR so this is only possible inside the root server but not inside the vservers. Then there was the patch by Sam Vilain to the 2.4.16 Kernel, introducing the "linkage immutable invert bit". It was now possible to protect the file's content and the file's linkage separately. This patch was then included in the vserver patch. This makes it possible to share(link) files (e.g. /usr /bin ...) between vservers. The root users could not change the content (and therefor not influence other vserver) but they can replace every shared file with a newer version if desired, affecting only her own vserver without affecting the others. The initial Kernel Patch by Sam Vilain used bit "8000" of the ext2/3 attributes field for the "linkage invert flag", because at that time, bit "8000" was the next unused bit aviable. And so does the vserver patch. Then there is this *nice* perl programm "unify-dirs", which tries to identify identical files in two or more directories, and then unifies them (by hardlinks). For use with vserver one would tell the programm to set the immutable and immutable linkage invert flags. To see the linkage invert flag, you had to install a special patched version of the ext2progs (lsattr/chattr) which showed the new flag. A stock lsattr did not show it. Meanwhile Kernel 2.5.* was programmed. There where some space optimizations introduced for ext2/3 fs (Until then, the file's tail occupied en entire block, after the optimizations, several tail's were merged into the same block, to safe space.) But sometime files get accessed by others, not by the Kernel, for examle LILO/ GRUB So care was taken not to use the new optimisation on file which are accessed externaly. A New attribute was needed to tell the kernel not to use the space optimizations (no-tail-flag). Then the kernel developper used bit "8000" as "no-tail" flag, as it was the next not used flag :-( lsattr was updated acordingly, and that's why lsattr now shows ---i---------t which means for an 2.5 Kernel "immutabel" and "no-tail", but for an 2.4.*-ctx Kernel this means "immutable" and "immutable linkage invert". > I wanted the files to be unlinkable, but that doesn't seem to be what's > happening in practice. (I used -l and -i flags with unify-dirs.) If the above statement are correct, then the -l -i flags are exactly the ones needed. > Could someone help me out here? What should I have for a file that is linked > but unlinkable? You are on the right way (00008010) should be okay. Have you checked if you have by accident set the immutable flags on the directories ? This would prevent changes on the directorie's *content*, aka the filelist, names, and permissions. If this things are correct, then there is a *conflict* between "immutable linkage invert" and "no-tail". If so, shouldn't we switch to the next free bit "10000" as "immutable linkage invert" ? This would break existing setups, but i think, it should be simple to write a little perl script which sets bit "10000" if bit "8000" was set, and then unsets bit "8000", so bit "8000" is free to be used as "no-tail"-bit by the next generation of linux kernels. just my 2 cents, though... Best regards, Thomas Seiler From vserver.error@solucorp.qc.ca Tue Aug 13 23:02:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7E32diB017402; Tue, 13 Aug 2002 23:02:39 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7E1WYx28453 for vserver.list; Tue, 13 Aug 2002 21:32:34 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7E1WYY28449 for ; Tue, 13 Aug 2002 21:32:34 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 2E9A27A784; Wed, 14 Aug 2002 02:32:34 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 25D6892077 for ; Wed, 14 Aug 2002 02:32:34 +0100 (BST) Date: Wed, 14 Aug 2002 02:32:34 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Pinging In-Reply-To: <3D593CA6.3972.6373C9B@localhost> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1021 On Tue, 13 Aug 2002, Russell Anthony wrote: > > could you set your IPROOTDEV=eth0:vserver ? $IPROOTDEV is the *physical* interface to mount the extra IP alias (:vs01). -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Tue Aug 13 23:34:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7E3YPiB017607; Tue, 13 Aug 2002 23:34:25 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7E24Kl29187 for vserver.list; Tue, 13 Aug 2002 22:04:20 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from uhura.netgate.net.nz (uhura.netgate.net.nz [202.37.247.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7E24JY29183 for ; Tue, 13 Aug 2002 22:04:20 -0400 Received: from ganymede (210-54-11-22.ipsm.net.nz [210.54.11.22]) by uhura.netgate.net.nz (8.11.3/8.11.3) with ESMTP id g7E24JF05058 for ; Wed, 14 Aug 2002 14:04:19 +1200 (NZST) Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 17enRU-0005xd-00 for ; Wed, 14 Aug 2002 13:59:24 +1200 Subject: Re: [vserver] Pinging From: Fran Firman To: vserver In-Reply-To: <3D593CA6.3972.6373C9B@localhost> References: <3D593CA6.3972.6373C9B@localhost> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-jkG1bjwg17kk3oA0J7Yq" X-Mailer: Ximian Evolution 1.0.7 Date: 14 Aug 2002 13:59:23 +1200 Message-Id: <1029290364.19195.15.camel@ganymede> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1022 --=-jkG1bjwg17kk3oA0J7Yq Content-Type: text/plain Content-Transfer-Encoding: quoted-printable I have tried what you suggested... No change. so the details attached. server5:~# cat /etc/vservers/deb_mirror.conf=20 IPROOT=3D210.54.14.178 IPROOTDEV=3Deth0:deb_mirror ONBOOT=3Dno S_CAPS=3DCAP_NET_RAW S_HOSTNAME=3Dtest server5:~# tcpdump -i any -w tcpdumpfile2 tcpdump: listening on any 203 packets received by filter 0 packets dropped by kernel server5:~# tcpdump -nr tcpdumpfile2 icmp 14:02:29.085932 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) 14:02:29.086336 210.54.11.22 > 210.54.14.19: icmp: echo reply 14:02:30.083227 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) 14:02:30.083619 210.54.11.22 > 210.54.14.19: icmp: echo reply 14:02:31.083254 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) 14:02:31.083615 210.54.11.22 > 210.54.14.19: icmp: echo reply 14:02:32.083295 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) 14:02:32.083745 210.54.11.22 > 210.54.14.19: icmp: echo reply where the source address should (want to be) 210.54.14.178 F. On Wed, 2002-08-14 at 12:06, Russell Anthony wrote: > In my setup when you ifconfig from the main server you get : >=20 > eth0:test Link encap:Ethernet HWaddr 00:30:48:11:B6:69 > inet addr:66.88.139.177 Bcast:66.88.139.191 Mask:255.255.255.= 0 > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > Interrupt:9 >=20 > eth0:test Link encap:Ethernet HWaddr 00:30:48:11:B6:69 > inet addr:66.88.139.176 Bcast:66.88.139.191 Mask:255.255.255.= 0 > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > Interrupt:9 >=20 > those are actually eth0:test000 and :test001 >=20 > could you set your IPROOTDEV=3Deth0:vserver ?=20 >=20 >=20 Cheers Fran --=-jkG1bjwg17kk3oA0J7Yq Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9Wbl7v1V2oVWAPhYRAgfpAJ9DFhnfKnoWd2hZrli4FNMUqnnTfwCfXs56 w+K7oPGDaQbwPLSZpmzGagI= =cB+e -----END PGP SIGNATURE----- --=-jkG1bjwg17kk3oA0J7Yq-- From vserver.error@solucorp.qc.ca Wed Aug 14 00:37:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7E4akiB018074; Wed, 14 Aug 2002 00:36:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7E35Bt30580 for vserver.list; Tue, 13 Aug 2002 23:05:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7E35BY30576 for ; Tue, 13 Aug 2002 23:05:11 -0400 Received: from remtk.solucorp.qc.ca (g36-107.citenet.net [206.123.36.107]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7E3H4A75541 for ; Tue, 13 Aug 2002 23:17:05 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7E34v903515 for vserver@solucorp.qc.ca; Tue, 13 Aug 2002 23:04:57 -0400 From: Jacques Gelinas Date: Tue, 13 Aug 2002 23:04:57 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Pinging X-mailer: tlmpmail 0.6 Message-ID: <20020813230457.7cc8689d4ebc@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1023 On Wed, 14 Aug 2002 11:52:55 -0500, Fran Firman wrote > > > I can ping other machines ok, but the source ip address of the icmp > connection is coming from the real server, not the ip address of the > vserver. > > This could cause problems later with firewall rules, and routing to the > end devices. ping is a special case. The ping utility creates the ping packet itself, bypassing all vserver security in this area. This is why raw packet are disallowed in vservers by default. So do not use ping to test routing with vserver. A vserver is bound to its IP and as such will use them to talk. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Aug 14 01:31:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7E5V3iB018463; Wed, 14 Aug 2002 01:31:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7E3w9q31686 for vserver.list; Tue, 13 Aug 2002 23:58:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7E3w8Y31682 for ; Tue, 13 Aug 2002 23:58:09 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g7E3wEG08603 for ; Tue, 13 Aug 2002 20:58:14 -0700 Date: Tue, 13 Aug 2002 20:58:14 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: vserver Subject: Re: [vserver] Pinging In-Reply-To: <1029290364.19195.15.camel@ganymede> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1024 On 14 Aug 2002, Fran Firman wrote: Is ipchains or iptables running on the main server or the vserver? > server5:~# tcpdump -i any -w tcpdumpfile2 > tcpdump: listening on any > > 203 packets received by filter > 0 packets dropped by kernel > server5:~# tcpdump -nr tcpdumpfile2 icmp > 14:02:29.085932 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) > 14:02:29.086336 210.54.11.22 > 210.54.14.19: icmp: echo reply > 14:02:30.083227 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) > 14:02:30.083619 210.54.11.22 > 210.54.14.19: icmp: echo reply > 14:02:31.083254 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) > 14:02:31.083615 210.54.11.22 > 210.54.14.19: icmp: echo reply > 14:02:32.083295 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) > 14:02:32.083745 210.54.11.22 > 210.54.14.19: icmp: echo reply Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Wed Aug 14 02:08:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7E68biB018700; Wed, 14 Aug 2002 02:08:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7E4xpf00658 for vserver.list; Wed, 14 Aug 2002 00:59:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from uhura.netgate.net.nz (uhura.netgate.net.nz [202.37.247.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7E4xnY00652 for ; Wed, 14 Aug 2002 00:59:50 -0400 Received: from ganymede (210-54-11-22.ipsm.net.nz [210.54.11.22]) by uhura.netgate.net.nz (8.11.3/8.11.3) with ESMTP id g7E4xnF06051 for ; Wed, 14 Aug 2002 16:59:49 +1200 (NZST) Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 17eqBL-0006V1-00 for ; Wed, 14 Aug 2002 16:54:55 +1200 Subject: re: [vserver] Pinging From: Fran Firman To: vserver In-Reply-To: <20020813230457.7cc8689d4ebc@remtk.solucorp.qc.ca> References: <20020813230457.7cc8689d4ebc@remtk.solucorp.qc.ca> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-d9EcXr11X2Uj+BTx4Ukp" X-Mailer: Ximian Evolution 1.0.7 Date: 14 Aug 2002 16:54:53 +1200 Message-Id: <1029300895.19195.84.camel@ganymede> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1025 --=-d9EcXr11X2Uj+BTx4Ukp Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Unfortunately this also breaks the cricket program, - collector, where we had to actually specify the ipaddress in the config of the collector. It seems to use raw sockets to create the snmp packet. Also the ping is used to check the state (are you there), of 6000 routers, that we manage, so getting the ip address to come from the virtual one would help. Thanks.. Fran. Advanced Solutions Telecom New Zeanland On Wed, 2002-08-14 at 16:04, Jacques Gelinas wrote: > On Wed, 14 Aug 2002 11:52:55 -0500, Fran Firman wrote > > > > > > I can ping other machines ok, but the source ip address of the icmp > > connection is coming from the real server, not the ip address of the > > vserver. > > > > This could cause problems later with firewall rules, and routing to the > > end devices. >=20 > ping is a special case. The ping utility creates the ping packet itself, = bypassing > all vserver security in this area. This is why raw packet are disallowed = in vservers > by default. >=20 > So do not use ping to test routing with vserver. A vserver is bound to it= s IP and > as such will use them to talk. >=20 >=20 > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc >=20 --=-d9EcXr11X2Uj+BTx4Ukp Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9WeKdv1V2oVWAPhYRAsTyAKCQxvGk8uYwIXwpdJ+2KLZSFQ1VdQCfW1Dd M5KlkM5GSTcS0Jy9RkpeFe8= =PoPH -----END PGP SIGNATURE----- --=-d9EcXr11X2Uj+BTx4Ukp-- From vserver.error@solucorp.qc.ca Wed Aug 14 07:05:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EB5CiB021027; Wed, 14 Aug 2002 07:05:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7E9O3407113 for vserver.list; Wed, 14 Aug 2002 05:24:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hofmann.snowcra.sh (pc2-woki1-6-cust25.gfd.cable.ntl.com [80.6.41.25]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7E9LRY07093 for ; Wed, 14 Aug 2002 05:21:27 -0400 Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id 6A093179C; Wed, 14 Aug 2002 10:21:15 +0100 (BST) Date: Wed, 14 Aug 2002 10:21:15 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Cc: sarisky@pioneernet.net Subject: Re: [vserver] upgrades with unification Message-Id: <20020814102115.26ec0516.sv@easyspace.com> In-Reply-To: <01C24214.3A54A480.sarisky@pioneernet.net> References: <01C24214.3A54A480.sarisky@pioneernet.net> Organization: Easyspace Ltd X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: PI2{lKxF*i|]%@A&-0AV/%sXN)UJ<+SeG}%8Cn%**KZ[f_OSx{xw&Rstfu?!x^ZJ%LV@4Z% Zr"EZm.GQFy@;"V82_:?cJ`kQ3+ Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1026 I've just double checked it and have put a new version at http://sam.vilain.net/vserver/unify-dirs Make sure you run the script with a `ulimit -d' Cheers, Sam On Mon, 12 Aug 2002 15:23:35 -0700 Cathy Sarisky wrote: > Lyn, > > Ah, yes, that's exactly what I need, unification on a tarball baby. > > I do have hard links, but with the immutable-unlink flag, any changes to the > reference server won't propagate, if I'm understanding correctly. I need that > immutable-unlink flag, so that the vserver users can upgrade. > > Sam Vilain's perl script (mentioned at http://vserver.vlad.net/list/0485.html) > sounded like it might work, except that the script seems to be missing? > > On Monday, August 12, 2002 4:07 PM, Lyn St George [SMTP:lyn@zolotek.net] wrote: > > On Mon, 12 Aug 2002 13:43:40 -0700, Cathy Sarisky wrote: > > My servers are also built entirely from tarballs, as I have a personal > > aversion to that RPM thing. > > > > If you have a "template" / "skeleton" / "reference" server from which > > all the hard links are made to the VS's, then it should be just a matter > > of upgrading the reference server, without having to use any of the > > vunify or other scripts. (though it's late and I've just had a few > > drinks with my cousins ..... ) > -- Sam Vilain, sv@easyspace.com Easyspace: an accredited ICANN GPG: http://sam.vilain.net/sam.asc registrar & web hosting company 7D74 2A09 B2D3 C30F F78E Have your domain run by techies 278A A425 30A9 05B5 2F13 with a clue. www.easyspace.com If youve seen one redwood, youve seen them all. RONALD REAGAN From vserver.error@solucorp.qc.ca Wed Aug 14 08:30:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7ECUAiB021769; Wed, 14 Aug 2002 08:30:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EAnMe09028 for vserver.list; Wed, 14 Aug 2002 06:49:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EAnLY09024 for ; Wed, 14 Aug 2002 06:49:21 -0400 Received: from hofmann.snowcra.sh (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id 9B43A19092 for ; Wed, 14 Aug 2002 11:40:48 +0100 (BST) Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id 09F072C49; Wed, 14 Aug 2002 11:49:20 +0100 (BST) Date: Wed, 14 Aug 2002 11:49:19 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Cc: vserver@paul.sladen.org Subject: Re: [vserver] unify file system In-Reply-To: References: <1029008733.3d556d5d44b9b@this.is> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1027 Paul Sladen wrote: > > On can not just unify all files found to be the same? > It's not the unifying that's the problem, it's the finding which files are > the same that is the hard part. Not too hard, and there are lots of tricks you can use to avoid having to stat every file and directory on the filesystem. For instance, you can restrict the search so that only files in the same place are compared for unification, eg /vservers/*/bin/ls. You can make sure that you're checking the inode number for each directory entry as you readdir() to avoid stat()'ing every inode every time. You can compare other file stat information before actually comparing the files. And you can use the tricks that `find' use to avoid having to stat() every file in a directory to see if there are any sub-directories off this one. I've implemented an algorithm which is fairly efficient; though the code probably still leaks :-) http://sam.vilain.net/src/unify-dirs You will also need a couple of the modules (ReadDir, Pod::Constants) at http://sam.vilain.net/pm/ to use it. Takes less than 5 minutes to scan and unify about 30 systems' /usr directories on my test system. > Disk space was the issue there. Disk space is cheap now. This is a myth. The same rule applies that has always applied: Cheap, Fast, Reliable: pick any two. -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 A politician's most important ability is to foretell what will happen tomorrow and next month and next year - and to explain afterwards why it didn't happen. - anon. From vserver.error@solucorp.qc.ca Wed Aug 14 10:47:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EEkgiB022878; Wed, 14 Aug 2002 10:46:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EDCRQ12813 for vserver.list; Wed, 14 Aug 2002 09:12:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gate.weos.de (mail.weos.de [194.245.114.202] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EDCQY12809 for ; Wed, 14 Aug 2002 09:12:26 -0400 Received: from localhost (halbslinux.weos.de [192.168.101.95]) by gate.weos.de (8.11.3/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id g7EDCJp26025 for ; Wed, 14 Aug 2002 15:12:19 +0200 Subject: RE: [vserver] Unfiied not working what am i doing wrong From: Huibert Alblas To: vserver@solucorp.qc.ca In-Reply-To: <5.1.0.14.2.20020813201533.02ed0d60@mail.pwebtech.com> References: <5.1.0.14.2.20020813201533.02ed0d60@mail.pwebtech.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 14 Aug 2002 15:12:18 +0200 Message-Id: <1029330739.23230.18.camel@localhost> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1028 Am Mit, 2002-08-14 um 02.16 schrieb Jason Silverglate: > So do a maybe server build from a rh 7.3 cd and add in other rpms and use > that? Other than that how do you build a server by hand/ > > Thannx > Simple: make a (minimal) directory structure: /root /tmp /dev /var /proc /bin /sbin /lib /usr/lib ....(whatever) and copy or link all binaries and libs you want/need. As a rule off the Thumb: you probably need everything in /bin /lib , parts of /etc /usr/bin /usr/lib /usr/sbin , some devicefiles in /dev (null random urandom) , /tmp with chomd 1777 as for everything else, you will findout whenever you need any extra's. Need apache? ok: find out what libs apache (httpd) needs with i.e. ldd /usr/local/httpd/bin/httpd and put those libs into your vserver :-) Check httpd.conf for: listen xxx.xxx.xxx.xxx and change to YOUR_VSERVER_IP:80 Any questions? Ok? Halb > Jason > > At 07:48 PM 8/13/2002, you wrote: > >On Tue, 13 Aug 2002 16:24:23 -0400, Jason Silverglate wrote: > > > > >True but unifing is supposed to not make it 1.2GB but link all the binaries > > >together. > > > >You probably ran into the same problem I did, ie: the root server > >is not built from RPMs and so the script has no info > >to query and then choose which files to link and which to copy. > > > >The result is that it copies everything. > > > >My solution was to hand build a reference server (in fact 2, one > >to be linked from and one to be copied). You can then use > >the vserver script (modified slightly if needed ..) to build the > >vservers as they are meant to be. > > > > > > >jason > > > >- > >Cheers > >Lyn St George > >+--------------------------------------------------------------------------------- > >+ http://www.zolotek.net .. eCommerce hosting, consulting > >+ http://www.os2docs.org .. some 'How To' stuff ... > >+---------------------------------------------------------------------------------- > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > -- "I love deadlines. I like the whooshing sound they make as they fly by." -- Douglas Adams From vserver.error@solucorp.qc.ca Wed Aug 14 11:04:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EF3niB022974; Wed, 14 Aug 2002 11:03:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EDP1s13168 for vserver.list; Wed, 14 Aug 2002 09:25:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gate.weos.de (mail.weos.de [194.245.114.202] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EDOxY13144 for ; Wed, 14 Aug 2002 09:24:59 -0400 Received: from localhost (halbslinux.weos.de [192.168.101.95]) by gate.weos.de (8.11.3/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id g7EDOtp26078 for ; Wed, 14 Aug 2002 15:24:55 +0200 Subject: RE: [vserver] Unfiied not working what am i doing wrong From: Huibert Alblas To: vserver@solucorp.qc.ca In-Reply-To: <5.1.0.14.2.20020813162401.04d21858@mail.pwebtech.com> References: <5.1.0.14.2.20020813150527.053740a8@mail.pwebtech.com> <002701c242f3$eb9f0a70$ed23bd41@PremiumFood> <5.1.0.14.2.20020813162401.04d21858@mail.pwebtech.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 14 Aug 2002 15:24:55 +0200 Message-Id: <1029331495.23230.22.camel@localhost> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1029 Am Die, 2002-08-13 um 22.24 schrieb Jason Silverglate: > True but unifing is supposed to not make it 1.2GB but link all the binaries > together. > > jason > And this has nothing todo with you using reiserfs as the underlying filesystem, or having /vservers/NEWSERVER on another filesystem as the TEMPLATEvserver? It is (still) not posible to use hardlinks under Reiserfs, sorry (Alltough I have read somewhere that the 'latest' reiser versions can do hardlinks....) Halb -- "I love deadlines. I like the whooshing sound they make as they fly by." -- Douglas Adams From vserver.error@solucorp.qc.ca Wed Aug 14 13:51:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EHpHiB024122; Wed, 14 Aug 2002 13:51:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EGJZx18265 for vserver.list; Wed, 14 Aug 2002 12:19:35 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from onebill.twinspot.net (onebill.twinspot.net [62.13.47.101]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EGJYY18261 for ; Wed, 14 Aug 2002 12:19:34 -0400 Received: from p240.linnet.nu ([62.13.47.240] helo=euronetics.se) by onebill.twinspot.net with esmtp for id 17f0rp-0003tC-00; Wed, 14 Aug 2002 18:19:29 +0200 Message-ID: <3D5A8310.80401@euronetics.se> Date: Wed, 14 Aug 2002 18:19:28 +0200 From: Tomas Fasth Organization: Euronetics User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: sv, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Unfiied not working what am i doing wrong References: <5.1.0.14.2.20020813150527.053740a8@mail.pwebtech.com> <002701c242f3$eb9f0a70$ed23bd41@PremiumFood> <5.1.0.14.2.20020813162401.04d21858@mail.pwebtech.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1030 Jason, all, I think the problem you have is lingering mount --bind on proc and dev/log. Try umount proc dev/log and then try again to remove it. That will also explain why your copy gets so big. You were copying the whole random access memory: /dev/kmem :) // Tomas Jason Silverglate wrote: > True but unifing is supposed to not make it 1.2GB but link all the > binaries together. > > jason > > At 03:18 PM 8/13/2002, you wrote: > >> When I tried creating a vserver off of the / it was 1.3 GB (default >> redhat 7.2 >> install)... You then have to trim down everything you wont need. Or, >> create a >> new, base install, and copy that into the directory. >> >> On 13 Aug 2002 at 15:06, Jason Silverglate wrote: >> >> > Well i tried both ways >> > >> > I tried creating it from vserver1 which is a vserver. and it only >> created >> > the /proc /dev dir. So i then tried and created it from the / which is >> > what this is and the size still comes out to be 1GB instead of the 30MB >> > >> > Jason >> > >> > At 02:04 PM 8/13/2002, you wrote: >> > >Its hard to tell from the output, but did you select the right >> server to >> > >clone from? >> > > >> > >Peter >> > > >> > >-----Original Message----- >> > >From: Jason Silverglate [mailto:jason@pwebtech.com] >> > >Sent: Tuesday, August 13, 2002 12:41 PM >> > >To: vserver@solucorp.qc.ca >> > >Subject: [vserver] Unfiied not working what am i doing wrong >> > > >> > >[root@vserver1 vserver2]# ls >> > >dev proc >> > > >> > >Those are the only directories i get when i do this config for >> > >unification >> > > >> > > >> > > lqqqqqqqqqqqqqqqqqqqqq Vserver basic setup >> > >qqqqqqqqqqqqqqqqqqqqqqk >> > > x >> > >x >> > > x >> > >lqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqk x >> > > xtop >> > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x >> > > xVserver name (max 10 chars) >> > >xvserver2 x x >> > > xVserver >> > >description xvserver2 x x >> > > xClone >> > >vserver x/ vx x >> > > xUnified mode x[X] Share disk >> > >space x x >> > > xNetworking >> > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x >> > > xHost >> > >name xvserver2.woof.com x x >> > > x xUp to 16 IP >> > >numbers x x >> > > xIP >> > >number(s) x x x >> > > xInstall IP on >> > >device xeth0 x x >> > > xNIS >> > >domainname x x x >> > > xExtra >> > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x >> > > xStart server x[ ] at boot >> > >time x x >> > > xNice >> > >level x x x >> > > xAvailable flags xlock nproc >> sched >> > >hideinfo privatex x >> > > xFlags xlock >> > >nproc x x >> > > xVserver ulimit x-H -u >> > >1000 x x >> > > xServices >> > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x >> > > xcrond x[X] Scheduled >> > >tasks x x >> > > xhttpd x[ ] Web >> > >server x x >> > > xsshd x[X] Secure >> shell >> > >server x x >> > > xsyslog x[X] Message >> > >logger x x >> > > xxinetd x[X] On >> demand inet >> > > >> > >service x x >> > > xShared >> > >directories xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x >> > > xDirectory x/usr >> > > x x >> > > xDirectory x/ >> > > x x >> > > xDirectory x/lib >> > > x x >> > > xDirectory x/var >> > >> > __________________ >> > Jay Silver jason@pwebtech.com ICQ 103463692 >> > Pegasus Web Technologies >> > http://www.pwebtech.com >> > Web Hosting and Dedicated Servers >> > >> > >> >> -- >> Russell Anthony >> Network Development / Administration > > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > > From vserver.error@solucorp.qc.ca Wed Aug 14 14:37:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EIbAiB024458; Wed, 14 Aug 2002 14:37:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EHru420831 for vserver.list; Wed, 14 Aug 2002 13:53:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from smtp015.mail.yahoo.com (smtp015.mail.yahoo.com [216.136.173.59]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7EHrsY20827 for ; Wed, 14 Aug 2002 13:53:55 -0400 Received: from dsl-65-189-35-237.telocity.com (HELO PremiumFood) (peterkwanchan@65.189.35.237 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 14 Aug 2002 17:53:54 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Unfiied not working what am i doing wrong Date: Wed, 14 Aug 2002 12:53:54 -0500 Message-ID: <000901c243bb$8ed27de0$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <3D5A8310.80401@euronetics.se> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1031 Jason mentioned to me (privately) that his vservers were on different LVM partitions, and I suggested to him that, as far as I know, hardlink doesn't work across partition, so unification won't work. Am I right? Peter -----Original Message----- From: Tomas Fasth [mailto:tomas@euronetics.se] Sent: Wednesday, August 14, 2002 11:19 AM To: vserver@solucorp.qc.ca Subject: Re: [vserver] Unfiied not working what am i doing wrong Jason, all, I think the problem you have is lingering mount --bind on proc and dev/log. Try umount proc dev/log and then try again to remove it. That will also explain why your copy gets so big. You were copying the whole random access memory: /dev/kmem :) // Tomas Jason Silverglate wrote: > True but unifing is supposed to not make it 1.2GB but link all the > binaries together. > > jason > > At 03:18 PM 8/13/2002, you wrote: > >> When I tried creating a vserver off of the / it was 1.3 GB (default >> redhat 7.2 >> install)... You then have to trim down everything you wont need. Or, >> create a >> new, base install, and copy that into the directory. >> >> On 13 Aug 2002 at 15:06, Jason Silverglate wrote: >> >> > Well i tried both ways >> > >> > I tried creating it from vserver1 which is a vserver. and it only >> created >> > the /proc /dev dir. So i then tried and created it from the / which is >> > what this is and the size still comes out to be 1GB instead of the 30MB >> > >> > Jason >> > >> > At 02:04 PM 8/13/2002, you wrote: >> > >Its hard to tell from the output, but did you select the right >> server to >> > >clone from? >> > > >> > >Peter >> > > >> > >-----Original Message----- >> > >From: Jason Silverglate [mailto:jason@pwebtech.com] >> > >Sent: Tuesday, August 13, 2002 12:41 PM >> > >To: vserver@solucorp.qc.ca >> > >Subject: [vserver] Unfiied not working what am i doing wrong >> > > >> > >[root@vserver1 vserver2]# ls >> > >dev proc >> > > >> > >Those are the only directories i get when i do this config for >> > >unification >> > > >> > > >> > > lqqqqqqqqqqqqqqqqqqqqq Vserver basic setup >> > >qqqqqqqqqqqqqqqqqqqqqqk >> > > x >> > >x >> > > x >> > >lqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqk x >> > > xtop >> > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x >> > > xVserver name (max 10 chars) >> > >xvserver2 x x >> > > xVserver >> > >description xvserver2 x x >> > > xClone >> > >vserver x/ vx x >> > > xUnified mode x[X] Share disk >> > >space x x >> > > xNetworking >> > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x >> > > xHost >> > >name xvserver2.woof.com x x >> > > x xUp to 16 IP >> > >numbers x x >> > > xIP >> > >number(s) x x x >> > > xInstall IP on >> > >device xeth0 x x >> > > xNIS >> > >domainname x x x >> > > xExtra >> > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x >> > > xStart server x[ ] at boot >> > >time x x >> > > xNice >> > >level x x x >> > > xAvailable flags xlock nproc >> sched >> > >hideinfo privatex x >> > > xFlags xlock >> > >nproc x x >> > > xVserver ulimit x-H -u >> > >1000 x x >> > > xServices >> > >xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x >> > > xcrond x[X] Scheduled >> > >tasks x x >> > > xhttpd x[ ] Web >> > >server x x >> > > xsshd x[X] Secure >> shell >> > >server x x >> > > xsyslog x[X] Message >> > >logger x x >> > > xxinetd x[X] On >> demand inet >> > > >> > >service x x >> > > xShared >> > >directories xqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqx x >> > > xDirectory x/usr >> > > x x >> > > xDirectory x/ >> > > x x >> > > xDirectory x/lib >> > > x x >> > > xDirectory x/var >> > >> > __________________ >> > Jay Silver jason@pwebtech.com ICQ 103463692 >> > Pegasus Web Technologies >> > http://www.pwebtech.com >> > Web Hosting and Dedicated Servers >> > >> > >> >> -- >> Russell Anthony >> Network Development / Administration > > > __________________ > Jay Silver jason@pwebtech.com ICQ 103463692 > Pegasus Web Technologies > http://www.pwebtech.com > Web Hosting and Dedicated Servers > > From vserver.error@solucorp.qc.ca Wed Aug 14 16:07:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EK6xiB025675; Wed, 14 Aug 2002 16:06:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EIWIo21889 for vserver.list; Wed, 14 Aug 2002 14:32:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from templar.uberninja.com (templar.uberninja.com [66.139.73.8]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EIWHY21885 for ; Wed, 14 Aug 2002 14:32:18 -0400 Received: from uberninja.com (i.am.the.gatekeeper.of.uberninja.net [213.152.60.2]) (authenticated (0 bits)) by templar.uberninja.com (8.11.6/8.11.6) with ESMTP id g7EIWDP32553 for ; Wed, 14 Aug 2002 13:32:14 -0500 Message-ID: <3D5AA22F.9090304@uberninja.com> Date: Wed, 14 Aug 2002 19:32:15 +0100 From: "Marius Vincent (UberNinja)" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.1b) Gecko/20020722 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] unsubscribe References: <000901c243bb$8ed27de0$ed23bd41@PremiumFood> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1032 unsubscribe From vserver.error@solucorp.qc.ca Wed Aug 14 16:26:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EKQhiB025796; Wed, 14 Aug 2002 16:26:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EIqBG22428 for vserver.list; Wed, 14 Aug 2002 14:52:11 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EIqAY22424 for ; Wed, 14 Aug 2002 14:52:11 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g7EIq9G18088 for ; Wed, 14 Aug 2002 11:52:09 -0700 Date: Wed, 14 Aug 2002 11:52:09 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: [vserver] iSCSI (RaidZone) Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1033 With RaidZone's upcoming iSCSI offering I see a real opportunity for large scale vservers. At 4+ TByte unification shouldn't be an issue but could. As I'm pretty naive about file systems I was wondering if an iSCSI 'mount' (?) would be unifiable? According to what I've read the iSCSI partition/mount/drive looks and acts just like a local drive. Any ideas? Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Wed Aug 14 16:57:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EKvliB026037; Wed, 14 Aug 2002 16:57:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EJNdD23267 for vserver.list; Wed, 14 Aug 2002 15:23:39 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EJNdY23263 for ; Wed, 14 Aug 2002 15:23:39 -0400 Received: from remtk.solucorp.qc.ca (g36-114.citenet.net [206.123.36.114]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7EJZVA32254 for ; Wed, 14 Aug 2002 15:35:33 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7EI3fo03686 for vserver@solucorp.qc.ca; Wed, 14 Aug 2002 14:03:41 -0400 From: Jacques Gelinas Date: Wed, 14 Aug 2002 14:03:41 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] upgrades with unification X-mailer: tlmpmail 0.6 Message-ID: <20020814140341.c7e963943426@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1034 On Mon, 12 Aug 2002 23:07:26 -0500, Lyn St George wrote > On Mon, 12 Aug 2002 13:43:40 -0700, Cathy Sarisky wrote: > > >Ah, I think I understand my problem with vunify. Do I understand correctly > >that vunify only works with rpms? Eww.. I have stuff built from source. :( > > My servers are also built entirely from tarballs, as I have a personal > aversion to that RPM thing. > > If you have a "template" / "skeleton" / "reference" server from which > all the hard links are made to the VS's, then it should be just a matter > of upgrading the reference server, without having to use any of the > vunify or other scripts. (though it's late and I've just had a few > drinks with my cousins ..... ) Won't work. Upgrading a package generally implies a lot of unlink. So the hard link relation is gone. unlinking is done to allow upgrading busy programs (in use). This is what rpm does as well as many installation facility (dpkg probably does the same). The idea behind unification, beside saving a lot of disk space, is to have complete independance. So any vserver may update independantly without changing the others. this is true for the so called reference vserver. So your only reliable solution is to update and run vunify again (or whatever unification technology you want). --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Aug 14 16:58:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EKvsiB026052; Wed, 14 Aug 2002 16:57:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EJNID23253 for vserver.list; Wed, 14 Aug 2002 15:23:18 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EJNIY23249 for ; Wed, 14 Aug 2002 15:23:18 -0400 Received: from remtk.solucorp.qc.ca (g36-114.citenet.net [206.123.36.114]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7EJZHA32228 for ; Wed, 14 Aug 2002 15:35:18 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7EJIdL05517 for vserver@solucorp.qc.ca; Wed, 14 Aug 2002 15:18:39 -0400 From: Jacques Gelinas Date: Wed, 14 Aug 2002 15:18:39 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] upgrades with unification] X-mailer: tlmpmail 0.6 Message-ID: <20020814151839.a47cdeda94d1@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1035 On Mon, 12 Aug 2002 23:05:38 -0500, Herbert Poetzl wrote > maybe it would be a good idea to add the vunify > functionality to the vrpm script as an option? Good idea. I just added an --unify option to vrpm vrpm --unify server1 vserver2 .. rpm option and packages Will be in 0.20 friday --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Aug 14 16:58:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EKwWiB026067; Wed, 14 Aug 2002 16:58:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EJNxt23274 for vserver.list; Wed, 14 Aug 2002 15:23:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EJNxY23270 for ; Wed, 14 Aug 2002 15:23:59 -0400 Received: from remtk.solucorp.qc.ca (g36-114.citenet.net [206.123.36.114]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7EJZkA32276 for ; Wed, 14 Aug 2002 15:35:51 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7EHwSx03670 for vserver@solucorp.qc.ca; Wed, 14 Aug 2002 13:58:28 -0400 From: Jacques Gelinas Date: Wed, 14 Aug 2002 13:58:28 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] Unfiied not working what am i doing wrong X-mailer: tlmpmail 0.6 Message-ID: <20020814135828.f6738644da7f@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1036 On Tue, 13 Aug 2002 15:06:11 -0500, Jason Silverglate wrote > Well i tried both ways > > I tried creating it from vserver1 which is a vserver. and it only created > the /proc /dev dir. So i then tried and created it from the / which is > what this is and the size still comes out to be 1GB instead of the 30MB Unification is not applied when cloning the /. I have to complete that. It is simply not done in newvserver. Now if you tried to clone another vserver and you end up with only /dev and /proc I guess vbuild failed. Execute newvserver like this newvserver 2>/tmp/newvserver.err and check for any errors after that --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Aug 14 17:01:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EL0fiB026092; Wed, 14 Aug 2002 17:00:41 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EJNR323259 for vserver.list; Wed, 14 Aug 2002 15:23:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EJNQY23255 for ; Wed, 14 Aug 2002 15:23:26 -0400 Received: from remtk.solucorp.qc.ca (g36-114.citenet.net [206.123.36.114]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7EJZKA32234 for ; Wed, 14 Aug 2002 15:35:20 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7EJMcs05521 for vserver@solucorp.qc.ca; Wed, 14 Aug 2002 15:22:38 -0400 From: Jacques Gelinas Date: Wed, 14 Aug 2002 15:22:38 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] upgrades with unification] X-mailer: tlmpmail 0.6 Message-ID: <20020814152238.4f62782c9616@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1037 On Tue, 13 Aug 2002 09:39:15 -0500, Jon Bendtsen wrote > Herbert Poetzl wrote: > > > > On Mon, Aug 12, 2002 at 09:31:04PM +0200, Jon Bendtsen wrote: > > > > Cathy Sarisky wrote: > > unification is a little more than just a hardlink. > > it is a hardlink with additional immuteability > > (except for removal ;) which means, you would not > > be able to _change_ the file/link in the root server > > until you remove the immutable flag or the file. > > even the root server has to do this ?? I thought the immutable flag > was only used in the vservers. The real thing about unification and the immutable flag is that you generally don't care about those flags. You are not allowed to modify the file, but you are allowed to unlink it without any trick. Since package update is done using unlink/rename combination, this is transparent. > > maybe it would be a good idea to add the vunify > > functionality to the vrpm script as an option? > > Well, what about debian ? and slackware ? At some point, vunify will support rpm and deb transparently, (vbuild also) so unification will be available there. Slackware lacks packaging information allowing to tell apart configuration and resource file. rpm and deb both provide this information. For slackware, we can use heuristic. For example, stuff in /usr may be unified. Not sure. Sam has a solution which would work on slackware though (comparing files) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Aug 14 17:05:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7EL51iB026132; Wed, 14 Aug 2002 17:05:01 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7EJUHN23471 for vserver.list; Wed, 14 Aug 2002 15:30:17 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7EJU9Y23467 for ; Wed, 14 Aug 2002 15:30:17 -0400 Received: from remtk.solucorp.qc.ca (g36-114.citenet.net [206.123.36.114]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7EJg9A32952 for ; Wed, 14 Aug 2002 15:42:09 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7EJS3Q05525 for vserver@solucorp.qc.ca; Wed, 14 Aug 2002 15:28:03 -0400 From: Jacques Gelinas Date: Wed, 14 Aug 2002 15:28:03 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Can you propergate changes from the vservers to the root server ? X-mailer: tlmpmail 0.6 Message-ID: <20020814152803.d25638d344fb@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1038 On Tue, 13 Aug 2002 14:55:27 -0500, Ivan Eriksen wrote > Hello, > > I was just wondering if it's possible to propergate changes in the reference > server to the root server with vunify ? I guess, what I am asking is : > > Can I do : > > vunify refserver / > > or something similar ? I apologize if this is a FAQ. Currently vunify 0.19 support unification of the root server. It is called / vunify / vserver1 -- ALL will work. But it won't work to propagate changes. vunify only unify files owned by the same package (name, version, release). So the package must be installed in both vserver for unification to take place. Further, unification is not a replacement for an update. Updating sometime means you have to do some post-processing and this has to be done in the context of a vserver, one vserver at a time. vrpm was designed to repeat the same update over and over. But you have to perform the update N time unfortunatly. Another point. Dependencies must be checked. A vserver may have package xx and the new version of yy needs it (but not the old). Another vserver does not have xx, so the upgrade "must" fail. Tricking the update using vunify would cause problems. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Aug 14 19:12:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7ENCaiB026984; Wed, 14 Aug 2002 19:12:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7ELaVC26704 for vserver.list; Wed, 14 Aug 2002 17:36:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from uhura.netgate.net.nz (uhura.netgate.net.nz [202.37.247.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7ELaTY26700 for ; Wed, 14 Aug 2002 17:36:30 -0400 Received: from ganymede (210-54-11-22.ipsm.net.nz [210.54.11.22]) by uhura.netgate.net.nz (8.11.3/8.11.3) with ESMTP id g7ELaTF10271 for ; Thu, 15 Aug 2002 09:36:29 +1200 (NZST) Received: from localhost ([127.0.0.1] helo=localhost.localdomain ident=fran) by ganymede with esmtp (Exim 3.35 #1 (Debian)) id 17f5jp-0001Fk-00 for ; Thu, 15 Aug 2002 09:31:33 +1200 Subject: Re: [vserver] Pinging From: Fran Firman To: vserver In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-Qd8j/3vps+RQcpodZcuS" X-Mailer: Ximian Evolution 1.0.7 Date: 15 Aug 2002 09:31:31 +1200 Message-Id: <1029360693.4780.0.camel@ganymede> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1039 --=-Qd8j/3vps+RQcpodZcuS Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Neither. On a separate Firewall. On Wed, 2002-08-14 at 15:58, Roderick A. Anderson wrote: > On 14 Aug 2002, Fran Firman wrote: >=20 > Is ipchains or iptables running on the main server or the vserver? >=20 > > server5:~# tcpdump -i any -w tcpdumpfile2 > > tcpdump: listening on any > >=20 > > 203 packets received by filter > > 0 packets dropped by kernel > > server5:~# tcpdump -nr tcpdumpfile2 icmp > > 14:02:29.085932 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) > > 14:02:29.086336 210.54.11.22 > 210.54.14.19: icmp: echo reply > > 14:02:30.083227 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) > > 14:02:30.083619 210.54.11.22 > 210.54.14.19: icmp: echo reply > > 14:02:31.083254 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) > > 14:02:31.083615 210.54.11.22 > 210.54.14.19: icmp: echo reply > > 14:02:32.083295 210.54.14.19 > 210.54.11.22: icmp: echo request (DF) > > 14:02:32.083745 210.54.11.22 > 210.54.14.19: icmp: echo reply >=20 >=20 > Rod > --=20 > "Open Source Software - Sometimes you get more than you paid for..." >=20 >=20 --=-Qd8j/3vps+RQcpodZcuS Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9Wswzv1V2oVWAPhYRAmMvAKC2MFJ5BwdtmRDm+HKd+24zBTKJAQCffzVM UdXeXlBuToHO/iZfsexXekw= =X10d -----END PGP SIGNATURE----- --=-Qd8j/3vps+RQcpodZcuS-- From vserver.error@solucorp.qc.ca Wed Aug 14 20:55:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7F0seiB027543; Wed, 14 Aug 2002 20:54:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7ENIDG29745 for vserver.list; Wed, 14 Aug 2002 19:18:13 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chichen.dd.lt.qc.ca (modemcable131.116-203-24.mtl.mc.videotron.ca [24.203.116.131]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7ENI5Y29736 for ; Wed, 14 Aug 2002 19:18:10 -0400 Received: from logisoftech.com (eze.localdomain [192.168.4.3]) by chichen.dd.lt.qc.ca (8.9.3/8.8.7) with ESMTP id RAA05875 for ; Wed, 14 Aug 2002 17:00:05 -0400 Message-ID: <3D5AF2A5.5020104@logisoftech.com> Date: Wed, 14 Aug 2002 20:15:33 -0400 From: Guillaume Bourque User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020605 X-Accept-Language: fr-ca, en-us MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] unsubscribe References: <000901c243bb$8ed27de0$ed23bd41@PremiumFood> <3D5AA22F.9090304@uberninja.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1040 unsubscribe From vserver.error@solucorp.qc.ca Thu Aug 15 00:40:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7F4eEiB029135; Thu, 15 Aug 2002 00:40:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7F3FqX05514 for vserver.list; Wed, 14 Aug 2002 23:15:52 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7F3FqY05510 for ; Wed, 14 Aug 2002 23:15:52 -0400 Received: from remtk.solucorp.qc.ca (g39-238.citenet.net [206.123.39.238]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7F3RtA59187 for ; Wed, 14 Aug 2002 23:27:55 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7F3DV211615 for vserver@solucorp.qc.ca; Wed, 14 Aug 2002 23:13:31 -0400 From: Jacques Gelinas Date: Wed, 14 Aug 2002 23:13:31 -0500 To: vserver@solucorp.qc.ca Subject: RE: [vserver] Unfiied not working what am i doing wrong X-mailer: tlmpmail 0.6 Message-ID: <20020814231331.f9f8ca1453db@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1041 On Wed, 14 Aug 2002 12:53:54 -0500, Peter Kwan Chan wrote > Jason mentioned to me (privately) that his vservers were on different > LVM partitions, and I suggested to him that, as far as I know, hardlink > doesn't work across partition, so unification won't work. > > Am I right? Yes. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Aug 15 01:30:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7F5UGiB029507; Thu, 15 Aug 2002 01:30:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7F3uYf06462 for vserver.list; Wed, 14 Aug 2002 23:56:34 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7F3uYY06458 for ; Wed, 14 Aug 2002 23:56:34 -0400 Received: from remtk.solucorp.qc.ca (g39-2.citenet.net [206.123.39.2]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7F48cA60802 for ; Thu, 15 Aug 2002 00:08:38 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7F3sLH12428 for vserver@solucorp.qc.ca; Wed, 14 Aug 2002 23:54:21 -0400 From: Jacques Gelinas Date: Wed, 14 Aug 2002 23:54:21 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] iSCSI (RaidZone) X-mailer: tlmpmail 0.6 Message-ID: <20020814235421.8a7a741ee19c@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1042 On Wed, 14 Aug 2002 11:52:09 -0500, Roderick A. Anderson wrote > With RaidZone's upcoming iSCSI offering I see a real opportunity for large > scale vservers. At 4+ TByte unification shouldn't be an issue but could. > As I'm pretty naive about file systems I was wondering if an iSCSI 'mount' > (?) would be unifiable? According to what I've read the iSCSI > partition/mount/drive looks and acts just like a local drive. > Any ideas? If you mount a local filesystem (ext2, ext2, reiser, name it), then unification will work. For sure they are not supplying modified file system driver, so you can be sure it behave like a local hard drive. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Aug 15 08:29:16 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7FCSqiB032462; Thu, 15 Aug 2002 08:28:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7FAsxX16763 for vserver.list; Thu, 15 Aug 2002 06:54:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7FAswY16759 for ; Thu, 15 Aug 2002 06:54:58 -0400 Received: from hofmann.snowcra.sh (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id 1F53519081 for ; Thu, 15 Aug 2002 11:46:19 +0100 (BST) Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id 51BDA2C79 for ; Thu, 15 Aug 2002 11:54:56 +0100 (BST) Date: Thu, 15 Aug 2002 11:54:56 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] upgrades with unification] In-Reply-To: <20020814152238.4f62782c9616@remtk.solucorp.qc.ca> References: <20020814152238.4f62782c9616@remtk.solucorp.qc.ca> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1043 Jacques Gelinas wrote: > > even the root server has to do this ?? I thought the immutable flag > > was only used in the vservers. > The real thing about unification and the immutable flag is that you > generally don't care about those flags. You are not allowed to > modify the file, but you are allowed to unlink it without any > trick. Since package update is done using unlink/rename combination, > this is transparent. Apart from dpkg, which tries to `chmod ug-s' setuid binaries before it unlinks them for security reasons (someone could make a hard link of a vulnerable version of `sudo', for instance...). I had to modify `dpkg' to be able to upgrade ssh. > For slackware, we can use heuristic. For example, stuff in /usr may > be unified. Not sure. Sam has a solution which would work on > slackware though (comparing files) /usr, /lib, /sbin and /bin are the ones to unify IMHO. -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 A seeming ignorance is often a most necessary part of worldly knowledge. - anon. From vserver.error@solucorp.qc.ca Thu Aug 15 09:06:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7FD5xiB032700; Thu, 15 Aug 2002 09:05:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7FC8Wc18535 for vserver.list; Thu, 15 Aug 2002 08:08:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.trekia.se (stratos.trekia.se [212.105.83.242]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7FC8QY18531 for ; Thu, 15 Aug 2002 08:08:31 -0400 Received: from localhost (jonas@localhost) by mail.trekia.se (8.11.1/8.11.1) with ESMTP id g7FC8Jw14765 for ; Thu, 15 Aug 2002 14:08:20 +0200 X-Authentication-Warning: stratos.trekia.se: jonas owned process doing -bs Date: Thu, 15 Aug 2002 14:08:18 +0200 (CEST) From: =?ISO-8859-1?Q?Jonas_Bj=F6rklund?= X-X-Sender: jonas@stratos To: vserver@solucorp.qc.ca Subject: [vserver] Memory limit In-Reply-To: <20020814235421.8a7a741ee19c@remtk.solucorp.qc.ca> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1044 Hi, Is there any work going on regarding limit the memory and cpu of each vserver? From vserver.error@solucorp.qc.ca Thu Aug 15 11:13:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7FFD5iB001545; Thu, 15 Aug 2002 11:13:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7FDdSP20759 for vserver.list; Thu, 15 Aug 2002 09:39:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7FDdSY20755 for ; Thu, 15 Aug 2002 09:39:28 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7FDdRn03777 for vserver@solucorp.qc.ca; Thu, 15 Aug 2002 09:39:27 -0400 From: Jacques Gelinas Date: Thu, 15 Aug 2002 09:39:26 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Memory limit X-mailer: tlmpmail 0.6 Message-ID: <20020815093926.df945bec9e3d@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1045 On Thu, 15 Aug 2002 14:08:18 -0500, =?ISO-8859-1?Q?Jonas_Bj=F6rklund?= wrote > Hi, > > Is there any work going on regarding limit the memory and cpu of each > vserver? Yes and no. The various limit are the next thing on the list, but work has not started (not that I know). --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Aug 15 15:30:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7FJTgiB003200; Thu, 15 Aug 2002 15:29:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7FHv1g28454 for vserver.list; Thu, 15 Aug 2002 13:57:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7FHv0Y28444 for ; Thu, 15 Aug 2002 13:57:00 -0400 Received: from hofmann.snowcra.sh (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id 0A4CF1907C for ; Thu, 15 Aug 2002 18:48:20 +0100 (BST) Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id 8A2EC2C7A; Thu, 15 Aug 2002 18:56:59 +0100 (BST) Date: Thu, 15 Aug 2002 18:56:59 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca, Jonas =?ISO-8859-1?B?Qmr2cmtsdW5k?= Subject: Re: [vserver] Memory limit In-Reply-To: <20020815093926.df945bec9e3d@remtk.solucorp.qc.ca> References: <20020815093926.df945bec9e3d@remtk.solucorp.qc.ca> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1046 Jacques Gelinas wrote: > > Is there any work going on regarding limit the memory and cpu of each > > vserver? > Yes and no. The various limit are the next thing on the list, but > work has not started (not that I know). I'm working on CPU scaling with 2.4.19-acX - implemented as a `CPU token bucket' system, where each s_context get N cpu tokens every X jiffies, and your s_context's process priority is reduced or increased if you have few or many CPU tokens in your bucket. So it won't be CPU limiting or minimum cycles guaranteeing, but you will be able to say that on average over busy periods (where each vserver is contributing at least 1 to the load) vserver X gets 50% of the CPU when it's busy, vserver Y gets 25% and vserver Q gets 25%, etc. This will apply to the O(1) scheduler, too 8-). I have implemented it but am having problems with kernel memory allocation proving too hard for me right now. RSN :-) -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 Real software engineers like C's structured constructs, but they are suspicious of it because they have heard that it lets you get "close to the machine." From vserver.error@solucorp.qc.ca Fri Aug 16 01:33:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7G5XeiB007234; Fri, 16 Aug 2002 01:33:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7G3wC810851 for vserver.list; Thu, 15 Aug 2002 23:58:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chimta03.algx.net (chimta03.algx.net [216.99.233.78]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7G3wBY10847 for ; Thu, 15 Aug 2002 23:58:12 -0400 Received: from mail.azera.net (lvs-1.azera.net [207.8.113.133]) by chimmx03.algx.net (iPlanet Messaging Server 5.1 (built May 7 2001)) with ESMTP id <0H0X0096Q4CT9K@chimmx03.algx.net> for vserver@solucorp.qc.ca; Thu, 15 Aug 2002 22:58:05 -0500 (CDT) Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.azera.net (Postfix) with ESMTP id 369B562098 for ; Thu, 15 Aug 2002 22:57:34 -0500 (CDT) Date: Thu, 15 Aug 2002 22:57:34 -0500 (CDT) From: vserver-list@azera.net Subject: [vserver] adding other raid cards. In-reply-to: <20020815093926.df945bec9e3d@remtk.solucorp.qc.ca> X-X-Sender: To: vserver@solucorp.qc.ca Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Content-transfer-encoding: 7BIT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1047 have you thought about adding 3ware (and possibly other) support into your precompiled kernels? From vserver.error@solucorp.qc.ca Fri Aug 16 01:41:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7G5fUiB007297; Fri, 16 Aug 2002 01:41:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7G54FA12308 for vserver.list; Fri, 16 Aug 2002 01:04:15 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7G54FY12304 for ; Fri, 16 Aug 2002 01:04:15 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 7ACCE7A79F; Fri, 16 Aug 2002 06:04:14 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 71B7F92077 for ; Fri, 16 Aug 2002 06:04:14 +0100 (BST) Date: Fri, 16 Aug 2002 06:04:14 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] adding other raid cards. In-Reply-To: Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1048 On Thu, 15 Aug 2002 vserver-list@azera.net wrote: > > have you thought about adding 3ware (and possibly other) support into your > precompiled kernels? Jack's precompiled kernels I believe are there as a convenience, for example, to allow you to do a quick tastier. As you are probably aware, hardly anyone producing patches makes ready-to-run kernels available. If you are doing *any* serious work at all you should really be recompiling your own kernels (or at least employing somebody who is able) to match your relevant configuration(s). I think you'll find it's remarkably pleasant and probably easier than you thought: To apply a patch: # cd /usr/src/linux-2.4.19/ # patch -p1 < ../patch-2.4.19ctx12 To compile a kernel: # make menuconfig # make dep # make modules bzImage Imagine the requests to patch/compile/include every-single obscure device driver in the quick pre-compiled download... :) Hope this helps, -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Fri Aug 16 03:52:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7G7qQiB008063; Fri, 16 Aug 2002 03:52:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7G6Vr013954 for vserver.list; Fri, 16 Aug 2002 02:31:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chimta01.algx.net (chimta01.algx.net [216.99.233.34]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7G6VrY13950 for ; Fri, 16 Aug 2002 02:31:53 -0400 Received: from mail.azera.net (lvs-1.azera.net [207.8.113.133]) by chimmx01.algx.net (iPlanet Messaging Server 5.1 (built May 7 2001)) with ESMTP id <0H0X002TQBH55S@chimmx01.algx.net> for vserver@solucorp.qc.ca; Fri, 16 Aug 2002 01:31:53 -0500 (CDT) Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.azera.net (Postfix) with ESMTP id 7002462098 for ; Fri, 16 Aug 2002 01:31:21 -0500 (CDT) Date: Fri, 16 Aug 2002 01:31:21 -0500 (CDT) From: vserver-list@azera.net Subject: Re: [vserver] adding other raid cards. In-reply-to: X-X-Sender: To: VServer Patch List Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Content-transfer-encoding: 7BIT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1049 Paul, thanks for the reply! in general, i agree with your sentiments re: leave the maintainers alone and do it yourself. however... (a) some cards were already included, showing understanding of an lcd. i was wondering if he thought adding the 3ware card, and maybe others, also fell under lcd. (b) i've already tested on several systems with the precompiled binaries, and was very greatful for their availability. and, regrettably, on the server in the datacenter i'd actually like to be using this on i'd already compiled my own kernel and modules several times, all failing the same way: - can create a vserver - can start a vserver - can enter a vserver - /vservers/v001/proc and /vservers/v001/dev/pts are both mounted but... - vserver-stat and vserver v001 running both show that the vserver isn't running even though when running with the precompiled binaries that part works, too. i've tried this with all permutations of the following matrix: v2.4.18 v2.4.19 vserver18 vserver19 vserverconfig vserverconfig+3ware+4Gmem so, in recap: precompiled binaries work (though i can't access my several hundred GB partitions) and compiled kernel/modules don't work. for reference this is a dual tyan board with 2G, 2x1600MP, 1 ide boot drive, dual onboard 3com, 1 3w raid set, and enough cooling capacity to hairlip the pope. thoughts? On Fri, 16 Aug 2002, Paul Sladen wrote: > On Thu, 15 Aug 2002 vserver-list@azera.net wrote: > > > > have you thought about adding 3ware (and possibly other) support into your > > precompiled kernels? > > Jack's precompiled kernels I believe are there as a convenience, for > example, to allow you to do a quick tastier. As you are probably aware, > hardly anyone producing patches makes ready-to-run kernels available. > > If you are doing *any* serious work at all you should really be recompiling > your own kernels (or at least employing somebody who is able) to match your > relevant configuration(s). I think you'll find it's remarkably pleasant and > probably easier than you thought: > > To apply a patch: > > # cd /usr/src/linux-2.4.19/ > # patch -p1 < ../patch-2.4.19ctx12 > > To compile a kernel: > > # make menuconfig > # make dep > # make modules bzImage > > Imagine the requests to patch/compile/include every-single obscure device > driver in the quick pre-compiled download... :) > > Hope this helps, > -Paul > From vserver.error@solucorp.qc.ca Fri Aug 16 06:37:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GAbGiB009613; Fri, 16 Aug 2002 06:37:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7G9elE20146 for vserver.list; Fri, 16 Aug 2002 05:40:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hofmann.snowcra.sh (pc2-woki1-6-cust25.gfd.cable.ntl.com [80.6.41.25]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7G9elY20142 for ; Fri, 16 Aug 2002 05:40:47 -0400 Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id EBD162CB2; Fri, 16 Aug 2002 10:40:45 +0100 (BST) Date: Fri, 16 Aug 2002 10:40:45 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Cc: vserver-list@azera.net Subject: Re: [vserver] adding other raid cards. In-Reply-To: References: X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1050 vserver-list@azera.net wrote: > so, in recap: precompiled binaries work (though i can't access my several > hundred GB partitions) and compiled kernel/modules don't work. > for reference this is a dual tyan board with 2G, 2x1600MP, 1 ide boot > drive, dual onboard 3com, 1 3w raid set, and enough cooling capacity to > hairlip the pope. > thoughts? The first thing you should do is figure out why a kernel you compile with the exact same options as a precompiled one doesn't work. Do you need to move to a stable version of gcc perhaps? (I see debian stable uses 2.95.4). Other than that, as long as the addition of a driver for a particular piece of hardware doesn't adversely affect the people that don't have that device, then I'd say it should be added. Especially if it's a module and all it costs is another 300ms to recompile that kernel each time and 10-20kB of disk space in the modules... even options that have to be compiled in can be alright if they can successfully free up the space that they take up after initialising and finding nothing to do. Can you boot off that 3ware card? -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 A Project Manager is like the madam in a brothel. His job is to see that everything comes off right. - anon. From vserver.error@solucorp.qc.ca Fri Aug 16 10:29:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GESWiB011522; Fri, 16 Aug 2002 10:28:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GE6PQ26712 for vserver.list; Fri, 16 Aug 2002 10:06:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from skessa.this.is (skessa.this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GE6OY26708 for ; Fri, 16 Aug 2002 10:06:24 -0400 Received: from skessa.this.is (www-data@localhost.this.is [127.0.0.1]) by skessa.this.is (8.12.3/8.12.3/Debian -4) with ESMTP id g7GE6N6F030978 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=FAIL) for ; Fri, 16 Aug 2002 14:06:23 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.3/8.12.3/Debian -4) id g7GE6NeS030976 for vserver@solucorp.qc.ca; Fri, 16 Aug 2002 14:06:23 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca Subject: Re: [vserver] adding other raid cards. Message-ID: <1029506782.3d5d06dee9a4a@this.is> Date: Fri, 16 Aug 2002 14:06:22 +0000 (GMT) From: ragnar@this.is References: <20020816094045.EBD162CB2@hofmann.snowcra.sh> In-Reply-To: <20020816094045.EBD162CB2@hofmann.snowcra.sh> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 212.30.217.2 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1051 Hi, Sam Vilain: > Other than that, as long as the addition of a driver > for a particular piece of hardware doesn't adversely > affect the people that don't have that device, > then I'd say it should be added. I agree > > for reference this is a dual tyan board with 2G, You are not looking at saving on kernel footprint :-) I do think that someone should make a huge kernel that does almost everything that would make sense on a vserver. I do sometimes make my own kernels but that is for small dedicated systems. All my servers just run stuff that comes packaged with Debian. If no one else does it I will try it next week and make it accessible. It should not save on space but things that could potentially make it less stable or slow it dow would be left out. No audio or video stuff etc... Basic boot stuff like RAID and filesystems would be in it but most all else in modules. (and Yes I do have a 3Ware card that I would like to use) If I can bring my server up on such a kernel and it is stable - there is a strong probability that making an optimized version would have to wait until the quiet days around xmas. > Do you need to move to a stable version of gcc perhaps? > (I see debian stable uses 2.95.4). Sorry I do not understand, there was a problem in Debian is it resolved? Best ragnar From vserver.error@solucorp.qc.ca Fri Aug 16 13:18:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GHI2iB012727; Fri, 16 Aug 2002 13:18:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GFbsh29106 for vserver.list; Fri, 16 Aug 2002 11:37:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GFbrY29102 for ; Fri, 16 Aug 2002 11:37:53 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 87EDB7A7A1; Fri, 16 Aug 2002 16:37:53 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 835C992077 for ; Fri, 16 Aug 2002 16:37:53 +0100 (BST) Date: Fri, 16 Aug 2002 16:37:53 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] adding other raid cards. In-Reply-To: <1029506782.3d5d06dee9a4a@this.is> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1052 On Fri, 16 Aug 2002 ragnar@this.is wrote: > > I agree I haven't seen anyone ask "Please Jack, could you...". > I do think that someone should make a huge kernel [...] ^^^^^^^^^^ ^^^^^^^ I'm sure people will look forward to you putting one up for download. > > Do you need to move to a stable version of gcc perhaps? > > (I see debian stable uses 2.95.4). > Sorry I do not understand, there was a problem in Debian is it resolved? Debian is known for being the peak of security, quality and stability. If they are using 2.95.4 as the shipped compiler; there is a reason. They don't ship NQRFPT Alpha-grade compilers as `release quality', like Red Hat do. :-) -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Fri Aug 16 14:55:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GItRiB013556; Fri, 16 Aug 2002 14:55:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GHLX132028 for vserver.list; Fri, 16 Aug 2002 13:21:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chimta01.algx.net (chimta01.algx.net [216.99.233.34]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GHLXY32024 for ; Fri, 16 Aug 2002 13:21:33 -0400 Received: from mail.azera.net (lvs-1.azera.net [207.8.113.133]) by chimmx01.algx.net (iPlanet Messaging Server 5.1 (built May 7 2001)) with ESMTP id <0H0Y00DVR5JX7Z@chimmx01.algx.net> for vserver@solucorp.qc.ca; Fri, 16 Aug 2002 12:21:33 -0500 (CDT) Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.azera.net (Postfix) with ESMTP id 9E4FE62098 for ; Fri, 16 Aug 2002 12:20:59 -0500 (CDT) Date: Fri, 16 Aug 2002 12:20:59 -0500 (CDT) From: vserver-list@azera.net Subject: Re: [vserver] adding other raid cards. In-reply-to: <1029506782.3d5d06dee9a4a@this.is> X-X-Sender: To: vserver@solucorp.qc.ca Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Content-transfer-encoding: 7BIT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1053 > > > for reference this is a dual tyan board with 2G, > > You are not looking at saving on kernel footprint :-) not really! though i am comfortable compiling my own kernels, and usually do for production systems (ipvs, i prefer reiser over ext3, but like redhat--something about leveraging those millions of machine hours as an extra qa agent... and i'm only just now coming around to istalling 2.4 kernels on bastion hosts) i get nervous when my results differ than those from the group whose patch i just installed, as is apparently the case in this instance. > I do think that someone should make a huge kernel > that does almost everything that would make sense > on a vserver. agreed. contrary to paul's original well-intentioned sentiments, getting most people on the list to use the same kernel has a benefit, since people's results should be more directly comparable. call me biased, but if the binary kernel had support for 4Gmem and 3ware i would happily use it over compiling my own... and imagine other folks would, too. i don't think people are running vserver on a 486 w/16Mb. IMHO the thing to avoid is turning the maintainer into a support group for non-vserver issues. as always, i reserve the right to smoke crack on this or any other issue. From vserver.error@solucorp.qc.ca Fri Aug 16 14:55:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GItciB013557; Fri, 16 Aug 2002 14:55:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GH9cS31617 for vserver.list; Fri, 16 Aug 2002 13:09:38 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chimta01.algx.net (chimta01.algx.net [216.99.233.34]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GH9bY31613 for ; Fri, 16 Aug 2002 13:09:38 -0400 Received: from mail.azera.net (lvs-1.azera.net [207.8.113.133]) by chimmx01.algx.net (iPlanet Messaging Server 5.1 (built May 7 2001)) with ESMTP id <0H0Y00CJD501GO@chimmx01.algx.net> for vserver@solucorp.qc.ca; Fri, 16 Aug 2002 12:09:38 -0500 (CDT) Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.azera.net (Postfix) with ESMTP id E8E8D62098 for ; Fri, 16 Aug 2002 12:09:03 -0500 (CDT) Date: Fri, 16 Aug 2002 12:09:03 -0500 (CDT) From: vserver-list@azera.net Subject: Re: [vserver] adding other raid cards. In-reply-to: <20020816094045.EBD162CB2@hofmann.snowcra.sh> X-X-Sender: To: vserver@solucorp.qc.ca Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Content-transfer-encoding: 7BIT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1054 first comment: thanks for the reply! second comment: this might be a case of i-am-my-brothers-idiot. once i start something inside the vserver, like apache, then it shows up in the host context with vserver-stat and 'vserver running'. however, doing the exact same thing with the precompiled versions... the vserver shows as running even before i start anything in it. makes me think i'm doing something crazy. gcc version is: 2.96, out of redhat update rpm's. 3ware card: yes, i can boot to the 3ware card. i have 10 or so hosts doing exactly that. for the price, and stability i've experienced over the last (god, has it been) 2 years. modules: i tend to agree with your sentiment, presuming it doesn't cost the maintainer anything real in terms of time/hassle and/or kernel performance. On Fri, 16 Aug 2002, Sam Vilain wrote: > vserver-list@azera.net wrote: > > > so, in recap: precompiled binaries work (though i can't access my several > > hundred GB partitions) and compiled kernel/modules don't work. > > for reference this is a dual tyan board with 2G, 2x1600MP, 1 ide boot > > drive, dual onboard 3com, 1 3w raid set, and enough cooling capacity to > > hairlip the pope. > > thoughts? > > The first thing you should do is figure out why a kernel you compile > with the exact same options as a precompiled one doesn't work. Do you > need to move to a stable version of gcc perhaps? (I see debian stable > uses 2.95.4). > > Other than that, as long as the addition of a driver for a particular > piece of hardware doesn't adversely affect the people that don't have > that device, then I'd say it should be added. Especially if it's a > module and all it costs is another 300ms to recompile that kernel each > time and 10-20kB of disk space in the modules... even options that > have to be compiled in can be alright if they can successfully free up > the space that they take up after initialising and finding nothing to > do. > > Can you boot off that 3ware card? > -- > Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ > 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc > 278A A425 30A9 05B5 2F13 > > A Project Manager is like the madam in a brothel. His job is to see > that everything comes off right. > - anon. > From vserver.error@solucorp.qc.ca Fri Aug 16 15:00:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GJ04iB013627; Fri, 16 Aug 2002 15:00:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GHHXt31863 for vserver.list; Fri, 16 Aug 2002 13:17:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from shop.eboxw.net (shop.eboxw.net [205.236.1.11]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GHHWY31859 for ; Fri, 16 Aug 2002 13:17:32 -0400 Received: from www-data by shop.eboxw.net with local (Exim 3.35 #1 (Debian)) id 17fksS-0004MJ-00 for ; Fri, 16 Aug 2002 18:27:12 +0100 To: vserver@solucorp.qc.ca Subject: [vserver] v_xxx multi-IP Message-ID: <1029518832.3d5d35f05059a@shop.eboxw.net> Date: Fri, 16 Aug 2002 18:27:12 +0100 (WEST) From: Taskashi Shurio MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 207.236.226.187 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1055 Hello Anyone got an configuration file exemple for v_xxx pseudo services support multi-IP configuration file ? I try to bind identd deamon on 10 IP from x.x.x.97 to x.x.x.107 i make my own script v_identd and configiration file identd.conf in /etc/vservices/inetd.conf got this error VSERVER:/etc/init.d# ./v_inetd restart ipv4root is now X.X.1.97 Can't exec X.X.1.98 (No such file or directory) Anyone can send me an exemple of configuration file plz also anyone got eggdrop and bnc working in a vserver with multiIps if i put IPROOT="x.x.x.1 x.x.x.2 x.x.x.3" eggdrop and bnc can only start from the first ip ont he list i got to set to IPROOT=0.0.0.0 for eggdrop and bnc to work but i this case user of a vserver can use all the ips of the root server :( Thanx all you do a great work and Thanx Jack From vserver.error@solucorp.qc.ca Fri Aug 16 17:26:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GLQ6iB014888; Fri, 16 Aug 2002 17:26:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GKwVC05308 for vserver.list; Fri, 16 Aug 2002 16:58:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GKwVY05304 for ; Fri, 16 Aug 2002 16:58:31 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7GKwTu11035 for vserver@solucorp.qc.ca; Fri, 16 Aug 2002 16:58:29 -0400 From: Jacques Gelinas Date: Fri, 16 Aug 2002 16:58:28 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] adding other raid cards. X-mailer: tlmpmail 0.6 Message-ID: <20020816165828.298b482e4ba4@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1056 On Thu, 15 Aug 2002 22:57:34 -0500, vserver-list@azera.net wrote > > have you thought about adding 3ware (and possibly other) support into your > precompiled kernels? I have no problem. This will be in the next binary kernel I produce. Any other populare SCSI I have forgotten ? (I Know 3ware is not really scsi though) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 16 18:23:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GMNEiB015376; Fri, 16 Aug 2002 18:23:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GKo8x05017 for vserver.list; Fri, 16 Aug 2002 16:50:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GKo8Y05013 for ; Fri, 16 Aug 2002 16:50:08 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7GKo6R10776 for vserver@solucorp.qc.ca; Fri, 16 Aug 2002 16:50:06 -0400 From: Jacques Gelinas Date: Fri, 16 Aug 2002 16:50:06 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] multi-nic X-mailer: tlmpmail 0.6 Message-ID: <20020816165006.7971cdc8c8f3@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1057 On Sun, 11 Aug 2002 01:37:51 -0500, Thomas Weber wrote > On Sat, Aug 10, 2002 at 10:31:22AM +0100, Paul Sladen wrote: > > > Finally I implented it using : instead of / > > > IPROOT="eth0:1.2.3.4 eth1:2.3.4.5" > > > One day will implement the / to support per IP netmask... > > > > We're running out of seperator characters! ;-) > > > > I had assuming/hoped you'd use something other than `:' is make parsing IPv6 > > addresses slightly easier in the long run--a topic I'll try and look at > > at $SOMETIME. (I'm assuming it's basically a question of cut+pasting the > > the IPv4 code). > > and it might be confusing since ':' is already the seperator for ip aliases, > of course / is as bad also. Yes but you can't setup an IP alias on an IP alias. So you will never see eth0:x:192.168.1.2 --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 16 19:16:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GNG3iB015837; Fri, 16 Aug 2002 19:16:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GLVq406132 for vserver.list; Fri, 16 Aug 2002 17:31:52 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from fepA.post.tele.dk (fepA.post.tele.dk [195.41.46.143]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GLVpY06128 for ; Fri, 16 Aug 2002 17:31:52 -0400 Received: from loke ([80.63.234.244]) by fepA.post.tele.dk (InterMail vM.4.01.03.23 201-229-121-123-20010418) with SMTP id <20020816213149.ZAEF9091.fepA.post.tele.dk@loke> for ; Fri, 16 Aug 2002 23:31:49 +0200 Date: Fri, 16 Aug 2002 23:29:34 +0200 From: Klaus Rene Hansen(Sconk) To: vserver@solucorp.qc.ca Subject: [vserver] kernel 2.4.19 Message-Id: <20020816232934.288891c8.vserver@sconk.dk> X-Mailer: Sylpheed version 0.7.4 (GTK+ 1.2.10; i386-debian-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1058 Is there no patch to the 2.4.19 kernel? Klaus Rene Hansen Some default Signature From vserver.error@solucorp.qc.ca Fri Aug 16 19:20:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GNK4iB015873; Fri, 16 Aug 2002 19:20:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GLXMl06148 for vserver.list; Fri, 16 Aug 2002 17:33:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from inn.valai.net (inn.valai.net [66.129.95.38]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7GLXLY06144 for ; Fri, 16 Aug 2002 17:33:21 -0400 Received: (qmail 20136 invoked by uid 83); 16 Aug 2002 21:39:47 -0000 Received: from unknown (HELO PremiumFood) (65.189.35.237) by inn.valai.net with SMTP; 16 Aug 2002 21:39:47 -0000 From: "Peter Kwan Chan" To: Subject: [vserver] Newbie Question on Kernel Date: Fri, 16 Aug 2002 16:33:17 -0500 Message-ID: <000f01c2456c$892568f0$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1059 This is probably more related to generic kernel issue than vserver, but I appreciate any help. I have always used the pre-compiled kernel from the site, but sometimes it works, sometimes it doesn't work. I used on it two servers and it loaded fine, but the last two servers both did not come up. Since I am using server located in remote data center, I don't have physical access. Onetime a tech told me that it was "a driver" problem, and this latest time the kernel "freezes at uncompressing kernel." As a newbie on kernel, I have tried to read some doc online, but I couldn't find anything useful. All four servers were using standard hardware; there were nothing exotic. Could someone give me some hints? Should I compile my own kernel instead? (I have never done it before). Thanks, Peter From vserver.error@solucorp.qc.ca Fri Aug 16 19:40:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7GNeliB016044; Fri, 16 Aug 2002 19:40:47 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GNH6l08753 for vserver.list; Fri, 16 Aug 2002 19:17:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from student6.rug.ac.be (student6.rug.ac.be [157.193.88.74]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GNH5Y08749 for ; Fri, 16 Aug 2002 19:17:06 -0400 Received: (from ivo@localhost) by student6.rug.ac.be (8.9.3/8.9.3/Debian 8.9.3-21) id BAA15782 for vserver@solucorp.qc.ca; Sat, 17 Aug 2002 01:17:05 +0200 Date: Sat, 17 Aug 2002 01:17:05 +0200 From: Ivo De Decker To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel 2.4.19 Message-ID: <20020817011705.A15534@student.rug.ac.be> References: <20020816232934.288891c8.vserver@sconk.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020816232934.288891c8.vserver@sconk.dk>; from vserver@sconk.dk on Fri, Aug 16, 2002 at 11:29:34PM +0200 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1060 On Fri, Aug 16, 2002 at 11:29:34PM +0200, Klaus Rene Hansen wrote: > Is there no patch to the 2.4.19 kernel? Yes, it's available from ftp://ftp.solucorp.qc.ca/pub/vserver/patch-2.4.19ctx-13 Greetings, Ivo De Decker From vserver.error@solucorp.qc.ca Fri Aug 16 20:28:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7H0SeiB016341; Fri, 16 Aug 2002 20:28:41 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GMmVI08145 for vserver.list; Fri, 16 Aug 2002 18:48:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GMmUY08141 for ; Fri, 16 Aug 2002 18:48:30 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id A468A7A79D; Fri, 16 Aug 2002 23:48:30 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 9778A92077 for ; Fri, 16 Aug 2002 23:48:30 +0100 (BST) Date: Fri, 16 Aug 2002 23:48:30 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] kernel 2.4.19 In-Reply-To: <20020816232934.288891c8.vserver@sconk.dk> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1061 On Fri, 16 Aug 2002, Klaus Rene Hansen wrote: > Is there no patch to the 2.4.19 kernel? ftp://ftp.solucorp.qc.ca/pub/vserver/patch-2.4.19ctx-13 ? -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Fri Aug 16 20:34:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7H0YciB016405; Fri, 16 Aug 2002 20:34:39 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7GMuE208313 for vserver.list; Fri, 16 Aug 2002 18:56:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7GMuDY08309 for ; Fri, 16 Aug 2002 18:56:13 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 4E0737A79D; Fri, 16 Aug 2002 23:56:10 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id B2E7092077 for ; Fri, 16 Aug 2002 23:56:10 +0100 (BST) Date: Fri, 16 Aug 2002 23:56:09 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Newbie Question on Kernel In-Reply-To: <000f01c2456c$892568f0$ed23bd41@PremiumFood> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1062 On Fri, 16 Aug 2002, Peter Kwan Chan wrote: > > [...] Onetime a tech told me that it was "a driver" problem, and this > latest time the kernel "freezes at uncompressing kernel." Could be trying to boot a kernel compiled for a more recent processor branch than your hardware, eg. P4 kernel on a PII/III. Moral: Get a terminal server on the serial port and compile your own kernels. > All four servers were using standard hardware; there were nothing exotic. Are they all identical? Is there any hardware that is/isn't in the machines that did/didn't boot? (eg. 3ware RAID controllers? ;-) > Should I compile my own kernel instead? (I have never done it before). IMHO. Yes. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Fri Aug 16 21:01:13 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7H10wiB016639; Fri, 16 Aug 2002 21:00:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7H02WQ09759 for vserver.list; Fri, 16 Aug 2002 20:02:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from fepE.post.tele.dk (fepE.post.tele.dk [195.41.46.137]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7H02WY09755 for ; Fri, 16 Aug 2002 20:02:32 -0400 Received: from loke ([80.63.234.244]) by fepE.post.tele.dk (InterMail vM.4.01.03.23 201-229-121-123-20010418) with SMTP id <20020817000232.VPSV4056.fepE.post.tele.dk@loke> for ; Sat, 17 Aug 2002 02:02:32 +0200 Date: Sat, 17 Aug 2002 02:00:21 +0200 From: Klaus Rene Hansen(Sconk) To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel 2.4.19 Message-Id: <20020817020021.2ff4143b.vserver@sconk.dk> In-Reply-To: <20020817011705.A15534@student.rug.ac.be> References: <20020816232934.288891c8.vserver@sconk.dk> <20020817011705.A15534@student.rug.ac.be> X-Mailer: Sylpheed version 0.7.4 (GTK+ 1.2.10; i386-debian-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1063 On Sat, 17 Aug 2002 01:17:05 +0200 Ivo De Decker wrote: > > Yes, it's available from > ftp://ftp.solucorp.qc.ca/pub/vserver/patch-2.4.19ctx-13 I did find it after some time.. budt http://www.solucorp.qc.ca/miscprj/s_context.hc?prjstate=1&nodoc=1 The link to patches dont show it ;-( Klaus Some default Signature From vserver.error@solucorp.qc.ca Fri Aug 16 22:45:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7H2isiB017166; Fri, 16 Aug 2002 22:44:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7H10Ll11077 for vserver.list; Fri, 16 Aug 2002 21:00:21 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from inn.valai.net (inn.valai.net [66.129.95.38]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7H10LY11073 for ; Fri, 16 Aug 2002 21:00:21 -0400 Received: (qmail 33451 invoked by uid 83); 17 Aug 2002 01:06:53 -0000 Received: from unknown (HELO PremiumFood) (65.189.35.237) by inn.valai.net with SMTP; 17 Aug 2002 01:06:53 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Newbie Question on Kernel Date: Fri, 16 Aug 2002 20:00:23 -0500 Message-ID: <000401c24589$776a3380$ed23bd41@PremiumFood> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1064 Well, the two that worked right away were Celeron 800 and Celeron 1300. The two that didn't work were Athlon 1 GHz (this one works after correcting a "driver problem") and Pentium 4 1.6 GHz (currently waiting for the tech to bring up the server). Of course, different versions were used. However, they are all pretty modern processors. They were not identical, but they were all using standard hardware (IDE drives) and all had a working Red Hat kernel before (7.2 or 7.3). I can't get serial access because the data center(s) that I am in doesn't support/offer it. I will try to custom-compile one, but I fear I may mess up (I am reading the kernel how-tos now). In the meantime, any other pointers/hints/ideas would be greatly appreciated. Thanks, Peter -----Original Message----- From: Paul Sladen [mailto:vserver@paul.sladen.org] Sent: Friday, August 16, 2002 5:56 PM To: VServer Patch List Subject: Re: [vserver] Newbie Question on Kernel On Fri, 16 Aug 2002, Peter Kwan Chan wrote: > > [...] Onetime a tech told me that it was "a driver" problem, and this > latest time the kernel "freezes at uncompressing kernel." Could be trying to boot a kernel compiled for a more recent processor branch than your hardware, eg. P4 kernel on a PII/III. Moral: Get a terminal server on the serial port and compile your own kernels. > All four servers were using standard hardware; there were nothing exotic. Are they all identical? Is there any hardware that is/isn't in the machines that did/didn't boot? (eg. 3ware RAID controllers? ;-) > Should I compile my own kernel instead? (I have never done it before). IMHO. Yes. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Sat Aug 17 03:33:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7H7WsiB018647; Sat, 17 Aug 2002 03:32:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7H67SD17231 for vserver.list; Sat, 17 Aug 2002 02:07:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chimta04.algx.net (chimta04.algx.net [216.99.233.79]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7H67RY17227 for ; Sat, 17 Aug 2002 02:07:27 -0400 Received: from mail.azera.net (lvs-1.azera.net [207.8.113.133]) by chimmx04.algx.net (iPlanet Messaging Server 5.1 HotFix 0.6 (built Apr 26 2002)) with ESMTP id <0H0Z00FLL50F28@chimmx04.algx.net> for vserver@solucorp.qc.ca; Sat, 17 Aug 2002 01:07:27 -0500 (CDT) Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.azera.net (Postfix) with ESMTP id 58F4462098 for ; Sat, 17 Aug 2002 01:06:51 -0500 (CDT) Date: Sat, 17 Aug 2002 01:06:51 -0500 (CDT) From: vserver-list@azera.net Subject: Re: [vserver] Newbie Question on Kernel In-reply-to: X-X-Sender: To: VServer Patch List Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Content-transfer-encoding: 7BIT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1065 > Are they all identical? Is there any hardware that is/isn't in the machines > that did/didn't boot? (eg. 3ware RAID controllers? ;-) > > > Should I compile my own kernel instead? (I have never done it before). > > IMHO. Yes. > > -Paul > LOL!! yes, its very easy to roll your own kernel, unless it doesn't work. especially if you are using esoteric raid controllers that aren't even real raid controllers... or don't even use scsi. sorry, couldn't resist :) to original poster: if you are to the point that you want to play with/help develop the vserver project you should be comfortable rolling your own kernels. rite of passage and all that. inevitably you will want something the there-for-your-convenience binary kernels don't include. esp. if you use more than 1G ram. ha! From vserver.error@solucorp.qc.ca Sun Aug 18 23:18:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7J3I6iB015795; Sun, 18 Aug 2002 23:18:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7J1d5V05088 for vserver.list; Sun, 18 Aug 2002 21:39:05 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.acun.net ([208.153.105.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7J1d3Y05084 for ; Sun, 18 Aug 2002 21:39:04 -0400 Received: from darkstar (nosyarntya@darkstar.acun.net [206.27.86.12]) by mail.acun.net (8.11.6/8.11.6) with ESMTP id g7J1d9U22864 for ; Sun, 18 Aug 2002 21:39:10 -0400 Content-Type: text/plain; charset="us-ascii" From: George To: vserver@solucorp.qc.ca Subject: [vserver] Apache in a Vserver with multiple IP's Date: Sun, 18 Aug 2002 21:39:09 -0400 User-Agent: KMail/1.4.2 MIME-Version: 1.0 Message-Id: <200208182139.09885.thumper@acun.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g7J1d3Y05084 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1066 I feel like I missed something, the mutli-ip setup of the vserver went fine, can ping the ip's from another machine fine but Apache refuses to bind to anything other that the first ip listed, VirtualHost, Listen and BindAddress refuse to listen to any other ip than the first one listed. I'm starting apache with apachectl not v_httpd, I know already that it binds to a single ip. Any hints? George From vserver.error@solucorp.qc.ca Sun Aug 18 23:44:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7J3imiB015941; Sun, 18 Aug 2002 23:44:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7J2Yac06626 for vserver.list; Sun, 18 Aug 2002 22:34:36 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts23-srv.bellnexxia.net (tomts23.bellnexxia.net [209.226.175.185]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7J2YZY06622 for ; Sun, 18 Aug 2002 22:34:36 -0400 Received: from electronted1qu ([206.172.246.176]) by tomts23-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020819023323.SFJY13064.tomts23-srv.bellnexxia.net@electronted1qu> for ; Sun, 18 Aug 2002 22:33:23 -0400 Message-ID: <000801c24741$add292a0$b0f6acce@electronted1qu> From: "Jean-Philippe Beique" To: References: <200208182139.09885.thumper@acun.com> Subject: Re: [vserver] Problem in a Vserver with multiple IP's Date: Sun, 18 Aug 2002 22:23:41 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4807.1700 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1067 First of all i would just thanks all the coder of vserver and everybody that are participating in this project. Without you i would pay over thousand of dollars to start a company wich is simply impossible at the moment. We are using vserver for multiple thing such as apache webhosting, shoutcast streaming, ffmpeg audio-video streaming and internet realy chat services. The reason that i am writing this super long email and carefully writed (because i'm not that excellent in english) is because we have a bug with the vserver. I would be very happy if anybody in the mailing list can try what we are doing and give us maybe a solution to our nightmare. The vserver in the cvs talk about multi-ip capability wich is very very good. Now that we know that the multi-ip is disponible, we patch the vserver and try to run our services on the vserver. There is a few things that we cannot resolved to work. When we are launching a background that use another ip that the first ip listed in the iproot we got a few error (cannot connect,using another ip).To solve the problem we made the ip public to every vserver on the main server -- iproot=* (*=all) By this way anybody can run services in the vserver but we cannot restrict access to the ip so this is our first problem. (the type of service that we run doesn't work with your patch). Second problem that we got is that the server cannot run identd services on multiple vserver. How can we made it run more than once... When we try to launch a identd server on a vserver there is no problem with this vserver all the user can identify themself with identd but other vserver cannot because it cannot start more than one identd server at the time on all the server wich is particularly bad for our company.So to resume... technically way it look like that --------------------------------- technical part---------- To make you in the context I got a Root server with 120 real IPS Accessible from the internet From 207.X.X.1 To 207.X.X.120 ( eth0 to eth0:120 ) I need each vserver to have 16 IPS so i set in one vserver: IPROOT="207.X.X.1 207.X.X.2 207.X.X.2 207.X.X.3 207.X.X.4" But with this configuration some application do not work correctly For exemple -1 eggdrop can only be start on the first IP on the list and i try to start eggdrop on another IP the eggdrop do not start at all - 2 psybnc can only use the first ips on the list for vhost The only whay i found for those application to work correctely is to set in a vserver IPROOT= but with IPROOT= vserver can use all IPS of the ROOT SERVER and 2 vserver can use and share the same IPS i very nned to limit acess to ip in a vserver and support for eggdrop and bnc --------------------------------technical part end--------- Anyone got an configuration file exemple for v_xxx pseudo services support multi-IP configuration file ? I try to bind identd deamon on 10 IP from x.x.x.97 to x.x.x.107 i make my own script v_identd and configiration file identd.conf in /etc/vservices/inetd.conf got this error VSERVER:/etc/init.d# ./v_inetd restart ipv4root is now X.X.1.97 Can't exec X.X.1.98 (No such file or directory) Anyone can send me an exemple of configuration file plz also anyone got eggdrop and bnc working in a vserver with multiIps if i put IPROOT="x.x.x.1 x.x.x.2 x.x.x.3" eggdrop and bnc can only start from the first ip ont he list i got to set to IPROOT=0.0.0.0 for eggdrop and bnc to work but i this case user of a vserver can use all the ips of the root server :( --------------------------------- Thank you for reading and god bless vserver staff waiting for any comments or an answer, Jean-Philippe Béďque, Director of Electronic Box Comm www.eboxw.net From vserver.error@solucorp.qc.ca Mon Aug 19 00:01:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7J416iB016131; Mon, 19 Aug 2002 00:01:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7J2Qsu06458 for vserver.list; Sun, 18 Aug 2002 22:26:54 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tomts8-srv.bellnexxia.net (tomts8.bellnexxia.net [209.226.175.52]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7J2QnY06454 for ; Sun, 18 Aug 2002 22:26:49 -0400 Received: from electronted1qu ([206.172.246.176]) by tomts8-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020819022602.EGIU6888.tomts8-srv.bellnexxia.net@electronted1qu> for ; Sun, 18 Aug 2002 22:26:02 -0400 Message-ID: <000501c24740$9577f160$b0f6acce@electronted1qu> From: "Jean-Philippe Beique" To: References: <200208182139.09885.thumper@acun.com> Subject: Re: [vserver] Problem in a Vserver with multiple IP's Date: Sun, 18 Aug 2002 22:23:41 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4807.1700 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1068 First of all i would just thanks all the coder of vserver and everybody that are participating in this project. Without you i would pay over thousand of dollars to start a company wich is simply impossible at the moment. We are using vserver for multiple thing such as apache webhosting, shoutcast streaming, ffmpeg audio-video streaming and internet realy chat services. The reason that i am writing this super long email and carefully writed (because i'm not that excellent in english) is because we have a bug with the vserver. I would be very happy if anybody in the mailing list can try what we are doing and give us maybe a solution to our nightmare. The vserver in the cvs talk about multi-ip capability wich is very very good. Now that we know that the multi-ip is disponible, we patch the vserver and try to run our services on the vserver. There is a few things that we cannot resolved to work. When we are launching a background that use another ip that the first ip listed in the iproot we got a few error (cannot connect,using another ip).To solve the problem we made the ip public to every vserver on the main server -- iproot=* (*=all) By this way anybody can run services in the vserver but we cannot restrict access to the ip so this is our first problem. (the type of service that we run doesn't work with your patch). Second problem that we got is that the server cannot run identd services on multiple vserver. How can we made it run more than once... When we try to launch a identd server on a vserver there is no problem with this vserver all the user can identify themself with identd but other vserver cannot because it cannot start more than one identd server at the time on all the server wich is particularly bad for our company.So to resume... technically way it look like that --------------------------------- technical part---------- To make you in the context I got a Root server with 120 real IPS Accessible from the internet From 207.X.X.1 To 207.X.X.120 ( eth0 to eth0:120 ) I need each vserver to have 16 IPS so i set in one vserver: IPROOT="207.X.X.1 207.X.X.2 207.X.X.2 207.X.X.3 207.X.X.4" But with this configuration some application do not work correctly For exemple -1 eggdrop can only be start on the first IP on the list and i try to start eggdrop on another IP the eggdrop do not start at all - 2 psybnc can only use the first ips on the list for vhost The only whay i found for those application to work correctely is to set in a vserver IPROOT= but with IPROOT= vserver can use all IPS of the ROOT SERVER and 2 vserver can use and share the same IPS i very nned to limit acess to ip in a vserver and support for eggdrop and bnc --------------------------------technical part end--------- Anyone got an configuration file exemple for v_xxx pseudo services support multi-IP configuration file ? I try to bind identd deamon on 10 IP from x.x.x.97 to x.x.x.107 i make my own script v_identd and configiration file identd.conf in /etc/vservices/inetd.conf got this error VSERVER:/etc/init.d# ./v_inetd restart ipv4root is now X.X.1.97 Can't exec X.X.1.98 (No such file or directory) Anyone can send me an exemple of configuration file plz also anyone got eggdrop and bnc working in a vserver with multiIps if i put IPROOT="x.x.x.1 x.x.x.2 x.x.x.3" eggdrop and bnc can only start from the first ip ont he list i got to set to IPROOT=0.0.0.0 for eggdrop and bnc to work but i this case user of a vserver can use all the ips of the root server :( --------------------------------- Thank you for reading and god bless vserver staff waiting for any comments or an answer, Jean-Philippe Béďque, Director of Electronic Box Comm www.eboxw.net From vserver.error@solucorp.qc.ca Mon Aug 19 00:42:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7J4gCiB016306; Mon, 19 Aug 2002 00:42:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7J2quq07133 for vserver.list; Sun, 18 Aug 2002 22:52:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7J2qtY07129 for ; Sun, 18 Aug 2002 22:52:55 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g7J2qr026107; Sun, 18 Aug 2002 19:52:53 -0700 Date: Sun, 18 Aug 2002 19:52:53 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Linuxconf Mailing List cc: Subject: [vserver] Sendmail and DNS follow up Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1069 Several days ago I asked the linuxconf list for some help with _really_ strange sendmail behavior while using vservers. I discovered the solution but don't have a clue why it is working the way it is. What is comes down to is I have to add a 'mail.' CNAME for the domain pointing to the actual host that is entered as the MX record for the domain to be able to send mail from the main server to the domain in the vserver. The normal "don't use CNAMEs for MX records" applies when sending mail from other systems to the domain. This make any sense? Well it now works so I'm happy. I jsut hope when I upgrade the vserver kernel and its networking friends it still works. Cheers, Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Mon Aug 19 01:03:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7J53AiB016391; Mon, 19 Aug 2002 01:03:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7J4Kxp09654 for vserver.list; Mon, 19 Aug 2002 00:20:59 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.13thfloor.at (www.13thfloor.at [212.16.59.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7J4KwY09650 for ; Mon, 19 Aug 2002 00:20:58 -0400 Received: by www.13thfloor.at (Postfix, from userid 1001) id 939A1220A94; Mon, 19 Aug 2002 06:20:58 +0200 (CEST) Date: Mon, 19 Aug 2002 06:20:58 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] Sendmail and DNS follow up Message-ID: <20020819042058.GD16775@www.13thfloor.at> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1070 On Sun, Aug 18, 2002 at 07:52:53PM -0700, Roderick A. Anderson wrote: > Several days ago I asked the linuxconf list for some help with _really_ > strange sendmail behavior while using vservers. I discovered the solution > but don't have a clue why it is working the way it is. hmm the linuxconf list, with vserver sendmail problems? > What is comes down to is I have to add a 'mail.' CNAME for the domain > pointing to the actual host that is entered as the MX record for the > domain to be able to send mail from the main server to the domain in the > vserver. The normal "don't use CNAMEs for MX records" applies when > sending mail from other systems to the domain. sounds like treating symtoms, not curing the disease ... > This make any sense? Well it now works so I'm happy. I jsut hope when I > upgrade the vserver kernel and its networking friends it still works. can you give an example of your DNS configurations (working/non-working) and a mailtrace/log from sendmail? best, Herbert From vserver.error@solucorp.qc.ca Mon Aug 19 01:49:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7J5n9iB016596; Mon, 19 Aug 2002 01:49:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7J4F6g09501 for vserver.list; Mon, 19 Aug 2002 00:15:06 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.13thfloor.at (www.13thfloor.at [212.16.59.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7J4F5Y09497 for ; Mon, 19 Aug 2002 00:15:05 -0400 Received: by www.13thfloor.at (Postfix, from userid 1001) id CA242220A94; Mon, 19 Aug 2002 06:15:04 +0200 (CEST) Date: Mon, 19 Aug 2002 06:15:04 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] Problem in a Vserver with multiple IP's Message-ID: <20020819041504.GC16775@www.13thfloor.at> References: <200208182139.09885.thumper@acun.com> <000501c24740$9577f160$b0f6acce@electronted1qu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <000501c24740$9577f160$b0f6acce@electronted1qu> User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1071 On Sun, Aug 18, 2002 at 10:23:41PM -0700, Jean-Philippe Beique wrote: > First of all i would just thanks all the coder of vserver and > everybody that are participating in this project. thats nice ... > Without you i would pay over thousand of dollars to start a company > wich is simply impossible at the moment. so you saved some (a lot of) money, to start your "impossible" company ... thats good too! > We are using vserver for multiple thing such as apache webhosting, > shoutcast streaming, ffmpeg audio-video streaming and internet > realy chat services. The reason that i am writing this super long > email and carefully writed (because i'm not that excellent in > english) is because we have a bug with the vserver. hmm a bug? > I would be very happy if anybody in the mailing list can try what > we are doing and give us maybe a solution to our nightmare. so save some more money, by utilizing more, free resources? a nightmare? maybe stop dreaming? --- end of sarcasm --- > The vserver in the cvs talk about multi-ip capability wich is very > very good. Now that we know that the multi-ip is disponible, we > patch the vserver and try to run our services on the vserver. what exactly did you patch? (if you patched at all) > There is a few things that we cannot resolved to work. > When we are launching a background that use another ip that the > first ip listed in the iproot we got a few error (cannot connect, > using another ip). can you give an example? and include the errors? > To solve the problem we made the ip public to every vserver on > the main server -- iproot=* (*=all) > By this way anybody can run services in the vserver but we cannot > restrict access to the ip so this is our first problem. > (the type of service that we run doesn't work with your patch). > Second problem that we got is that the server cannot run identd > services on multiple vserver. How can we made it run more than > once... When we try to launch a identd server on a vserver there > is no problem with this vserver all the user can identify themself > with identd but other vserver cannot because it cannot start more > than one identd server at the time on all the server wich is > particularly bad for our company. > So to resume... technically way it look like that > > --------------------------------- technical part---------- > To make you in the context > I got a Root server with 120 real IPS Accessible from the internet > From 207.X.X.1 To 207.X.X.120 ( eth0 to eth0:120 ) is it necessary to assign the IPs manually? the vserver tools usually assign the IPs at server start/stop > I need each vserver to have 16 IPS so i set in one vserver: > IPROOT="207.X.X.1 207.X.X.2 207.X.X.2 207.X.X.3 207.X.X.4" > > But with this configuration some application do not work correctly > > For exemple > -1 eggdrop can only be start on the first IP on the list and i try > to start eggdrop on another IP the eggdrop do not start at all > - 2 psybnc can only use the first ips on the list for vhost I think this wasn't reproducible or simply was not reproduced. > The only whay i found for those application to work correctely is > to set in a vserver > IPROOT= > > but with IPROOT= > vserver can use all IPS of the ROOT SERVER and 2 vserver can use > and share the same IPS > > i very nned to limit acess to ip in a vserver and support for > eggdrop and bnc > --------------------------------technical part end--------- > > Anyone got an configuration file exemple for v_xxx pseudo services > support multi-IP configuration file ? again v_xxx scripts are used in the main server to prevent services/daemons from binding to ALL possible addresses (thereby making any further bind within any virtual server impossible) the NEW (read version 0.19) tools/scripts honor the multiple IP feature for any v_xxx service, the OLD (read version 0.18) scripts didn't ... my workaraound for 0.18 was (for example for v_sshd) -----------snip----------- #!/bin/sh # chkconfig: - 55 25 # description: Wrapper to start sshd bound to multiple IPs IP="eth0 eth1" if [ -f /etc/vservices/sshd.conf ] ; then . /etc/vservices/sshd.conf fi IPC=`for n in $IP; do echo "--ip $n"; done` exec /usr/sbin/chbind $IPC /etc/init.d/sshd $* -----------snip----------- > I try to bind identd deamon on 10 IP from x.x.x.97 to x.x.x.107 > i make my own script v_identd and configiration file identd.conf > in /etc/vservices/inetd.conf so this binding fails? > got this error > VSERVER:/etc/init.d# ./v_inetd restart > ipv4root is now X.X.1.97 > Can't exec X.X.1.98 (No such file or directory) inetd or identd? or identd over inetd? anyway you have some bug in your script or configuration. > Anyone can send me an exemple of configuration file plz you can use the given example, or just the chbind tool to further reduce the used addresses (subset of the addresses assigned to the vserver) > also anyone got eggdrop and bnc working in a vserver with > multiIps if i put IPROOT="x.x.x.1 x.x.x.2 x.x.x.3" eggdrop > and bnc can only start from the first ip ont he list > i got to set to IPROOT=0.0.0.0 for eggdrop and bnc to work > but i this case user of a vserver can use all the ips of > the root server :( > > --------------------------------- > Thank you for reading and god bless vserver staff > > waiting for any comments or an answer, Jean-Philippe B??que, > Director of Electronic Box Comm www.eboxw.net best, Herbert From vserver.error@solucorp.qc.ca Mon Aug 19 05:14:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7J9DqiB018182; Mon, 19 Aug 2002 05:13:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7J7duO15633 for vserver.list; Mon, 19 Aug 2002 03:39:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from hofmann.snowcra.sh (pc2-woki1-6-cust25.gfd.cable.ntl.com [80.6.41.25]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7J7dtY15629 for ; Mon, 19 Aug 2002 03:39:55 -0400 Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id 6C47A2D69; Mon, 19 Aug 2002 08:39:53 +0100 (BST) Date: Mon, 19 Aug 2002 08:39:52 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca, "Peter Kwan Chan" Subject: Re: [vserver] Newbie Question on Kernel In-Reply-To: <000401c24589$776a3380$ed23bd41@PremiumFood> References: <000401c24589$776a3380$ed23bd41@PremiumFood> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1072 The first thing you should do is make sure you have the exact same .config file as your working kernel. Also make sure you have a stable gcc (2.95.x is best). Once you have copied the .config to your freshly unpacked and successfully patched kernel source tree, use `make oldconfig' to only ask new questions - this should skip the majority of the questions. If you have trouble finding the right .config, try getting the Red Hat kernel source packages, they should have it. Sam. On Fri, 16 Aug 2002 20:00:23 -0500 "Peter Kwan Chan" wrote: > Well, the two that worked right away were Celeron 800 and Celeron 1300. > The two that didn't work were Athlon 1 GHz (this one works after > correcting a "driver problem") and Pentium 4 1.6 GHz (currently waiting > for the tech to bring up the server). Of course, different versions were > used. However, they are all pretty modern processors. > > They were not identical, but they were all using standard hardware (IDE > drives) and all had a working Red Hat kernel before (7.2 or 7.3). > > I can't get serial access because the data center(s) that I am in > doesn't support/offer it. > > I will try to custom-compile one, but I fear I may mess up (I am reading > the kernel how-tos now). In the meantime, any other pointers/hints/ideas > would be greatly appreciated. > > Thanks, > > Peter > > -----Original Message----- > From: Paul Sladen [mailto:vserver@paul.sladen.org] > Sent: Friday, August 16, 2002 5:56 PM > To: VServer Patch List > Subject: Re: [vserver] Newbie Question on Kernel > > On Fri, 16 Aug 2002, Peter Kwan Chan wrote: > > > > [...] Onetime a tech told me that it was "a driver" problem, and this > > latest time the kernel "freezes at uncompressing kernel." > > Could be trying to boot a kernel compiled for a more recent processor > branch > than your hardware, eg. P4 kernel on a PII/III. > > Moral: Get a terminal server on the serial port and compile your own > kernels. > > > All four servers were using standard hardware; there were nothing > exotic. > > Are they all identical? Is there any hardware that is/isn't in the > machines > that did/didn't boot? (eg. 3ware RAID controllers? ;-) > > > Should I compile my own kernel instead? (I have never done it before). > > IMHO. Yes. > > -Paul > -- > Nottingham, GB > -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 If Karl, instead of writing a lot about capital, had made a lot of it ... it would have been much better. KARL MARX'S MOTHER From vserver.error@solucorp.qc.ca Mon Aug 19 07:17:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7JBHPiB018825; Mon, 19 Aug 2002 07:17:25 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JAAnq21740 for vserver.list; Mon, 19 Aug 2002 06:10:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JAAmY21736 for ; Mon, 19 Aug 2002 06:10:48 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 5FD487A5D2; Mon, 19 Aug 2002 11:10:48 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 5EFBF92077 for ; Mon, 19 Aug 2002 11:10:48 +0100 (BST) Date: Mon, 19 Aug 2002 11:10:48 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Apache in a Vserver with multiple IP's In-Reply-To: <200208182139.09885.thumper@acun.com> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1073 On Sun, 18 Aug 2002, George wrote: > [...] Apache refuses to bind to anything other that the first ip listed, > VirtualHost, Listen and BindAddress refuse to listen to any other ip > than the first one listed. Binding to `0.0.0.0' binds *only* to the first address in a vserver--always has done. To use extra IP addresses you have to put multiple : # Site on first IP # Another site on first IP # Third first IP # Fourth site Second IP address As you may have noticed it is possibley to run multiple websites on a single IP address (!). Unless you are serving SSL websites there is probably no reason to be using more than one IP address. IP address space is a *scarce resource*, please use it *very carefully*. > I'm starting apache with apachectl not v_httpd, I know already that it binds > to a single ip. v_httpd is a kludge because people want to run apache on the *host* server aswell. If people would stop doing this, it could go away completely--don't use it in a vserver. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Aug 19 07:56:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7JBu5iB019021; Mon, 19 Aug 2002 07:56:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JALkb22033 for vserver.list; Mon, 19 Aug 2002 06:21:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JALgY22027 for ; Mon, 19 Aug 2002 06:21:46 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id B5C8D7A5D2; Mon, 19 Aug 2002 11:21:42 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id B4DD892077 for ; Mon, 19 Aug 2002 11:21:42 +0100 (BST) Date: Mon, 19 Aug 2002 11:21:42 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Sendmail and DNS follow up In-Reply-To: Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1074 On Sun, 18 Aug 2002, Roderick A. Anderson wrote: > What is comes down to is I have to add a 'mail.' CNAME for the domain > pointing to the actual host that is entered as the MX record [...] I'm not sure quite what your problem is/was. It is clearly a DNS configuration issue and not vserver related though. You *cannot* use *any other* type of resource-record if you have already associated a CNAME with that entry. It is *Illegal*. By personal recommendation is /not/ to use CNAMEs--purely to use A, AAAA and MX records for hosts, as most people who believe they know the implicitions of using CNAMEs, don't. I won't go as far as saying `never use CNAME records', although this is the advice give to my customers. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Aug 19 08:18:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7JCIDiB019170; Mon, 19 Aug 2002 08:18:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JApMD23019 for vserver.list; Mon, 19 Aug 2002 06:51:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JApLY23015 for ; Mon, 19 Aug 2002 06:51:21 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id BA8B57A5D2; Mon, 19 Aug 2002 11:51:21 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id B998792077 for ; Mon, 19 Aug 2002 11:51:21 +0100 (BST) Date: Mon, 19 Aug 2002 11:51:21 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Problem in a Vserver with multiple IP's In-Reply-To: <000801c24741$add292a0$b0f6acce@electronted1qu> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1075 On Sun, 18 Aug 2002, Jean-Philippe Beique wrote: > Without you i would pay over thousand of dollars to start a company wich is > simply impossible at the moment. Have you considered supporting the Free Software that has made this possible for you by paying "over a thousand dollars" to either the Free Software Foundation, or perhaps the author who has put in many weeks of development time? > The vserver in the cvs talk about multi-ip capability [...] The most recent ctx-12/13 patches (utils-0.19) have this in: ftp://ftp.solucorp.qc.ca/pub/vserver/patch-2.4.19ctx-13 > Second problem that we got is that the server cannot run identd services > on multiple vserver. Stop running ident in the main server; you don't need anything except SSH running on the Host server. (infact, stop running inetd in there too). ("Same answer again": Ident in the main server has already grabbed the auth [ident] port for every single IP address (`0.0.0.0') on the [whole] server.) > --------------------------------- technical part---------- > To make you in the context > I got a Root server with 120 real IPS Accessible from the internet From > 207.X.X.1 To 207.X.X.120 ( eth0 to eth0:120 ) > > I need each vserver to have 16 IPS so i set in one vserver: > IPROOT="207.X.X.1 207.X.X.2 207.X.X.2 207.X.X.3 207.X.X.4" > > But with this configuration some application do not work correctly > > For exemple > -1 eggdrop can only be start on the first IP on the list and i try to start > eggdrop on another IP the eggdrop do not start at all > - 2 psybnc can only use the first ips on the list for vhost These two programs seem to be used for `vanity' IRC addresses and seem to promote wasting of precious IP address space. The previous person who complained that he couldn't get these programs to work, seemed to not want to put any effort into helping to find out *why* they weren't working for him (or other people as you seem to be having a similar problem). If you can find out where in the source the problem you believe is happening, I'm sure people will work to fix a bug if one is there in the vserver portion (rather than the userspace application program). > Anyone got an configuration file exemple for v_xxx pseudo services support > multi-IP configuration file ? Don't run anything except SSH--(including disabling inetd)--in the host server (and manually set SSH address using: ListenAddress 192.168.0.2 directive in the `/etc/ssh/sshd_config' file). This will get rid of alot of your `problems' and allow you to find out what is happening more clearly. > i got to set to IPROOT=0.0.0.0 for eggdrop and bnc to work but i this > case user of a vserver can use all the ips of the root server :( What exactly are these programs complaining about when you set *their* IP address in *their* configuration file or command-line parameters to be something different? Is there an binding to localhost going on in there that could be causing any problems? -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Aug 19 09:53:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7JDqgiB019607; Mon, 19 Aug 2002 09:52:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JCLf525990 for vserver.list; Mon, 19 Aug 2002 08:21:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JCLeY25986 for ; Mon, 19 Aug 2002 08:21:41 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g7JCLgh31279 for ; Mon, 19 Aug 2002 05:21:42 -0700 Date: Mon, 19 Aug 2002 05:21:42 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] Sendmail and DNS follow up In-Reply-To: <20020819042058.GD16775@www.13thfloor.at> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1076 On Mon, 19 Aug 2002, Herbert Poetzl wrote: > On Sun, Aug 18, 2002 at 07:52:53PM -0700, Roderick A. Anderson wrote: > > Several days ago I asked the linuxconf list for some help with _really_ > > strange sendmail behavior while using vservers. I discovered the solution > > but don't have a clue why it is working the way it is. > > hmm the linuxconf list, with vserver sendmail problems? Well originally I thought it was a change in LC because it started happening right after I upgraded LC but never let the LC list know I was using vserver. > sounds like treating symtoms, not curing the disease ... I agree. When I get a chance to look at it more indepth I hope to sort it out. But it was causing a problem so I found and used a bandage. > can you give an example of your DNS configurations > (working/non-working) and a mailtrace/log from sendmail? Here are the applicable lines from /etc/named.conf zone "rimrocksoftware.com" { type master; file "rimrocksoftware.com"; allow-transfer{ 207.170.227.121; 207.250.222.10; }; }; Here is the /var/named/rimrocksoftware.com file $TTL 300 @ IN SOA rimrock.rimrocksoftware.com. raanders.main.cy ber-office.net. ( 2002081802 ; serial 1H ; refresh 15 ; retry 14D ; expire 12H ; default_ttl ) rimrock IN A 216.64.180.232 www IN CNAME main.cyber-office.net. mail IN CNAME rimrock.rimrocksoftware.com. @ IN MX 5 mail.rimrocksoftware.com. @ IN NS ns2.asisna.com. @ IN NS ns1.asisna.com. @ IN A 216.64.180.232 Not sure how to run the sendmail trace but here are the lines from /var/log/maillog Aug 18 05:28:43 main sendmail[18824]: g7ICShu18824: from=raanders, size=113, class=0, nrcpts=1, msgid=<200208181228.g7ICShu18824@main.cyber-office.net>, relay=raanders@localhost Aug 18 05:28:43 main sendmail[18827]: g7ICShu18824: SYSERR(raanders): MX list for rimrocksoftware.com points back to main.cyber-office.net Aug 18 05:28:43 main sendmail[18827]: g7ICShu18824: to=raanders@rimrocksoftware.com, ctladdr=raanders (10009/10009), delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=30113, relay=rimrocksoftware.com, dsn=5.3.5, stat=Local configuration error Aug 18 05:28:43 main sendmail[18827]: g7ICShu18824: g7ICSht18827: DSN: Local configuration error I'm hoping this is just a user error on my part. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Mon Aug 19 11:04:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.12.1/8.12.1) with ESMTP id g7JF3miB019983; Mon, 19 Aug 2002 11:03:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JDSEU28301 for vserver.list; Mon, 19 Aug 2002 09:28:14 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JDSDY28297 for ; Mon, 19 Aug 2002 09:28:13 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id BC5D57A5D2; Mon, 19 Aug 2002 14:28:13 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id B48F792077 for ; Mon, 19 Aug 2002 14:28:13 +0100 (BST) Date: Mon, 19 Aug 2002 14:28:13 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Sendmail and DNS follow up In-Reply-To: Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-VirusScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1077 On Mon, 19 Aug 2002, Roderick A. Anderson wrote: > @ IN MX 5 mail.rimrocksoftware.com. > mail IN CNAME rimrock.rimrocksoftware.com. > rimrock IN A 216.64.180.232 @ IN MX 5 -> CNAME -> CNAME -> IN A 216.64.180.232 RPC974 explicitly states that MX records SHALL NOT point to an alias defined by a CNAME. (ie, an MX must point straight to a A record). > @ IN SOA rimrock.rimrocksoftware.com. raanders.main.cyber-office.net. ( > @ IN NS ns2.asisna.com. > @ IN NS ns1.asisna.com. Also in the above, you've said that "rimrock.rimrocksoftware.com" is the SOA nameserver; yet list ns{1,2}.asisna.com as the nameservers for the domains within the zonefile and .com TLD zone and the allow-transfer statement does not allow transfers out to ns2.asisna.com (216.64.180.11). Is rimrock even running a DNS server? (firewalled from me perhaps?). > 15 ; retry 15 /seconds/ is a *very* low retry value in the SOA!! Lets clean this up: you should find it /harder/ to shoot yourself in the foot with the following (no CNAMEs in sight!): $ORIGIN rimrocksoftware.com. $TTL 1H @ IN SOA rimrock raanders.main.cyber-office.net ( 2002081802 ; Serial 1H ; Refresh 15M ; Retry 2W ; Expire 3H ) ; Minimum (fail timeout) IN NS ns1.asisna.com. IN NS ns2.asisna.com. IN MX 5 mail ; rimrock IN A 216.64.180.226 ; main.cyber-office.net. www IN A 216.64.180.226 ; main.cyber-office.net. rimrock IN A 216.64.180.232 mail IN A 216.64.180.232 ; rimrock ;-- or *better still*, cut out any mention of `mail' and just put: @ IN MX 5 rimrock -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Aug 19 20:46:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K0jxs07756; Mon, 19 Aug 2002 20:46:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7K0Moj15178 for vserver.list; Mon, 19 Aug 2002 20:22:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from puma.vgertech.com (adsl-b3-74-156.telepac.pt [213.13.74.156]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7K0MnY15174 for ; Mon, 19 Aug 2002 20:22:49 -0400 Received: (qmail 590 invoked from network); 20 Aug 2002 00:29:55 -0000 Received: from unknown (HELO vgertech.com) (127.0.0.1) by localhost with SMTP; 20 Aug 2002 00:29:55 -0000 Message-ID: <3D618D82.9090905@vgertech.com> Date: Tue, 20 Aug 2002 01:29:54 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Re-debian References: <000a01c247db$2fe2d540$0301a8c0@jhd> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1078 support wrote: > Is mini-debian-vservers-020.tgz disponible for download? > cause it can save some bandwitdth to not run apt-get ugrade on each new > vserver > if you need a server for put it on > i can help you is not the fastess connection but is all i got 1.2 Mgbs Yes, please! =) If someone setup's a new mirror send me the details and I'll update mirrors.txt Thnaks, Nuno Silva > > Thx > > -Hi! > -I made this image some time ago :) > > -I've updated it to mini-debian-vservers-020.tgz just now, manly because > -the ssh shipped with debian woody, by the time 016 was released, had a bug. > > -!!this is not a problem if you did the *recommended* apt-get update ; > -apt-get upgrade recently!! ;) > > -Changes were: > - "apt-get upgraded" the system to woody-current (20020820); > - the root password is now *'ed; > - the .txt states that ssh listens on port 22222 (thanks for the > -reminder, support@shop.eboxw.net ); > - vhalt and vreboot are from vserver-019. > > -So, if you downloaded the 016 image you don't have to download 020 > -because the update is trivial :) > > -Regards, > -Nuno Silva From vserver.error@solucorp.qc.ca Mon Aug 19 20:48:46 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K0mgs07913; Mon, 19 Aug 2002 20:48:42 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7K0AOT00486; Mon, 19 Aug 2002 20:10:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JNrm014611 for vserver.list; Mon, 19 Aug 2002 19:53:48 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from shop.eboxw.net ([205.236.1.11]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JNrlY14607 for ; Mon, 19 Aug 2002 19:53:48 -0400 Received: from cpu183.adsl.qc.bellglobal.com ([207.236.226.187] helo=jhd) by shop.eboxw.net with smtp (Exim 3.35 #1 (Debian)) id 17gwUa-0006z2-00 for ; Tue, 20 Aug 2002 01:03:28 +0100 Message-ID: <002901c247db$ac8c9720$0301a8c0@jhd> From: "support" To: Subject: [vserver] RE-mini-debian-vservers-020.tgz Date: Mon, 19 Aug 2002 19:53:52 -0400 Organization: Electronic Comminucation MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0026_01C247BA.24E23990" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1079 This is a multi-part message in MIME format. ------=_NextPart_000_0026_01C247BA.24E23990 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Sorry i didnt see that you already upload it to your server thx a lot -I've updated it to mini-debian-vservers-020.tgz just now, manly because = -the ssh shipped with debian woody, by the time 016 was released, had a = bug. ------=_NextPart_000_0026_01C247BA.24E23990 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Sorry i didnt see that you already = upload it to=20 your server thx a lot
 
-I've updated=20 it to mini-debian-vservers-020.tgz just now, manly because
-the ssh = shipped=20 with debian woody, by the time 016 was released, had a=20 bug.
------=_NextPart_000_0026_01C247BA.24E23990-- From vserver.error@solucorp.qc.ca Mon Aug 19 20:48:46 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K0mks07915; Mon, 19 Aug 2002 20:48:46 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7K05JT00452; Mon, 19 Aug 2002 20:05:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JNoM314578 for vserver.list; Mon, 19 Aug 2002 19:50:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from shop.eboxw.net ([205.236.1.11]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JNoHY14573 for ; Mon, 19 Aug 2002 19:50:21 -0400 Received: from cpu183.adsl.qc.bellglobal.com ([207.236.226.187] helo=jhd) by shop.eboxw.net with smtp (Exim 3.35 #1 (Debian)) id 17gwRE-0006xP-00 for ; Tue, 20 Aug 2002 01:00:00 +0100 Message-ID: <000a01c247db$2fe2d540$0301a8c0@jhd> From: "support" To: Subject: [vserver] Re-debian Date: Mon, 19 Aug 2002 19:50:19 -0400 Organization: Electronic Comminucation MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0007_01C247B9.A5B37A80" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1080 This is a multi-part message in MIME format. ------=_NextPart_000_0007_01C247B9.A5B37A80 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Is mini-debian-vservers-020.tgz disponible for download? cause it can save some bandwitdth to not run apt-get ugrade on each new = vserver if you need a server for put it on i can help you is not the fastess connection but is all i got 1.2 Mgbs Thx=20 -Hi! -I made this image some time ago :) -I've updated it to mini-debian-vservers-020.tgz just now, manly because = -the ssh shipped with debian woody, by the time 016 was released, had a = bug. -!!this is not a problem if you did the *recommended* apt-get update ;=20 -apt-get upgrade recently!! ;) -Changes were: - "apt-get upgraded" the system to woody-current (20020820); - the root password is now *'ed; - the .txt states that ssh listens on port 22222 (thanks for the=20 -reminder, support@shop.eboxw.net); - vhalt and vreboot are from vserver-019. -So, if you downloaded the 016 image you don't have to download 020=20 -because the update is trivial :) -Regards, -Nuno Silva ------=_NextPart_000_0007_01C247B9.A5B37A80 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Is mini-debian-vservers-020.tgz disponible for = download?
cause it can save  some bandwitdth to not run apt-get = ugrade on=20 each new vserver
if you need a server for put it on
i can help you is not the fastess connection but is all i got 1.2=20 Mgbs
 
Thx 
 
-Hi!
-I made this image some time ago :)

-I've updated it = to=20 mini-debian-vservers-020.tgz just now, manly because
-the ssh = shipped with=20 debian woody, by the time 016 was released, had a bug.

-!!this is = not a=20 problem if you did the *recommended* apt-get update ;
-apt-get = upgrade=20 recently!!  ;)

-Changes were:
- "apt-get upgraded" the = system to=20 woody-current (20020820);
- the root password is now *'ed;
- the = .txt=20 states that ssh listens on port 22222 (thanks for the
-reminder, support@shop.eboxw.net);
- = vhalt and=20 vreboot are from vserver-019.

-So, if you downloaded the 016 = image you=20 don't have to download 020
-because the update is trivial=20 :)

-Regards,
-Nuno Silva
------=_NextPart_000_0007_01C247B9.A5B37A80-- From vserver.error@solucorp.qc.ca Mon Aug 19 20:48:56 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K0mqs07932; Mon, 19 Aug 2002 20:48:56 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JNj1T32710; Mon, 19 Aug 2002 19:45:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JM5WQ12308 for vserver.list; Mon, 19 Aug 2002 18:05:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.acun.net ([208.153.105.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JM5SY12304 for ; Mon, 19 Aug 2002 18:05:32 -0400 Received: from darkstar (nosyarntya@darkstar.acun.net [206.27.86.12]) by mail.acun.net (8.11.6/8.11.6) with ESMTP id g7JM5cU19254 for ; Mon, 19 Aug 2002 18:05:38 -0400 Content-Type: text/plain; charset="iso-8859-1" From: George To: vserver@solucorp.qc.ca Subject: Re: [vserver] Apache in a Vserver with multiple IP's Date: Mon, 19 Aug 2002 18:05:37 -0400 User-Agent: KMail/1.4.2 References: In-Reply-To: MIME-Version: 1.0 Message-Id: <200208191805.37297.thumper@acun.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g7JM5SY12304 Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1081 On Monday 19 August 2002 6:10 am, Paul Sladen wrote: > On Sun, 18 Aug 2002, George wrote: > > [...] Apache refuses to bind to anything other that the first ip listed, > > VirtualHost, Listen and BindAddress refuse to listen to any other ip > > than the first one listed. For anyone still scratching there head about Apache not listening on any other IP than the first in a multi-ip vserver setup: As it turns out Listen xxx.xxx.xxx.xxx:80 works IF it is up where the example is above the BindAddress section. I had always used it in the Include file I use for my virtual hosts, not sure why it would not work there on a vserver... ohwell... so an example would be to be sure BindAddress is commented out, Apache will bind to the first address anyway if you specify ServerName. and where the examples of Listen are add the ips and ports for the remaining ips. George From vserver.error@solucorp.qc.ca Mon Aug 19 20:49:00 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K0mus07937; Mon, 19 Aug 2002 20:49:00 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JNvqT00350; Mon, 19 Aug 2002 19:57:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JNZWw14309 for vserver.list; Mon, 19 Aug 2002 19:35:32 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from puma.vgertech.com (adsl-b3-74-156.telepac.pt [213.13.74.156]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7JNZUY14305 for ; Mon, 19 Aug 2002 19:35:31 -0400 Received: (qmail 32197 invoked from network); 19 Aug 2002 23:42:35 -0000 Received: from unknown (HELO vgertech.com) (127.0.0.1) by localhost with SMTP; 19 Aug 2002 23:42:35 -0000 Message-ID: <3D61826B.3000301@vgertech.com> Date: Tue, 20 Aug 2002 00:42:35 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? References: <001c01c247bd$0e700a90$0301a8c0@jhd> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1082 Hi! I made this image some time ago :) I've updated it to mini-debian-vservers-020.tgz just now, manly because the ssh shipped with debian woody, by the time 016 was released, had a bug. !!this is not a problem if you did the *recommended* apt-get update ; apt-get upgrade recently!! ;) Changes were: - "apt-get upgraded" the system to woody-current (20020820); - the root password is now *'ed; - the .txt states that ssh listens on port 22222 (thanks for the reminder, support@shop.eboxw.net); - vhalt and vreboot are from vserver-019. So, if you downloaded the 016 image you don't have to download 020 because the update is trivial :) Regards, Nuno Silva support wrote: > hello > debian run wounderfull for me > i use it on the main server and for the virtuals > > juste go to this adress > http://vserver.vgertech.com/ > > get > > __ > mini-debian-vservers-016.tgz > ------ > > small debian woody for use in vserver package. > not as small as it could be... > nuno.silva@vgertech.com > ------ > > installation: > - untar to vserver's (empty) "root" directory > - edit vserver's configuration > - start the vserver > - enter the vserver > - CHANGE the root password > - change /etc/apt/sources.list to a mirror near you > - apt-get update ; apt-get upgrade > ------ > > > > From vserver.error@solucorp.qc.ca Mon Aug 19 21:08:41 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K18ck08421; Mon, 19 Aug 2002 21:08:41 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JND0T32502; Mon, 19 Aug 2002 19:13:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JLPMx11202 for vserver.list; Mon, 19 Aug 2002 17:25:22 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chimta03.algx.net (chimta03.algx.net [216.99.233.78]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JLPLY11198 for ; Mon, 19 Aug 2002 17:25:21 -0400 Received: from mail.azera.net (lvs-1.azera.net [207.8.113.133]) by chimmx03.algx.net (iPlanet Messaging Server 5.1 (built May 7 2001)) with ESMTP id <0H1300K1GZEKYJ@chimmx03.algx.net> for vserver@solucorp.qc.ca; Mon, 19 Aug 2002 15:54:20 -0500 (CDT) Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.azera.net (Postfix) with ESMTP id 06B9D62098 for ; Mon, 19 Aug 2002 15:53:33 -0500 (CDT) Date: Mon, 19 Aug 2002 15:53:33 -0500 (CDT) From: vserver-list@azera.net Subject: Re: [vserver] adding other raid cards. In-reply-to: <20020819134658.e5767c831710@remtk.solucorp.qc.ca> X-X-Sender: To: vserver@solucorp.qc.ca Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Content-transfer-encoding: 7BIT Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1083 suh-weet! On Mon, 19 Aug 2002, Jacques Gelinas wrote: > On Fri, 16 Aug 2002 12:20:59 -0500, vserver-list@azera.net wrote > > > agreed. contrary to paul's original well-intentioned sentiments, getting > > most people on the list to use the same kernel has a benefit, since > > people's results should be more directly comparable. call me biased, but > > if the binary kernel had support for 4Gmem and 3ware i would happily use > > it over compiling my own... and imagine other folks would, too. i don't > > think people are running vserver on a 486 w/16Mb. IMHO the thing to avoid > > is turning the maintainer into a support group for non-vserver issues. > > The next release will have 3ware as a module. The SMP kernel do have 4Gmem > compiled. > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > From vserver.error@solucorp.qc.ca Mon Aug 19 21:08:45 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K18fk08423; Mon, 19 Aug 2002 21:08:45 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JNA4T32469; Mon, 19 Aug 2002 19:10:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JMb1713031 for vserver.list; Mon, 19 Aug 2002 18:37:01 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JMaxY13025 for ; Mon, 19 Aug 2002 18:37:00 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id F12A97E40 for ; Mon, 19 Aug 2002 17:35:34 -0400 (EDT) Message-ID: <3D61743E.1050207@netscape.net> Date: Mon, 19 Aug 2002 17:42:06 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.0) Gecko/20020530 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? References: <002401c247c9$af36d4c0$0301a8c0@jhd> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1084 Apparently it is not running. Sometimes when I start the vserver it goes through what looks like a small bootup script, and then other times it just starts. I am still trying to figure out why it does this, but for whatever reason it is not doing it now, and I think it probably should be. Also at one point there was an entry in ifconfig for the vserver but that also is not there any more. I probably ended up breaking something while I was screwing around with this. Will try to fix it tomorrow. How did you install the base package in debian? I patched my kernel and recompiled then compiled the source package and did "make install" was there anything else necessary? Brandon Hoult support wrote: > This package is a potato debian install compress in a .tar.gz > the name 0.16 is beacase it was release when 0.16 was the stable version > you can use it when any vservsion of vserver > > about ssh : ssh is install by default in this package and run on port > 22222 > > do ps ax to see if sshd is running > if not > look /etc/ssh/sshd_config to change port and listend argument > > thx > > > > -Ok, downloaded the tgz and tried it. You seem to have 0.16 installed - > -and I am using 0.19. I started the vserver but could not telnet or ssh > -to it. Figured ssh and telnet probably were not in your package so I > -entered it and updated the sources then tried to run apt-get update but > -got all kinds of errors "Couldn't stat source package list". I think > -the problem is likely on the main server and I don't see how using your > -virtual server will fix this. At this point things may bee so screwed > -up that I have to wipe the OS and start over. Will wait a few days to > -see if new suggestions arrive though. > > -Brandon. From vserver.error@solucorp.qc.ca Mon Aug 19 21:08:55 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K18pk08452; Mon, 19 Aug 2002 21:08:55 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMvmT32335; Mon, 19 Aug 2002 18:57:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JMciX13084 for vserver.list; Mon, 19 Aug 2002 18:38:44 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from merlin.zolotek.net (dial-62-64-166-30.access.uk.tiscali.com [62.64.166.30]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7JMcgY13080 for ; Mon, 19 Aug 2002 18:38:43 -0400 Received: from dial-62-64-227-3.access.uk.tiscali.com (merlin.zolotek.net [127.0.0.1]) by merlin.zolotek.net (Weasel v1.20) for ; 19 Aug 2002 23:39:02 From: "Lyn St George" To: "vserver@solucorp.qc.ca" Date: Mon, 19 Aug 2002 23:39:00 +0000 Priority: Normal X-Mailer: PMMail 1.96a For OS/2 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Subject: Re: [vserver] Apache in a Vserver with multiple IP's Message-ID: <200208192339.0000002H@merlin.zolotek.net> Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1085 On Mon, 19 Aug 2002 16:18:54 -0400, George wrote: >and I also tried it as you displayed below, but apache never binds to the >other 2 ips. A port scan reveals port 80 is not listening. > >btw I'm using kernel 2.4.19ctx-13 > >Thank you for the tips on ip conservation, I'm well aware of them, and I am >familure with the conf options, I've been using linux since 1995, along with >apache, etc. > >I've been looking for a sane vserver implimentation for some time, and I >beleve this is it. I have several vservers running, and working well. > >This one, where I really need several IP's in one vserver is making my brain >swell. You also need the following in httpd.conf: Listen ip1:80 Listen ip1:443 BindAddress ip1 Listen ip2:80 Listen ip2:443 BindAddress ip2 etc .. - Cheers Lyn St George +--------------------------------------------------------------------------------- + http://www.zolotek.net .. eCommerce hosting, consulting + http://www.os2docs.org .. some 'How To' stuff ... +---------------------------------------------------------------------------------- From vserver.error@solucorp.qc.ca Mon Aug 19 21:08:56 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K18tk08463 for ; Mon, 19 Aug 2002 21:08:56 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMdWT32193 for ; Mon, 19 Aug 2002 18:40:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JI8C705535 for vserver.list; Mon, 19 Aug 2002 14:08:12 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from wintrix.thermeon.com (w014.z216112083.lax-ca.dsl.cnc.net [216.112.83.14]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JI8BY05531 for ; Mon, 19 Aug 2002 14:08:11 -0400 Received: by WINTRIX.thermeon.com with Internet Mail Service (5.0.1461.28) id ; Mon, 19 Aug 2002 11:10:10 -0700 Message-ID: <9097D3905570D111947E00207810DFE17AF165@WINTRIX.thermeon.com> From: SSampson@thermeon.com To: vserver@solucorp.qc.ca Subject: [vserver] unsubscribe Date: Mon, 19 Aug 2002 11:09:31 -0700 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.0.1461.28) Content-Type: text/plain Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1086 unsubscribe From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:00 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K18uk08470 for ; Mon, 19 Aug 2002 21:09:00 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMdST32192 for ; Mon, 19 Aug 2002 18:40:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JHm3X04959 for vserver.list; Mon, 19 Aug 2002 13:48:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JHm3Y04955 for ; Mon, 19 Aug 2002 13:48:03 -0400 Received: from remtk.solucorp.qc.ca (g39-253.citenet.net [206.123.39.253]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7JI0qA55411 for ; Mon, 19 Aug 2002 14:00:52 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7JHi3E26888 for vserver@solucorp.qc.ca; Mon, 19 Aug 2002 13:44:03 -0400 From: Jacques Gelinas Date: Mon, 19 Aug 2002 13:44:03 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel 2.4.19 X-mailer: tlmpmail 0.6 Message-ID: <20020819134403.7a5d319db67a@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: RO X-Status: X-Keywords: X-UID: 1087 On Sat, 17 Aug 2002 02:00:21 -0500, Sconk wrote > On Sat, 17 Aug 2002 01:17:05 +0200 > Ivo De Decker wrote: > > > > > Yes, it's available from > > ftp://ftp.solucorp.qc.ca/pub/vserver/patch-2.4.19ctx-13 > I did find it after some time.. budt > http://www.solucorp.qc.ca/miscprj/s_context.hc?prjstate=1&nodoc=1 The link to patches > dont show it ;-( I was waiting until 2.4.19ctx-13 got some milage before pushing it as the recommended kernel. I will do this now. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:04 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K190k08477; Mon, 19 Aug 2002 21:09:04 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMdkT32194; Mon, 19 Aug 2002 18:40:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JHm4S04965 for vserver.list; Mon, 19 Aug 2002 13:48:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JHm4Y04961 for ; Mon, 19 Aug 2002 13:48:04 -0400 Received: from remtk.solucorp.qc.ca (g39-253.citenet.net [206.123.39.253]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7JI0sA55415 for ; Mon, 19 Aug 2002 14:00:54 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7JHkw326973 for vserver@solucorp.qc.ca; Mon, 19 Aug 2002 13:46:58 -0400 From: Jacques Gelinas Date: Mon, 19 Aug 2002 13:46:58 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] adding other raid cards. X-mailer: tlmpmail 0.6 Message-ID: <20020819134658.e5767c831710@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1088 On Fri, 16 Aug 2002 12:20:59 -0500, vserver-list@azera.net wrote > agreed. contrary to paul's original well-intentioned sentiments, getting > most people on the list to use the same kernel has a benefit, since > people's results should be more directly comparable. call me biased, but > if the binary kernel had support for 4Gmem and 3ware i would happily use > it over compiling my own... and imagine other folks would, too. i don't > think people are running vserver on a 486 w/16Mb. IMHO the thing to avoid > is turning the maintainer into a support group for non-vserver issues. The next release will have 3ware as a module. The SMP kernel do have 4Gmem compiled. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:04 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K194k08482; Mon, 19 Aug 2002 21:09:04 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMdxT32196; Mon, 19 Aug 2002 18:40:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JL38t10583 for vserver.list; Mon, 19 Aug 2002 17:03:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JL37Y10579 for ; Mon, 19 Aug 2002 17:03:08 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id 6C7447E40 for ; Mon, 19 Aug 2002 16:01:43 -0400 (EDT) Message-ID: <3D615E3E.8010305@netscape.net> Date: Mon, 19 Aug 2002 16:08:14 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.0) Gecko/20020530 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? References: <001c01c247bd$0e700a90$0301a8c0@jhd> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1089 Ok, downloaded the tgz and tried it. You seem to have 0.16 installed and I am using 0.19. I started the vserver but could not telnet or ssh to it. Figured ssh and telnet probably were not in your package so I entered it and updated the sources then tried to run apt-get update but got all kinds of errors "Couldn't stat source package list". I think the problem is likely on the main server and I don't see how using your virtual server will fix this. At this point things may bee so screwed up that I have to wipe the OS and start over. Will wait a few days to see if new suggestions arrive though. Brandon. support wrote: > hello > debian run wounderfull for me > i use it on the main server and for the virtuals > > juste go to this adress > http://vserver.vgertech.com/ > > get > > mini-debian-vservers-016.tgz > ------ > > small debian woody for use in vserver package. > not as small as it could be... > nuno.silva@vgertech.com > ------ > > installation: > - untar to vserver's (empty) "root" directory > - edit vserver's configuration > - start the vserver > - enter the vserver > - CHANGE the root password > - change /etc/apt/sources.list to a mirror near you > - apt-get update ; apt-get upgrade > ------ > > > From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:44 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19ek08495; Mon, 19 Aug 2002 21:09:44 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMeXT32221; Mon, 19 Aug 2002 18:40:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JI6ww05508 for vserver.list; Mon, 19 Aug 2002 14:06:58 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JI6vY05501 for ; Mon, 19 Aug 2002 14:06:58 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7JHtDb29219 for ; Mon, 19 Aug 2002 10:55:13 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Mon, 19 Aug 2002 11:06:15 -0700 MIME-Version: 1.0 Subject: Re: [vserver] vserver with debian host? Message-ID: <3D60D127.2065.2AAB85@localhost> Priority: normal In-reply-to: <3D6132F3.9000703@netscape.net> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1090 I typically do the setup manually so... I copy a template .conf, modify it, and then untar a woody.tar.gz into a new dir, and then start it up. On 19 Aug 2002 at 13:03, BrandonHoult wrote: > No, the build created them then I modified them before I started the > vserver... do they need to be in place before the build? > > Brandon. -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:48 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19ik08498; Mon, 19 Aug 2002 21:09:48 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMeOT32215; Mon, 19 Aug 2002 18:40:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JHnRL05002 for vserver.list; Mon, 19 Aug 2002 13:49:27 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JHnQY04998 for ; Mon, 19 Aug 2002 13:49:27 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7JHbfb28109 for ; Mon, 19 Aug 2002 10:37:41 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Mon, 19 Aug 2002 10:48:44 -0700 MIME-Version: 1.0 Subject: Re: [vserver] vserver with debian host? Message-ID: <3D60CD0C.19376.1AA125@localhost> Priority: normal In-reply-to: <3D612F45.2080300@netscape.net> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1091 did you create the .conf files before doing the build ? On 19 Aug 2002 at 12:47, BrandonHoult wrote: > I am trying to set up vserver with a debian woody host. I patched the > kernel and recompiled without any trouble then converted the rpms 0.19 > > {snip} > > # you can to give a little more capabilities (such as CAP_NET_RAW) > S_CAPS="CAP_NET_RAW" > #S_CAPS="" > -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:48 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19mk08503; Mon, 19 Aug 2002 21:09:48 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMeCT32213; Mon, 19 Aug 2002 18:40:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JHwQm05296 for vserver.list; Mon, 19 Aug 2002 13:58:26 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JHwPY05292 for ; Mon, 19 Aug 2002 13:58:25 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id 420807E40 for ; Mon, 19 Aug 2002 12:57:01 -0400 (EDT) Message-ID: <3D6132F3.9000703@netscape.net> Date: Mon, 19 Aug 2002 13:03:31 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.0) Gecko/20020530 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? References: <3D60CD0C.19376.1AA125@localhost> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1092 Russell Anthony wrote: >did you create the .conf files before doing the build ? > >On 19 Aug 2002 at 12:47, BrandonHoult wrote: > > > >>I am trying to set up vserver with a debian woody host. I patched the >>kernel and recompiled without any trouble then converted the rpms 0.19 >> >>{snip} >> >># you can to give a little more capabilities (such as CAP_NET_RAW) >>S_CAPS="CAP_NET_RAW" >>#S_CAPS="" >> >> >> > >-- >Russell Anthony >Network Development / Administration > > No, the build created them then I modified them before I started the vserver... do they need to be in place before the build? Brandon. From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:49 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19mk08508; Mon, 19 Aug 2002 21:09:49 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMeWT32217; Mon, 19 Aug 2002 18:40:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JHwfp05304 for vserver.list; Mon, 19 Aug 2002 13:58:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JHwfY05300 for ; Mon, 19 Aug 2002 13:58:41 -0400 Received: from remtk.solucorp.qc.ca (g39-253.citenet.net [206.123.39.253]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7JIBVA56438 for ; Mon, 19 Aug 2002 14:11:31 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7JHve027430 for vserver@solucorp.qc.ca; Mon, 19 Aug 2002 13:57:40 -0400 From: Jacques Gelinas Date: Mon, 19 Aug 2002 13:57:39 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vserver with debian host? X-mailer: tlmpmail 0.6 Message-ID: <20020819135739.3916b2b756f9@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1093 On Mon, 19 Aug 2002 12:47:49 -0500, BrandonHoult wrote > I am trying to set up vserver with a debian woody host. I patched the > kernel and recompiled without any trouble then converted the rpms 0.19 > to deb using alien, and that worked ok Ran "vserver test build" got a > bunch of errors (listed below ran with test2 to capture the errors) > modified the .conf file (also listed below). It seems that I can enter > the vserver without any trouble and it appears to work fine, but if I > start it then ssh or telnet to it I end up in the root directory of the > host server with the name of the computer reported (with telnet) being > the same as the host. I read in the changelog that debian is now > supported, does this mean only as a virtual server, or is it now suposed > to work as a host also? > I have since uninstalled the converted rpm's and compiled from source > but it still has the same problem. This means you have thoses services running in the root server and it is taking over anything a vserver can do. Stop sshd in the root server and starts the v_sshd (I guess this should work on debian as well). This will force sshd to only use the eth0 IP and let the vserver do their work on their own IPs. Same for xinetd. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:49 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19nk08513; Mon, 19 Aug 2002 21:09:49 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMeXT32220; Mon, 19 Aug 2002 18:40:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JIT3L06118 for vserver.list; Mon, 19 Aug 2002 14:29:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JIT2Y06114 for ; Mon, 19 Aug 2002 14:29:02 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id C850C7A5D2; Mon, 19 Aug 2002 19:29:00 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id A1CED92077 for ; Mon, 19 Aug 2002 19:29:00 +0100 (BST) Date: Mon, 19 Aug 2002 19:29:00 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] vserver with debian host? In-Reply-To: <3D612F45.2080300@netscape.net> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1094 On Mon, 19 Aug 2002, BrandonHoult wrote: > p300:~# vserver test2 build > /usr/sbin/vserver: cd: etc/rc.d/init.d: No such file or directory In debian `rc' is in the correct place: /etc/init.d/rc unfortunately the scripts are designed for the b0rken Redhat design of: /etc/rc.d/init.d/rc Jack latest set of utils understands about the proper place, but you'll need to patch the `vserver' command (a plain script) in the current distribution: -------------------------------------------------------------> --- /usr/sbin/vserver~ Fri May 10 16:37:51 2002 +++ /usr/sbin/vserver Mon May 13 16:08:34 2002 @@ -130,7 +130,7 @@ # rwalld rwhod sendmail smb snmpd v_httpd h_xinetd v_sshd vservers \ # xfs ypbind xinetd ( - cd etc/rc.d/init.d || cd etc/init.d + cd etc/init.d/init.d || cd etc/init.d for serv in * do case $serv in @@ -337,7 +337,7 @@ cd /vservers/$1 mountproc /vservers/$1 # The fakeinit flag tell us how to turn off the server - STOPCMD="/etc/rc.d/rc 6" + STOPCMD="/etc/init.d/rc 6" for f in $S_FLAGS dummy do case $f in <------------------------------------------------------------- to replace the correct paths. (Or put a symlink in /etc/ in the vservers.) -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:53 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19nk08518; Mon, 19 Aug 2002 21:09:53 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMeWT32218; Mon, 19 Aug 2002 18:40:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JJGJ107465 for vserver.list; Mon, 19 Aug 2002 15:16:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JJGJY07461 for ; Mon, 19 Aug 2002 15:16:19 -0400 Received: from remtk.solucorp.qc.ca (g39-248.citenet.net [206.123.39.248]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7JJT9A63875 for ; Mon, 19 Aug 2002 15:29:09 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7JJFj501920 for vserver@solucorp.qc.ca; Mon, 19 Aug 2002 15:15:45 -0400 From: Jacques Gelinas Date: Mon, 19 Aug 2002 15:15:45 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? X-mailer: tlmpmail 0.6 Message-ID: <20020819151545.c44436771d53@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1095 On Mon, 19 Aug 2002 19:29:00 -0500, Paul Sladen wrote > On Mon, 19 Aug 2002, BrandonHoult wrote: > > > p300:~# vserver test2 build > > /usr/sbin/vserver: cd: etc/rc.d/init.d: No such file or directory > > In debian `rc' is in the correct place: > > /etc/init.d/rc This error is unrelated to the rc script. The script tries both. It does cd etc/rc.d/init.d || cd etc/init.d I changed this to cd etc/init.d 2>/dev/null || cd etc/rc.d/init.d > unfortunately the scripts are designed for the b0rken Redhat design of: > > /etc/rc.d/init.d/rc Not really. The script (in 0.19) probes for the proper directory. Quite frankly, I am tired of those debian advocacies. > Jack latest set of utils understands about the proper place, but you'll need > to patch the `vserver' command (a plain script) in the current distribution: This patch is not related to 0.19. > -------------------------------------------------------------> > --- /usr/sbin/vserver~ Fri May 10 16:37:51 2002 > +++ /usr/sbin/vserver Mon May 13 16:08:34 2002 > @@ -130,7 +130,7 @@ > # rwalld rwhod sendmail smb snmpd v_httpd h_xinetd > v_sshd vservers \ > # xfs ypbind xinetd > ( > - cd etc/rc.d/init.d || cd etc/init.d > + cd etc/init.d/init.d || cd etc/init.d ???? etc/init.d/init.d What is this ? > for serv in * > do > case $serv in > @@ -337,7 +337,7 @@ > cd /vservers/$1 > mountproc /vservers/$1 > # The fakeinit flag tell us how to turn off the server > - STOPCMD="/etc/rc.d/rc 6" > + STOPCMD="/etc/init.d/rc 6" Seems like and older vserver script to me. > for f in $S_FLAGS dummy > do > case $f in > <------------------------------------------------------------- > > to replace the correct paths. (Or put a symlink in /etc/ in the vservers.) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:53 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19rk08523; Mon, 19 Aug 2002 21:09:53 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMeST32216; Mon, 19 Aug 2002 18:40:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JKEJ409252 for vserver.list; Mon, 19 Aug 2002 16:14:19 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from shop.eboxw.net (shop.eboxw.net [205.236.1.11]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JKEJY09248 for ; Mon, 19 Aug 2002 16:14:19 -0400 Received: from cpu183.adsl.qc.bellglobal.com ([207.236.226.187] helo=jhd) by shop.eboxw.net with smtp (Exim 3.35 #1 (Debian)) id 17gt4T-0005TO-00 for ; Mon, 19 Aug 2002 21:24:17 +0100 Message-ID: <001c01c247bd$0e700a90$0301a8c0@jhd> From: "support" To: Subject: Re: [vserver] vserver with debian host? Date: Mon, 19 Aug 2002 16:14:41 -0400 Organization: Electronic Comminucation MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0019_01C2479B.8623A0A0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1096 This is a multi-part message in MIME format. ------=_NextPart_000_0019_01C2479B.8623A0A0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable hello=20 debian run wounderfull for me=20 i use it on the main server and for the virtuals juste go to this adress http://vserver.vgertech.com/ get=20 mini-debian-vservers-016.tgz ------ small debian woody for use in vserver package. not as small as it could be... nuno.silva@vgertech.com ------ installation: - untar to vserver's (empty) "root" directory - edit vserver's configuration - start the vserver - enter the vserver - CHANGE the root password - change /etc/apt/sources.list to a mirror near you - apt-get update ; apt-get upgrade ------ ------=_NextPart_000_0019_01C2479B.8623A0A0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
hello
debian run wounderfull for me =
i use it on the main server and for the = virtuals
 
juste go to this adress
http://vserver.vgertech.com/
 
get
 
mini-debian-vservers-016.tgz
------

small debian=20 woody for use in vserver package.
not as small as it could=20 be...
nuno.silva@vgertech.com
------

installation:
- = untar to=20 vserver's (empty) "root" directory
- edit vserver's = configuration
- start=20 the vserver
- enter the vserver
- CHANGE the root password
- = change=20 /etc/apt/sources.list to a mirror near you
- apt-get update ; apt-get = upgrade
------

 
 
------=_NextPart_000_0019_01C2479B.8623A0A0-- From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:54 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19rk08528; Mon, 19 Aug 2002 21:09:54 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMexT32227; Mon, 19 Aug 2002 18:40:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JKIl309348 for vserver.list; Mon, 19 Aug 2002 16:18:47 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.acun.net ([208.153.105.100]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JKIkY09344 for ; Mon, 19 Aug 2002 16:18:47 -0400 Received: from darkstar (nosyarntya@darkstar.acun.net [206.27.86.12]) by mail.acun.net (8.11.6/8.11.6) with ESMTP id g7JKIuU13278 for ; Mon, 19 Aug 2002 16:18:56 -0400 Content-Type: text/plain; charset="iso-8859-1" From: George To: vserver@solucorp.qc.ca Subject: Re: [vserver] Apache in a Vserver with multiple IP's Date: Mon, 19 Aug 2002 16:18:54 -0400 User-Agent: KMail/1.4.2 References: In-Reply-To: MIME-Version: 1.0 Message-Id: <200208191618.54599.thumper@acun.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g7JKIkY09344 Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1097 Paul; Thank you for your response. I have 3 SSL sites (each with there own ip) and many Name Based sites running on one ip. In my test setup I have: I have IPROOT="208.153.105.17 208.153.105.18 208.153.105.19" when starting the vserver, it identifies that it is using the virtual addresses. this is what starts my ips up when my vserver starts. pre-start) /sbin/ifconfig eth0:vw01 208.153.105.17 netmask 255.255.255.240 /sbin/ifconfig eth0:vw02 208.153.105.18 netmask 255.255.255.240 /sbin/ifconfig eth0:vw03 208.153.105.19 netmask 255.255.255.240 ;; Normally I use: NameVirtualHost 208.153.105.19 Which works well on the old server, and that I want to move into a vserver and retire the old beast. and I also tried it as you displayed below, but apache never binds to the other 2 ips. A port scan reveals port 80 is not listening. btw I'm using kernel 2.4.19ctx-13 Thank you for the tips on ip conservation, I'm well aware of them, and I am familure with the conf options, I've been using linux since 1995, along with apache, etc. I've been looking for a sane vserver implimentation for some time, and I beleve this is it. I have several vservers running, and working well. This one, where I really need several IP's in one vserver is making my brain swell. George On Monday 19 August 2002 6:10 am, Paul Sladen wrote: > On Sun, 18 Aug 2002, George wrote: > > [...] Apache refuses to bind to anything other that the first ip listed, > > VirtualHost, Listen and BindAddress refuse to listen to any other ip > > than the first one listed. > > Binding to `0.0.0.0' binds *only* to the first address in a vserver--always > has done. To use extra IP addresses you have to put multiple > : > > # Site on first IP > > # Another site on first IP > > # Third first IP > > # Fourth site Second IP address > > > As you may have noticed it is possibley to run multiple websites on a > single IP address (!). Unless you are serving SSL websites there is > probably no reason to be using more than one IP address. > > IP address space is a *scarce resource*, please use it *very carefully*. > > > I'm starting apache with apachectl not v_httpd, I know already that it > > binds to a single ip. > > v_httpd is a kludge because people want to run apache on the *host* server > aswell. If people would stop doing this, it could go away > completely--don't use it in a vserver. > > -Paul From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:54 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19sk08533; Mon, 19 Aug 2002 21:09:54 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMgJT32244; Mon, 19 Aug 2002 18:42:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JLidV11725 for vserver.list; Mon, 19 Aug 2002 17:44:39 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from shop.eboxw.net (shop.eboxw.net [205.236.1.11]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JLicY11721 for ; Mon, 19 Aug 2002 17:44:38 -0400 Received: from cpu183.adsl.qc.bellglobal.com ([207.236.226.187] helo=jhd) by shop.eboxw.net with smtp (Exim 3.35 #1 (Debian)) id 17guTy-0005kK-00 for ; Mon, 19 Aug 2002 22:54:42 +0100 Message-ID: <002401c247c9$af36d4c0$0301a8c0@jhd> From: "support" To: Subject: Re: [vserver] vserver with debian host? Date: Mon, 19 Aug 2002 17:45:05 -0400 Organization: Electronic Comminucation MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0021_01C247A8.275D02C0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1098 This is a multi-part message in MIME format. ------=_NextPart_000_0021_01C247A8.275D02C0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable This package is a potato debian install compress in a .tar.gz the name 0.16 is beacase it was release when 0.16 was the stable version you can use it when any vservsion of vserver=20 =20 about ssh : ssh is install by default in this package and run on port = 22222 do ps ax to see if sshd is running=20 if not =20 look /etc/ssh/sshd_config to change port and listend argument thx=20 -Ok, downloaded the tgz and tried it. You seem to have 0.16 installed - -and I am using 0.19. I started the vserver but could not telnet or ssh = -to it. Figured ssh and telnet probably were not in your package so I=20 -entered it and updated the sources then tried to run apt-get update but = -got all kinds of errors "Couldn't stat source package list". I think=20 -the problem is likely on the main server and I don't see how using your = -virtual server will fix this. At this point things may bee so screwed=20 -up that I have to wipe the OS and start over. Will wait a few days to=20 -see if new suggestions arrive though. -Brandon. ------=_NextPart_000_0021_01C247A8.275D02C0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
This package is a potato debian = install=20 compress in a .tar.gz
the name 0.16 is beacase it was release = when 0.16=20 was the stable version
you can use it when any vservsion of = vserver=20
 
about ssh : ssh is install by default = in this=20 package and run on port 22222
 
do ps ax to see if sshd is running =
if not  
look /etc/ssh/sshd_config to change = port and=20 listend argument
 
thx
 
 
 
-Ok, downloaded the tgz and tried it.  You seem to have 0.16 = installed=20 -
-and I am using 0.19.  I started the vserver but could not = telnet or=20 ssh
-to it.  Figured ssh and telnet probably were not in your = package=20 so I
-entered it and updated the sources then tried to run apt-get = update=20 but
-got all kinds of errors "Couldn't stat source package = list".  I=20 think
-the problem is likely on the main server and I don't see how = using=20 your
-virtual server will fix this.  At this point things may = bee so=20 screwed
-up that I have to wipe the OS and start over.  Will = wait a few=20 days to
-see if new suggestions arrive=20 though.

-Brandon.
------=_NextPart_000_0021_01C247A8.275D02C0-- From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:54 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19sk08538; Mon, 19 Aug 2002 21:09:54 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMeLT32214; Mon, 19 Aug 2002 18:40:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JHgoG04787 for vserver.list; Mon, 19 Aug 2002 13:42:50 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JHgmY04783 for ; Mon, 19 Aug 2002 13:42:48 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id C3E297E40 for ; Mon, 19 Aug 2002 12:41:18 -0400 (EDT) Message-ID: <3D612F45.2080300@netscape.net> Date: Mon, 19 Aug 2002 12:47:49 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.0) Gecko/20020530 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] vserver with debian host? Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1099 I am trying to set up vserver with a debian woody host. I patched the kernel and recompiled without any trouble then converted the rpms 0.19 to deb using alien, and that worked ok Ran "vserver test build" got a bunch of errors (listed below ran with test2 to capture the errors) modified the .conf file (also listed below). It seems that I can enter the vserver without any trouble and it appears to work fine, but if I start it then ssh or telnet to it I end up in the root directory of the host server with the name of the computer reported (with telnet) being the same as the host. I read in the changelog that debian is now supported, does this mean only as a virtual server, or is it now suposed to work as a host also? I have since uninstalled the converted rpm's and compiled from source but it still has the same problem. Thanks for any help, Brandon Hoult dolt@lmistudios.homeip.net ------------------------------------------------------------- -- Output of vserver test2 build ------------------------------------------------------------- p300:~# vserver test2 build /usr/sbin/vserver: cd: etc/rc.d/init.d: No such file or directory No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf No configuration for this vserver: /etc/vservers/test2.conf Directory /vservers/test2 has been populated /etc/vservers/test2.conf has been created. Look at it! ----------------------test.conf---------------------------- # Select an unused context (this is optional) # The default is to allocate a free context on the fly # In general you don't need to force a context #S_CONTEXT= # Select the IP number assigned to the virtual server # This IP must be one IP of the server, either an interface # or an IP alias # A vserver may have more than one IP. Separate them with spaces. # do not forget double quotes. # Some examples: # IPROOT="1.2.3.4 2.3.4.5" # IPROOT="eth0:1.2.3.4 eth1:2.3.4.5" # If the device is not specified, IPROOTDEV is used IPROOT="eth0:192.168.0.55" # The netmask and broadcast are computed by default from IPROOTDEV #IPROOTMASK= #IPROOTBCAST= # You can define on which device the IP alias will be done # The IP alias will be set when the server is started and unset # when the server is stopped #IPROOTDEV=eth0 # Uncomment the onboot line if you want to enable this # virtual server at boot time ONBOOT=yes # You can set a different host name for the vserver # If empty, the host name of the main server is used S_HOSTNAME=test # You can set a different NIS domain for the vserver # If empty, the current on is kept # Set it to "none" to have no NIS domain set S_DOMAINNAME= # You can set the priority level (nice) of all process in the vserver # Even root won't be able to raise it S_NICE= # You can set various flags for the new security context # lock: Prevent the vserver from setting new security context # sched: Merge scheduler priority of all processes in the vserver # so that it acts a like a single one. # nproc: Limit the number of processes in the vserver according to ulimit # (instead of a per user limit, this becomes a per vserver limit) # private: No other process can join this security context. Even root # Do not forget the quotes around the flags S_FLAGS="lock nproc fakeinit" # You can set various ulimit flags and they will be inherited by the # vserver. You enter here various command line argument of ulimit # ULIMIT="-H -u 200" # The example above, combined with the nproc S_FLAGS will limit the # vserver to a maximum of 200 processes ULIMIT="-H -u 1000" # You can set various capabilities. By default, the vserver are run # with a limited set, so you can let root run in a vserver and not # worry about it. He can't take over the machine. In some cases # you can to give a little more capabilities (such as CAP_NET_RAW) S_CAPS="CAP_NET_RAW" #S_CAPS="" From vserver.error@solucorp.qc.ca Mon Aug 19 21:09:58 2002 Received: from etrn.unix.dialisdn.net (etrn.unix.dialisdn.net [208.236.0.63]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K19sk08543; Mon, 19 Aug 2002 21:09:58 -0400 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by etrn.unix.dialisdn.net (8.11.6/8.11.6) with ESMTP id g7JMe8T32212; Mon, 19 Aug 2002 18:40:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7JJmVu08515 for vserver.list; Mon, 19 Aug 2002 15:48:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7JJmTY08511 for ; Mon, 19 Aug 2002 15:48:30 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id B2B7F7E40 for ; Mon, 19 Aug 2002 14:47:03 -0400 (EDT) Message-ID: <3D614CBE.4020904@netscape.net> Date: Mon, 19 Aug 2002 14:53:34 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.0) Gecko/20020530 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? References: <20020819151545.c44436771d53@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1100 Wow, did not mean to cause so much trouble. I tried the change that Paul Sladen suggested, but it did not seem to help. I also tried what you (Jacques Gelinas?) suggested, but debian uses inetd instead of xinetd. I installed the debian xinetd package, and it copied all the inetd configuration over to xinetd and started using it. Then I stopped ssh and rand v_sshd which tried to run sshd so I edited v_sshd and changed it to execute ssh. Then tried it again and could not connect so I stopped xinetd and started v_xinetd and it still could not connect. I deleted my old virtual servers and rebuilt them, the messages changed (attached to bottom). At this point I was not sure if xinetd was the problem or not, and as it still wasn't working (would not connect now), and debconf was warning me that the xinetd would not be updated automatically by apt-get any more. I removed xinetd and tried Sladens suggestion which of course still did not work. Does anyone know if debian will soon be fully supported or would it just be better to use redhat and run a debian virtual server under that. I had been using mandrake for the past 3 years or so, and decided to try debian and was very impressed by the package system (which has always been my main gripe with linux). Is it practical to have a redhat base install but use the debian virtual machine for all the actual work? Are you at all limited by the virtual machine? --------- vserver test build results----------------------------- p300:/vservers# vserver test build /usr/sbin/vserver: cd: etc/init.d/init.d: No such file or directory update-rc.d: /etc/init.d/alsa exists during rc.d purge (continuing) update-rc.d: /etc/init.d/apache exists during rc.d purge (continuing) update-rc.d: /etc/init.d/atd exists during rc.d purge (continuing) update-rc.d: /etc/init.d/aumix exists during rc.d purge (continuing) update-rc.d: /etc/init.d/bootmisc.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/checkfs.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/checkroot.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/console-screen.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/cron exists during rc.d purge (continuing) update-rc.d: /etc/init.d/devpts.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/dns-clean exists during rc.d purge (continuing) update-rc.d: /etc/init.d/exim exists during rc.d purge (continuing) update-rc.d: /etc/init.d/gdm exists during rc.d purge (continuing) update-rc.d: /etc/init.d/hostname.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/hwclockfirst.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/hwclock.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/ifupdown exists during rc.d purge (continuing) update-rc.d: /etc/init.d/inetd exists during rc.d purge (continuing) update-rc.d: /etc/init.d/initrd-tools.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/iptables exists during rc.d purge (continuing) update-rc.d: /etc/init.d/kdm exists during rc.d purge (continuing) update-rc.d: /etc/init.d/keymap.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/klisa exists during rc.d purge (continuing) update-rc.d: /etc/init.d/klogd exists during rc.d purge (continuing) update-rc.d: /etc/init.d/linuxconf exists during rc.d purge (continuing) update-rc.d: /etc/init.d/lpd exists during rc.d purge (continuing) update-rc.d: /etc/init.d/makedev exists during rc.d purge (continuing) update-rc.d: /etc/init.d/modutils exists during rc.d purge (continuing) update-rc.d: /etc/init.d/mountall.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/mountnfs.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/networking exists during rc.d purge (continuing) update-rc.d: /etc/init.d/nfs-common exists during rc.d purge (continuing) update-rc.d: /etc/init.d/nfs-kernel-server exists during rc.d purge (continuingupdate-rc.d: /etc/init.d/nviboot exists during rc.d purge (continuing) update-rc.d: /etc/init.d/portmap exists during rc.d purge (continuing) update-rc.d: /etc/init.d/postgresql exists during rc.d purge (continuing) update-rc.d: /etc/init.d/ppp exists during rc.d purge (continuing) update-rc.d: /etc/init.d/procps.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/rc exists during rc.d purge (continuing) update-rc.d: /etc/init.d/rc-installed exists during rc.d purge (continuing) update-rc.d: /etc/init.d/rc.old exists during rc.d purge (continuing) update-rc.d: /etc/init.d/rcS exists during rc.d purge (continuing) update-rc.d: /etc/init.d/rcS-installed exists during rc.d purge (continuing) update-rc.d: /etc/init.d/README exists during rc.d purge (continuing) update-rc.d: /etc/init.d/reboot exists during rc.d purge (continuing) update-rc.d: /etc/init.d/rebootmgr exists during rc.d purge (continuing) update-rc.d: /etc/init.d/rmnologin exists during rc.d purge (continuing) update-rc.d: /etc/init.d/samba exists during rc.d purge (continuing) update-rc.d: /etc/init.d/sendsigs exists during rc.d purge (continuing) update-rc.d: /etc/init.d/setserial exists during rc.d purge (continuing) update-rc.d: /etc/init.d/skeleton exists during rc.d purge (continuing) update-rc.d: /etc/init.d/ssh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/sudo exists during rc.d purge (continuing) update-rc.d: /etc/init.d/sysklogd exists during rc.d purge (continuing) update-rc.d: /etc/init.d/umountfs exists during rc.d purge (continuing) update-rc.d: /etc/init.d/umountnfs.sh exists during rc.d purge (continuing) update-rc.d: /etc/init.d/urandom exists during rc.d purge (continuing) update-rc.d: /etc/init.d/v_httpd exists during rc.d purge (continuing) update-rc.d: /etc/init.d/v_named exists during rc.d purge (continuing) update-rc.d: /etc/init.d/v_sendmail exists during rc.d purge (continuing) update-rc.d: /etc/init.d/vservers exists during rc.d purge (continuing) update-rc.d: /etc/init.d/v_smb exists during rc.d purge (continuing) update-rc.d: /etc/init.d/v_sshd exists during rc.d purge (continuing) update-rc.d: /etc/init.d/v_xinetd exists during rc.d purge (continuing) update-rc.d: /etc/init.d/xdm exists during rc.d purge (continuing) update-rc.d: /etc/init.d/xfs exists during rc.d purge (continuing) update-rc.d: /etc/init.d/xinetd exists during rc.d purge (continuing) Directory /vservers/test has been populated Jacques Gelinas wrote: >On Mon, 19 Aug 2002 19:29:00 -0500, Paul Sladen wrote > > >>On Mon, 19 Aug 2002, BrandonHoult wrote: >> >> >> >>>p300:~# vserver test2 build >>>/usr/sbin/vserver: cd: etc/rc.d/init.d: No such file or directory >>> >>> >>In debian `rc' is in the correct place: >> >> /etc/init.d/rc >> >> > >This error is unrelated to the rc script. The script tries both. It does > > cd etc/rc.d/init.d || cd etc/init.d > >I changed this to > > cd etc/init.d 2>/dev/null || cd etc/rc.d/init.d > > > >>unfortunately the scripts are designed for the b0rken Redhat design of: >> >> /etc/rc.d/init.d/rc >> >> > >Not really. The script (in 0.19) probes for the proper directory. > >Quite frankly, I am tired of those debian advocacies. > > > >>Jack latest set of utils understands about the proper place, but you'll need >>to patch the `vserver' command (a plain script) in the current distribution: >> >> > >This patch is not related to 0.19. > > > >>-------------------------------------------------------------> >>--- /usr/sbin/vserver~ Fri May 10 16:37:51 2002 >>+++ /usr/sbin/vserver Mon May 13 16:08:34 2002 >>@@ -130,7 +130,7 @@ >> # rwalld rwhod sendmail smb snmpd v_httpd h_xinetd >>v_sshd vservers \ >> # xfs ypbind xinetd >> ( >>- cd etc/rc.d/init.d || cd etc/init.d >>+ cd etc/init.d/init.d || cd etc/init.d >> >> > >???? etc/init.d/init.d > >What is this ? > > > >> for serv in * >> do >> case $serv in >>@@ -337,7 +337,7 @@ >> cd /vservers/$1 >> mountproc /vservers/$1 >> # The fakeinit flag tell us how to turn off the server >>- STOPCMD="/etc/rc.d/rc 6" >>+ STOPCMD="/etc/init.d/rc 6" >> >> > >Seems like and older vserver script to me. > > > > >> for f in $S_FLAGS dummy >> do >> case $f in >><------------------------------------------------------------- >> >>to replace the correct paths. (Or put a symlink in /etc/ in the vservers.) >> >> > > >--------------------------------------------------------- >Jacques Gelinas >vserver: run general purpose virtual servers on one box, full speed! >http://www.solucorp.qc.ca/miscprj/s_context.hc > > From vserver.error@solucorp.qc.ca Mon Aug 19 21:23:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K1Nkk08694; Mon, 19 Aug 2002 21:23:47 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7K13YZ16057 for vserver.list; Mon, 19 Aug 2002 21:03:34 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7K13XY16048 for ; Mon, 19 Aug 2002 21:03:34 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 5D6F97A5D2; Tue, 20 Aug 2002 02:03:34 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 5139492077 for ; Tue, 20 Aug 2002 02:03:34 +0100 (BST) Date: Tue, 20 Aug 2002 02:03:34 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Re-debian In-Reply-To: <000a01c247db$2fe2d540$0301a8c0@jhd> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from QUOTED-PRINTABLE to 8bit by dns.solucorp.qc.ca id g7K13XY16048 Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1101 On Mon, 19 Aug 2002, support wrote: > cause it can save some bandwidth to not run apt-get ugrade on each new > vserver if you need a server for put it on Best solution I've found is to run `squid' (a WWW caché/proxy) on the *host* server, listening on port: 127.0.0.1:3128 which is globally visable to all the vservers as 127.0.0.1:3128 aswell, but not to the outside world. After the first `apt-get {update,install}', everyone else uses the cachéd copies. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Aug 19 21:33:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K1XIk08760; Mon, 19 Aug 2002 21:33:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7K1HUH16505 for vserver.list; Mon, 19 Aug 2002 21:17:30 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from shop.eboxw.net (shop.eboxw.net [205.236.1.11]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7K1HTY16501 for ; Mon, 19 Aug 2002 21:17:29 -0400 Received: from cpu183.adsl.qc.bellglobal.com ([207.236.226.187] helo=jhd) by shop.eboxw.net with smtp (Exim 3.35 #1 (Debian)) id 17gxnx-0008Hk-00 for ; Tue, 20 Aug 2002 02:27:33 +0100 Message-ID: <001601c247e7$6aee8830$0301a8c0@jhd> From: "support" To: Subject: [vserver] Strange monitoring server ??? Date: Mon, 19 Aug 2002 21:17:56 -0400 Organization: Electronic Comminucation MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0013_01C247C5.E35E1B40" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1102 This is a multi-part message in MIME format. ------=_NextPart_000_0013_01C247C5.E35E1B40 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hello someting strange happen with our vserver vserver-stat=20 CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME 0 47 128Mb 9Kb 3d06h30 10h40m10 27d04h25 root = server 1 2 3Mb 522b m25.06 m39.27 1h49m10 = monitoring server i found a vserver running since 1 h49 min call monitoring server i've never configure a vserver named "monitoring server" and got no = configuration for it in etc/vserver i cannot enter in it too i am the only who got acess to the main server=20 any way to enter in the vserver to know what is running in or to kill it = ??? Plz help us it sound strange for me .... ------=_NextPart_000_0013_01C247C5.E35E1B40 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hello someting strange happen with our=20 vserver
 
vserver-stat
CTX#   PROC=20 QTY      =20 VSZ        RSS  = userTIME  =20 sysTIME    UPTIME=20 NAME
0          &nbs= p;=20 47     = 128Mb       =20 9Kb   3d06h30  10h40m10  27d04h25 root=20 server
1          &n= bsp; =20 2       = 3Mb      =20 522b    m25.06    m39.27   = 1h49m10=20 monitoring server
 
i found a vserver running since 1 h49 = min call=20 monitoring server
 
i've never configure a vserver named = "monitoring=20 server" and got no configuration for it in etc/vserver
 
i cannot enter in it too
 
i am the only who got acess to the main = server=20
 
any way to enter in the vserver to know = what is=20 running in or to kill it ???
 
Plz help us it sound strange for me=20 ....
 
 
------=_NextPart_000_0013_01C247C5.E35E1B40-- From vserver.error@solucorp.qc.ca Mon Aug 19 21:56:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K1uNk09043; Mon, 19 Aug 2002 21:56:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7K1bd516904 for vserver.list; Mon, 19 Aug 2002 21:37:39 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7K1bcY16900 for ; Mon, 19 Aug 2002 21:37:39 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id AACA07A5D2; Tue, 20 Aug 2002 02:37:39 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id A9FB392077 for ; Tue, 20 Aug 2002 02:37:39 +0100 (BST) Date: Tue, 20 Aug 2002 02:37:39 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Strange monitoring server In-Reply-To: <001601c247e7$6aee8830$0301a8c0@jhd> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1103 On Mon, 19 Aug 2002, support wrote: > CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME > 0 47 128Mb 9Kb 3d06h30 10h40m10 27d04h25 root server > 1 2 3Mb 522b m25.06 m39.27 1h49m10 monitoring server Looking at the first column ("CTX#"), normal vservers have Context numbers bigger than 1. Contexts 0 and 1 are special and `running' all the time: ctx 0 is the host server ctx 1 is a special context that can `see' everything, if you change to this context using the `chcontext' command and run `ps' or `top' you'll be able to see everything that is happening in all the vservers and the host server at the same time. Nothing normally runs in this context 1 and you can ignore it if you want. You can only get to this Context from the host- server (Context 0). Don't be alarmed. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Aug 19 21:56:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K1utk09049; Mon, 19 Aug 2002 21:56:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7K1WVA16822 for vserver.list; Mon, 19 Aug 2002 21:32:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.13thfloor.at (www.13thfloor.at [212.16.59.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7K1WUY16817 for ; Mon, 19 Aug 2002 21:32:30 -0400 Received: by www.13thfloor.at (Postfix, from userid 1001) id 1966C220AA2; Tue, 20 Aug 2002 03:32:30 +0200 (CEST) Date: Tue, 20 Aug 2002 03:32:30 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] Strange monitoring server ??? Message-ID: <20020820013230.GA14794@www.13thfloor.at> References: <001601c247e7$6aee8830$0301a8c0@jhd> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <001601c247e7$6aee8830$0301a8c0@jhd> User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1104 On Mon, Aug 19, 2002 at 09:17:56PM -0400, support wrote: > Hello someting strange happen with our vserver > > vserver-stat > CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME > 0 47 128Mb 9Kb 3d06h30 10h40m10 27d04h25 root server > 1 2 3Mb 522b m25.06 m39.27 1h49m10 monitoring server > > i found a vserver running since 1 h49 min call monitoring server > i've never configure a vserver named "monitoring server" and got no configuration for it in etc/vserver > i cannot enter in it too > i am the only who got acess to the main server > any way to enter in the vserver to know what is running in or to kill it ??? > Plz help us it sound strange for me .... ... take a look at the FAQ, especially at http://www.solucorp.qc.ca/howto.hc?projet=vserver&id=59 best, Herbert From vserver.error@solucorp.qc.ca Mon Aug 19 22:12:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K2Clk09164; Mon, 19 Aug 2002 22:12:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7K1qgQ17243 for vserver.list; Mon, 19 Aug 2002 21:52:42 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7K1qgY17239 for ; Mon, 19 Aug 2002 21:52:42 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id B7C257A5D2; Tue, 20 Aug 2002 02:52:42 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id ABE2F92077 for ; Tue, 20 Aug 2002 02:52:42 +0100 (BST) Date: Tue, 20 Aug 2002 02:52:42 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Mirrors (was: Re-debian) In-Reply-To: <3D618D82.9090905@vgertech.com> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1105 On Tue, 20 Aug 2002, Nuno Silva wrote: > If someone setup's a new mirror send me the details and I'll update > mirrors.txt Ever since Jacques' FTP server went down for a week a few months back, I've been mirroring vserver stuff (your's included). http://www.paul.sladen.org/junk/mirrors/vserver.vgertech.com/ http://www.paul.sladen.org/junk/mirrors/ftp.solucorp.qc.ca/pub/vserver/ If this stuff gets any use I'll move it down to a London box where I've got better transit as this stuff is only on the end of a 2Mb line. If people can think of other stuff (for instance, various other people's attempts at Debian packages) I'll try and keep copies of that too. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Mon Aug 19 22:21:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K2Lck09214; Mon, 19 Aug 2002 22:21:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7K200Z17505 for vserver.list; Mon, 19 Aug 2002 22:00:00 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from shop.eboxw.net (shop.eboxw.net [205.236.1.11]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7K1xxY17493 for ; Mon, 19 Aug 2002 22:00:00 -0400 Received: from cpu183.adsl.qc.bellglobal.com ([207.236.226.187] helo=jhd) by shop.eboxw.net with smtp (Exim 3.35 #1 (Debian)) id 17gyT5-0000AN-00 for ; Tue, 20 Aug 2002 03:10:03 +0100 Message-ID: <003d01c247ed$5b0e99e0$0301a8c0@jhd> From: "support" To: Subject: [vserver] Re: Debian mirror Date: Mon, 19 Aug 2002 22:00:25 -0400 Organization: Electronic Comminucation MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_003A_01C247CB.D24E1160" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: O X-Status: X-Keywords: X-UID: 1106 This is a multi-part message in MIME format. ------=_NextPart_000_003A_01C247CB.D24E1160 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable If someone setup's a new mirror send me the details and I'll update=20 mirrors.txt http://mirror.eboxw.net/vserver/ Its a pleasure to help vserver ------=_NextPart_000_003A_01C247CB.D24E1160 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
If someone=20 setup's a new mirror send me the details and I'll update=20
mirrors.txt
http://mirror.eboxw.net/vserver= /
 
Its a pleasure to help = vserver
 
------=_NextPart_000_003A_01C247CB.D24E1160-- From vserver.error@solucorp.qc.ca Mon Aug 19 22:31:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K2VYk09246; Mon, 19 Aug 2002 22:31:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7K29ec17751 for vserver.list; Mon, 19 Aug 2002 22:09:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from puma.vgertech.com (adsl-b3-74-156.telepac.pt [213.13.74.156]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7K29cY17747 for ; Mon, 19 Aug 2002 22:09:39 -0400 Received: (qmail 18064 invoked from network); 20 Aug 2002 02:16:42 -0000 Received: from unknown (HELO vgertech.com) (127.0.0.1) by localhost with SMTP; 20 Aug 2002 02:16:42 -0000 Message-ID: <3D61A689.4030608@vgertech.com> Date: Tue, 20 Aug 2002 03:16:41 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Re-debian References: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g7K29cY17747 Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: RO X-Status: X-Keywords: X-UID: 1107 Paul Sladen wrote: > > Best solution I've found is to run `squid' (a WWW caché/proxy) on the *host* > server, listening on port: there are several tools for this, i've apt-proxy installed and i like it very much. apt-get install apt-proxy regards, nuno From vserver.error@solucorp.qc.ca Tue Aug 20 00:04:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K44MW11602; Tue, 20 Aug 2002 00:04:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7K3ies20302 for vserver.list; Mon, 19 Aug 2002 23:44:40 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chimta01.algx.net (chimta01.algx.net [216.99.233.34]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7K3idY20298 for ; Mon, 19 Aug 2002 23:44:39 -0400 Received: from mail.azera.net (lvs-1.azera.net [207.8.113.133]) by chimmx01.algx.net (iPlanet Messaging Server 5.1 (built May 7 2001)) with ESMTP id <0H1400L5IIEE7H@chimmx01.algx.net> for vserver@solucorp.qc.ca; Mon, 19 Aug 2002 22:44:38 -0500 (CDT) Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.azera.net (Postfix) with ESMTP id 4FBD362098 for ; Mon, 19 Aug 2002 22:43:51 -0500 (CDT) Date: Mon, 19 Aug 2002 22:43:51 -0500 (CDT) From: vserver-list@azera.net Subject: Re: [vserver] vserver with debian host? In-reply-to: X-X-Sender: To: VServer Patch List Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Content-transfer-encoding: 7BIT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1108 the first thing i do with a redhat system, usually, is ln -s /etc/rc.d/init.d /etc/init.d sux otherwise. On Mon, 19 Aug 2002, Paul Sladen wrote: > On Mon, 19 Aug 2002, BrandonHoult wrote: > > > p300:~# vserver test2 build > > /usr/sbin/vserver: cd: etc/rc.d/init.d: No such file or directory > > In debian `rc' is in the correct place: > > /etc/init.d/rc > > unfortunately the scripts are designed for the b0rken Redhat design of: > > /etc/rc.d/init.d/rc > > Jack latest set of utils understands about the proper place, but you'll need > to patch the `vserver' command (a plain script) in the current distribution: > > -------------------------------------------------------------> > --- /usr/sbin/vserver~ Fri May 10 16:37:51 2002 > +++ /usr/sbin/vserver Mon May 13 16:08:34 2002 > @@ -130,7 +130,7 @@ > # rwalld rwhod sendmail smb snmpd v_httpd h_xinetd v_sshd vservers \ > # xfs ypbind xinetd > ( > - cd etc/rc.d/init.d || cd etc/init.d > + cd etc/init.d/init.d || cd etc/init.d > for serv in * > do > case $serv in > @@ -337,7 +337,7 @@ > cd /vservers/$1 > mountproc /vservers/$1 > # The fakeinit flag tell us how to turn off the server > - STOPCMD="/etc/rc.d/rc 6" > + STOPCMD="/etc/init.d/rc 6" > for f in $S_FLAGS dummy > do > case $f in > <------------------------------------------------------------- > > to replace the correct paths. (Or put a symlink in /etc/ in the vservers.) > > -Paul > From vserver.error@solucorp.qc.ca Tue Aug 20 00:40:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7K4dlW11817; Tue, 20 Aug 2002 00:39:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7K4Cnp20991 for vserver.list; Tue, 20 Aug 2002 00:12:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from erebus.obsidian.com.au (erebus.obsidian.com.au [202.45.126.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7K4CiY20987 for ; Tue, 20 Aug 2002 00:12:48 -0400 Received: from localhost.localdomain (unknown [203.20.99.185]) by erebus.obsidian.com.au (Postfix) with ESMTP id 1397E824E for ; Tue, 20 Aug 2002 14:12:35 +1000 (EST) Subject: Re: [vserver] upgrades with unification] From: KevinL To: vserver@solucorp.qc.ca In-Reply-To: <20020815105456.51BDA2C79@hofmann.snowcra.sh> References: <20020814152238.4f62782c9616@remtk.solucorp.qc.ca> <20020815105456.51BDA2C79@hofmann.snowcra.sh> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.5 Date: 20 Aug 2002 14:12:35 +1000 Message-Id: <1029816756.6484.2350.camel@ufo> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1109 Do you have a working unify for debian vse's? On Thu, 2002-08-15 at 20:54, Sam Vilain wrote: > Jacques Gelinas wrote: > > > > even the root server has to do this ?? I thought the immutable flag > > > was only used in the vservers. > > The real thing about unification and the immutable flag is that you > > generally don't care about those flags. You are not allowed to > > modify the file, but you are allowed to unlink it without any > > trick. Since package update is done using unlink/rename combination, > > this is transparent. > > Apart from dpkg, which tries to `chmod ug-s' setuid binaries before it > unlinks them for security reasons (someone could make a hard link of a > vulnerable version of `sudo', for instance...). I had to modify > `dpkg' to be able to upgrade ssh. > > > For slackware, we can use heuristic. For example, stuff in /usr may > > be unified. Not sure. Sam has a solution which would work on > > slackware though (comparing files) > > /usr, /lib, /sbin and /bin are the ones to unify IMHO. > -- > Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ > 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc > 278A A425 30A9 05B5 2F13 > > A seeming ignorance is often a most necessary part of worldly > knowledge. > - anon. > From vserver.error@solucorp.qc.ca Tue Aug 20 06:52:48 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7KAqgW01626; Tue, 20 Aug 2002 06:52:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7KAT3631561 for vserver.list; Tue, 20 Aug 2002 06:29:03 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from skessa.this.is (skessa.this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7KAT2Y31554 for ; Tue, 20 Aug 2002 06:29:03 -0400 Received: from skessa.this.is (www-data@localhost.this.is [127.0.0.1]) by skessa.this.is (8.12.3/8.12.3/Debian -4) with ESMTP id g7KAT16F002818 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=FAIL) for ; Tue, 20 Aug 2002 10:29:02 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.3/8.12.3/Debian -4) id g7KAT1gQ002816 for vserver@solucorp.qc.ca; Tue, 20 Aug 2002 10:29:01 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca Subject: [vserver] vserver and Debian Message-ID: <1029839341.3d6219ed2becc@this.is> Date: Tue, 20 Aug 2002 10:29:01 +0000 (GMT) From: ragnar@this.is References: <20020814152238.4f62782c9616@remtk.solucorp.qc.ca> <20020815105456.51BDA2C79@hofmann.snowcra.sh> <1029816756.6484.2350.camel@ufo> In-Reply-To: <1029816756.6484.2350.camel@ufo> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 194.144.127.80 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1110 Hello, I am one of the Debian admirers. > Do you have a working unify for debian vse's? > > Apart from dpkg, which tries to `chmod ug-s' setuid > > binaries before it unlinks them for security reasons The way I see it (tm) this is a Debian issue. Also if we plan to have a Debian root server we should figure out the depends etc.. For stuff like this alien (rpm -> deb converter) just does not work well enough. We should have a proper debian package or just use Redhat as the root server. > > I had to modify `dpkg' to be able to upgrade ssh. Modifying dpkg is un-debian we must work with it the way it is or get it changed to our requirements. I did see some bashing on a Debian list about this. Until it gets resolved I think I will just spend some "little" extra money on disk space and not unify. Regarding upgrading many servers. This is a general problem not related to the fact that they are running as virtual servers, so I also plan to use the same way of upgrading / maintaining as I do on my current setup of many boxes. And for .deb proxy-ing. I like Squid but Apache has proxypass and caching so where I have no other requirement for Squid I just let Apache do the work. Best Ragnar Gudmundsson ragnar@this.is From vserver.error@solucorp.qc.ca Tue Aug 20 07:38:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7KBclW01919; Tue, 20 Aug 2002 07:38:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7KBKYR00501 for vserver.list; Tue, 20 Aug 2002 07:20:34 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from erebus.obsidian.com.au (erebus.obsidian.com.au [202.45.126.99]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7KBKXY00495 for ; Tue, 20 Aug 2002 07:20:34 -0400 Received: from localhost.localdomain (unknown [203.20.99.185]) by erebus.obsidian.com.au (Postfix) with ESMTP id 2FE1A841B for ; Tue, 20 Aug 2002 21:20:31 +1000 (EST) Subject: Re: [vserver] vserver and Debian From: KevinL To: vserver@solucorp.qc.ca In-Reply-To: <1029839341.3d6219ed2becc@this.is> References: <20020814152238.4f62782c9616@remtk.solucorp.qc.ca> <20020815105456.51BDA2C79@hofmann.snowcra.sh> <1029816756.6484.2350.camel@ufo> <1029839341.3d6219ed2becc@this.is> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.5 Date: 20 Aug 2002 21:20:29 +1000 Message-Id: <1029842429.6465.4153.camel@ufo> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: A X-Keywords: X-UID: 1111 On Tue, 2002-08-20 at 20:29, ragnar@this.is wrote: > Hello, > > I am one of the Debian admirers. > > > Do you have a working unify for debian vse's? > > > Apart from dpkg, which tries to `chmod ug-s' setuid > > > binaries before it unlinks them for security reasons Seems to me, perhaps we could hack something up that looks at the dpkg output similarly to the way vunify works with rpm output, and side-steps suid stuff - I have no problem with suid files being copies rather than hard-links, if everything else is a hard-link. Could even argue it's a good idea *shrug*. Does anyone currently have multiple debian vservers unified in any way? How does it work? KJL From vserver.error@solucorp.qc.ca Tue Aug 20 12:07:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7KG7MW03770; Tue, 20 Aug 2002 12:07:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7KFprP08787 for vserver.list; Tue, 20 Aug 2002 11:51:53 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7KFpqY08783 for ; Tue, 20 Aug 2002 11:51:52 -0400 Received: from localhost (alien.vlad.net [127.0.0.1]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7KFpnW03637 for ; Tue, 20 Aug 2002 11:51:52 -0400 Date: Tue, 20 Aug 2002 11:51:49 -0400 (EDT) From: Vlad To: vserver@solucorp.qc.ca Subject: [vserver] mailing list web archive In-Reply-To: <1029842429.6465.4153.camel@ufo> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-MailScanner: Found to be clean, Found to be clean Reply-to: vserver@solucorp.qc.ca Precedence: bulk Status: RO X-Status: X-Keywords: X-UID: 1112 Hey guys, I upgraded the redhat distro yesterday (we all know how well that works) and I wiped out the program that was generating the web archive. I'll try to get the thing going again today but you won't see any emails after around 9am on 8/19.. http://vserver.vlad.net/list/summary.html If there are any suggestions on the search engine for this stuff please send them my way. -Vlad From vserver.error@solucorp.qc.ca Tue Aug 20 16:33:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7KKXHW09934; Tue, 20 Aug 2002 16:33:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7KK5XT16304 for vserver.list; Tue, 20 Aug 2002 16:05:33 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from chimta02.algx.net (chimta02.algx.net [216.99.233.77]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7KK5WY16300 for ; Tue, 20 Aug 2002 16:05:32 -0400 Received: from mail.azera.net (lvs-1.azera.net [207.8.113.133]) by chimmx02.algx.net (iPlanet Messaging Server 5.1 (built May 7 2001)) with ESMTP id <0H1500JMFO7J65@chimmx02.algx.net> for vserver@solucorp.qc.ca; Tue, 20 Aug 2002 13:47:44 -0500 (CDT) Received: from localhost (localhost.localdomain [127.0.0.1]) by mail.azera.net (Postfix) with ESMTP id 87E9462098 for ; Tue, 20 Aug 2002 13:46:52 -0500 (CDT) Date: Tue, 20 Aug 2002 13:46:52 -0500 (CDT) From: vserver-list@azera.net Subject: [vserver] mount -r | mount -o ro not working In-reply-to: X-X-Sender: To: vserver@solucorp.qc.ca Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Content-transfer-encoding: 7BIT Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1113 would you guys expect the following to work? (in root context) # mount -r --bind /opt/mirrors /vserver/v1/mnt/mirrors # vserver v1 enter ( in v1 context) # touch /mnt/mirrors/hello.world ? i would expect the last operation to fail, since the mount was made with the read-only switch. in the root context, when i type "mount" it shows the mount as readonly. am i missing something obvious, like rtfm? thanks, From vserver.error@solucorp.qc.ca Tue Aug 20 16:56:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7KKuTW10050; Tue, 20 Aug 2002 16:56:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7KKanS17104 for vserver.list; Tue, 20 Aug 2002 16:36:49 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from tux.rsn.bth.se (tux.rsn.bth.se [194.47.143.135]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7KKamY17100 for ; Tue, 20 Aug 2002 16:36:48 -0400 Received: by tux.rsn.bth.se (Postfix, from userid 501) id C844C36FCC; Tue, 20 Aug 2002 22:36:46 +0200 (CEST) Subject: Re: [vserver] mount -r | mount -o ro not working From: Martin Josefsson To: vserver-list@azera.net Cc: vserver@solucorp.qc.ca In-Reply-To: References: Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-ioDuNoDtAiIv+mgbGock" X-Mailer: Ximian Evolution 1.0.7 Date: 20 Aug 2002 22:36:46 +0200 Message-Id: <1029875806.9243.61.camel@tux> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1114 --=-ioDuNoDtAiIv+mgbGock Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Tue, 2002-08-20 at 20:46, vserver-list@azera.net wrote: >=20 > would you guys expect the following to work? >=20 > (in root context) >=20 > # mount -r --bind /opt/mirrors /vserver/v1/mnt/mirrors > # vserver v1 enter > ( in v1 context) > # touch /mnt/mirrors/hello.world >=20 > ? >=20 > i would expect the last operation to fail, since the mount was made with > the read-only switch. in the root context, when i type "mount" it shows > the mount as readonly. >=20 > am i missing something obvious, like rtfm? This is not supported in kernel 2.4 I _think_ it's supported in 2.5 or at least a planned feature. --=20 /Martin Never argue with an idiot. They drag you down to their level, then beat you with experience. --=-ioDuNoDtAiIv+mgbGock Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQA9YqheWm2vlfa207ERAguBAJ96diJ43G4aGjVwQxdtIZuIOddiZwCeLP61 E9gberAoYa7/+dgbyc4ltH0= =zoqB -----END PGP SIGNATURE----- --=-ioDuNoDtAiIv+mgbGock-- From vserver.error@solucorp.qc.ca Wed Aug 21 09:12:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7LDCfW24398; Wed, 21 Aug 2002 09:12:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7LClue09011 for vserver.list; Wed, 21 Aug 2002 08:47:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7LCltY09006 for ; Wed, 21 Aug 2002 08:47:55 -0400 Received: from hofmann.snowcra.sh (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id BEB1519089 for ; Wed, 21 Aug 2002 13:41:16 +0100 (BST) Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id 5E4A5471; Wed, 21 Aug 2002 13:03:51 +0100 (BST) Date: Wed, 21 Aug 2002 13:03:51 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Cc: ragnar@this.is Subject: Re: [vserver] vserver and Debian In-Reply-To: <1029839341.3d6219ed2becc@this.is> References: <20020814152238.4f62782c9616@remtk.solucorp.qc.ca> <20020815105456.51BDA2C79@hofmann.snowcra.sh> <1029816756.6484.2350.camel@ufo> <1029839341.3d6219ed2becc@this.is> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1115 ragnar@this.is wrote: > Modifying dpkg is un-debian we must work with it the > way it is or get it changed to our requirements. That's right, and heaven forbid we be labelled as un-debian! unify-dirs will now not unify setuid binaries by default. The new version is at http://sam.vilain.net/vserver/unify-dirs > I did see some bashing on a Debian list about this. > Until it gets resolved I think I will just spend > some "little" extra money on disk space and not unify. You also pay the extra price for in-memory executable images. -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 A man will believe anything that does not cost him anything. - anon. From vserver.error@solucorp.qc.ca Wed Aug 21 09:39:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7LDdSW24557; Wed, 21 Aug 2002 09:39:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7LC18a07756 for vserver.list; Wed, 21 Aug 2002 08:01:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gate.weos.de (mail.weos.de [194.245.114.202] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7LC16Y07752 for ; Wed, 21 Aug 2002 08:01:07 -0400 Received: from localhost (halbslinux.weos.de [192.168.101.95]) by gate.weos.de (8.11.3/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id g7LC0xp13885 for ; Wed, 21 Aug 2002 14:00:59 +0200 Subject: [vserver] question about the 0.0.0.0 ip addres. From: Huibert Alblas To: vserver@solucorp.qc.ca Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 21 Aug 2002 14:00:59 +0200 Message-Id: <1029931259.26882.53.camel@localhost> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1116 Hello all, first off Thanks for this amazingly simple/small and effective piece of software. Great going sofar. I got the following 'problem' when configuring services (apache/smb/..) from withing a vserver. Story: I've multiple vservers running on different IPs on one server, so far all the vservers have a /etc/init.d and rc3.d, rc5.d, setup to start services on 'boot' ( vserver vserver1 start ). The IPs to Listento for these services are set in each vserver in the configuration file for the service, for instance: smb.conf on vserver1(192.168.201.99) has a line: interfaces = 192.168.201.99 smb.conf on vserver2(192.168.201.100) has a line: interfaces = 192.168.201.100 everything works fine sofar. The problem is, more and more vservers are being created, whilst the HTML-code on the servers stays the same (because of CVS) Sofar a script I created copies a vserver to a new vserver_name with new ipaddress, then the script edits the configfiles for the needed services... ( with a little help from the 2 Brothers Sed 'n Awk ) My question is: When I start a service from within a vserver ( not using v_httpd etc. ), and I haven't configured the interfaceline; will these services still bind to 0.0.0.0:80 (for apache) allthough the only ipaderss visible on the cserverv is 192.168.201.100? I'm currently playing around with this kind of setup, there are 4 vservers running at the time. So if I restart 1 apache it cannot grab 0.0.0.0 at the moment, but starts without complaining. What will happen if all servers were down (after rebooting the main server ) and the first vserver is started? will it bind to 0.0.0.0 for all its services? Thanks in advace for your time. Huibert Alblas weOs ag development -- "I love deadlines. I like the whooshing sound they make as they fly by." -- Douglas Adams From vserver.error@solucorp.qc.ca Wed Aug 21 10:14:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7LEE6W24794; Wed, 21 Aug 2002 10:14:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7LCgkE08853 for vserver.list; Wed, 21 Aug 2002 08:42:46 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7LCgjY08849 for ; Wed, 21 Aug 2002 08:42:45 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id F35EF7A5D2; Wed, 21 Aug 2002 13:42:44 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id EC88C92077 for ; Wed, 21 Aug 2002 13:42:44 +0100 (BST) Date: Wed, 21 Aug 2002 13:42:44 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] question about the 0.0.0.0 ip addres. In-Reply-To: <1029931259.26882.53.camel@localhost> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1117 On 21 Aug 2002, Huibert Alblas wrote: > Sofar a script I created copies a vserver to a new vserver_name with new > ipaddress, then the script edits the configfiles for the needed > services... ( with a little help from the 2 Brothers Sed 'n Awk ) FreeVSD is a set of scripts which is more oriented to building filesystem skeletons and doing all the IP address/ hostname fixups. Some people run this ontop of a vservers setup: http://www.freevsd.org/ Although, as you'll see, you probably don't need to do this in most cases (except for filing in `/etc/hosts' and the like). > What will happen if all servers were down (after rebooting the main > server ) and the first vserver is started? will it bind to 0.0.0.0 for > all its services? Nope, binding to `0.0.0.0' in a vserver will be automatically forced to the *first* IP address given to *that* vserver. The problem comes if you bind to `0.0.0.0' in the *host* server without using a `v_apache' script. This would then snatch all the addresses on the server (including all vserver addresses), even if the vservers haven't been started yet. The best way is probably not to run much (and anything) in the host server except SSH and make sure you either use a `v_ssh' script, or manually set SSHd to bind to one IP address in the host server. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Wed Aug 21 12:05:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7LG4sW25559; Wed, 21 Aug 2002 12:04:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7LFCQe13407 for vserver.list; Wed, 21 Aug 2002 11:12:26 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from goldenplanet.dk ([195.41.114.8]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7LFCPY13403 for ; Wed, 21 Aug 2002 11:12:25 -0400 Received: from win2k-1 [195.41.114.3] by goldenplanet.dk with ESMTP (SMTPD32-6.06) id ADCBB740132; Wed, 21 Aug 2002 17:12:11 +0200 From: "Golden Planet Support" Organization: Golden Planet To: vserver@solucorp.qc.ca Date: Wed, 21 Aug 2002 17:12:12 +0200 MIME-Version: 1.0 Subject: [vserver] Problem with vunify and vrpm after upgrading to 0.19 Message-ID: <3D63C9EC.25829.1D14FCD@localhost> Priority: normal X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1118 Hello All I'm having problems vith vunify and vrpm after upgrading from v0.18 to v0.19. From what I understand the vunify utility should now be able to do a unify between the root server and a vserver - but when doing a vunify / vserver1 vserver2 -- ALL - I get the following error: /usr/sbin/chroot: cannot execute /bin/rpm: No such file or directory That looks a lot like the behavior of the old vunify command....? The vrpm appears to be entirely broken - if I do a vrpm ALL -- - Uvh package.rpm - I get this error, once per vserver: New security context is 4 error: cannot open Packages index using db3 - Permission denied (13) error: cannot open Packages database in /vservers/vserver/var/lib/rpm I'm just upgraded the kernel to 2.4.19ctx-13 (rolled a new RPM from source+patch and installed it) just to make sure that everything is up-to-date so that should not be the problem. If I revert to v0.18 everything is running fine again - but I would really like to be able to unify my vservers against the root server. I'm starting to feel stupid - any ideas? -- Med venlig hilsen / Best regards Anders C. Madsen Golden Planet Tel.: +45 7020 9594 Dalbygade 40 Fax.: +45 7020 9592 DK-6000 Kolding http://www.goldenplanet.dk -- From vserver.error@solucorp.qc.ca Wed Aug 21 14:48:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7LImTW26417; Wed, 21 Aug 2002 14:48:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7LIF8218685 for vserver.list; Wed, 21 Aug 2002 14:15:08 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7LIF7Y18681 for ; Wed, 21 Aug 2002 14:15:07 -0400 Received: (qmail 5316 invoked by uid 0); 21 Aug 2002 18:15:05 -0000 Received: from zux006-017-182.adsl.green.ch (HELO laptop) (81.6.17.182) by mail.gmx.net (mp007-rz3) with SMTP; 21 Aug 2002 18:15:05 -0000 Message-ID: <095501c2493c$60d2fa60$2200a8c0@vweb.ch> From: "Seiler Thomas" To: References: <20020814152238.4f62782c9616@remtk.solucorp.qc.ca><20020815105456.51BDA2C79@hofmann.snowcra.sh><1029816756.6484.2350.camel@ufo><1029839341.3d6219ed2becc@this.is> <20020821120351.5E4A5471@hofmann.snowcra.sh> Subject: [vserver] [chattr/lsattr] Immutable Linkage Invert Flag has other use Date: Wed, 21 Aug 2002 19:54:45 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1119 Hello everyone I've just come across some bad news for vserver / ctx... The EXT2_IMMUTABLE_LINK_FL bit (value 0x00008000) has now another meaning: http://e2fsprogs.bkbits.net:8080/e2fsprogs/search/?expr=EXT2_NOTAIL_FL& search=ChangeSet+comments They use it to indicate that the kernel should not merge 2 file's tails into one block to save space. (because this would break LILO and the like...) I suppose this behavior is planned for the next stable Kernel releases. This would mean, that such a new Kernel might take a immutable linkage invert flag set by some unify script as a notail flag (and i have no idea if this has the potential to break anything. Probably not, but hey, you never know.) As there are plenty of bits left unassigned, it should be no problem to use another bit instead (i.e value 0x00010000), and it would be easy to write a litte perl script, which updates the attributes on existing filesystems. (If no one else volunteers, i would write one, but expect poor code quality :-) It would even be possible to logicaly OR the two bits in the Kernel say in the next three relases, so that the change would be smother. Best would be, if the maintainer of the ext2progs package could define the bit in the next relase so that every one sees, that this bit is already taken. Otherwise, the hole situation could repeat. Best Regards, Thomas Seiler From vserver.error@solucorp.qc.ca Wed Aug 21 15:02:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7LJ2RW26511; Wed, 21 Aug 2002 15:02:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7LITux19190 for vserver.list; Wed, 21 Aug 2002 14:29:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from www.13thfloor.at (www.13thfloor.at [212.16.59.250]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7LITuY19186 for ; Wed, 21 Aug 2002 14:29:56 -0400 Received: by www.13thfloor.at (Postfix, from userid 1001) id 023B0220B2D; Wed, 21 Aug 2002 20:29:55 +0200 (CEST) Date: Wed, 21 Aug 2002 20:29:55 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: Re: [vserver] [chattr/lsattr] Immutable Linkage Invert Flag has other use Message-ID: <20020821182955.GB31740@www.13thfloor.at> References: <20020821120351.5E4A5471@hofmann.snowcra.sh> <095501c2493c$60d2fa60$2200a8c0@vweb.ch> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <095501c2493c$60d2fa60$2200a8c0@vweb.ch> User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1120 On Wed, Aug 21, 2002 at 07:54:45PM +0200, Seiler Thomas wrote: > Hello everyone > > > I've just come across some bad news for vserver / ctx... > > The EXT2_IMMUTABLE_LINK_FL bit (value 0x00008000) has now another > meaning: > > http://e2fsprogs.bkbits.net:8080/e2fsprogs/search/?expr=EXT2_NOTAIL_FL& > search=ChangeSet+comments > > They use it to indicate that the kernel should not merge 2 file's tails into > one block to save space. (because this would break LILO and the like...) > I suppose this behavior is planned for the next stable Kernel releases. > > This would mean, that such a new Kernel might take a immutable linkage > invert flag set by some unify script as a notail flag (and i have no idea if > this > has the potential to break anything. Probably not, but hey, you never know.) > > As there are plenty of bits left unassigned, it should be no problem to use > another bit instead (i.e value 0x00010000), and it would be easy to write a > litte perl script, which updates the attributes on existing filesystems. (If > no > one else volunteers, i would write one, but expect poor code quality :-) > > It would even be possible to logicaly OR the two bits in the Kernel say in > the next three relases, so that the change would be smother. > > Best would be, if the maintainer of the ext2progs package could define the > bit in the next relase so that every one sees, that this bit is already > taken. > Otherwise, the hole situation could repeat. maybe the vserver project should contact Theodore Ts'o, if not done so already, and *ask* him to reserve one bit for immutable link flag once and for all ... > Best Regards, > Thomas Seiler best, Herbert From vserver.error@solucorp.qc.ca Wed Aug 21 17:36:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7LLZoW27471; Wed, 21 Aug 2002 17:35:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7LJsPC21989 for vserver.list; Wed, 21 Aug 2002 15:54:25 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7LJsOY21985 for ; Wed, 21 Aug 2002 15:54:24 -0400 Received: from remtk.solucorp.qc.ca (g36-80.citenet.net [206.123.36.80]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g7LK7YA37413 for ; Wed, 21 Aug 2002 16:07:34 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7LJXiV27655 for vserver@solucorp.qc.ca; Wed, 21 Aug 2002 15:33:44 -0400 From: Jacques Gelinas Date: Wed, 21 Aug 2002 15:33:43 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Problem with vunify and vrpm after upgrading to 0.19 X-mailer: tlmpmail 0.6 Message-ID: <20020821153343.81ef14470c86@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1121 On Wed, 21 Aug 2002 17:12:12 -0500, Golden Planet Support wrote > Hello All > > I'm having problems vith vunify and vrpm after upgrading from v0.18 > to v0.19. From what I understand the vunify utility should now be > able to do a unify between the root server and a vserver - but when > doing a > > vunify / vserver1 vserver2 -- ALL > > - I get the following error: > > /usr/sbin/chroot: cannot execute /bin/rpm: No such file or directory vunify is using the rpm command found in the vserver, to help compatibility as much as possible (vserver may be running all kind of old rpm utilities). This sounds like /bin/rpm is not installed in the vserver. Where is it ? > That looks a lot like the behavior of the old vunify command....? Very little was changed in vunify. Only that since 0.18. > The vrpm appears to be entirely broken - if I do a > > vrpm ALL -- - Uvh package.rpm > > - I get this error, once per vserver: > > New security context is 4 > error: cannot open Packages index using db3 - Permission denied (13) > error: cannot open Packages database in /vservers/vserver/var/lib/rpm This is indeed a bug. Starting with 0.19, vrpm attemps to switch to the vserver security context to execute the rpm updates. This way, the various post-install script perform in the proper context. Now, by switching to a different security context, rpm is knocked by another feature: The no-man-lang /vservers directory. This directory is set to 000 so even root in a vserver is not allowed to visit it. This solves the chroot escape problem. Only root in security context 0 can cross this directory. The solution is to relax this directory permission while doing vrpm chmod 755 /vservers vrpm ... chmod 000 /vservers In the next kernel, I will change this no-man-land feature. Basically, this will become a one-way. root will be able to visit /vservers but won't be able to visit .. when .. is vservers. This will solve this issue, but solve another which is kind to my heart :-) : vservers inside vservers. This will offer a complete production/test/backup solution to co-administrators (give 5 ips and 5 security context to a vserver and now the vserver administrator may rework this vserver into 5 sub-vservers... still with 100% of the performance :-), still secure... --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Aug 22 04:57:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7M8v1W00514; Thu, 22 Aug 2002 04:57:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7M7dfn05972 for vserver.list; Thu, 22 Aug 2002 03:39:41 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from goldenplanet.dk ([195.41.114.8]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7M7deY05968 for ; Thu, 22 Aug 2002 03:39:41 -0400 Received: from win2k-1 [195.41.114.3] by goldenplanet.dk with ESMTP (SMTPD32-6.06) id A53035F01E0; Thu, 22 Aug 2002 09:39:28 +0200 From: "Golden Planet Support" Organization: Golden Planet To: vserver@solucorp.qc.ca Date: Thu, 22 Aug 2002 09:39:28 +0200 MIME-Version: 1.0 Subject: re: [vserver] Problem with vunify and vrpm after upgrading to 0.19 Message-ID: <3D64B150.15774.55927A5@localhost> Priority: normal In-reply-to: <20020821153343.81ef14470c86@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1122 Hello Jacques > > /usr/sbin/chroot: cannot execute /bin/rpm: No such file or directory > > vunify is using the rpm command found in the vserver, to help > compatibility as much as possible (vserver may be running all kind of > old rpm utilities). > > This sounds like /bin/rpm is not installed in the vserver. Where is it > ? It is in /vserver/vserver1/bin/rpm allright - I simply don't get it. If I do a: vserver vserver1 exec rpm -q apache - it works fine. Same if I add "suexec root" - no problem, it just executes. Weird. > > New security context is 4 > > error: cannot open Packages index using db3 - Permission denied (13) > > error: cannot open Packages database in > > /vservers/vserver/var/lib/rpm > > The solution is to relax this directory permission while doing vrpm > > chmod 755 /vservers > vrpm ... > chmod 000 /vservers OK - now it works. > In the next kernel, I will change this no-man-land feature. Basically, > this will become a one-way. root will be able to visit /vservers but > won't be able to visit .. when .. is vservers. This will solve this > issue, but solve another which is kind to my heart :-) : vservers > inside vservers. This will offer a complete production/test/backup > solution to co-administrators (give 5 ips and 5 security context to a > vserver and now the vserver administrator may rework this vserver into > 5 sub-vservers... still with 100% of the performance :-), still > secure... Yay! THAT would be pretty cool! :-) Now if someone would please buy me that 8-way Xeon with 32 gigs of RAM and 4 TB of RAID5.... *GRIN* Seriously, I think that it is pretty amazing what can be done with a slightly modified Linux kernel, a collection of small utilities and som pretty standard hardware - well done. -- Med venlig hilsen / Best regards Anders C. Madsen Golden Planet Tel.: +45 7020 9594 Dalbygade 40 Fax.: +45 7020 9592 DK-6000 Kolding http://www.goldenplanet.dk -- From vserver.error@solucorp.qc.ca Thu Aug 22 06:19:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7MAJFW00961; Thu, 22 Aug 2002 06:19:19 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7M9XDW10036 for vserver.list; Thu, 22 Aug 2002 05:33:13 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from gate.weos.de (mail.weos.de [194.245.114.202] (may be forged)) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7M9XBY10032 for ; Thu, 22 Aug 2002 05:33:12 -0400 Received: from localhost (halbslinux.weos.de [192.168.101.95]) by gate.weos.de (8.11.3/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id g7M9X9p21069 for ; Thu, 22 Aug 2002 11:33:09 +0200 Subject: Re: [vserver] question about the 0.0.0.0 ip addres. From: Huibert Alblas To: vserver@solucorp.qc.ca In-Reply-To: References: Content-Type: text/plain; charset=ISO-8859-15 X-Mailer: Ximian Evolution 1.0.8 Date: 22 Aug 2002 11:33:08 +0200 Message-Id: <1030008789.13541.2.camel@localhost> Mime-Version: 1.0 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g7M9XBY10032 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1123 Am Mit, 2002-08-21 um 14.42 schrieb Paul Sladen: > On 21 Aug 2002, Huibert Alblas wrote: > > > Sofar a script I created copies a vserver to a new vserver_name with new > > ipaddress, then the script edits the configfiles for the needed > > services... ( with a little help from the 2 Brothers Sed 'n Awk ) > > FreeVSD is a set of scripts which is more oriented to building filesystem > skeletons and doing all the IP address/ hostname fixups. Some people run > this ontop of a vservers setup: > > http://www.freevsd.org/ > I've never heard of it, but I will check it out, thanks. > Although, as you'll see, you probably don't need to do this in most cases > (except for filing in `/etc/hosts' and the like). > > > What will happen if all servers were down (after rebooting the main > > server ) and the first vserver is started? will it bind to 0.0.0.0 for > > all its services? > > Nope, binding to `0.0.0.0' in a vserver will be automatically forced to the > *first* IP address given to *that* vserver. > > The problem comes if you bind to `0.0.0.0' in the *host* server without > using a `v_apache' script. This would then snatch all the addresses on the > server (including all vserver addresses), even if the vservers haven't been > started yet. Thanks, now everything is clear :-) ( wasn't this a Pepsi Commercial slogan in the Eighties somwhere?) > > The best way is probably not to run much (and anything) in the host server > except SSH and make sure you either use a `v_ssh' script, or manually set > SSHd to bind to one IP address in the host server. > > -Paul > -- > Nottingham, GB Thabks again for the quick reply. -Halb -- Düsseldorf, Germany -- "I love deadlines. I like the whooshing sound they make as they fly by." -- Douglas Adams From vserver.error@solucorp.qc.ca Thu Aug 22 18:15:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7MMFDW05779; Thu, 22 Aug 2002 18:15:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7MLVSi06449 for vserver.list; Thu, 22 Aug 2002 17:31:28 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7MLVQY06445 for ; Thu, 22 Aug 2002 17:31:27 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id 72B997E40 for ; Thu, 22 Aug 2002 16:29:55 -0400 (EDT) Message-ID: <3D655968.9060304@netscape.net> Date: Thu, 22 Aug 2002 16:36:40 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.0) Gecko/20020530 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? References: <001c01c247bd$0e700a90$0301a8c0@jhd> <3D61826B.3000301@vgertech.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1124 Ok, I could never get debian to work as the root server so I installed redhat 7.3 recompiled the patched kernel, installed all the packages ran (vserver test build), edited the conf files and had the same problem that I had with debian, if I telnet or ssh in I end up going to my main server. I tried the suggestion that Jacques Gelinas gave a while back stopped sshd and xinetd and started v_sshd and v_xinetd and things finally started working (that should really be in the install manual). So I got the debian image (mini-debian-vservers-020.tgz) and followed the instructions. Now it seems I can ssh to it, but I don't know the root password. *'ed; does not work. I can't change the password because when I try to enter it with (vserver debian enter) I get the following error: ipv4root is now 192.168.0.56 New security context is 60 /usr/lib/vserver/capchroot: relocation error: /lib/libnss_compat.so.2: symbol _nss_files_parse_pwent, version GLIBC_2.0 not defined in file libc.so.6 with link time reference Any ideas? Brandon. Nuno Silva wrote: > Hi! > I made this image some time ago :) > > I've updated it to mini-debian-vservers-020.tgz just now, manly > because the ssh shipped with debian woody, by the time 016 was > released, had a bug. > > !!this is not a problem if you did the *recommended* apt-get update ; > apt-get upgrade recently!! ;) > > Changes were: > - "apt-get upgraded" the system to woody-current (20020820); > - the root password is now *'ed; > - the .txt states that ssh listens on port 22222 (thanks for the > reminder, support@shop.eboxw.net); > - vhalt and vreboot are from vserver-019. > > So, if you downloaded the 016 image you don't have to download 020 > because the update is trivial :) > > Regards, > Nuno Silva > > support wrote: > >> hello >> debian run wounderfull for me >> i use it on the main server and for the virtuals >> >> juste go to this adress >> http://vserver.vgertech.com/ >> >> get >> >> __ mini-debian-vservers-016.tgz >> ------ >> >> small debian woody for use in vserver package. >> not as small as it could be... >> nuno.silva@vgertech.com >> ------ >> >> installation: >> - untar to vserver's (empty) "root" directory >> - edit vserver's configuration >> - start the vserver >> - enter the vserver >> - CHANGE the root password >> - change /etc/apt/sources.list to a mirror near you >> - apt-get update ; apt-get upgrade >> ------ >> >> >> >> > > From vserver.error@solucorp.qc.ca Thu Aug 22 20:36:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7N0a0W09056; Thu, 22 Aug 2002 20:36:01 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7MNF9U09317 for vserver.list; Thu, 22 Aug 2002 19:15:09 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7MNF7Y09313 for ; Thu, 22 Aug 2002 19:15:08 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 7BAFC7A79F; Fri, 23 Aug 2002 00:15:07 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 7AA969207A for ; Fri, 23 Aug 2002 00:15:07 +0100 (BST) Date: Fri, 23 Aug 2002 00:15:05 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] vserver with debian host? In-Reply-To: <3D655968.9060304@netscape.net> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1125 On Thu, 22 Aug 2002, BrandonHoult wrote: > So I got the debian image (mini-debian-vservers-020.tgz) and followed > the instructions. Now it seems I can ssh to it, but I don't know the > root password. *'ed; does not work. [...] Passwords are stored as hashes of the actual password in /etc/shadow: root:P4$$W0RDH4$H:12345:0:99999:7::: (Most of these fields are only relevant to `/etc/passwd' and are ignored in the shadow password file). Replacing the password hash with a `*' means that there is an *invalid* password hash and access will be denied (called ``starring-out''). You can either delete the hash field completely and leave it empty: `root::' (which means no password set). To set a a password that you already know, paste in a password-hash copied out of an existing shadow or passwd file, or a generated hash using the `htpasswd' program that comes with Apache. It should be noted that the `sshd_config' in Nuno's image does not permit logging in with empty passwords, unless you change it. Make the changes with a standard $EDITOR (eg. emacs or vi) from within the *host* server: root@hostserver:~$ emacs /vservers/alpha/etc/shadow root@hostserver:~$ emacs /vservers/alpha/etc/sshd_config I believe Nuno's image starts SSH on a weird port, so you'll probably want to fix that before use--again, by using an editor on `etc/ssh/sshd_config'. > /usr/lib/vserver/capchroot: relocation error: /lib/libnss_compat.so.2: > symbol _nss_files_parse_pwent, version GLIBC_2.0 not defined in file > libc.so.6 with link time reference This is more worrying since I can't tell you why it is happening; The dynamic linker--that `plugs in' functions from shared libraries upon an application loading--is complaining that one the functions it is trying to `plug in' isn't available in the `libnss' library. (The `Name Switch Service' sets the order that glibc searchs for passwd, group and network configuration files in `/etc/'; for instance by using NIS/YP to lookup information from a remote server in preference to reading the local passwd files.) My take is that it is a glibc versioning problem, checking/updating the versions in use in the image may cure it. Has anyone (apart from Nuno! :-) had success, or failure with this latest 0.20 skeleton image? -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Thu Aug 22 20:51:13 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7N0p4W09171; Thu, 22 Aug 2002 20:51:08 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7N0EVK10873 for vserver.list; Thu, 22 Aug 2002 20:14:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from puma.vgertech.com (adsl-b3-73-184.telepac.pt [213.13.73.184]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7N0ETY10869 for ; Thu, 22 Aug 2002 20:14:30 -0400 Received: (qmail 27790 invoked from network); 23 Aug 2002 00:21:46 -0000 Received: from unknown (HELO vgertech.com) (127.0.0.1) by localhost with SMTP; 23 Aug 2002 00:21:46 -0000 Message-ID: <3D65801A.70006@vgertech.com> Date: Fri, 23 Aug 2002 01:21:46 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? References: <001c01c247bd$0e700a90$0301a8c0@jhd> <3D61826B.3000301@vgertech.com> <3D655968.9060304@netscape.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1126 BrandonHoult wrote: [snip..] > So I got the debian image (mini-debian-vservers-020.tgz) and followed > the instructions. Now it seems I can ssh to it, but I don't know the > root password. *'ed; does not work. I can't change the password *'ed is a unix term that means the account is disabled. you should enter the vserver from the main server (vserver debian enter) and change it, before you try to do any auth (ssh included). > because when I try to enter it with (vserver debian enter) I get the > following error: > > ipv4root is now 192.168.0.56 > New security context is 60 > /usr/lib/vserver/capchroot: relocation error: /lib/libnss_compat.so.2: > symbol _nss_files_parse_pwent, version GLIBC_2.0 not defined in file > libc.so.6 with link time reference > This is odd. From what I can make of it, /usr/lib/vserver/capchroot was not compiled with the same GLIBC version that you have. Are you sure you have redhat7.3 and latest vserver version? Quick fix: wget ftp://ftp.solucorp.qc.ca/pub/vserver/vserver-0.19.src.tar.gz mkdir compile cd compile tar xzf ../vserver-0.19.src.tar.gz cd * make su - (enter root password) make install then try again. > Any ideas? Good luck, Nuno > Brandon. > > > Nuno Silva wrote: > >> Hi! >> I made this image some time ago :) >> >> I've updated it to mini-debian-vservers-020.tgz just now, manly >> because the ssh shipped with debian woody, by the time 016 was >> released, had a bug. >> >> !!this is not a problem if you did the *recommended* apt-get update ; >> apt-get upgrade recently!! ;) >> >> Changes were: >> - "apt-get upgraded" the system to woody-current (20020820); >> - the root password is now *'ed; >> - the .txt states that ssh listens on port 22222 (thanks for the >> reminder, support@shop.eboxw.net); >> - vhalt and vreboot are from vserver-019. >> >> So, if you downloaded the 016 image you don't have to download 020 >> because the update is trivial :) >> >> Regards, >> Nuno Silva >> >> support wrote: >> >>> hello >>> debian run wounderfull for me >>> i use it on the main server and for the virtuals >>> >>> juste go to this adress >>> http://vserver.vgertech.com/ >>> >>> get >>> >>> __ mini-debian-vservers-016.tgz >>> ------ >>> >>> small debian woody for use in vserver package. >>> not as small as it could be... >>> nuno.silva@vgertech.com >>> ------ >>> >>> installation: >>> - untar to vserver's (empty) "root" directory >>> - edit vserver's configuration >>> - start the vserver >>> - enter the vserver >>> - CHANGE the root password >>> - change /etc/apt/sources.list to a mirror near you >>> - apt-get update ; apt-get upgrade >>> ------ >>> >>> >>> >>> >> >> >> > > > > From vserver.error@solucorp.qc.ca Thu Aug 22 22:17:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7N2HlW09766; Thu, 22 Aug 2002 22:17:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7N1vqq13184 for vserver.list; Thu, 22 Aug 2002 21:57:52 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from puma.vgertech.com (adsl-b3-73-184.telepac.pt [213.13.73.184]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7N1vpY13180 for ; Thu, 22 Aug 2002 21:57:51 -0400 Received: (qmail 27978 invoked from network); 23 Aug 2002 02:05:09 -0000 Received: from unknown (HELO vgertech.com) (127.0.0.1) by localhost with SMTP; 23 Aug 2002 02:05:09 -0000 Message-ID: <3D659854.7070400@vgertech.com> Date: Fri, 23 Aug 2002 03:05:08 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: A X-Keywords: X-UID: 1127 Paul Sladen wrote: [snip..] > > I believe Nuno's image starts SSH on a weird port, so you'll probably want > to fix that before use--again, by using an editor on `etc/ssh/sshd_config'. > yes, port 22222 one should do: ssh -l root -p 22222 x.y.z.w this can make things easier if you have sshd in the main server on 0.0.0.0:22/tcp ;) and it's easy to modify, as you said. > >>/usr/lib/vserver/capchroot: relocation error: /lib/libnss_compat.so.2: >>symbol _nss_files_parse_pwent, version GLIBC_2.0 not defined in file >>libc.so.6 with link time reference > [snip..] > > My take is that it is a glibc versioning problem, checking/updating the > versions in use in the image may cure it. Has anyone (apart from Nuno! :-) > had success, or failure with this latest 0.20 skeleton image? > That's mean!! (joking!! ehehehe) I think it's a problem with the main server. That's why i advised to recompile the vserver-utils.tgz. AFAICT that message is echoed when trying to execute capchroot (in the main server). Regards, Nuno Silva > -Paul From vserver.error@solucorp.qc.ca Fri Aug 23 00:28:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7N4SFW10649; Fri, 23 Aug 2002 00:28:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7N49F915773 for vserver.list; Fri, 23 Aug 2002 00:09:15 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7N49EY15769 for ; Fri, 23 Aug 2002 00:09:14 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id C92B67E40 for ; Thu, 22 Aug 2002 23:07:42 -0400 (EDT) Message-ID: <3D65B6A5.6040405@netscape.net> Date: Thu, 22 Aug 2002 23:14:29 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.0) Gecko/20020530 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1128 Ok, I haven't yet tried these suggestions, am going to bed now and will try tomorrow. But right after I wrote that e-mail I thought I would see what would happen if I just copied libc.so.6 & libnss_compat.so.2 from the /lib into /vservers/debian/lib. The error changed to some other lib file so I just copied the entire /lib from the redhat install. Strangely enough this seemed to work, and I could enter the vserver and apt-get update. I don't have any delusions that this was actually a good idea though... seems that arbitrarily overwriting library files is going to cause a problem somewhere, so I was going to mess with it some more tomarrow. I thought it was odd that the files inside the vserver would effect the functioning of the external "vserver debian enter" command. Do the libraries have to be identical inside and out? If so that seems a little inconvenient, but if I can manage to ssh into it by fixing the password as you suggested then it is easy enough to get around. I will try more stuff and let you know the results tomarrow. Thanks for the help...the open source community is truely amazing sometimes. Brandon. Paul Sladen wrote: >On Thu, 22 Aug 2002, BrandonHoult wrote: > > > >> So I got the debian image (mini-debian-vservers-020.tgz) and followed >>the instructions. Now it seems I can ssh to it, but I don't know the >>root password. *'ed; does not work. [...] >> >> > >Passwords are stored as hashes of the actual password in /etc/shadow: > > root:P4$$W0RDH4$H:12345:0:99999:7::: > >(Most of these fields are only relevant to `/etc/passwd' and are ignored in >the shadow password file). Replacing the password hash with a `*' means >that there is an *invalid* password hash and access will be denied (called >``starring-out''). > >You can either delete the hash field completely and leave it empty: `root::' >(which means no password set). To set a a password that you already know, >paste in a password-hash copied out of an existing shadow or passwd file, or >a generated hash using the `htpasswd' program that comes with Apache. > >It should be noted that the `sshd_config' in Nuno's image does not permit >logging in with empty passwords, unless you change it. Make the changes >with a standard $EDITOR (eg. emacs or vi) from within the *host* server: > > root@hostserver:~$ emacs /vservers/alpha/etc/shadow > root@hostserver:~$ emacs /vservers/alpha/etc/sshd_config > >I believe Nuno's image starts SSH on a weird port, so you'll probably want >to fix that before use--again, by using an editor on `etc/ssh/sshd_config'. > > > >>/usr/lib/vserver/capchroot: relocation error: /lib/libnss_compat.so.2: >>symbol _nss_files_parse_pwent, version GLIBC_2.0 not defined in file >>libc.so.6 with link time reference >> >> > >This is more worrying since I can't tell you why it is happening; The >dynamic linker--that `plugs in' functions from shared libraries upon an >application loading--is complaining that one the functions it is trying to >`plug in' isn't available in the `libnss' library. > >(The `Name Switch Service' sets the order that glibc searchs for passwd, >group and network configuration files in `/etc/'; for instance by using >NIS/YP to lookup information from a remote server in preference to reading >the local passwd files.) > >My take is that it is a glibc versioning problem, checking/updating the >versions in use in the image may cure it. Has anyone (apart from Nuno! :-) >had success, or failure with this latest 0.20 skeleton image? > > -Paul > > From vserver.error@solucorp.qc.ca Fri Aug 23 01:48:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7N5mCW11048; Fri, 23 Aug 2002 01:48:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7N5Su117454 for vserver.list; Fri, 23 Aug 2002 01:28:56 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from puma.vgertech.com (adsl-b3-73-184.telepac.pt [213.13.73.184]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7N5StY17450 for ; Fri, 23 Aug 2002 01:28:55 -0400 Received: (qmail 29637 invoked from network); 23 Aug 2002 05:36:13 -0000 Received: from unknown (HELO vgertech.com) (127.0.0.1) by localhost with SMTP; 23 Aug 2002 05:36:13 -0000 Message-ID: <3D65C9CC.9070107@vgertech.com> Date: Fri, 23 Aug 2002 06:36:12 +0100 From: Nuno Silva User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: en-us, pt MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] vserver with debian host? References: <3D65B6A5.6040405@netscape.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1129 Hi! BrandonHoult wrote: > Do the libraries have to be identical inside and out? If so that seems Good point! I don't use redhat, so I don't have this problems. Anyway... I think I know what's wrong. Capchroot is run *after* the chroot has been made in the "vserver XYZ start" command. capchroot is a dynamic exe and it tries to load the (now, chrooted) libs that can be different. *********************************************************** To promote distribution independence I think this should be fixed upstream. (Are you reading, Jacques? :)) *********************************************************** The fix is trivial so I won't make a proper diff. Just change the Makefile and replace: ----------------------------- capchroot: capchroot.cc syscall.o gcc $(GCCOPTS) -DVERSION=\"$(PACKAGE_REV)\" capchroot.cc syscall.o -o capchroot \ -lstdc++ ----------------------------- with: ------------------------------ capchroot: capchroot.cc syscall.o gcc $(GCCOPTS) -static -DVERSION=\"$(PACKAGE_REV)\" capchroot.cc syscall.o -o capchroot \ -lstdc++ ------------------------------- (Note the added "-static" switch to gcc.) Then: make;make install and enjoy =) This will build a static capchroot that will run (I hope) with any /lib. Regards, Nuno Silva > a little inconvenient, but if I can manage to ssh into it by fixing the > password as you suggested then it is easy enough to get around. I will > try more stuff and let you know the results tomarrow. Thanks for the > help...the open source community is truely amazing sometimes. > > Brandon. > > Paul Sladen wrote: > >> On Thu, 22 Aug 2002, BrandonHoult wrote: >> >> >> >>> So I got the debian image (mini-debian-vservers-020.tgz) and >>> followed the instructions. Now it seems I can ssh to it, but I don't >>> know the root password. *'ed; does not work. [...] >>> >> >> >> Passwords are stored as hashes of the actual password in /etc/shadow: >> >> root:P4$$W0RDH4$H:12345:0:99999:7::: >> >> (Most of these fields are only relevant to `/etc/passwd' and are >> ignored in >> the shadow password file). Replacing the password hash with a `*' means >> that there is an *invalid* password hash and access will be denied >> (called >> ``starring-out''). >> >> You can either delete the hash field completely and leave it empty: >> `root::' >> (which means no password set). To set a a password that you already >> know, >> paste in a password-hash copied out of an existing shadow or passwd >> file, or >> a generated hash using the `htpasswd' program that comes with Apache. >> >> It should be noted that the `sshd_config' in Nuno's image does not permit >> logging in with empty passwords, unless you change it. Make the changes >> with a standard $EDITOR (eg. emacs or vi) from within the *host* server: >> >> root@hostserver:~$ emacs /vservers/alpha/etc/shadow >> root@hostserver:~$ emacs /vservers/alpha/etc/sshd_config >> >> I believe Nuno's image starts SSH on a weird port, so you'll probably >> want >> to fix that before use--again, by using an editor on >> `etc/ssh/sshd_config'. >> >> >> >>> /usr/lib/vserver/capchroot: relocation error: >>> /lib/libnss_compat.so.2: symbol _nss_files_parse_pwent, version >>> GLIBC_2.0 not defined in file libc.so.6 with link time reference >>> >> >> >> This is more worrying since I can't tell you why it is happening; The >> dynamic linker--that `plugs in' functions from shared libraries upon an >> application loading--is complaining that one the functions it is >> trying to >> `plug in' isn't available in the `libnss' library. >> >> (The `Name Switch Service' sets the order that glibc searchs for passwd, >> group and network configuration files in `/etc/'; for instance by using >> NIS/YP to lookup information from a remote server in preference to >> reading >> the local passwd files.) >> >> My take is that it is a glibc versioning problem, checking/updating the >> versions in use in the image may cure it. Has anyone (apart from >> Nuno! :-) >> had success, or failure with this latest 0.20 skeleton image? >> >> -Paul >> >> > > > > From vserver.error@solucorp.qc.ca Fri Aug 23 06:29:29 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7NATIW13571; Fri, 23 Aug 2002 06:29:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7NAA4R24734 for vserver.list; Fri, 23 Aug 2002 06:10:04 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from ns.kopteri.net (ns.kopteri.net [212.246.72.10]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7NAA3Y24730 for ; Fri, 23 Aug 2002 06:10:03 -0400 Received: from netland.fi (gw.netland.fi [212.246.72.6]) by ns.kopteri.net (8.11.6/8.11.2) with ESMTP id g7NAA1121983 for ; Fri, 23 Aug 2002 13:10:02 +0300 Message-ID: <3D66094D.10008@netland.fi> Date: Fri, 23 Aug 2002 13:07:09 +0300 From: Jukka Laaksola User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020607 X-Accept-Language: fi, en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] multi-nic References: <20020809214440.b3ee0c17718e@remtk.solucorp.qc.ca> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1130 Jacques Gelinas wrote: > On Mon, 22 Jul 2002 09:06:53 -0500, Jukka Laaksola wrote > >>Jacques Gelinas wrote: > > >>>We will need to change the way we handle that. Instead of having >>>IPROOT and IPROOTDEV, we will have something like >>> >>>IPROOT="eth0/IP1 eth1/IP2 IP3 IP4" >>>IPROOTDEV=eth2 >>> >>>Any IP no explicitly tied to a device will be configured with IPROOTDEV. In >>>the example above, IP3 and IP4 will go on eth2. >>> >>>What do you think ? >> >>Sounds good to me. It's quite clear way to configure IPs and devices. >>Perhaps the feature is in the next version of vserser? > > > Finally I implented it using : instead of / > > IPROOT="eth0:1.2.3.4 eth1:2.3.4.5" On the main server network configuration: eth0 10.10.10.35 netmask 255.255.255.0 broadcast 10.10.10.255 eth1 192.168.0.1 netmask 255.255.255.0 broadcast 192.168.0.255 I have now IPROOT="eth1:192.168.0.11 212.x.x.10 80.x.x.10 10.10.10.33" and IPROOT=eth0 in the /etc/vservers/v1.conf. The problem is netmask ja broadcast for those ip aliases. If I understood right, IPROOTMASK and IPROOTBCAST doesn't have multi-ip/nic support. After the virtual server v1 has started my network configuration: eth0 10.10.10.35 netmask 255.255.255.0 broadcast 10.10.10.255 eth0:v11 212.x.x.10 netmask 255.255.255.0 broadcast 192.168.0.255 eth0:v12 80.x.x.10 netmask 255.255.255.0 broadcast 192.168.0.255 eth0:v13 10.10.10.33 netmask 255.255.255.0 broadcast 192.168.0.255 eth1 192.168.0.1 netmask 255.255.255.0 broadcast 192.168.0.255 eth1:v1 192.168.0.11 netmask 255.255.255.0 broadcast 192.168.0.255 So eth1:v1 is only correct configured ip-alias. 212.x.x.10 and 80.x.x.10 should have netmask 255.255.255.248 and broadcasts 212.x.x.15 and 80.x.x.15... And 10.10.10.33 should have netmask 255.255.255.0 and broadcast 10.10.10.255. How can I configure my network correct with vserver?-) I can use manually ifconfig for configure tohe ip-aliases and remove IPROOT and IPROOTDEV from /etc/vservers/v1.conf. Then I can't use portmap ja rpc-programs in the virtual host. So this is not working solution. > > One day will implement the / to support per IP netmask... > That would solve my problem, but when is it coming? Have a nice weekend for vserver-list's readers. Thanks for Jack and friends Jukka -- Jukka Laaksola Netland Oy From vserver.error@solucorp.qc.ca Fri Aug 23 08:57:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7NCvTW15169; Fri, 23 Aug 2002 08:57:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7NCI2P27528 for vserver.list; Fri, 23 Aug 2002 08:18:02 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7NCI1Y27523 for ; Fri, 23 Aug 2002 08:18:02 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id F29BE7A79D; Fri, 23 Aug 2002 13:18:00 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id E9B6F9207A for ; Fri, 23 Aug 2002 13:18:00 +0100 (BST) Date: Fri, 23 Aug 2002 13:18:00 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] multi-nic In-Reply-To: <3D66094D.10008@netland.fi> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1131 On Fri, 23 Aug 2002, Jukka Laaksola wrote: > Jacques Gelinas wrote: > > On Mon, 22 Jul 2002 09:06:53 -0500, Jukka Laaksola wrote > > > Jacques Gelinas wrote: > > > > > > > > IPROOT="eth0/IP1 eth1/IP2 IP3 IP4" > > > > IPROOTDEV=eth2 > > The problem is netmask ja broadcast for those ip aliases. If I > understood right, IPROOTMASK and IPROOTBCAST doesn't have multi-ip/nic > support. Try popping the broadcast address in the multi-ip statement with the normal unicast addresses: IPROOT="eth0:192.168.100.1 eth0:192.168.100.255 eth1:10.0.0.1 \ eth1:10.0.0.255" -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Fri Aug 23 09:37:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7NDawW15399; Fri, 23 Aug 2002 09:37:01 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7NCvpA28559 for vserver.list; Fri, 23 Aug 2002 08:57:51 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7NCvoY28555 for ; Fri, 23 Aug 2002 08:57:51 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 9D2167A79D; Fri, 23 Aug 2002 13:57:50 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 9C3E09207A for ; Fri, 23 Aug 2002 13:57:50 +0100 (BST) Date: Fri, 23 Aug 2002 13:57:50 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Hot-resizing In-Reply-To: <64A10D24-B694-11D6-B881-00039345FEA2@moolfreet.com> Message-ID: X-message-flag: You appear to be using Outlook! --Please use plain text when replying. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1132 On Fri, 23 Aug 2002, Guillaume Plessis wrote: > I've successfully installed the last release of vserver on several > debian woody. It works well without modifying the scripts. Good work :) ^^^^^^^^^^^^ Groovy choice of Operating system! ;-) On a serious note, it is good to know that scripts are working well out of the box now. > I compiled my kernel with lvm, ext3 and reiserfs (and so on...) and when > I have to install a new vserver, I create a new logical volume with a > reiserfs filesystem. Reiserfs and lvm allow me to limit the disk usage > and to resize the logical volume while I'm working on it. But I've never > tried to resize it when the attached vserver was up... If reiserfs online resize is in there, it "should just work"; there is no difference with disk-space and partitions used in a vserver and those you `see' in the host server; it's all just plain disk space as far as the host server is concerned. I'm using ext3-on-LVM here and play safe (ext3 online resize it's in the kernel, but ext2 online resize is). Stopping each vserver, umounting and re-mounting the ext3 LVM share as ext2 (to clear up the journal), do the resize and then remount it as ext3 again and finally restart the vserver. So far, this has worked and left the ext3 in a clean state on remount... Make a backup, then go for it! (As long as the relevant code is in the kernel, there's no difference). > Is it possible to do such a thing whitout to crash the vserver? I don't > know how the kernel manage the dedicaced-to-vserver disk space because > of the pseudo fstab. You're doing this from the host server so the utilities will only read the *real* `/etc/fstab', which has hopefully been setup correctly so that the LVM partitions get mounted correctly (and automagically on reboot). -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Fri Aug 23 09:55:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7NDtJW15488; Fri, 23 Aug 2002 09:55:22 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7NCWVE27840 for vserver.list; Fri, 23 Aug 2002 08:32:31 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.keliglia.com (ytorres.net1.nerim.net [213.41.132.54]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7NCWUY27835 for ; Fri, 23 Aug 2002 08:32:31 -0400 Received: (qmail 27553 invoked from network); 23 Aug 2002 11:43:36 -0000 Received: from unknown (HELO localhost) (62.4.22.12) by ytorres.net1.nerim.net with SMTP; 23 Aug 2002 11:43:36 -0000 Date: Fri, 23 Aug 2002 14:32:31 +0200 Subject: [vserver] Hot-resizing Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v482) From: Guillaume Plessis To: vserver@solucorp.qc.ca Content-Transfer-Encoding: 7bit In-Reply-To: Message-Id: <64A10D24-B694-11D6-B881-00039345FEA2@moolfreet.com> X-Mailer: Apple Mail (2.482) Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1133 Hi! (bonjour) I've successfully installed the last release of vserver on several debian woody. It works well without modifying the scripts. Good work :) I compiled my kernel with lvm, ext3 and reiserfs (and so on...) and when I have to install a new vserver, I create a new logical volume with a reiserfs filesystem. Reiserfs and lvm allow me to limit the disk usage and to resize the logical volume while I'm working on it. But I've never tried to resize it when the attached vserver was up... Is it possible to do such a thing whitout to crash the vserver? I don't know how the kernel manage the dedicaced-to-vserver disk space because of the pseudo fstab. Thanks a lot Guillaume From vserver.error@solucorp.qc.ca Fri Aug 23 12:04:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7NG4gW16186; Fri, 23 Aug 2002 12:04:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7NFGOD32284 for vserver.list; Fri, 23 Aug 2002 11:16:24 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with ESMTP id g7NFGNY32280 for ; Fri, 23 Aug 2002 11:16:23 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id 0EFCD7E40 for ; Fri, 23 Aug 2002 10:14:50 -0400 (EDT) Message-ID: <3D665302.7050607@netscape.net> Date: Fri, 23 Aug 2002 10:21:38 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.0) Gecko/20020530 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Hot-resizing References: <64A10D24-B694-11D6-B881-00039345FEA2@moolfreet.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1134 Oh heck... so how did you get vserver to work with debian? I messed with it for a week, and never could get it working. Did you compile from the source? Did you install xinetd, and did you have to change all the v_ stuff in /etc/init.d? I finally seem to have it working on redhat 7.3, but I am getting pretty irritated with redhat already. I guess I will have to install debian again and start over, but I wish I knew what I screwed up. If you could briefly describe the install process I would appreciate it. Brandon. Guillaume Plessis wrote: > Hi! (bonjour) > > I've successfully installed the last release of vserver on several > debian woody. It works well without modifying the scripts. Good work :) > > I compiled my kernel with lvm, ext3 and reiserfs (and so on...) and > when I have to install a new vserver, I create a new logical volume > with a reiserfs filesystem. Reiserfs and lvm allow me to limit the > disk usage and to resize the logical volume while I'm working on it. > But I've never tried to resize it when the attached vserver was up... > > Is it possible to do such a thing whitout to crash the vserver? I > don't know how the kernel manage the dedicaced-to-vserver disk space > because of the pseudo fstab. > > Thanks a lot > > Guillaume From vserver.error@solucorp.qc.ca Fri Aug 23 12:17:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7NGH0W16258; Fri, 23 Aug 2002 12:17:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.0/linuxconf) id g7NFst700746 for vserver.list; Fri, 23 Aug 2002 11:54:55 -0400 X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f Received: from mail.keliglia.com (ytorres.net1.nerim.net [213.41.132.54]) by dns.solucorp.qc.ca (8.11.0/linuxconf) with SMTP id g7NFstY00742 for ; Fri, 23 Aug 2002 11:54:55 -0400 Received: (qmail 1368 invoked from network); 23 Aug 2002 15:06:02 -0000 Received: from unknown (HELO localhost) (62.4.22.12) by ytorres.net1.nerim.net with SMTP; 23 Aug 2002 15:06:02 -0000 Date: Fri, 23 Aug 2002 17:54:56 +0200 Subject: Re: [vserver] Hot-resizing Content-Type: text/plain; charset=ISO-8859-1; format=flowed Mime-Version: 1.0 (Apple Message framework v482) From: Guillaume Plessis To: vserver@solucorp.qc.ca In-Reply-To: <3D665302.7050607@netscape.net> Message-Id: X-Mailer: Apple Mail (2.482) Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g7NFstY00742 Reply-to: vserver@solucorp.qc.ca Precedence: bulk X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1135 Hi, I proceed this way : I installed a minimal system, with just sshd, inetd and qmail as MTA. I compiled my own kernel 2.4.19, that I patched with vserver-2.4.19-ctx13. I downloaded the rpm, transformed it into tgz by "alien -t vserver.deb" (you can make a debian package by "alien-d" instead of "alien -t"). So, all the vserver-utilities worked fine. I also chbind all my network services to the root-server ip... qmail, ssh and inetd were wrapped by my own v_qmail, v_ssh and v_inetd, taken from examples in the tgz. Then I updated all the symlinks in /etc/rc0.d , /etc/rc1.d... to link well on the new v_* wrappers. All work fine during the boot. You just have tu create other symlinks in /etc/rc*.d, for vserver to start at boot time. Good Luck :) Gui Le vendredi 23 aoűt 2002, ŕ 05:21 , BrandonHoult a écrit : > Oh heck... so how did you get vserver to work with debian? I messed > with it for a week, and never could get it working. Did you compile > from the source? Did you install xinetd, and did you have to change > all the v_ stuff in /etc/init.d? I finally seem to have it working on > redhat 7.3, but I am getting pretty irritated with redhat already. I > guess I will have to install debian again and start over, but I wish I > knew what I screwed up. If you could briefly describe the install > process I would appreciate it. > > Brandon. > > Guillaume Plessis wrote: > >> Hi! (bonjour) >> >> I've successfully installed the last release of vserver on several >> debian woody. It works well without modifying the scripts. Good work :) >> >> I compiled my kernel with lvm, ext3 and reiserfs (and so on...) and >> when I have to install a new vserver, I create a new logical volume >> with a reiserfs filesystem. Reiserfs and lvm allow me to limit the >> disk usage and to resize the logical volume while I'm working on it. >> But I've never tried to resize it when the attached vserver was up... >> >> Is it possible to do such a thing whitout to crash the vserver? I >> don't know how the kernel manage the dedicaced-to-vserver disk space >> because of the pseudo fstab. >> >> Thanks a lot >> >> Guillaume > > > > > From vserver.error@solucorp.qc.ca Fri Aug 30 15:17:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7UJHWW13783; Fri, 30 Aug 2002 15:17:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7UI75a20033 for vserver.list; Fri, 30 Aug 2002 14:07:05 -0400 Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7SJba316510 for ; Wed, 28 Aug 2002 15:37:37 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7SJP8b23115 for ; Wed, 28 Aug 2002 12:25:09 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Wed, 28 Aug 2002 12:37:11 -0700 MIME-Version: 1.0 Subject: [vserver] SSH problems Message-ID: <3D6CC3F7.15208.427ADD2@localhost> Priority: normal X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1136 root_server = xxx.xxx.xxx.10 vps1 = xxx.xxx.xxx.11 vps2 = xxx.xxx.xxx.12 root_server:/etc/ssh/sshd_config file includes : Listen xxx.xxx.xxx.10 vps1:/etc/ssh/sshd_config file includes : Listen xxx.xxx.xxx.11 vps1:/etc/ssh/sshd_config file includes : Listen xxx.xxx.xxx.12 When I try to ssh to a VPS, i get "Connection refused.", and if I remove the Listen line from the root_server's sshd_config, it answers ssh request to any IP on it's eth0:*, which means all vps servers. SSH to any of them, lands you in the root_server... -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Fri Aug 30 15:36:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7UJZsW14623; Fri, 30 Aug 2002 15:35:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7UJHg824275 for vserver.list; Fri, 30 Aug 2002 15:17:42 -0400 Received: from mail.microbsd.net (rrcs-se-24-73-201-51.biz.rr.com [24.73.201.51]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7UJHet24270 for ; Fri, 30 Aug 2002 15:17:40 -0400 Received: from 127.0.0.1 (localhost [127.0.0.1]) by mail.microbsd.net (Postfix) with SMTP id D2F201F05 for ; Fri, 30 Aug 2002 15:31:55 -0500 (EST) Received: from vaio.dsl-verizon.net (rrcs-se-24-73-201-50.biz.rr.com [24.73.201.50]) by mail.microbsd.net (Postfix) with ESMTP id A8B341F02 for ; Fri, 30 Aug 2002 15:31:55 -0500 (EST) Content-Type: text/plain; charset="us-ascii" From: Kerberus Organization: MicroBSD To: vserver@solucorp.qc.ca Subject: [vserver] Fix the SERVER Mailing list Date: Fri, 30 Aug 2002 15:16:40 -0500 User-Agent: KMail/1.4.3 MIME-Version: 1.0 Message-Id: <200208301516.40073.kerberus@microbsd.net> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g7UJHet24270 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1137 I have recieved over 500 blank emails from you with the following: Please fix the server or be firewalled, Ive already unsubscribed from the list but am still getting email anyway Received: from 127.0.0.1 (localhost [127.0.0.1]) by mail.microbsd.net (Postfix) with SMTP id AF0A81F14 for ; Fri, 30 Aug 2002 15:26:56 -0500 (EST) Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by mail.microbsd.net (Postfix) with ESMTP id 44E881F11 for ; Fri, 30 Aug 2002 15:26:56 -0500 (EST) Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7SIn1015257 for vserver.list; Wed, 28 Aug 2002 14:49:01 -0400 Date: Wed, 28 Aug 2002 14:49:01 -0400 From: vserver.error@solucorp.qc.ca Message-Id: <200208281849.g7SIn1015257@dns.solucorp.qc.ca> X-Authentication-Warning: dns.solucorp.qc.ca: mail set sender to vserver.error@solucorp.qc.ca using -f To: undisclosed-recipients: ; From vserver.error@solucorp.qc.ca Fri Aug 30 15:37:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7UJbPW14711; Fri, 30 Aug 2002 15:37:25 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7UIo8X22495 for vserver.list; Fri, 30 Aug 2002 14:50:08 -0400 Received: from smtp1.quicknet.net (hqfw.quicknet.net [207.21.171.126]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7UIo4t22487 for ; Fri, 30 Aug 2002 14:50:05 -0400 Received: from khayes-lin ([10.0.4.2]) by smtp1.quicknet.net (8.12.4/8.12.4) with ESMTP id g7UIoQNC014283 for ; Fri, 30 Aug 2002 18:50:27 GMT Content-Type: text/plain; charset="iso-8859-1" From: Kyle Hayes To: vserver@solucorp.qc.ca Subject: [vserver] email flood from solucorp! Date: Fri, 30 Aug 2002 11:50:25 -0700 User-Agent: KMail/1.4.1 References: <3D6CA63B.65EED18E@silicide.dk> In-Reply-To: <3D6CA63B.65EED18E@silicide.dk> MIME-Version: 1.0 Message-Id: <200208301150.25470.khayes@quicknet.net> X-Virus-Scanned: Message: ok X-Scanned-By: MIMEDefang 2.14 (www dot roaringpenguin dot com slash mimedefang) Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g7UIo4t22487 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1138 I have received over 350 messages in the past three hours from this list. All but two were empty. The message dates are all in the past two days. Something is wrong with the mail server sending these. PLEASE FIX THIS! I've sent a note directly to solucorp and received no response. Hopefully someone can call them or make sure they know what's happening. Best, Kyle From vserver.error@solucorp.qc.ca Fri Aug 30 15:38:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7UJc5W14780; Fri, 30 Aug 2002 15:38:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7UJNeS24692 for vserver.list; Fri, 30 Aug 2002 15:23:40 -0400 Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7RCqf306721 for ; Tue, 27 Aug 2002 08:52:41 -0400 Received: from hofmann.snowcra.sh (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id E68E919077 for ; Tue, 27 Aug 2002 13:45:54 +0100 (BST) Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id C0B402938 for ; Tue, 27 Aug 2002 13:53:04 +0100 (BST) Date: Tue, 27 Aug 2002 13:53:04 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] Hot-resizing In-Reply-To: <64A10D24-B694-11D6-B881-00039345FEA2@moolfreet.com> References: <64A10D24-B694-11D6-B881-00039345FEA2@moolfreet.com> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1139 Guillaume Plessis wrote: > > I compiled my kernel with lvm, ext3 and reiserfs (and so on...) and when > I have to install a new vserver, I create a new logical volume with a > reiserfs filesystem. Reiserfs and lvm allow me to limit the disk usage > and to resize the logical volume while I'm working on it. But I've never > tried to resize it when the attached vserver was up... > > Is it possible to do such a thing whitout to crash the vserver? I don't > know how the kernel manage the dedicaced-to-vserver disk space because > of the pseudo fstab. You need to apply the ext2resize patch, then you can use `ext2online' to resize the filesystems without umounting them. Beware, however, that you need to create filesystems with at least a 2k blocksize to avoid hitting some ext2 internal limits that will prevent you from resizing past 256MB boundaries (without use of `ext2prepare', which requires an unmount). Ext2resize is at http://ext2resize.sourceforge.net/ The patch, merged for vserver, is at: http://sam.vilain.net/vserver/linux-2.4.19-ctx13+ext2resize.patch -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 The best thing for being sad is to learn something. That is the only thing that never fails. T. H. WHITE From vserver.error@solucorp.qc.ca Fri Aug 30 16:33:48 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7UKXfW15624; Fri, 30 Aug 2002 16:33:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7UJQMH24955 for vserver.list; Fri, 30 Aug 2002 15:26:22 -0400 Received: from ns.kopteri.net (ns.kopteri.net [212.246.72.10]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7RB7J301501 for ; Tue, 27 Aug 2002 07:07:20 -0400 Received: from netland.fi (gw.netland.fi [212.246.72.6]) by ns.kopteri.net (8.11.6/8.11.2) with ESMTP id g7RB7g124189 for ; Tue, 27 Aug 2002 14:07:43 +0300 Message-ID: <3D6B5D77.6010302@netland.fi> Date: Tue, 27 Aug 2002 14:07:35 +0300 From: Jukka Laaksola User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020607 X-Accept-Language: fi, en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] multi-nic References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1140 Paul Sladen wrote: > On Fri, 23 Aug 2002, Jukka Laaksola wrote: > >>Jacques Gelinas wrote: >>> >>>IPROOT="eth0/IP1 eth1/IP2 IP3 IP4" >>>IPROOTDEV=eth2 >>> >>The problem is netmask ja broadcast for those ip aliases. If I >>understood right, IPROOTMASK and IPROOTBCAST doesn't have multi-ip/nic >>support. > > Try popping the broadcast address in the multi-ip statement with the > normal unicast addresses: > > IPROOT="eth0:192.168.100.1 eth0:192.168.100.255 eth1:10.0.0.1 \ > eth1:10.0.0.255" Didn't help. Actually I got more wierd ifconfig output... Those broadcast addresses are not the biggest problem. The problem is netmask. When I configure only one ip for virtual server, I got nis working. Because vserver forward 127.0.0.1 packets to virtual server's ip (or something like that), but that's not working with multiple ip. After a little test it seems 127.0.0.1 is forwarded to nowhere in virtual server if IPROOT has ip aliases for more than one nic. IPROOT="eth1:192.168.0.11 eth1:192.168.0.100" ypserv can register itself to portmap, 127.0.0.1 -> 192.168.0.11 nisclient on other computer can connect ypserv@192.168.0.11 IPROOT="eth0:212.x.x.10 eth1:192.168.0.11" ypserv can register itself to portmap, 127.0.0.1 -> 212.x.x.10 nisclient on other computer can connect ypserv@212.x.x.10 IPROOT="eth1:192.168.0.11 eth0:212.x.x.10" ypserv can't register itself to portmap, 127.0.0.1 -> ???? nisclient on other computer can't connect ypserv@192.168.0.11 or ypserv@212.x.x.10. IPROOTDEV was commented out in every situation. Last test had strange result.. Perhaps some bug? But anyway I solve the problem this way: - I commented out IPROOTDEV in /etc/vservsers/v1.conf - IPROOT="eth0:192.168.0.11 eth1:212.x.x.10 eth1:80.x.x.10 eth1:10.10.10.33" - I add in the /etc/vservers/v1.sh in pre-start section: ifconfig eth0:v1 192.168.0.11 netmask 255.255.255.0 broadcast 192.168.0.255 ifconfig eth1:v11 212.x.x.10 netmask 255.255.255.248 broadcast 212.x.x.15 ifconfig eth1:v12 80.x.x.10 netmask 255.255.255.248 broadcast 80.x.x.15 ifconfig eth1:v13 10.10.10.33 netmask 255.255.255.0 broadcast 10.10.10.255 - and in post-stop section: ifconfig eth1:v13 down ifconfig eth1:v12 down ifconfig eth1:v11 down ifconfig eth0:v1 down Now ypserv and nis clients works fine. -- Jukka Laaksola Netland Oy From vserver.error@solucorp.qc.ca Fri Aug 30 17:17:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7ULHqW15936; Fri, 30 Aug 2002 17:17:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7UKxEq29066 for vserver.list; Fri, 30 Aug 2002 16:59:14 -0400 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7UKxEI29061 for ; Fri, 30 Aug 2002 16:59:14 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g7UKxp313900 for vserver@solucorp.qc.ca; Fri, 30 Aug 2002 16:59:51 -0400 From: Jacques Gelinas Date: Fri, 30 Aug 2002 16:59:51 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] email flood from solucorp! X-mailer: tlmpmail 0.6 Message-ID: <20020830165951.2d637c9576b1@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1141 On Fri, 30 Aug 2002 11:50:25 -0500, Kyle Hayes wrote > I have received over 350 messages in the past three hours from this list. > All but two were empty. The message dates are all in the past two days. > Something is wrong with the mail server sending these. This was fixed this afternoon, sorry --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Aug 30 17:23:37 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7ULNPW16007; Fri, 30 Aug 2002 17:23:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7UIVja21383 for vserver.list; Fri, 30 Aug 2002 14:31:45 -0400 Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7SAU4303101 for ; Wed, 28 Aug 2002 06:30:04 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.33 #1 (Debian)) id 17k05b-0000k7-00 for ; Wed, 28 Aug 2002 12:30:19 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D6CA63B.65EED18E@silicide.dk> Date: Wed, 28 Aug 2002 12:30:19 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Hot-resizing References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17k05b-0000k7-00*xOUCpTtmOFc* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1142 Paul Sladen wrote: > > On Fri, 23 Aug 2002, Guillaume Plessis wrote: > I'm using ext3-on-LVM here and play safe (ext3 online resize it's in the > kernel, but ext2 online resize is). Stopping each vserver, umounting and > re-mounting the ext3 LVM share as ext2 (to clear up the journal), do the > resize and then remount it as ext3 again and finally restart the vserver. > So far, this has worked and left the ext3 in a clean state on remount... You dont need to remount it as ext2 to resize it. You could just unmount the ext3, resize it, and remount it as a ext3. JonB From vserver.error@solucorp.qc.ca Fri Aug 30 17:24:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7ULNwW16021; Fri, 30 Aug 2002 17:24:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7UKMpw27831 for vserver.list; Fri, 30 Aug 2002 16:22:51 -0400 Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7QLIZ317422 for ; Mon, 26 Aug 2002 17:18:35 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7QL6Lb03713 for ; Mon, 26 Aug 2002 14:06:21 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Mon, 26 Aug 2002 14:18:14 -0700 MIME-Version: 1.0 Subject: [vserver] Vserver-Admin : Debian Version Message-ID: <3D6A38A6.12575.ECD302D@localhost> Priority: normal X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1143 Mailing list seems to be not responding too well lately... or is that just me ? Sorry if somewhere in the line I missed this topic but... Has someone come up with a Vserver-admin set for Debian ? -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Fri Aug 30 17:40:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7ULeTW16105; Fri, 30 Aug 2002 17:40:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7UKNl727869 for vserver.list; Fri, 30 Aug 2002 16:23:47 -0400 Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7QHC4311802 for ; Mon, 26 Aug 2002 13:12:04 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g7QGxob28258 for ; Mon, 26 Aug 2002 09:59:51 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Fri, 23 Aug 2002 15:49:38 -0700 MIME-Version: 1.0 Subject: Re: [vserver] /dev/urandom Message-ID: <3D665992.17372.13D0D7F@localhost> Priority: normal X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1144 This is the entire contents of the /dev on the vserver root@vserver000:/dev# ls total 8 4 drwxr-xr-x 3 root 4096 Aug 24 01:48 . 4 drwxr-xr-x 17 root 4096 Aug 24 01:09 .. 0 srw-rw-rw- 1 root 0 Aug 24 01:42 log 0 -rw-r--r-- 1 root 0 Aug 24 01:42 null 0 drwxr-xr-x 2 root 0 Aug 24 00:48 pts 0 prw-r----- 1 adm 0 Aug 24 01:42 xconsole root@vserver000:/dev# -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Fri Aug 30 17:53:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7ULrDW16158; Fri, 30 Aug 2002 17:53:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7ULTaW30013 for vserver.list; Fri, 30 Aug 2002 17:29:36 -0400 Received: from aegis.dashin.net (aegis.dashin.net [205.159.173.20]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7ULTaI30008 for ; Fri, 30 Aug 2002 17:29:36 -0400 Received: from STARWARS (aegis.dashin.net [205.159.173.20]) by aegis.dashin.net (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id QAA12031 for ; Fri, 30 Aug 2002 16:23:42 -0500 X-Authentication-Warning: aegis.dashin.net: Host aegis.dashin.net [205.159.173.20] claimed to be STARWARS From: "Electric O. Mohawk" To: vserver@solucorp.qc.ca Date: Fri, 30 Aug 2002 14:29:56 -0700 MIME-Version: 1.0 Subject: re: [vserver] email flood from solucorp! Message-ID: <3D6F8164.8292.A1733A6@localhost> Priority: normal In-reply-to: <20020830165951.2d637c9576b1@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1145 Also, until today I didn't get any emails from the list since Aug 19. Did anyone else miss all the mail since then ? Or was the server down since then ? On 30 Aug 2002 at 16:59, Jacques Gelinas wrote: > On Fri, 30 Aug 2002 11:50:25 -0500, Kyle Hayes wrote > > I have received over 350 messages in the past three hours from this list. > > All but two were empty. The message dates are all in the past two days. > > Something is wrong with the mail server sending these. > > This was fixed this afternoon, sorry > > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > -- Electric O. Mohawk Founder, Dashin Networks From vserver.error@solucorp.qc.ca Fri Aug 30 18:48:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7UMmMW16472; Fri, 30 Aug 2002 18:48:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7ULS6929998 for vserver.list; Fri, 30 Aug 2002 17:28:06 -0400 Received: from ns1.mtl.toxik.net (modemcable043.98-203-24.mtl.mc.videotron.ca [24.203.98.43]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g7ULS5I29993 for ; Fri, 30 Aug 2002 17:28:06 -0400 Received: (qmail 9662 invoked by alias); 30 Aug 2002 21:28:32 -0000 Received: from koala.mtl.toxik.net (HELO toxik.com) (192.168.1.112) by ns1.mtl.toxik.net with SMTP; 30 Aug 2002 21:28:32 -0000 Message-ID: <3D6FE380.6080608@toxik.com> Date: Fri, 30 Aug 2002 17:28:32 -0400 From: Toxik - Martial Rioux Organization: Toxik Technologies Inc. User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020529 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] Test X-Enigmail-Version: 0.62.4.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1146 Please ignore.. -- Martial Rioux - Directeur Associé Infrastructures et Technologies Toxik Technologies Inc. - Montréal, QC, Canada www.toxik.com - Tél: (514) 528-6945 Ext 223 ˇ Téléc: (514) 221-3329 From vserver.error@solucorp.qc.ca Fri Aug 30 19:35:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7UNZgW16816; Fri, 30 Aug 2002 19:35:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7UNF4G32302 for vserver.list; Fri, 30 Aug 2002 19:15:04 -0400 Received: from hunt.vizional.com (hunt.vizional.com [216.52.247.10]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g7UNF4I32297 for ; Fri, 30 Aug 2002 19:15:04 -0400 Received: (qmail 11495 invoked from network); 30 Aug 2002 23:15:13 -0000 Received: from unknown (HELO POST.sm1.vizional.com) (216.52.247.1) by hunt.vizional.com with SMTP; 30 Aug 2002 23:15:13 -0000 X-MimeOLE: Produced By Microsoft Exchange V6.0.5762.3 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Subject: RE: [vserver] email flood from solucorp! Date: Fri, 30 Aug 2002 16:15:30 -0700 Message-ID: <484A0FDBBF168642A08EDA7BDAC18FE259BD75@POST.sm1.vizional.com> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: [vserver] email flood from solucorp! Thread-Index: AcJQcPAu9Q5IFirsTrynY752z9S5iQAChntA From: "Philip Snyder" To: Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g7UNF4I32297 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1147 I unsubcribed from this list about 2 months ago - and was receiving no emails as was expected until today, much like you. Exciting fun, huh? -P -----Original Message----- From: Electric O. Mohawk [mailto:elecmohwk@dashin.org] Sent: Friday, August 30, 2002 2:30 PM To: vserver@solucorp.qc.ca Subject: re: [vserver] email flood from solucorp! Also, until today I didn't get any emails from the list since Aug 19. Did anyone else miss all the mail since then ? Or was the server down since then ? On 30 Aug 2002 at 16:59, Jacques Gelinas wrote: > On Fri, 30 Aug 2002 11:50:25 -0500, Kyle Hayes wrote > > I have received over 350 messages in the past three hours from this list. > > All but two were empty. The message dates are all in the past two days. > > Something is wrong with the mail server sending these. > > This was fixed this afternoon, sorry > > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > -- Electric O. Mohawk Founder, Dashin Networks From vserver.error@solucorp.qc.ca Sat Aug 31 19:43:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g7VNhjW27312; Sat, 31 Aug 2002 19:43:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g7VNKYU25130 for vserver.list; Sat, 31 Aug 2002 19:20:34 -0400 Received: from mobile (qwest-sg-ip62.scinternet.net [65.100.231.62]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g7VNKWI25125 for ; Sat, 31 Aug 2002 19:20:33 -0400 Received: from mobile ([127.0.0.1] helo=localhost ident=matt) by mobile with esmtp (Exim 3.35 #1 (Debian)) id 17lHXh-0004x7-00 for ; Sat, 31 Aug 2002 17:20:37 -0600 Subject: [vserver] ProFTPd, OpenLDAP Slapd From: Matthew Excell To: vserver@solucorp.qc.ca Content-Type: text/plain Organization: The Possibility Forge, Inc. Message-Id: <1030836036.18969.19.camel@mobile> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.1.0.99 (Preview Release) Date: 31 Aug 2002 17:20:37 -0600 Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1148 Quick (Hopefully) question: Background: I installed the vserver package on a Debian 3.0 system (running the RPMs for 0.19 through Alien to get a deb packages). The servers are based on the mini-debian-vservers-016.tgz. I patched a 2.4.19 kernel (patch-2.4.19ctx-13.) It is running very well for the most part. I rebuilt bind9 to work (capsel issue - I have the vserver-compatible debian packages if anyone needs them.) I am not running anything but an address-restricted sshd and logging daemons on the root server. PostgreSQL, Apache, Bind9, and many, MANY other packages are working fine. Issue: ProFTPd (1.2.5) and slapd (2.0.23) will only work in the first vserver in which they are started. It seems like they are binding to all addresses for their ports (thereby not allowing future binds by other vservers,) but that shouldn't be possible within the vserver, right? (Other daemons are working well in multiple vservers. . .) Please let me know if there is any other information I need to provide. Thanks again for a fantastic package! -- Matthew Excell The Possibility Forge, Inc. From vserver.error@solucorp.qc.ca Mon Sep 2 07:03:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g82B3BW03419; Mon, 2 Sep 2002 07:03:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g82AOfc20165 for vserver.list; Mon, 2 Sep 2002 06:24:41 -0400 Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g82AOdI20160 for ; Mon, 2 Sep 2002 06:24:40 -0400 Received: from hofmann.snowcra.sh (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id 06DA119081 for ; Mon, 2 Sep 2002 11:17:27 +0100 (BST) Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id C2B68174A for ; Mon, 2 Sep 2002 11:25:07 +0100 (BST) Date: Mon, 2 Sep 2002 11:25:07 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] Hot-resizing Message-Id: <20020902112507.18dcf36e.sv@easyspace.com> In-Reply-To: <3D6CA63B.65EED18E@silicide.dk> References: <3D6CA63B.65EED18E@silicide.dk> Organization: Easyspace Ltd X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: PI2{lKxF*i|]%@A&-0AV/%sXN)UJ<+SeG}%8Cn%**KZ[f_OSx{xw&Rstfu?!x^ZJ%LV@4Z% Zr"EZm.GQFy@;"V82_:?cJ`kQ3+ Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1149 Jon Bendtsen wrote: > You dont need to remount it as ext2 to resize it. You could just > unmount the ext3, resize it, and remount it as a ext3. The ext2resize patch have a patch for online ext3 resizing in their CVS repository; that is included in the patch I sent to this list last week: http://sam.vilain.net/vserver/linux-2.4.19-ctx13+ext2resize.patch -- Sam Vilain, sv@easyspace.com Easyspace: an accredited ICANN GPG: http://sam.vilain.net/sam.asc registrar & web hosting company 7D74 2A09 B2D3 C30F F78E Have your domain run by techies 278A A425 30A9 05B5 2F13 with a clue. www.easyspace.com Real Programmers don't eat quiche. They like Twinkies, Coke and palate-scorching Szechwan food. From vserver.error@solucorp.qc.ca Mon Sep 2 10:53:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g82ErPW04695; Mon, 2 Sep 2002 10:53:25 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g82DnRQ24062 for vserver.list; Mon, 2 Sep 2002 09:49:27 -0400 Received: from mailport.inet.tele.dk (mailport.inet.tele.dk [193.88.13.66]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g82DnQI24056 for ; Mon, 2 Sep 2002 09:49:27 -0400 Received: from niflheim.int.tele.dk (niflheim.int.tele.dk [10.0.0.62]) by mailport.inet.tele.dk (Postfix) with ESMTP id 73F419B46 for ; Mon, 2 Sep 2002 15:49:54 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by niflheim.int.tele.dk (Postfix) with ESMTP id 1E64DA1EC for ; Mon, 2 Sep 2002 15:49:54 +0200 (CEST) Received: from veers.int.tele.dk (veers.int.tele.dk [10.0.0.10]) by niflheim.int.tele.dk (Postfix) with ESMTP id C1A7EA1A3 for ; Mon, 2 Sep 2002 15:49:52 +0200 (CEST) Received: by veers.int.tele.dk with Internet Mail Service (5.5.2650.21) id <3Z4JT8R3>; Mon, 2 Sep 2002 15:49:52 +0200 Message-ID: <734513283C7CD511BA0700508BB958CC689DC0@palpatine.int.tele.dk> From: Ivan Eriksen To: "'vserver@solucorp.qc.ca'" Subject: [vserver] ntpd in a vserver ? Date: Mon, 2 Sep 2002 15:47:44 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" X-Envelope-From: Ivan.Eriksen@tdcinternet.dk X-Envelope-To: vserver@solucorp.qc.ca X-Virus-Scanned: by TDC Internet A/S - Intern IT Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1150 Hey, How do I run ntpd in a vserver ? Which kind of rights in S_CAPS do I need to muck around with the clock on a server ? My root server doesnt have access to the Internet, so it would be nice to be able to use ntp in one of the vservers. / IE From vserver.error@solucorp.qc.ca Mon Sep 2 11:11:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g82FBYW04807; Mon, 2 Sep 2002 11:11:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g82ERnk24993 for vserver.list; Mon, 2 Sep 2002 10:27:49 -0400 Received: from visor.qala.com.sg (visor.qala.com.sg [210.193.2.43]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g82ERlI24988 for ; Mon, 2 Sep 2002 10:27:48 -0400 Received: from qala.com.sg (dyn13ppp153.qala.com.sg [210.193.13.153]) by visor.qala.com.sg (8.11.3/8.11.3) with SMTP id g82ES7n06675 for ; Mon, 2 Sep 2002 22:28:07 +0800 (SGT) Received: by qala.com.sg (sSMTP sendmail emulation); Mon, 2 Sep 2002 22:31:14 +0800 Date: Mon, 2 Sep 2002 22:31:14 +0800 From: kint@qala.com.sg To: vserver@solucorp.qc.ca Subject: Re: [vserver] ntpd in a vserver ? Message-ID: <20020902143113.GA216@lap.kintnet> References: <734513283C7CD511BA0700508BB958CC689DC0@palpatine.int.tele.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <734513283C7CD511BA0700508BB958CC689DC0@palpatine.int.tele.dk> User-Agent: Mutt/1.3.27i Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1151 On a similar note, is it possible to run pppd in vserver, and make the interface ppp0 to other vservers or the root? On Mon, Sep 02, 2002 at 03:47:44PM +0200, Ivan Eriksen wrote: > Hey, > > How do I run ntpd in a vserver ? Which kind of rights in S_CAPS do I need to > muck around with the clock on a server ? My root server doesnt have access > to the Internet, so it would be nice to be able to use ntp in one of the > vservers. > > / IE > From vserver.error@solucorp.qc.ca Mon Sep 2 11:39:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g82FdsW04916; Mon, 2 Sep 2002 11:39:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g82F8kT25801 for vserver.list; Mon, 2 Sep 2002 11:08:46 -0400 Received: from student6.rug.ac.be (student6.rug.ac.be [157.193.88.74]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g82F8jI25796 for ; Mon, 2 Sep 2002 11:08:45 -0400 Received: (from ivo@localhost) by student6.rug.ac.be (8.9.3/8.9.3/Debian 8.9.3-21) id RAA20109 for vserver@solucorp.qc.ca; Mon, 2 Sep 2002 17:09:12 +0200 Date: Mon, 2 Sep 2002 17:09:12 +0200 From: Ivo De Decker To: vserver@solucorp.qc.ca Subject: Re: [vserver] ntpd in a vserver ? Message-ID: <20020902170912.A19717@student.rug.ac.be> References: <734513283C7CD511BA0700508BB958CC689DC0@palpatine.int.tele.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <734513283C7CD511BA0700508BB958CC689DC0@palpatine.int.tele.dk>; from Ivan.Eriksen@tdcinternet.dk on Mon, Sep 02, 2002 at 03:47:44PM +0200 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1152 On Mon, Sep 02, 2002 at 03:47:44PM +0200, Ivan Eriksen wrote: > How do I run ntpd in a vserver ? Which kind of rights in S_CAPS do I need to > muck around with the clock on a server ? My root server doesnt have access > to the Internet, so it would be nice to be able to use ntp in one of the > vservers. /usr/include/linux/capability.h: /* Allow manipulation of system clock */ /* Allow irix_stime on mips */ /* Allow setting the real-time clock */ #define CAP_SYS_TIME 25 Greetings, Ivo De Decker From vserver.error@solucorp.qc.ca Tue Sep 3 14:26:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g83IQLW15634; Tue, 3 Sep 2002 14:26:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g83Ht1C27290 for vserver.list; Tue, 3 Sep 2002 13:55:01 -0400 Received: from mobile (qwest-sg-ip62.scinternet.net [65.100.231.62]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g83Ht0I27255 for ; Tue, 3 Sep 2002 13:55:00 -0400 Received: from mobile ([127.0.0.1] helo=localhost ident=matt) by mobile with esmtp (Exim 3.35 #1 (Debian)) id 17mHt3-0008Af-00 for ; Tue, 03 Sep 2002 11:54:49 -0600 Subject: Re: [vserver] ProFTPd, OpenLDAP Slapd From: Matthew Excell To: vserver@solucorp.qc.ca In-Reply-To: <1030836036.18969.19.camel@mobile> References: <1030836036.18969.19.camel@mobile> Content-Type: text/plain Organization: The Possibility Forge, Inc. Message-Id: <1031075688.31159.3.camel@mobile> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.1.0.99 (Preview Release) Date: 03 Sep 2002 11:54:49 -0600 Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1153 I have been working on this on and off this weekend, but still no progress. Slapd just throws the following: Sep 3 18:49:49 sf slapd[22149]: daemon: bind(6) failed errno=98 (Address already in use) Sep 3 18:49:49 sf slapd[22149]: daemon: bind(6) failed errno=98 (Address already in use) Sep 3 18:49:49 sf slapd[22149]: daemon: bind(6) failed Sep 3 18:49:49 sf slapd[22149]: slapd stopped. Sep 3 18:49:49 sf slapd[22149]: connections_destroy: nothing to destroy. ProFTPd has similar complaints: Sep 3 18:53:29 sf proftpd[22343]: sf.forgecommunications.com - Failed binding to ::, port 21: Address already in use Sep 3 18:53:29 sf proftpd[22343]: sf.forgecommunications.com - Check the ServerType directive to ensure you are configured correctly. Has anyone seen this before? Apache works fine, bind9 works fine, PostgreSQL works fine. It seems like slapd and proFTPd are binding outside the chbind! Help!!! On Sat, 2002-08-31 at 17:20, Matthew Excell wrote: > Quick (Hopefully) question: > > Background: > I installed the vserver package on a Debian 3.0 system (running the RPMs > for 0.19 through Alien to get a deb packages). The servers are based on > the mini-debian-vservers-016.tgz. I patched a 2.4.19 kernel > (patch-2.4.19ctx-13.) It is running very well for the most part. I > rebuilt bind9 to work (capsel issue - I have the vserver-compatible > debian packages if anyone needs them.) I am not running anything but an > address-restricted sshd and logging daemons on the root server. > PostgreSQL, Apache, Bind9, and many, MANY other packages are working > fine. > > Issue: > ProFTPd (1.2.5) and slapd (2.0.23) will only work in the first vserver > in which they are started. It seems like they are binding to all > addresses for their ports (thereby not allowing future binds by other > vservers,) but that shouldn't be possible within the vserver, right? > (Other daemons are working well in multiple vservers. . .) > > Please let me know if there is any other information I need to provide. > > Thanks again for a fantastic package! > > -- > Matthew Excell > The Possibility Forge, Inc. > -- Matthew Excell The Possibility Forge, Inc. From vserver.error@solucorp.qc.ca Tue Sep 3 17:48:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g83Lm7W16993; Tue, 3 Sep 2002 17:48:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g83LBBw31594 for vserver.list; Tue, 3 Sep 2002 17:11:11 -0400 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g83LBAI31589 for ; Tue, 3 Sep 2002 17:11:10 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g83LBt405800 for vserver@solucorp.qc.ca; Tue, 3 Sep 2002 17:11:55 -0400 From: Jacques Gelinas Date: Tue, 3 Sep 2002 17:11:55 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] ProFTPd, OpenLDAP Slapd X-mailer: tlmpmail 0.6 Message-ID: <20020903171155.af54880da239@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1154 On Sat, 31 Aug 2002 17:20:37 -0500, Matthew Excell wrote > Quick (Hopefully) question: > Issue: > ProFTPd (1.2.5) and slapd (2.0.23) will only work in the first vserver > in which they are started. It seems like they are binding to all > addresses for their ports (thereby not allowing future binds by other > vservers,) but that shouldn't be possible within the vserver, right? > (Other daemons are working well in multiple vservers. . .) > > Please let me know if there is any other information I need to provide. On the first vserver where you are running slapd and proftpd, can you do netstat -atn | grep LISTEN Normally, you should see lines like Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State tcp 0 0 192.168.3.250:389 0.0.0.0:* LISTEN tcp 0 0 192.168.3.250:22 0.0.0.0:* LISTEN Here you see one vserver with an sshd and slapd server running. Both unmodified and bound to 192.168.3.250, not 0.0.0.0. Is this what you see ? I am running openldap 2.0.21 here without trouble. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Sep 3 17:50:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g83LoZW17024; Tue, 3 Sep 2002 17:50:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g83L6PP31475 for vserver.list; Tue, 3 Sep 2002 17:06:25 -0400 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g83L6PI31470 for ; Tue, 3 Sep 2002 17:06:25 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g83L7A305558 for vserver@solucorp.qc.ca; Tue, 3 Sep 2002 17:07:10 -0400 From: Jacques Gelinas Date: Tue, 3 Sep 2002 17:07:10 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] ntpd in a vserver ? X-mailer: tlmpmail 0.6 Message-ID: <20020903170710.1b914fefed3e@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1155 On Mon, 2 Sep 2002 22:31:14 -0500, kint@qala.com.sg wrote > On a similar note, is it possible to run pppd in vserver, and make the > interface ppp0 to other vservers or the root? It is possible, but there is a catch. If you grant CAP_NET_ADMIN to a vserver it is allowed to reconfigure every device. You can't restrict configuration of a specific device to a vserver. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Sep 3 19:09:13 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g83N93W17518; Tue, 3 Sep 2002 19:09:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g83Lpi232432 for vserver.list; Tue, 3 Sep 2002 17:51:44 -0400 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g83LpiI32427 for ; Tue, 3 Sep 2002 17:51:44 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g83LqSm06191 for vserver@solucorp.qc.ca; Tue, 3 Sep 2002 17:52:28 -0400 From: Jacques Gelinas Date: Tue, 3 Sep 2002 17:52:28 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Hot-resizing X-mailer: tlmpmail 0.6 Message-ID: <20020903175228.db0c0d1a425f@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1156 > I compiled my kernel with lvm, ext3 and reiserfs (and so on...) and when > I have to install a new vserver, I create a new logical volume with a > reiserfs filesystem. Reiserfs and lvm allow me to limit the disk usage > and to resize the logical volume while I'm working on it. But I've never > tried to resize it when the attached vserver was up... > > Is it possible to do such a thing whitout to crash the vserver? I don't > know how the kernel manage the dedicaced-to-vserver disk space because > of the pseudo fstab. vservers are just a bunch of processes tagged with a common security ID. filesystem wise, they are just processes. The pseudo fstab (and corresponding mtab) are there just to please `df`. They do not have operational role (filesystem wise). So resizing should work as usual. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Sep 3 23:13:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g843CrW19218; Tue, 3 Sep 2002 23:12:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g84203o04950 for vserver.list; Tue, 3 Sep 2002 22:00:03 -0400 Received: from mobile (qwest-sg-ip62.scinternet.net [65.100.231.62]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g84202I04945 for ; Tue, 3 Sep 2002 22:00:03 -0400 Received: from mobile ([127.0.0.1] helo=localhost ident=matt) by mobile with esmtp (Exim 3.35 #1 (Debian)) id 17mPSS-00006T-00 for ; Tue, 03 Sep 2002 19:59:52 -0600 Subject: re: [vserver] ProFTPd, OpenLDAP Slapd From: Matthew Excell To: vserver@solucorp.qc.ca In-Reply-To: <20020903171155.af54880da239@remtk.solucorp.qc.ca> References: <20020903171155.af54880da239@remtk.solucorp.qc.ca> Content-Type: text/plain Organization: The Possibility Forge, Inc. Message-Id: <1031104792.32767.26.camel@mobile> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.1.0.99 (Preview Release) Date: 03 Sep 2002 19:59:52 -0600 Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1157 On Tue, 2002-09-03 at 16:11, Jacques Gelinas wrote: > On the first vserver where you are running slapd and proftpd, can you do > > netstat -atn | grep LISTEN > > Normally, you should see lines like > > Active Internet connections (servers and established) > Proto Recv-Q Send-Q Local Address Foreign Address State > tcp 0 0 192.168.3.250:389 0.0.0.0:* LISTEN > tcp 0 0 192.168.3.250:22 0.0.0.0:* LISTEN > > Here you see one vserver with an sshd and slapd server running. Both unmodified and > bound to 192.168.3.250, not 0.0.0.0. > > Is this what you see ? > > I am running openldap 2.0.21 here without trouble. Here is the netstat output from the vserver with proftpd and slapd running: tcp 0 0 192.168.90.187:2401 0.0.0.0:* LISTEN tcp 0 0 192.168.90.187:37 0.0.0.0:* LISTEN tcp 0 0 192.168.90.187:9 0.0.0.0:* LISTEN tcp 0 0 192.168.90.187:13 0.0.0.0:* LISTEN tcp 0 0 192.168.90.187:80 0.0.0.0:* LISTEN tcp 0 0 192.168.90.187:113 0.0.0.0:* LISTEN tcp 0 0 192.168.90.187:53 0.0.0.0:* LISTEN tcp 0 0 192.168.90.187:22 0.0.0.0:* LISTEN tcp 0 0 192.168.90.187:5432 0.0.0.0:* LISTEN tcp 0 0 192.168.90.187:953 0.0.0.0:* LISTEN tcp 0 0 192.168.90.187:25 0.0.0.0:* LISTEN inetd, apache, named, postgresql - no slapd or proftpd So I pulled a netstat on the root server: tcp 0 0 0.0.0.0:32768 0.0.0.0:* LISTEN tcp 0 0 0.0.0.0:515 0.0.0.0:* LISTEN tcp 0 0 192.168.90.184:37 0.0.0.0:* LISTEN tcp 0 0 192.168.90.184:9 0.0.0.0:* LISTEN tcp 0 0 192.168.90.184:2988 0.0.0.0:* LISTEN tcp 0 0 192.168.90.184:13 0.0.0.0:* LISTEN tcp 0 0 192.168.90.184:143 0.0.0.0:* LISTEN tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN tcp 0 0 192.168.90.184:113 0.0.0.0:* LISTEN tcp 0 0 192.168.90.184:22 0.0.0.0:* LISTEN tcp 0 0 192.168.90.184:25 0.0.0.0:* LISTEN tcp 0 0 192.168.90.184:220 0.0.0.0:* LISTEN tcp 0 0 :::389 :::* LISTEN tcp 0 0 :::21 :::* LISTEN tcp 0 0 ::1:953 :::* LISTEN xinetd, sshd; lpd,rpc.statd & portmap (bound to everything - I'll remove them later;) and three odd entries for slapd, proftpd, and the rndc port for named (named appears to be working fine) When I stop slapd and proftpd (from the vserver, of course) the 389 disappears from the netstat output, but 21 does not and proftpd will no longer start (as I would expect with the port still tied up.) Any hints? (Thanks for your time - it is a fantastic package.) -- Matthew Excell The Possibility Forge, Inc. From vserver.error@solucorp.qc.ca Wed Sep 4 15:12:41 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g84JCZW26888; Wed, 4 Sep 2002 15:12:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g84IgSi27901 for vserver.list; Wed, 4 Sep 2002 14:42:28 -0400 Received: from rhenium.btinternet.com (rhenium.btinternet.com [194.73.73.93]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g84IgQI27896 for ; Wed, 4 Sep 2002 14:42:27 -0400 Received: from host62-6-88-118.in-addr.btopenworld.com ([62.6.88.118] helo=home4v9eek8u3l) by rhenium.btinternet.com with smtp (Exim 3.22 #8) id 17mf79-0003Ai-00 for vserver@solucorp.qc.ca; Wed, 04 Sep 2002 19:42:55 +0100 Message-ID: <051801c25442$6edae850$73897ad5@home4v9eek8u3l> From: "John Lyons" To: Subject: [vserver] Can't execute /etc/rc.d/rc (No such file or directory) Date: Wed, 4 Sep 2002 19:39:37 +0100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4807.1700 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1158 I've just set up a new host server RedHat7.2 running 2.4.19ctx-13 and vserver-admin-0.19-1 vserver-0.19-1 Kernel patch seems fine, and the host server is ok. Trying to start any virtual servers is giving. [root@svr11 vservers]# vserver vs189 start Starting the virtual server vs189 Server vs189 is not running ipv4root is now xxx.xxx.xx.189 Host name is now vs189.xxxx.xxx Domain name is now xxxx.xxx New security context is 189 Can't execute /etc/rc.d/rc (No such file or directory) (I've removed xxx.xxx etc for my own security) The virtual server ran quite happily on an older host server 2.4.18ctx-10. Conf file is IPROOT="xxx.xxx.xxx.189" IPROOTDEV=eth0 ONBOOT=yes S_CONTEXT=189 S_DOMAINNAME=xxx.xxx S_HOSTNAME=xxx.xxx.xxx S_NICE=1 S_FLAGS="lock sched nproc" ULIMIT="-H -u 200" S_CAPS="CAP_NET_RAW" Can anyone spot the problem? Regards John Lyons Netserve Consultants Ltd From vserver.error@solucorp.qc.ca Thu Sep 5 03:05:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g85757W31784; Thu, 5 Sep 2002 03:05:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g856l0v12432 for vserver.list; Thu, 5 Sep 2002 02:47:00 -0400 Received: from bourget-group.com (212.68.230.19.brutele.be [212.68.230.19]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g856kwI12427 for ; Thu, 5 Sep 2002 02:46:59 -0400 Received: (qmail 11176 invoked from network); 5 Sep 2002 06:47:28 -0000 Received: from unknown (HELO pc-00070) (192.168.2.70) by lombardi.bourget-group.com (192.168.2.1) with ESMTP; 05 Sep 2002 06:47:28 -0000 Subject: Re: [vserver] Can't execute /etc/rc.d/rc (No such file or directory) From: Etienne Schellerup To: vserver@solucorp.qc.ca In-Reply-To: <051801c25442$6edae850$73897ad5@home4v9eek8u3l> References: <051801c25442$6edae850$73897ad5@home4v9eek8u3l> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8-3mdk Date: 05 Sep 2002 08:47:24 +0200 Message-Id: <1031208448.2562.8.camel@bigmac.bourget-group.com> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1159 I had a similar problem after unifying two vservers not located on the same partition. What happened was that most files in /bin /sbin /usr/bin and others got simply deleted (hence the vserver doesn't boot). Try deunifying the two if that is what you did: /usr/lib/vserver/vunify --undo basevserver target -- ALL Or alternatively copy all the files back by hand... Hope this helps, Etienne On Wed, 2002-09-04 at 20:39, John Lyons wrote: > > I've just set up a new host server RedHat7.2 running 2.4.19ctx-13 and > vserver-admin-0.19-1 vserver-0.19-1 > > Kernel patch seems fine, and the host server is ok. > > Trying to start any virtual servers is giving. > > [root@svr11 vservers]# vserver vs189 start > Starting the virtual server vs189 > Server vs189 is not running > ipv4root is now xxx.xxx.xx.189 > Host name is now vs189.xxxx.xxx > Domain name is now xxxx.xxx > New security context is 189 > Can't execute /etc/rc.d/rc (No such file or directory) > > (I've removed xxx.xxx etc for my own security) > > The virtual server ran quite happily on an older host server 2.4.18ctx-10. > > Conf file is > IPROOT="xxx.xxx.xxx.189" > IPROOTDEV=eth0 > ONBOOT=yes > S_CONTEXT=189 > S_DOMAINNAME=xxx.xxx > S_HOSTNAME=xxx.xxx.xxx > S_NICE=1 > S_FLAGS="lock sched nproc" > ULIMIT="-H -u 200" > S_CAPS="CAP_NET_RAW" > > > > Can anyone spot the problem? > > > Regards > > John Lyons > Netserve Consultants Ltd > -- Etienne Schellerup Director & Technical Consultant Synclude Ltd. BE Phone: +32 (0) 485 899 686 - Fax: +32 (0) 2 610 7707 http://www.synclude.com From vserver.error@solucorp.qc.ca Thu Sep 5 12:16:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g85GGmW04287; Thu, 5 Sep 2002 12:16:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g85Fq5p26135 for vserver.list; Thu, 5 Sep 2002 11:52:05 -0400 Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g85Fq4I26130 for ; Thu, 5 Sep 2002 11:52:04 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id 248237FB3 for ; Thu, 5 Sep 2002 10:52:26 -0400 (EDT) Message-ID: <3D777F1F.2050503@netscape.net> Date: Thu, 05 Sep 2002 10:58:23 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] kicked off list + (debian host + debian client + samba) References: <051801c25442$6edae850$73897ad5@home4v9eek8u3l> <1031208448.2562.8.camel@bigmac.bourget-group.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1160 I think I got kicked off the list last week... I am hoping that it was a technical problem (I know there was some server maintenance going on) and that I didn't irritate anybody. In any case I finally got the debian host + debian client thing working... the problem was that I was not chbinding all the stuff correctly. It seems there really sound be something in the documentation covering that as part of the install procedure. My goal is to get all the critical services our company needs inside a vserver so I can easily back it up and replicate it in case of a hardware failure. This includes (so far) apache, samba, perl, and e-mail (with squirrelmail). Our problem has always been the more we depend on linux the more vulnerable we become to hardware failure and downtime. Also each service we add makes it more difficult to upgrade or experiment with new solutions as the risk of breaking something is too great. The reason for this is that I am the only one (in our company) who can set all this up and the time it takes to reconfigure and tune a system to get it back in working order is longer than we can really afford. Vserver seems like it will finally solve all these problems and make linux based solutions much more viable in our company. Anyway, my current problem seems to be that I can get everything working except samba. I can either run it in the vserver, or on the host but not both. Smbd seems to work but nmbd fails. The following is the result of running mnbd from the host server while smbd is running on the main server and both smbd and nmbd are running in the virtual server. p300:/etc/init.d# chbind --ip 192.168.0.52 nmbd -i ipv4root is now 192.168.0.52 Netbios nameserver version 2.2.3a-6 for Debian started. Copyright Andrew Tridgell and the Samba Team 1994-2002 standard input is not a socket, assuming -D option bind failed on port 137 socket_addr = 192.168.0.55. Error = Cannot assign requested address nmbd_subnetdb:make_subnet() Failed to open nmb socket on interface 192.168.0.55 for port 137. Error was Cannot assign requested address ERROR: Failed when creating subnet lists. Exiting. The virtual server is running at 192.168.0.55 while the main server is at 192.168.0.52 so I am not sure why it is trying to bind to 192.168.0.55 on the main server especially as it is chbind to 52. I searched the archive but all the stuff there referring to samba seems really old and not really applicable. Thanks, Brandon. From vserver.error@solucorp.qc.ca Thu Sep 5 13:41:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g85Hf4W05150; Thu, 5 Sep 2002 13:41:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g85HHn228397 for vserver.list; Thu, 5 Sep 2002 13:17:49 -0400 Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g85HHmI28392 for ; Thu, 5 Sep 2002 13:17:48 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id 6CE6F7FB3 for ; Thu, 5 Sep 2002 12:18:10 -0400 (EDT) Message-ID: <3D779338.6020904@netscape.net> Date: Thu, 05 Sep 2002 12:24:08 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] kicked off list + (debian host + debian client + samba) References: <051801c25442$6edae850$73897ad5@home4v9eek8u3l> <1031208448.2562.8.camel@bigmac.bourget-group.com> <3D777F1F.2050503@netscape.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1161 Ok, I think I am going to answer my own question. It seems chbind causes nmbd to fail no matter what else is running. There is a configuration paramater in the smb.conf file that allows you to specify which interface or ip to use. I added interfaces = 192.168.0.52/24 to the global section of the smb.conf file and then it would chbind just fine. Now for some reason SWAT is messing up. This is not really a problem as I can get around it but I would like to know why it is a problem as it may be causing others. It was my understanding that chbind will bind all ports on an interface to an ip and a program to that ip. Swat uses port 901 and is called from inetd which is chbound on the host to 192.168.0.52 it is accessed through a web-browser (http://192.168.0.52:901) the vserver is at 192.168.0.55, the problem is that both (http://192.168.0.52:901) and (http://192.168.0.55:901) bring up the host (52) version of swat. If I change the port in /etc/services to 902 it works correctly. One other discrepency I noticed was that swat reports that smbd and nmbd are not running even though they are working fine. Any ideas? Brandon. BrandonHoult wrote: > I think I got kicked off the list last week... I am hoping that it was > a technical problem (I know there was some server maintenance going > on) and that I didn't irritate anybody. In any case I finally got the > debian host + debian client thing working... the problem was that I > was not chbinding all the stuff correctly. It seems there really > sound be something in the documentation covering that as part of the > install procedure. > My goal is to get all the critical services our company needs inside > a vserver so I can easily back it up and replicate it in case of a > hardware failure. This includes (so far) apache, samba, perl, and > e-mail (with squirrelmail). Our problem has always been the more we > depend on linux the more vulnerable we become to hardware failure and > downtime. Also each service we add makes it more difficult to upgrade > or experiment with new solutions as the risk of breaking something is > too great. The reason for this is that I am the only one (in our > company) who can set all this up and the time it takes to reconfigure > and tune a system to get it back in working order is longer than we > can really afford. Vserver seems like it will finally solve all these > problems and make linux based solutions much more viable in our > company. Anyway, my current problem seems to be that I can get > everything working except samba. I can either run it in the vserver, > or on the host but not both. Smbd seems to work but nmbd fails. The > following is the result of running mnbd from the host server while > smbd is running on the main server and both smbd and nmbd are running > in the virtual server. > p300:/etc/init.d# chbind --ip 192.168.0.52 nmbd -i > ipv4root is now 192.168.0.52 > Netbios nameserver version 2.2.3a-6 for Debian started. > Copyright Andrew Tridgell and the Samba Team 1994-2002 > standard input is not a socket, assuming -D option > bind failed on port 137 socket_addr = 192.168.0.55. > Error = Cannot assign requested address > nmbd_subnetdb:make_subnet() > Failed to open nmb socket on interface 192.168.0.55 for port 137. > Error was Cannot assign requested address > ERROR: Failed when creating subnet lists. Exiting. > > The virtual server is running at 192.168.0.55 while the main server is > at 192.168.0.52 so I am not sure why it is trying to bind to > 192.168.0.55 on the main server especially as it is chbind to 52. I > searched the archive but all the stuff there referring to samba seems > really old and not really applicable. > > Thanks, > Brandon. > From vserver.error@solucorp.qc.ca Fri Sep 6 04:06:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8686QW14628; Fri, 6 Sep 2002 04:06:30 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g867msd14304 for vserver.list; Fri, 6 Sep 2002 03:48:54 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g867mlI14297 for ; Fri, 6 Sep 2002 03:48:50 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id BE166108C for ; Fri, 6 Sep 2002 09:55:20 +0200 (CEST) Date: Fri, 6 Sep 2002 09:51:20 +0200 From: Klavs Klavsen To: Vserver mailinglist Subject: [vserver] upgrading dist in vserver Message-Id: <20020906095120.02c9dd7b.kl@vsen.dk> Organization: Enable IT X-Mailer: Sylpheed version 0.8.2claws (GTK+ 1.2.10; ) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1166 Hi guys, What would be the best/easiest way to upgrade my distribution in a vserver? Right now, my vserver is running RedHat 7.2, and my base vserver is running RedHat 7.3. What if my base was running RedHat 6.2 and my vserver was 7.2 and I only wanted to upgrade my vserver (to test for potentiel problems f.ex.)? Thankyou for your help. p.s. I'm asking this, cause I'm working on a presentation of vserver to my local LUG (called SSLUG - with 6000+ members - I hope not too many show up :-) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Fri Sep 6 07:48:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g86BlxW16067; Fri, 6 Sep 2002 07:47:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g86BJNG19467 for vserver.list; Fri, 6 Sep 2002 07:19:23 -0400 Received: from mail.trekia.se (stratos.trekia.se [212.105.83.242]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g86BJLI19462 for ; Fri, 6 Sep 2002 07:19:21 -0400 Received: from localhost (jonas@localhost) by mail.trekia.se (8.11.1/8.11.1) with ESMTP id g86BJpT24088 for ; Fri, 6 Sep 2002 13:19:51 +0200 X-Authentication-Warning: stratos.trekia.se: jonas owned process doing -bs Date: Fri, 6 Sep 2002 13:19:51 +0200 (CEST) From: =?ISO-8859-1?Q?Jonas_Bj=F6rklund?= X-X-Sender: jonas@stratos To: Vserver mailinglist Subject: Re: [vserver] upgrading dist in vserver In-Reply-To: <20020906095120.02c9dd7b.kl@vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1167 > p.s. I'm asking this, cause I'm working on a presentation of vserver to my local LUG (called SSLUG - with 6000+ members - I hope not too many show up :-) Give the people an Debian example also. master# vserver vsXX enter vserv# apt-get update vserv# apt-get dist-upgrade vserv# exit From vserver.error@solucorp.qc.ca Fri Sep 6 08:39:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g86CdeW16408; Fri, 6 Sep 2002 08:39:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g86CQSh20925 for vserver.list; Fri, 6 Sep 2002 08:26:28 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g86CQPI20920 for ; Fri, 6 Sep 2002 08:26:26 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id A4711FFC for ; Fri, 6 Sep 2002 14:33:05 +0200 (CEST) Date: Fri, 6 Sep 2002 14:29:10 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: Re: [vserver] upgrading dist in vserver Message-Id: <20020906142910.7439ee04.kl@vsen.dk> In-Reply-To: References: <20020906095120.02c9dd7b.kl@vsen.dk> Organization: Enable IT X-Mailer: Sylpheed version 0.8.2claws (GTK+ 1.2.10; ) Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1168 On Fri, 6 Sep 2002 13:19:51 +0200 (CEST) Jonas Björklund wrote: > > > p.s. I'm asking this, cause I'm working on a presentation of vserver to my local LUG (called SSLUG - with 6000+ members - I hope not too many show up :-) > > Give the people an Debian example also. > > master# vserver vsXX enter > vserv# apt-get update > vserv# apt-get dist-upgrade > vserv# exit > hehe - it's easy with Debian - I know :-) Do any one know how it's done with RedHat? is the only way, to download all the equivalent packages (if they're still named the same) for the new dist-version and rpm -Uvh them? -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Fri Sep 6 10:38:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g86Ec4W17516; Fri, 6 Sep 2002 10:38:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g86ELg323693 for vserver.list; Fri, 6 Sep 2002 10:21:42 -0400 Received: from smtp.nofida.ch ([62.2.184.249]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g86ELeI23686 for ; Fri, 6 Sep 2002 10:21:41 -0400 Received: by smtp.nofida.ch (Postfix, from userid 101) id 4D5AC166; Fri, 6 Sep 2002 16:22:10 +0200 (CEST) Received: from galadriel (unknown [192.168.74.35]) by smtp.nofida.ch (Postfix) with ESMTP id E6C8B165 for ; Fri, 6 Sep 2002 16:22:01 +0200 (CEST) Subject: Re: [vserver] upgrading dist in vserver From: Marcel de Riedmatten To: vserver@solucorp.qc.ca In-Reply-To: <20020906142910.7439ee04.kl@vsen.dk> References: <20020906095120.02c9dd7b.kl@vsen.dk> <20020906142910.7439ee04.kl@vsen.dk> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-w6TKYn5HObR13ft4LI7E" X-Mailer: Ximian Evolution 1.0.3 (1.0.3-6) Date: 06 Sep 2002 16:21:35 +0200 Message-Id: <1031322095.6265.4.camel@galadriel> Mime-Version: 1.0 X-Virus-Scanned: by AMaViS perl-11 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1169 --=-w6TKYn5HObR13ft4LI7E Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Le ven 06/09/2002 =E0 14:29, Klavs Klavsen a =E9crit : > On Fri, 6 Sep 2002 13:19:51 +0200 (CEST) > Jonas Bj=F6rklund wrote: >=20 > Do any one know how it's done with RedHat? is the only way, to download a= ll the equivalent packages (if they're still named the same) for the new di= st-version and rpm -Uvh them? >=20 Yes it can be done. People have reported upgrade from RH 6.2 to RH 7.3 with Connectiva port of apt to rpm. See http://moin.conectiva.com.br/AptRpm and the mailling list archive of the project.=20 --=20 Marcel de Riedmatten pgp key: CFE703CA http://ftp.dotforge.ch/pub/users/mdr/mdr.gpg.asc Empreinte: 4687 F9CB D8E2 AC1A B806 F812 C048 0875 CFE7 03CA --=-w6TKYn5HObR13ft4LI7E Content-Type: application/pgp-signature; name=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: Pour information voir http://www.gnupg.org iD4DBQA9eLnuwEgIdc/nA8oRApGTAJ0cE9CFkexL1fLuqj8qPsSY9Xtj/ACXSvtk f6LgW8WruCQgEKBAVccSeg== =mX2W -----END PGP SIGNATURE----- --=-w6TKYn5HObR13ft4LI7E-- From vserver.error@solucorp.qc.ca Fri Sep 6 16:44:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g86KhwW20444; Fri, 6 Sep 2002 16:44:02 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g86KKW200639 for vserver.list; Fri, 6 Sep 2002 16:20:32 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g86KKTI00634 for ; Fri, 6 Sep 2002 16:20:30 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id 72766FFC for ; Fri, 6 Sep 2002 22:27:09 +0200 (CEST) Date: Fri, 6 Sep 2002 22:23:19 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: Re: [vserver] upgrading dist in vserver Message-Id: <20020906222319.5a07b205.kl@vsen.dk> In-Reply-To: <1031322095.6265.4.camel@galadriel> References: <20020906095120.02c9dd7b.kl@vsen.dk> <20020906142910.7439ee04.kl@vsen.dk> <1031322095.6265.4.camel@galadriel> Organization: Enable IT X-Mailer: Sylpheed version 0.8.2claws (GTK+ 1.2.10; ) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1170 On 06 Sep 2002 16:21:35 +0200 Marcel de Riedmatten wrote: > > Yes it can be done. People have reported upgrade from RH 6.2 to RH 7.3 > with Connectiva port of apt to rpm. See > http://moin.conectiva.com.br/AptRpm and the mailling list archive of the > project. > Thank you dude :-) it looks like a really cool project if it really works :-) I'll surely test it, and if it works - the Debian guys can no longer hassle the guys with RedHat servers :-) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Sat Sep 7 07:25:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g87BPKW27979; Sat, 7 Sep 2002 07:25:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g87A98318213 for vserver.list; Sat, 7 Sep 2002 06:09:08 -0400 Received: from www.fastmail.fm (fastmail.fm [209.61.183.86]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g87A97I18208 for ; Sat, 7 Sep 2002 06:09:07 -0400 Received: from www.fastmail.fm (localhost [127.0.0.1]) by localhost.localdomain (Postfix) with ESMTP id 767B56DB0D for ; Sat, 7 Sep 2002 05:09:37 -0500 (CDT) Received: from server2.fastmail.fm (server2.internal [10.202.2.133]) by www.fastmail.fm (Postfix) with ESMTP id 081476DA54 for ; Sat, 7 Sep 2002 05:09:37 -0500 (CDT) Received: by server2.fastmail.fm (Postfix, from userid 99) id 977ED9379D; Sat, 7 Sep 2002 05:09:36 -0500 (CDT) Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="ISO-8859-1" MIME-Version: 1.0 X-Mailer: MIME::Lite 1.2 (F2.6; T1.001; A1.48; B2.12; Q2.03) Date: Sat, 7 Sep 2002 10:09:36 UT From: "manuchao" To: vserver@solucorp.qc.ca X-Epoch: 1031393377 X-Sasl-enc: MjPf0pcnGXrBr3927MHJ3w Subject: [vserver] Locale problem? Message-Id: <20020907100936.977ED9379D@server2.fastmail.fm> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1171 Hello, I have just installed the 2.4.19ctx-13 kernel and I see this: uname -a Linux localhost.localdomain 2.4.19ctx-13 #1 mer aoű 7 18:39:18 EDT 2002 i686 unknown instead of the normal "Sat Sep 7" etc which was shown before. Any ideas? Thanks, nick Later, nick --- manuchao@fastmail.fm From vserver.error@solucorp.qc.ca Sat Sep 7 12:15:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g87GFsW29930; Sat, 7 Sep 2002 12:15:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g87Fq4C24536 for vserver.list; Sat, 7 Sep 2002 11:52:04 -0400 Received: from snipe.mail.pas.earthlink.net (snipe.mail.pas.earthlink.net [207.217.120.62]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g87Fq3I24531 for ; Sat, 7 Sep 2002 11:52:03 -0400 Received: from pool0185.cvx30-bradley.dialup.earthlink.net ([209.179.140.185] helo=STARWARS) by snipe.mail.pas.earthlink.net with esmtp (Exim 4.10) id 17nhsw-0004g2-00 for vserver@solucorp.qc.ca; Sat, 07 Sep 2002 08:52:34 -0700 From: "Electric O. Mohawk" To: vserver@solucorp.qc.ca Date: Sat, 7 Sep 2002 08:50:59 -0700 MIME-Version: 1.0 Subject: Re: [vserver] Locale problem? Message-ID: <3D79BDF3.24814.CFD4A@localhost> Priority: normal In-reply-to: <20020907100936.977ED9379D@server2.fastmail.fm> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=ISO-8859-1 Content-description: Mail message body Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from Quoted-printable to 8bit by dns.solucorp.qc.ca id g87Fq3I24531 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1172 Your machine thinks it's french. On 7 Sep 2002 at 10:09, manuchao wrote: > Hello, > > I have just installed the 2.4.19ctx-13 kernel and I see this: > > uname -a > > Linux localhost.localdomain 2.4.19ctx-13 #1 mer aoű 7 18:39:18 EDT 2002 > i686 unknown > > instead of the normal "Sat Sep 7" etc which was shown before. > > Any ideas? > > Thanks, > > nick > > Later, > > nick > --- > manuchao@fastmail.fm > -- Electric O. Mohawk Founder, Dashin Networks From vserver.error@solucorp.qc.ca Sun Sep 8 02:45:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g886jVW03276; Sun, 8 Sep 2002 02:45:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g886BB408818 for vserver.list; Sun, 8 Sep 2002 02:11:11 -0400 Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g886B9I08813 for ; Sun, 8 Sep 2002 02:11:10 -0400 Received: (qmail 31114 invoked from network); 8 Sep 2002 06:11:42 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by 209.123.153.2 with SMTP; 8 Sep 2002 06:11:42 -0000 Message-Id: <5.1.0.14.2.20020908021128.03105a50@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sun, 08 Sep 2002 02:11:42 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] This list still alive.?? Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1173 __________________ Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Sun Sep 8 10:20:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g88EKGW01383; Sun, 8 Sep 2002 10:20:19 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g88DiEP10633 for vserver.list; Sun, 8 Sep 2002 09:44:14 -0400 Received: from hofmann.snowcra.sh (pc2-woki1-6-cust25.gfd.cable.ntl.com [80.6.41.25]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g88DiDI10628 for ; Sun, 8 Sep 2002 09:44:14 -0400 Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id 212FA2C9D for ; Sun, 8 Sep 2002 14:44:45 +0100 (BST) Date: Sun, 8 Sep 2002 14:44:44 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] upgrading dist in vserver In-Reply-To: <20020906095120.02c9dd7b.kl@vsen.dk> References: <20020906095120.02c9dd7b.kl@vsen.dk> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1174 On Fri, 6 Sep 2002 09:51:20 +0200 Klavs Klavsen wrote: > What would be the best/easiest way to upgrade my distribution in a vserver? For RedHat, you want `up2date'. I have a one collegue left that uses RedHat and he swears by it. But of course I wouldn't know, I gave up categorically on all RedHat upgrades as architecturally broken some time ago. -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 Time is an illusion perpetrated by the manufacturers of space. GRAFFITI From vserver.error@solucorp.qc.ca Mon Sep 9 15:56:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g89Jtr015408; Mon, 9 Sep 2002 15:55:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g89JPsU18679 for vserver.list; Mon, 9 Sep 2002 15:25:54 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g89JPqI18670 for ; Mon, 9 Sep 2002 15:25:53 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id 2A4ADFFC for ; Mon, 9 Sep 2002 21:32:43 +0200 (CEST) Date: Mon, 9 Sep 2002 21:29:35 +0200 From: Klavs Klavsen To: Vserver mailinglist Subject: [vserver] capchroot: relocation error :-( Message-Id: <20020909212935.6fb8a83b.kl@vsen.dk> Organization: Enable IT X-Mailer: Sylpheed version 0.8.2claws (GTK+ 1.2.10; ) User-Agent: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1175 Hi guys, I just upgraded my kernel to v2.4.19-ctx13 - and now I get this error message, when trying to enter a vserver: New Security Context is 4 /usr/lib/vserver/capchroot: relocation error: /lib/libnss_files.so.2: symbol _nss_files_parse_pwent, version GLIBC_2.0 not defined in file libc.so.6 with link time reference My guess is perhaps, the fact that my root-system is RedHat 7.3 and my vservers still are RH 7.2 has something to do with this? However it hasn't been a problem before this new kernel - or have I just missed using the vservers in the period from I upgraded (it might be that, since It's only a test machine - and I haven't upgraded my production machines yet). I hope you can enlighten me :-) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Mon Sep 9 16:15:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g89KFZ015760; Mon, 9 Sep 2002 16:15:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g89Jj1A19098 for vserver.list; Mon, 9 Sep 2002 15:45:01 -0400 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g89Jj0I19082 for ; Mon, 9 Sep 2002 15:45:00 -0400 Received: from remtk.solucorp.qc.ca (g36-73.citenet.net [206.123.36.73]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g89Jm1K36184 for ; Mon, 9 Sep 2002 15:48:01 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g89JhSm09851 for vserver@solucorp.qc.ca; Mon, 9 Sep 2002 15:43:28 -0400 From: Jacques Gelinas Date: Mon, 9 Sep 2002 15:43:28 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Locale problem? References: <3D79BDF3.24814.CFD4A@localhost> In-Reply-To: <3D79BDF3.24814.CFD4A@localhost> X-mailer: tlmpmail 0.6 Message-ID: <20020909154328.6d5a8bd9e50f@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1176 On Sat, 7 Sep 2002 08:50:59 -0500, Electric O. Mohawk wrote > Your machine thinks it's french. No, MY machine thinks I am french :-) this information is stored in the kernel pretty much verbatim at build time. It is not translated by uname. Being french canadian, my machine is configured this way and it produces 'french kernels' :-) > On 7 Sep 2002 at 10:09, manuchao wrote: > > > Hello, > > > > I have just installed the 2.4.19ctx-13 kernel and I see this: > > > > uname -a > > > > Linux localhost.localdomain 2.4.19ctx-13 #1 mer aoű 7 18:39:18 EDT 2002 > > i686 unknown > > > > instead of the normal "Sat Sep 7" etc which was shown before. > > > > Any ideas? > > > > Thanks, > > > > nick > > > > Later, > > > > nick > > --- > > manuchao@fastmail.fm > > > > -- > Electric O. Mohawk > Founder, Dashin Networks > --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Sep 9 16:19:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g89KIr015801; Mon, 9 Sep 2002 16:18:56 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g89JuBr19397 for vserver.list; Mon, 9 Sep 2002 15:56:11 -0400 Received: from lmistudios.homeip.net (dsl-64-91-5-173.spt.customer.centurytel.net [64.91.5.173]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g89JuAI19392 for ; Mon, 9 Sep 2002 15:56:11 -0400 Received: from netscape.net (wombat [192.168.0.20]) by lmistudios.homeip.net (Postfix) with ESMTP id 7780F802F for ; Mon, 9 Sep 2002 14:56:26 -0400 (EDT) Message-ID: <3D7CFE65.6020003@netscape.net> Date: Mon, 09 Sep 2002 15:02:45 -0500 From: BrandonHoult User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] re: capchroot: relocation error :-( References: <3D65B6A5.6040405@netscape.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1177 Had this problem a while back was caused by different versions of the library, could bypass by ssh to vserver or upgrade to same libraries inside and out. Here is a copy of the relavent e-mail ------------------ Hi! BrandonHoult wrote: > Do the libraries have to be identical inside and out? If so that seems Good point! I don't use redhat, so I don't have this problems. Anyway... I think I know what's wrong. Capchroot is run *after* the chroot has been made in the "vserver XYZ start" command. capchroot is a dynamic exe and it tries to load the (now, chrooted) libs that can be different. *********************************************************** To promote distribution independence I think this should be fixed upstream. (Are you reading, Jacques? :)) *********************************************************** The fix is trivial so I won't make a proper diff. Just change the Makefile and replace: ----------------------------- capchroot: capchroot.cc syscall.o gcc $(GCCOPTS) -DVERSION=\"$(PACKAGE_REV)\" capchroot.cc syscall.o -o capchroot \ -lstdc++ ----------------------------- with: ------------------------------ capchroot: capchroot.cc syscall.o gcc $(GCCOPTS) -static -DVERSION=\"$(PACKAGE_REV)\" capchroot.cc syscall.o -o capchroot \ -lstdc++ ------------------------------- (Note the added "-static" switch to gcc.) Then: make;make install and enjoy =) This will build a static capchroot that will run (I hope) with any /lib. Regards, Nuno Silva > a little inconvenient, but if I can manage to ssh into it by fixing the > password as you suggested then it is easy enough to get around. I will > try more stuff and let you know the results tomarrow. Thanks for the > help...the open source community is truely amazing sometimes. > > Brandon. > > Paul Sladen wrote: > >> On Thu, 22 Aug 2002, BrandonHoult wrote: >> >> >> >>> So I got the debian image (mini-debian-vservers-020.tgz) and >>> followed the instructions. Now it seems I can ssh to it, but I don't >>> know the root password. *'ed; does not work. [...] >>> >> >> >> Passwords are stored as hashes of the actual password in /etc/shadow: >> >> root:P4$$W0RDH4$H:12345:0:99999:7::: >> >> (Most of these fields are only relevant to `/etc/passwd' and are >> ignored in >> the shadow password file). Replacing the password hash with a `*' means >> that there is an *invalid* password hash and access will be denied >> (called >> ``starring-out''). >> >> You can either delete the hash field completely and leave it empty: >> `root::' >> (which means no password set). To set a a password that you already >> know, >> paste in a password-hash copied out of an existing shadow or passwd >> file, or >> a generated hash using the `htpasswd' program that comes with Apache. >> >> It should be noted that the `sshd_config' in Nuno's image does not permit >> logging in with empty passwords, unless you change it. Make the changes >> with a standard $EDITOR (eg. emacs or vi) from within the *host* server: >> >> root@hostserver:~$ emacs /vservers/alpha/etc/shadow >> root@hostserver:~$ emacs /vservers/alpha/etc/sshd_config >> >> I believe Nuno's image starts SSH on a weird port, so you'll probably >> want >> to fix that before use--again, by using an editor on >> `etc/ssh/sshd_config'. >> >> >> >>> /usr/lib/vserver/capchroot: relocation error: >>> /lib/libnss_compat.so.2: symbol _nss_files_parse_pwent, version >>> GLIBC_2.0 not defined in file libc.so.6 with link time reference >>> >> >> >> This is more worrying since I can't tell you why it is happening; The >> dynamic linker--that `plugs in' functions from shared libraries upon an >> application loading--is complaining that one the functions it is >> trying to >> `plug in' isn't available in the `libnss' library. >> >> (The `Name Switch Service' sets the order that glibc searchs for passwd, >> group and network configuration files in `/etc/'; for instance by using >> NIS/YP to lookup information from a remote server in preference to >> reading >> the local passwd files.) >> >> My take is that it is a glibc versioning problem, checking/updating the >> versions in use in the image may cure it. Has anyone (apart from >> Nuno! :-) >> had success, or failure with this latest 0.20 skeleton image? >> >> -Paul >> >> > > > > From vserver.error@solucorp.qc.ca Mon Sep 9 17:27:46 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g89LRd016615; Mon, 9 Sep 2002 17:27:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g89Kntk20869 for vserver.list; Mon, 9 Sep 2002 16:49:55 -0400 Received: from email.siteturn.com ([65.107.44.17]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g89KnsI20864 for ; Mon, 9 Sep 2002 16:49:54 -0400 Received: from skunkworks ([66.88.139.188]) by email.siteturn.com (8.11.6/8.11.6) with ESMTP id g89Ka5r29740 for ; Mon, 9 Sep 2002 13:36:05 -0700 From: "Russell Anthony" Organization: Siteturn Networks To: vserver@solucorp.qc.ca Date: Mon, 9 Sep 2002 13:49:34 -0700 MIME-Version: 1.0 Subject: Re: [vserver] Locale problem? Message-ID: <3D7CA6EE.21971.1FF14FBD@localhost> Priority: normal References: <3D79BDF3.24814.CFD4A@localhost> In-reply-to: <20020909154328.6d5a8bd9e50f@remtk.solucorp.qc.ca> X-mailer: Pegasus Mail for Windows (v4.01) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1178 heheheheh yeah, something like that.... On 9 Sep 2002 at 15:43, Jacques Gelinas wrote: > No, MY machine thinks I am french :-) -- Russell Anthony Network Development / Administration From vserver.error@solucorp.qc.ca Mon Sep 9 21:19:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8A1Jh007132; Mon, 9 Sep 2002 21:19:47 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8A0xHr27141 for vserver.list; Mon, 9 Sep 2002 20:59:17 -0400 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8A0xGI27136 for ; Mon, 9 Sep 2002 20:59:16 -0400 Received: from remtk.solucorp.qc.ca (g39-246.citenet.net [206.123.39.246]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g8A12JK69669 for ; Mon, 9 Sep 2002 21:02:20 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g8A0s1J15122 for vserver@solucorp.qc.ca; Mon, 9 Sep 2002 20:54:01 -0400 From: Jacques Gelinas Date: Mon, 9 Sep 2002 20:54:01 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] capchroot: relocation error :-( References: <20020909212935.6fb8a83b.kl@vsen.dk> In-Reply-To: <20020909212935.6fb8a83b.kl@vsen.dk> X-mailer: tlmpmail 0.6 Message-ID: <20020909205401.e48df0fa3830@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1179 On Mon, 9 Sep 2002 21:29:35 -0500, Klavs Klavsen wrote > Hi guys, > > I just upgraded my kernel to v2.4.19-ctx13 - and now I get this error message, when > trying to enter a vserver: > > New Security Context is 4 > /usr/lib/vserver/capchroot: relocation error: /lib/libnss_files.so.2: symbol _nss_files_parse_pwent, > version GLIBC_2.0 not defined in file libc.so.6 with link time reference > > My guess is perhaps, the fact that my root-system is RedHat 7.3 and my vservers still > are RH 7.2 has something to do with this? However it hasn't been a problem before > this new kernel - or have I just missed using the vservers in the period from I upgraded > (it might be that, since It's only a test machine - and I haven't upgraded my production > machines yet). I think it was a problem on the build machine. A weird combination of glibc and glibc-devel. I have fixed that. I just upload vserver 0.20 with minor enhancements (change log will follow). It was tested on rh7 and 7.3 (the binary package). Check it out! --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Sep 10 00:33:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8A4Wq010052; Tue, 10 Sep 2002 00:32:56 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8A4Bkj31494 for vserver.list; Tue, 10 Sep 2002 00:11:46 -0400 Received: from mail.pwebtech.com (outgoing.pwebtech.com [216.118.112.123]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g8A4BiI31489 for ; Tue, 10 Sep 2002 00:11:46 -0400 Received: (qmail 32029 invoked from network); 10 Sep 2002 04:12:19 -0000 Received: from unknown (HELO jason.pwebtech.com) (64.21.72.72) by 209.123.153.2 with SMTP; 10 Sep 2002 04:12:19 -0000 Message-Id: <5.1.0.14.2.20020910001207.056317f0@mail.pwebtech.com> X-Sender: jason%pwebtech.com@mail.pwebtech.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Tue, 10 Sep 2002 00:12:34 -0400 To: vserver@solucorp.qc.ca From: Jason Silverglate Subject: [vserver] .20!! when is it going to be released what are the features!!!! TELL :) In-Reply-To: <20020909205401.e48df0fa3830@remtk.solucorp.qc.ca> References: <20020909212935.6fb8a83b.kl@vsen.dk> <20020909212935.6fb8a83b.kl@vsen.dk> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1180 .20!! when is it going to be released what are the features!!!! TELL :) Jay Silver jason@pwebtech.com ICQ 103463692 Pegasus Web Technologies http://www.pwebtech.com Web Hosting and Dedicated Servers From vserver.error@solucorp.qc.ca Tue Sep 10 06:01:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8AA10013841; Tue, 10 Sep 2002 06:01:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8A8vO405843 for vserver.list; Tue, 10 Sep 2002 04:57:24 -0400 Received: from natan.teuto.de (natan.teuto.de [212.8.199.33]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8A8vMI05838 for ; Tue, 10 Sep 2002 04:57:23 -0400 Received: from localhost (localhost [127.0.0.1]) by natan.teuto.de (Postfix) with ESMTP id C0D9354144 for ; Tue, 10 Sep 2002 10:53:09 +0200 (CEST) Received: from ds.intra (ds.intra [10.0.0.15]) by natan.teuto.de (Postfix) with ESMTP id 5A05521A9C for ; Tue, 10 Sep 2002 10:53:09 +0200 (CEST) Received: by ds.intra (Postfix, from userid 500) id B96EF93906; Tue, 10 Sep 2002 10:57:45 +0200 (CEST) Date: Tue, 10 Sep 2002 10:57:45 +0200 From: Dennis Schoen To: vserver@solucorp.qc.ca Subject: [vserver] vrpm and permissions on /vservers Message-ID: <20020910085745.GA4694@ds.intra> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4i Mail-Copies-To: never X-Virus-Scanned: by AMaViS snapshot-20010714 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1181 Hi all, I've a problem with the vrpm wrapper and the permissions on /vservers . The secure permissions on /vservers should be: d--------- 6 root root 152 Sep 5 11:10 vservers right? But if I try to run the vrpm wrapper I get: [root@vserver root]# vrpm vtest1 -- -qa Updating server vtest1 error: cannot open Packages index using db3 - Permission denied (13) Thats because rpm can't access it's database. If I set the permissions to: d--x------ 6 root root 152 Sep 5 11:10 vservers it works, but when I enter the vserver I get: ********************************************************** /vservers/vtest1/.. has insecure permissions. A vserver administrator may be able to visit the root server. To fix this, do chmod 000 /vservers/vtest1/.. do it anytime you want, even if vservers are running. ********************************************************** Any clue how this is supposed to work? Thanks Dennis -- ... [it is] something unearthly ... If there are sentient beings on other planets, then they play Go. - Emanuel Lasker, chess grandmaster From vserver.error@solucorp.qc.ca Tue Sep 10 11:59:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8AFxV016990; Tue, 10 Sep 2002 11:59:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8AF3LP14982 for vserver.list; Tue, 10 Sep 2002 11:03:21 -0400 Received: from carbon (carbon.btinternet.com [194.73.73.92]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8AF3KI14977 for ; Tue, 10 Sep 2002 11:03:21 -0400 Received: from host213-1-134-249.in-addr.btopenworld.com ([213.1.134.249] helo=johnnew) by carbon with smtp (Exim 3.22 #8) id 17omYT-0001q8-00 for vserver@solucorp.qc.ca; Tue, 10 Sep 2002 16:03:53 +0100 From: "John Lyons" To: Subject: [vserver] iptables within a vs Date: Tue, 10 Sep 2002 16:03:07 +0100 Message-ID: <022101c258db$3f532190$0100a8c0@johnnew> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <3D665992.17372.13D0D7F@localhost> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1182 Can anyone tell me what permissions are needed within a vserver .conf file for the vs root user to have access to iptables? I'm looking to set up a demonstration of a basic linux failover / load balanced cluster which is much easier to do with 1 machine running 8 virtual servers than it is to set up 2 directors, 2 servers and 2 file servers! Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Tue Sep 10 13:03:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8AH3m017659; Tue, 10 Sep 2002 13:03:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8AG2td17340 for vserver.list; Tue, 10 Sep 2002 12:02:55 -0400 Received: from smtp018.mail.yahoo.com (smtp018.mail.yahoo.com [216.136.174.115]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g8AG2sI17335 for ; Tue, 10 Sep 2002 12:02:54 -0400 Received: from unknown (HELO PETERCOMPUTER) (peterkwanchan@140.192.180.81 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 10 Sep 2002 16:00:29 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] iptables within a vs Date: Tue, 10 Sep 2002 11:00:27 -0500 Message-ID: <000901c258e3$2eb6d630$51b4c08c@PETERCOMPUTER> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: <022101c258db$3f532190$0100a8c0@johnnew> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1183 I don't know the answer, but have you checked the capability.h header file in the source code? It gives a list of all the possible capabilities. (I forgot the exact name; cap.h?) It may be CAP_NET_ADMIN (just a wild guess). Peter -----Original Message----- From: John Lyons [mailto:support@nsnoc.com] Sent: Tuesday, September 10, 2002 10:03 AM To: vserver@solucorp.qc.ca Subject: [vserver] iptables within a vs Can anyone tell me what permissions are needed within a vserver .conf file for the vs root user to have access to iptables? I'm looking to set up a demonstration of a basic linux failover / load balanced cluster which is much easier to do with 1 machine running 8 virtual servers than it is to set up 2 directors, 2 servers and 2 file servers! Regards John Lyons DomainCity http://www.domaincity.co.uk support@domaincity.co.uk ICQ 74187012 *********************************************************************** Please quote your account number in the subject line of all emails. Failure to do so may result in your enquiries taking longer to process. *********************************************************************** From vserver.error@solucorp.qc.ca Tue Sep 10 17:06:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8AL5p020182; Tue, 10 Sep 2002 17:05:56 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8AK08u25923 for vserver.list; Tue, 10 Sep 2002 16:00:08 -0400 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8AK07I25918 for ; Tue, 10 Sep 2002 16:00:07 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g8AK0wZ05828 for vserver@solucorp.qc.ca; Tue, 10 Sep 2002 16:00:58 -0400 From: Jacques Gelinas Date: Tue, 10 Sep 2002 16:00:58 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] vrpm and permissions on /vservers References: <20020910085745.GA4694@ds.intra> In-Reply-To: <20020910085745.GA4694@ds.intra> X-mailer: tlmpmail 0.6 Message-ID: <20020910160058.9218e27b194b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1184 On Tue, 10 Sep 2002 10:57:45 -0500, Dennis Schoen wrote > Hi all, > > I've a problem with the vrpm wrapper and the permissions on > /vservers . > > The secure permissions on /vservers should be: > > d--------- 6 root root 152 Sep 5 11:10 vservers > > right? Yes this is a known issue. For now, you have to open /vservers to use vrpm and close it later. vrpm switches to the proper security context when it executes its rpm options (upgrade). This way, if some scripts are executed by the package, they are executed in the proper world and do not impact the root server. To fix this, I must enhance the kernel a little. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Sep 10 20:13:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8B0DM021708; Tue, 10 Sep 2002 20:13:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8ANbq231602 for vserver.list; Tue, 10 Sep 2002 19:37:52 -0400 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8ANbpI31597 for ; Tue, 10 Sep 2002 19:37:51 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g8ANcfF08341 for vserver@solucorp.qc.ca; Tue, 10 Sep 2002 19:38:41 -0400 From: Jacques Gelinas Date: Tue, 10 Sep 2002 19:38:41 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] re: capchroot: relocation error :-( References: <3D7CFE65.6020003@netscape.net> In-Reply-To: <3D7CFE65.6020003@netscape.net> X-mailer: tlmpmail 0.6 Message-ID: <20020910193841.d5591269306b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1185 On Mon, 9 Sep 2002 15:02:45 -0500, BrandonHoult wrote > Had this problem a while back was caused by different versions of the > library, could bypass by ssh to vserver or upgrade to same libraries > inside and out. Here is a copy of the relavent e-mail Yes this is right and I just fixed the problem. Well, 0.20 (which is out) kind of fix the problem. > ------------------ > > Hi! > > BrandonHoult wrote: > > Do the libraries have to be identical inside and out? If so that seems > > Good point! I don't use redhat, so I don't have this problems. The problem is not related to redhat. All linux distro have this problem. The problem is that capchroot is linked dynamically and further, loads some pluggin at runtime (the Name Service Switch runtime pluggin) when it accesses the user account (vserver xxx suexec some_user command ...) So you have this dynamically linked executable which is using dynamic pluggins (oxymoron ?) to access the /etc/passwd file. So it starts in the root server, perform a chroot and then loads its pluggin. Unfortunatly, the NSS pluggins found on the vserver may be incompatible with the NSS library in the root server. The trick to overcome the situation was to force the loading of the pluggin by issuing a simple getpwnam ("root") before doing the chroot. The loads the pluggins in memory and they are available after the chroot. Kind of a kludge. The real solution would be to use the su command on the other side of the chroot to switch user. > *********************************************************** > To promote distribution independence I think this should be fixed > upstream. (Are you reading, Jacques? :)) > *********************************************************** It can't because upstream does not know about users downstream. > ----------------------------- > capchroot: capchroot.cc syscall.o > gcc $(GCCOPTS) -DVERSION=\"$(PACKAGE_REV)\" capchroot.cc > syscall.o -o capchroot \ > -lstdc++ > ----------------------------- > > with: > > ------------------------------ > capchroot: capchroot.cc syscall.o > gcc $(GCCOPTS) -static -DVERSION=\"$(PACKAGE_REV)\" > capchroot.cc syscall.o -o capchroot \ > -lstdc++ > ------------------------------- > > (Note the added "-static" switch to gcc.) Won't work because the NSS library is using pluggins --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Sep 10 22:13:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8B2Cx022769; Tue, 10 Sep 2002 22:12:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8B1UiS02071 for vserver.list; Tue, 10 Sep 2002 21:30:44 -0400 Received: from skessa.this.is (skessa.this.is [194.144.127.120]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8B1UhI02066 for ; Tue, 10 Sep 2002 21:30:43 -0400 Received: from skessa.this.is (www-data@localhost.this.is [127.0.0.1]) by skessa.this.is (8.12.3/8.12.3/Debian -4) with ESMTP id g8B1VH6F019224 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=FAIL) for ; Wed, 11 Sep 2002 01:31:17 GMT Received: (from www-data@localhost) by skessa.this.is (8.12.3/8.12.3/Debian -4) id g8B1VHhj019222 for vserver@solucorp.qc.ca; Wed, 11 Sep 2002 01:31:17 GMT X-Authentication-Warning: skessa.this.is: www-data set sender to ragnar@this.is using -f To: vserver@solucorp.qc.ca Subject: [vserver] Debian howto Message-ID: <1031707877.3d7e9ce554282@this.is> Date: Wed, 11 Sep 2002 01:31:17 +0000 (GMT) From: ragnar@this.is MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: IMP/PHP IMAP webmail program 2.2.6 X-Originating-IP: 194.144.127.80 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1186 Hi, Is there a Debian vserver howto? If not I would like to make one. I do not know all there is to know about the subject but am very interested. If someone has info please let me know. A palce-holder for my HOWTO is at http://this.is/debian-vserver best ragnar p.s. please no flames. From vserver.error@solucorp.qc.ca Wed Sep 11 09:35:04 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8BDYe029102; Wed, 11 Sep 2002 09:34:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8BCqlM18547 for vserver.list; Wed, 11 Sep 2002 08:52:47 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8BCqhI18542 for ; Wed, 11 Sep 2002 08:52:44 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id A2792108C for ; Wed, 11 Sep 2002 14:59:36 +0200 (CEST) Date: Wed, 11 Sep 2002 14:56:54 +0200 From: Klavs Klavsen To: Vserver mailinglist Subject: [vserver] when is v0.20 released? Message-Id: <20020911145654.211f00a8.kl@vsen.dk> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1187 I can't see it on the site, yet you mention it in your emails :-) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Wed Sep 11 09:40:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8BDeq029168; Wed, 11 Sep 2002 09:40:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8BD5Sh19115 for vserver.list; Wed, 11 Sep 2002 09:05:28 -0400 Received: from natan.teuto.de (natan.teuto.de [212.8.199.33]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8BD5RI19110 for ; Wed, 11 Sep 2002 09:05:27 -0400 Received: from localhost (localhost [127.0.0.1]) by natan.teuto.de (Postfix) with ESMTP id 5319A6F38F for ; Wed, 11 Sep 2002 15:01:14 +0200 (CEST) Received: from ds.intra (ds.intra [10.0.0.15]) by natan.teuto.de (Postfix) with ESMTP id E1FDA6D34B for ; Wed, 11 Sep 2002 15:01:13 +0200 (CEST) Received: by ds.intra (Postfix, from userid 500) id D6A719390C; Wed, 11 Sep 2002 15:05:51 +0200 (CEST) Date: Wed, 11 Sep 2002 15:05:51 +0200 From: Dennis Schoen To: Vserver mailinglist Subject: Re: [vserver] when is v0.20 released? Message-ID: <20020911130551.GB8404@ds.intra> Mail-Followup-To: Vserver mailinglist References: <20020911145654.211f00a8.kl@vsen.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020911145654.211f00a8.kl@vsen.dk> User-Agent: Mutt/1.4i Mail-Copies-To: never X-Virus-Scanned: by AMaViS snapshot-20010714 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1188 On Wed, Sep 11, 2002 at 02:56:54PM +0200, Klavs Klavsen wrote: > I can't see it on the site, yet you mention it in your emails :-) You can already download it with ftp. Try: ftp://ftp.solucorp.qc.ca/pub/vserver Ciao Dennis -- ... [it is] something unearthly ... If there are sentient beings on other planets, then they play Go. - Emanuel Lasker, chess grandmaster From vserver.error@solucorp.qc.ca Wed Sep 11 16:52:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8BKq2001188; Wed, 11 Sep 2002 16:52:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8BJw8U32572 for vserver.list; Wed, 11 Sep 2002 15:58:08 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8BJw6I32567 for ; Wed, 11 Sep 2002 15:58:07 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id 675BE108C for ; Wed, 11 Sep 2002 22:05:01 +0200 (CEST) Date: Wed, 11 Sep 2002 22:02:23 +0200 From: Klavs Klavsen To: Vserver mailinglist Subject: [vserver] ifconfig gives too much info Message-Id: <20020911220223.6bc65ac3.kl@vsen.dk> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1189 Hi guys, Am I mistaken, or did vserver use to hide other interfaces, when running ifconfig as root in a vserver? Mine outputs this now, which is definetely too much?: if could be cool, if it changed the etho:main -> eth0.. as nothing - except vserver has that kind of interface-termology - and it makes it quite easy to tell :-( [root@vserver:main /]ifconfig eth0 Link encap:Ethernet HWaddr 00:10:A4:C1:53:03 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:24391046 errors:0 dropped:0 overruns:0 frame:0 TX packets:38770786 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:2000797340 (1908.1 Mb) TX bytes:3251929116 (3101.2 Mb) Interrupt:11 Base address:0x4000 eth0:main Link encap:Ethernet HWaddr 00:10:A4:C1:53:03 inet addr:192.168.1.100 Bcast:192.168.1.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 Interrupt:11 Base address:0x4000 lo Link encap:Local Loopback UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:166706 errors:0 dropped:0 overruns:0 frame:0 TX packets:166706 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:17146435 (16.3 Mb) TX bytes:17146435 (16.3 Mb) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Wed Sep 11 18:58:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8BMwa002297; Wed, 11 Sep 2002 18:58:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8BLj7n03100 for vserver.list; Wed, 11 Sep 2002 17:45:07 -0400 Received: from tomts8-srv.bellnexxia.net (tomts8.bellnexxia.net [209.226.175.52]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8BLj6I03095 for ; Wed, 11 Sep 2002 17:45:06 -0400 Received: from jhd ([207.236.226.187]) by tomts8-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20020911214540.BVBS28662.tomts8-srv.bellnexxia.net@jhd> for ; Wed, 11 Sep 2002 17:45:40 -0400 Message-ID: <001a01c259dc$91432890$0301a8c0@jhd> From: "takashi" To: Subject: [vserver] More that 16 IPs per vserver ? Date: Wed, 11 Sep 2002 17:45:37 -0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0017_01C259BB.09570710" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1190 This is a multi-part message in MIME format. ------=_NextPart_000_0017_01C259BB.09570710 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Multi IP on several devices Since kernel ctx-12, you can setup up to 16 IPs per vserver. All those = IPs had to be on the same device (IPROOTDEV).=20 It is now possible to assign those IPs to several devices, using the = explicit syntax:=20 IPROOT=3D"eth0:1.2.3.4 eth1:2.3.4.5 192.168.1.2" IPROOTDEV=3Deth2 Anyway to set more that 16 IPS per vserver ???? Thanx ------=_NextPart_000_0017_01C259BB.09570710 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable

Multi IP on several devices

Since kernel ctx-12, you can setup up to 16 IPs per vserver. All = those IPs=20 had to be on the same device (IPROOTDEV).
It is now possible to assign those IPs to several devices, using the = explicit syntax:=20

	IPROOT=3D"eth0:1.2.3.4 eth1:2.3.4.5 192.168.1.2"
	IPROOTDEV=3Deth2
Anyway to set more that 16 IPS =
per vserver ????
Thanx
------=_NextPart_000_0017_01C259BB.09570710-- From vserver.error@solucorp.qc.ca Wed Sep 11 19:53:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8BNrc002731; Wed, 11 Sep 2002 19:53:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8BNCwt04860 for vserver.list; Wed, 11 Sep 2002 19:12:58 -0400 Received: from mailhost-1.mtl-loo.activecom.net (mailhost-1.mtl-loo.activecom.net [216.189.192.23]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8BNCuI04855 for ; Wed, 11 Sep 2002 19:12:56 -0400 Received: from activecom.net (devserver.activecom.net [216.189.192.53]) by mailhost-1.mtl-loo.activecom.net (Active MailServer) with ESMTP id 12FD68DEAE for ; Wed, 11 Sep 2002 19:07:10 -0400 (EDT) Message-ID: <3D7FCC9A.20400@activecom.net> Date: Wed, 11 Sep 2002 19:07:06 -0400 From: Mehmet Avcioglu Organization: Active Comm. User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20020823 Netscape/7.0 X-Accept-Language: en, tr MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] rebootmgr Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1191 I couldn't understand something. In /etc/init.d/rebootmgr under status it has the following.. status) if killall -9 rebootmgr then echo rebootmgr is running else echo rebootmgr is NOT running fi ;; killall everything with the name rebootmgr? the script itself as well? Thank for the help -- Mehmet From vserver.error@solucorp.qc.ca Thu Sep 12 06:54:39 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CAsU010173; Thu, 12 Sep 2002 06:54:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CAKGc20162 for vserver.list; Thu, 12 Sep 2002 06:20:16 -0400 Received: from onebill.twinspot.net (onebill.twinspot.net [62.13.47.101]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CAKFI20157 for ; Thu, 12 Sep 2002 06:20:16 -0400 Received: from p240.linnet.nu ([62.13.47.240] helo=euronetics.se) by onebill.twinspot.net with esmtp for id 17pR5d-0003dj-00; Thu, 12 Sep 2002 12:20:49 +0200 Message-ID: <3D806A81.1040001@euronetics.se> Date: Thu, 12 Sep 2002 12:20:49 +0200 From: Tomas Fasth Organization: Euronetics User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: sv, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] ctx patch now in debian sid Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1192 Hello. Just wanted to inform the list that a friend of mine, who is a registered debian developer, just recently uploaded a debian package called kernel-patch-ctx containing ctx-13 for linux kernel 2.4.19. There is no user space vserver package uploaded yet, what I can see. Is there any ongoing work on that? I'm sure my friend can assist with upload of that as well. He might not have time to do work on preparing the package, though. // Tomas From vserver.error@solucorp.qc.ca Thu Sep 12 07:00:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CB0D010226; Thu, 12 Sep 2002 07:00:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CAIAR20083 for vserver.list; Thu, 12 Sep 2002 06:18:10 -0400 Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CAI6I20078 for ; Thu, 12 Sep 2002 06:18:09 -0400 Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.35 #1 (Debian)) id 17pR3T-0008MJ-00 for ; Thu, 12 Sep 2002 12:18:35 +0200 Sender: jon@solucorp.qc.ca Message-ID: <3D8069FA.D8A7F65@silicide.dk> Date: Thu, 12 Sep 2002 12:18:34 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 CC: vserver@solucorp.qc.ca Subject: [vserver] whaaaats happening (<- office space style pronouncing ;-D Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *17pR3T-0008MJ-00*zfvMN5Tkcew* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1193 It's been 3 weeks since i got emails from this list ? JonB From vserver.error@solucorp.qc.ca Thu Sep 12 08:13:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CCDC010662; Thu, 12 Sep 2002 08:13:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CBZpc21992 for vserver.list; Thu, 12 Sep 2002 07:35:51 -0400 Received: from natan.teuto.de (natan.teuto.de [212.8.199.33]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CBZoI21987 for ; Thu, 12 Sep 2002 07:35:50 -0400 Received: from localhost (localhost [127.0.0.1]) by natan.teuto.de (Postfix) with ESMTP id 447EB6E2C7 for ; Thu, 12 Sep 2002 13:31:35 +0200 (CEST) Received: from ds.intra (ds.intra [10.0.0.15]) by natan.teuto.de (Postfix) with ESMTP id D2B4E1EAC6 for ; Thu, 12 Sep 2002 13:31:34 +0200 (CEST) Received: by ds.intra (Postfix, from userid 500) id CA7389391F; Thu, 12 Sep 2002 13:36:13 +0200 (CEST) Date: Thu, 12 Sep 2002 13:36:13 +0200 From: Dennis Schoen To: vserver@solucorp.qc.ca Subject: [vserver] vserver debian package Was: ctx patch now in debian sid Message-ID: <20020912113613.GA22113@ds.intra> Mail-Followup-To: vserver@solucorp.qc.ca References: <3D806A81.1040001@euronetics.se> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3D806A81.1040001@euronetics.se> User-Agent: Mutt/1.4i Mail-Copies-To: never X-Virus-Scanned: by AMaViS snapshot-20010714 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1194 On Thu, Sep 12, 2002 at 12:20:49PM +0200, Tomas Fasth wrote: > There is no user space vserver package uploaded yet, what I can see. > Is there any ongoing work on that? I'm sure my friend can assist with > upload of that as well. He might not have time to do work on preparing > the package, though. I'm also a debian developer and can build and upload the packages, if that's ok with the vserver guys? Jacques? ciao Dennis -- ... [it is] something unearthly ... If there are sentient beings on other planets, then they play Go. - Emanuel Lasker, chess grandmaster From vserver.error@solucorp.qc.ca Thu Sep 12 08:30:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CCUR010814; Thu, 12 Sep 2002 08:30:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CBoLI22352 for vserver.list; Thu, 12 Sep 2002 07:50:21 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CBoKI22347 for ; Thu, 12 Sep 2002 07:50:21 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id 73069108C; Thu, 12 Sep 2002 13:57:20 +0200 (CEST) Date: Thu, 12 Sep 2002 13:54:52 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: Re: [vserver] whaaaats happening (<- office space style pronouncing ;-D Message-Id: <20020912135452.0d066981.kl@vsen.dk> In-Reply-To: <3D8069FA.D8A7F65@silicide.dk> References: <3D8069FA.D8A7F65@silicide.dk> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1195 On Thu, 12 Sep 2002 12:18:34 +0200 Jon Bendtsen wrote: > It's been 3 weeks since i got emails from this list ? > > You seeing this? -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Thu Sep 12 08:35:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CCZf010850; Thu, 12 Sep 2002 08:35:44 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CBxeJ22562 for vserver.list; Thu, 12 Sep 2002 07:59:40 -0400 Received: from sjuman.prl.dk ([80.199.169.164]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CBxUI22556 for ; Thu, 12 Sep 2002 07:59:32 -0400 Received: from work (helle [80.199.169.161]) by sjuman.prl.dk (8.11.2/1.3.5/2.04) with ESMTP id g8CC1OB27190 for ; Thu, 12 Sep 2002 14:01:29 +0200 Content-Type: text/plain; charset="us-ascii" From: Per R Laursen Organization: PRL.DK To: vserver@solucorp.qc.ca Subject: [vserver] SuSE 7.3/8.0 Date: Thu, 12 Sep 2002 13:58:20 +0200 User-Agent: KMail/1.4.3 MIME-Version: 1.0 Message-Id: <200209121358.20729.per@prl.dk> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g8CBxUI22556 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1196 Hi there, Anyone who got vserver to run proberly at SuSE 7.3 or 8.0 ? Kind regards Per R Laursen From vserver.error@solucorp.qc.ca Thu Sep 12 09:06:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CD5u011129; Thu, 12 Sep 2002 09:05:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CCTI823309 for vserver.list; Thu, 12 Sep 2002 08:29:18 -0400 Received: from korn.mpex.net (bei-i-sw1.telia.net [213.248.76.106]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CCTHI23302 for ; Thu, 12 Sep 2002 08:29:17 -0400 Received: from mpex.net (194-29-228-41.ipberlin.com [194.29.228.41] (may be forged)) by korn.mpex.net (8.11.6/8.11.2) with ESMTP id g8CCTsR18110 Message-ID: <3D8088D4.4010808@mpex.net> Date: Thu, 12 Sep 2002 14:30:12 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] SuSE 7.3/8.0 References: <200209121358.20729.per@prl.dk> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1197 Per R Laursen wrote: > Hi there, > > Anyone who got vserver to run proberly at SuSE 7.3 or 8.0 ? > > Kind regards > > Per R Laursen > > Yes, I'm using SuSE 8.0 with vserver 0.19 + kernel patch 2.4.19ctx-13. I got problems starting the runlevels through /etc/rc.d/rc. I'm just preparing another posting about this problem. Lars From vserver.error@solucorp.qc.ca Thu Sep 12 09:11:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CDBe011178; Thu, 12 Sep 2002 09:11:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CCYha23452 for vserver.list; Thu, 12 Sep 2002 08:34:43 -0400 Received: from korn.mpex.net (bei-i-sw1.telia.net [213.248.76.106]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CCYgI23447 for ; Thu, 12 Sep 2002 08:34:42 -0400 Received: from mpex.net (194-29-228-41.ipberlin.com [194.29.228.41] (may be forged)) by korn.mpex.net (8.11.6/8.11.2) with ESMTP id g8CCZJR18350 Message-ID: <3D808A1A.2040404@mpex.net> Date: Thu, 12 Sep 2002 14:35:38 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] vserver /etc/rc.d/rc problem Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1198 I don't know if this is a general (known) bug, or if it just happens on our machine. The server is running SuSE 8.0 with the 2.4.19ctx-13 kernel patch and vserver 0.19. When starting a vserver with the "vserver start" command, there's no init script executed in the specified runlevel, e.g. /etc/rc.d/rc3.d. To check if the /etc/rc.d/rc script fails at the first check, which is... test "$PREVLEVEL" = "$RUNLEVEL" && exit 0 ...I added the following two lines to the top of the script: echo "PRELEVEL " $PRELEVEL echo "RUNLEVEL " $RUNLEVEL Both variables PRELEVEL and RUNLEVEL are empty. Executing /sbin/runlevel in the vserver also returns "unknown". But a ps -ax within the vserver (vserver enter), contains: PID TTY STAT TIME COMMAND 1 ? S 0:04 init [3] The file /var/run/utmp, which is accessed by /sbin/runlevel within the vserver is empty. In the main system it is filled with some data. It doesn't help to comment out the check I mentioned above. Doing this brings up the following when starting the vserver: stty: standard input: Inappropriate ioctl for device cat /dev/console within the vserver shows: stty: standard input: Inappropriate ioctl for device stty: standard input: Inappropriate ioctl for device blogd: can not open (null): No such file or directory Master Resource Control: previous runlevel: , switching to runlevel: Master Resource Control: runlevel has been reached stty: standard input: Inappropriate ioctl for device Hope this is a general issue that can be fixed. Lars From vserver.error@solucorp.qc.ca Thu Sep 12 09:43:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CDhI011399; Thu, 12 Sep 2002 09:43:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CD73I24383 for vserver.list; Thu, 12 Sep 2002 09:07:03 -0400 Received: from korn.mpex.net (bei-i-sw1.telia.net [213.248.76.106]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CD71I24378 for ; Thu, 12 Sep 2002 09:07:02 -0400 Received: from mpex.net (194-29-228-41.ipberlin.com [194.29.228.41] (may be forged)) by korn.mpex.net (8.11.6/8.11.2) with ESMTP id g8CD7dR19529 Message-ID: <3D8091AD.8050209@mpex.net> Date: Thu, 12 Sep 2002 15:07:57 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] SuSE 7.3/8.0 References: <200209121358.20729.per@prl.dk> <200209121437.15253.per@prl.dk> <3D808BE8.7050401@mpex.net> <200209121449.49529.per@prl.dk> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1199 do you have anything entered in the /etc/vserver/v1.sh file? What's the output right after you entered vserver v1 start on the command line? I get something like: Starting the virtual server jco1 Server jco1 is not running ipv4root is now 80.239.136.143 Host name is now jco.mpex.net Domain name is now New security context is 73 Since I don't have anything in the /etc/vserver/jco1.sh script, there's nothing started. The only thing that is set, is the ip address. Per R Laursen wrote: > On Thursday 12 September 2002 14:43, you wrote: > >>Per R Laursen wrote: >> >>>Hi Lars, >>> >>>Looking forward to the posting ;-) >>> >>>Did you installed the RPM's or made a make *tar.gz ? >> >>I installed the rpms for testing. Now that it almost works, I'll >>probably compile it. > > > My problem is probably the same as yours. > > The scene looks like this: > > I cant start a vserver by : vserver v1 start > > If a vserver is set ONBOOT=yes the vserver starts at boot time. > when logged in as root at the main server I can stop it, but not start it > again. > ------- > > Hope you can use this info, if you want me to try something out then tell > me. From vserver.error@solucorp.qc.ca Thu Sep 12 10:07:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CE7Y011605; Thu, 12 Sep 2002 10:07:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CDZSi25035 for vserver.list; Thu, 12 Sep 2002 09:35:28 -0400 Received: from sjuman.prl.dk ([80.199.169.164]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CDZHI25030 for ; Thu, 12 Sep 2002 09:35:20 -0400 Received: from work (helle [80.199.169.161]) by sjuman.prl.dk (8.11.2/1.3.5/2.04) with ESMTP id g8CDbDB27251 for ; Thu, 12 Sep 2002 15:37:18 +0200 Content-Type: text/plain; charset="iso-8859-1" From: Per R Laursen Organization: PRL.DK To: vserver@solucorp.qc.ca Subject: Re: [vserver] SuSE 7.3/8.0 Date: Thu, 12 Sep 2002 15:33:34 +0200 User-Agent: KMail/1.4.3 References: <200209121358.20729.per@prl.dk> <200209121449.49529.per@prl.dk> <3D8091AD.8050209@mpex.net> In-Reply-To: <3D8091AD.8050209@mpex.net> MIME-Version: 1.0 Message-Id: <200209121533.34550.per@prl.dk> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g8CDZHI25030 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1200 On Thursday 12 September 2002 15:07, you wrote: > do you have anything entered in the /etc/vserver/v1.sh file? > What's the output right after you entered vserver v1 start on the > command line? > > I get something like: > Starting the virtual server jco1 > Server jco1 is not running > ipv4root is now 80.239.136.143 > Host name is now jco.mpex.net > Domain name is now > New security context is 73 > > Since I don't have anything in the /etc/vserver/jco1.sh script, there's > nothing started. The only thing that is set, is the ip address. We got the same problem ;-) If you set ONBOOT=yes in /etc/vservers/v1.conf then 'v1' probably starts at boot. And you will get a proper output when running 'vserver v1 status' after boot at the console as root at the main server. If you try 'vserver v1 stop' v1 stops and the virtual net if is deleted as well. But if you try to start it again with 'vserver v1 start' you got the output as in 'jco1' but no server is startet, the virtuel net if is startet. Well, thats the syptoms if we got the same we can try 'things' :) My idea is that all the .sh is made for RH and therefore not working for SuSE. Well, i think it's ours problem :) I am seeking a solution, and if it is nessesary i will make new scripts thats not distribution dependent. Kind regards Per R Laursen From vserver.error@solucorp.qc.ca Thu Sep 12 11:12:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CFC1012044; Thu, 12 Sep 2002 11:12:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CEUeH26520 for vserver.list; Thu, 12 Sep 2002 10:30:40 -0400 Received: from korn.mpex.net (bei-i-sw1.telia.net [213.248.76.106]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CEUcI26515 for ; Thu, 12 Sep 2002 10:30:39 -0400 Received: from mpex.net (194-29-228-41.ipberlin.com [194.29.228.41] (may be forged)) by korn.mpex.net (8.11.6/8.11.2) with ESMTP id g8CEVGR22430 Message-ID: <3D80A546.9090308@mpex.net> Date: Thu, 12 Sep 2002 16:31:34 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] SuSE 7.3/8.0 References: <200209121358.20729.per@prl.dk> <200209121449.49529.per@prl.dk> <3D8091AD.8050209@mpex.net> <200209121533.34550.per@prl.dk> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1201 Per R Laursen wrote: > On Thursday 12 September 2002 15:07, you wrote: > >>do you have anything entered in the /etc/vserver/v1.sh file? >>What's the output right after you entered vserver v1 start on the >>command line? >> >>I get something like: >>Starting the virtual server jco1 >>Server jco1 is not running >>ipv4root is now 80.239.136.143 >>Host name is now jco.mpex.net >>Domain name is now >>New security context is 73 >> >>Since I don't have anything in the /etc/vserver/jco1.sh script, there's >>nothing started. The only thing that is set, is the ip address. > > > We got the same problem ;-) Nope, the thing you are describing below is not a problem. :) . > If you try 'vserver v1 stop' v1 stops and the virtual net if is deleted as > well. But if you try to start it again with 'vserver v1 start' you got > the output as in 'jco1' but no server is startet, the virtuel net if is > startet. If you read the manual, you'll see that there's nothing special started besides the daemons you bring up at boot time. So starting a vserver with vserver start starts all the things in /etc/vserver/.sh and in the etc/rc.d/rcX.d of your server. If you don't have anything in there, the vserver is virtually not running. If I add the following to the post-start section of the jco1.sh script: vserver jco1 exec /usr/local/apache/bin/apachectl start then the httpd is started when starting the jail. This also means that there's one program running in the vserver, so vserver jco1 status returns "jco1 running". Here something from the documentation: Oddly, starting a virtual server does not mean much. There is no overhead. No monitoring process or proxy or emulator. Starting a virtual server with 4 services is the same as running those 4 services in the main server, at least performance wise (the service inside a virtual server are locked inside the security context). --> so if you don't start any services, there "is" no virtual server. > My idea is that all the .sh is made for RH and therefore not working for > SuSE. Well, i think it's ours problem :) > > I am seeking a solution, and if it is nessesary i will make new scripts > thats not distribution dependent. The SuSE /etc/rc.d/rc script seems definately to be a problem for vserver, since it seems to combine the rc.sysinit, rc and rc.local script in a single script. From vserver.error@solucorp.qc.ca Thu Sep 12 11:38:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CFcW012252; Thu, 12 Sep 2002 11:38:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CEx8x27227 for vserver.list; Thu, 12 Sep 2002 10:59:08 -0400 Received: from onebill.twinspot.net (onebill.twinspot.net [62.13.47.101]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CEx7I27222 for ; Thu, 12 Sep 2002 10:59:08 -0400 Received: from p240.linnet.nu ([62.13.47.240] helo=euronetics.se) by onebill.twinspot.net with esmtp id 17pVRG-0000sB-00; Thu, 12 Sep 2002 16:59:26 +0200 Message-ID: <3D80ABCE.9010804@euronetics.se> Date: Thu, 12 Sep 2002 16:59:26 +0200 From: Tomas Fasth Organization: Euronetics User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.0) Gecko/20020615 Debian/1.0.0-3 X-Accept-Language: sv, en MIME-Version: 1.0 To: jon+vserver@silicide.dk CC: vserver@solucorp.qc.ca Subject: Re: [vserver] whaaaats happening (<- office space style pronouncing ;-D References: <3D8069FA.D8A7F65@silicide.dk> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1202 Jon, I found myself removed from the list a couple of weeks ago. May be the same happened to you. Just resubscribe and things will start to flow again. // Tomas Jon Bendtsen wrote: > It's been 3 weeks since i got emails from this list ? > > > > JonB From vserver.error@solucorp.qc.ca Thu Sep 12 13:23:37 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CHNS013271; Thu, 12 Sep 2002 13:23:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CGpGC30521 for vserver.list; Thu, 12 Sep 2002 12:51:16 -0400 Received: from sjuman.prl.dk ([80.199.169.164]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CGpFI30516 for ; Thu, 12 Sep 2002 12:51:15 -0400 Received: from work (helle [80.199.169.161]) by sjuman.prl.dk (8.11.2/1.3.5/2.04) with ESMTP id g8CGrSB27316 for ; Thu, 12 Sep 2002 18:53:28 +0200 Content-Type: text/plain; charset="iso-8859-1" From: Per R Laursen Organization: PRL.DK To: vserver@solucorp.qc.ca Subject: Re: [vserver] SuSE 7.3/8.0 Date: Thu, 12 Sep 2002 18:52:22 +0200 User-Agent: KMail/1.4.3 References: <200209121358.20729.per@prl.dk> <200209121533.34550.per@prl.dk> <3D80A546.9090308@mpex.net> In-Reply-To: <3D80A546.9090308@mpex.net> MIME-Version: 1.0 Message-Id: <200209121852.22632.per@prl.dk> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g8CGpFI30516 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1203 On Thursday 12 September 2002 16:31, you wrote: > Per R Laursen wrote: > > > > We got the same problem ;-) > > Nope, the thing you are describing below is not a problem. :) Well running at RH7.3 i dont have the 'problem'. > If you read the manual, you'll see that there's nothing special started > besides the daemons you bring up at boot time. So starting a vserver > with vserver start starts all the things in > /etc/vserver/.sh and in the etc/rc.d/rcX.d of your server. If you > don't have anything in there, the vserver is virtually not running. If > I add the following to the post-start section of the jco1.sh script: > vserver jco1 exec /usr/local/apache/bin/apachectl start > then the httpd is started when starting the jail. This also means that > there's one program running in the vserver, so vserver jco1 status > returns "jco1 running". It is posible to start a vserver from the console in RH 7.3. The same behavior is not posible in SuSE8.0. (well not in my default installation.) Kind regards Per R Laursen From vserver.error@solucorp.qc.ca Thu Sep 12 15:47:32 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CJlS014513; Thu, 12 Sep 2002 15:47:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CIR4Y00379 for vserver.list; Thu, 12 Sep 2002 14:27:04 -0400 Received: from korn.mpex.net (bei-i-sw1.telia.net [213.248.76.106]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CIR2I00374 for ; Thu, 12 Sep 2002 14:27:03 -0400 Received: from mpex.net (User-1031855296@pD9E6B295.dip.t-dialin.net [217.230.178.149]) by korn.mpex.net (8.11.6/8.11.2) with ESMTP id g8CIRfR31193 Message-ID: <3D80DCBF.801@mpex.net> Date: Thu, 12 Sep 2002 20:28:15 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, de, de-de MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] SuSE 7.3/8.0 References: <200209121358.20729.per@prl.dk> <200209121533.34550.per@prl.dk> <3D80A546.9090308@mpex.net> <200209121852.22632.per@prl.dk> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1204 Per R Laursen wrote: >> Nope, the thing you are describing below is not a problem. :) > > Well running at RH7.3 i dont have the 'problem'. then I'm sorry to not belive you. >>If you read the manual, you'll see that there's nothing special started >>besides the daemons you bring up at boot time. So starting a vserver >>with vserver start starts all the things in >>/etc/vserver/.sh and in the etc/rc.d/rcX.d of your server. If you >>don't have anything in there, the vserver is virtually not running. If >>I add the following to the post-start section of the jco1.sh script: >>vserver jco1 exec /usr/local/apache/bin/apachectl start >>then the httpd is started when starting the jail. This also means that >>there's one program running in the vserver, so vserver jco1 status >>returns "jco1 running". > > It is posible to start a vserver from the console in RH 7.3. The same > behavior is not posible in SuSE8.0. (well not in my default > installation.) so what's the output after starting on both systems? you didn't send any output of the program so far. does the rh 7.3 vserver also start the scripts in your /etc/rc.d/rcX.d dir? could you send me the 3 files rc.sysinit rc and rc.local. I'd like to try these in the vserver to see if it's just the suse rc script which is wrong. lars From vserver.error@solucorp.qc.ca Thu Sep 12 16:32:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CKW0014953; Thu, 12 Sep 2002 16:32:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CJBs901657 for vserver.list; Thu, 12 Sep 2002 15:11:54 -0400 Received: from sjuman.prl.dk ([80.199.169.164]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CJBrI01651 for ; Thu, 12 Sep 2002 15:11:53 -0400 Received: from work (helle [80.199.169.161]) by sjuman.prl.dk (8.11.2/1.3.5/2.04) with ESMTP id g8CJE7B27351 for ; Thu, 12 Sep 2002 21:14:07 +0200 Content-Type: text/plain; charset="iso-8859-1" From: Per R Laursen Organization: PRL.DK To: vserver@solucorp.qc.ca Subject: Re: [vserver] SuSE 7.3/8.0 Date: Thu, 12 Sep 2002 21:12:57 +0200 User-Agent: KMail/1.4.3 References: <200209121358.20729.per@prl.dk> <200209121852.22632.per@prl.dk> <3D80DCBF.801@mpex.net> In-Reply-To: <3D80DCBF.801@mpex.net> MIME-Version: 1.0 Message-Id: <200209122112.57967.per@prl.dk> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g8CJBrI01651 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1205 Hi Lars, > > then I'm sorry to not belive you. It's ok ;-) > > It is posible to start a vserver from the console in RH 7.3. The same > > behavior is not posible in SuSE8.0. (well not in my default > > installation.) Well, if the ONBOOT=yes for the vserver then it starts on boot. But if i stop it and try to start it again in a console it wont start. > so what's the output after starting on both systems? you didn't send > any output of the program so far. No, it was the same as you posted. > does the rh 7.3 vserver also start the scripts in your /etc/rc.d/rcX.d > dir? I dont know, but it was working alright in RH, and the server could start at boot, be stopped at the console and be startet again. > could you send me the 3 files rc.sysinit rc and rc.local. I'd like to > try these in the vserver to see if it's just the suse rc script which > is wrong. >From the RH ? I have deleted the server again, i want it to run at SuSE. But i tried to 'enter' a SuSE vserver and start a service (rcapache start) and the vserver was then running, as you said. But if this should be persistant, then i dont understand why the SuSE vserver starts at boot ????? Well, i have to install a RH again. Next week. Kind regards Per R Laursen From vserver.error@solucorp.qc.ca Thu Sep 12 18:00:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CM0V015802; Thu, 12 Sep 2002 18:00:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CKcjg03774 for vserver.list; Thu, 12 Sep 2002 16:38:45 -0400 Received: from korn.mpex.net (bei-i-sw1.telia.net [213.248.76.106]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CKchI03769 for ; Thu, 12 Sep 2002 16:38:44 -0400 Received: from mpex.net (User-1031863196@pD9E6B295.dip.t-dialin.net [217.230.178.149]) by korn.mpex.net (8.11.6/8.11.2) with ESMTP id g8CKdMR03967 Message-ID: <3D80FB9B.5010208@mpex.net> Date: Thu, 12 Sep 2002 22:39:55 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, de, de-de MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] SuSE 7.3/8.0 References: <200209121358.20729.per@prl.dk> <200209121852.22632.per@prl.dk> <3D80DCBF.801@mpex.net> <200209122112.57967.per@prl.dk> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1206 Per R Laursen wrote: >>does the rh 7.3 vserver also start the scripts in your /etc/rc.d/rcX.d >>dir? > > I dont know, but it was working alright in RH, and the server could start > at boot, be stopped at the console and be startet again. maybe there's someone in this group who could send the redhat rc scripts. > But if this should be persistant, then i dont understand why the SuSE > vserver starts at boot ????? Well I think we might be talking about the same problem. The RH server starts the services in the runlevel, because the scripts in /etc./rc.d/rcX.d are executed. SuSE doesn't start the scripts because of the faulty /etc/rc.d/rc script. You can still make it work until this issue is fixed. Add the following line to your /etc/vserver/v1.sh under post-start: vserver $2 exec /rcapache start This will execute the script in the vserver context. So making a vserver v1 status shows that the vserver is up, because that single service is running. From vserver.error@solucorp.qc.ca Thu Sep 12 18:06:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8CM61015900; Thu, 12 Sep 2002 18:06:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8CKi4703907 for vserver.list; Thu, 12 Sep 2002 16:44:04 -0400 Received: from korn.mpex.net (bei-i-sw1.telia.net [213.248.76.106]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8CKi3I03902 for ; Thu, 12 Sep 2002 16:44:03 -0400 Received: from mpex.net (User-1031863516@pD9E6B295.dip.t-dialin.net [217.230.178.149]) by korn.mpex.net (8.11.6/8.11.2) with ESMTP id g8CKihR04183 Message-ID: <3D80FCD8.4070003@mpex.net> Date: Thu, 12 Sep 2002 22:45:12 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, de, de-de MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] redhat start scripts Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1207 could anyone send me the three startscript from a redhat system: /etc/rc.d/rc.sysinit /etc/rc.d/rc /etc/rc.d/rc.local it would help me to figure out a problem I'm having with the suse startscripts. regards, lars From vserver.error@solucorp.qc.ca Fri Sep 13 01:36:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8D5aJ019667; Fri, 13 Sep 2002 01:36:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8D4E1i14058 for vserver.list; Fri, 13 Sep 2002 00:14:01 -0400 Received: from pioneernet.net (mail.pioneernet.net [207.115.64.224]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8D4DxI14051 for ; Fri, 13 Sep 2002 00:14:00 -0400 Date: Thu, 12 Sep 2002 21:13:13 -0700 Message-Id: <200209122113.AA88080414@pioneernet.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii From: "Cathy Sarisky" X-Sender: To: Subject: [vserver] kernel woes, and a .config for 2.4.19? X-Mailer: Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1208 Compiling a kernel on a dedicated (leased) server in a data center on the other end of the country is a recipe for at least frustration, if not disaster. Add in raid1 disks, grub (when make install wants lilo), and a few more complications, and things get ugly. I've spent far too much time in the last day or two compiling, installing, trying to reboot, and hanging the server. And each time this happens, I have to email the datacenter, ask for a reboot and someone to select the OTHER kernel.. repeat ad nauseum. Painful. I can't use the pre-built kernel (although it loads just fine on the server) because I need a highmem kernel. Due to the agony of repeated attempts and my inability to actually watch the boot process, I'm having a hard time trouble-shooting. I went looking for the .config file for 2.4.19, but the latest I see is for 2.4.18. Jacques, could you provide a .config file for 2.4.19, preferably the one used to build the pre-built kernel? Checking the HIGHMEM box and recompiling *might* be within my abilities at this point. At least I could establish that it's a problem with how I'm compiling/installing, and not with the config options I'm using... Failing that, I might offer eternal gratitude, DNS services(primary and/or secondary), or a small bit of $$ if someone would like to compile the dratted kernel for me with the highmem option and a few other tweaks. I'd rather do it myself, but I'm starting to run out of ideas, and patience of the guy in the data center might be starting to wear a little thin... Thanks! :) Cathy cathy@acornhosting.net ________________________________________________________________ Sent via the WebMail system at webmail.pioneernet.net From vserver.error@solucorp.qc.ca Fri Sep 13 04:12:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8D8Bu022176; Fri, 13 Sep 2002 04:12:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8D774518520 for vserver.list; Fri, 13 Sep 2002 03:07:04 -0400 Received: from korn.mpex.net (bei-i-sw1.telia.net [213.248.76.106]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8D772I18515 for ; Fri, 13 Sep 2002 03:07:03 -0400 Received: from mpex.net (194-29-228-41.ipberlin.com [194.29.228.41] (may be forged)) by korn.mpex.net (8.11.6/8.11.2) with ESMTP id g8D77dR22472 Message-ID: <3D818ECE.4030908@mpex.net> Date: Fri, 13 Sep 2002 09:07:58 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] kernel woes, and a .config for 2.4.19? References: <200209122113.AA88080414@pioneernet.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1209 hi cathy, I'm using the 2.4.19 kernel on our suse 8.0 box and recompiled it with the patch that can be found in the download section ftp://ftp.solucorp.qc.ca/pub/vserver/patch-2.4.19ctx-13 . did you try to apply this patch to the 2.4.19 kernel source (patch -p1 < patch-2.4.19ctx-13). regards, lars Cathy Sarisky wrote: > Compiling a kernel on a dedicated (leased) server in a data center on the other end of the country is a recipe for at least frustration, if not disaster. Add in raid1 disks, grub (when make install wants lilo), and a few more complications, and things get ugly. I've spent far too much time in the last day or two compiling, installing, trying to reboot, and hanging the server. And each time this happens, I have to email the datacenter, ask for a reboot and someone to select the OTHER kernel.. repeat ad nauseum. Painful. I can't use the pre-built kernel (although it loads just fine on the server) because I need a highmem kernel. Due to the agony of repeated attempts and my inability to actually watch the boot process, I'm having a hard time trouble-shooting. > > I went looking for the .config file for 2.4.19, but the latest I see is for 2.4.18. Jacques, could you provide a .config file for 2.4.19, preferably the one used to build the pre-built kernel? Checking the HIGHMEM box and recompiling *might* be within my abilities at this point. At least I could establish that it's a problem with how I'm compiling/installing, and not with the config options I'm using... > > Failing that, I might offer eternal gratitude, DNS services(primary and/or secondary), or a small bit of $$ if someone would like to compile the dratted kernel for me with the highmem option and a few other tweaks. I'd rather do it myself, but I'm starting to run out of ideas, and patience of the guy in the data center might be starting to wear a little thin... > > Thanks! :) > > Cathy > cathy@acornhosting.net From vserver.error@solucorp.qc.ca Fri Sep 13 05:50:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8D9nu023143; Fri, 13 Sep 2002 05:49:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8D8Zvg22227 for vserver.list; Fri, 13 Sep 2002 04:35:57 -0400 Received: from korn.mpex.net (bei-i-sw1.telia.net [213.248.76.106]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8D8ZtI22218 for ; Fri, 13 Sep 2002 04:35:56 -0400 Received: from mpex.net (194-29-228-41.ipberlin.com [194.29.228.41] (may be forged)) by korn.mpex.net (8.11.6/8.11.2) with ESMTP id g8D8aUR24959 Message-ID: <3D81A3A1.60300@mpex.net> Date: Fri, 13 Sep 2002 10:36:49 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: [vserver] SuSE init script problem solved Content-Type: multipart/mixed; boundary="------------030803090502020601050008" Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1210 This is a multi-part message in MIME format. --------------030803090502020601050008 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit below there's a description of the problem I've had and how I solved it. SuSE is unable to run the init scripts in the specified runlevel, when starting a vserver. the solution is to use a modified startscript from another system. I replace the /etc/rc.d/rc in my SuSE vserver with a debian startscript I got from a friend. one thing I had to modify within the debian rc script is the path to the runlevel dirs. I attached the small init script to this mail, so copy it over the /etc/rc.d/rc file IN YOUR VSERVER, it's already modified. If you'd like to do it yourself, just replace the string /etc/rc$runlevel.d with /etc/rc.d/rc$runlevel.d since vserver seems to be developed using a redhat server, I guess you can also use the /etc/rc.d/rc script from a redhat installation. maybe this script or a RH rc script could be included in the future releases, so that SuSE users have no problems. or there should be at least a way to download such a script from the download page. details about the problem: > don't know if this is a general (known) bug, or if it just happens on our machine. > The server is running SuSE 8.0 with the 2.4.19ctx-13 kernel patch and vserver 0.19. > > When starting a vserver with the "vserver start" command, there's no init script executed in the specified runlevel, e.g. /etc/rc.d/rc3.d. > > To check if the /etc/rc.d/rc script fails at the first check, which is... > test "$PREVLEVEL" = "$RUNLEVEL" && exit 0 > ...I added the following two lines to the top of the script: > echo "PRELEVEL " $PRELEVEL > echo "RUNLEVEL " $RUNLEVEL > Both variables PRELEVEL and RUNLEVEL are empty. Executing /sbin/runlevel in the vserver also returns "unknown". > > But a ps -ax within the vserver (vserver enter), contains: > PID TTY STAT TIME COMMAND > 1 ? S 0:04 init [3] > > The file /var/run/utmp, which is accessed by /sbin/runlevel within the vserver is empty. In the main system it is filled with some data. > > It doesn't help to comment out the check I mentioned above. > Doing this brings up the following when starting the vserver: > stty: standard input: Inappropriate ioctl for device > > cat /dev/console within the vserver shows: > stty: standard input: Inappropriate ioctl for device > stty: standard input: Inappropriate ioctl for device > blogd: can not open (null): No such file or directory > Master Resource Control: previous runlevel: , switching to runlevel: > Master Resource Control: runlevel has been reached > stty: standard input: Inappropriate ioctl for device > > Hope this is a general issue that can be fixed. > > Lars --------------030803090502020601050008 Content-Type: application/x-java-vm; name="rc" Content-Transfer-Encoding: base64 Content-Disposition: inline; filename="rc" IyEgL2Jpbi9iYXNoCiMKIyBDb3B5cmlnaHQgKGMpIDE5OTYtMjAwMiBTdVNFIExpbnV4IEFH LCBOdWVybmJlcmcsIEdlcm1hbnkuCiMgQWxsIHJpZ2h0cyByZXNlcnZlZC4KIwojIEF1dGhv cjogRmxvcmlhbiBMYSBSb2NoZSA8ZmVlZGJhY2tAc3VzZS5kZT4gMTk5NgojCSAgV2VybmVy IEZpbmsgPHdlcm5lckBzdXNlLmRlPiAxOTk0LTk5LDIwMDAtMjAwMQojCiMgL2V0Yy9pbml0 LmQvcmMgICAtLSAgICBUaGUgTWFzdGVyIFJlc291cmNlIENvbnRyb2wgU2NyaXB0CiMKIyBU aGlzIGZpbGUgaXMgcmVzcG9uc2libGUgIGZvciAgc3RhcnRpbmcvc3RvcHBpbmcgIHNlcnZp Y2VzCiMgd2hlbiB0aGUgcnVubGV2ZWwgY2hhbmdlcy4gIElmIHRoZSBhY3Rpb24gZm9yIGEg cGFydGljdWxhcgojIGZlYXR1cmUgaW4gdGhlIG5ldyBydW4tbGV2ZWwgaXMgdGhlIHNhbWUg YXMgIHRoZSBhY3Rpb24gaW4KIyB0aGUgcHJldmlvdXMgcnVuLWxldmVsLCB0aGlzIHNjcmlw dCB3aWxsIG5laXRoZXIgc3RhcnQgbm9yCiMgc3RvcCB0aGF0IGZlYXR1cmUuCiMKCiMKIyBP biBwcmV2aW91cyBydW5sZXZlbCBpZGVudGljYWwgd2l0aCBjdXJyZW50IHJ1bmxldmVsIGRv IG5vdAojIHJlLWV4YW1pbmUgY3VycmVudCBydW5sZXZlbC4KIwp0ZXN0ICIkUFJFVkxFVkVM IiA9ICIkUlVOTEVWRUwiICYmIGV4aXQgMAoKIwojIENvbWluZyBmcm9tIHJ1bmxldmVsIDEg d2UgZG8gbm90IG5lZWQgdG8gZW50ZXIgUwojCnRlc3QgIiRQUkVWTEVWRUwiID0gIjEiIC1h ICIkUlVOTEVWRUwiID0gIlMiICYmIGV4aXQgMAoKIwojIENvbWluZyBmcm9tIHJ1bmxldmVs IFMgd2UgaGF2ZSB0byBjaGVjayBpZiB0aGUgc3lzdGVtIHdhcwojIGJvb3RlZCBjb2xkIGlu dG8gc2luZ2xlIHVzZXIgbW9kZSBhbmQgY2FsbCAvZXRjL2luaXQuZC9ib290LiAgCiMKaWYg dGVzdCAiJFBSRVZMRVZFTCIgPSAiUyIgLWEgLXggL3NiaW4vcnVubGV2ZWwgOyB0aGVuCiAg ICAjIERvdWJsZSBjaGVjawogICAgdXRtcD0kKExDX0FMTD1QT1NJWCAvc2Jpbi9ydW5sZXZl bCAyPiAvZGV2L251bGwpCiAgICBkcHRzPSJubyIKICAgIHByb2M9Im5vIgogICAgaWYgdGVz dCAtZSAvcHJvYy9tb3VudHMgOyB0aGVuCglwcm9jPSJ5ZXMiCgl3aGlsZSByZWFkIGRlcyBm cyB0eXBlIHJlc3Q7IGRvCgkgICAgY2FzZSAiJGZzIiBpbiAvZGV2L3B0cykgZHB0cz0ieWVz IiA7OyBlc2FjCglkb25lIDwgL3Byb2MvbW91bnRzCiAgICBmaQogICAgdW5zZXQgZGVzIGZz IHR5cGUgcmVzdAogICAgaWYgdGVzdCAiJHV0bXAiID0gInVua25vd24iIC1hICIkZHB0cyIg PSAibm8iIDsgdGhlbgoJdGVzdCAiJHByb2MiID0gInllcyIgJiYgdW1vdW50IC1uIC10IHBy b2MKCS9ldGMvaW5pdC5kL2Jvb3QKICAgIGZpCmZpCgojCiMgQXZvaWQgYmVpbmcgaW50ZXJy dXB0ZWQgYnkgY2hpbGQgb3Iga2V5Ym9hcmQKIwp0cmFwICJlY2hvIiBTSUdJTlQgU0lHU0VH ViBTSUdRVUlUCnRyYXAgJ3Rlc3QgIiRSVU5MRVZFTCIgPSAiMSIgJiYgZXhpdCAwJyBTSUdU RVJNCnNldCArZQoKIwojIEdldCB0ZXJtaW5hbCBzaXplIG9mIHN0YW5kYXJkIGlucHV0IG9m IHRoZSBzeXN0ZW0gY29uc29sZQojCnRlc3QgLXogIiRDT05TT0xFIiAmJiBDT05TT0xFPS9k ZXYvY29uc29sZQpzZXQgLS0gJChzdHR5IHNpemUgPCAkQ09OU09MRSkKICBMSU5FUz0kMQpD T0xVTU5TPSQyCmV4cG9ydCBMSU5FUyBDT0xVTU5TIENPTlNPTEUKCiMKIyBTZXQgSS9PIG9m IHRoaXMgc2NyaXB0IGFuZCBpdHMgY2hpbGRzIHRvIGNvbnNvbGUKIwpleGVjIDA8PiAkQ09O U09MRSAxPiYwIDI+JjAKCiMKIyBUaGlzIHJlZGlyZWN0cyBhbGwgcmMgbWVzc2FnZXMgZHVy aW5nIHJlYm9vdCBhbmQgaGFsdAojIHRvIHR0eTEgaWYgdGhlIHN5c3RlbSBjb25zb2xlIGlz IGJvdW5kIG9uIFZHQSAodHR5MCkuCiMKUkVESVJFQ1Q9ImBzaG93Y29uc29sZSAyPi9kZXYv bnVsbGAiCmV4cG9ydCBSRURJUkVDVAppZiB0ZXN0ICRDT0xVTU5TIC1ndCAwIDsgdGhlbgog ICAgIyBWR0EKICAgIGlmIHRlc3QgIiRSVU5MRVZFTCIgPSAiMCIgLW8gIiRSVU5MRVZFTCIg PSAiNiIgOyB0aGVuCgljYXNlICIkUkVESVJFQ1QiIGluIC9kZXYvdHR5WzEtOV0qKQoJICAg IFJFRElSRUNUPS9kZXYvdHR5MQoJICAgIHNldGNvbnNvbGUgJFJFRElSRUNUIDwgJENPTlNP TEUKCSAgICBzZXQgLS0gJChzdHR5IHNpemUgPCAkUkVESVJFQ1QpCgkgICAgTElORVM9JDEK CSAgICBDT0xVTU5TPSQyCgkgICAgZXhwb3J0IExJTkVTIENPTFVNTlMKCWVzYWMKICAgIGZp CmVsc2UKICAgICMgU2VyaWFsOiBjb2x1bW5zIGFuZCBsaW5lcyBhcmUgbm90IGRlZmluZWQK ICAgICAgTElORVM9MjQKICAgIENPTFVNTlM9ODAKICAgIHRlc3QgIiRURVJNIiA9ICJsaW51 eCIgLW8gLXogIiRURVJNIiAmJiBURVJNPXZ0MTAyCmZpCgojCiMgQ29uZmlndXJhdGlvbiBh bmQgY29sb3Jpbmcgb2YgdGhlIGJvb3QgbWVzc2FnZXMKIwoKLiAvZXRjL3JjLnN0YXR1cwou IC9ldGMvcmMuY29uZmlnCgojCiMgU2F2ZSBvbGQgdGVybWluYWwgc2V0dGluZ3MgYW5kIHNl dCAtbmwgdG8gYXZvaWQgc3RhaXJjYXNlCiMgZWZmZWN0LCBkbyBub3QgbG9jayBzY3JvbGxp bmcsIGFuZCBhdm9pZCBicmVhayBjaGFyYWN0ZXJzLgojCm90dHk9JChzdHR5IC1nKQpzdHR5 IC1ubCAtaXhvbiBpZ25icmsgLWJya2ludCAwPiYxCgojCiMgU3RhcnQgYmxvZ2QgaWYgbm90 IGluIHNpbmdsZSB1c2VyIG1vZGUKIwppZiB0ZXN0ICIkUlVOTEVWRUwiICE9ICJTIiAtYSAt eCAvc2Jpbi9ibG9nZCA7IHRoZW4KICAgIC9zYmluL2Jsb2dkICRSRURJUkVDVApmaQoKZWNo byAtbiAiTWFzdGVyIFJlc291cmNlIENvbnRyb2w6ICIKZWNobyAtbiAicHJldmlvdXMgcnVu bGV2ZWw6ICRQUkVWTEVWRUwsICIKZWNobyAtZSAic3dpdGNoaW5nIHRvIHJ1bmxldmVsOiAk e3N0YXR9JHtleHRkfSR7UlVOTEVWRUx9JHtub3JtfSIKCnJ1bnJjPS9ldGMvaW5pdC5kL3Jj JHtSVU5MRVZFTH0uZApwcmVyYz0vZXRjL2luaXQuZC9yYyR7UFJFVkxFVkVMfS5kCnJleD0i WzAtOV1bMC05XSIKZmFpbGVkPSIiCnNraXBwZWQ9IiIKCiMKIyBGaXJzdCBjaGVjayBhbmQg dGVzdCBzZXJ2aWNlcyBvZiBwcmV2aW91cyBhbmQgY3VycmVudCAobmV3KSBydW5sZXZlbC4K Iwpmb3IgaSBpbiAkcHJlcmMvSyR7cmV4fSo7IGRvCiAgICB0ZXN0IC14ICIkaSIgfHwgY29u dGludWUKCiAgICAjCiAgICAjIERvbid0IHN0b3Agc2VydmljZSBpZiB0aGUgbmV3IHJ1bmxl dmVsIHJlcXVpcmVzIHRoZSBzZXJ2aWNlLgogICAgIwogICAgc2VydmljZT0ke2kjKi9LJHJl eH0KICAgIHNldCAtLSAkcnVucmMvUyRyZXgkc2VydmljZQogICAgdGVzdCAkIyAtZ3QgMSAm JiBlY2hvIC1lICIkYXR0biRydW5yYy86IG1vcmUgdGhhbiBvbmUgbGluayBmb3Igc2Vydmlj ZSAkc2VydmljZSRub3JtIgogICAgdGVzdCAteCAiJDEiICAmJiBjb250aW51ZQoKICAgICMg c2VuZCBpbmZvcm1hdGlvbiB0byBzcGxhc2ggaWNvbiB2aWV3ZXIuCiAgICByY19zcGxhc2gg ICIkaSBzdG9wIgoKICAgICMgTG9nIHRvIC92YXIvbG9nL2Jvb3QubXNnCiAgICBibG9nZ2Vy ICIkaSBzdG9wIgoKICAgICMgU3RvcCB0aGUgc2VydmljZXMgb2YgdGhlIHByZXZpb3VzIHJ1 bmxldmVsIGlmIHRoZXkgYXJlIG1pc3NlZAogICAgIyB3aXRoaW4gdGhlIGN1cnJlbnQgKG5l dykgcnVubGV2ZWwuCgogICAgJGkgc3RvcDsgc3RhdHVzPSQ/CiAgICBjYXNlICRzdGF0dXMg aW4KCVsxLTRdKQkgZmFpbGVkPSIke2ZhaWxlZH0gICR7c2VydmljZX0iIDs7CglbNTZdKQlz a2lwcGVkPSIke3NraXBwZWR9ICR7c2VydmljZX0iIDs7CglbMDddfCopCTs7CiAgICBlc2Fj CiAgICBlY2hvIC1lbiAiJHJjX3Jlc2V0IgoKICAgICMgTG9nIHRvIC92YXIvbG9nL2Jvb3Qu bXNnCiAgICBibG9nZ2VyICInJGkgc3RvcCcgZXhpdHMgd2l0aCBzdGF0dXMgJHN0YXR1cyIK ZG9uZQoKZm9yIGkgaW4gJHJ1bnJjL1Mke3JleH0qOyBkbwogICAgdGVzdCAteCAiJGkiIHx8 IGNvbnRpbnVlCgogICAgIwogICAgIyBEb24ndCBzdGFydCBzZXJ2aWNlIGlmIHByZXZpb3Vz IHJ1bmxldmVsIGluY2x1ZGVzIHRoZSBzZXJ2aWNlLgogICAgIwogICAgc2VydmljZT0ke2kj Ki9TJHJleH0KICAgIHNldCAtLSAkcHJlcmMvSyRyZXgkc2VydmljZQogICAgdGVzdCAkIyAt Z3QgMSAmJiBlY2hvIC1lICIkYXR0biRwcmVyYy86IG1vcmUgdGhhbiBvbmUgbGluayBmb3Ig c2VydmljZSAkc2VydmljZSRub3JtIgogICAgdGVzdCAteCAiJDEiICAmJiBjb250aW51ZQoK ICAgICMgc2VuZCBpbmZvcm1hdGlvbiB0byBzcGxhc2ggaWNvbiB2aWV3ZXIuCiAgICByY19z cGxhc2ggICIkaSBzdGFydCIKCiAgICAjIExvZyB0byAvdmFyL2xvZy9ib290Lm1zZwogICAg YmxvZ2dlciAiJGkgc3RhcnQiCgogICAgIyBTdGFydCB0aGUgc2VydmljZXMgb2YgdGhlIGN1 cnJlbnQgKG5ldykgcnVubGV2ZWwgaWYgdGhleSBhcmUgbWlzc2VkCiAgICAjIHdpdGhpbiB0 aGUgcHJldmlvdXMgcnVubGV2ZWwuCgogICAgJGkgc3RhcnQ7IHN0YXR1cz0kPwogICAgY2Fz ZSAkc3RhdHVzIGluCglbMS00N10pCSBmYWlsZWQ9IiR7ZmFpbGVkfSAgJHtzZXJ2aWNlfSIg OzsKCVs1Nl0pCXNraXBwZWQ9IiR7c2tpcHBlZH0gJHtzZXJ2aWNlfSIgOzsKCTB8KikJOzsK ICAgIGVzYWMKICAgIGVjaG8gLWVuICIkcmNfcmVzZXQiCgogICAgIyBMb2cgdG8gL3Zhci9s b2cvYm9vdC5tc2cKICAgIGJsb2dnZXIgIickaSBzdGFydCcgZXhpdHMgd2l0aCBzdGF0dXMg JHN0YXR1cyIKZG9uZQoKIwojIEluZm9ybSB0aGUgdXNlcnMKIyAgIFJlYWN0aW9uIG9uIExT QiByZXR1cm4gdmFsdWVzOgojICAgIE9LICAgOiAwIC0gc3VjY2VzcwojICAgIEZBSUwgOiAx IC0gZ2VuZXJpYyBvciB1bnNwZWNpZmllZCBlcnJvcgojICAgIEZBSUwgOiAyIC0gaW52YWxp ZCBvciBleGNlc3MgYXJndW1lbnQocykKIyAgICBGQUlMIDogMyAtIHVuaW1wbGVtZW50ZWQg ZmVhdHVyZSAoZS5nLiAicmVsb2FkIikKIyAgICBGQUlMIDogNCAtIGluc3VmZmljaWVudCBw cml2aWxlZ2UKIyAgICBTS0lQIDogNSAtIHByb2dyYW0gaXMgbm90IGluc3RhbGxlZAojICAg IFNLSVAgOiA2IC0gcHJvZ3JhbSBpcyBub3QgY29uZmlndXJlZAojICAgIEZBSUwgOiA3IC0g cHJvZ3JhbSBpcyBub3QgcnVubmluZyAoZG9pbmcgInN0YXJ0IikKIyAgICBPSyAgIDogNyAt IHByb2dyYW0gaXMgbm90IHJ1bm5pbmcgKGRvaW5nICJzdG9wIikKIwoKcmNfc3BsYXNoICJt YXN0ZXIiCgplY2hvIC1uICJNYXN0ZXIgUmVzb3VyY2UgQ29udHJvbDogIgplY2hvIC1lICJy dW5sZXZlbCAke1JVTkxFVkVMfSBoYXMgYmVlbiAke3N0YXR9JHtleHRkfXJlYWNoZWQke25v cm19IgppZiB0ZXN0IC1uICIkZmFpbGVkIiA7IHRoZW4KICAgIG49JCgoJHsjZmFpbGVkfSAr IDcpKQogICAgZWNobyAtbiAgIkZhaWxlZCBzZXJ2aWNlcyBpbiBydW5sZXZlbCAke1JVTkxF VkVMfTogIgogICAgdGVzdCAkbiAtbHQgNDcgJiYgZWNobyAtZW4gIlwwMzNbJHtDT0xVTU5T fUNcMDMzWyR7bn1EIgogICAgZWNobyAtZSAgIiR7d2Fybn0ke2ZhaWxlZH0ke25vcm19Igpm aQppZiB0ZXN0IC1uICIkc2tpcHBlZCIgOyB0aGVuCiAgICBuPSQoKCR7I3NraXBwZWR9ICsg NykpCiAgICBlY2hvIC1uICAiU2tpcHBlZCBzZXJ2aWNlcyBpbiBydW5sZXZlbCAke1JVTkxF VkVMfTogIgogICAgdGVzdCAkbiAtbHQgNDcgJiYgZWNobyAtZW4gIlwwMzNbJHtDT0xVTU5T fUNcMDMzWyR7bn1EIgogICAgZWNobyAtZSAgIiR7YXR0bn0ke3NraXBwZWR9JHtub3JtfSIK ZmkKCiMKIyBTdG9wIGJsb2dkIGlmIHJ1bm5pbmcKIwpraWxscHJvYyAtUVVJVCAvc2Jpbi9i bG9nZAoKIwojIFJlc3RvcmUgb2xkIHRlcm1pbmFsIHNldHRpbmdzCiMKc3R0eSAkb3R0eSAw PiYxCgojCiMgRm9yIHRoZSBmaXJzdCBsb2dvbiBvbiBhIHZpcnR1YWwgY29uc29sZS4KIwp0 ZXN0IC1lIC9ldGMvaXNzdWUtU3VTRS1maXJzdC1ydW4gJiYgewogICAgY2F0IC9ldGMvaXNz dWUtU3VTRS1maXJzdC1ydW4gPiAkUkVESVJFQ1QKICAgIHJtIC1mIC9ldGMvaXNzdWUtU3VT RS1maXJzdC1ydW4gMj4vZGV2L251bGwKfQoKZXhpdCAwCg== --------------030803090502020601050008-- From vserver.error@solucorp.qc.ca Fri Sep 13 08:23:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8DCNL024167; Fri, 13 Sep 2002 08:23:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8DAual31163 for vserver.list; Fri, 13 Sep 2002 06:56:36 -0400 Received: from pioneernet.net (mail.pioneernet.net [207.115.64.224]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8DAuZI31158 for ; Fri, 13 Sep 2002 06:56:35 -0400 Date: Fri, 13 Sep 2002 03:55:50 -0700 Message-Id: <200209130355.AA2621732@pioneernet.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii From: "Cathy Sarisky" X-Sender: To: Subject: Re: [vserver] kernel woes, and a .config for 2.4.19? X-Mailer: Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1211 Hi Lars, Yes, I did patch the kernel code before compiling. ---------- Original Message ---------------------------------- From: Lars Braeuer Reply-to: vserver@solucorp.qc.ca Date: Fri, 13 Sep 2002 09:07:58 +0200 >hi cathy, > >I'm using the 2.4.19 kernel on our suse 8.0 box and recompiled it with the patch that can >be found in the download section ftp://ftp.solucorp.qc.ca/pub/vserver/patch-2.4.19ctx-13 . >did you try to apply this patch to the 2.4.19 kernel source (patch -p1 < patch-2.4.19ctx-13). > >regards, >lars > > >Cathy Sarisky wrote: >> Compiling a kernel on a dedicated (leased) server in a data center on the other end of the country is a recipe for at least frustration, if not disaster. Add in raid1 disks, grub (when make install wants lilo), and a few more complications, and things get ugly. I've spent far too much time in the last day or two compiling, installing, trying to reboot, and hanging the server. And each time this happens, I have to email the datacenter, ask for a reboot and someone to select the OTHER kernel.. repeat ad nauseum. Painful. I can't use the pre-built kernel (although it loads just fine on the server) because I need a highmem kernel. Due to the agony of repeated attempts and my inability to actually watch the boot process, I'm having a hard time trouble-shooting. >> >> I went looking for the .config file for 2.4.19, but the latest I see is for 2.4.18. Jacques, could you provide a .config file for 2.4.19, preferably the one used to build the pre-built kernel? Checking the HIGHMEM box and recompiling *might* be within my abilities at this point. At least I could establish that it's a problem with how I'm compiling/installing, and not with the config options I'm using... >> >> Failing that, I might offer eternal gratitude, DNS services(primary and/or secondary), or a small bit of $$ if someone would like to compile the dratted kernel for me with the highmem option and a few other tweaks. I'd rather do it myself, but I'm starting to run out of ideas, and patience of the guy in the data center might be starting to wear a little thin... >> >> Thanks! :) >> >> Cathy >> cathy@acornhosting.net > > ________________________________________________________________ Sent via the WebMail system at webmail.pioneernet.net From vserver.error@solucorp.qc.ca Fri Sep 13 09:05:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8DD56024456; Fri, 13 Sep 2002 09:05:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8DBkB501643 for vserver.list; Fri, 13 Sep 2002 07:46:11 -0400 Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8DBkAI01638 for ; Fri, 13 Sep 2002 07:46:10 -0400 Received: from jon by ns1.silicide.dk with local (Exim 3.35 #1 (Debian)) id 17pou6-0001Jc-00; Fri, 13 Sep 2002 13:46:30 +0200 Date: Fri, 13 Sep 2002 13:46:30 +0200 To: Tomas Fasth Cc: jon+vserver@silicide.dk, vserver@solucorp.qc.ca Subject: Re: [vserver] whaaaats happening (<- office space style pronouncing ;-D Message-ID: <20020913114630.GA5033@silicide.dk> References: <3D8069FA.D8A7F65@silicide.dk> <3D80ABCE.9010804@euronetics.se> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3D80ABCE.9010804@euronetics.se> User-Agent: Mutt/1.3.28i From: jon@silicide.dk X-Scanner: exiscan *17pou6-0001Jc-00*N4pcp1pxQNw* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1212 On Thu, Sep 12, 2002 at 04:59:26PM +0200, Tomas Fasth wrote: > Jon, I found myself removed from the list a couple of weeks ago. If i'm removed, how can you see this email ?? To my knowledge non-subscribers arent allowed to post, are they ?? Besides, if i try to look at the archived emails in august... They stop arround the 19th, thats kind of strange, dont you think ?? > May be the same happened to you. Just resubscribe and things will > start to flow again. Great, a quickfix :/ i want a solution, not a quickfix. JonB From vserver.error@solucorp.qc.ca Fri Sep 13 15:49:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8DJn0027994; Fri, 13 Sep 2002 15:49:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8DIOC927631 for vserver.list; Fri, 13 Sep 2002 14:24:12 -0400 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8DIOBI27623 for ; Fri, 13 Sep 2002 14:24:11 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g8DIP6x07432 for vserver@solucorp.qc.ca; Fri, 13 Sep 2002 14:25:06 -0400 From: Jacques Gelinas Date: Fri, 13 Sep 2002 14:25:06 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] rebootmgr References: <3D7FCC9A.20400@activecom.net> In-Reply-To: <3D7FCC9A.20400@activecom.net> X-mailer: tlmpmail 0.6 Message-ID: <20020913142506.f725bf2e3a4b@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1213 On Wed, 11 Sep 2002 19:07:06 -0500, Mehmet Avcioglu wrote > > I couldn't understand something. > > In /etc/init.d/rebootmgr under status it has the following.. > > status) > if killall -9 rebootmgr > then > echo rebootmgr is running > else > echo rebootmgr is NOT running > fi > ;; > > killall everything with the name rebootmgr? the script itself as well? This is indeed completly bogus. I have enhanced this to use a PID file. WIll be in the next release. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Sep 13 15:53:43 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8DJrY028064; Fri, 13 Sep 2002 15:53:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8DIPjv27723 for vserver.list; Fri, 13 Sep 2002 14:25:45 -0400 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8DIPjI27718 for ; Fri, 13 Sep 2002 14:25:45 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g8DIQeX07436 for vserver@solucorp.qc.ca; Fri, 13 Sep 2002 14:26:40 -0400 From: Jacques Gelinas Date: Fri, 13 Sep 2002 14:26:40 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] More that 16 IPs per vserver ? References: <001a01c259dc$91432890$0301a8c0@jhd> In-Reply-To: <001a01c259dc$91432890$0301a8c0@jhd> X-mailer: tlmpmail 0.6 Message-ID: <20020913142640.2d2828bfd909@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1214 On Wed, 11 Sep 2002 17:45:37 -0500, takashi wrote > Multi IP on several devices > > Since kernel ctx-12, you can setup up to 16 IPs per vserver. All those IPs had to > be on the same device (IPROOTDEV). > It is now possible to assign those IPs to several devices, using the explicit syntax: > > > IPROOT="eth0:1.2.3.4 eth1:2.3.4.5 192.168.1.2" > IPROOTDEV=eth2 > Anyway to set more that 16 IPS per vserver ???? This could be done by a small change in the kernel. Currently, 16 was out of this air. It could be a lot larger with no impact on performance. Or it could be as needed. I will look into this (but patches are welcome :-) ) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Sun Sep 15 16:37:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8FKbQ010532; Sun, 15 Sep 2002 16:37:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8FJ2iJ17558 for vserver.list; Sun, 15 Sep 2002 15:02:44 -0400 Received: from www.13thfloor.at (www.13thfloor.at [212.16.59.250]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8FJ2gI17553 for ; Sun, 15 Sep 2002 15:02:43 -0400 Received: by www.13thfloor.at (Postfix, from userid 1001) id 6FF7B220B31; Sun, 15 Sep 2002 21:03:16 +0200 (CEST) Date: Sun, 15 Sep 2002 21:03:16 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: [vserver] Just for fun ... (a minor bug) Message-ID: <20020915190316.GB22361@www.13thfloor.at> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1215 did you know that vps has a *special* help? vps --help *G* just stumbled over it ... best, Herbert From vserver.error@solucorp.qc.ca Tue Sep 17 15:12:37 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8HJCRP06608; Tue, 17 Sep 2002 15:12:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8HHq3820375 for vserver.list; Tue, 17 Sep 2002 13:52:03 -0400 Received: from noc.easyspace.net (noc.easyspace.net [62.254.202.67]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8HHq0I20368 for ; Tue, 17 Sep 2002 13:52:02 -0400 Received: from hofmann.snowcra.sh (gw1.noc.easyspace.net [62.254.202.66]) by noc.easyspace.net (EasyPost) with ESMTP id 396D519077 for ; Tue, 17 Sep 2002 18:43:40 +0100 (BST) Received: from hofmann (hofmann [127.0.0.1]) by hofmann.snowcra.sh (Postfix) with SMTP id 842CD36F for ; Tue, 17 Sep 2002 18:52:38 +0100 (BST) Date: Tue, 17 Sep 2002 18:52:38 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: Re: [vserver] More that 16 IPs per vserver ? In-Reply-To: <20020913142640.2d2828bfd909@remtk.solucorp.qc.ca> References: <001a01c259dc$91432890$0301a8c0@jhd> <20020913142640.2d2828bfd909@remtk.solucorp.qc.ca> X-Mailer: Sylpheed version 0.7.8claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: NErb*2NY4\th?$s.!!]_9le_WtWE'b4;dk<5ot)OW2hErS|tE6~D3errlO^fVil?{qe4Lp_m\&Ja!;>%JqlMPd27X|;b!GH'O.,NhF*)e\ln4W}kFL5c`5t'9,(~Bm_&on,0Ze"D>rFJ$Y[U""nR Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1216 Jacques Gelinas wrote: > > Anyway to set more that 16 IPS per vserver ???? > This could be done by a small change in the kernel. Currently, 16 was out of > this air. It could be a lot larger with no impact on performance. Or it could > be as needed. I will look into this (but patches are welcome :-) ) netmasks could be a simple option here, usually when you have a range of allowed IP addresses they are more or less adjacent. It would avoid unnecessary compares and bloat of the structure too. -- Sam Vilain, sam@vilain.net WWW: http://sam.vilain.net/ 7D74 2A09 B2D3 C30F F78E GPG: http://sam.vilain.net/sam.asc 278A A425 30A9 05B5 2F13 When I sell liquor, its called bootlegging; when my patrons serve it on Lake Shore Drive, its called hospitality. AL CAPONE From vserver.error@solucorp.qc.ca Wed Sep 18 16:54:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8IKs7P20084; Wed, 18 Sep 2002 16:54:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8IKNaY02808 for vserver.list; Wed, 18 Sep 2002 16:23:36 -0400 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8IKNZI02803 for ; Wed, 18 Sep 2002 16:23:35 -0400 Received: from remtk.solucorp.qc.ca (g36-98.citenet.net [206.123.36.98]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g8IKSCK69557 for ; Wed, 18 Sep 2002 16:28:13 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g8IKOUD23555 for vserver@solucorp.qc.ca; Wed, 18 Sep 2002 16:24:30 -0400 From: Jacques Gelinas Date: Wed, 18 Sep 2002 16:24:30 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] RE More that 16 IPs per vserver ? References: <002001c25df4$e57b6d70$0301a8c0@jhd> In-Reply-To: <002001c25df4$e57b6d70$0301a8c0@jhd> X-mailer: tlmpmail 0.6 Message-ID: <20020918162430.b4d32ba1f9ed@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1217 On Mon, 16 Sep 2002 22:49:52 -0500, takashi wrote > Hello > I have play inside the kernel patch to see if it is possible to unlock the ip restriction > set to 16. > I have changed the code to 64and it work but i don't know if there is any security > that may be perform by doing that. > Maybe Jack can answer about this subject No, no security issue. The limit to 16 was simply because 16*4 = 64, which kind of fit a cpu cache line. But the current implement do not make use of this information often. Merely for the bind system call, which is seldom used (generally only when a service starts). So moving to a larger value is not bad. By playing smart, we could do some as needed allocation and handle any value. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Fri Sep 20 04:51:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8K8pBP19979; Fri, 20 Sep 2002 04:51:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8K87lA24659 for vserver.list; Fri, 20 Sep 2002 04:07:47 -0400 Received: from endo.mpex.net (endo.mpex.net [80.239.136.137]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g8K87dI24653 for ; Fri, 20 Sep 2002 04:07:39 -0400 Received: (qmail 16875 invoked by uid 509); 20 Sep 2002 08:07:58 -0000 Received: from unknown (HELO mpex.net) (lbraeuer@mpex.net@194.29.228.41) by 0 with SMTP; 20 Sep 2002 08:07:58 -0000 Message-ID: <3D8AD74D.3040201@mpex.net> Date: Fri, 20 Sep 2002 10:07:41 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] SuSE init script problem solved References: <3D81A3A1.60300@mpex.net> <200209200919.34731.per@prl.dk> Content-Type: multipart/mixed; boundary="------------020707000909010500040904" Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1218 This is a multi-part message in MIME format. --------------020707000909010500040904 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit I probably attached the wrong script last time. Use this one or your redhat script and it'll work. although the workaround works fine, I'd suggest to switch back to the startscript, the way it's supposed to be. lars Per R Laursen wrote: > Hi Lars, > > Sorry for the late responce. > > It sems to me, that the rc script you attached to the mail list was > identical to the original SuSE 8.0 rc script. > > I have made the work arround, you proposed, to start the services in > /etc/vservers/*.sh . It works nice. > > Kind regards > > Per R Laursen > > On Friday 13 September 2002 10:36, Lars Braeuer wrote: > >>below there's a description of the problem I've had and how I solved >>it. SuSE is unable to run the init scripts in the specified runlevel, >>when starting a vserver. the solution is to use a modified startscript >>from another system. I replace the /etc/rc.d/rc in my SuSE vserver with >>a debian startscript I got from a friend. >> >>one thing I had to modify within the debian rc script is the path to >>the runlevel dirs. I attached the small init script to this mail, so >>copy it over the /etc/rc.d/rc file IN YOUR VSERVER, it's already >>modified. If you'd like to do it yourself, just replace the string >>/etc/rc$runlevel.d with /etc/rc.d/rc$runlevel.d >> >>since vserver seems to be developed using a redhat server, I guess you >>can also use the /etc/rc.d/rc script from a redhat installation. >> >>maybe this script or a RH rc script could be included in the future >>releases, so that SuSE users have no problems. or there should be at >>least a way to download such a script from the download page. >> >>details about the problem: >> >>> don't know if this is a general (known) bug, or if it just happens >>>on our machine. The server is running SuSE 8.0 with the 2.4.19ctx-13 >>>kernel patch and vserver 0.19. >>> >>>When starting a vserver with the "vserver start" >>>command, there's no init script executed in the specified runlevel, >>>e.g. /etc/rc.d/rc3.d. >>> >>>To check if the /etc/rc.d/rc script fails at the first check, which >>>is... test "$PREVLEVEL" = "$RUNLEVEL" && exit 0 >>>...I added the following two lines to the top of the script: >>>echo "PRELEVEL " $PRELEVEL >>>echo "RUNLEVEL " $RUNLEVEL >>>Both variables PRELEVEL and RUNLEVEL are empty. Executing >>>/sbin/runlevel in the vserver also returns "unknown". >>> >>>But a ps -ax within the vserver (vserver enter), >>>contains: PID TTY STAT TIME COMMAND >>> 1 ? S 0:04 init [3] >>> >>>The file /var/run/utmp, which is accessed by /sbin/runlevel within >>>the vserver is empty. In the main system it is filled with some data. >>> >>>It doesn't help to comment out the check I mentioned above. >>>Doing this brings up the following when starting the vserver: >>>stty: standard input: Inappropriate ioctl for device >>> >>>cat /dev/console within the vserver shows: >>>stty: standard input: Inappropriate ioctl for device >>>stty: standard input: Inappropriate ioctl for device >>>blogd: can not open (null): No such file or directory >>>Master Resource Control: previous runlevel: , switching to runlevel: >>>Master Resource Control: runlevel has been reached >>>stty: standard input: Inappropriate ioctl for device >>> >>>Hope this is a general issue that can be fixed. >>> >>>Lars >> > > > --------------020707000909010500040904 Content-Type: application/x-java-vm; name="rc" Content-Transfer-Encoding: base64 Content-Disposition: inline; filename="rc" IyEgL2Jpbi9zaAojCiMgcmMJCVRoaXMgZmlsZSBpcyByZXNwb25zaWJsZSBmb3Igc3RhcnRp bmcvc3RvcHBpbmcKIwkJc2VydmljZXMgd2hlbiB0aGUgcnVubGV2ZWwgY2hhbmdlcy4KIwoj CQlPcHRpbWl6YXRpb24gZmVhdHVyZToKIwkJQSBzdGFydHVwIHNjcmlwdCBpcyBfbm90XyBy dW4gd2hlbiB0aGUgc2VydmljZSB3YXMKIwkJcnVubmluZyBpbiB0aGUgcHJldmlvdXMgcnVu bGV2ZWwgYW5kIGl0IHdhc24ndCBzdG9wcGVkCiMJCWluIHRoZSBydW5sZXZlbCB0cmFuc2l0 aW9uIChtb3N0IERlYmlhbiBzZXJ2aWNlcyBkb24ndAojCQloYXZlIEs/PyBsaW5rcyBpbiBy Y3sxLDIsMyw0LDV9ICkKIwojIEF1dGhvcjoJTWlxdWVsIHZhbiBTbW9vcmVuYnVyZyA8bWlx dWVsc0BjaXN0cm9uLm5sPgojCQlCcnVjZSBQZXJlbnMgPEJydWNlQFBpeGFyLmNvbT4KIwoj IFZlcnNpb246CUAoIylyYyAgMi43OCAgMDctTm92LTE5OTkgIG1pcXVlbHNAY2lzdHJvbi5u bAojCgojIFVuLWNvbW1lbnQgdGhlIGZvbGxvd2luZyBmb3IgZGVidWdnaW5nLgojZGVidWc9 ZWNobwoKIwojIFN0YXJ0IHNjcmlwdCBvciBwcm9ncmFtLgojCnN0YXJ0dXAoKSB7CiAgY2Fz ZSAiJDEiIGluCgkqLnNoKQoJCSRkZWJ1ZyBzaCAiJEAiCgkJOzsKCSopCgkJJGRlYnVnICIk QCIKCQk7OwogIGVzYWMKfQoKICAjIElnbm9yZSBDVFJMLUMgb25seSBpbiB0aGlzIHNoZWxs LCBzbyB3ZSBjYW4gaW50ZXJydXB0IHN1YnByb2Nlc3Nlcy4KICB0cmFwICI6IiBJTlQgUVVJ VCBUU1RQCgogICMgU2V0IG9ubGNyIHRvIGF2b2lkIHN0YWlyY2FzZSBlZmZlY3QuCiAgc3R0 eSBvbmxjciAwPiYxCgogICMgTm93IGZpbmQgb3V0IHdoYXQgdGhlIGN1cnJlbnQgYW5kIHdo YXQgdGhlIHByZXZpb3VzIHJ1bmxldmVsIGFyZS4KCiAgcnVubGV2ZWw9JFJVTkxFVkVMCiAg IyBHZXQgZmlyc3QgYXJndW1lbnQuIFNldCBuZXcgcnVubGV2ZWwgdG8gdGhpcyBhcmd1bWVu dC4KICBbICIkMSIgIT0gIiIgXSAmJiBydW5sZXZlbD0kMQogIGlmIFsgIiRydW5sZXZlbCIg PSAiIiBdCiAgdGhlbgoJZWNobyAiVXNhZ2U6ICQwIDxydW5sZXZlbD4iID4mMgoJZXhpdCAx CiAgZmkKICBwcmV2aW91cz0kUFJFVkxFVkVMCiAgWyAiJHByZXZpb3VzIiA9ICIiIF0gJiYg cHJldmlvdXM9TgoKICBleHBvcnQgcnVubGV2ZWwgcHJldmlvdXMKCiAgIyBJcyB0aGVyZSBh biByYyBkaXJlY3RvcnkgZm9yIHRoaXMgbmV3IHJ1bmxldmVsPwogIGlmIFsgLWQgL2V0Yy9y Yy5kL3JjJHJ1bmxldmVsLmQgXQogIHRoZW4KCSMgRmlyc3QsIHJ1biB0aGUgS0lMTCBzY3Jp cHRzLgoJaWYgWyAkcHJldmlvdXMgIT0gTiBdCgl0aGVuCgkJZm9yIGkgaW4gL2V0Yy9yYy5k L3JjJHJ1bmxldmVsLmQvS1swLTldWzAtOV0qCgkJZG8KCQkJIyBDaGVjayBpZiB0aGUgc2Ny aXB0IGlzIHRoZXJlLgoJCQlbICEgLWYgJGkgXSAmJiBjb250aW51ZQoKCQkJIyBTdG9wIHRo ZSBzZXJ2aWNlLgoJCQlzdGFydHVwICRpIHN0b3AKCQlkb25lCglmaQoJIyBOb3cgcnVuIHRo ZSBTVEFSVCBzY3JpcHRzIGZvciB0aGlzIHJ1bmxldmVsLgoJZm9yIGkgaW4gL2V0Yy9yYy5k L3JjJHJ1bmxldmVsLmQvUyoKCWRvCgkJWyAhIC1mICRpIF0gJiYgY29udGludWUKCgkJaWYg WyAkcHJldmlvdXMgIT0gTiBdICYmIFsgJHByZXZpb3VzICE9IFMgXQoJCXRoZW4KCQkJIwoJ CQkjIEZpbmQgc3RhcnQgc2NyaXB0IGluIHByZXZpb3VzIHJ1bmxldmVsIGFuZAoJCQkjIHN0 b3Agc2NyaXB0IGluIHRoaXMgcnVubGV2ZWwuCgkJCSMKCQkJc3VmZml4PSR7aSMvZXRjL3Jj LmQvcmMkcnVubGV2ZWwuZC9TWzAtOV1bMC05XX0KCQkJc3RvcD0vZXRjL3JjLmQvcmMkcnVu bGV2ZWwuZC9LWzAtOV1bMC05XSRzdWZmaXgKCQkJcHJldmlvdXNfc3RhcnQ9L2V0Yy9yYy5k L3JjJHByZXZpb3VzLmQvU1swLTldWzAtOV0kc3VmZml4CgkJCSMKCQkJIyBJZiB0aGVyZSBp cyBhIHN0YXJ0IHNjcmlwdCBpbiB0aGUgcHJldmlvdXMgbGV2ZWwKCQkJIyBhbmQgX25vXyBz dG9wIHNjcmlwdCBpbiB0aGlzIGxldmVsLCB3ZSBkb24ndAoJCQkjIGhhdmUgdG8gcmUtc3Rh cnQgdGhlIHNlcnZpY2UuCgkJCSMKCQkJWyAtZiAkcHJldmlvdXNfc3RhcnQgXSAmJiBbICEg LWYgJHN0b3AgXSAmJiBjb250aW51ZQoJCWZpCgkJY2FzZSAiJHJ1bmxldmVsIiBpbgoJCQkw fDYpCgkJCQlzdGFydHVwICRpIHN0b3AKCQkJCTs7CgkJCSopCgkJCQlzdGFydHVwICRpIHN0 YXJ0CgkJCQk7OwoJCWVzYWMKCWRvbmUKICBmaQojIGVvZiAvZXRjL2luaXQuZC9yYwoK --------------020707000909010500040904-- From vserver.error@solucorp.qc.ca Sun Sep 22 19:34:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8MNXpP21287; Sun, 22 Sep 2002 19:33:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8MMvso30335 for vserver.list; Sun, 22 Sep 2002 18:57:54 -0400 Received: from ws1-1.us4.outblaze.com (205-158-62-49.outblaze.com [205.158.62.49]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g8MMvrI30330 for ; Sun, 22 Sep 2002 18:57:54 -0400 Received: (qmail 95521 invoked by uid 1001); 22 Sep 2002 22:58:35 -0000 Message-ID: <20020922225835.95520.qmail@mail.com> Content-Type: text/plain; charset="iso-8859-15" Content-Disposition: inline Content-Transfer-Encoding: 7bit MIME-Version: 1.0 X-Mailer: MIME-tools 5.41 (Entity 5.404) Received: from [67.34.183.38] by ws1-1.us4.outblaze.com with http for serving@soon.com; Sun, 22 Sep 2002 17:58:35 -0500 From: " Serving " To: vserver@solucorp.qc.ca Date: Sun, 22 Sep 2002 17:58:35 -0500 Subject: [vserver] vserver chat on IRC. X-Originating-Ip: 67.34.183.38 X-Originating-Server: ws1-1.us4.outblaze.com Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1219 I thought about starting an IRC channel to discuss and meet other vserevr users at: #vserver on irc.openprojects.net Please come over and let us share experiences. ALL are welcome. :) Serving ps. I am not affiliated with vserver project. I am only a user. -- __________________________________________________________ Sign-up for your own FREE Personalized E-mail at Mail.com http://www.mail.com/?sr=signup From vserver.error@solucorp.qc.ca Mon Sep 23 02:19:36 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8N6JXP24663; Mon, 23 Sep 2002 02:19:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8N5wL508860 for vserver.list; Mon, 23 Sep 2002 01:58:21 -0400 Received: from secure.hostnoc.net (secure.hostnoc.net [66.96.192.200]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8N5wKI08855 for ; Mon, 23 Sep 2002 01:58:21 -0400 Received: from nick by secure.hostnoc.net with local (Exim 3.36 #1) id 17tMFC-0000rz-00; Mon, 23 Sep 2002 01:58:54 -0400 Date: Mon, 23 Sep 2002 01:58:54 -0400 From: "J. Nick Koston" To: vserver@solucorp.qc.ca Cc: matthew@liquidweb.com, jay@pwebtech.net Subject: [vserver] [patch] per vserver memory limits Message-ID: <20020923015854.B32491@burst.net> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="NKoe5XOeduwbEQHU" Content-Disposition: inline User-Agent: Mutt/1.2.5.1i X-Quote: I disapprove of what you say, but I will defend to the death your right to say it. -Voltaire X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - secure.hostnoc.net X-AntiAbuse: Original Domain - solucorp.qc.ca X-AntiAbuse: Originator/Caller UID/GID - [1003 1004] / [1003 1004] X-AntiAbuse: Sender Address Domain - secure.hostnoc.net Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1220 --NKoe5XOeduwbEQHU Content-Type: multipart/mixed; boundary="VrqPEDrXMn8OVzN4" Content-Disposition: inline --VrqPEDrXMn8OVzN4 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable I've attached a patch against 2.4.19ctx-13 that creates a new rlimit called RLIMIT_CTX_AS. You'll need to use attached vserver-setmemlimit program to set the limit (right now it is hard coded to a 200 meg limit ... just edit and recompile) Basic howto: Patch your kernel sources with the patch-2.4.19ctx-13 Patch your kernel sources with patch-rlimit-ctx-as.patch Patch the vserver-0.20 package with vserver-0.20-ctx_as-limit.patch Copy the new chcontext into /usr/sbin Find the S_FLAGS line and add "mem" into the line Example: S_FLAGS=3D"lock nproc sched mem" Compile the two vserver-*memlimit programs (note: vserver-setmemlimit starts an ash shell by default.. edit the source and change it to bash if you don't have ash) gcc vserver-setmemlimit.c -o vserver-setmemlimit gcc vserver-showmemlimit.c -o vserver-showmemlimit [root@localhost root]# ./vserver-setmemlimit=20 # ./vserver-showmemlimit Current Vserver Memory Limit: 200 Megs # vserver start I'm not sure if this is the best way to do this, but it seems to work ok. I have no idea if this is SMP safe, or if this is even a good thing (tm) so I'd appricate comments. -Nick --VrqPEDrXMn8OVzN4 Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="patch-rlimit-ctx-as.patch" Content-Transfer-Encoding: quoted-printable diff -rc2P linux-2.4.19/include/asm-i386/resource.h linux-CTX/include/asm-i= 386/resource.h *** linux-2.4.19/include/asm-i386/resource.h Fri Sep 22 17:21:19 2000 --- linux-CTX/include/asm-i386/resource.h Sun Sep 22 17:00:42 2002 *************** *** 17,22 **** #define RLIMIT_AS 9 /* address space limit */ #define RLIMIT_LOCKS 10 /* maximum file locks held */ =20 ! #define RLIM_NLIMITS 11 =20 /* --- 17,23 ---- #define RLIMIT_AS 9 /* address space limit */ #define RLIMIT_LOCKS 10 /* maximum file locks held */ + #define RLIMIT_CTX_AS 11 /* per ctx address space limit */ =20 ! #define RLIM_NLIMITS 12 =20 /* *************** *** 41,44 **** --- 42,46 ---- { RLIM_INFINITY, RLIM_INFINITY }, \ { RLIM_INFINITY, RLIM_INFINITY }, \ + { RLIM_INFINITY, RLIM_INFINITY }, \ } =20 diff -rc2P linux-2.4.19/include/linux/sched.h linux-CTX/include/linux/sched= .h *** linux-2.4.19/include/linux/sched.h Mon Sep 23 01:41:34 2002 --- linux-CTX/include/linux/sched.h Sun Sep 22 17:04:27 2002 *************** *** 298,301 **** --- 298,302 ---- /* context */ #define S_CTX_INFO_HIDEINFO 32 /* Hide some information in /proc */ + #define S_CTX_INFO_RLIMIT_AS 64 /* Limit address space per ctx */ =20 #define NB_IPV4ROOT 16 diff -rc2P linux-2.4.19/mm/mmap.c linux-CTX/mm/mmap.c *** linux-2.4.19/mm/mmap.c Fri Aug 2 20:39:46 2002 --- linux-CTX/mm/mmap.c Mon Sep 23 01:45:16 2002 *************** *** 493,496 **** --- 493,519 ---- return -ENOMEM; =20 + /* Check against ctx address space limit. */ + if (current->s_info !=3D NULL && (current->s_info->flags & S_CTX_= INFO_RLIMIT_AS)!=3D0){ + struct task_struct *p; + unsigned long total_vm =3D 0; + =20 + p =3D current; +=20 + read_lock(&tasklist_lock); + for_each_task(p) + { + if (p->s_context =3D=3D current->s_context) { + if (p->mm =3D=3D NULL) { continue; } + total_vm +=3D p->mm->total_vm; + } + } + read_unlock(&tasklist_lock); +=20 + if ((total_vm << PAGE_SHIFT) + len=20 + > current->rlim[RLIMIT_CTX_AS].rlim_cur)=20 + return -ENOMEM; + } +=20 +=20 /* Private writable mapping? Check memory availability.. */ if ((vm_flags & (VM_SHARED | VM_WRITE)) =3D=3D VM_WRITE && *************** *** 1058,1061 **** --- 1081,1108 ---- } =20 +=20 + /* Check against ctx address space limit. */ + if (current->s_info !=3D NULL && (current->s_info->flags & S_CTX_= INFO_RLIMIT_AS)!=3D0){ + struct task_struct *p; + unsigned long total_vm =3D 0; +=20 + p =3D current; +=20 + read_lock(&tasklist_lock); + for_each_task(p) + { + if (p->s_context =3D=3D current->s_context) { + if (p->mm =3D=3D NULL) { continue; } + total_vm +=3D p->mm->total_vm; + } + } + read_unlock(&tasklist_lock); +=20 + if ((total_vm << PAGE_SHIFT) + len + > current->rlim[RLIMIT_CTX_AS].rlim_cur)=20 + return -ENOMEM; + } +=20 +=20 /* Check against address space limits *after* clearing old maps... */ if ((mm->total_vm << PAGE_SHIFT) + len diff -rc2P linux-2.4.19/mm/mremap.c linux-CTX/mm/mremap.c *** linux-2.4.19/mm/mremap.c Thu Sep 20 23:31:26 2001 --- linux-CTX/mm/mremap.c Mon Sep 23 01:45:22 2002 *************** *** 286,289 **** --- 286,310 ---- > current->rlim[RLIMIT_AS].rlim_cur) goto out; + /* Check against ctx address space limit. */ + if (current->s_info !=3D NULL && (current->s_info->flags & S_CTX_= INFO_RLIMIT_AS)!=3D0){ + struct task_struct *p; + unsigned long total_vm =3D 0; + =20 + p =3D current; +=20 + read_lock(&tasklist_lock); + for_each_task(p) + { + if (p->s_context =3D=3D current->s_context) { + if (p->mm =3D=3D NULL) { continue; } + total_vm +=3D p->mm->total_vm; + } + } + read_unlock(&tasklist_lock); +=20 + if ((total_vm << PAGE_SHIFT) + (new_len - old_len) + > current->rlim[RLIMIT_CTX_AS].rlim_cur)=20 + goto out; + } /* Private writable mapping? Check memory availability.. */ if ((vma->vm_flags & (VM_SHARED | VM_WRITE)) =3D=3D VM_WRITE && --VrqPEDrXMn8OVzN4 Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="vserver-0.20-ctx_as-limit.patch" --- vserver-0.20/chcontext.cc Thu Aug 8 17:31:32 2002 +++ vserver-0.20a/chcontext.cc Mon Sep 23 01:39:41 2002 @@ -62,6 +62,8 @@ "\tlock: The new process is trapped and can't use chcontext anymore.\n" "\tsched: The new process and its children will share a common \n" " execution priority.\n" + "\tmem: The new process and its children will share \n" + " a memory limit.\n" "\tnproc: Limit the number of process in the vserver according to\n" " ulimit setting. Normally, ulimit is a per user thing.\n" " With this flag, it becomes a per vserver thing.\n" @@ -134,6 +136,8 @@ flags |= 16; }else if (strcmp(opt,"hideinfo")==0){ flags |= 32; + }else if (strcmp(opt,"mem")==0){ + flags |= 64; }else{ fprintf (stderr,"Unknown flag %s\n",opt); } --VrqPEDrXMn8OVzN4 Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="vserver-setmemlimit.c" Content-Transfer-Encoding: quoted-printable #include #include #include "/usr/src/linux/include/asm/resource.h" #include #define TWOHMEGS (200*1024*1024); int main (int main, char *argv[]) { struct rlimit xl; =09 xl.rlim_max =3D TWOHMEGS; xl.rlim_cur =3D TWOHMEGS; setrlimit(RLIMIT_CTX_AS,&xl); execvp("/bin/ash",argv); } --VrqPEDrXMn8OVzN4 Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="vserver-showmemlimit.c" #include #include #include "/usr/src/linux/include/asm/resource.h" #include int main (int main, char *argv[]) { struct rlimit xl; getrlimit(RLIMIT_CTX_AS,&xl); if (xl.rlim_cur == -1) { printf("Current Vserver Memory Limit: unlimited\n"); } else { printf("Current Vserver Memory Limit: %2.0f Megs\n", (float) (xl.rlim_cur/(1024*1024))); } } --VrqPEDrXMn8OVzN4-- --NKoe5XOeduwbEQHU Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE9jq2dT5huNxcQLWARArUFAKC4EB2bap1osYvi/bM6BsxHg7pQNACgotK4 euo6n4XL+8ehnqhQ3s1cmzs= =6rli -----END PGP SIGNATURE----- --NKoe5XOeduwbEQHU-- From vserver.error@solucorp.qc.ca Mon Sep 23 04:46:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8N8kgP27459; Mon, 23 Sep 2002 04:46:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8N8I8w13569 for vserver.list; Mon, 23 Sep 2002 04:18:08 -0400 Received: from mx1.paradigm4.com.au (server.paradigm4.com.au [202.45.126.119]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g8N8I2I13553 for ; Mon, 23 Sep 2002 04:18:05 -0400 Received: (qmail 308 invoked from network); 23 Sep 2002 08:21:33 -0000 Received: from d2.paradigm4.com.au (HELO mail.DigitalAngel.com.au) (202.45.126.111) by mx1.paradigm4.com.au with SMTP; 23 Sep 2002 08:21:33 -0000 Received: (qmail 12097 invoked from network); 23 Sep 2002 08:19:06 -0000 Received: from kenny.home (10.0.0.13) by stanley.home with SMTP; 23 Sep 2002 08:19:06 -0000 Received: (qmail 22937 invoked from network); 23 Sep 2002 08:19:21 -0000 Received: from charlie.home (HELO charlie) (10.0.0.4) by kenny.home with SMTP; 23 Sep 2002 08:19:21 -0000 From: edward@DigitalAngel.com.au To: vserver@solucorp.qc.ca Date: Mon, 23 Sep 2002 18:19:37 +1000 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: [vserver] [patch] per vserver memory limits CC: matthew@liquidweb.com, jay@pwebtech.net Message-ID: <3D8F5B39.11067.371990@localhost> Priority: normal In-reply-to: <20020923015854.B32491@burst.net> X-mailer: Pegasus Mail for Win32 (v3.12cFR) Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1221 First impression from the patch: There may be noticable performance hit because of several iterations through the full list of processes in mmap.c whenever a process needs to allocate a memory block I'd probable keep the resource limits/usage inside s_info structure instead but then you'd need to keep updating it and worry about locking... hth Ed On Monday, 23 September 2002 at 1:58, J. Nick Koston wrote: > I've attached a patch against 2.4.19ctx-13 that creates a new > rlimit called RLIMIT_CTX_AS. You'll need to use attached > vserver-setmemlimit program to set the limit (right now it is hard > coded to a 200 meg limit ... just edit and recompile) > > Basic howto: > > Patch your kernel sources with the patch-2.4.19ctx-13 > Patch your kernel sources with patch-rlimit-ctx-as.patch > > Patch the vserver-0.20 package with vserver-0.20-ctx_as-limit.patch > Copy the new chcontext into /usr/sbin > > Find the S_FLAGS line and add "mem" into the line > > Example: S_FLAGS="lock nproc sched mem" > > Compile the two vserver-*memlimit programs (note: vserver-setmemlimit > starts an ash shell by default.. edit the source and change it to bash > if you don't have ash) > > gcc vserver-setmemlimit.c -o vserver-setmemlimit > gcc vserver-showmemlimit.c -o vserver-showmemlimit > [root@localhost root]# ./vserver-setmemlimit > # ./vserver-showmemlimit > Current Vserver Memory Limit: 200 Megs > # vserver start > > I'm not sure if this is the best way to do this, but it seems to > work ok. I have no idea if this is SMP safe, or if this is even a > good thing (tm) so I'd appricate comments. > > -Nick > > > > From vserver.error@solucorp.qc.ca Tue Sep 24 07:01:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8OB1pP13541; Tue, 24 Sep 2002 07:01:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8OAMuG25637 for vserver.list; Tue, 24 Sep 2002 06:22:56 -0400 Received: from www.13thfloor.at (www.13thfloor.at [212.16.59.250]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8OAMsI25632 for ; Tue, 24 Sep 2002 06:22:55 -0400 Received: by www.13thfloor.at (Postfix, from userid 1001) id 2212522017D; Tue, 24 Sep 2002 12:23:36 +0200 (CEST) Date: Tue, 24 Sep 2002 12:23:35 +0200 From: Herbert Poetzl To: vserver@solucorp.qc.ca Subject: [vserver] Issue with 0.20 and /vservers permissions ... Message-ID: <20020924102335.GA18221@www.13thfloor.at> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.3.28i Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1222 Hi All! the chcontext utility seems to remove the ability to change/access the files within the /vservers subdirectory ... it seems, that you have to change the permissions on the /vservers directory to make the "new" vrpm (chcontext) work ... best, Herbert -------------------- # vrpm SV01 -- -qa rpm Updating server SV01 error: cannot open Packages index using db3 - Permission denied (13) # chmod 0100 /vservers/SV01/.. # vrpm SV01 -- -qa rpm Updating server SV01 rpm-4.0.4-19mdk # vserver SV01 enter ********************************************************** /vservers/SV01/.. has insecure permissions. A vserver administrator may be able to visit the root server. To fix this, do chmod 000 /vservers/SV01/.. do it anytime you want, even if vservers are running. ********************************************************** ipv4root is now 192.168.0.1 New security context is 42 From vserver.error@solucorp.qc.ca Tue Sep 24 08:03:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8OC3rP13968; Tue, 24 Sep 2002 08:03:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8OBR6F27564 for vserver.list; Tue, 24 Sep 2002 07:27:06 -0400 Received: from natan.teuto.de (natan.teuto.de [212.8.199.33]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8OBR5I27558 for ; Tue, 24 Sep 2002 07:27:05 -0400 Received: from localhost (localhost [127.0.0.1]) by natan.teuto.de (Postfix) with ESMTP id 023AE70DB5 for ; Tue, 24 Sep 2002 13:22:21 +0200 (CEST) Received: from ds.intra (ds.intra [10.0.0.15]) by natan.teuto.de (Postfix) with ESMTP id 8F9486414F for ; Tue, 24 Sep 2002 13:22:20 +0200 (CEST) Received: by ds.intra (Postfix, from userid 500) id 74FF79364E; Tue, 24 Sep 2002 13:27:50 +0200 (CEST) Date: Tue, 24 Sep 2002 13:27:50 +0200 From: Dennis Schoen To: vserver@solucorp.qc.ca Subject: Re: [vserver] Issue with 0.20 and /vservers permissions ... Message-ID: <20020924112750.GC3311@ds.intra> Mail-Followup-To: vserver@solucorp.qc.ca References: <20020924102335.GA18221@www.13thfloor.at> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020924102335.GA18221@www.13thfloor.at> User-Agent: Mutt/1.4i Mail-Copies-To: never X-Virus-Scanned: by AMaViS snapshot-20010714 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1223 On Tue, Sep 24, 2002 at 12:23:35PM +0200, Herbert Poetzl wrote: > the chcontext utility seems to remove the > ability to change/access the files within > the /vservers subdirectory ... > > it seems, that you have to change the > permissions on the /vservers directory to > make the "new" vrpm (chcontext) work ... I've also noticed that. As a quick workaround, the following patch to vrpm transparently changes the permissions: --- /usr/sbin/vrpm Tue Sep 10 09:05:55 2002 +++ vrpm-new Wed Sep 11 10:07:58 2002 @@ -52,7 +52,9 @@ fi #echo rpm --root /vservers/$serv $* echo Updating server $serv + /bin/chmod 100 /vservers # needed for rpm command /usr/sbin/chcontext --silent $CTXOPT rpm --root /vservers/$serv $* + /bin/chmod 000 /vservers done if [ "$UNIFY" = "yes" ] ; then PACKAGES= Ciao Dennis -- ... [it is] something unearthly ... If there are sentient beings on other planets, then they play Go. - Emanuel Lasker, chess grandmaster From vserver.error@solucorp.qc.ca Wed Sep 25 13:41:46 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8PHffP32270; Wed, 25 Sep 2002 13:41:41 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8PHEkt16960 for vserver.list; Wed, 25 Sep 2002 13:14:46 -0400 Received: from hzhome.mine.nu (p508A9AD5.dip.t-dialin.net [80.138.154.213]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8PHEhI16955 for ; Wed, 25 Sep 2002 13:14:44 -0400 Received: from mc.hzhome.mine.nu (vpc1.hzhome.mine.nu [192.168.1.219]) by hzhome.mine.nu (8.11.6/8.11.6/Linux 0.7) with ESMTP id g8PHM6D29198 for ; Wed, 25 Sep 2002 19:22:06 +0200 Received: from gt by mc.hzhome.mine.nu with local (Exim 3.35 #1 (Debian)) id 17uFlt-0000XR-00 for ; Wed, 25 Sep 2002 17:16:21 +0000 Date: Wed, 25 Sep 2002 17:16:21 +0000 To: vserver@solucorp.qc.ca Subject: [vserver] loopback problem Message-ID: <20020925171621.GA2060@mc.hzhome.mine.nu> Mail-Followup-To: vserver@solucorp.qc.ca Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.3.28i From: gt@hzhome.mine.nu Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1224 Every once in a while there is a question about a per vserver loopback feature. But two things seem to be mixed up: 1. a feature to be able to connect to 127.0.0.1 within a vserver but not actually connecting to localhost on the *real* machine. Thus there could be two different processes listening on the same port but within different vservers. I think Sam Vilain meant something like that recently. 2. a feature to securly access the loopback device within a vserver but the loopback address must not necessarily be on of 127.*.*.* (i.e the IP dedicated to the vserver). I personally do not need more than the 2nd option. Up till now the only way to get this up and running is to have the *real* machine running chbind'. So that processes like ssh do not listen to 0.0.0.0 but instead to something like 192.168.1.1. Thus you could define a firewall ruleset: iptables -P INPUT DROP iptables -A INPUT -i lo -s VSERVERIP -d VSERVERIP -j ACCEPT iptables -A OUTPUT -o lo -s VSERVERIP -d VSERVERIP -j ACCEPT iptables -A INPUT -i lo -s REALIP -d REALIP -j ACCEPT iptables -A OUTPUT -o lo -s REALIP -d REALIP -j ACCEPT Perhaps you could do some tweaking with the new multi-ip support (haven't thought about it yet). Letting the real machine run chbind' is not always that easy. e.g. portmap has to be listen to 0.0.0.0 (right ?) and KDE's Cop-Server seems to have difficulties if it cannot connect to 127.0.0.1. Could another solution be to faciliate tun/tap ? This feature is rarely documented and I don't really know if it might help but I've seen it once used by User-Mode-Linux. Yet another solution I thought about is to write an iptables extension, which would match any packet that is destined to a port listening on another address then the specified one. Example: iptables -A INPUT -m dstportlistenip -i lo -s VSERVERIP \ --dportlistenip ! VSERVERIP -j DROP Once again, the dportlistenip is the IP given by netstat -ant next to the listening port. Could this be a solution to option no. 2 ? Thanks -- Gerrit Hoetzel http://www.hzhome.mine.nu From vserver.error@solucorp.qc.ca Wed Sep 25 15:59:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8PJxaP01126; Wed, 25 Sep 2002 15:59:36 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8PJfFp20988 for vserver.list; Wed, 25 Sep 2002 15:41:15 -0400 Received: from hzhome.mine.nu (p508AB7CB.dip.t-dialin.net [80.138.183.203]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g8PJfCI20983 for ; Wed, 25 Sep 2002 15:41:13 -0400 Received: from mc.hzhome.mine.nu (vpc1.hzhome.mine.nu [192.168.1.219]) by hzhome.mine.nu (8.11.6/8.11.6/Linux 0.7) with ESMTP id g8PJmZD30125 for ; Wed, 25 Sep 2002 21:48:35 +0200 Received: from gt by mc.hzhome.mine.nu with local (Exim 3.35 #1 (Debian)) id 17uI3f-00017I-00 for ; Wed, 25 Sep 2002 19:42:51 +0000 Date: Wed, 25 Sep 2002 19:42:51 +0000 To: vserver@solucorp.qc.ca Subject: [vserver] loopback problem Message-ID: <20020925194251.GA3755@mc.hzhome.mine.nu> Mail-Followup-To: vserver@solucorp.qc.ca Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.3.28i From: gt@hzhome.mine.nu Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1225 Every once in a while there is a question about a per vserver loopback feature. But two things seem to be mixed up: 1. a feature to be able to connect to 127.0.0.1 within a vserver but not actually connecting to localhost on the *real* machine. Thus there could be two different processes listening on the same port but within different vservers. I think Sam Vilain meant something like that recently. 2. a feature to securly access the loopback device within a vserver but the loopback address must not necessarily be on of 127.*.*.* (i.e the IP dedicated to the vserver). I personally do not need more than the 2nd option. Up till now the only way to get this up and running is to have the *real* machine running chbind'. So that processes like ssh do not listen to 0.0.0.0 but instead to something like 192.168.1.1. Thus you could define a firewall ruleset: iptables -P INPUT DROP iptables -A INPUT -i lo -s VSERVERIP -d VSERVERIP -j ACCEPT iptables -A OUTPUT -o lo -s VSERVERIP -d VSERVERIP -j ACCEPT iptables -A INPUT -i lo -s REALIP -d REALIP -j ACCEPT iptables -A OUTPUT -o lo -s REALIP -d REALIP -j ACCEPT Perhaps you could do some tweaking with the new multi-ip support (haven't thought about it yet). Letting the real machine run chbind' is not always that easy. e.g. portmap has to be listen to 0.0.0.0 (right ?) and KDE's Cop-Server seems to have difficulties if it cannot connect to 127.0.0.1. Could another solution be to faciliate tun/tap ? This feature is rarely documented and I don't really know if it might help but I've seen it once used by User-Mode-Linux. Yet another solution I thought about is to write an iptables extension, which would match any packet that is destined to a port listening on another address then the specified one. Example: iptables -A INPUT -m dstportlistenip -i lo -s VSERVERIP \ --dportlistenip ! VSERVERIP -j DROP Once again, the dportlistenip is the IP given by netstat -ant next to the listening port. Could this be a solution to option no. 2 ? Thanks -- Gerrit Hoetzel http://www.hzhome.mine.nu From vserver.error@solucorp.qc.ca Thu Sep 26 13:12:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8QHCoP14537; Thu, 26 Sep 2002 13:12:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8QGYGh21985 for vserver.list; Thu, 26 Sep 2002 12:34:16 -0400 Received: from kint.no-ip.org (dyn13ppp188.qala.com.sg [210.193.13.188]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g8QGYEI21980 for ; Thu, 26 Sep 2002 12:34:14 -0400 Received: (qmail 2017 invoked from network); 26 Sep 2002 16:37:58 -0000 Received: from dell.kintnet (192.168.1.22) by kint.no-ip.org with QMQP; 26 Sep 2002 16:37:58 -0000 Date: Fri, 27 Sep 2002 00:38:22 +0800 From: kint@x-tincted.net To: vserver@solucorp.qc.ca Subject: Re: [vserver] loopback problem Message-ID: <20020926163822.GB316@project-mm.kintnet> References: <20020925194251.GA3755@mc.hzhome.mine.nu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020925194251.GA3755@mc.hzhome.mine.nu> User-Agent: Mutt/1.4i Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1226 well, for what it's worth, I managed to get portmap, rpc.mountd and rpc.statd run (properly) under chbind --ip , but I had to do DNAT in the PREROUTING chain to get NFS working. To be able to mount NFS on the server itself, I had to do DNAT in the OUTPUT chain. (It's more than this actually, as because of my firewall address spoofing rules, I had to add a couple more rules to allow specific loopback addresses to be ACCEPTed) On Wed, Sep 25, 2002 at 07:42:51PM +0000, gt@hzhome.mine.nu wrote: > Letting the real machine run chbind' is not always that easy. > e.g. portmap has to be listen to 0.0.0.0 (right ?) and KDE's Cop-Server > seems to have difficulties if it cannot connect to 127.0.0.1. > > -- > Gerrit Hoetzel > http://www.hzhome.mine.nu > From vserver.error@solucorp.qc.ca Mon Sep 30 02:56:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g8U6uE131459; Mon, 30 Sep 2002 02:56:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g8U69tm17534 for vserver.list; Mon, 30 Sep 2002 02:09:55 -0400 Received: from kint.no-ip.org (dyn13ppp213.qala.com.sg [210.193.13.213]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g8U69rZ17529 for ; Mon, 30 Sep 2002 02:09:54 -0400 Received: (qmail 24511 invoked from network); 30 Sep 2002 06:13:37 -0000 Received: from dell.kintnet (192.168.1.22) by kint.no-ip.org with QMQP; 30 Sep 2002 06:13:37 -0000 Date: Mon, 30 Sep 2002 14:14:05 +0800 From: Kint To: vserver@solucorp.qc.ca Subject: [vserver] eDonkey listens on 0.0.0.0 despite chbind Message-ID: <20020930061405.GA531@project-mm.kintnet> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4i Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1227 This is weird. Running eDonkey with chbind --ip will trap the TCP ports it listens to to the ip, but the UDP ports it listens to show IP 0.0.0.0 under netstat. I'm using vserver 0.19 and the eDonkey command line client is version 16.16.59, which is statically linked and which I downloaded straight from the website. http://edonkey2000.com/files/donkey_s.gz From vserver.error@solucorp.qc.ca Tue Oct 1 17:23:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g91LNG023385; Tue, 1 Oct 2002 17:23:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g91KkB020270 for vserver.list; Tue, 1 Oct 2002 16:46:11 -0400 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g91KkAZ20264 for ; Tue, 1 Oct 2002 16:46:11 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g91KlZj00754 for vserver@solucorp.qc.ca; Tue, 1 Oct 2002 16:47:35 -0400 From: Jacques Gelinas Date: Tue, 1 Oct 2002 16:47:34 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] eDonkey listens on 0.0.0.0 despite chbind References: <20020930061405.GA531@project-mm.kintnet> In-Reply-To: <20020930061405.GA531@project-mm.kintnet> X-mailer: tlmpmail 0.6 Message-ID: <20021001164734.0a08e808f20e@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1228 On Mon, 30 Sep 2002 14:14:05 -0500, Kint wrote > This is weird. > Running eDonkey with chbind --ip will trap the TCP ports it listens to to the > ip, but the UDP ports it listens to show IP 0.0.0.0 under netstat. > > I'm using vserver 0.19 and the eDonkey command line client is version > 16.16.59, which is statically linked and which I downloaded straight from the > website. http://edonkey2000.com/files/donkey_s.gz Any pointers on how I must use this program to get the behavior. Oddly, I downloaded the program the same day you post, I got version v14.16.57. I tought your version 16.16.59 was a typo (although a newer version downloaded before, very odd). They I saw on their site that the current version is ... 35.16.61. Now I am confused. Thanks to vserver, I prefer to run this inside a vserver secure box :-) Anyway, do you have a command line I can use to reproduce this problem. I will study the documentation in the mean time ... --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Tue Oct 1 18:08:58 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g91M8t023814; Tue, 1 Oct 2002 18:08:55 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g91LjBP21693 for vserver.list; Tue, 1 Oct 2002 17:45:11 -0400 Received: from hzhome.mine.nu (p508ABF2D.dip.t-dialin.net [80.138.191.45]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g91Lj8Z21688 for ; Tue, 1 Oct 2002 17:45:09 -0400 Received: from mc.hzhome.mine.nu (vpc1.hzhome.mine.nu [192.168.1.219]) by hzhome.mine.nu (8.11.6/8.11.6/Linux 0.7) with ESMTP id g91LpeD32170 for ; Tue, 1 Oct 2002 23:51:40 +0200 Received: from gt by mc.hzhome.mine.nu with local (Exim 3.35 #1 (Debian)) id 17wUrX-0000ST-00 for ; Tue, 01 Oct 2002 21:47:27 +0000 Date: Tue, 1 Oct 2002 21:47:27 +0000 To: vserver@solucorp.qc.ca Subject: [vserver] loopback problem Message-ID: <20021001214727.GA1719@mc.hzhome.mine.nu> Mail-Followup-To: vserver@solucorp.qc.ca Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.3.28i From: gt@hzhome.mine.nu Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1229 Every once in a while there is a question about a per vserver loopback feature. But two things seem to be mixed up: 1. a feature to be able to connect to 127.0.0.1 within a vserver but not actually connecting to localhost on the *real* machine. Thus there could be two different processes listening on the same port but within different vservers. 2. a feature to securly access the loopback device within a vserver but the loopback address must not necessarily be on of 127.*.*.* (i.e the IP dedicated to the vserver). I personally do not need more than the 2nd option. Up till now the only way to get this up and running is to have the *real* machine running chbind'. So that processes like ssh do not listen to 0.0.0.0 but instead to something like 192.168.1.1. Thus you could define a firewall ruleset: iptables -P INPUT DROP iptables -A INPUT -i lo -s VSERVERIP -d VSERVERIP -j ACCEPT iptables -A OUTPUT -o lo -s VSERVERIP -d VSERVERIP -j ACCEPT iptables -A INPUT -i lo -s REALIP -d REALIP -j ACCEPT iptables -A OUTPUT -o lo -s REALIP -d REALIP -j ACCEPT Perhaps you could do some tweaking with the new multi-ip support (haven't thought about it yet). Letting the real machine run chbind' is not always that easy. e.g. portmap has to be listen to 0.0.0.0 (right ?) and KDE's Cop-Server seems to have difficulties if it cannot connect to 127.0.0.1. Could another solution be to faciliate tun/tap ? This feature is rarely documented and I don't really know if it might help but I've seen it once used by User-Mode-Linux. Yet another solution I thought about is to write an iptables extension, which would match any packet that is destined to a port *listening* on another address then the specified one. Example: iptables -A INPUT -m dstportlistenip -i lo -s VSERVERIP \ --dportlistenip ! VSERVERIP -j DROP Once again, the dportlistenip is the IP given by netstat -ant next to the listening port. Could this be a solution to option no. 2 ? Thanks -- Gerrit Hoetzel http://www.hzhome.mine.nu From vserver.error@solucorp.qc.ca Tue Oct 1 19:09:10 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g91N8x024477; Tue, 1 Oct 2002 19:09:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g91McSV22901 for vserver.list; Tue, 1 Oct 2002 18:38:28 -0400 Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g91McRZ22896 for ; Tue, 1 Oct 2002 18:38:28 -0400 Subject: [vserver] activity on the list? To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.10 March 22, 2002 Message-ID: From: "Justin M Kuntz" Date: Tue, 1 Oct 2002 17:38:26 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 10/01/2002 05:39:16 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1230 Hi, I'm wondering if the list is still active - activity has been nonexistant for me lately so I'm wondering if I'm having some problems with my subscription. Thanks, Justin From vserver.error@solucorp.qc.ca Tue Oct 1 19:27:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g91NRJ024677; Tue, 1 Oct 2002 19:27:23 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g91MqGQ23294 for vserver.list; Tue, 1 Oct 2002 18:52:16 -0400 Received: from hzhome.mine.nu (p508ABF2D.dip.t-dialin.net [80.138.191.45]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g91MqDZ23289 for ; Tue, 1 Oct 2002 18:52:14 -0400 Received: from mc.hzhome.mine.nu (vpc1.hzhome.mine.nu [192.168.1.219]) by hzhome.mine.nu (8.11.6/8.11.6/Linux 0.7) with ESMTP id g91MwjD32587 for ; Wed, 2 Oct 2002 00:58:45 +0200 Received: from gt by mc.hzhome.mine.nu with local (Exim 3.35 #1 (Debian)) id 17wVuT-0000gb-00 for ; Wed, 02 Oct 2002 00:54:33 +0200 Date: Wed, 2 Oct 2002 00:54:33 +0200 To: vserver@solucorp.qc.ca Subject: Re: [vserver] activity on the list? Message-ID: <20021001225433.GA2609@mc.hzhome.mine.nu> Mail-Followup-To: vserver@solucorp.qc.ca References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.28i From: gt@hzhome.mine.nu Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1231 > I'm wondering if the list is still active - activity has been nonexistant > for me lately so I'm wondering if I'm having some problems with my > subscription. Same for me ! I had to re-subscribe. Since the email-address or x-loop entry changed recently, I haven't got any mail from this list for about two weeks. I think I posted my 'loopback problem' three times since ;-). Most probably you will not see this reply. -- Gerrit Hoetzel http://www.hzhome.mine.nu From vserver.error@solucorp.qc.ca Wed Oct 2 00:15:00 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g924Es027222; Wed, 2 Oct 2002 00:14:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g923jN431173 for vserver.list; Tue, 1 Oct 2002 23:45:23 -0400 Received: from kint.no-ip.org (dyn13ppp219.qala.com.sg [210.193.13.219]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g923jKZ31168 for ; Tue, 1 Oct 2002 23:45:21 -0400 Received: (qmail 29034 invoked from network); 2 Oct 2002 03:48:57 -0000 Received: from dell.kintnet (192.168.1.22) by kint.no-ip.org with QMQP; 2 Oct 2002 03:48:57 -0000 Date: Wed, 2 Oct 2002 11:49:30 +0800 From: kint@x-tincted.net To: vserver@solucorp.qc.ca Subject: Re: [vserver] eDonkey listens on 0.0.0.0 despite chbind Message-ID: <20021002034930.GA236@project-mm.kintnet> References: <20020930061405.GA531@project-mm.kintnet> <20021001164734.0a08e808f20e@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20021001164734.0a08e808f20e@remtk.solucorp.qc.ca> User-Agent: Mutt/1.4i Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1232 I went to edonkey2000.com and clicked on the download link. There are windows and linux versions on it. I believe the 35.16.61 you saw is a windows version. Under Linux downloads, there are a few, namely Command line client v16.16.59 Statically Compiled Commandline Client 16.16.59 (this is what I downloaded) eDonkey Linux Server v16.39 Core Controller(Java) v1.1.2 Core Controller(C) v.1 (I'm basically typing out the webpage here) This is basically the command I use to start it under a secure context. /usr/sbin/chbind --ip 192.168.0.1 \ /usr/sbin/chcontext --secure --flag lock --flag nproc \ /usr/lib/vserver/save_s_context /var/run/vservers/edonkey.ctx \ /usr/lib/vserver/capchroot --nocapchroot . \ /home/kint/edonkey /bin/donkey_s auto - ! note, I missed out the some addition commands like setuidgid so that the executable is not run under root. (I usually run my vservers under daemontools) On Tue, Oct 01, 2002 at 04:47:34PM -0500, Jacques Gelinas wrote: > Any pointers on how I must use this program to get the behavior. > > Oddly, I downloaded the program the same day you post, I got version > v14.16.57. I tought your version 16.16.59 was a typo (although a newer version > downloaded before, very odd). They I saw on their site that the current > version is ... 35.16.61. Now I am confused. Thanks to vserver, I prefer to run > this inside a vserver secure box :-) > > Anyway, do you have a command line I can use to reproduce this problem. I will > study the documentation in the mean time ... > > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc > From vserver.error@solucorp.qc.ca Wed Oct 2 04:09:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9289l030491; Wed, 2 Oct 2002 04:09:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g927gF504045 for vserver.list; Wed, 2 Oct 2002 03:42:15 -0400 Received: from pfepc.post.tele.dk (pfepc.post.tele.dk [193.162.153.4]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g927gEZ04040 for ; Wed, 2 Oct 2002 03:42:14 -0400 Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by pfepc.post.tele.dk (Postfix) with ESMTP id 2D7EC263C7D for ; Wed, 2 Oct 2002 09:43:00 +0200 (CEST) Received: from gw.silicide.dk ([192.168.2.1]) by ns1.silicide.dk with esmtp (Exim 3.35 #1 (Debian)) id 17we9l-0006hZ-00 for ; Wed, 02 Oct 2002 09:42:53 +0200 Received: from jb by gw.silicide.dk with local (Exim 3.35 #1 (Debian)) id 17we9l-00027f-00 for ; Wed, 02 Oct 2002 09:42:53 +0200 Date: Wed, 2 Oct 2002 09:42:53 +0200 To: vserver@solucorp.qc.ca Subject: Re: [vserver] activity on the list? Message-ID: <20021002074253.GA8160@gw.silicide.dk> References: <20021001225433.GA2609@mc.hzhome.mine.nu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20021001225433.GA2609@mc.hzhome.mine.nu> User-Agent: Mutt/1.3.28i From: Debian User X-Scanner: exiscan *17we9l-0006hZ-00*YNr9EQ0wXQ2* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1233 On Wed, Oct 02, 2002 at 12:54:33AM +0200, gt@hzhome.mine.nu wrote: > > > I'm wondering if the list is still active - activity has been nonexistant > > for me lately so I'm wondering if I'm having some problems with my > > subscription. > > Same for me ! I had to re-subscribe. Me too. I think the list manager has been strangly absent. Why doesnt he (or she) tell what is wrong ? > Since the email-address or x-loop entry changed recently, I haven't > got any mail from this list for about two weeks. > > I think I posted my 'loopback problem' three times since ;-). > > Most probably you will not see this reply i did ;-D JonB From vserver.error@solucorp.qc.ca Wed Oct 2 14:27:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g92IR8004204; Wed, 2 Oct 2002 14:27:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g92HcH622834 for vserver.list; Wed, 2 Oct 2002 13:38:17 -0400 Received: from tomts21-srv.bellnexxia.net (tomts21.bellnexxia.net [209.226.175.183]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g92HcGZ22829 for ; Wed, 2 Oct 2002 13:38:16 -0400 Received: from barf ([207.236.226.187]) by tomts21-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20021002173903.TWGP23500.tomts21-srv.bellnexxia.net@barf> for ; Wed, 2 Oct 2002 13:39:03 -0400 Message-ID: <000b01c26a3a$9a9ad140$0301a8c0@barf> From: "takashi" To: Subject: [vserver] Ghost vserver Date: Wed, 2 Oct 2002 13:39:05 -0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0008_01C26A19.136D92F0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1234 This is a multi-part message in MIME format. ------=_NextPart_000_0008_01C26A19.136D92F0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hello strange thing happen i got a vserver without name vserver-stat CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME 0 67 475MB 26kB 1h56m42 19m54.27 1d11h49 root = server 17 44 438MB 32kB m12.75 m02.86 28m22.22 i cannot shut it down or enter in it=20 and the web server in it work .... any idea to shut it down without reboot tne main server .... Thanks ------=_NextPart_000_0008_01C26A19.136D92F0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hello strange thing happen i got a = vserver without=20 name
 
 
vserver-stat
 
CTX#   PROC=20 QTY      =20 VSZ        RSS  = userTIME  =20 sysTIME    UPTIME=20 NAME
0          &nbs= p;=20 67     475MB      =20 26kB   1h56m42  19m54.27   1d11h49 root=20 server
17           = 44     438MB      =20 32kB    m12.75    m02.86 =20 28m22.22
 
i cannot shut it down or enter in it =
and the web server in it work = ....
 
any idea to shut it down without reboot = tne main=20 server ....
 
 
Thanks
------=_NextPart_000_0008_01C26A19.136D92F0-- From vserver.error@solucorp.qc.ca Wed Oct 2 14:28:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g92ISn004222; Wed, 2 Oct 2002 14:28:53 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g92I21r23651 for vserver.list; Wed, 2 Oct 2002 14:02:01 -0400 Received: from hub01.hgrs.holcim.com (user.hgrs.holcim.com [212.249.13.130]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g92I20Z23644 for ; Wed, 2 Oct 2002 14:02:00 -0400 Received: from mail01.hgrs.holcim.com ([192.168.10.32]) by hub01.hgrs.holcim.com (Lotus Domino Release 5.0.9a) with ESMTP id 2002100220045066:47495 ; Wed, 2 Oct 2002 20:04:50 +0200 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Ghost vserver X-Mailer: Lotus Notes Release 5.0.5 September 22, 2000 Message-ID: From: mark.lawrence@holcim.com Date: Wed, 2 Oct 2002 20:04:54 +0200 X-MIMETrack: Serialize by Router on HGRSDM01/HGRS/Holcim(Release 5.0.9a |January 7, 2002) at 02.10.2002 20:05:44, Serialize complete at 02.10.2002 20:05:44, Itemize by SMTP Server on HGRSDH01/HGRS/Holcim(Release 5.0.9a |January 7, 2002) at 10/02/2002 20:04:50, Serialize by Router on HGRSDH01/HGRS/Holcim(Release 5.0.9a |January 7, 2002) at 10/02/2002 20:04:56, Serialize complete at 10/02/2002 20:04:56 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1235 While I am no expert, I believe that vservers will always show up in "vserver-stat" while there are still processes within a security context. Here to me it looks like you have plenty: > CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME > 0 67 475MB 26kB 1h56m42 19m54.27 1d11h49 root server > 17 44 438MB 32kB m12.75 m02.86 28m22.22 Try doing a "vps fax" from the root server and seeing which processes are in context 17. You should be able to kill them off one by one... Strange that it doesn't have a name though... could it be that the context file in /var/run/vservers/ was deleted? Cheers, Mark. -- Mark Lawrence Holcim Group Support Ltd Corporate IT Im Schachen CH-5113 Holderbank Phone +41 58 858 65 16 Fax +41 58 858 65 20 mark.lawrence@holcim.com www.holcim.com This e-mail is confidential and intended only for the use of the above named addressee. If you have received this e-mail in error, please delete it immediately and notify us by e-mail or telephone. From vserver.error@solucorp.qc.ca Wed Oct 2 14:59:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g92Ix3004511; Wed, 2 Oct 2002 14:59:07 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g92IF2j24069 for vserver.list; Wed, 2 Oct 2002 14:15:02 -0400 Received: from endo.mpex.net (endo.mpex.net [80.239.136.137]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g92IF1Z24038 for ; Wed, 2 Oct 2002 14:15:01 -0400 Received: (qmail 16222 invoked by uid 509); 2 Oct 2002 18:15:38 -0000 Received: from unknown (HELO mpex.net) (lbraeuer@mpex.net@217.225.5.141) by 0 with SMTP; 2 Oct 2002 18:15:38 -0000 Message-ID: <3D9B382E.6020908@mpex.net> Date: Wed, 02 Oct 2002 20:17:18 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2a) Gecko/20020910 X-Accept-Language: en-us, de, de-de MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Ghost vserver References: <000b01c26a3a$9a9ad140$0301a8c0@barf> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1236 did you try: vserver "" stop or vserver "" enter ? takashi wrote: > Hello strange thing happen i got a vserver without name > > > vserver-stat > > CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME > 0 67 475MB 26kB 1h56m42 19m54.27 1d11h49 root > server > 17 44 438MB 32kB m12.75 m02.86 28m22.22 > > i cannot shut it down or enter in it > and the web server in it work .... > > any idea to shut it down without reboot tne main server .... > > > Thanks -- MPeX.net GmbH Carl-Heinrich-Becker Weg 23 D-12165 Berlin Tel: ++49-30-79701937 Fax: ++49-30-79740880 Mobil: ++49-179-5956017 From vserver.error@solucorp.qc.ca Wed Oct 2 16:42:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g92KgC005491; Wed, 2 Oct 2002 16:42:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g92KDPq27807 for vserver.list; Wed, 2 Oct 2002 16:13:25 -0400 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g92KDOZ27802 for ; Wed, 2 Oct 2002 16:13:24 -0400 Received: from remtk.solucorp.qc.ca (g39-225.citenet.net [206.123.39.225]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g92KJkK76163; Wed, 2 Oct 2002 16:19:46 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g92KBTR25249; Wed, 2 Oct 2002 16:11:29 -0400 From: Jacques Gelinas Date: Wed, 2 Oct 2002 16:11:29 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] activity on the list? Cc: Debian User References: <20021002074253.GA8160@gw.silicide.dk> In-Reply-To: <20021002074253.GA8160@gw.silicide.dk> X-mailer: tlmpmail 0.6 Message-ID: <20021002161129.90a01b74a086@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1237 On Wed, 2 Oct 2002 09:42:53 -0500, Debian User wrote > On Wed, Oct 02, 2002 at 12:54:33AM +0200, gt@hzhome.mine.nu wrote: > > > > > I'm wondering if the list is still active - activity has been nonexistant > > > for me lately so I'm wondering if I'm having some problems with my > > > subscription. > > > > Same for me ! I had to re-subscribe. > > Me too. I think the list manager has been strangly absent. > Why doesnt he (or she) tell what is wrong ? It has been explained. A crash and a lost backup. We loose many subscribers. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Oct 2 16:55:26 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g92KtF005600; Wed, 2 Oct 2002 16:55:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g92KQEM28270 for vserver.list; Wed, 2 Oct 2002 16:26:14 -0400 Received: from pfepa.post.tele.dk (pfepa.post.tele.dk [193.162.153.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g92KQDZ28265 for ; Wed, 2 Oct 2002 16:26:14 -0400 Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by pfepa.post.tele.dk (Postfix) with ESMTP id 9C3364811B0 for ; Wed, 2 Oct 2002 22:27:01 +0200 (CEST) Received: from gw.silicide.dk ([192.168.2.1]) by ns1.silicide.dk with esmtp (Exim 3.35 #1 (Debian)) id 17wq55-0007M7-00 for ; Wed, 02 Oct 2002 22:26:51 +0200 Received: from jb by gw.silicide.dk with local (Exim 3.35 #1 (Debian)) id 17wq55-0002BD-00 for ; Wed, 02 Oct 2002 22:26:51 +0200 Date: Wed, 2 Oct 2002 22:26:50 +0200 From: jon+vserver@silicide.dk To: vserver@solucorp.qc.ca Subject: Re: [vserver] activity on the list? Message-ID: <20021002202650.GA8380@gw.silicide.dk> References: <20021002074253.GA8160@gw.silicide.dk> <20021002161129.90a01b74a086@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20021002161129.90a01b74a086@remtk.solucorp.qc.ca> User-Agent: Mutt/1.3.28i Sender: Debian User X-Scanner: exiscan *17wq55-0007M7-00*74HUce5mOq2* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1238 On Wed, Oct 02, 2002 at 04:11:29PM -0500, Jacques Gelinas wrote: > On Wed, 2 Oct 2002 09:42:53 -0500, Debian User wrote > > On Wed, Oct 02, 2002 at 12:54:33AM +0200, gt@hzhome.mine.nu wrote: > > > > > > > I'm wondering if the list is still active - activity has been nonexistant > > > > for me lately so I'm wondering if I'm having some problems with my > > > > subscription. > > > > > > Same for me ! I had to re-subscribe. > > > > Me too. I think the list manager has been strangly absent. > > Why doesnt he (or she) tell what is wrong ? > > It has been explained. A crash and a lost backup. We loose many subscribers. Well, he/she could explain that at the website. I looked and couldnt find anything. It proberly didnt help that emails wasnt beeing archived. JonB From vserver.error@solucorp.qc.ca Wed Oct 2 17:05:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g92L57005731; Wed, 2 Oct 2002 17:05:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g92Kf1Z28804 for vserver.list; Wed, 2 Oct 2002 16:41:01 -0400 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g92Kf1Z28799 for ; Wed, 2 Oct 2002 16:41:01 -0400 Received: from remtk.solucorp.qc.ca (g39-203.citenet.net [206.123.39.203]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g92Km8K78678 for ; Wed, 2 Oct 2002 16:48:09 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g92KasB26456 for vserver@solucorp.qc.ca; Wed, 2 Oct 2002 16:36:54 -0400 From: Jacques Gelinas Date: Wed, 2 Oct 2002 16:36:54 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] eDonkey listens on 0.0.0.0 despite chbind References: <20021002034930.GA236@project-mm.kintnet> In-Reply-To: <20021002034930.GA236@project-mm.kintnet> X-mailer: tlmpmail 0.6 Message-ID: <20021002163654.3e5f7c183bf7@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1239 On Wed, 2 Oct 2002 11:49:30 -0500, kint@x-tincted.net wrote > I went to edonkey2000.com and clicked on the download link. > There are windows and linux versions on it. I believe the 35.16.61 you saw > is a windows version. > > Under Linux downloads, there are a few, namely > Command line client v16.16.59 > Statically Compiled Commandline Client 16.16.59 (this is what I downloaded) > eDonkey Linux Server v16.39 When I execute donkey_s, without argument, I get Welcome to eDonkey2000 command line client v14.16.57. odd > This is basically the command I use to start it under a secure context. > /usr/sbin/chbind --ip 192.168.0.1 \ > /usr/sbin/chcontext --secure --flag lock --flag nproc \ > /usr/lib/vserver/save_s_context /var/run/vservers/edonkey.ctx \ > /usr/lib/vserver/capchroot --nocapchroot . \ Is there a typo here (the dot) ? > /home/kint/edonkey /bin/donkey_s auto - ! I tried this. All I am getting is this netstat -atn Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State tcp 0 0 192.168.3.250:4662 0.0.0.0:* LISTEN tcp 0 0 192.168.3.250:4663 0.0.0.0:* LISTEN netstat -aun Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State No udp socket ? What am I missing ? --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Oct 2 17:35:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g92LZM005952; Wed, 2 Oct 2002 17:35:25 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g92KsBr29174 for vserver.list; Wed, 2 Oct 2002 16:54:11 -0400 Received: from mel-rto3.wanadoo.fr (smtp-out-3.wanadoo.fr [193.252.19.233]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g92KsBZ29168 for ; Wed, 2 Oct 2002 16:54:11 -0400 Received: from mel-rta10.wanadoo.fr (193.252.19.193) by mel-rto3.wanadoo.fr (6.5.007) id 3D760D7C0102C040 for vserver@solucorp.qc.ca; Wed, 2 Oct 2002 22:54:58 +0200 Received: from there (80.8.81.165) by mel-rta10.wanadoo.fr (6.5.007) id 3D80120800C5FD64 for vserver@solucorp.qc.ca; Wed, 2 Oct 2002 22:54:58 +0200 Content-Type: text/plain; charset="iso-8859-1" From: Couraud =?iso-8859-1?q?R=E9gis?= Message-Id: <200210022244.59352@Regis> To: vserver@solucorp.qc.ca Subject: [vserver] Servers virtual rent ? Date: Wed, 2 Oct 2002 22:54:58 +0200 X-Mailer: KMail [version 1.3.2] MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1240 Hello. I post here because I look for a renter out of server virtual. Rather in the USA, so if you know a who of are indeed I you of it will be grateful for it. In + From vserver.error@solucorp.qc.ca Wed Oct 2 19:23:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g92NMq006890; Wed, 2 Oct 2002 19:22:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g92Mbpw31832 for vserver.list; Wed, 2 Oct 2002 18:37:51 -0400 Received: from pioneernet.net (mail.pioneernet.net [207.115.64.224]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g92MboZ31827 for ; Wed, 2 Oct 2002 18:37:50 -0400 Date: Wed, 2 Oct 2002 15:38:40 -0700 Message-Id: <200210021538.AA139788602@pioneernet.net> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 From: "Cathy Sarisky" X-Sender: To: Subject: Re: [vserver] Servers virtual rent ? X-Mailer: Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g92MboZ31827 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1241 Hello, I have virtual servers available. Please check out www.acornhosting.net for details. --Cathy ---------- Original Message ---------------------------------- From: Couraud Régis Reply-to: vserver@solucorp.qc.ca Date: Wed, 2 Oct 2002 22:54:58 +0200 > Hello. > >I post here because I look for a renter out of server virtual. >Rather in the USA, so if you know a who of are indeed I you of it will be >grateful for it. > >In + > ________________________________________________________________ Sent via the WebMail system at webmail.pioneernet.net From vserver.error@solucorp.qc.ca Wed Oct 2 20:10:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g930AB007248; Wed, 2 Oct 2002 20:10:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g92Ng6w00951 for vserver.list; Wed, 2 Oct 2002 19:42:06 -0400 Received: from fractal.chaos (pc2-woki1-6-cust25.gfd.cable.ntl.com [80.6.41.25]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g92Ng5Z00946 for ; Wed, 2 Oct 2002 19:42:05 -0400 Received: from mckenna (mckenna.chaos [192.168.0.3]) by fractal.chaos (Postfix) with ESMTP id 773DF2D9E for ; Thu, 3 Oct 2002 00:42:53 +0100 (BST) Received: from mckenna (localhost [127.0.0.1]) by mckenna (Postfix) with SMTP id 6BB287CC for ; Thu, 3 Oct 2002 01:51:00 +0100 (BST) Date: Thu, 3 Oct 2002 01:50:56 +0100 From: Sam Vilain To: vserver@solucorp.qc.ca Subject: [vserver] EasySpace Virtual Dedicated Servers Message-Id: <20021003015056.5d2e9a7e.sv@easyspace.com> Organization: Easyspace Ltd X-Mailer: Sylpheed version 0.7.4claws (GTK+ 1.2.10; i386-debian-linux-gnu) X-Face: PI2{lKxF*i|]%@A&-0AV/%sXN)UJ<+SeG}%8Cn%**KZ[f_OSx{xw&Rstfu?!x^ZJ%LV@4Z% Zr"EZm.GQFy@;"V82_:?cJ`kQ3+ Mime-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; boundary="=.gT3kX9wdvQYjUJ" Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1242 --=.gT3kX9wdvQYjUJ Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Hi all, Just to announce that Easyspace now offers Debian based virtual dedicated servers using vserver. See http://www.EasyVserver.com/ Key features: unmetered, tier 1 network bandwidth, own partitions, optional disk mirroring, LVM network access, user-configurable port filtering/firewalling, Debian, fair and impartial Terms and Conditions. Key disadvantages: Easyspace have just discarded a key developer (me) who knew a lot about how to gracefully manage the damned things and how everything fits together. I have had my brushes rudely stolen from my hands and as such, some planned features such as easy DNS setup, quota support and so on are not quite finished. But when it comes down to it, they don't really have to do much other than check that the machines are still on, and their data centre provider (Verio/NTT) do most of the hard work of providing a decent service, and their track record servicing the hardware is exceptional. The machines are fast, high spec and have bandwidth coming out of their ears. And hopefully, if everything goes well the guy that picks up where I left off will be able to read my documentation and see what I was trying to do and continue things gracefully. If anyone needs any pointers on setting up a similar service or has any questions about any particular problems, I'd be glad to share my experience with them on this list. I have bit my tongue a few times due to time restraints, particularly on issues like debian-ising the vserver package and so on. But now of course I have time to share. -- Sam Vilain was sv@easyspace.com Tier 1 Debian GNU/Linux virtual GPG: http://sam.vilain.net/sam.asc servers with full root access 7D74 2A09 B2D3 C30F F78E and Mojo, baby, yeah! 278A A425 30A9 05B5 2F13 http://www.EasyVserver.com/ "Discovery consists in seeing what everyone else has seen and thinking what no one else has thought." - Albert Szent-Gyorgi - --=.gT3kX9wdvQYjUJ Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) iEYEARECAAYFAj2blHQACgkQpCUwqQW1LxO1fACgrB0kKgpq6g5q5do+4q+X6c79 kxEAoMxKefarVyj1UB8sYqKTURm5ejgt =doqz -----END PGP SIGNATURE----- --=.gT3kX9wdvQYjUJ-- From vserver.error@solucorp.qc.ca Thu Oct 3 05:45:02 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g939iw013942; Thu, 3 Oct 2002 05:44:58 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g938js916670 for vserver.list; Thu, 3 Oct 2002 04:45:54 -0400 Received: from kint.no-ip.org (dyn13ppp219.qala.com.sg [210.193.13.219]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g938jqZ16665 for ; Thu, 3 Oct 2002 04:45:53 -0400 Received: (qmail 3498 invoked from network); 3 Oct 2002 08:49:33 -0000 Received: from dell.kintnet (192.168.1.22) by kint.no-ip.org with QMQP; 3 Oct 2002 08:49:33 -0000 Date: Thu, 3 Oct 2002 16:50:09 +0800 From: kint@x-tincted.net To: vserver@solucorp.qc.ca Subject: Re: [vserver] Ghost vserver Message-ID: <20021003085009.GB210@project-mm.kintnet> References: <000b01c26a3a$9a9ad140$0301a8c0@barf> <3D9B382E.6020908@mpex.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3D9B382E.6020908@mpex.net> User-Agent: Mutt/1.4i Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1243 not sure, but if you deleted the /var/run/vservers/.ctx file vserver-stat won't show the name. Actually, the filename is what you'll see when you do vserver-stat. On Wed, Oct 02, 2002 at 08:17:18PM +0200, Lars Braeuer wrote: > did you try: > vserver "" stop > or > vserver "" enter > ? > > takashi wrote: > >Hello strange thing happen i got a vserver without name > > > > > >vserver-stat > > > >CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME > >0 67 475MB 26kB 1h56m42 19m54.27 1d11h49 root > >server > >17 44 438MB 32kB m12.75 m02.86 28m22.22 > > > >i cannot shut it down or enter in it > >and the web server in it work .... > > > >any idea to shut it down without reboot tne main server .... > > > > > >Thanks > > -- > > MPeX.net GmbH > Carl-Heinrich-Becker Weg 23 > D-12165 Berlin > > Tel: ++49-30-79701937 > Fax: ++49-30-79740880 > Mobil: ++49-179-5956017 > From vserver.error@solucorp.qc.ca Thu Oct 3 06:05:48 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g93A5c014119; Thu, 3 Oct 2002 06:05:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g938hoV16587 for vserver.list; Thu, 3 Oct 2002 04:43:50 -0400 Received: from kint.no-ip.org (dyn13ppp219.qala.com.sg [210.193.13.219]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g938hmZ16582 for ; Thu, 3 Oct 2002 04:43:48 -0400 Received: (qmail 3489 invoked from network); 3 Oct 2002 08:47:25 -0000 Received: from dell.kintnet (192.168.1.22) by kint.no-ip.org with QMQP; 3 Oct 2002 08:47:25 -0000 Date: Thu, 3 Oct 2002 16:48:01 +0800 From: kint@x-tincted.net To: vserver@solucorp.qc.ca Subject: Re: [vserver] eDonkey listens on 0.0.0.0 despite chbind Message-ID: <20021003084801.GA210@project-mm.kintnet> References: <20021002034930.GA236@project-mm.kintnet> <20021002163654.3e5f7c183bf7@remtk.solucorp.qc.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20021002163654.3e5f7c183bf7@remtk.solucorp.qc.ca> User-Agent: Mutt/1.4i Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1244 On Wed, Oct 02, 2002 at 04:36:54PM -0500, Jacques Gelinas wrote: > When I execute donkey_s, without argument, I get > > Welcome to eDonkey2000 command line client v14.16.57. > > odd > now this is indeed odd, mine shows v16.16.59. perhaps you'll want me to email you the file privately? > > > This is basically the command I use to start it under a secure context. > > /usr/sbin/chbind --ip 192.168.0.1 \ > > /usr/sbin/chcontext --secure --flag lock --flag nproc \ > > /usr/lib/vserver/save_s_context /var/run/vservers/edonkey.ctx \ > > /usr/lib/vserver/capchroot --nocapchroot . \ > > Is there a typo here (the dot) ? > > > /home/kint/edonkey /bin/donkey_s auto - ! > The dot is no typo, coz before this command I do something like cd /vservers/edonkey so . means the current dir (oh...now i see why u think it's a typo. The subsequent /home/kint/edonkey is a remnant of a deleted command because I do something like a chdir() wrapper, so that /bin/donkey_s will start in the working dir (/home/kint/edonkey) ) instead of the complicated command above, i just do chbind --ip 192.168.0.1 ./donkey_s netstat -antlup | grep donkey_s tcp 0 0 192.168.0.1:4662 0.0.0.0:* LISTEN 3462/donkey_s udp 0 0 0.0.0.0:32898 0.0.0.0:* 3462/donkey_s From vserver.error@solucorp.qc.ca Thu Oct 3 10:45:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g93Ej5016577; Thu, 3 Oct 2002 10:45:06 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g93E5Vl25479 for vserver.list; Thu, 3 Oct 2002 10:05:31 -0400 Received: from remtk.solucorp.qc.ca (dns.unigiciel.com [207.253.4.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g93E5VZ25474 for ; Thu, 3 Oct 2002 10:05:31 -0400 Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g93E6x103521 for vserver@solucorp.qc.ca; Thu, 3 Oct 2002 10:07:00 -0400 From: Jacques Gelinas Date: Thu, 3 Oct 2002 10:06:59 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Ghost vserver References: <20021003085009.GB210@project-mm.kintnet> In-Reply-To: <20021003085009.GB210@project-mm.kintnet> X-mailer: tlmpmail 0.6 Message-ID: <20021003100659.143bdee296dd@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1245 On Thu, 3 Oct 2002 16:50:09 -0500, kint@x-tincted.net wrote > not sure, but if you deleted the /var/run/vservers/.ctx file > vserver-stat won't show the name. Actually, the filename is what you'll > see when you do vserver-stat. If you delete /var/run/vservers/something.ctx and you want to tell what this security context 17 is, you can do this /usr/sbin/chcontext --ctx 17 /bin/sh ls -l /proc/*/root This will present the root directory of all process running in context 17 including the fake /sbin/init (which is in all context by default) and your own shell and ls. Now, /proc/PID/root is presented as a symlink and is shown relative to your world. The root of your ls command is the real /, but the root of all the other processes is probably /vservers/something. This is exactly what you will see. If it is /vservers/xxx, then do exit echo S_CONTEXT=17 >/var/run/vservers/xxx.ctx and your vserver will reborn (not a ghost anymore) --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Thu Oct 3 13:12:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g93HCn018047; Thu, 3 Oct 2002 13:12:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g93Gf0O30073 for vserver.list; Thu, 3 Oct 2002 12:41:00 -0400 Received: from mobile ([65.126.127.6]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g93GewZ30068 for ; Thu, 3 Oct 2002 12:40:59 -0400 Received: from mobile ([127.0.0.1] helo=localhost.localdomain ident=matt) by mobile with esmtp (Exim 3.36 #1 (Debian)) id 17x91i-0003Rs-00 for ; Thu, 03 Oct 2002 10:40:38 -0600 Subject: Re: [vserver] eDonkey listens on 0.0.0.0 despite chbind From: Matthew Excell To: vserver@solucorp.qc.ca In-Reply-To: <20021003084801.GA210@project-mm.kintnet> References: <20021002034930.GA236@project-mm.kintnet> <20021002163654.3e5f7c183bf7@remtk.solucorp.qc.ca> <20021003084801.GA210@project-mm.kintnet> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 03 Oct 2002 10:40:37 -0600 Message-Id: <1033663238.13192.3.camel@mobile> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1246 Could this be related to something I saw several weeks ago with PostgreSQL and slapd? Both of those daemons would bind to 0.0.0.0. I discovered that it had to do with IPv6 being compiled into the kernel. (or, rather, when I removed IPv6 from the kernel, the problem went away. I guess it could have been one of the other programs that handles IPv6 routing, etc.) Matthew Excell Senior Consultant The Possibility Forge, Inc. On Thu, 2002-10-03 at 02:48, kint@x-tincted.net wrote: > On Wed, Oct 02, 2002 at 04:36:54PM -0500, Jacques Gelinas wrote: > > When I execute donkey_s, without argument, I get > > > > Welcome to eDonkey2000 command line client v14.16.57. > > > > odd > > > now this is indeed odd, mine shows v16.16.59. > perhaps you'll want me to email you the file privately? > > > > > > This is basically the command I use to start it under a secure context. > > > /usr/sbin/chbind --ip 192.168.0.1 \ > > > /usr/sbin/chcontext --secure --flag lock --flag nproc \ > > > /usr/lib/vserver/save_s_context /var/run/vservers/edonkey.ctx \ > > > /usr/lib/vserver/capchroot --nocapchroot . \ > > > > Is there a typo here (the dot) ? > > > > > /home/kint/edonkey /bin/donkey_s auto - ! > > > The dot is no typo, coz before this command I do something like > cd /vservers/edonkey > so . means the current dir > (oh...now i see why u think it's a typo. The subsequent /home/kint/edonkey > is a remnant of a deleted command because I do something like a chdir() > wrapper, so that /bin/donkey_s will start in the working dir > (/home/kint/edonkey) ) > > instead of the complicated command above, i just do > chbind --ip 192.168.0.1 ./donkey_s > > netstat -antlup | grep donkey_s > tcp 0 0 192.168.0.1:4662 0.0.0.0:* LISTEN 3462/donkey_s > udp 0 0 0.0.0.0:32898 0.0.0.0:* 3462/donkey_s From vserver.error@solucorp.qc.ca Thu Oct 3 14:15:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g93IFA018646; Thu, 3 Oct 2002 14:15:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g93HgPc31794 for vserver.list; Thu, 3 Oct 2002 13:42:25 -0400 Received: from kint.no-ip.org (dyn13ppp219.qala.com.sg [210.193.13.219]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g93HgNZ31789 for ; Thu, 3 Oct 2002 13:42:23 -0400 Received: (qmail 5140 invoked from network); 3 Oct 2002 17:46:03 -0000 Received: from unknown (192.168.1.20) by kint.no-ip.org with QMQP; 3 Oct 2002 17:46:03 -0000 Date: Fri, 4 Oct 2002 01:46:40 +0800 From: kint To: vserver@solucorp.qc.ca Subject: Re: [vserver] eDonkey listens on 0.0.0.0 despite chbind Message-ID: <20021003174640.GB740@project-mm.kintnet> References: <20021002034930.GA236@project-mm.kintnet> <20021002163654.3e5f7c183bf7@remtk.solucorp.qc.ca> <20021003084801.GA210@project-mm.kintnet> <1033663238.13192.3.camel@mobile> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1033663238.13192.3.camel@mobile> User-Agent: Mutt/1.4i Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1247 IPv6 is compiled, but as a module, and it's not inserted. Don't know if this affects it or not. Anyway, haven't had time to recompile and test. (or rather, not inclined to reboot my server....:) On Thu, Oct 03, 2002 at 10:40:37AM -0600, Matthew Excell wrote: > Could this be related to something I saw several weeks ago with > PostgreSQL and slapd? Both of those daemons would bind to 0.0.0.0. I > discovered that it had to do with IPv6 being compiled into the kernel. > (or, rather, when I removed IPv6 from the kernel, the problem went > away. I guess it could have been one of the other programs that handles > IPv6 routing, etc.) > > Matthew Excell > Senior Consultant > The Possibility Forge, Inc. > > On Thu, 2002-10-03 at 02:48, kint@x-tincted.net wrote: From vserver.error@solucorp.qc.ca Fri Oct 4 13:03:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g94H39026187; Fri, 4 Oct 2002 13:03:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g94GRtW07855 for vserver.list; Fri, 4 Oct 2002 12:27:55 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g94GRrZ07850 for ; Fri, 4 Oct 2002 12:27:54 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id 01534FDD for ; Fri, 4 Oct 2002 18:28:58 +0200 (CEST) Date: Fri, 4 Oct 2002 18:28:40 +0200 From: Klavs Klavsen To: Vserver mailinglist Subject: [vserver] vserver on Gentoo Message-Id: <20021004182840.52229b2c.kl@vsen.dk> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1248 Hi guys, I'm about to install vserver on my new Via C3 Gentoo server. I was wondering, seeing as how Gentoo has epm (rpm-like interface to the package management) - if it would be possible just to change the source-code of the utils, so they - if the dist is gentoo - use epm instead of rpm - the options should be the exact same ones. Anyone ever tried this? -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Fri Oct 4 15:52:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g94JqF027877; Fri, 4 Oct 2002 15:52:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g94JOUn12861 for vserver.list; Fri, 4 Oct 2002 15:24:30 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g94JOSZ12856 for ; Fri, 4 Oct 2002 15:24:29 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id D8D0EFDD for ; Fri, 4 Oct 2002 21:25:24 +0200 (CEST) Date: Fri, 4 Oct 2002 21:25:05 +0200 From: Klavs Klavsen To: Vserver mailinglist Subject: [vserver] 2.4.18-ctx13 ? Message-Id: <20021004212505.64e83036.kl@vsen.dk> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1249 Hi guys, I'm trying to build a freeswan, kerneli (crypto-api) and vserver enabled kernel (I swear I really need all of this :-) - we're trying to build the largest VPN network - in SSLUG (danish LUG with 6000+ members) - and I want an encrypted disk - hence kerneli - and vserver - well it's a server - so I need vserver :-) I'm gonna try to start from gentoo's crypto-sources as it has kerneli and freeswan (it's a 2.4.18 - because kerneli hasn't been released for 2.4.19 yet :-( ) - now I only need a vserver patch for 2.4.18 - I'm gonna try with the patch for 2.4.19 - cause I'm gonna have to manually patch it anyways I guess.. I'll put it up on my website, when ever it's finished.. :-) Please tell me, if you have any tips - or if you know of someone who has already done this.. (doesn't anyone else need this?) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Fri Oct 4 17:31:03 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g94LUr028903; Fri, 4 Oct 2002 17:30:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g94Kxs915649 for vserver.list; Fri, 4 Oct 2002 16:59:54 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g94KxrZ15644 for ; Fri, 4 Oct 2002 16:59:53 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id D69B8FDD for ; Fri, 4 Oct 2002 23:00:54 +0200 (CEST) Date: Fri, 4 Oct 2002 23:00:35 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: Re: [vserver] 2.4.18-ctx13 ? Message-Id: <20021004230035.764a6bae.kl@vsen.dk> In-Reply-To: <20021004212505.64e83036.kl@vsen.dk> References: <20021004212505.64e83036.kl@vsen.dk> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1250 Here's the rejects.. ./kernel/sched.c.rej ./kernel/signal.c.rej ./kernel/sys.c.rej ./arch/sparc/kernel/systbls.S.rej ./Makefile.rej in sched.c - it seems the first part - doesn't exist at all in the new sched.c (I searched for over and weight - none exist in the new sched.c) I would be glad if someone more gifted than me, could tell me what's up here.. Thank you in advance. -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Sat Oct 5 15:31:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g95JVd008280; Sat, 5 Oct 2002 15:31:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g95IltE15892 for vserver.list; Sat, 5 Oct 2002 14:47:55 -0400 Received: from tpx20.vsen.dk (cpe.atm4-0-53256.0x50c4b802.bynxx8.customer.tele.dk [80.196.184.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g95IlrZ15887 for ; Sat, 5 Oct 2002 14:47:54 -0400 Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by tpx20.vsen.dk (Postfix) with ESMTP id C7FD8146E94 for ; Sat, 5 Oct 2002 22:48:48 +0200 (CEST) Subject: [vserver] vserver in vanilla kernel - please.. From: klavs klavsen To: Vserver Mailinglist Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 (1.0.3-4) Date: 05 Oct 2002 22:48:48 +0200 Message-Id: <1033850928.1690.4.camel@tpx20.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1251 I'm trying to make a kernel with cryptoapi, freeswan and vserver - and I can find kernels with cryptoapi and freeswan (f.ex. Gentoo's crypto-sources) - but I can't get vserver mixed in with that :-( This made me wonder, why vserver wasn't in the kernel yet - it's very stable - and a wonderful product from a security stand point..? I would very much like it to be in the kernel.. it's a pain having to choose between freeswan/cryptoapi and vserver.. it's a crippled server, no matter how you look at it :-( -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Sat Oct 5 17:45:34 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g95LjO009291; Sat, 5 Oct 2002 17:45:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g95L8wK19944 for vserver.list; Sat, 5 Oct 2002 17:08:58 -0400 Received: from tpx20.vsen.dk (cpe.atm4-0-53256.0x50c4b802.bynxx8.customer.tele.dk [80.196.184.2]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g95L8vZ19939 for ; Sat, 5 Oct 2002 17:08:57 -0400 Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by tpx20.vsen.dk (Postfix) with ESMTP id 301AB146E94; Sun, 6 Oct 2002 01:09:47 +0200 (CEST) Subject: Re: [vserver] 2.4.18-ctx13 ? From: klavs klavsen To: Ivo De Decker Cc: Vserver Mailinglist In-Reply-To: <20021005221927.A27591@student.rug.ac.be> References: <20021004212505.64e83036.kl@vsen.dk> <20021004230035.764a6bae.kl@vsen.dk> <20021005221927.A27591@student.rug.ac.be> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 (1.0.3-4) Date: 06 Oct 2002 01:09:47 +0200 Message-Id: <1033859388.1690.8.camel@tpx20.vsen.dk> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1252 On Sat, 2002-10-05 at 22:19, Ivo De Decker wrote: > > Did you try patch-2.4.18ctx-12? > Nope - cause I really want the fixes in ctx-13. Anyways, I've found the following solutions: crypto-api can be compiled as a module - for any kernel, so now I only need freeswan and vserver to coexist.. this is where I'm at now. I'll let you know, what the end result is :-) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant kl@vsen.dk - http://www.vsen.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter From vserver.error@solucorp.qc.ca Sat Oct 5 19:14:53 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g95NEg010039; Sat, 5 Oct 2002 19:14:46 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g95MNaf21675 for vserver.list; Sat, 5 Oct 2002 18:23:36 -0400 Received: from student6.rug.ac.be (student6.rug.ac.be [157.193.88.74]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g95MNZZ21669 for ; Sat, 5 Oct 2002 18:23:35 -0400 Received: (from ivo@localhost) by student6.rug.ac.be (8.9.3/8.9.3/Debian 8.9.3-21) id AAA03473 for vserver@solucorp.qc.ca; Sun, 6 Oct 2002 00:24:24 +0200 Date: Sun, 6 Oct 2002 00:24:24 +0200 From: Ivo De Decker To: vserver@solucorp.qc.ca Subject: Re: [vserver] 2.4.18-ctx13 ? Message-ID: <20021006002424.A2659@student.rug.ac.be> References: <20021004212505.64e83036.kl@vsen.dk> <20021004230035.764a6bae.kl@vsen.dk> <20021005221927.A27591@student.rug.ac.be> <1033859388.1690.8.camel@tpx20.vsen.dk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <1033859388.1690.8.camel@tpx20.vsen.dk>; from kl@vsen.dk on Sun, Oct 06, 2002 at 01:09:47AM +0200 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1253 On Sun, Oct 06, 2002 at 01:09:47AM +0200, klavs klavsen wrote: > On Sat, 2002-10-05 at 22:19, Ivo De Decker wrote: > > > > Did you try patch-2.4.18ctx-12? > > > > Nope - cause I really want the fixes in ctx-13. Probably that's the problem. ctx-13 is against 2.4.19, ctx-12 against 2.4.18. I don't think ctx-13 applies against 2.4.18, regardless of the crypto and freeswan patches. Possible solutions: Try to backport the ctx-13 changes to 2.4.18. The only real changes between ctx-12 en ctx-13 are support for other archs and reiserfs support. I don't think it would be too difficult to use ctx-12 (against 2.4.18) and apply those changes. Try to find patches against 2.4.19 for crypto an freeswan. > Anyways, I've found the following solutions: > > crypto-api can be compiled as a module - for any kernel, so now I only > need freeswan and vserver to coexist.. this is where I'm at now. > > I'll let you know, what the end result is :-) OK. Good luck... Greetings, Ivo De Decker From vserver.error@solucorp.qc.ca Sat Oct 5 19:48:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g95Nm7010261; Sat, 5 Oct 2002 19:48:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g95N98722836 for vserver.list; Sat, 5 Oct 2002 19:09:08 -0400 Received: from smtp010.tiscali.dk (smtp010.tiscali.dk [212.54.64.103]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g95N96Z22831 for ; Sat, 5 Oct 2002 19:09:06 -0400 Received: from pc (213.237.38.135.adsl.hn.worldonline.dk [213.237.38.135]) by smtp010.tiscali.dk (8.12.5/8.12.5) with SMTP id g95N9qnV014369 for ; Sun, 6 Oct 2002 01:09:54 +0200 (MEST) Message-ID: <001b01c26cc4$4eea6850$6a1c1c0a@pc> From: =?iso-8859-1?Q?Tue_N=F8rgaard?= To: Subject: [vserver] Patching Redhat 7.3 with 2.4.18ctx10-ctx12 Date: Sun, 6 Oct 2002 01:09:02 +0200 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0014_01C26CD4.F5927D40" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1254 This is a multi-part message in MIME format. ------=_NextPart_000_0014_01C26CD4.F5927D40 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi! I=B4m trying to patch the Redhat kernel with the 2.4.18ctx10-ctx12, but = I get the following: [root@test linux-2.4.18-10]# patch -p1 < patch-2.4.18ctx10-ctx12 patching file Makefile Hunk #1 FAILED at 2. 1 out of 1 hunk FAILED -- saving rejects to file Makefile.rej patching file fs/proc/array.c Hunk #1 FAILED at 297. Hunk #2 FAILED at 315. 2 out of 2 hunks FAILED -- saving rejects to file fs/proc/array.c.rej patching file include/linux/sched.h Hunk #1 FAILED at 292. Hunk #2 succeeded at 338 with fuzz 1 (offset 30 lines). Hunk #3 FAILED at 478. Hunk #4 succeeded at 982 with fuzz 2 (offset -1 lines). 2 out of 4 hunks FAILED -- saving rejects to file = include/linux/sched.h.rej patching file include/net/route.h Hunk #1 FAILED at 161. 1 out of 1 hunk FAILED -- saving rejects to file include/net/route.h.rej patching file kernel/exit.c Hunk #1 succeeded at 67 with fuzz 2. patching file kernel/fork.c Hunk #1 succeeded at 604 with fuzz 2. patching file kernel/sys.c Hunk #1 FAILED at 1068. 1 out of 1 hunk FAILED -- saving rejects to file kernel/sys.c.rej patching file net/ipv4/af_inet.c Hunk #1 succeeded at 482 with fuzz 2. Hunk #2 FAILED at 492. 1 out of 2 hunks FAILED -- saving rejects to file net/ipv4/af_inet.c.rej patching file net/ipv4/devinet.c Hunk #1 succeeded at 482 (offset 26 lines). Hunk #2 FAILED at 612. Hunk #3 FAILED at 749. Hunk #4 FAILED at 967. 3 out of 4 hunks FAILED -- saving rejects to file net/ipv4/devinet.c.rej patching file net/socket.c Hunk #1 FAILED at 1765. 1 out of 1 hunk FAILED -- saving rejects to file net/socket.c.rej Anybody have a "walk through guide" to get this working or just some = hints? Best regards Tue Noergaard ------=_NextPart_000_0014_01C26CD4.F5927D40 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi!
 
I=B4m trying to patch the Redhat kernel = with the=20 2.4.18ctx10-ctx12, but I get the following:
 
[root@test linux-2.4.18-10]# patch -p1 = <=20 patch-2.4.18ctx10-ctx12
patching file Makefile
Hunk #1 FAILED at = 2.
1=20 out of 1 hunk FAILED -- saving rejects to file Makefile.rej
patching = file=20 fs/proc/array.c
Hunk #1 FAILED at 297.
Hunk #2 FAILED at 315.
2 = out of=20 2 hunks FAILED -- saving rejects to file fs/proc/array.c.rej
patching = file=20 include/linux/sched.h
Hunk #1 FAILED at 292.
Hunk #2 succeeded at = 338 with=20 fuzz 1 (offset 30 lines).
Hunk #3 FAILED at 478.
Hunk #4 succeeded = at 982=20 with fuzz 2 (offset -1 lines).
2 out of 4 hunks FAILED -- saving = rejects to=20 file include/linux/sched.h.rej
patching file = include/net/route.h
Hunk #1=20 FAILED at 161.
1 out of 1 hunk FAILED -- saving rejects to file=20 include/net/route.h.rej
patching file kernel/exit.c
Hunk #1 = succeeded at=20 67 with fuzz 2.
patching file kernel/fork.c
Hunk #1 succeeded at = 604 with=20 fuzz 2.
patching file kernel/sys.c
Hunk #1 FAILED at 1068.
1 = out of 1=20 hunk FAILED -- saving rejects to file kernel/sys.c.rej
patching file=20 net/ipv4/af_inet.c
Hunk #1 succeeded at 482 with fuzz 2.
Hunk #2 = FAILED at=20 492.
1 out of 2 hunks FAILED -- saving rejects to file=20 net/ipv4/af_inet.c.rej
patching file net/ipv4/devinet.c
Hunk #1 = succeeded=20 at 482 (offset 26 lines).
Hunk #2 FAILED at 612.
Hunk #3 FAILED at = 749.
Hunk #4 FAILED at 967.
3 out of 4 hunks FAILED -- saving = rejects to=20 file net/ipv4/devinet.c.rej
patching file net/socket.c
Hunk #1 = FAILED at=20 1765.
1 out of 1 hunk FAILED -- saving rejects to file=20 net/socket.c.rej
 
Anybody have a "walk through guide" to = get this=20 working or just some hints?
 
Best regards
 
Tue = Noergaard
------=_NextPart_000_0014_01C26CD4.F5927D40-- From vserver.error@solucorp.qc.ca Sun Oct 6 05:06:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9695o015164; Sun, 6 Oct 2002 05:05:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g968QG525034 for vserver.list; Sun, 6 Oct 2002 04:26:16 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g968QDZ24888 for ; Sun, 6 Oct 2002 04:26:14 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id BB5FEFDD for ; Sun, 6 Oct 2002 10:27:21 +0200 (CEST) Date: Sun, 6 Oct 2002 10:26:58 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: [vserver] SOLVED: 2.4.18-ctx13 ? Message-Id: <20021006102658.3b1fd192.kl@vsen.dk> In-Reply-To: <20021006002424.A2659@student.rug.ac.be> References: <20021004212505.64e83036.kl@vsen.dk> <20021004230035.764a6bae.kl@vsen.dk> <20021005221927.A27591@student.rug.ac.be> <1033859388.1690.8.camel@tpx20.vsen.dk> <20021006002424.A2659@student.rug.ac.be> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1255 I found that cryptoapi, can be compiled as a module (after the kernel has been built), which means that although the kerneli-patch is for 2.4.18 only, the cryptoapi module can be for all. I then patched a vanilla 2.4.19 with freeswan, and afterwards with vserver (2.4.19ctx-13) - and it ran through without problems :-) So now I've got my box, just the way I want it :-) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Sun Oct 6 07:35:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g96BZS015977; Sun, 6 Oct 2002 07:35:28 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g96B0l107961 for vserver.list; Sun, 6 Oct 2002 07:00:47 -0400 Received: from natan.teuto.de (natan.teuto.de [212.8.199.33]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g96B0kZ07956 for ; Sun, 6 Oct 2002 07:00:46 -0400 Received: from localhost (localhost [127.0.0.1]) by natan.teuto.de (Postfix) with ESMTP id 43D112427C for ; Sun, 6 Oct 2002 12:55:32 +0200 (CEST) Received: from ds (ds.intra [10.0.0.15]) by natan.teuto.de (Postfix) with ESMTP id CFB7E1E0C6 for ; Sun, 6 Oct 2002 12:55:31 +0200 (CEST) Received: by ds (Postfix, from userid 1000) id 5DF42298; Sun, 6 Oct 2002 11:01:06 -0200 (GMT+2) Date: Sun, 6 Oct 2002 11:01:06 -0200 From: Dennis Schoen To: vserver@solucorp.qc.ca Subject: Re: [vserver] Patching Redhat 7.3 with 2.4.18ctx10-ctx12 Message-ID: <20021006130106.GA2941@teuto.net> Mail-Followup-To: vserver@solucorp.qc.ca References: <001b01c26cc4$4eea6850$6a1c1c0a@pc> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <001b01c26cc4$4eea6850$6a1c1c0a@pc> User-Agent: Mutt/1.4i Mail-Copies-To: never X-Virus-Scanned: by AMaViS snapshot-20010714 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1256 On Sun, Oct 06, 2002 at 01:09:02AM +0200, Tue Nřrgaard wrote: > Hi! > > I´m trying to patch the Redhat kernel with the 2.4.18ctx10-ctx12, but I get the following: [...] > Anybody have a "walk through guide" to get this working or just some hints? Try a vanilla kernel - Redhat kernels contain *lots* of patches that conflict with the vserver patch. Ciao Dennis -- ... [it is] something unearthly ... If there are sentient beings on other planets, then they play Go. - Emanuel Lasker, chess grandmaster From vserver.error@solucorp.qc.ca Sun Oct 6 17:30:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g96LUT019886; Sun, 6 Oct 2002 17:30:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g96KvoW21702 for vserver.list; Sun, 6 Oct 2002 16:57:50 -0400 Received: from anakin.xinit.se (anakin.xinit.se [194.14.168.3]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g96KvmZ21697 for ; Sun, 6 Oct 2002 16:57:49 -0400 Received: from zekepc (unknown [195.22.74.195]) by anakin.xinit.se (Postfix) with SMTP id 31C7B2C09B for ; Sun, 6 Oct 2002 22:58:30 +0200 (CEST) Message-ID: <009401c26d7a$f77a4ba0$070016ac@zekepc> From: =?iso-8859-1?Q?Hans_Eric_Sandstr=F6m?= To: References: <20021003015056.5d2e9a7e.sv@easyspace.com> Subject: Re: [vserver] EasySpace Virtual Dedicated Servers Date: Sun, 6 Oct 2002 22:57:17 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1257 Hi, I really like the EasyVserver products. I have a close relation with another service provider that is mainly focuses och home and very small companies home offices (SOHO). This company would like to create a similar product but stipped down to focus on the home user (home office) who wants to create their own web site with a litte more functionality than the average web hotel. Do you this this is feasible. The target market will probably not want to pay more than 200$ / year but has probably less requirements than the average EasyVserver customer. Sincerely, Hans Eric ----- Original Message ----- From: "Sam Vilain" To: Sent: Thursday, October 03, 2002 2:50 AM Subject: [vserver] EasySpace Virtual Dedicated Servers From vserver.error@solucorp.qc.ca Sun Oct 6 18:28:05 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g96MRx020262; Sun, 6 Oct 2002 18:28:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g96Lldg22848 for vserver.list; Sun, 6 Oct 2002 17:47:39 -0400 Received: from bubble.inetflex.com (bubble.inetflex.com [216.234.161.130]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g96LlcZ22839 for ; Sun, 6 Oct 2002 17:47:39 -0400 Received: (qmail 4415 invoked from network); 6 Oct 2002 21:48:22 -0000 Received: from modemcable080.72-200-24.mtl.mc.videotron.ca (24.200.72.80) by bubble.inetflex.com with SMTP; 6 Oct 2002 21:48:22 -0000 From: Cedric Veilleux Organization: Neopeak Internet Solutions inc. To: vserver@solucorp.qc.ca Subject: [vserver] GCC 3.2 and vserver-0.20 Date: Sun, 6 Oct 2002 17:49:15 -0400 User-Agent: KMail/1.4.7 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Disposition: inline Message-Id: <200210061749.15275.cedric@neopeak.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g96LlcZ22839 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1258 I am trying to compile it under GCC 3.2 and the following happens. Seems like there is some ISO C++ compatibility issues... cedric@blackfish vserver-0.20 $ make all g++ -c -o syscall.o syscall.cc gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" chbind.cc syscall.o -o chbind \ -lstdc++ In file included from chbind.cc:16: vutil.h:26: 'string' is used as a type, but is not defined as a type. vutil.h:27: 'string' is used as a type, but is not defined as a type. vutil.h:28: parse error before `&' token vutil.h:31: missing ';' before right brace vutil.h:33: ISO C++ forbids defining types within return type vutil.h:33: semicolon missing after declaration of `class PACKAGE' vutil.h: In function `int PACKAGE(const char*, const char*)': vutil.h:34: only constructors take base initializers vutil.h:34: confused by earlier errors, bailing out make: *** [chbind] Error 1 cedric@blackfish vserver-0.20 $ gcc -v Reading specs from /usr/lib/gcc-lib/i686-pc-linux-gnu/3.2/specs Configured with: /var/tmp/portage/gcc-3.2-r1/work/gcc-3.2/configure --prefix=/usr --mandir=/usr/share/man --infodir=/usr/share/info --enable-shared --host=i686-pc-linux-gnu --build=i686-pc-linux-gnu --target=i686-pc-linux-gnu --with-system-zlib --enable-languages=c,c++,ada,f77,objc,java --enable-threads=posix --enable-long-long --disable-checking --enable-cstdio=stdio --enable-clocale=generic --enable-__cxa_atexit --enable-version-specific-runtime-libs --with-gxx-include-dir=/usr/include/g++-v32 --with-local-prefix=/usr/local --enable-shared --enable-nls --without-included-gettext Thread model: posix gcc version 3.2 cedric@blackfish vserver-0.20 $ uname -a Linux blackfish.neopeak.com 2.4.19ctx-13 #1 Sun Oct 6 16:11:57 EDT 2002 i686 GenuineIntel From vserver.error@solucorp.qc.ca Mon Oct 7 21:09:22 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g98199001556; Mon, 7 Oct 2002 21:09:12 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g980RMM22389 for vserver.list; Mon, 7 Oct 2002 20:27:22 -0400 Received: from Trademart-1.ednet.ns.ca (Trademart-1.EDnet.NS.CA [142.227.51.1]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g980RLZ22383 for ; Mon, 7 Oct 2002 20:27:21 -0400 Received: from macleajb (helo=localhost) by Trademart-1.ednet.ns.ca with local-esmtp (Exim 4.10) id 17yiEN-00081h-00 for vserver@solucorp.qc.ca; Mon, 07 Oct 2002 21:28:11 -0300 Date: Mon, 7 Oct 2002 21:28:11 -0300 (ADT) From: James MacLean To: Subject: [vserver] More MySQL Problems Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Scanner: exiscan for exim4 (http://duncanthrax.net/exiscan/) *17yiEN-00081h-00*P8EZdJCgR66* Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1259 Hi Folks, Well, I was one who thought I had MySQL working fine under vserver, but now I see it works fine for local connects, and host of vserver connects, but connections coming from external to the physical vserver box cause mysql to die. Was segfaulting, but I just tried giving it some CAPS : CAP_KILL CAP_SETGID CAP_SETUID CAP_SETPCAP CAP_NET_BROADCAST CAP_SYS_NICE Just guessing at this point. But now it just dies and restarts. I have not started to strace it as it is in somewhat active use. Anyone have the silver bullet for this one? thnxs, JES -- James B. MacLean macleajb@ednet.ns.ca Department of Education Nova Scotia, Canada B3M 4B2 From vserver.error@solucorp.qc.ca Tue Oct 8 03:48:20 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g987mI004720; Tue, 8 Oct 2002 03:48:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g986nFM31817 for vserver.list; Tue, 8 Oct 2002 02:49:15 -0400 Received: from mailhost-1.mtl-loo.activecom.net (mailhost-1.mtl-loo.activecom.net [216.189.192.23]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g986nEZ31812 for ; Tue, 8 Oct 2002 02:49:15 -0400 Received: from activecom.net (unknown [216.189.195.138]) by mailhost-1.mtl-loo.activecom.net (Active MailServer) with ESMTP id 85D388DE6A for ; Tue, 8 Oct 2002 02:42:12 -0400 (EDT) Message-ID: <3DA27E44.4000104@activecom.net> Date: Tue, 08 Oct 2002 02:42:12 -0400 From: Mehmet Avcioglu Organization: Active Comm. User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20020823 Netscape/7.0 X-Accept-Language: en, tr MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] More MySQL Problems References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1260 I have not had any problems running mysql for both local and remote connections. I have not made any changes to default install. All I have is S_FLAGS="lock nproc", nothing else. Your problem might be somewhere else. - Mehmet James MacLean wrote: > Hi Folks, > > Well, I was one who thought I had MySQL working fine under vserver, but > now I see it works fine for local connects, and host of vserver connects, > but connections coming from external to the physical vserver box cause > mysql to die. Was segfaulting, but I just tried giving it some CAPS : > > CAP_KILL CAP_SETGID CAP_SETUID CAP_SETPCAP CAP_NET_BROADCAST CAP_SYS_NICE > > Just guessing at this point. But now it just dies and restarts. I have not > started to strace it as it is in somewhat active use. > > Anyone have the silver bullet for this one? > > thnxs, > JES From vserver.error@solucorp.qc.ca Tue Oct 8 06:58:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g98AwR008028; Tue, 8 Oct 2002 06:58:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g98ABYX06057 for vserver.list; Tue, 8 Oct 2002 06:11:34 -0400 Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g98ABXZ06052 for ; Tue, 8 Oct 2002 06:11:33 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id DB2FD7A501; Tue, 8 Oct 2002 11:12:24 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id DA4D692085 for ; Tue, 8 Oct 2002 11:12:24 +0100 (BST) Date: Tue, 8 Oct 2002 11:12:24 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] More MySQL Problems In-Reply-To: Message-ID: X-GPG-Key: DSA/E90CFA24 X-message-flag: Please use plain text when replying--not HTML. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1261 On Mon, 7 Oct 2002, James MacLean wrote: > connections [...] external to the physical vserver box cause mysql to die. My hunch is daft, check `/etc/hosts' is setup properly. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Tue Oct 8 12:20:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g98GKN010880; Tue, 8 Oct 2002 12:20:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g98FV4k16770 for vserver.list; Tue, 8 Oct 2002 11:31:04 -0400 Received: from e-biz.lu (stingray.e-hosting.lu [212.24.214.193]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g98FV2Z16765 for ; Tue, 8 Oct 2002 11:31:03 -0400 Received: from simon.lan (pppoe63-luxdsl-066.pt.lu [213.166.63.66]) by e-biz.lu (8.11.6/8.11.6) with ESMTP id g98FVsc32113 for ; Tue, 8 Oct 2002 17:31:54 +0200 Content-Type: text/plain; charset="us-ascii" From: Georges Toth To: vserver@solucorp.qc.ca Subject: [vserver] gcc 3.2 Date: Tue, 8 Oct 2002 17:31:37 +0200 User-Agent: KMail/1.4.3 MIME-Version: 1.0 Message-Id: <200210081731.37459.georges@norm.lu> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g98FV2Z16765 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1262 hi, since i'm using a gcc3.2 based linux distro, i'm no longer able to compile the vserver sources.....get some strange errors... but the kernel compiled without any probs. ...so i've tried to use a prebuild package, and it seems to work. BUT, i'm somehow not able to login via ssh, nor able to do a "su username"... it says "Cannot execute /bin/bash: Permission denied", although permissions are correct....and i've created the vserver as many times before... has anybody else experienced those or similiar errors ? is it related to gcc3.2 ? thnx -- regards, Georges Toth From vserver.error@solucorp.qc.ca Tue Oct 8 13:12:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g98HCW011458; Tue, 8 Oct 2002 13:12:32 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g98GI9918100 for vserver.list; Tue, 8 Oct 2002 12:18:09 -0400 Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g98GI5Z18095 for ; Tue, 8 Oct 2002 12:18:06 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 066107A546; Tue, 8 Oct 2002 17:18:57 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id F2DB992085 for ; Tue, 8 Oct 2002 17:18:57 +0100 (BST) Date: Tue, 8 Oct 2002 17:18:57 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] gcc 3.2 In-Reply-To: <200210081731.37459.georges@norm.lu> Message-ID: X-GPG-Key: DSA/E90CFA24 X-message-flag: Please use plain text when replying--not HTML. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1263 On Tue, 8 Oct 2002, Georges Toth wrote: > BUT, i'm somehow not able to login via ssh, nor able to do a "su username"... > it says "Cannot execute /bin/bash: Permission denied", although permissions > are correct....and i've created the vserver as many times before... You mention gcc3; is it the problem of some of the utilities having been compiled against different library version (compiling with -static will should solve this if this is the problem). Is SSH in the vserver listening on the right IP/ports? Does `su' without a username (to root) work? Do you have any problems (or can you find out any information by doing a `vserver enter' from the host server? -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Tue Oct 8 13:38:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g98Hck011687; Tue, 8 Oct 2002 13:38:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g98GveI19581 for vserver.list; Tue, 8 Oct 2002 12:57:40 -0400 Received: from nninfo2.comm.it ([213.92.77.123]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g98GvdZ19571 for ; Tue, 8 Oct 2002 12:57:39 -0400 Received: from [192.168.3.132] (host65-183.pool80116.interbusiness.it [80.116.183.65]) by nninfo2.comm.it (8.9.3/8.9.3) with ESMTP id SAA12516 for ; Tue, 8 Oct 2002 18:58:31 +0200 Subject: Re: [vserver] gcc 3.2 From: Dave To: vserver@solucorp.qc.ca In-Reply-To: <200210081731.37459.georges@norm.lu> References: <200210081731.37459.georges@norm.lu> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 08 Oct 2002 18:50:46 +0200 Message-Id: <1034095877.2419.2.camel@mfly.nn.lan> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1264 On Tue, 2002-10-08 at 17:31, Georges Toth wrote: > since i'm using a gcc3.2 based linux distro, > A personal note... you might have been too quick jumping on the 3.2 vagon... 3.2 is *not* binary compatible with earlier versions (i.e. not even 3.x), so this is probably your problem. Dave. From vserver.error@solucorp.qc.ca Tue Oct 8 15:04:33 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g98J4P012646; Tue, 8 Oct 2002 15:04:29 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g98IUS122436 for vserver.list; Tue, 8 Oct 2002 14:30:28 -0400 Received: from tomts24-srv.bellnexxia.net (tomts24-srv.bellnexxia.net [209.226.175.187]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g98IURZ22431 for ; Tue, 8 Oct 2002 14:30:28 -0400 Received: from barf ([207.236.226.187]) by tomts24-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20021008183118.SXAJ17912.tomts24-srv.bellnexxia.net@barf> for ; Tue, 8 Oct 2002 14:31:18 -0400 Message-ID: <000b01c26ef8$e5152c30$0301a8c0@barf> From: "takashi" To: Subject: [vserver] debian 3.0 and vserver utilities Date: Tue, 8 Oct 2002 14:31:19 -0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0008_01C26ED7.5DDBDFF0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1265 This is a multi-part message in MIME format. ------=_NextPart_000_0008_01C26ED7.5DDBDFF0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable hello vserver users=20 I wonder if i am the only who got those errors with linux debian 3.0 and = vserver utilities 1- vserver ONBOOT=3Dyes do vservers do not start on boot with debian = 3.0 2- /etc/init.d/rebootmgr: /etc/rc.d/init.d/functions: No such file or = directory 3 ./vreboot connect /dev/reboot (Connection refused Anybody have idea ?? Thank a lot=20 ------=_NextPart_000_0008_01C26ED7.5DDBDFF0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
hello vserver users
 
I wonder if i am the only who got = those errors=20 with linux debian 3.0 and vserver utilities
 
1- vserver=20 ONBOOT=3Dyes     do vservers do not=20 start on boot with debian 3.0
 
2- = /etc/init.d/rebootmgr:=20  /etc/rc.d/init.d/functions: No such file or directory
 
3 = ./vreboot=20 connect /dev/reboot (Connection refused
 
 
Anybody have idea ??
 
Thank a lot
 
------=_NextPart_000_0008_01C26ED7.5DDBDFF0-- From vserver.error@solucorp.qc.ca Tue Oct 8 15:04:37 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g98J4R012648; Tue, 8 Oct 2002 15:04:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g98IWkX22554 for vserver.list; Tue, 8 Oct 2002 14:32:46 -0400 Received: from domino-2.prominic.com (s2-f1-gb.prominic.com [63.254.227.1]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g98IWiZ22549 for ; Tue, 8 Oct 2002 14:32:45 -0400 Importance: High X-Priority: 1 (High) Subject: [vserver] vserver neighbour table overflow problems To: vserver@solucorp.qc.ca X-Mailer: Lotus Notes Release 5.0.10 March 22, 2002 Message-ID: From: "Justin M Kuntz" Date: Tue, 8 Oct 2002 13:34:33 -0500 X-MIMETrack: Serialize by Router on domino-2.prominic.com/Prominic(Release 5.0.8 |June 18, 2001) at 10/08/2002 01:33:37 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1266 Hello, We're having some serious problems with one of our vserver enabled boxes. We're seeing a lot of messages like this: Oct 8 18:29:42 kernel: NET: 199 messages suppressed. Oct 8 18:29:42 kernel: Neighbour table overflow. Oct 8 18:29:46 kernel: NET: 173 messages suppressed. Oct 8 18:29:46 kernel: Neighbour table overflow. Linux version 2.4.19ctx-13 (root@machine) (gcc version 2.96 20000731 (Red Hat Linux 7.3 2.96-110)) #2 SMP Mon Aug 26 14:08:27 GMT 2002 I checked the uptime: 6:30pm up 3 days, 14:04, 1 user, load average: 0.12, 0.06, 0.05 And the interface: ifconfig -a eth0 Link encap:Ethernet HWaddr 00:04:76:B9:8C:77 inet addr: Bcast: Mask: UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:6673856 errors:0 dropped:0 overruns:110 frame:0 TX packets:229078704 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:809848397 (772.3 Mb) TX bytes:1863256636 (1776.9 Mb) Interrupt:10 Base address:0x9000 There are a HUGE number of transmit packets in only 3 days of uptime. This is a very lightly loaded box only doing some e-mail hosting. Does anyone have any ideas, because I think this system is flooding our network and causing some serious problems for us. Thanks! Justin From vserver.error@solucorp.qc.ca Tue Oct 8 15:51:14 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g98JpA013007; Tue, 8 Oct 2002 15:51:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g98JL7724311 for vserver.list; Tue, 8 Oct 2002 15:21:07 -0400 Received: from e-biz.lu (stingray.e-hosting.lu [212.24.214.193]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g98JL6Z24306 for ; Tue, 8 Oct 2002 15:21:06 -0400 Received: from simon.lan (pppoe63-luxdsl-066.pt.lu [213.166.63.66]) by e-biz.lu (8.11.6/8.11.6) with ESMTP id g98JLwc27101 for ; Tue, 8 Oct 2002 21:21:58 +0200 Content-Type: text/plain; charset="iso-8859-1" From: Georges Toth To: vserver@solucorp.qc.ca Subject: Re: [vserver] gcc 3.2 Date: Tue, 8 Oct 2002 21:21:53 +0200 User-Agent: KMail/1.4.3 References: In-Reply-To: MIME-Version: 1.0 Message-Id: <200210082121.53202.georges@norm.lu> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g98JL6Z24306 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1267 > You mention gcc3; is it the problem of some of the utilities having been > compiled against different library version (compiling with -static will > should solve this if this is the problem). no.... but i'll try it with -static anyway > Is SSH in the vserver listening on the right IP/ports? Does `su' without a > username (to root) work? Do you have any problems (or can you find out any > information by doing a `vserver enter' from the host server? yeah, everything's setup correctly....su didn't work at all, ftp neither... i finally found out what the problem was ;-). as /dev/pts isn't needed on my distro (gentoo 1.4rc1, devfs, gcc3.2,....), there was no support for that in the kernel. after recompiling the kernel with that option turned on, everything works fine now. -- regards, Georges Toth From vserver.error@solucorp.qc.ca Tue Oct 8 16:01:44 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g98K1d013101; Tue, 8 Oct 2002 16:01:39 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g98JRoP24523 for vserver.list; Tue, 8 Oct 2002 15:27:50 -0400 Received: from e-biz.lu (stingray.e-hosting.lu [212.24.214.193]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g98JRnZ24518 for ; Tue, 8 Oct 2002 15:27:49 -0400 Received: from simon.lan (pppoe63-luxdsl-066.pt.lu [213.166.63.66]) by e-biz.lu (8.11.6/8.11.6) with ESMTP id g98JSfc28980 for ; Tue, 8 Oct 2002 21:28:41 +0200 Content-Type: text/plain; charset="iso-8859-1" From: Georges Toth To: vserver@solucorp.qc.ca Subject: Re: [vserver] gcc 3.2 Date: Tue, 8 Oct 2002 21:28:36 +0200 User-Agent: KMail/1.4.3 References: <200210081731.37459.georges@norm.lu> <1034095877.2419.2.camel@mfly.nn.lan> In-Reply-To: <1034095877.2419.2.camel@mfly.nn.lan> MIME-Version: 1.0 Message-Id: <200210082128.36506.georges@norm.lu> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g98JRnZ24518 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1268 > A personal note... you might have been too quick jumping on the 3.2 > vagon... hmmm, it's stable, and i haven't had any problems so far, on the four machines i'm running it on. redhat 8 is based on gcc3.2 (afaik) as well... > 3.2 is *not* binary compatible with earlier versions (i.e. not even > 3.x), so this is probably your problem. the problem was that /dev/pts support was turned off.... but i'm still wondering why i'm not able to compile the vserver-programs... here's the ouput i get: gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" chbind.cc syscall.o -o chbind \ -lstdc++ In file included from chbind.cc:16: vutil.h:26: 'string' is used as a type, but is not defined as a type. vutil.h:27: 'string' is used as a type, but is not defined as a type. vutil.h:28: parse error before `&' token vutil.h:31: missing ';' before right brace vutil.h:33: ISO C++ forbids defining types within return type vutil.h:33: semicolon missing after declaration of `class PACKAGE' vutil.h: In function `int PACKAGE(const char*, const char*)': vutil.h:34: only constructors take base initializers vutil.h:34: confused by earlier errors, bailing out make: *** [chbind] Error 1 -- regards, Georges Toth From vserver.error@solucorp.qc.ca Tue Oct 8 18:03:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g98M3P014482; Tue, 8 Oct 2002 18:03:25 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g98L7WJ27613 for vserver.list; Tue, 8 Oct 2002 17:07:32 -0400 Received: from nninfo2.comm.it ([213.92.77.123]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g98L7WZ27608 for ; Tue, 8 Oct 2002 17:07:32 -0400 Received: from [192.168.3.132] (host65-183.pool80116.interbusiness.it [80.116.183.65]) by nninfo2.comm.it (8.9.3/8.9.3) with ESMTP id XAA30768 for ; Tue, 8 Oct 2002 23:08:24 +0200 Subject: Re: [vserver] gcc 3.2 From: Dave To: vserver@solucorp.qc.ca In-Reply-To: <200210082128.36506.georges@norm.lu> References: <200210081731.37459.georges@norm.lu> <1034095877.2419.2.camel@mfly.nn.lan> <200210082128.36506.georges@norm.lu> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 08 Oct 2002 23:00:30 +0200 Message-Id: <1034110861.2716.3.camel@mfly.nn.lan> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1269 > gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" chbind.cc syscall.o -o > chbind \ > -lstdc++ > In file included from chbind.cc:16: > vutil.h:26: 'string' is used as a type, but is not defined as a type. > vutil.h:27: 'string' is used as a type, but is not defined as a type. Hmmm.... I need some sleep, so no time to check, but it looks like gcc is compiling with standard C instead of using the C++ string type which is in the stl. maybe compiling with g++ will fix it (or using a proper parameter to gcc). Give it a try... Dave. PS: rh8 is based on 3.2, but don't forget their use of the unreleased 2.96 till now. However, I was referring to the supposed incompatibilities in the binary formats (this comes from my memory, so I apologize if I'm not exact). From vserver.error@solucorp.qc.ca Wed Oct 9 01:29:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g995Tb018671; Wed, 9 Oct 2002 01:29:37 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g994B5Y08197 for vserver.list; Wed, 9 Oct 2002 00:11:05 -0400 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g994B5Z08192 for ; Wed, 9 Oct 2002 00:11:05 -0400 Received: from remtk.solucorp.qc.ca (g36-106.citenet.net [206.123.36.106]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g994JKK86160 for ; Wed, 9 Oct 2002 00:19:20 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g993Ynj06269 for vserver@solucorp.qc.ca; Tue, 8 Oct 2002 23:34:49 -0400 From: Jacques Gelinas Date: Tue, 8 Oct 2002 23:34:49 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] gcc 3.2 References: <200210081731.37459.georges@norm.lu> In-Reply-To: <200210081731.37459.georges@norm.lu> X-mailer: tlmpmail 0.6 Message-ID: <20021008233449.ead80dbdef56@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1270 On Tue, 8 Oct 2002 17:31:37 -0500, Georges Toth wrote > hi, > > since i'm using a gcc3.2 based linux distro, i'm no longer able to compile the > vserver sources.....get some strange errors... > but the kernel compiled without any probs. In vutil.h, add after the #include chunk using namespace std; This fixes the compilation issue. Another bug shows on rh8. I change the -O3 to -O and then some utilities starts to compile properly. Very odd... I will release a new vserver package this week. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Oct 9 02:40:08 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g996e5019326; Wed, 9 Oct 2002 02:40:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g995vdf11383 for vserver.list; Wed, 9 Oct 2002 01:57:39 -0400 Received: from bubble.inetflex.com (bubble.inetflex.com [216.234.161.130]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g995vcZ11378 for ; Wed, 9 Oct 2002 01:57:38 -0400 Received: (qmail 65271 invoked from network); 9 Oct 2002 05:58:29 -0000 Received: from modemcable038.67-200-24.mtl.mc.videotron.ca (24.200.67.38) by bubble.inetflex.com with SMTP; 9 Oct 2002 05:58:29 -0000 From: Cedric Veilleux Organization: Neopeak Internet Solutions inc. To: vserver@solucorp.qc.ca Subject: Re: [vserver] gcc 3.2 Date: Wed, 9 Oct 2002 01:58:40 -0400 User-Agent: KMail/1.4.7 References: <200210081731.37459.georges@norm.lu> <20021008233449.ead80dbdef56@remtk.solucorp.qc.ca> In-Reply-To: <20021008233449.ead80dbdef56@remtk.solucorp.qc.ca> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Disposition: inline Message-Id: <200210090158.41108.cedric@neopeak.com> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g995vcZ11378 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1271 I am running gcc 3.2. I made the change in vutil.h which fixed the problem but another one seems to have popped up for me. Here's the full output. cedric@blackfish vserver-0.20 $ make gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" chbind.cc syscall.o -o chbin d \ -lstdc++ gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" chcontext.cc syscall.o -o ch context \ -lstdc++ gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" reducecap.cc syscall.o -o re ducecap \ -lstdc++ gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" rebootmgr.cc -o rebootmgr \ -lstdc++ gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" vreboot.cc -o vreboot \ -lstdc++ gcc -funsigned-char -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" readlink.cc -o readlink \ -lstdc++ g++ -c -o vutil.o vutil.cc gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" vunify.cc vutil.o -o vunify \ -lstdc++ vunify.cc: In member function `bool printer::operator()(T) [with T = std::string]': /usr/include/g++-v32/bits/stl_algo.h:157: instantiated from `_Function std::fo r_each(_InputIter, _InputIter, _Function) [with _InputIter = std::_List_iterator , _Function = printer]' vunify.cc:378: instantiated from here vunify.cc:167: warning: no return statement in function returning non-void gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" vbuild.cc vutil.o -o vbuild \ -lstdc++ gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" vserver-stat.c syscall.o -o vserver-stat gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" showattr.cc -o showattr \ -lstdc++ gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" vdu.cc -o vdu \ -lstdc++ vdu.cc:10: parse error before `&' token vdu.cc: In function `int vdu_onedir(...)': vdu.cc:13: `path' undeclared (first use this function) vdu.cc:13: (Each undeclared identifier is reported only once for each function it appears in.) vdu.cc:50: `size' undeclared (first use this function) vdu.cc: In function `int main(int, char**)': vdu.cc:70: `string' undeclared (first use this function) make: *** [vdu] Error 1 Thank you, Cedric On October 9, 2002 12:34 am, you wrote: > On Tue, 8 Oct 2002 17:31:37 -0500, Georges Toth wrote > > > hi, > > > > since i'm using a gcc3.2 based linux distro, i'm no longer able to > > compile the vserver sources.....get some strange errors... > > but the kernel compiled without any probs. > > In vutil.h, add after the #include chunk > > using namespace std; > > This fixes the compilation issue. Another bug shows on rh8. I change the > -O3 to -O and then some utilities starts to compile properly. Very odd... > > I will release a new vserver package this week. > > > --------------------------------------------------------- > Jacques Gelinas > vserver: run general purpose virtual servers on one box, full speed! > http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Wed Oct 9 03:46:17 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g997kE019770; Wed, 9 Oct 2002 03:46:14 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g997C6L13864 for vserver.list; Wed, 9 Oct 2002 03:12:06 -0400 Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g997C4Z13859 for ; Wed, 9 Oct 2002 03:12:05 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 786317A503; Wed, 9 Oct 2002 08:12:57 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 704FC92085 for ; Wed, 9 Oct 2002 08:12:57 +0100 (BST) Date: Wed, 9 Oct 2002 08:12:57 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] vserver neighbour table overflow problems In-Reply-To: Message-ID: X-GPG-Key: DSA/E90CFA24 X-message-flag: Please use plain text when replying--not HTML. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1272 On Tue, 8 Oct 2002, Justin M Kuntz wrote: > Oct 8 18:29:42 kernel: NET: 199 messages suppressed. > Oct 8 18:29:42 kernel: Neighbour table overflow. > > RX packets:6673856 errors:0 dropped:0 overruns:110 frame:0 > TX packets:229078704 errors:0 dropped:0 overruns:0 carrier:0 > RX bytes:809848397 (772.3 MB) TX bytes:1863256636 (1776.9 MB) > > There are a HUGE number of transmit packets in only 3 days of uptime. The messages relating to these from Googleing are mostly related to `ARP' requests (something to do with ``buckets being full'' :-). The /traffic/ out is not very high at all, although as you say the number of packets /is/, lots of small `ARP' packets would be causing this. I haven't found any firm answers and my next step would be reading the kernel source to find what paths lead to the error. Somebody mentioned lots of UDP packets being pushed at an interface that isn't fully up yet might cause it? I haven't looked yet, but I'm guess you want to start grepping somewhere around: linux/net/core/neighbour.c This madness has been reported else-where, so is /probably not `vserver' specific/. My best [and probably useless?] suggestion is changing the NIC to a different card/brand and swapping the switch port if this is possible. Check that it is auto-configuring OK aswell. Hope that helps, keep us informed! -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Wed Oct 9 03:55:11 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g997t5019828; Wed, 9 Oct 2002 03:55:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g997IYM14082 for vserver.list; Wed, 9 Oct 2002 03:18:34 -0400 Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g997IVZ14077 for ; Wed, 9 Oct 2002 03:18:32 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id BC90A7A503; Wed, 9 Oct 2002 08:19:24 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id B62DC92085 for ; Wed, 9 Oct 2002 08:19:24 +0100 (BST) Date: Wed, 9 Oct 2002 08:19:24 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] debian 3.0 and vserver utilities In-Reply-To: <000b01c26ef8$e5152c30$0301a8c0@barf> Message-ID: X-GPG-Key: DSA/E90CFA24 X-message-flag: Please use plain text when replying--not HTML. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1273 On Tue, 8 Oct 2002, takashi wrote: *cough* HTML emails... :( > 1- vserver ONBOOT=yes do vservers do not start on boot with debian 3.0 > 2- /etc/init.d/rebootmgr: /etc/rc.d/init.d/functions: No such file or directory > 3 ./vreboot connect /dev/reboot (Connection refused Jack's latest set of the `vserver vtilities' /should/ have support for Debian properly although you may have found something that isn't yet? Are you using the latest set (0.20 as of writing) from: http://www.solucorp.qc.ca/miscprj/s_context.hc?prjstate=1&nodoc=1 I apologies; I have Debian packages made and should do the final few percent prettifying and upload them. In the meantime, if hand edit the source and replace all references to: /etc/rc.d/init.d/[...] with: /etc/init.d/[...] That *should* cure the error you've given above. -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Wed Oct 9 04:52:51 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g998qj022175; Wed, 9 Oct 2002 04:52:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g998NUo17318 for vserver.list; Wed, 9 Oct 2002 04:23:30 -0400 Received: from e-biz.lu (stingray.e-hosting.lu [212.24.214.193]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g998NNZ17313 for ; Wed, 9 Oct 2002 04:23:26 -0400 Received: from norm.lu (localhost [127.0.0.1]) by e-biz.lu (8.11.6/8.11.6) with ESMTP id g998OFc15326 for ; Wed, 9 Oct 2002 10:24:15 +0200 From: "Georges Toth" To: vserver@solucorp.qc.ca Subject: Re: [vserver] gcc 3.2 Date: Wed, 9 Oct 2002 09:24:15 +0100 Message-Id: <20021009082415.M37947@norm.lu> In-Reply-To: <1034110861.2716.3.camel@mfly.nn.lan> References: <200210081731.37459.georges@norm.lu> <1034095877.2419.2.camel@mfly.nn.lan> <200210082128.36506.georges@norm.lu> <1034110861.2716.3.camel@mfly.nn.lan> X-Mailer: Open WebMail 1.70 20020712 X-OriginatingIP: 158.64.68.254 (georges@norm.lu) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1274 > Hmmm.... I need some sleep, so no time to check, but it looks like > gcc is compiling with standard C instead of using the C++ string > type which is in the stl. maybe compiling with g++ will fix it (or > using a proper parameter to gcc). > > Give it a try... ok, thnx i'll try that yesterday i thought my problems with logins not working, were solved, after adding support for /dev/pts, but they're not ;-(. ssh-root login works, but any other login doesn't work. in fact NO program works which accesses files. and even if logged in as root, and the user variable in shell, set to root, actions like hostname, end with an "must be root" error. and logs are filled with "cannot open file, permission denied" errors. do you have an idea what the problem might be ? could it be related to vserver progs not having been compiled with gcc3.2 on that machine ? (machine running kernel2.4.19+xfs+vserver, devfs, /dev/pts, latest stable libs,...) i seem to be forced to switch back to redhat ;-(..... hopefully it works with rh8... regards, Georges Toth From vserver.error@solucorp.qc.ca Wed Oct 9 04:58:28 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g998wN022197; Wed, 9 Oct 2002 04:58:26 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g998PRm17388 for vserver.list; Wed, 9 Oct 2002 04:25:27 -0400 Received: from e-biz.lu (stingray.e-hosting.lu [212.24.214.193]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g998POZ17383 for ; Wed, 9 Oct 2002 04:25:25 -0400 Received: from norm.lu (localhost [127.0.0.1]) by e-biz.lu (8.11.6/8.11.6) with ESMTP id g998QHc15945 for ; Wed, 9 Oct 2002 10:26:17 +0200 From: "Georges Toth" To: vserver@solucorp.qc.ca Subject: re: [vserver] gcc 3.2 Date: Wed, 9 Oct 2002 09:26:17 +0100 Message-Id: <20021009082617.M41204@norm.lu> In-Reply-To: <20021008233449.ead80dbdef56@remtk.solucorp.qc.ca> References: <200210081731.37459.georges@norm.lu> <20021008233449.ead80dbdef56@remtk.solucorp.qc.ca> X-Mailer: Open WebMail 1.70 20020712 X-OriginatingIP: 158.64.68.254 (georges@norm.lu) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1275 > In vutil.h, add after the #include chunk > > using namespace std; > > This fixes the compilation issue. Another bug shows on rh8. I change > the -O3 to -O and then some utilities starts to compile properly. > Very odd... > > I will release a new vserver package this week. k, i'll give it a try regards, Georges Toth From vserver.error@solucorp.qc.ca Wed Oct 9 05:47:12 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g999l5022573; Wed, 9 Oct 2002 05:47:05 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g999Fbg18915 for vserver.list; Wed, 9 Oct 2002 05:15:37 -0400 Received: from nninfo2.comm.it ([213.92.77.123]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g999FaZ18910 for ; Wed, 9 Oct 2002 05:15:36 -0400 Received: from [192.168.3.132] (host65-183.pool80116.interbusiness.it [80.116.183.65]) by nninfo2.comm.it (8.9.3/8.9.3) with ESMTP id LAA16891 for ; Wed, 9 Oct 2002 11:16:28 +0200 Subject: Re: [vserver] gcc 3.2 From: Dave To: vserver@solucorp.qc.ca In-Reply-To: <20021009082415.M37947@norm.lu> References: <200210081731.37459.georges@norm.lu> <1034095877.2419.2.camel@mfly.nn.lan> <200210082128.36506.georges@norm.lu> <1034110861.2716.3.camel@mfly.nn.lan> <20021009082415.M37947@norm.lu> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 09 Oct 2002 13:15:52 +0200 Message-Id: <1034162182.1869.10.camel@mfly.nn.lan> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1276 On Wed, 2002-10-09 at 10:24, Georges Toth wrote: > yesterday i thought my problems with logins not working, were solved, after > adding support for /dev/pts, but they're not ;-(. > ssh-root login works, but any other login doesn't work. > in fact NO program works which accesses files. > and even if logged in as root, and the user variable in shell, set to root, > actions like hostname, end with an "must be root" error. > and logs are filled with "cannot open file, permission denied" errors. file access is in the glibc library. If binary incompatibility is there, you can expect this and all sort of other problems. > i seem to be forced to switch back to redhat ;-(..... hopefully it works with > rh8... Hmm... Think of rh8 as RedHat 8.0. The .0 is very important, in my opinion. Think of the respin of redhat 7.0. Think of all the problems with 6.0. Get the point? Now, think of what you'll gain with 3.2 versus the old gcc, and try to answer some questions. Do you get faster programs? By how much? Do you get smaller programs? Do you loose compatibility? Why do you have to disable some optimizations for the code to work or to compile cleanly? and... at the end... Is this all worth it? Dave. From vserver.error@solucorp.qc.ca Wed Oct 9 05:50:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g999nv022603; Wed, 9 Oct 2002 05:49:57 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g999AZv18781 for vserver.list; Wed, 9 Oct 2002 05:10:35 -0400 Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g999AYZ18776 for ; Wed, 9 Oct 2002 05:10:35 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 4E6547A503; Wed, 9 Oct 2002 10:11:27 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 4D79B92085 for ; Wed, 9 Oct 2002 10:11:27 +0100 (BST) Date: Wed, 9 Oct 2002 10:11:27 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] gcc 3.2 In-Reply-To: <20021009082415.M37947@norm.lu> Message-ID: X-GPG-Key: DSA/E90CFA24 X-message-flag: Please use plain text when replying--not HTML. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1277 On Wed, 9 Oct 2002, Georges Toth wrote: > yesterday i thought my problems with logins not working, were solved, > [..] ssh-root login works, but any other login doesn't work. Is there any error-output from using `-v' to SSH: $ ssh -v user@vserver > in fact NO program works which accesses files. Is this even when you've logged in as root to the vserver? > and even if logged in as root, and the user variable in shell, Are you definitely ``root'' within the vserver; what does this show: $ grep -A99 s_context /proc/self/status > actions like hostname, end with an "must be root" error. They don't care about the environment ("USER="), only the numeric user id, which you can find out by doing (is this zero?): $ id > and logs are filled with "cannot open file, permission denied" errors. Can you create/view files with simple utilities like: $ touch test-file $ cat > test-file-2 $ cat /etc/passwd > (machine running kernel2.4.19+xfs+vserver, devfs, /dev/pts, latest stable > libs,...) Is there a conflict with devfs and it's handling of `/dev' nodes? Are other people running with devfs successfully? I really have no idea how it works /within/ vservers... -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Wed Oct 9 07:20:21 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g99BKB023337; Wed, 9 Oct 2002 07:20:11 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g999jtw19894 for vserver.list; Wed, 9 Oct 2002 05:45:55 -0400 Received: from endo.mpex.net (endo.mpex.net [80.239.136.137]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g999jsZ19889 for ; Wed, 9 Oct 2002 05:45:54 -0400 Received: (qmail 21698 invoked by uid 509); 9 Oct 2002 09:46:41 -0000 Received: from unknown (HELO mpex.net) (lbraeuer@mpex.net@194.29.228.41) by 0 with SMTP; 9 Oct 2002 09:46:41 -0000 Message-ID: <3DA3FAFF.7040406@mpex.net> Date: Wed, 09 Oct 2002 11:46:39 +0200 From: Lars Braeuer Organization: MPeX.net GmbH User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] gcc 3.2 References: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1278 I had a problem with ssh too. it worked to a certain point and then it just stuck. at another point I wasn't able to su from a user to root. I found out that somehow several device nodes were missing. I was able to solve the problem by creating the nodes using the mknod binary from the host system. crw-rw-rw- 1 root root 5, 2 Sep 15 15:46 ptmx crw-rw-rw- 1 root root 1, 9 Sep 15 18:01 urandom crw-rw-rw- 1 root root 5, 0 Oct 5 23:32 tty crw--w---- 1 root tty 4, 0 Oct 5 23:32 tty0 crw-rw---- 1 root tty 4, 1 Oct 5 23:32 tty1 crw--w---- 1 root tty 4, 10 Oct 5 23:32 tty10 crw--w---- 1 root tty 4, 11 Oct 5 23:32 tty11 crw--w---- 1 root tty 4, 12 Oct 5 23:32 tty12 crw--w---- 1 root tty 4, 13 Oct 5 23:32 tty13 crw--w---- 1 root tty 4, 14 Oct 5 23:32 tty14 crw--w---- 1 root tty 4, 15 Oct 5 23:32 tty15 crw--w---- 1 root tty 4, 16 Oct 5 23:32 tty16 crw--w---- 1 root tty 4, 17 Oct 5 23:32 tty17 crw--w---- 1 root tty 4, 18 Oct 5 23:32 tty18 crw--w---- 1 root tty 4, 19 Oct 5 23:32 tty19 crw-rw---- 1 root tty 4, 2 Oct 5 23:32 tty2 crw--w---- 1 root tty 4, 20 Oct 5 23:32 tty20 crw-rw---- 1 root tty 4, 3 Oct 5 23:32 tty3 crw-rw---- 1 root tty 4, 4 Oct 5 23:32 tty4 crw-rw---- 1 root tty 4, 5 Oct 5 23:32 tty5 crw-rw---- 1 root tty 4, 6 Oct 5 23:32 tty6 crw--w---- 1 root tty 4, 7 Oct 5 23:32 tty7 crw--w---- 1 root tty 4, 8 Oct 5 23:32 tty8 crw--w---- 1 root tty 4, 9 Oct 5 23:32 tty9 just wanted to let you and other people know. Paul Sladen wrote: > On Wed, 9 Oct 2002, Georges Toth wrote: > >>yesterday i thought my problems with logins not working, were solved, >>[..] ssh-root login works, but any other login doesn't work. > > > Is there any error-output from using `-v' to SSH: > > $ ssh -v user@vserver > > >>in fact NO program works which accesses files. > > > Is this even when you've logged in as root to the vserver? > > >>and even if logged in as root, and the user variable in shell, > > > Are you definitely ``root'' within the vserver; what does this show: > > $ grep -A99 s_context /proc/self/status > > >>actions like hostname, end with an "must be root" error. > > > They don't care about the environment ("USER="), only the numeric user id, > which you can find out by doing (is this zero?): > > $ id > > >>and logs are filled with "cannot open file, permission denied" errors. > > > Can you create/view files with simple utilities like: > > $ touch test-file > $ cat > test-file-2 > $ cat /etc/passwd > > >>(machine running kernel2.4.19+xfs+vserver, devfs, /dev/pts, latest stable >>libs,...) > > > Is there a conflict with devfs and it's handling of `/dev' nodes? > Are other people running with devfs successfully? I really have no > idea how it works /within/ vservers... > > -Paul From vserver.error@solucorp.qc.ca Wed Oct 9 07:56:18 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g99Bu8023565; Wed, 9 Oct 2002 07:56:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g99AKTa20951 for vserver.list; Wed, 9 Oct 2002 06:20:29 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g99AKRZ20946 for ; Wed, 9 Oct 2002 06:20:28 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id 8CAD5FDD for ; Wed, 9 Oct 2002 12:21:48 +0200 (CEST) Date: Wed, 9 Oct 2002 12:21:18 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: Re: [vserver] gcc 3.2 Message-Id: <20021009122118.071549d6.kl@vsen.dk> In-Reply-To: <1034162182.1869.10.camel@mfly.nn.lan> References: <200210081731.37459.georges@norm.lu> <1034095877.2419.2.camel@mfly.nn.lan> <200210082128.36506.georges@norm.lu> <1034110861.2716.3.camel@mfly.nn.lan> <20021009082415.M37947@norm.lu> <1034162182.1869.10.camel@mfly.nn.lan> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1279 On 09 Oct 2002 13:15:52 +0200 Dave wrote: > > Think of rh8 as RedHat 8.0. The .0 is very important, in my opinion. > Think of the respin of redhat 7.0. Think of all the problems with 6.0. > Get the point? > This is not necessarily the case, although I grant you that 7.0 and 6.0 had problems. Mandrake 9.0 has for instance gotten VERY good reviews (no screwups- and far better than Mandrake 8.2), and it too is gcc-3.2 based. > Now, think of what you'll gain with 3.2 versus the old gcc, and try to > answer some questions. > > Do you get faster programs? By how much? I compared bzip2 from my RH7.3 - with the Gentoo gcc-3.2 version - it was approx. 7-10% faster - even without profiling (which is new in gcc-3.x) - and I've seen tests that with profiling bzip2 gets a 25% speed increase (and yes I know bzip2 is special in regards to profiling and probably won't gain as much with all other programs). Also, gcc-3.2 has targets (optimizations) for all the processors - which the older gcc's don't. This does provide for a big speed increase. > Do you get smaller programs? not necessarily - especially not with profiling - but I've got the diskspace and ram I need - speed is my issue :-) > Do you loose compatibility? Nope. > Why do you have to disable some optimizations for the code to work or > to compile cleanly? The same goes for the gcc-2.9x series - you couldn't compile everything with -03 for instance. > and... at the end... Is this all worth it? > Definetely. the new GCC has many great features and enhancements, that will improve the performance of my Linux system. -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Wed Oct 9 09:15:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g99DFX024298; Wed, 9 Oct 2002 09:15:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g99Bi7k23390 for vserver.list; Wed, 9 Oct 2002 07:44:07 -0400 Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g99Bi6Z23383 for ; Wed, 9 Oct 2002 07:44:06 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id 749787A503; Wed, 9 Oct 2002 12:44:59 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 73AA892085 for ; Wed, 9 Oct 2002 12:44:59 +0100 (BST) Date: Wed, 9 Oct 2002 12:44:58 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] /dev (was: gcc 3.2) In-Reply-To: <3DA3FAFF.7040406@mpex.net> Message-ID: X-GPG-Key: DSA/E90CFA24 X-message-flag: Please use plain text when replying--not HTML. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1280 On Wed, 9 Oct 2002, Lars Braeuer wrote: > > I found out that somehow several device nodes were missing. I was able to solve the > problem by creating the nodes using the mknod binary from the host system. These /should/ be either created by your self, or with the `vserver build' command (read the source to see what it's doing--it's only a shell script). > crw--w---- 1 root tty 4, 0 Oct 5 23:32 tty[0-nn] You probably don't want these ("tty0-tty12") present in the vserver--they are the virtual-consoles on the physical machines and will therefore leave each vserver fighting for them. Whilst it is possible to create a different tty entry in each vserver and have one virtual-console per vserver, you probably want to leave them as console for logging into the host-server. I've just been trying to find a link to this in the vserver FAQ, but I can't, so for reference, this is probably want you want: crw-rw-rw- 1 root root 1, 7 May 14 08:22 full crw-rw-rw- 1 root root 1, 3 May 14 08:22 null crw-rw-rw- 1 root tty 5, 2 Oct 9 12:19 ptmx drwxr-xr-x 2 root root 0 Oct 5 22:01 pts crw-rw-rw- 1 root root 1, 8 May 14 08:22 random crw-rw-rw- 1 root tty 5, 0 May 14 08:22 tty cr--r--r-- 1 root root 1, 9 May 14 08:22 urandom crw-rw-rw- 1 root root 1, 5 May 14 08:22 zero Also, under Debian, `/dev/pts' needs to be mounted setgid: devpts on /vservers/alpha type devpts (rw,gid=5,mode=620) (Group 5 is the `tty' group as above). -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Wed Oct 9 10:03:23 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g99E3H024900; Wed, 9 Oct 2002 10:03:18 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g99DN0M27599 for vserver.list; Wed, 9 Oct 2002 09:23:00 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g99DMwZ27594 for ; Wed, 9 Oct 2002 09:22:59 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id CF07CFDD for ; Wed, 9 Oct 2002 15:24:19 +0200 (CEST) Date: Wed, 9 Oct 2002 15:23:49 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: Re: [vserver] gcc 3.2 Message-Id: <20021009152349.7e5cdd9e.kl@vsen.dk> In-Reply-To: <200210090158.41108.cedric@neopeak.com> References: <200210081731.37459.georges@norm.lu> <20021008233449.ead80dbdef56@remtk.solucorp.qc.ca> <200210090158.41108.cedric@neopeak.com> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1281 On Wed, 9 Oct 2002 01:58:40 -0400 Cedric Veilleux wrote: > I am running gcc 3.2. I made the change in vutil.h which fixed the > problem but another one seems to have popped up for me. Here's the > full output. > I have the exact same problem :-( I hope somebody knows a solution - so I can use my nice new Gentoo server with vserver :-) I tried changing the GCCOPTS to -0 instead of -03 - but still I get the same problem. -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Wed Oct 9 10:50:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g99EoG025401; Wed, 9 Oct 2002 10:50:16 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g99EKqm29534 for vserver.list; Wed, 9 Oct 2002 10:20:52 -0400 Received: from e-biz.lu (stingray.e-hosting.lu [212.24.214.193]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g99EKpZ29529 for ; Wed, 9 Oct 2002 10:20:51 -0400 Received: from simon.lan (pppoe63-luxdsl-066.pt.lu [213.166.63.66]) by e-biz.lu (8.11.6/8.11.6) with ESMTP id g99ELic23583 for ; Wed, 9 Oct 2002 16:21:44 +0200 Content-Type: text/plain; charset="iso-8859-1" From: Georges Toth To: vserver@solucorp.qc.ca Subject: Re: [vserver] gcc 3.2 Date: Wed, 9 Oct 2002 16:21:35 +0200 User-Agent: KMail/1.4.3 References: <3DA3FAFF.7040406@mpex.net> In-Reply-To: <3DA3FAFF.7040406@mpex.net> MIME-Version: 1.0 Message-Id: <200210091621.35143.georges@norm.lu> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g99EKpZ29529 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1282 On Wednesday 09 October 2002 11:46, Lars Braeuer wrote: > I found out that somehow several device nodes were missing. I was able to > solve the problem by creating the nodes using the mknod binary from the > host system. those devices are present in my dev folder, and permissions are correct ....i've tried to bind the host dev folder to the vserver.... as on the host everything works correctly that should have solved the problem... but it didn't, so the there has to be soemthing else wrong. -- regards, Georges Toth From vserver.error@solucorp.qc.ca Wed Oct 9 11:03:49 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g99F3f025560; Wed, 9 Oct 2002 11:03:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g99EFf829345 for vserver.list; Wed, 9 Oct 2002 10:15:41 -0400 Received: from e-biz.lu (stingray.e-hosting.lu [212.24.214.193]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g99EFdZ29340 for ; Wed, 9 Oct 2002 10:15:40 -0400 Received: from simon.lan (pppoe63-luxdsl-066.pt.lu [213.166.63.66]) by e-biz.lu (8.11.6/8.11.6) with ESMTP id g99EGWc22038 for ; Wed, 9 Oct 2002 16:16:32 +0200 Content-Type: text/plain; charset="iso-8859-1" From: Georges Toth To: vserver@solucorp.qc.ca Subject: Re: [vserver] gcc 3.2 Date: Wed, 9 Oct 2002 16:16:20 +0200 User-Agent: KMail/1.4.3 References: In-Reply-To: MIME-Version: 1.0 Message-Id: <200210091616.20099.georges@norm.lu> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g99EFdZ29340 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1283 > Is there any error-output from using `-v' to SSH: > $ ssh -v user@vserver here's the debug output....: simon@xxxx:~> ssh -v -2 -C -l sim0n xxx.xxx.xxx.xxx OpenSSH_3.4p1, SSH protocols 1.5/2.0, OpenSSL 0x0090607f debug1: Reading configuration data /etc/ssh/ssh_config debug1: Rhosts Authentication disabled, originating port will not be trusted. debug1: ssh_connect: needpriv 0 debug1: Connecting to xxx.xxx.xxx.xxx [xxx.xxx.xxx.xxx] port 22. debug1: Connection established. debug1: identity file /home/simon/.ssh/id_rsa type -1 debug1: identity file /home/simon/.ssh/id_dsa type 2 debug1: Remote protocol version 1.99, remote software version OpenSSH_3.4p1 debug1: match: OpenSSH_3.4p1 pat OpenSSH* Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_3.4p1 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server->client aes128-cbc hmac-md5 zlib debug1: kex: client->server aes128-cbc hmac-md5 zlib debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: dh_gen_key: priv key bits set: 122/256 debug1: bits set: 1590/3191 debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Host 'xxx.xxx.xxx.xxx' is known and matches the RSA host key. debug1: Found key in /home/simon/.ssh/known_hosts:9 debug1: bits set: 1607/3191 debug1: ssh_rsa_verify: signature correct debug1: kex_derive_keys debug1: newkeys: mode 1 debug1: Enabling compression at level 6. debug1: SSH2_MSG_NEWKEYS sent debug1: waiting for SSH2_MSG_NEWKEYS debug1: newkeys: mode 0 debug1: SSH2_MSG_NEWKEYS received debug1: done: ssh_kex2. debug1: send SSH2_MSG_SERVICE_REQUEST debug1: service_accept: ssh-userauth debug1: got SSH2_MSG_SERVICE_ACCEPT debug1: authentications that can continue: publickey,password,keyboard-interactive debug1: next auth method to try is publickey debug1: userauth_pubkey_agent: testing agent key /home/simon/.ssh/id_dsa debug1: authentications that can continue: publickey,password,keyboard-interactive debug1: try privkey: /home/simon/.ssh/id_rsa debug1: try pubkey: /home/simon/.ssh/id_dsa debug1: authentications that can continue: publickey,password,keyboard-interactive debug1: next auth method to try is keyboard-interactive debug1: authentications that can continue: publickey,password,keyboard-interactive debug1: next auth method to try is password sim0n@xxx.xxx.xxx.xxx's password: debug1: ssh-userauth2 successful: method password debug1: channel 0: new [client-session] debug1: send channel open 0 debug1: Entering interactive session. debug1: ssh_session2_setup: id 0 debug1: channel request 0: pty-req debug1: channel request 0: shell debug1: fd 3 setting TCP_NODELAY debug1: channel 0: open confirm rwindow 0 rmax 32768 debug1: channel_free: channel 0: client-session, nchannels 1 Connection to xxx.xxx.xxx.xxx closed by remote host. Connection to xxx.xxx.xxx.xxx closed. debug1: Transferred: stdin 0, stdout 0, stderr 91 bytes in 0.1 seconds debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 988.7 debug1: Exit status -1 debug1: compress outgoing: raw data 2257, compressed 1191, factor 0.53 debug1: compress incoming: raw data 215, compressed 91, factor 0.42 if i try to login with root, it works though (the shell is of course correctly checked..) > > in fact NO program works which accesses files. > Is this even when you've logged in as root to the vserver? if i log in as "root", i can _nearly_ do everything (stuff like hostname or so doesn't work, but compiling/installing stuff or starting services etc, does work) > > and even if logged in as root, and the user variable in shell, > Are you definitely ``root'' within the vserver; what does this show: > $ grep -A99 s_context /proc/self/status <> root # grep -A99 s_context /proc/self/status s_context: 2 [ 2] ctxticks: 170 0 20 ctxflags: 19 initpid: 2640 ipv4root: c5d618d4 ipv4root_bcast: dfd618d4 __NR_new_s_context: 243 __NR_set_ipv4root: 244 rev2 > They don't care about the environment ("USER="), only the numeric user id, > which you can find out by doing (is this zero?): > $ id yup: <> root # id uid=0(root) gid=0(root) groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel),11(floppy),20(dialout),26(tape),27(video) > Can you create/view files with simple utilities like: > $ touch test-file > $ cat > test-file-2 > $ cat /etc/passwd yeah, that works i've installed webmin, and it works to start services, change things.... but, i.e., the ftp server can't open the passwd file, webserver can't open files, ssh server closes the connection, su doesn't work,..... > > (machine running kernel2.4.19+xfs+vserver, devfs, /dev/pts, latest stable > > libs,...) > > Is there a conflict with devfs and it's handling of `/dev' nodes? > Are other people running with devfs successfully? I really have no > idea how it works /within/ vservers... i've tried to bind the real-host dev folder to the vhost dev folder....doesn't change anything ;-( -- regards, Georges Toth From vserver.error@solucorp.qc.ca Wed Oct 9 16:31:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g99KVA029182; Wed, 9 Oct 2002 16:31:13 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g99JjVW08224 for vserver.list; Wed, 9 Oct 2002 15:45:31 -0400 Received: from xenomorph.ws.gtrox.net (213-193-190-78.adsl.easynet.be [213.193.190.78]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g99JjTZ08219 for ; Wed, 9 Oct 2002 15:45:29 -0400 Received: from xenomorph.ws.gtrox.com (xenomorph.ws.gtrox.com [127.0.0.1]) by xenomorph.ws.gtrox.net (Postfix) with ESMTP id 361CD176A9 for ; Wed, 9 Oct 2002 21:46:21 +0200 (CEST) Subject: [vserver] new vserver From: Ivan Faes To: vserver@solucorp.qc.ca Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 09 Oct 2002 21:46:21 +0200 Message-Id: <1034192781.6175.1.camel@xenomorph.ws.gtrox.net> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1284 Hi I just started working with vserver. I have build some vservers with the vserver xx build and so on Buth what is the best way to make you first vserver and to use that one as a skel for the other vservers. also as small as possible. From vserver.error@solucorp.qc.ca Wed Oct 9 18:14:56 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g99MEj030129; Wed, 9 Oct 2002 18:14:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g99LXD011448 for vserver.list; Wed, 9 Oct 2002 17:33:13 -0400 Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g99LXCZ11443 for ; Wed, 9 Oct 2002 17:33:12 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g99LYGK10744 for ; Wed, 9 Oct 2002 14:34:16 -0700 Date: Wed, 9 Oct 2002 14:34:15 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] new vserver In-Reply-To: <1034192781.6175.1.camel@xenomorph.ws.gtrox.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1285 On 9 Oct 2002, Ivan Faes wrote: > Hi I just started working with vserver. > > I have build some vservers with the vserver xx build and so on > > > Buth what is the best way to make you first vserver and to use that one > as a skel for the other vservers. > > also as small as possible. What is small? This is the question and I have been pondering it for awhile. I just tried using the Linuxconf vserver module to build my base vserver and was not happy with either the minimal or full install. It probably was I wanted some 'optional' packages that I consider necssary and didn't automagically get them. (I still have more experimenting to do.) I'm on a RPM list and have got some suggestions as to how to figure out what packages require what other packages so I cam build a list and then only install those I want and need. For now I've made my base vserver from the main server and I'll start slicing and dicing out the fluff. You might try the same. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Wed Oct 9 18:26:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g99MQn030269; Wed, 9 Oct 2002 18:26:49 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g99LsE411985 for vserver.list; Wed, 9 Oct 2002 17:54:14 -0400 Received: from xenomorph.ws.gtrox.net (213-193-190-78.adsl.easynet.be [213.193.190.78]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g99LsDZ11980 for ; Wed, 9 Oct 2002 17:54:13 -0400 Received: from xenomorph.ws.gtrox.com (xenomorph.ws.gtrox.com [127.0.0.1]) by xenomorph.ws.gtrox.net (Postfix) with ESMTP id 3EE77176A9 for ; Wed, 9 Oct 2002 23:55:06 +0200 (CEST) Subject: Re: [vserver] new vserver From: Ivan Faes To: vserver@solucorp.qc.ca In-Reply-To: References: Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0.2 Date: 09 Oct 2002 23:55:06 +0200 Message-Id: <1034200506.6175.3.camel@xenomorph.ws.gtrox.net> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1286 Mm mine is now about 600 mb each a bith to big :-) that one is made with newvserver On Wed, 2002-10-09 at 23:34, Roderick A. Anderson wrote: > On 9 Oct 2002, Ivan Faes wrote: > > > Hi I just started working with vserver. > > > > I have build some vservers with the vserver xx build and so on > > > > > > Buth what is the best way to make you first vserver and to use that one > > as a skel for the other vservers. > > > > also as small as possible. > > What is small? This is the question and I have been pondering it for > awhile. I just tried using the Linuxconf vserver module to build my base > vserver and was not happy with either the minimal or full install. It > probably was I wanted some 'optional' packages that I consider necssary > and didn't automagically get them. (I still have more experimenting to > do.) > I'm on a RPM list and have got some suggestions as to how to figure out > what packages require what other packages so I cam build a list and then > only install those I want and need. > > For now I've made my base vserver from the main server and I'll start > slicing and dicing out the fluff. You might try the same. > > > Rod > -- > "Open Source Software - Sometimes you get more than you paid for..." > From vserver.error@solucorp.qc.ca Wed Oct 9 19:13:48 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g99NDg030612; Wed, 9 Oct 2002 19:13:42 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g99MgLJ13472 for vserver.list; Wed, 9 Oct 2002 18:42:21 -0400 Received: from pioneernet.net (mail.pioneernet.net [207.115.64.224]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g99MgKZ13467 for ; Wed, 9 Oct 2002 18:42:20 -0400 Date: Wed, 9 Oct 2002 15:43:13 -0700 Message-Id: <200210091543.AA131465422@pioneernet.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii From: "Cathy Sarisky" X-Sender: To: Subject: Re: [vserver] new vserver X-Mailer: Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1287 I'm spawning ~200MB vservers, POST unification. Of course, that includes (ununified) source code and compiled executables for PostgreSQL and AOLserver, in addition to all the usual stuff you might want on a server. I'd vote for building from the base server the FIRST time, doing a serious weeding job, and then using vbuild to build future servers off that one. Or at least, that's how I do it. RPMs that can DEFINITELY go: iptables/chains/etc anything firewall related (requires iptables/chains/etc) kudzu <-- evil. May hang during vserver start if the vserver user turns it on with chkconfig. Anything related to the sound card (duh.) Anything related to burning CDs (duh. But I got both on my last dedicated server installed by the server provided, so watch for it.) almost anything involving networking or the kernel. I prefer to trim down than build up, since there's always something I want that I'll miss if I try to build up. ---------- Original Message ---------------------------------- From: Ivan Faes Reply-to: vserver@solucorp.qc.ca Date: 09 Oct 2002 23:55:06 +0200 >Mm mine is now about 600 mb each a bith to big :-) > >that one is made with newvserver > > >On Wed, 2002-10-09 at 23:34, Roderick A. Anderson wrote: >> On 9 Oct 2002, Ivan Faes wrote: >> >> > Hi I just started working with vserver. >> > >> > I have build some vservers with the vserver xx build and so on >> > >> > >> > Buth what is the best way to make you first vserver and to use that one >> > as a skel for the other vservers. >> > >> > also as small as possible. >> >> What is small? This is the question and I have been pondering it for >> awhile. I just tried using the Linuxconf vserver module to build my base >> vserver and was not happy with either the minimal or full install. It >> probably was I wanted some 'optional' packages that I consider necssary >> and didn't automagically get them. (I still have more experimenting to >> do.) >> I'm on a RPM list and have got some suggestions as to how to figure out >> what packages require what other packages so I cam build a list and then >> only install those I want and need. >> >> For now I've made my base vserver from the main server and I'll start >> slicing and dicing out the fluff. You might try the same. >> >> >> Rod >> -- >> "Open Source Software - Sometimes you get more than you paid for..." >> > > > ________________________________________________________________ Sent via the WebMail system at webmail.pioneernet.net From vserver.error@solucorp.qc.ca Wed Oct 9 20:17:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9A0HU031161; Wed, 9 Oct 2002 20:17:33 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g99N9JZ14307 for vserver.list; Wed, 9 Oct 2002 19:09:19 -0400 Received: from nninfo2.comm.it ([213.92.77.123]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g99N9HZ14302 for ; Wed, 9 Oct 2002 19:09:18 -0400 Received: from [192.168.3.134] (host65-183.pool80116.interbusiness.it [80.116.183.65]) by nninfo2.comm.it (8.9.3/8.9.3) with ESMTP id BAA12494 for ; Thu, 10 Oct 2002 01:10:11 +0200 Subject: Re: [vserver] new vserver From: Dave To: vserver@solucorp.qc.ca In-Reply-To: <1034200506.6175.3.camel@xenomorph.ws.gtrox.net> References: <1034200506.6175.3.camel@xenomorph.ws.gtrox.net> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 10 Oct 2002 01:09:01 +0000 Message-Id: <1034212172.3561.47.camel@mfly.nn.lan> Mime-Version: 1.0 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1288 On Wed, 2002-10-09 at 21:55, Ivan Faes wrote: > Mm mine is now about 600 mb each a bith to big :-) A base rh73 install with NOTHING (i.e. not even perl) is about 230 MB. Just select a custom install and deselect everything from the package lists. Then an rpm -qa will get you what is needed. Dave. From vserver.error@solucorp.qc.ca Thu Oct 10 05:57:27 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9A9vL005087; Thu, 10 Oct 2002 05:57:21 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9A9AHa01017 for vserver.list; Thu, 10 Oct 2002 05:10:17 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9A9AFZ01008 for ; Thu, 10 Oct 2002 05:10:16 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id 020DAFDD for ; Thu, 10 Oct 2002 11:11:38 +0200 (CEST) Date: Thu, 10 Oct 2002 11:11:06 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: Re: [vserver] gcc 3.2 Message-Id: <20021010111106.0d571ef4.kl@vsen.dk> In-Reply-To: <20021008233449.ead80dbdef56@remtk.solucorp.qc.ca> References: <200210081731.37459.georges@norm.lu> <20021008233449.ead80dbdef56@remtk.solucorp.qc.ca> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1289 On Tue, 8 Oct 2002 23:34:49 -0500 Jacques Gelinas wrote: > > > This fixes the compilation issue. Another bug shows on rh8. I change > the -O3 to -O and then some utilities starts to compile properly. Very > odd... > On my Gentoo gcc-3.2 dist I found no problem with this, but I found the error also encountered by Cedric Veilleux. > I will release a new vserver package this week. > will it contain a fix for the above mentioned bug? -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Thu Oct 10 07:42:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9ABgo005940; Thu, 10 Oct 2002 07:42:50 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9AAqr504320 for vserver.list; Thu, 10 Oct 2002 06:52:53 -0400 Received: from erebus.mail.winlin.be (erebus.winlin.be [193.121.61.72]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9AAqqZ04315 for ; Thu, 10 Oct 2002 06:52:52 -0400 Received: from winlin.be (saruman.winlin.be [193.121.61.69]) by erebus.mail.winlin.be (Postfix) with SMTP id 9B244EF25 for ; Thu, 10 Oct 2002 12:53:44 +0200 (CEST) Received: from 212.100.163.144 (SquirrelMail authenticated user ivan.faes@winlin.be) by saruman.winlin.be with HTTP; Thu, 10 Oct 2002 12:53:44 +0200 (CEST) Message-ID: <45422.212.100.163.144.1034247224.squirrel@saruman.winlin.be> Date: Thu, 10 Oct 2002 12:53:44 +0200 (CEST) Subject: [vserver] vserver listening on more then 1 ip From: To: X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.7) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1290 Hi I have 2 veserver 1 ste : vs1 : ip 172.31.0.30 2 de : vs 2 : ip 172.31.0.31 root server : 172.31.0.54 when I do a netstat -l -n I get on the root and vs1 only there IP address buth when I do it on the vs2 I get [12:50:17 root@vs2 /]# netstat -l -n Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State tcp 0 0 172.31.0.31:22 0.0.0.0:* LISTEN tcp 0 0 172.31.0.30:22 0.0.0.0:* LISTEN tcp 0 0 172.31.0.54:22 0.0.0.0:* LISTEN Active UNIX domain sockets (only servers) Proto RefCnt Flags Type State I-Node Path From vserver.error@solucorp.qc.ca Thu Oct 10 08:56:47 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9ACuR006671; Thu, 10 Oct 2002 08:56:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9ABsM906172 for vserver.list; Thu, 10 Oct 2002 07:54:22 -0400 Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9ABsLZ06167 for ; Thu, 10 Oct 2002 07:54:21 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g9ABtSN26319 for ; Thu, 10 Oct 2002 04:55:28 -0700 Date: Thu, 10 Oct 2002 04:55:28 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: Subject: Re: [vserver] new vserver In-Reply-To: <200210091543.AA131465422@pioneernet.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1291 On Wed, 9 Oct 2002, Cathy Sarisky wrote: > I'm spawning ~200MB vservers, POST unification. Of course, that > includes (ununified) source code and compiled executables for > PostgreSQL and AOLserver, in addition to all the usual stuff you might > want on a server. [snip] > RPMs that can DEFINITELY go: > > iptables/chains/etc > anything firewall related (requires iptables/chains/etc) > kudzu <-- evil. May hang during vserver start if the vserver user turns it on with chkconfig. > Anything related to the sound card (duh.) > Anything related to burning CDs (duh. But I got both on my last dedicated server installed by the server provided, so watch for it.) > almost anything involving networking or the kernel. This is great, but ... > I prefer to trim down than build up, since there's always something I > want that I'll miss if I try to build up. you know what would be greater? Yup, your idea (rpm list) of a trimmed down vserver install. :-) It is so much easier to throw rocks than to build. Mind you, I wouldn't throw rocks. Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Thu Oct 10 08:59:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9ACxh006703; Thu, 10 Oct 2002 08:59:47 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9ABhqW05918 for vserver.list; Thu, 10 Oct 2002 07:43:52 -0400 Received: from erebus.mail.winlin.be (erebus.winlin.be [193.121.61.72]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9ABhpZ05913 for ; Thu, 10 Oct 2002 07:43:51 -0400 Received: from winlin.be (saruman.winlin.be [193.121.61.69]) by erebus.mail.winlin.be (Postfix) with SMTP id D1592EF24 for ; Thu, 10 Oct 2002 13:44:44 +0200 (CEST) Received: from 212.100.163.144 (SquirrelMail authenticated user ivan.faes@winlin.be) by saruman.winlin.be with HTTP; Thu, 10 Oct 2002 13:44:44 +0200 (CEST) Message-ID: <45433.212.100.163.144.1034250284.squirrel@saruman.winlin.be> Date: Thu, 10 Oct 2002 13:44:44 +0200 (CEST) Subject: [vserver] script vserers ? From: To: X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.7) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1292 I stoped the vservers with /etc/rc.d/init.d/vserver stop script buth when I use the start is says [13:41:12 root@lv-426 /]# /etc/rc.d/init.d/vservers start Starting the virtual servers Starting the virtual server vs1 Server vs1 is running Starting the virtual server vs2 Server vs2 is running Yet when I see the netwok intefaces the servers are down . [13:43:00 root@lv-426 /]# ifconfig eth0 Link encap:Ethernet HWaddr 00:90:27:E0:26:27 inet addr:172.31.0.54 Bcast:172.31.0.63 Mask:255.255.255.192 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:12760 errors:0 dropped:0 overruns:0 frame:0 TX packets:4247 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:1250486 (1.1 Mb) TX bytes:626682 (611.9 Kb) Interrupt:21 Base address:0xb000 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:9 errors:0 dropped:0 overruns:0 frame:0 TX packets:9 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:842 (842.0 b) TX bytes:842 (842.0 b) vserver-stat says = [13:43:38 root@lv-426 /]# vserver-stat CTX# PROC QTY VSZ RSS userTIME sysTIME UPTIME NAME 0 32 57MB 2kB m43.42 m43.88 15h10m49 root server 3 3 6MB 669B m00.02 m00.02 45m33.79 vs1 From vserver.error@solucorp.qc.ca Thu Oct 10 12:10:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9AGA6008839; Thu, 10 Oct 2002 12:10:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9AFKDp12869 for vserver.list; Thu, 10 Oct 2002 11:20:13 -0400 Received: from telepath3.isomedia.com (telepath3.isomedia.com [207.115.64.104] (may be forged)) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9AFKBZ12864 for ; Thu, 10 Oct 2002 11:20:12 -0400 Received: from freya (pm134.focal.isomedia.com [66.147.197.49] (may be forged)) by telepath3.isomedia.com (8.11.6/8.11.6) with SMTP id g9AEFqa03150 for ; Thu, 10 Oct 2002 07:16:02 -0700 Received: by localhost with Microsoft MAPI; Thu, 10 Oct 2002 07:11:19 -0700 Message-ID: <01C2702C.3B2445A0.cathy@acornhosting.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] new vserver Date: Thu, 10 Oct 2002 07:11:18 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MailScanner: Found to be clean, Found to be clean X-MailScanner-SpamCheck: LEVEL=*, SpamAssassin (score=1.6, required 1, MAY_BE_FORGED) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 1293 Rod, I'm a little worried by your comment that I'm "throwing rocks." If you mean I was criticizing, that wasn't my intent. Anyone who'd like one is welcome to a list of what I've got on my vservers. Cathy Sarisky AcornHosting On Thursday, October 10, 2002 4:55 AM, Roderick A. Anderson [SMTP:raanders@acm.org] wrote: > On Wed, 9 Oct 2002, Cathy Sarisky wrote: > > > I'm spawning ~200MB vservers, POST unification. Of course, that > > includes (ununified) source code and compiled executables for > > PostgreSQL and AOLserver, in addition to all the usual stuff you might > > want on a server. > > [snip] > > > RPMs that can DEFINITELY go: > > > > iptables/chains/etc > > anything firewall related (requires iptables/chains/etc) > > kudzu <-- evil. May hang during vserver start if the vserver user turns it > > on with chkconfig. > > Anything related to the sound card (duh.) > > Anything related to burning CDs (duh. But I got both on my last dedicated > > server installed by the server provided, so watch for it.) > > almost anything involving networking or the kernel. > > This is great, but ... > > > I prefer to trim down than build up, since there's always something I > > want that I'll miss if I try to build up. > > you know what would be greater? Yup, your idea (rpm list) of a trimmed > down vserver install. :-) > > It is so much easier to throw rocks than to build. Mind you, I wouldn't > throw rocks. > > > Rod > -- > "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Thu Oct 10 12:26:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9AGQp008973; Thu, 10 Oct 2002 12:26:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9AFdYs13506 for vserver.list; Thu, 10 Oct 2002 11:39:34 -0400 Received: from erebus.mail.winlin.be (erebus.winlin.be [193.121.61.72]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9AFdYZ13501 for ; Thu, 10 Oct 2002 11:39:34 -0400 Received: from winlin.be (saruman.winlin.be [193.121.61.69]) by erebus.mail.winlin.be (Postfix) with SMTP id C2BC7EF24 for ; Thu, 10 Oct 2002 17:40:27 +0200 (CEST) Received: from 212.100.163.144 (SquirrelMail authenticated user ivan.faes@winlin.be) by saruman.winlin.be with HTTP; Thu, 10 Oct 2002 17:40:27 +0200 (CEST) Message-ID: <45535.212.100.163.144.1034264427.squirrel@saruman.winlin.be> Date: Thu, 10 Oct 2002 17:40:27 +0200 (CEST) Subject: RE: [vserver] new vserver From: To: In-Reply-To: <01C2702C.3B2445A0.cathy@acornhosting.net> References: <01C2702C.3B2445A0.cathy@acornhosting.net> X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.7) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1294 One list will do fine :-) > Rod, > > I'm a little worried by your comment that I'm "throwing rocks." If you > mean I was criticizing, that wasn't my intent. Anyone who'd like one > is welcome to a list of what I've got on my vservers. > > Cathy Sarisky > AcornHosting > > On Thursday, October 10, 2002 4:55 AM, Roderick A. Anderson > [SMTP:raanders@acm.org] wrote: >> On Wed, 9 Oct 2002, Cathy Sarisky wrote: >> >> > I'm spawning ~200MB vservers, POST unification. Of course, that >> includes (ununified) source code and compiled executables for >> > PostgreSQL and AOLserver, in addition to all the usual stuff you >> might want on a server. >> >> [snip] >> >> > RPMs that can DEFINITELY go: >> > >> > iptables/chains/etc >> > anything firewall related (requires iptables/chains/etc) >> > kudzu <-- evil. May hang during vserver start if the vserver user >> turns it on with chkconfig. >> > Anything related to the sound card (duh.) >> > Anything related to burning CDs (duh. But I got both on my last >> dedicated server installed by the server provided, so watch for it.) >> > almost anything involving networking or the kernel. >> >> This is great, but ... >> >> > I prefer to trim down than build up, since there's always something >> I want that I'll miss if I try to build up. >> >> you know what would be greater? Yup, your idea (rpm list) of a >> trimmed down vserver install. :-) >> >> It is so much easier to throw rocks than to build. Mind you, I >> wouldn't throw rocks. >> >> >> Rod >> -- >> "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Thu Oct 10 20:16:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9B0Ge013746; Thu, 10 Oct 2002 20:16:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9ANdiM27937 for vserver.list; Thu, 10 Oct 2002 19:39:44 -0400 Received: from main.cyber-office.net (main.cyber-office.net [216.64.180.226]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9ANdhZ27932 for ; Thu, 10 Oct 2002 19:39:43 -0400 Received: from localhost (raanders@localhost) by main.cyber-office.net (8.11.6/linuxconf) with ESMTP id g9ANerW04740 for ; Thu, 10 Oct 2002 16:40:53 -0700 Date: Thu, 10 Oct 2002 16:40:53 -0700 (PDT) From: "Roderick A. Anderson" X-X-Sender: To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] new vserver In-Reply-To: <01C2702C.3B2445A0.cathy@acornhosting.net> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1295 On Thu, 10 Oct 2002, Cathy Sarisky wrote: > Rod, > > I'm a little worried by your comment that I'm "throwing rocks." If you mean I > was criticizing, that wasn't my intent. Anyone who'd like one is welcome to a > list of what I've got on my vservers. No, no, no sorry. I was thinking of my development days when I couldn't get users to really discuss the program/application. They wanted me to code 'SOMETHING' then sit back and say how it was wrong - throwing rocks. After I realized they weren't being evil it was just easier for them to have something to work with. I now use the rock throwing metaphor for looking at what someone else has done and then ... eh rebuilding it (your list for a minimal installation). I liked your ideas and I've never experienced you being less than courteous and helpful on this list. This should teach me to try and be witty early in the morning after less than 4 hours sleep. The mind is willing just less than capable. Again sorry for a bit of attempted humor that went bad, Rod -- "Open Source Software - Sometimes you get more than you paid for..." From vserver.error@solucorp.qc.ca Fri Oct 11 16:28:19 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9BKSB025089; Fri, 11 Oct 2002 16:28:15 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9BJ96C29625 for vserver.list; Fri, 11 Oct 2002 15:09:06 -0400 Received: from VL-MS-MR004.sc1.videotron.ca (relais.videotron.ca [24.201.245.36]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9BJ95Z29619 for ; Fri, 11 Oct 2002 15:09:05 -0400 Received: from modemcable038.67-200-24.mtl.mc.videotron.ca ([24.200.67.38]) by VL-MS-MR004.sc1.videotron.ca (iPlanet Messaging Server 5.2 HotFix 0.9 (built Jul 29 2002)) with ESMTP id <0H3T003PHZXVHJ@VL-MS-MR004.sc1.videotron.ca> for vserver@solucorp.qc.ca; Fri, 11 Oct 2002 15:10:44 -0400 (EDT) Date: Fri, 11 Oct 2002 15:10:34 -0400 From: Cedric Veilleux Subject: [vserver] Compiling utilities on GCC 3.2 (gentoo) To: vserver@solucorp.qc.ca Message-id: <200210111510.34231.cedric@neopeak.com> Organization: Neopeak Internet Solutions inc. MIME-version: 1.0 Content-type: text/plain; charset=iso-8859-1 Content-disposition: inline User-Agent: KMail/1.4.7 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g9BJ95Z29619 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1296 Hi, I managed to get all utilities to compile under GCC 3.2 pretty well except "vdu" and "listdevip". Here are the errors: ******************************************************* # make listdevip gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" listdevip.cc -o listdevip /tmp/ccTxtzBg.o:/root/vserver-0.20/listdevip.cc:64: undefined reference to `__gxx_personality_v0' collect2: ld returned 1 exit status make: *** [listdevip] Error 1 # make vdu gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" vdu.cc -o vdu \ -lstdc++ vdu.cc:10: parse error before `&' token vdu.cc: In function `int vdu_onedir(...)': vdu.cc:13: `path' undeclared (first use this function) vdu.cc:13: (Each undeclared identifier is reported only once for each function it appears in.) vdu.cc:50: `size' undeclared (first use this function) vdu.cc: In function `int main(int, char**)': vdu.cc:70: `string' undeclared (first use this function) make: *** [vdu] Error 1 ******************************************************* I am clueless about these, any help, tip or idea appreciated. Thank you, Cédric From vserver.error@solucorp.qc.ca Fri Oct 11 16:33:52 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9BKXj025130; Fri, 11 Oct 2002 16:33:45 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9BJ0PD29398 for vserver.list; Fri, 11 Oct 2002 15:00:25 -0400 Received: from VL-MS-MR002.sc1.videotron.ca (relais.videotron.ca [24.201.245.36]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9BJ0NZ29393 for ; Fri, 11 Oct 2002 15:00:24 -0400 Received: from modemcable038.67-200-24.mtl.mc.videotron.ca ([24.200.67.38]) by VL-MS-MR002.sc1.videotron.ca (iPlanet Messaging Server 5.2 HotFix 0.9 (built Jul 29 2002)) with ESMTP id <0H3T008GFZI6I8@VL-MS-MR002.sc1.videotron.ca> for vserver@solucorp.qc.ca; Fri, 11 Oct 2002 15:01:18 -0400 (EDT) Date: Fri, 11 Oct 2002 15:01:52 -0400 From: Cedric Veilleux Subject: [vserver] Strange messages when starting/entering/stopping a vserver To: vserver@solucorp.qc.ca Message-id: <200210111501.52939.cedric@neopeak.com> Organization: Neopeak Internet Solutions inc. MIME-version: 1.0 Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT Content-disposition: inline User-Agent: KMail/1.4.7 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1297 Hi, I have been able to successfully run a vserver on a system running Gentoo linux. Although, when I start a vserver, here's what I get: ******************************************************* # vserver angkor start Starting the virtual server angkor Server angkor is not running SIOCSIFADDR: File exists SIOCSIFFLAGS: Cannot assign requested address SIOCSIFNETMASK: Cannot assign requested address SIOCSIFBRDADDR: Cannot assign requested address SIOCSIFFLAGS: Cannot assign requested address ipv4root is now 10.0.0.5 Host name is now v_angkor New security context is 17 ******************************************************* What are all these SIOCSIF* messages? When I use the default 1.2.3.4 IP address, they do not show up, but when I use 10.0.0.5, which is a properly configured eth0 alias, I get these.. Everything seems to work properly. Daemon binding to 0.0.0.0 actually binds to the right IP address (10.0.0.5). Thank you, Cedric From vserver.error@solucorp.qc.ca Fri Oct 11 22:07:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9C27U028366; Fri, 11 Oct 2002 22:07:34 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9C0UvR07084 for vserver.list; Fri, 11 Oct 2002 20:30:57 -0400 Received: from mailhost-1.mtl-loo.activecom.net (mailhost-1.mtl-loo.activecom.net [216.189.192.23]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9C0UuZ07079 for ; Fri, 11 Oct 2002 20:30:57 -0400 Received: from activecom.net (devserver.activecom.net [216.189.192.53]) by mailhost-1.mtl-loo.activecom.net (Active MailServer) with ESMTP id 4EB328DC42 for ; Fri, 11 Oct 2002 20:30:07 -0400 (EDT) Message-ID: <3DA76D08.1040005@activecom.net> Date: Fri, 11 Oct 2002 20:30:00 -0400 From: Mehmet Avcioglu Organization: Active Comm. User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20020823 Netscape/7.0 X-Accept-Language: en, tr MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Strange messages when starting/entering/stopping a vserver References: <200210111501.52939.cedric@neopeak.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1298 > address, they do not show up, but when I use 10.0.0.5, which is a properly > configured eth0 alias, I get these.. I don't think you are supposed to have the ip allready in the box as an alias. vserver is supposed to take care of that. -- Mehmet T. Avcioglu mehmet@activecom.net From vserver.error@solucorp.qc.ca Sat Oct 12 12:17:01 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9CGGl004052; Sat, 12 Oct 2002 12:16:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9CEtFK30076 for vserver.list; Sat, 12 Oct 2002 10:55:15 -0400 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9CEtFZ30071 for ; Sat, 12 Oct 2002 10:55:15 -0400 Received: from remtk.solucorp.qc.ca (g36-77.citenet.net [206.123.36.77]) by cti06.citenet.net (8.11.6/8.11.6) with ESMTP id g9CF46K79757 for ; Sat, 12 Oct 2002 11:04:06 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g9CEsZs12144 for vserver@solucorp.qc.ca; Sat, 12 Oct 2002 10:54:35 -0400 From: Jacques Gelinas Date: Sat, 12 Oct 2002 10:54:35 -0500 To: vserver@solucorp.qc.ca Subject: Re: [vserver] debian 3.0 and vserver utilities References: In-Reply-To: X-mailer: tlmpmail 0.6 Message-ID: <20021012105435.94a72c28ba39@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1299 On Wed, 9 Oct 2002 08:19:24 -0500, Paul Sladen wrote > On Tue, 8 Oct 2002, takashi wrote: > > *cough* HTML emails... :( > > > 1- vserver ONBOOT=yes do vservers do not start on boot with debian 3.0 > > 2- /etc/init.d/rebootmgr: /etc/rc.d/init.d/functions: No such file or directory This include was not even necessary. I have removed it. Will be in the next release today. > > 3 ./vreboot connect /dev/reboot (Connection refused This release will also have a statically linked vreboot so it works in every vserver (old distro and newer). > I apologies; I have Debian packages made and should do the final few > percent prettifying and upload them. In the meantime, if hand edit the > source and replace all references to: Please send what you have. I will merge it and produces DEB package for every release. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Sun Oct 13 03:27:35 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9D7RO011891; Sun, 13 Oct 2002 03:27:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9D6hdM25522 for vserver.list; Sun, 13 Oct 2002 02:43:39 -0400 Received: from VL-MS-MR002.sc1.videotron.ca (relais.videotron.ca [24.201.245.36]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9D6hcZ25517 for ; Sun, 13 Oct 2002 02:43:38 -0400 Received: from modemcable038.67-200-24.mtl.mc.videotron.ca ([24.200.67.38]) by VL-MS-MR002.sc1.videotron.ca (iPlanet Messaging Server 5.2 HotFix 0.9 (built Jul 29 2002)) with ESMTP id <0H3W00IBLQQ9XI@VL-MS-MR002.sc1.videotron.ca> for vserver@solucorp.qc.ca; Sun, 13 Oct 2002 02:44:34 -0400 (EDT) Date: Sun, 13 Oct 2002 02:45:26 -0400 From: Cedric Veilleux Subject: [vserver] Porting utilities To: vserver@solucorp.qc.ca Message-id: <200210130245.26266.cedric@neopeak.com> Organization: Neopeak Internet Solutions inc. MIME-version: 1.0 Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT Content-disposition: inline User-Agent: KMail/1.4.7 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1300 Hi, I know some work is being done to port utilities to debian. I am working on porting to Gentoo linux. The vunify, vfiles and vbuild utilities would have to, somehow, determine which kind of vservers they are dealing with. This also applies to vrpm, although this one would ideally have to be renamed to avoid confusion. There are several solutions: 1- Additional --pkgtype option. Values would be rpm, deb or gentoo. Defaults to rpm. 2- New configuration option. For each vserver, a DISTRIBUTION variable could be added to the config file of each vserver. 3- Guessing. The utilities could look at the files inside the vserver and guess the distro used. Any other suggestions? What would be the best? Thank you, Cedric From vserver.error@solucorp.qc.ca Sun Oct 13 03:36:50 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9D7ah011981; Sun, 13 Oct 2002 03:36:43 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9D73eQ26149 for vserver.list; Sun, 13 Oct 2002 03:03:40 -0400 Received: from telepath2.isomedia.com (telepath2.isomedia.com [207.115.64.103]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9D73cZ26143 for ; Sun, 13 Oct 2002 03:03:39 -0400 Received: from freya (pm147.focal.isomedia.com [66.147.197.62] (may be forged)) by telepath2.isomedia.com (8.11.6/8.11.6) with SMTP id g9D734032096 for ; Sun, 13 Oct 2002 00:03:30 -0700 Received: by localhost with Microsoft MAPI; Sat, 12 Oct 2002 23:58:20 -0700 Message-ID: <01C2724B.3D8909E0.cathy@acornhosting.net> From: Cathy Sarisky To: "'vserver@solucorp.qc.ca'" Subject: RE: [vserver] new vserver Date: Sat, 12 Oct 2002 23:58:19 -0700 Organization: caltech X-Mailer: Microsoft Internet E-mail/MAPI - 8.0.0.4211 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-MailScanner: Found to be clean, Found to be clean X-MailScanner-SpamCheck: LEVEL=**, SpamAssassin (score=2.7, required 1, MAY_BE_FORGED, DOUBLE_CAPSWORD) Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 1301 Ah, I think I had a bad case of thin skin. At the bottom is a (long) list of what's on one of my vservers. Toss all the rocks you'd like :) I'd bet money there's stuff in there that shouldn't be there. Probably a LOT of stuff. Cathy On Thursday, October 10, 2002 4:41 PM, Roderick A. Anderson [SMTP:raanders@acm.org] wrote: > I was thinking of my development days when I couldn't > get users to really discuss the program/application. They wanted me to > code 'SOMETHING' then sit back and say how it was wrong - throwing rocks. > After I realized they weren't being evil it was just easier for them to > have something to work with. I now use the rock throwing metaphor for > looking at what someone else has done and then ... eh rebuilding it (your > list for a minimal installation). alchemist-1.0.23-1 alchemist-devel-1.0.23-1 anacron-2.3-17 apache-1.3.23-11 apache-devel-1.3.23-11 apmd-3.0.2-10 ash-0.3.7-2 aspell-0.33.7.1-9 aspell-devel-0.33.7.1-9 at-3.1.8-23 authconfig-4.2.8-4 autoconf-2.13-17 autoconf253-2.53-3 automake-1.4p5-4 automake15-1.5-2 basesystem-7.0-2 bash-2.05a-13 bc-1.06-8 bdflush-1.5-17 bind-utils-9.2.0-8 binutils-2.11.93.0.2-11 bison-1.35-1 bzip2-1.0.2-2 bzip2-devel-1.0.2-2 bzip2-libs-1.0.2-2 cdparanoia-devel-alpha9.8-8 cdparanoia-libs-alpha9.8-8 chkconfig-1.3.5-3 chkfontpath-1.9.5-2 console-tools-19990829-40 cpio-2.4.2-26 cpp-2.96-110 cracklib-2.7-15 cracklib-dicts-2.7-15 crontabs-1.10-1 ctags-5.2.2-2 curl-7.9.5-2 curl-devel-7.9.5-2 cvs-1.11.1p1-7 cyrus-sasl-1.5.24-25 cyrus-sasl-devel-1.5.24-25 cyrus-sasl-md5-1.5.24-25 cyrus-sasl-plain-1.5.24-25 db1-1.85-8 db1-devel-1.85-8 db2-2.4.14-10 db2-devel-2.4.14-10 db3-3.3.11-6 db3-devel-3.3.11-6 dev-3.3-4 dev86-0.15.5-1 dialog-0.9a-5 diffstat-1.28-1 diffutils-2.7.2-5 Distutils-1.0.2-2 docbook-dtds-1.0-8 e2fsprogs-1.27-3 e2fsprogs-devel-1.27-3 ed-0.2-25 emacs-21.2-2 expat-1.95.2-2 expat-devel-1.95.2-2 file-3.37-5 filesystem-2.1.6-2 fileutils-4.1-10 findutils-4.1.7-4 flex-2.5.4a-23 freetype-2.0.9-2 ftp-0.17-13 gawk-3.1.0-4 gcc-2.96-110 gcc-c++-2.96-110 gcc-g77-2.96-110 gd-1.8.4-4 gdb-5.1.90CVS-5 gdbm-1.8.0-14 gdbm-devel-1.8.0-14 gd-devel-1.8.4-4 gettext-0.11.1-2 glib-1.2.10-5 glib2-2.0.1-2 glibc-2.2.5-34 glibc-common-2.2.5-34 glibc-devel-2.2.5-34 glibc-kernheaders-2.4-7.14 gmp-4.0.1-3 gmp-devel-4.0.1-3 gnupg-1.0.6-5 gpm-1.19.3-21 gpm-devel-1.19.3-21 grep-2.5.1-1 groff-1.17.2-12 gzip-1.3.3-1 hwdata-0.14-1 ImageMagick-5.4.3.11-1 indent-2.2.7-3 indexhtml-7.3-3 info-4.1-1 initscripts-6.67-1 iproute-2.4.7-1 iputils-20020124-3 krb5-devel-1.2.4-1 krb5-libs-1.2.4-1 krbafs-1.1.1-1 krbafs-devel-1.1.1-1 ksymoops-2.4.4-1 less-358-24 libao-0.8.2-2 libao-devel-0.8.2-2 libjpeg-6b-19 libjpeg-devel-6b-19 libpng-1.0.12-2 libpng-devel-1.0.12-2 libstdc++-2.96-110 libstdc++-devel-2.96-110 libtermcap-2.0.8-28 libtermcap-devel-2.0.8-28 libtiff-3.5.7-2 libtiff-devel-3.5.7-2 libtool-1.4.2-7 libtool-libs-1.4.2-7 libungif-4.1.0-10 libuser-0.50.2-1 libuser-devel-0.50.2-1 libxml2-2.4.19-4 libxml2-devel-2.4.19-4 libxslt-1.0.15-1 lockdev-1.0.0-16 lockdev-devel-1.0.0-16 logrotate-3.6.4-1 losetup-2.11n-12 lsof-4.51-2 ltrace-0.3.10-7 lv-4.49.4-3 lynx-2.8.4-18 m4-1.4.1-7 mailcap-2.1.9-2 mailx-8.1.1-22 make-3.79.1-8 MAKEDEV-3.3-4 man-1.5j-6 man-pages-1.48-2 mingetty-1.00-1 mktemp-1.5-14 mm-1.1.3-4 mm-devel-1.1.3-4 modutils-2.4.14-3 modutils-devel-2.4.14-3 mount-2.11n-12 mt-st-0.7-3 ncompress-4.2.4-28 ncurses-5.2-26 ncurses-devel-5.2-26 netconfig-0.8.11-7 net-tools-1.60-4 newt-0.50.35-1 njamd-0.9.2-3 nkf-1.92-6 ntsysv-1.3.5-3 openjade-1.3.1-4 openldap-2.0.23-4 openldap-devel-2.0.23-4 openssh-3.1p1-3 openssh-clients-3.1p1-3 openssh-server-3.1p1-3 openssl-0.9.6b-18 openssl-devel-0.9.6b-18 pam-0.75-32 pam-devel-0.75-32 passwd-0.67-1 patch-2.5.4-12 pax-3.0-1 pcre-3.9-2 pcre-devel-3.9-2 perl-5.6.1-34.99.6 perl-CGI-2.752-34.99.6 perl-CPAN-1.59_54-34.99.6 perl-DateManip-5.40-15 perl-DB_File-1.75-34.99.6 perl-Digest-MD5-2.16-15 perl-HTML-Parser-3.26-2 perl-HTML-Tagset-3.03-14 perl-libnet-1.0901-17 perl-libwww-perl-5.63-9 perl-libxml-enno-1.02-15 perl-libxml-perl-0.07-14 perl-MIME-Base64-2.12-14 perl-NDBM_File-1.75-34.99.6 perl-Parse-Yapp-1.05-15 perl-SGMLSpm-1.03ii-4 perl-Storable-1.0.14-15 perl-URI-1.17-16 perl-XML-Dumper-0.4-12 perl-XML-Encoding-1.01-9 perl-XML-Grove-0.46alpha-11 perl-XML-Parser-2.30-15 perl-XML-Twig-2.02-9 php-4.1.2-7 php-devel-4.1.2-7 pine-4.44-7 pkgconfig-0.12.0-1 pmake-1.45-4 popt-1.6.4-7x.18 postfix-1.1.7-2 procmail-3.22-5 procps-2.0.7-12 psmisc-20.2-2 pspell-0.12.2-8 pspell-devel-0.12.2-8 pwdb-0.61.2-2 python-1.5.2-38 python-clap-1.0.0-3 python-devel-1.5.2-38 python-popt-0.8.8-7.x.2 python-xmlrpc-1.5.1-7.x.3 PyXML-0.7-4 rcs-5.7-15 readline-4.2a-4 readline-devel-4.2a-4 redhat-logos-1.1.3-1 redhat-release-7.3-1 rootfiles-7.2-1 rpm-4.0.4-7x.18 rpm-build-4.0.4-7x.18 rpm-devel-4.0.4-7x.18 rpm-python-4.0.4-7x.18 sed-3.02-11 setup-2.5.12-1 setuptool-1.8-2 sgml-common-0.6.3-9 shadow-utils-20000902-7 sharutils-4.2.1-9 sh-utils-2.0.11-14 slang-1.4.5-2 slang-devel-1.4.5-2 slocate-2.6-1 sox-devel-12.17.3-4 specspo-7.3-4 splint-3.0.1.6-2 stat-2.5-5 strace-4.4-4 stunnel-3.22-1 swig-1.1p5-12 sysklogd-1.4.1-8 SysVinit-2.84-2 tamago-4.0.6-5 tar-1.13.25-4 tcl-8.3.3-67 tcsh-6.10-6 termcap-11.0.1-10 textutils-2.0.21-1 time-1.7-16 timeconfig-3.2.7-1 tmpwatch-2.8.3-1 traceroute-1.4a12-2 tree-1.2-17 ttfonts-1.0-9 units-1.74-1 usermode-1.53-2 utempter-0.5.2-6 util-linux-2.11n-12 VFlib2-2.25.6-4 VFlib2-devel-2.25.6-4 vim-common-6.1-2 vim-enhanced-6.1-2 vim-minimal-6.1-2 vixie-cron-3.0.1-64 wget-1.8.1-4 which-2.13-3 words-2-18 Xaw3d-1.5-12 xdelta-1.1.3-5 xdelta-devel-1.1.3-5 XFree86-font-utils-4.2.0-8 XFree86-libs-4.2.0-8 XFree86-xfs-4.2.0-8 xinetd-2.3.4-0.8 xml-common-0.6.3-9 zlib-1.1.3-25.7 zlib-devel-1.1.3-25.7 From vserver.error@solucorp.qc.ca Sun Oct 13 09:26:24 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9DDQH015671; Sun, 13 Oct 2002 09:26:17 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9DCm8C04513 for vserver.list; Sun, 13 Oct 2002 08:48:08 -0400 Received: from vmail.db (bigalke65.insol.de [62.80.100.65] (may be forged)) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9DCm6Z04508 for ; Sun, 13 Oct 2002 08:48:06 -0400 Received: from localhost (vmail.db [192.168.0.208]) by vmail.db (8.12.3/8.12.3/SuSE Linux 0.6) with ESMTP id g9DCmJ8E011805 for ; Sun, 13 Oct 2002 14:48:19 +0200 Received: from 192.168.0.145 ( [192.168.0.145]) as user dieter@vmail.db by vmail.db with HTTP; Sun, 13 Oct 2002 14:48:19 +0200 Message-ID: <1034513299.3da96b9322ef8@vmail.db> Date: Sun, 13 Oct 2002 14:48:19 +0200 From: Dieter Bigalke To: vserver@solucorp.qc.ca Subject: Re: [vserver] Compiling utilities on GCC 3.2 (gentoo) References: <200210111510.34231.cedric@neopeak.com> In-Reply-To: <200210111510.34231.cedric@neopeak.com> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="-MOQ1034513299f750532e8bae7e15e28056c52e7dccb8" User-Agent: Internet Messaging Program (IMP) 3.1 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1302 This message is in MIME format. ---MOQ1034513299f750532e8bae7e15e28056c52e7dccb8 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit > Hi, > > I managed to get all utilities to compile under GCC 3.2 pretty well except > > "vdu" and "listdevip". Here are the errors: > > ******************************************************* > # make listdevip > gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" listdevip.cc -o > listdevip > /tmp/ccTxtzBg.o:/root/vserver-0.20/listdevip.cc:64: undefined reference to > `__gxx_personality_v0' > collect2: ld returned 1 exit status > make: *** [listdevip] Error 1 > > # make vdu > gcc -funsigned-char -Wall -g -O3 -DVERSION=\"0.20\" vdu.cc -o vdu \ > -lstdc++ > vdu.cc:10: parse error before `&' token > vdu.cc: In function `int vdu_onedir(...)': > vdu.cc:13: `path' undeclared (first use this function) > vdu.cc:13: (Each undeclared identifier is reported only once for each > function > it appears in.) > vdu.cc:50: `size' undeclared (first use this function) > vdu.cc: In function `int main(int, char**)': > vdu.cc:70: `string' undeclared (first use this function) > make: *** [vdu] Error 1 > ******************************************************* > > I am clueless about these, any help, tip or idea appreciated. > > > Thank you, > > Cédric > Hello Cédric, you can try the my patch. Hope this helps .... Dieter ------------------------------------------------- This mail sent through IMP: http://horde.org/imp/ ---MOQ1034513299f750532e8bae7e15e28056c52e7dccb8 Content-Type: application/octet-stream; name="patch-vserver-20" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="patch-vserver-20" ZGlmZiAtYzIgdnNlcnZlci0wLjIwL01ha2VmaWxlIHZzZXJ2ZXItMC4yMC5uZXcvTWFrZWZpbGUK KioqIHZzZXJ2ZXItMC4yMC9NYWtlZmlsZQlNb24gU2VwICA5IDIyOjU1OjIwIDIwMDIKLS0tIHZz ZXJ2ZXItMC4yMC5uZXcvTWFrZWZpbGUJU2F0IE9jdCAxMiAxMzoyMDowMiAyMDAyCioqKioqKioq KioqKioqKgoqKiogMyw3ICoqKioKICBQUk9HUz1jaGJpbmQgY2hjb250ZXh0IHJlZHVjZWNhcCBy ZWJvb3RtZ3IgdnJlYm9vdCByZWFkbGluayB2dW5pZnkgdmJ1aWxkIFwKICAJdnNlcnZlci1zdGF0 IHNob3dhdHRyIHZkdSBzaG93cGVybSBjYXBjaHJvb3QgdmZpbGVzIGlmc3BlYyBmaWxldGltZSBs aXN0ZGV2aXAKISBHQ0NPUFRTPS1mdW5zaWduZWQtY2hhciAtV2FsbCAtZyAtTzMKICBhbGw6ICQo UFJPR1MpCiAgCi0tLSAzLDcgLS0tLQogIFBST0dTPWNoYmluZCBjaGNvbnRleHQgcmVkdWNlY2Fw IHJlYm9vdG1nciB2cmVib290IHJlYWRsaW5rIHZ1bmlmeSB2YnVpbGQgXAogIAl2c2VydmVyLXN0 YXQgc2hvd2F0dHIgdmR1IHNob3dwZXJtIGNhcGNocm9vdCB2ZmlsZXMgaWZzcGVjIGZpbGV0aW1l IGxpc3RkZXZpcAohIEdDQ09QVFM9LWZ1bnNpZ25lZC1jaGFyIC1XYWxsIC1nIC1PCiAgYWxsOiAk KFBST0dTKQogIApkaWZmIC1jMiB2c2VydmVyLTAuMjAvdmR1LmNjIHZzZXJ2ZXItMC4yMC5uZXcv dmR1LmNjCioqKiB2c2VydmVyLTAuMjAvdmR1LmNjCVN1biBKYW4gMTMgMjE6NDE6NDIgMjAwMgot LS0gdnNlcnZlci0wLjIwLm5ldy92ZHUuY2MJU2F0IE9jdCAxMiAxMzowNDo1NSAyMDAyCioqKioq KioqKioqKioqKgoqKiogOCwxMSAqKioqCi0tLSA4LDEzIC0tLS0KICAjaW5jbHVkZSA8c3RyaW5n PgogIAorIHVzaW5nIG5hbWVzcGFjZSBzdGQ7CisgCiAgc3RhdGljIGludCB2ZHVfb25lZGlyIChj b25zdCBzdHJpbmcgJnBhdGgsIGxvbmcgbG9uZyAmc2l6ZSkKICB7CmRpZmYgLWMyIHZzZXJ2ZXIt MC4yMC92dW5pZnkuY2MgdnNlcnZlci0wLjIwLm5ldy92dW5pZnkuY2MKKioqIHZzZXJ2ZXItMC4y MC92dW5pZnkuY2MJU2F0IEF1ZyAxMCAwNDoyODozNiAyMDAyCi0tLSB2c2VydmVyLTAuMjAubmV3 L3Z1bmlmeS5jYwlTYXQgT2N0IDEyIDEzOjAyOjA0IDIwMDIKKioqKioqKioqKioqKioqCioqKiAx NjUsMTY5ICoqKioKICAJCXByaW50ZXIgKGNvbnN0IGNoYXIgKl90aXRsZSk6IHRpdGxlKF90aXRs ZSl7fQogIAkJYm9vbCBvcGVyYXRvcigpKFQgYSl7CiEgCQkJY291dCA8PCB0aXRsZSA8PCAiICIg PDwgYSA8PCBlbmRsOwogIAkJfQogIAl9OwotLS0gMTY1LDE2OSAtLS0tCiAgCQlwcmludGVyIChj b25zdCBjaGFyICpfdGl0bGUpOiB0aXRsZShfdGl0bGUpe30KICAJCWJvb2wgb3BlcmF0b3IoKShU IGEpewohIAkJCXJldHVybiBjb3V0IDw8IHRpdGxlIDw8ICIgIiA8PCBhIDw8IGVuZGw7CiAgCQl9 CiAgCX07CmRpZmYgLWMyIHZzZXJ2ZXItMC4yMC92dXRpbC5oIHZzZXJ2ZXItMC4yMC5uZXcvdnV0 aWwuaAoqKiogdnNlcnZlci0wLjIwL3Z1dGlsLmgJU2F0IEF1ZyAxMCAwNDoyNzowMyAyMDAyCi0t LSB2c2VydmVyLTAuMjAubmV3L3Z1dGlsLmgJU2F0IE9jdCAxMiAxMjo0NDowNSAyMDAyCioqKioq KioqKioqKioqKgoqKiogMTIsMTUgKioqKgotLS0gMTIsMTcgLS0tLQogICNpbmNsdWRlIDxsaXN0 PgogIAorIHVzaW5nIG5hbWVzcGFjZSBzdGQ7CisgCiAgZXh0ZXJuIGludCBkZWJ1ZzsKICBleHRl cm4gYm9vbCB0ZXN0bW9kZTsK ---MOQ1034513299f750532e8bae7e15e28056c52e7dccb8-- From vserver.error@solucorp.qc.ca Sun Oct 13 15:16:45 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9DJGb018553; Sun, 13 Oct 2002 15:16:40 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9DIcPs13891 for vserver.list; Sun, 13 Oct 2002 14:38:25 -0400 Received: from VL-MS-MR004.sc1.videotron.ca (relais.videotron.ca [24.201.245.36]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9DIcOZ13886 for ; Sun, 13 Oct 2002 14:38:24 -0400 Received: from modemcable038.67-200-24.mtl.mc.videotron.ca ([24.200.67.38]) by VL-MS-MR004.sc1.videotron.ca (iPlanet Messaging Server 5.2 HotFix 0.9 (built Jul 29 2002)) with ESMTP id <0H3X005CJNUSOZ@VL-MS-MR004.sc1.videotron.ca> for vserver@solucorp.qc.ca; Sun, 13 Oct 2002 14:40:05 -0400 (EDT) Date: Sun, 13 Oct 2002 14:40:17 -0400 From: Cedric Veilleux Subject: Re: [vserver] Compiling utilities on GCC 3.2 (gentoo) In-reply-to: <1034513299.3da96b9322ef8@vmail.db> To: vserver@solucorp.qc.ca Message-id: <200210131440.17700.cedric@neopeak.com> Organization: Neopeak Internet Solutions inc. MIME-version: 1.0 Content-type: text/plain; charset=iso-8859-1 Content-disposition: inline User-Agent: KMail/1.4.7 References: <200210111510.34231.cedric@neopeak.com> <1034513299.3da96b9322ef8@vmail.db> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g9DIcOZ13886 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1303 A big thank you. It works perfectly. Cedric > > Hello Cédric, > > you can try the my patch. > Hope this helps .... > > Dieter > > ------------------------------------------------- > This mail sent through IMP: http://horde.org/imp/ From vserver.error@solucorp.qc.ca Sun Oct 13 16:37:25 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9DKbG019317; Sun, 13 Oct 2002 16:37:20 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9DJhYa15864 for vserver.list; Sun, 13 Oct 2002 15:43:34 -0400 Received: from tomts21-srv.bellnexxia.net (tomts21-srv.bellnexxia.net [209.226.175.183]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9DJhUZ15859 for ; Sun, 13 Oct 2002 15:43:33 -0400 Received: from barf ([207.236.226.187]) by tomts21-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20021013194425.UXXQ27400.tomts21-srv.bellnexxia.net@barf> for ; Sun, 13 Oct 2002 15:44:25 -0400 Message-ID: <006001c272f0$f4660780$0301a8c0@barf> From: "takashi" To: Subject: [vserver] postfix in vserver with many interface.... Date: Sun, 13 Oct 2002 15:44:33 -0400 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_005D_01C272CF.6D251A20" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1304 This is a multi-part message in MIME format. ------=_NextPart_000_005D_01C272CF.6D251A20 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable CONTEXT:=20 5 Domains name 5 IPS RECEIVING MAIL = =20 = =20 By default, in a real server = =20 the software claims all active interfaces on the machine. The = =20 parameter also controls delivery of mail to user@[ip.address]. =20 But in a vserver we know that the iproot is the first ip in the list in = the conf.... So postfix listen only to the first ip and cannot receive mail from = other interface , domaine , IPS ... Anyway to care this ?? i cannot run this email server in the main server = Thanks All for your help Take care .. ------=_NextPart_000_005D_01C272CF.6D251A20 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
CONTEXT:
5 Domains name
5 IPS
 
RECEIVING=20 MAIL           &nb= sp;           &nbs= p;            = ;            =             &= nbsp;           &n= bsp;           &nb= sp;           &nbs= p;            = ;     
      &n= bsp;           &nb= sp;           &nbs= p;            = ;            =             &= nbsp;           &n= bsp;           &nb= sp;           &nbs= p;            = ;            =     
=20 By default, in a real server=20             &= nbsp;           &n= bsp;           &nb= sp;           &nbs= p;            = ;       
=20 the software claims all active interfaces on the machine.=20 The           &nbs= p;            = ;            =             &= nbsp;           &n= bsp;        
=20 parameter also controls delivery of mail to user@[ip.address].  
 
But in a vserver we know that the = iproot is=20 the first ip in the list in the conf....
 
So postfix listen only to the first ip = and cannot=20 receive mail from other interface , domaine , IPS ...
 
Anyway to care this ?? i cannot run = this email=20 server in the main server
 
 
Thanks All for your help
 
Take care ..
 
 
 
 
------=_NextPart_000_005D_01C272CF.6D251A20-- From vserver.error@solucorp.qc.ca Sun Oct 13 19:15:13 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9DNF6020618; Sun, 13 Oct 2002 19:15:10 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9DMgY823924 for vserver.list; Sun, 13 Oct 2002 18:42:34 -0400 Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9DMgXZ23915 for ; Sun, 13 Oct 2002 18:42:33 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id D5A467A500; Sun, 13 Oct 2002 23:43:25 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 4A09E92087 for ; Sun, 13 Oct 2002 23:43:24 +0100 (BST) Date: Sun, 13 Oct 2002 23:43:23 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] postfix in vserver with many interface.... In-Reply-To: <006001c272f0$f4660780$0301a8c0@barf> Message-ID: X-GPG-Key: DSA/E90CFA24 X-message-flag: Please use plain text when replying--not HTML. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1305 On Sun, 13 Oct 2002, takashi wrote: > Anyway to care this ?? i cannot run this email server in the main server In the main server, edit `/etc/postfix/main.cf': inet_interfaces = 1.2.3.4, 5.6.7.8 (and/or edit `/etc/postfix/master.cf'): smtp inet n - - - - smtpd -o inet_interfaces=1.2.3.4 -Paul -- Nottingham, GB From vserver.error@solucorp.qc.ca Sun Oct 13 20:02:40 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9E02W021028; Sun, 13 Oct 2002 20:02:35 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9DNX4e25686 for vserver.list; Sun, 13 Oct 2002 19:33:04 -0400 Received: from tomts25-srv.bellnexxia.net (tomts25.bellnexxia.net [209.226.175.188]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9DNX3Z25680 for ; Sun, 13 Oct 2002 19:33:03 -0400 Received: from barf ([207.236.226.187]) by tomts25-srv.bellnexxia.net (InterMail vM.5.01.04.19 201-253-122-122-119-20020516) with SMTP id <20021013233357.XAES8507.tomts25-srv.bellnexxia.net@barf> for ; Sun, 13 Oct 2002 19:33:57 -0400 Message-ID: <001101c27311$04bbf3e0$0301a8c0@barf> From: "takashi" To: References: Subject: Re: [vserver] postfix in vserver with many interface.... Date: Sun, 13 Oct 2002 19:34:04 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1306 > In the main server, edit `/etc/postfix/main.cf': > > inet_interfaces = 1.2.3.4, 5.6.7.8 > > (and/or edit `/etc/postfix/master.cf'): > > smtp inet n - - - - smtpd -o inet_interfaces=1.2.3.4 > -Yes this will work in a real server. -But my postfix is not running in the main server but in a virtual i want the user to have acess to the mail in the virtual... Is it possible to do that in a vserver ... -I think no ... if yes how you do this ! :) Thank From vserver.error@solucorp.qc.ca Mon Oct 14 03:59:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9E7wu024357; Mon, 14 Oct 2002 03:59:00 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9E7FsJ04994 for vserver.list; Mon, 14 Oct 2002 03:15:54 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9E7FqZ04989 for ; Mon, 14 Oct 2002 03:15:53 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id D5CAEFDD for ; Mon, 14 Oct 2002 09:17:29 +0200 (CEST) Date: Mon, 14 Oct 2002 09:16:47 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: Re: [vserver] Compiling utilities on GCC 3.2 (gentoo) Message-Id: <20021014091647.5dfb960e.kl@vsen.dk> In-Reply-To: <1034513299.3da96b9322ef8@vmail.db> References: <200210111510.34231.cedric@neopeak.com> <1034513299.3da96b9322ef8@vmail.db> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1307 Hi Dieter, On Sun, 13 Oct 2002 14:48:19 +0200 Dieter Bigalke wrote: > > you can try the my patch. > Hope this helps .... > It worked perfectly. Thank you very much :-) I hope this change will go into vserver-0.21? -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Mon Oct 14 09:41:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EDfl028777; Mon, 14 Oct 2002 09:41:47 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9ECa2V16056 for vserver.list; Mon, 14 Oct 2002 08:36:02 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9ECa1Z16048 for ; Mon, 14 Oct 2002 08:36:01 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id 101D0FDD for ; Mon, 14 Oct 2002 14:37:39 +0200 (CEST) Date: Mon, 14 Oct 2002 14:36:56 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: Re: [vserver] Porting utilities Message-Id: <20021014143656.00f1afb8.kl@vsen.dk> In-Reply-To: <200210130245.26266.cedric@neopeak.com> References: <200210130245.26266.cedric@neopeak.com> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: O X-Status: X-Keywords: X-UID: 1308 On Sun, 13 Oct 2002 02:45:26 -0400 Cedric Veilleux wrote: > Hi, > > I know some work is being done to port utilities to debian. I am > working on > porting to Gentoo linux. > > The vunify, vfiles and vbuild utilities would have to, somehow, > determine > which kind of vservers they are dealing with. This also applies to > vrpm, although this one would ideally have to be renamed to avoid > confusion. There are several solutions: > > 1- Additional --pkgtype option. Values would be rpm, deb or gentoo. > Defaults to rpm. > > 2- New configuration option. For each vserver, a DISTRIBUTION variable > could be added to the config file of each vserver. > I like this idea best - especially if one added a test (option 3-so it could auto-configure) for what distro it was. > 3- Guessing. The utilities could look at the files inside the vserver > and guess the distro used. > > > Any other suggestions? What would be the best? > I was thinking you could use epm (the gentoo rpm equivalent - except it doesn't have --verify) - this way it would be the exact same options as for RedHat. What do you think? -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Mon Oct 14 09:49:54 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EDnl028815; Mon, 14 Oct 2002 09:49:51 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9ED2xb16855 for vserver.list; Mon, 14 Oct 2002 09:02:59 -0400 Received: from mailout03.sul.t-online.com (mailout03.sul.t-online.com [194.25.134.81]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9ED2vZ16850 for ; Mon, 14 Oct 2002 09:02:58 -0400 Received: from fwd08.sul.t-online.de by mailout03.sul.t-online.com with smtp id 1814sv-0008D8-0K; Mon, 14 Oct 2002 15:03:49 +0200 Received: from ws1.m2soft.com (510030202531-0001@[80.133.104.184]) by fmrl08.sul.t-online.com with esmtp id 1814sq-0KTJkuC; Mon, 14 Oct 2002 15:03:44 +0200 Message-Id: <5.1.0.14.0.20021014150156.00acf710@pop.m2soft.com> X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Mon, 14 Oct 2002 15:04:03 +0200 To: vserver@solucorp.qc.ca From: Moritz Julian Ehlenz | M2Soft GmbH Subject: [vserver] Mailing list archive? Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed X-Sender: 510030202531-0001@t-dialin.net Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1309 Hi there, I'd like to know if there's a new mailing list archive, since the one at http://vserver.vlad.net/ seems to have been removed recently. I don't want to bother anybody with questions that have been asked before, so an archive would help a lot :-) Cu, Moritz -- M2Soft GmbH + http://www.m2soft.com + mailto:info@m2soft.com Postfach 300 919 +++ 53189 Bonn +++ Germany +++ 0800 0627638 Hausanschrift: Obere Wilhelmstr. 2 ++ 53225 Bonn ++ Germany DE Phone +49 (228) 4 22 12 22 ++ DE Fax +49 (228) 4 22 12 23 UK Phone +44 (870) 1 36 36 59 ++ UK Fax +44 (870) 1 36 36 63 From vserver.error@solucorp.qc.ca Mon Oct 14 10:40:06 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EEdx029203; Mon, 14 Oct 2002 10:40:03 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EDkSt18545 for vserver.list; Mon, 14 Oct 2002 09:46:28 -0400 Received: from erebus.mail.winlin.be (erebus.winlin.be [193.121.61.72]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9EDkRZ18540 for ; Mon, 14 Oct 2002 09:46:28 -0400 Received: from winlin.be (saruman.winlin.be [193.121.61.69]) by erebus.mail.winlin.be (Postfix) with SMTP id 2C3DCEF25 for ; Mon, 14 Oct 2002 15:47:23 +0200 (CEST) Received: from 212.100.163.144 (SquirrelMail authenticated user ivan.faes@winlin.be) by saruman.winlin.be with HTTP; Mon, 14 Oct 2002 15:47:23 +0200 (CEST) Message-ID: <45986.212.100.163.144.1034603243.squirrel@saruman.winlin.be> Date: Mon, 14 Oct 2002 15:47:23 +0200 (CEST) Subject: Re: [vserver] Mailing list archive? From: To: In-Reply-To: <3DAAC96B.524BBFE6@silicide.dk> References: <5.1.0.14.0.20021014150156.00acf710@pop.m2soft.com> <3DAAC96B.524BBFE6@silicide.dk> X-Priority: 3 Importance: Normal X-MSMail-Priority: Normal X-Mailer: SquirrelMail (version 1.2.7) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1310 maybe he should use soething that genetares it automaticly ? (just thinking) > Moritz Julian Ehlenz | M2Soft GmbH wrote: >> >> Hi there, >> >> I'd like to know if there's a new mailing list archive, since >> the one at http://vserver.vlad.net/ seems to have been removed >> recently. I don't want to bother anybody with questions that >> have been asked before, so an archive would help a lot :-) > > I asked the archive admin some time ago, and he wrote: > " > Subject: Re: where are the august and september archive of VSERVER ?? > Date: Tue, 17 Sep 2002 08:46:34 -0400 (EDT) > From: Vlad > To: Jon Bendtsen > > > Haven't updated them yet.. > > On Tue, 17 Sep 2002, Jon Bendtsen wrote: > >> i can only see until july. >> >> >> >> JonB" > > > > JonB From vserver.error@solucorp.qc.ca Mon Oct 14 11:16:15 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EFG9029514; Mon, 14 Oct 2002 11:16:09 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EDeBJ18267 for vserver.list; Mon, 14 Oct 2002 09:40:11 -0400 Received: from pfepb.post.tele.dk (pfepb.post.tele.dk [193.162.153.3]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9EDeAZ18262 for ; Mon, 14 Oct 2002 09:40:11 -0400 Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by pfepb.post.tele.dk (Postfix) with ESMTP id 7FA7E5EEAD8 for ; Mon, 14 Oct 2002 15:41:06 +0200 (CEST) Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.35 #1 (Debian)) id 1815St-0005Jx-00 for ; Mon, 14 Oct 2002 15:40:59 +0200 Sender: jon@pfepb.post.tele.dk Message-ID: <3DAAC96B.524BBFE6@silicide.dk> Date: Mon, 14 Oct 2002 15:40:59 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Mailing list archive? References: <5.1.0.14.0.20021014150156.00acf710@pop.m2soft.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *1815St-0005Jx-00*jRDjgAUmk2Q* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1311 Moritz Julian Ehlenz | M2Soft GmbH wrote: > > Hi there, > > I'd like to know if there's a new mailing list archive, since > the one at http://vserver.vlad.net/ seems to have been removed > recently. I don't want to bother anybody with questions that > have been asked before, so an archive would help a lot :-) I asked the archive admin some time ago, and he wrote: " Subject: Re: where are the august and september archive of VSERVER ?? Date: Tue, 17 Sep 2002 08:46:34 -0400 (EDT) From: Vlad To: Jon Bendtsen Haven't updated them yet.. On Tue, 17 Sep 2002, Jon Bendtsen wrote: > i can only see until july. > > > > JonB" JonB From vserver.error@solucorp.qc.ca Mon Oct 14 11:29:38 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EFTV029678; Mon, 14 Oct 2002 11:29:31 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EE3jO19102 for vserver.list; Mon, 14 Oct 2002 10:03:45 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9EE3iZ19097 for ; Mon, 14 Oct 2002 10:03:45 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id CC396FDD for ; Mon, 14 Oct 2002 16:05:22 +0200 (CEST) Date: Mon, 14 Oct 2002 16:04:39 +0200 From: Klavs Klavsen To: Vserver mailinglist Subject: [vserver] problem entering/starting vservers on gentoo Message-Id: <20021014160439.23f06fbf.kl@vsen.dk> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1312 Hi guys, I just copied over my RH7.2 vserver from another (RH) box, to try and run it on my new Gentoo-based vserver machine. I got the utilities compiled via Dieter Bigalke's patch, but when I try to enter my vserver (or start it) I get this output: vserver main enter ipv4root is now 172.16.16.100 Host name is now main.vsen.dk New security context is 3 /usr/sbin/vserver: line 583: 12382 Illegal instruction $CHBIND_CMD $SILENT $IPOPT --bcast $IPROOTBCAST $CHCONTEXT_CMD $SILENT $CAPS --secure $CTXOPT $HOSTOPT $DOMAINOPT $SAVE_S_CONTEXT_CMD /var/run/vservers/$VSERVER.ctx $CAPCHROOT_CMD --suid $USERID $CHROOTOPT . $@ Any ideas? :-( line 583 is the last line in the vserver script. it just says fi. -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Mon Oct 14 11:43:42 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EFhc029859; Mon, 14 Oct 2002 11:43:38 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EE3Z119093 for vserver.list; Mon, 14 Oct 2002 10:03:35 -0400 Received: from cti06.citenet.net (cti06.citenet.net [206.123.38.70]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9EE3ZZ19088 for ; Mon, 14 Oct 2002 10:03:35 -0400 Received: from remtk.solucorp.qc.ca (g36-67.citenet.net [206.123.36.67]) by cti06.citenet.net (8.12.6/8.12.6) with ESMTP id g9EE4kJa082950 for ; Mon, 14 Oct 2002 10:04:50 -0400 (EDT) (envelope-from jack@remtk.solucorp.qc.ca) Received: (from jack@localhost) by remtk.solucorp.qc.ca (8.11.0/linuxconf) id g9EDWmD19695 for vserver@solucorp.qc.ca; Mon, 14 Oct 2002 09:32:48 -0400 From: Jacques Gelinas Date: Mon, 14 Oct 2002 09:32:48 -0500 To: vserver@solucorp.qc.ca Subject: re: [vserver] Porting utilities References: <200210130245.26266.cedric@neopeak.com> In-Reply-To: <200210130245.26266.cedric@neopeak.com> X-mailer: tlmpmail 0.6 Message-ID: <20021014093248.3fd545e11209@remtk.solucorp.qc.ca> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1313 On Sun, 13 Oct 2002 02:45:26 -0500, Cedric Veilleux wrote > Hi, > > I know some work is being done to port utilities to debian. I am working on > porting to Gentoo linux. > > The vunify, vfiles and vbuild utilities would have to, somehow, determine > which kind of vservers they are dealing with. This also applies to vrpm, > although this one would ideally have to be renamed to avoid confusion. There > are several solutions: > > 1- Additional --pkgtype option. Values would be rpm, deb or gentoo. Defaults > to rpm. > > 2- New configuration option. For each vserver, a DISTRIBUTION variable could > be added to the config file of each vserver. > > 3- Guessing. The utilities could look at the files inside the vserver and > guess the distro used. Yes that would do. I would go for guessing + some command line option to override the guess for such strange vservers. And finally, a config option in the vserver configuration file. For most user, guessing will work fine. Some very special case will require overrides. No need to default to rpm. Distro are easily differentiated. --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc From vserver.error@solucorp.qc.ca Mon Oct 14 11:48:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EFlx029879; Mon, 14 Oct 2002 11:47:59 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EE5FF19176 for vserver.list; Mon, 14 Oct 2002 10:05:15 -0400 Received: from pfepc.post.tele.dk (pfepc.post.tele.dk [193.162.153.4]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9EE5EZ19171 for ; Mon, 14 Oct 2002 10:05:15 -0400 Received: from ns1.silicide.dk (0x503e9846.bynxx9.adsl-dhcp.tele.dk [80.62.152.70]) by pfepc.post.tele.dk (Postfix) with ESMTP id 1AE0C2642EB for ; Mon, 14 Oct 2002 16:06:11 +0200 (CEST) Received: from gw.silicide.dk ([192.168.2.1] helo=silicide.dk) by ns1.silicide.dk with esmtp (Exim 3.35 #1 (Debian)) id 1815rB-0005MD-00 for ; Mon, 14 Oct 2002 16:06:05 +0200 Sender: jon@pfepc.post.tele.dk Message-ID: <3DAACF4C.A9ADF24D@silicide.dk> Date: Mon, 14 Oct 2002 16:06:04 +0200 From: Jon Bendtsen Organization: Silicide A/S X-Mailer: Mozilla 4.77 [en] (X11; U; Linux 2.4.2 i686) X-Accept-Language: en MIME-Version: 1.0 To: vserver@solucorp.qc.ca Subject: Re: [vserver] Mailing list archive? References: <5.1.0.14.0.20021014150156.00acf710@pop.m2soft.com> <3DAAC96B.524BBFE6@silicide.dk> <45986.212.100.163.144.1034603243.squirrel@saruman.winlin.be> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Scanner: exiscan *1815rB-0005MD-00*t20YrCPxhUc* (Silicide A/S, Copenhagen, Denmark) Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1314 ivan.faes@winlin.be wrote: > > maybe he should use soething that genetares it automaticly ? (just thinking) Yeah, that would be a neat thing. JonB From vserver.error@solucorp.qc.ca Mon Oct 14 11:56:07 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EFu0029966; Mon, 14 Oct 2002 11:56:04 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EEIpS19557 for vserver.list; Mon, 14 Oct 2002 10:18:51 -0400 Received: from mailout08.sul.t-online.com (mailout08.sul.t-online.com [194.25.134.20]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9EEIoZ19552 for ; Mon, 14 Oct 2002 10:18:50 -0400 Received: from fwd03.sul.t-online.de by mailout08.sul.t-online.com with smtp id 1815du-00068e-04; Mon, 14 Oct 2002 15:52:22 +0200 Received: from ws1.m2soft.com (510030202531-0001@[80.133.104.184]) by fmrl03.sul.t-online.com with esmtp id 1815dh-1IDsdUC; Mon, 14 Oct 2002 15:52:09 +0200 Message-Id: <5.1.0.14.0.20021014155158.00ac57c8@pop.m2soft.com> X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Mon, 14 Oct 2002 15:52:28 +0200 To: vserver@solucorp.qc.ca From: Moritz Julian Ehlenz | M2Soft GmbH Subject: Re: [vserver] Mailing list archive? In-Reply-To: <3DAAC96B.524BBFE6@silicide.dk> References: <5.1.0.14.0.20021014150156.00acf710@pop.m2soft.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed X-Sender: 510030202531-0001@t-dialin.net Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1315 Hi there, At 15:40 14.10.2002 +0200, you wrote: >I asked the archive admin some time ago, and he wrote: Vlad told me he wasn't maintaining them anymore... Cu, Moritz -- M2Soft GmbH + http://www.m2soft.com + mailto:info@m2soft.com Postfach 300 919 +++ 53189 Bonn +++ Germany +++ 0800 0627638 Hausanschrift: Obere Wilhelmstr. 2 ++ 53225 Bonn ++ Germany DE Phone +49 (228) 4 22 12 22 ++ DE Fax +49 (228) 4 22 12 23 UK Phone +44 (870) 1 36 36 59 ++ UK Fax +44 (870) 1 36 36 63 From vserver.error@solucorp.qc.ca Mon Oct 14 12:30:31 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EGUO030400; Mon, 14 Oct 2002 12:30:24 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EEqsu20801 for vserver.list; Mon, 14 Oct 2002 10:52:54 -0400 Received: from www.vsen.dk (213.237.54.63.adsl.suoe.worldonline.dk [213.237.54.63]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9EEqrZ20796 for ; Mon, 14 Oct 2002 10:52:54 -0400 Received: from amd.vsen.dk (unknown [192.168.1.4]) by www.vsen.dk (Postfix) with SMTP id 9C3F9FDD for ; Mon, 14 Oct 2002 16:54:32 +0200 (CEST) Date: Mon, 14 Oct 2002 16:53:49 +0200 From: Klavs Klavsen To: vserver@solucorp.qc.ca Subject: Re: [vserver] Mailing list archive? Message-Id: <20021014165349.49ee46a8.kl@vsen.dk> In-Reply-To: <45986.212.100.163.144.1034603243.squirrel@saruman.winlin.be> References: <5.1.0.14.0.20021014150156.00acf710@pop.m2soft.com> <3DAAC96B.524BBFE6@silicide.dk> <45986.212.100.163.144.1034603243.squirrel@saruman.winlin.be> Organization: Enable IT User-Agent: Sylpheed-Claws - Version X X-Mailer: Sylpheed-Claws - Version X Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: A X-Keywords: X-UID: 1316 On Mon, 14 Oct 2002 15:47:23 +0200 (CEST) wrote: > maybe he should use soething that genetares it automaticly ? (just > thinking) > he is, it's apperaently just not working. I guess vlad (the archive maintainer) has been busy. I hope he sees the post :-) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Mon Oct 14 13:56:55 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EHul031098; Mon, 14 Oct 2002 13:56:48 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EGMAs23824 for vserver.list; Mon, 14 Oct 2002 12:22:10 -0400 Received: from smtp018.mail.yahoo.com (smtp018.mail.yahoo.com [216.136.174.115]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with SMTP id g9EGM9Z23819 for ; Mon, 14 Oct 2002 12:22:09 -0400 Received: from unknown (HELO PETERCOMPUTER) (peterkwanchan@140.192.180.81 with login) by smtp.mail.vip.sc5.yahoo.com with SMTP; 14 Oct 2002 16:23:05 -0000 From: "Peter Kwan Chan" To: Subject: RE: [vserver] Mailing list archive? Date: Mon, 14 Oct 2002 11:23:03 -0500 Message-ID: <000c01c2739d$f8ef3080$51b4c08c@PETERCOMPUTER> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 In-Reply-To: <20021014165349.49ee46a8.kl@vsen.dk> Importance: Normal Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1317 What is involved in setting up the mailing list archive? Do I need special software? I am willing to take up the responsibility to host the archive, just as a little way of giving back to this group. Thanks, Peter -----Original Message----- From: Klavs Klavsen [mailto:kl@vsen.dk] Sent: Monday, October 14, 2002 9:54 AM To: vserver@solucorp.qc.ca Subject: Re: [vserver] Mailing list archive? On Mon, 14 Oct 2002 15:47:23 +0200 (CEST) wrote: > maybe he should use soething that genetares it automaticly ? (just > thinking) > he is, it's apperaently just not working. I guess vlad (the archive maintainer) has been busy. I hope he sees the post :-) -- Regards, Klavs Klavsen -------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant klavs@EnableIT.dk - http://www.EnableIT.dk Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA ---------------------[ I think that... ]----------------------- Working with Unix is like wrestling a worthy opponent. Working with windows is like attacking a small whining child who is carrying a .38. -- Unknown From vserver.error@solucorp.qc.ca Mon Oct 14 16:23:57 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EKNq032554; Mon, 14 Oct 2002 16:23:52 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EIlKq28486 for vserver.list; Mon, 14 Oct 2002 14:47:20 -0400 Received: from alien.vlad.net (alien.vlad.net [208.236.0.236]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9EIlJZ28481 for ; Mon, 14 Oct 2002 14:47:19 -0400 Received: from localhost (alien.vlad.net [127.0.0.1]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EIrP031703 for ; Mon, 14 Oct 2002 14:53:28 -0400 Date: Mon, 14 Oct 2002 14:53:25 -0400 (EDT) From: Vlad To: vserver@solucorp.qc.ca Subject: Re: [vserver] Mailing list archive? In-Reply-To: <20021014165349.49ee46a8.kl@vsen.dk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-MailScanner: Found to be clean, Found to be clean Reply-to: vserver@solucorp.qc.ca Status: RO X-Status: X-Keywords: X-UID: 1318 I have actually ceased maintenance of the archive for several reasons as it became a daily chore to remove the incredible amount of spam, porn, and just mailing list crap (unsubscribes, 20 messages in a row of bounced stuff, etc) and I could never get decent results from any open source engine searches.. so I just dropped the whole thing. Sorry guys, but very few people were looking at it to begin with. Maybe 10-12 non-spambots a month. -Vlad On Mon, 14 Oct 2002, Klavs Klavsen wrote: > On Mon, 14 Oct 2002 15:47:23 +0200 (CEST) > wrote: > > > maybe he should use soething that genetares it automaticly ? (just > > thinking) > > > he is, it's apperaently just not working. I guess vlad (the archive > maintainer) has been busy. > > I hope he sees the post :-) > > From vserver.error@solucorp.qc.ca Mon Oct 14 16:45:30 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EKjN032713; Mon, 14 Oct 2002 16:45:27 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EJZDZ29970 for vserver.list; Mon, 14 Oct 2002 15:35:13 -0400 Received: from VL-MS-MR001.sc1.videotron.ca (relais.videotron.ca [24.201.245.36]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9EJZDZ29965 for ; Mon, 14 Oct 2002 15:35:13 -0400 Received: from modemcable038.67-200-24.mtl.mc.videotron.ca ([24.200.67.38]) by VL-MS-MR001.sc1.videotron.ca (iPlanet Messaging Server 5.2 HotFix 0.9 (built Jul 29 2002)) with ESMTP id <0H3Z00F40L4IEP@VL-MS-MR001.sc1.videotron.ca> for vserver@solucorp.qc.ca; Mon, 14 Oct 2002 15:36:18 -0400 (EDT) Date: Mon, 14 Oct 2002 15:37:21 -0400 From: Cedric Veilleux Subject: Re: [vserver] Porting utilities In-reply-to: <20021014143656.00f1afb8.kl@vsen.dk> To: vserver@solucorp.qc.ca Message-id: <200210141537.21392.cedric@neopeak.com> Organization: Neopeak Internet Solutions inc. MIME-version: 1.0 Content-type: text/plain; charset=iso-8859-1 Content-transfer-encoding: 7BIT Content-disposition: inline User-Agent: KMail/1.4.7 References: <200210130245.26266.cedric@neopeak.com> <20021014143656.00f1afb8.kl@vsen.dk> Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1319 > I was thinking you could use epm (the gentoo rpm equivalent - except it > doesn't have --verify) - this way it would be the exact same options as > for RedHat. > That's an excellent suggestion. I was not aware of this tool. I read some documentation about it and it does not seem to produce the same output as the real rpm does and it doesn't support everything.. One thing it can do though is list the configuration files seperately, which is very important when unifying packages, we don't want to unify config files. vunify runs "rpm -ql --dump package-version" On gentoo, this does not produce what we want. Although we can find the files to unify by running: # epm -ql vcron /var/spool/cron/crontabs /usr/share/man/man1/crontab.1.gz /usr/share/man/man5/crontab.5.gz /usr/share/man/man8/cron.8.gz /usr/share/doc/vcron-3.0.1-r1/CHANGES.gz /usr/share/doc/vcron-3.0.1-r1/FEATURES.gz /usr/share/doc/vcron-3.0.1-r1/CONVERSION.gz /usr/share/doc/vcron-3.0.1-r1/MAIL.gz /usr/share/doc/vcron-3.0.1-r1/MANIFEST.gz /usr/share/doc/vcron-3.0.1-r1/README.gz /usr/share/doc/vcron-3.0.1-r1/THANKS.gz /usr/share/doc/vcron-3.0.1-r1/crontab.gz /usr/sbin/cron /usr/bin/crontab /etc/cron.d/.keep /etc/init.d/vcron /etc/crontab and then substracting the files that appear in this list too: # epm -qc vcron /etc/cron.d/.keep /etc/init.d/vcron /etc/crontab Only "epm" can list config files seperatly. Although as you can see, config files on gentoo are simply all files in /etc (or other directories included in CONFIG_PROTECT). My work on porting to gentoo is progressing. The unify part is probably what I will do last since my gentoo vservers are not that big anyways (300-400 MB). I found a very elegant way of building gentoo vserver. I will create a stage1 tarball with a special "vserver" profile. As you may know, profiles under gentoo are used to port to different architectures. The profile will have all hardware/kernel related things stripped. Also baselayout will be replaced by a new package, v_baselayout. This package will set the basic /etc/init.d/ scripts properly as well as /etc/fstab, /sbin/rc and various other things. Creating a new vserver will be much like installing gentoo. Extract the tarball in /vservers/blah, chroot in it, bootstrap and "emerge system". Cedric From vserver.error@solucorp.qc.ca Mon Oct 14 18:29:48 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9EMTf001462; Mon, 14 Oct 2002 18:29:41 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9EKv4n03487 for vserver.list; Mon, 14 Oct 2002 16:57:04 -0400 Received: from e-biz.lu (stingray.e-hosting.lu [212.24.214.193]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9EKv2Z03480 for ; Mon, 14 Oct 2002 16:57:02 -0400 Received: from simon.lan (pppoe59-luxdsl-032.pt.lu [213.166.59.32]) by e-biz.lu (8.11.6/8.11.6) with ESMTP id g9EKvwM07422 for ; Mon, 14 Oct 2002 22:57:58 +0200 From: Georges Toth To: vserver@solucorp.qc.ca Subject: Re: [vserver] Porting utilities Date: Mon, 14 Oct 2002 22:57:51 +0200 User-Agent: KMail/1.4.7 References: <200210130245.26266.cedric@neopeak.com> <20021014143656.00f1afb8.kl@vsen.dk> <200210141537.21392.cedric@neopeak.com> In-Reply-To: <200210141537.21392.cedric@neopeak.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Disposition: inline Message-Id: <200210142257.51872.georges@norm.lu> Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by dns.solucorp.qc.ca id g9EKv2Z03480 Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: X-Keywords: X-UID: 1320 > My work on porting to gentoo is progressing. The unify part is probably > what I will do last since my gentoo vservers are not that big anyways > (300-400 MB). I found a very elegant way of building gentoo vserver. I will > create a stage1 tarball with a special "vserver" profile. As you may know, > profiles under gentoo are used to port to different architectures. The > profile will have all hardware/kernel related things stripped. Also > baselayout will be replaced by a new package, v_baselayout. This package > will set the basic /etc/init.d/ scripts properly as well as /etc/fstab, > /sbin/rc and various other things. > > Creating a new vserver will be much like installing gentoo. Extract the > tarball in /vservers/blah, chroot in it, bootstrap and "emerge system". sounds great. might be a good idea to create an i686 optimized stage3 tarball as well, so you don't have to bootstrap and compile everything, everytime you add a new vserver ....and an archive of precompiled ebuild-packages......i'll do that at least as soon as vservers are running correctly for me under gentoo -- regards, Georges Toth From vserver.error@solucorp.qc.ca Mon Oct 14 19:25:59 2002 Received: from dns.solucorp.qc.ca (dns.solucorp.qc.ca [207.253.4.241]) by alien.vlad.net (8.11.6/8.11.6) with ESMTP id g9ENPo001987; Mon, 14 Oct 2002 19:25:54 -0400 Received: (from mail@localhost) by dns.solucorp.qc.ca (8.11.6/linuxconf) id g9ELruq08343 for vserver.list; Mon, 14 Oct 2002 17:53:56 -0400 Received: from starsky.19inch.net (starsky.19inch.net [80.1.73.116]) by dns.solucorp.qc.ca (8.11.6/linuxconf) with ESMTP id g9ELrtZ08338 for ; Mon, 14 Oct 2002 17:53:55 -0400 Received: by starsky.19inch.net (Postfix, from userid 1000) id E27307A546; Mon, 14 Oct 2002 22:54:48 +0100 (BST) Received: from localhost (localhost [127.0.0.1]) by starsky.19inch.net (Postfix) with ESMTP id 69172920AF for ; Mon, 14 Oct 2002 22:54:47 +0100 (BST) Date: Mon, 14 Oct 2002 22:54:47 +0100 (BST) From: Paul Sladen X-Sender: paul@starsky.19inch.net To: VServer Patch List Subject: Re: [vserver] Mailing list archive? (Missing Periods) In-Reply-To: Message-ID: X-GPG-Key: DSA/E90CFA24 X-message-flag: Please use plain text when replying--not HTML. MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Reply-to: vserver@solucorp.qc.ca X-MailScanner: Found to be clean Status: RO X-Status: A X-Keywords: X-UID: 1321 On Mon, 14 Oct 2002, Vlad wrote: > > I have actually ceased maintenance of the archive [...] I sucked your archive down a while ago and have been intending to start another archive up. Unfortunately I got unsubbed after Jack's disk-crash, and I'm missing list mail between: 2002 August 23rd -> 2002 Sep 18th Can anybody send/bounce this to me? If somebody does, I shall endeavour to get everything setup and feed pipermail the back-dated stuff aswell. Vlad/Jacques; do you still have all the original messages (going back to 2001), in mbox format too? --I'd really like these rather than relying on reverse-enginneering the HTMLized output I have at the moment. I don't /really/ want to set it up an alternative archive until I can be sure that I have a reasonably complete collection all in one place. -Paul -- Nottingham, GB