Re: [Bug 369575] Re: Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?
Daniel Richard G. sk...@iskunk.org writes: At the moment, my PAM-profile override *is* put into place by the same script that adds the minimum_uid bit to krb5.conf. But that's just a workaround. I don't need a workaround; I need a fix for this, so that I can toss the workaround :-) I guess I'm a bit baffled by why fixing your PAM configuration is a workaround but installing a custom krb5.conf is a desired configuration step. That just isn't how I think about the files. But that's okay, I don't have to understand. :) (Incidentally, Russ, Steve... what would you think of asking minimum_uid as a debconf question, when initially creating krb5.conf? Other sites may want to frob this setting as well.) It's a weird situation, since krb5-config doesn't know whether you're ever going to care about the Kerberos PAM module. You may be installing a krb5.conf for some other reason entirely. A strong argument could be made that the whole [appdefaults] thing in krb5.conf is a basically bad idea (particularly since krb5.conf doesn't support file includes) and should not be used to distribute PAM configuration, or any other app-specific configuration. That's part of the reason why it was initially done through the PAM configuration directly, since after all it is configuration for the PAM module, not for the general Kerberos installation on the system. But despite feeling that at times, I do use [appdefaults] for a bunch of my stuff because it's convenient to have a nice configuration syntax and configuration reading functions built-in, and because a lot of people like to distribute Kerberos settings site-wide through krb5.conf and there are some PAM settings that are really site-wide. (I don't think of minimum_uid as one, but things like renewable lifetime or forwardable tickets are more.) -- Russ Allbery (r...@debian.org) http://www.eyrie.org/~eagle/ -- Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ? https://bugs.launchpad.net/bugs/369575 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to kerberos-configs in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 361819] Re: Frequent random KVM host kernel OOPS
This bug report was marked as Triaged a while ago but has not had any updated comments for quite some time. Please let us know if this issue remains in the current Ubuntu release, http://www.ubuntu.com/getubuntu/download . If the issue remains, click on the current status under the Status column and change the status back to New. Thanks. [This is an automated message. Apologies if it has reached you inappropriately; please just reply to this message indicating so.] -- Frequent random KVM host kernel OOPS https://bugs.launchpad.net/bugs/361819 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to kvm in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 369575] Re: Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?
On Tue, Apr 13, 2010 at 04:42:37AM -, Daniel Richard G. wrote:
But I suppose that's what NEWS.Debian is for.
You could also stick in a debconf notice, like what x11-common had for a
while (Major possible upgrade issues).
This is not considered good practice, and I don't think it's warranted in
this case. I agree that this is what NEWS.Debian is for.
(Incidentally, Russ, Steve... what would you think of asking minimum_uid
as a debconf question, when initially creating krb5.conf? Other sites
may want to frob this setting as well.)
They may want to, but I don't think the added complexity of debconf solely
for what I believe is a rarely-used option makes sense. Given that a
site-implementation of this requires nothing more than a simple sed
one-liner (
sed -i -e'/pam_krb5/ { s/minimum_uid=[0-9]*/minimum_uid=/ }'
/etc/pam.d/common-*
), I don't think debconf offers much benefit here.
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
Ubuntu Developerhttp://www.debian.org/
slanga...@ubuntu.com vor...@debian.org
--
Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?
https://bugs.launchpad.net/bugs/369575
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to kerberos-configs in ubuntu.
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 369575] Re: Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?
I guess I'm a bit baffled by why fixing your PAM configuration is a workaround but installing a custom krb5.conf is a desired configuration step. krb5.conf is a config file under /etc. That's the ideal place to make configuration changes. As it is, right now, adding the minimum_uid bit involves just appending a few lines to the file---it doesn't get much simpler than that. It's a weird situation, since krb5-config doesn't know whether you're ever going to care about the Kerberos PAM module. You may be installing a krb5.conf for some other reason entirely. Yeah, that's true. It's like with LDAP; my site uses LDAP for ls -l, ~user lookups et al., but not for authentication. Still, having it in debconf may be convenient enough for sites that use pam_krb5, to be worth the this setting only has an effect if ... qualifier for sites that don't. Though I haven't made much use of [appdefaults] myself (just for the PAM module), I've never seen a philosophical problem with it, since all the settings there would relate to Kerberos anyway---it just comes down to making the admin's job easier. Splitting them out elsewhere might be more pedantically correct, but... For that matter, has there been any talk on a better way doing krb5.conf, like doing a /etc/krb5.conf.d/ or a krb5-auth-update(8) or the like? With all that's been said here about the limitations of the file and how it's structured/managed, it seems like this is a problem that's crying out for a solution. -- Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ? https://bugs.launchpad.net/bugs/369575 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to kerberos-configs in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 369575] Re: Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?
They may want to, but I don't think the added complexity of debconf solely for what I believe is a rarely-used option makes sense. [...] I don't think debconf offers much benefit here. Fair enough, though I hope you're not suggesting direct modification of the /etc/pam.d/common-* files as a practical way of doing site customization. (That'll work fine until the next time someone wants to run pam-auth-update...) -- Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ? https://bugs.launchpad.net/bugs/369575 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to kerberos-configs in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 369575] Re: Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?
On Tue, Apr 13, 2010 at 06:48:21AM -, Daniel Richard G. wrote: krb5.conf is a config file under /etc. /etc/pam.d/common-* are also config files under /etc. -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. Ubuntu Developerhttp://www.debian.org/ slanga...@ubuntu.com vor...@debian.org -- Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ? https://bugs.launchpad.net/bugs/369575 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to kerberos-configs in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 369575] Re: Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?
On Tue, Apr 13, 2010 at 06:58:02AM -, Daniel Richard G. wrote: Fair enough, though I hope you're not suggesting direct modification of the /etc/pam.d/common-* files as a practical way of doing site customization. (That'll work fine until the next time someone wants to run pam-auth-update...) No, it's persistent unless you disable pam_krb5 entirely. Have you tried it? -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. Ubuntu Developerhttp://www.debian.org/ slanga...@ubuntu.com vor...@debian.org -- Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ? https://bugs.launchpad.net/bugs/369575 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to kerberos-configs in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 561485] Re: Mounting CIFS folder i can only have READ ONLY access
Here are more infos:
What version of samba packages are used ?
dpkg-query -W -f='${Package} ${Version} ${Source} ${Status}\n' | grep samba
libsmbclient 2:3.4.7~dfsg-1ubuntu3 samba install ok installed
libwbclient0 2:3.4.7~dfsg-1ubuntu3 samba install ok installed
samba-common 2:3.4.7~dfsg-1ubuntu3 samba install ok installed
samba-common-bin 2:3.4.7~dfsg-1ubuntu3 samba install ok installed
smbclient 2:3.4.7~dfsg-1ubuntu3 samba install ok installed
___
How is the remote share accessed from the Ubuntu system?
- cifs filesystem mount (from /etc/fstab or a mount command) and then
- nautilus (or other GUI client)
___
smbclient //remote_system/share_name
It works!
smbclient //Server/Share
Enter domain/user's password:
Domain=[DOMAIN] OS=[Windows Server 2003 R2 3790 Service Pack 2] Server=[Windows
Server 2003 R2 5.2]
smb: \
Moreover i can also remove (rm) files from the shell, it means it is not read
only
__
If a cifs mount is used:
mount -t cifs -o rw,username=domainuser,password=password,iocharset=utf8
//Server/Share /home/DOMAIN/User/mountpoint
__
What is the remote server ?
smbclient -L //Server
Domain=[DOMAIN] OS=[Windows Server 2003 R2 3790 Service Pack 2] Server=[Windows
Server 2003 R2 5.2]
And then a list of the sharenames, server and workgroups.
__
Is it a regression ?
Did this use to work properly with a previous release ?
YES! In ubuntu 8.04 it all worked with samba 3.2.3
__
--
Mounting CIFS folder i can only have READ ONLY access
https://bugs.launchpad.net/bugs/561485
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in ubuntu.
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 369575] Re: Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?
No, it's persistent unless you disable pam_krb5 entirely. Have you tried it? Yeah, where pam-auth-update asks you Override local changes to /etc/pam.d/common-*? I see the man page says something about preserving module options, but if I add an option to (say) common-auth, and re-run p-a-u, the option is silently blown away. (This is on my Karmic work system; has this changed since? I don't see anything in the changelog.) -- Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ? https://bugs.launchpad.net/bugs/369575 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to kerberos-configs in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 516083] Re: Missing jar file when Walrus/S3 runs on different host than CLC
As far as the new package containing the eucalyptus-interface jar file, this is verified, and also fixes this escalation bug (package respin). -- Missing jar file when Walrus/S3 runs on different host than CLC https://bugs.launchpad.net/bugs/516083 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562146] [NEW] Integrate nagios users with system ones
Public bug reported: Binary package hint: nagios3 According to the documentation https://help.ubuntu.com/community/Nagios3 there's aditional postinstalation step required to create user to acces the web interface. Nagios should accept system credentials instead. ProblemType: Bug DistroRelease: Ubuntu 10.04 Package: nagios3 3.2.0-4ubuntu2 ProcVersionSignature: Ubuntu 2.6.32-20.30-generic 2.6.32.11+drm33.2 Uname: Linux 2.6.32-20-generic i686 Architecture: i386 Date: Tue Apr 13 10:56:04 2010 ProcEnviron: LANGUAGE=pl_PL:pl:en_GB:en PATH=(custom, no user) LANG=pl_PL.UTF-8 SHELL=/bin/bash SourcePackage: nagios3 ** Affects: nagios3 (Ubuntu) Importance: Undecided Status: New ** Tags: apport-bug i386 lucid -- Integrate nagios users with system ones https://bugs.launchpad.net/bugs/562146 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nagios3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 423252] Re: NSS using LDAP on Karmic breaks 'su' and 'sudo'
I worked around the problem by recompiling libldap2 with openssl. It seems there is either a bug in GnuTLS or some kind of interface bug between ldap and gnutls. This is not the first problem I encountered with openldap and gnutls. Maybe we should link openldap with openssl in the distro? -- NSS using LDAP on Karmic breaks 'su' and 'sudo' https://bugs.launchpad.net/bugs/423252 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libnss-ldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 516083] Re: Missing jar file when Walrus/S3 runs on different host than CLC
** Tags added: verification-done ** Tags removed: verification-needed -- Missing jar file when Walrus/S3 runs on different host than CLC https://bugs.launchpad.net/bugs/516083 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 516083] Re: Missing jar file when Walrus/S3 runs on different host than CLC
This bug was fixed in the package eucalyptus - 1.6~bzr931-0ubuntu7.6 --- eucalyptus (1.6~bzr931-0ubuntu7.6) karmic-proposed; urgency=low * debian/control, debian/eucalyptus-java-common.install, debian/eucalyptus-cloud.install: the common java package should install the eucalyptus-interface jar (otherwise walrus cannot run on a separate host from the clc), LP: #516083 -- Dustin Kirkland kirkl...@ubuntu.com Thu, 04 Mar 2010 10:15:04 -0600 ** Changed in: eucalyptus (Ubuntu Karmic) Status: Fix Committed = Fix Released -- Missing jar file when Walrus/S3 runs on different host than CLC https://bugs.launchpad.net/bugs/516083 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562139] Re: FUSE filesystems cannot be accessed when shared
*** This bug is a duplicate of bug 175689 *** https://bugs.launchpad.net/bugs/175689 I was going to post on that bug but it is semantically different than the comments and the original posting implies. -- FUSE filesystems cannot be accessed when shared https://bugs.launchpad.net/bugs/562139 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu (via bug 175689). -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562189] [NEW] AttributeError: 'Libvirt' object has no attribute 'vm'
Public bug reported:
Running vmbuilder with this command:
vmbuilder kvm ubuntu \
--suite lucid \
--flavour virtual \
--arch amd64 \
-o \
--libvirt qemu:///system \
--part vmbuilder.partition \
--user user \
--name user \
--pass default \
--ip 192.168.176.100 \
--mirror http://192.168.176.19:/ubuntu \
--dest /root/vm1
and this partition file:
root 8000
swap 2000
/home 1000
/var 8000
/var/log 2000
Results in this output and error:
2010-04-13 09:57:30,587 INFO: Calling hook: preflight_check
2010-04-13 09:57:30,625 INFO: Calling hook: set_defaults
2010-04-13 09:57:30,626 INFO: Calling hook: bootstrap
2010-04-13 09:59:42,333 INFO: Calling hook: configure_os
2010-04-13 10:01:19,098 INFO:
2010-04-13 10:01:19,098 INFO: Current default time zone: 'Etc/UTC'
2010-04-13 10:01:19,101 INFO: Local time is now: Tue Apr 13 09:01:19
UTC 2010.
2010-04-13 10:01:19,101 INFO: Universal Time is now: Tue Apr 13 09:01:19
UTC 2010.
2010-04-13 10:01:19,101 INFO:
2010-04-13 10:03:01,863 INFO: Calling hook: post_install
2010-04-13 10:03:01,892 INFO: Calling hook: preflight_check
Traceback (most recent call last):
File /usr/bin/vmbuilder, line 24, in module
cli.main()
File /usr/lib/python2.6/dist-packages/VMBuilder/contrib/cli.py, line 116,
in main
hypervisor.install_os()
File /usr/lib/python2.6/dist-packages/VMBuilder/hypervisor.py, line 59, in
install_os
self.call_hooks('preflight_check')
File /usr/lib/python2.6/dist-packages/VMBuilder/distro.py, line 66, in
call_hooks
call_hooks(self, *args, **kwargs)
File /usr/lib/python2.6/dist-packages/VMBuilder/util.py, line 158, in
call_hooks
getattr(plugin, func, log_no_such_method)(*args, **kwargs)
File
/usr/lib/python2.6/dist-packages/VMBuilder/plugins/libvirt/__init__.py, line
54, in preflight_check
if hostname in self.all_domains() and not self.vm.overwrite:
AttributeError: 'Libvirt' object has no attribute 'vm'
I'm running 2.6.32-20-server with libvirt 0.7.5-5ubuntu21, python-vm-
builder 0.12.3-0ubuntu1 (all latest lucid packages).
** Affects: vm-builder (Ubuntu)
Importance: Undecided
Status: New
--
AttributeError: 'Libvirt' object has no attribute 'vm'
https://bugs.launchpad.net/bugs/562189
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to vm-builder in ubuntu.
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 562139] Re: FUSE filesystems cannot be accessed when shared
*** This bug is a duplicate of bug 175689 *** https://bugs.launchpad.net/bugs/175689 On Tuesday 13,April,2010 06:05 PM, steubens wrote: *** This bug is a duplicate of bug 175689 *** https://bugs.launchpad.net/bugs/175689 I was going to post on that bug but it is semantically different than the comments and the original posting implies. I believe it is the same issue -- crippled filesystem (driver)s that do not implement ownership and/or permissions properly. -- Kind regards, Chow Loong Jin (GPG: 0x8F02A411) Ubuntu Developer -- FUSE filesystems cannot be accessed when shared https://bugs.launchpad.net/bugs/562139 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu (via bug 175689). -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 28380] Re: Autofs fails to update /net with new shares from server
Looks like my confirmation has triggered some attention;-) As far as I can tell autofs5 in Lucid seems to work when restarting the autofs dameon. Just reloading is not enough. But I guess that's a minor issue. @Jesper: As Lucid will be the next LTS, it kind of supersedes all other distributions. Changes that some of the older releases will have this bug fixed are close to nil. And since bugs are here to track what needs to be done, I would say changing the status to fixed would be okay. Do you agree? AFAIK Launchpad is able to track the state of a bug in multiple distributions. But I won't try to correctly add all the distribution states as it probably won't help in getting it fixed for older releases;-) -- Autofs fails to update /net with new shares from server https://bugs.launchpad.net/bugs/28380 You received this bug notification because you are a member of Ubuntu Server Team, which is a direct subscriber. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 556343] Re: upgrade error on 8.04 - 10.04
I wasnt able to reproduce this. Michael, is it possible to get the /var/log/syslog when this happens? chuck -- upgrade error on 8.04 - 10.04 https://bugs.launchpad.net/bugs/556343 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 343738] Re: vsftpd max username length too small
Any update on this Kenny? -- vsftpd max username length too small https://bugs.launchpad.net/bugs/343738 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to vsftpd in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 558793] Re: net ads dns register fails in 2008 R2 domain
Thank you for your bug report. This bug has been reported to the developers of the software. You can track it and make comments at: https://bugzilla.samba.org/show_bug.cgi?id=7356 ** Bug watch added: Samba Bugzilla #7356 https://bugzilla.samba.org/show_bug.cgi?id=7356 ** Also affects: samba via https://bugzilla.samba.org/show_bug.cgi?id=7356 Importance: Unknown Status: Unknown ** Changed in: samba (Ubuntu) Status: Incomplete = Triaged -- net ads dns register fails in 2008 R2 domain https://bugs.launchpad.net/bugs/558793 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562261] [NEW] Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main)
Public bug reported: Please sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main) (My interest here is that I'm the Debian maintainer of krb5 and I'd like to help out the Ubuntu release process with this package.) The 1.8.1 upstream release is entirely a bug-fix release. I have reviewed all the changes from 1.8+dfsg~alpha1-7ubuntu1 through 1.8.1+dfsg-2 and they are all bug fixes. Several of them are quite critical to Kerberos working well in lucid. Because there is a new upstream release involved, I've included all the upstream changes below the Debian changelog. If you have any questions about this don't hesitate to contact me via e-mail, IRC or phone; similarly if you have any concerns about Kerberos throughout the rest of the lucid release process, fell free to contact me over any of these channels. Explanation of the Ubuntu delta and why it can be dropped: The ubuntu delta is a security fix that has been incorperated into the Debian package. The changelog below calls out specific bug fixes that I think are most critical both to Debian and Ubuntu. Appended below the changelog are all the upstream changes; I have looked over them and you really do want them all even at this point in the process. Changelog entries since current lucid version 1.8+dfsg~alpha1-7ubuntu1: krb5 (1.8.1+dfsg-2) unstable; urgency=high * Fix crash in renewal and validation, Thanks Joel Johnson for such a prompt bug report, Closes: #577490 -- Sam Hartman hartm...@debian.org Mon, 12 Apr 2010 13:08:35 -0400 krb5 (1.8.1+dfsg-1) unstable; urgency=high * New upstream release * Fixes significant ABI incompatibility between Heimdal and MIT in the init_creds_step API; backward incompatible change in the meaning of the flags API. Since this was introduced in 1.8 and since no better solution was found, it's felt that getting 1.8.1 out everywhere that had 1.8 very promptly is the right approach. Otherwise software build against 1.8 will be broken in the future. * Testing of Kerberos 1.8 showed an incompatibility between Heimdal/MIT Kerberos and Microsoft Kerberos; resolve this incompatibility. As a result, mixing KDCs between 1.8 and 1.8.1 in the same realm may produce undesirable results for constrained delegation. Again, another reason to replace 1.8 with 1.8.1 as soon as possible. * Acknowledge security team upload, thanks for picking up the slack and sorry it was necessary -- Sam Hartman hartm...@debian.org Sun, 11 Apr 2010 10:12:59 -0400 krb5 (1.8+dfsg-1.1) unstable; urgency=high * Non-maintainer upload by the Security Team. * Fixed CVE-2010-0628: denial of service (assertion failure and daemon crash) via an invalid packet that triggers incorrect preparation of an error token. (Closes: 575740) * Makes src/slave/kpropd.c ISO C90 compliant (Closes: #574703) -- Giuseppe Iuculano iucul...@debian.org Fri, 09 Apr 2010 19:11:50 +0200 krb5 (1.8+dfsg-1) unstable; urgency=low * New upstream version * Include new upstream notice file in docs * Update symbols files * Include upstream ticket 6676: fix handling of cross-realm tickets issued by W2K8R2 * Add ipv6 support to kprop, Michael Stapelberg, Closes: #549476 * New Brazilian Portuguese translations, Thanks Eder L. Marques, Closes: #574149 -- Sam Hartman hartm...@debian.org Wed, 17 Mar 2010 15:51:54 -0400 commit c113f7f7f47967f472d1573eb06efa4daa4ff260 Author: Sam Hartman hartm...@debian.org Date: Mon Apr 12 13:04:08 2010 -0400 Renewals and Validation fail authorization_data memory management In renewals and validation, the enc_tkt_reply.authorization_data pointer aliases header_ticket-enc_part2.authorization_data. However in handle_authdata, the tgt authorization_data is copied to the output authorization data. That fails if they alias. commit 33a393d4a01db63ee8843e823854995d9892ea32 Author: Sam Hartman hartm...@debian.org Date: Sun Apr 11 10:27:18 2010 -0400 oops [in merge to patchlevel.h to update version number to 1.8.1] commit b74b0301be2c040053b79a2399d4ef3b8b689d49 Merge: 91fb542 817defa Author: Sam Hartman hartm...@debian.org Date: Sun Apr 11 10:04:03 2010 -0400 Merge commit 'upstream/1.8.1+dfsg' Conflicts: src/patchlevel.h commit 91fb542d48f01ef785fac2ea70d976e3d4695a58 Merge: 2310d83 d808a31 Author: Sam Hartman hartm...@debian.org Date: Sun Apr 11 10:02:06 2010 -0400 Merge branch 'debian_kprop_ipv6' commit d808a31081e23c0a9db5dbb3f7d7fbd9d7e230ab Author: Sam Hartman hartm...@debian.org Date: Sun Apr 11 10:01:28 2010 -0400 Fix placement of declaration commit 817defae2331911393ccc11a7f00b922c0f816c9 Merge: 2e6dbfa 856d98a Author: Sam Hartman hartm...@debian.org Date: Sun Apr 11 09:51:50 2010 -0400 Merge in krb5/1.8.1 to upstream by unpacking krb5-1.8.1.tar.gz. commit 0aa62e71985b6598d0bd5064f0428217726645ee Author: tlyu t...@dc483132-0cff-0310-8789-dd5450dbe970 Date: Thu
[Bug 562266] [NEW] Make virt-pki-validate usable on Ubuntu
Public bug reported: The currently existing 'virt-pki-validate' on Ubuntu 10.04 has some flaws, which I've tried to correct in the attached patch. - It changes the interpreter to /bin/bash instead of /bin/sh, this removes an 'unexpected operator' warning which can occur on line 140. - Removed references to SYSCONFDIR and changed those to '/etc'. - Corrected a 'sed' call to remove a tab from the line it is formatting, in order to make the rest of the checks in the script work properly. There are still some references to '/etc/sysconfig/iptables' in the script, which does not exist on Ubuntu. This should probably either be changed to check the UFW configuration, current loaded iptables rules, or simply be removed from the check. However, these checks are skipped when '/etc/sysconfig/iptables' does not exist. ** Affects: libvirt (Ubuntu) Importance: Undecided Status: New ** Tags: libvirt virt-pki-validate -- Make virt-pki-validate usable on Ubuntu https://bugs.launchpad.net/bugs/562266 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libvirt in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562266] Re: Make virt-pki-validate usable on Ubuntu
** Patch added: Corrections to virt-pki-validate http://launchpadlibrarian.net/44032785/virt-pki-validate.in.diff -- Make virt-pki-validate usable on Ubuntu https://bugs.launchpad.net/bugs/562266 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libvirt in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 392759] Re: [FFE] apache2 DoS attack using slowloris
This bug was fixed in the package apache2 - 2.2.14-5ubuntu7 --- apache2 (2.2.14-5ubuntu7) lucid; urgency=low * debian/patches/206-fix-potential-memory-leaks.dpatch: Fix potential memory leaks by making sure to not destroy bucket brigades that have been created by earlier filters. Backported from 2.2.15. * debian/patches/206-report-max-client-mpm-worker.dpatch: Don't report server has reached MaxClients until it has. Backported from 2.2.15 * debian/config-dir/apache2.conf: Make the Files ~ ^\.ht block in apache2.conf more secure by adding Satisfy all. (Debian bug: #572075) * debian/rules, debian/patches/209-backport-mod-reqtimeout.dpatch, debian/config2-dir/mods-available/reqtimeout.load, debian/config2-dir/mods-available/reqtimeout.conf debian/NEWS : Backport the mod-reqtimeout module from 2.2.15, this will mitigate apache slowloris bug in apache. Enable it by default. (LP: #392759) -- Chuck Short zul...@ubuntu.com Mon, 05 Apr 2010 09:53:35 -0400 ** Changed in: apache2 (Ubuntu Lucid) Status: Triaged = Fix Released -- [FFE] apache2 DoS attack using slowloris https://bugs.launchpad.net/bugs/392759 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 545426] Re: SDL support broken when using apparmor
Ancoron, I'm going to add read access to /mnt, /media and /srv vir virt- aa-helper. -- SDL support broken when using apparmor https://bugs.launchpad.net/bugs/545426 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libvirt in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 458201] Re: kernel stacktrace on volume detach in kvm guest
** Changed in: linux (Ubuntu) Status: In Progress = Fix Committed -- kernel stacktrace on volume detach in kvm guest https://bugs.launchpad.net/bugs/458201 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu-kvm in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 558793] Re: net ads dns register fails in 2008 R2 domain
** Changed in: samba Status: Unknown = Confirmed -- net ads dns register fails in 2008 R2 domain https://bugs.launchpad.net/bugs/558793 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 559070] Re: Lucid (or karmic) slapd upgrade does not really allow localroot cn=config manage rights
You need to inject only one line:
{0}to * by dn.exact=cn=localroot,cn=config manage by * break
--
Lucid (or karmic) slapd upgrade does not really allow localroot cn=config
manage rights
https://bugs.launchpad.net/bugs/559070
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openldap in ubuntu.
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 559070] Re: Lucid (or karmic) slapd upgrade does not really allow localroot cn=config manage rights
As documented in slapd.access man page: Lists of access directives are evaluated in the order they appear in slapd.conf. When a what clause matches the datum whose access is being evaluated, its who clause list is checked. When a who clause matches the accessor's properties, its access and control clauses are evaluated. Access control checking stops at the first match of the what and who clause, unless otherwise dictated by the control clause. Each who clause list is implicitly terminated by a by * none stop This is why there needs to be a by * break at the end of the access control line - otherwise access will always be denied even if additional ACLs are added to the cn=config tree. -- Lucid (or karmic) slapd upgrade does not really allow localroot cn=config manage rights https://bugs.launchpad.net/bugs/559070 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] [NEW] Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
Public bug reported: Binary package hint: apache2 When upgrading lucid today I received this error during apache restart in the install process: Syntax error on line 204 of /etc/apache2/apache2.conf: Syntax error on line 1 of /etc/apache2/mods-enabled/reqtimeout.load: Cannot load /usr/lib/apache2/modules/mod_reqtimeout.so into server: /usr/lib/apache2/modules/mod_reqtimeout.so: cannot open shared object file: No such file or directory The error appears to be part of this change: * debian/rules, debian/patches/209-backport-mod-reqtimeout.dpatch, debian/config2-dir/mods-available/reqtimeout.load, debian/config2-dir/mods-available/reqtimeout.conf debian/NEWS : Backport the mod-reqtimeout module from 2.2.15, this will mitigate apache slowloris bug in apache. Enable it by default. (LP: #392759) The module does not appear to exist: /usr/lib/apache2/modules/mod_reqtimeout.so ** Affects: apache2 (Ubuntu) Importance: Undecided Status: New -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 550343] Re: openvpn crashed with SIGSEGV
Thank you for taking the time to report this bug and helping to make Ubuntu better. Please try to obtain a backtrace following the instructions at http://wiki.ubuntu.com/DebuggingProgramCrash and upload the backtrace (as an attachment) to the bug report. This will greatly help us in tracking down your problem. ** Changed in: openvpn (Ubuntu) Importance: Medium = Low ** Changed in: openvpn (Ubuntu) Status: New = Incomplete ** Visibility changed to: Public -- openvpn crashed with SIGSEGV https://bugs.launchpad.net/bugs/550343 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openvpn in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 415410] Re: MIR for squid-langpack
This has been fixed in lucid. chuck ** Changed in: squid-langpack (Ubuntu) Status: Fix Committed = Fix Released -- MIR for squid-langpack https://bugs.launchpad.net/bugs/415410 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to squid-langpack in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 274006] Re: init script of tftpd-hpa is not LSB compliant
Since tftp-hpa use upstart this no longer applies. chuck ** Changed in: tftp-hpa (Ubuntu) Status: Triaged = Won't Fix -- init script of tftpd-hpa is not LSB compliant https://bugs.launchpad.net/bugs/274006 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to tftp-hpa in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 538594] Re: [FFe] Please merge munin 1.4.4-1 from Debian testing
1.4.4 is in the repos now ** Changed in: munin (Ubuntu) Status: Confirmed = Fix Released -- [FFe] Please merge munin 1.4.4-1 from Debian testing https://bugs.launchpad.net/bugs/538594 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to munin in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
** Changed in: apache2 (Ubuntu) Status: New = Confirmed -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 561485] Re: Mounting CIFS folder i can only have READ ONLY access
Can you add the output of dmesg when this happens? Thanks chuck -- Mounting CIFS folder i can only have READ ONLY access https://bugs.launchpad.net/bugs/561485 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 556176] Re: slapd creates /nonexistent homedir (and some enhancements...)
I've opened bug 562377 to track the addition of the status function to the init script. In the future please open separate bug for each improvements as it makes things much easier to track. -- slapd creates /nonexistent homedir (and some enhancements...) https://bugs.launchpad.net/bugs/556176 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562377] [NEW] [FFe] Add status action to slapd init script
Public bug reported: As reported in bug 556176: While playing with slapd and Corosync/Pacemaker cluster stuff, I discovered the slapd init script doesn' t have a status function. I'm trying to create a working OCF compatible script (with monitor stuff) but for now I'm using the default LSB init function for testing. The attached patch adds some simple status checking with LSB compatible exit codes which may be usefull for other purposes. ** Affects: openldap (Ubuntu) Importance: Low Status: Triaged ** Affects: openldap (Ubuntu Lucid) Importance: Low Status: Triaged -- [FFe] Add status action to slapd init script https://bugs.launchpad.net/bugs/562377 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562377] Re: Add status action to slapd init script
http://launchpadlibrarian.net/43211956/openldap.patch -- [FFe] Add status action to slapd init script https://bugs.launchpad.net/bugs/562377 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562377] Re: Add status action to slapd init script
Here is the proposed patch:
(l)math...@mathiaz-srv:~/src/openldap/pkg-branches/lucid.dev/debian$ bzr diff
--old ../../lucid/ slapd.init
=== modified file 'debian/slapd.init'
--- debian/slapd.init 2009-08-11 14:48:56 +
+++ debian/slapd.init 2010-04-12 23:21:40 +
@@ -189,6 +189,27 @@
echo .
}
+# Check OpenLDAP status
+status_slapd() {
+ # No PID
+ if [ ! -f $SLAPD_PIDFILE ]; then
+ echo OpenLDAP is NOT running
+ exit 3
+ fi
+
+ # Bogus PID
+ for pid in $(cat $SLAPD_PIDFILE) ; do
+ if ! ps --noheaders p $pid | grep $SLAPD /dev/null ; then
+ echo OpenLDAP is NOT running, bogus pidfile found:
'$SLAPD_PIDFILE'
+ exit 1
+ fi
+ done
+
+ # Running PID
+ echo OpenLDAP is running
+ exit 0
+}
+
case $1 in
start)
check_for_no_start
@@ -200,8 +221,10 @@
stop_ldap
start_ldap
;;
+ status)
+ status_slapd ;;
*)
- echo Usage: $0 {start|stop|restart|force-reload}
+ echo Usage: $0 {start|stop|restart|force-reload|status}
exit 1
;;
esac
** Summary changed:
- Add status action to slapd init script
+ [FFe] Add status action to slapd init script
** Also affects: openldap (Ubuntu Lucid)
Importance: Undecided
Status: New
** Changed in: openldap (Ubuntu Lucid)
Importance: Undecided = Low
** Changed in: openldap (Ubuntu Lucid)
Status: New = Triaged
--
[FFe] Add status action to slapd init script
https://bugs.launchpad.net/bugs/562377
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openldap in ubuntu.
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562388] [NEW] Authentication failure on successful login when using LDAP authentication
Public bug reported: Binary package hint: libpam-ldap I've configured LDAP authentication for my ubuntu 9.10 clients using the following (recommended?) method: # /usr/sbin/auth-client-config -p lac_ldap -t nss # echo libpam-runtime libpam-runtime/profiles multiselect unix, ldap, consolekit | /usr/bin/debconf-set-selections # /usr/sbin/pam-auth-update --package Now LDAP authentication works fine, but I see authentication failures like the following in my logs: Apr 13 15:35:38 example01 sshd[15860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=example.com user=mikec Apr 13 15:35:38 example01 sshd[15860]: Accepted password for mikec from 1.2.3.4 port 49507 ssh2 Apr 13 15:35:38 example01 sshd[15860]: pam_unix(sshd:session): session opened for user mikec by (uid=0) As you can see, a failure message is always logged even though authentication was successful. Is this the expected behavior? I'm not a PAM expert, so I don't completely understand what's happening in /etc/pam.d/common-auth, but since this only occurs for LDAP users, my hunch is that local auth is attempted first (which fails and logs the above error message), then LDAP auth is attempted and succeeds. If that's the case, is there a way to suppress the failure from the local auth attempt? This is important for packages like fail2ban which rely on these log messages. At the moment, it's possible to get locked out of a machine by having too many *successful* logins. ** Affects: libpam-ldap (Ubuntu) Importance: Undecided Status: New ** Summary changed: - Authentication failures on sucessful login when using LDAP authentication + Authentication failure on successful login when using LDAP authentication -- Authentication failure on successful login when using LDAP authentication https://bugs.launchpad.net/bugs/562388 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libpam-ldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
This happened to me also. I can confirm everything that was stated above, the file is indeed missing. -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 562261] [NEW] Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main)
On Tue, Apr 13, 2010 at 12:56:09PM -, Sam Hartman wrote: Changelog entries since current lucid version 1.8+dfsg~alpha1-7ubuntu1: krb5 (1.8.1+dfsg-1) unstable; urgency=high * New upstream release * Fixes significant ABI incompatibility between Heimdal and MIT in the init_creds_step API; backward incompatible change in the meaning of the flags API. Since this was introduced in 1.8 and since no better solution was found, it's felt that getting 1.8.1 out everywhere that had 1.8 very promptly is the right approach. Otherwise software build against 1.8 will be broken in the future. Does this mean that some packages will have to be rebuilt against 1.8.1? When was the change introduced (considering that the current version in Ubuntu is 1.8+dfsg~alpha1-7ubuntu1)? Could you outline (provide a diff) of what was changed exactly? Thanks, status incomplete importance high -- Mathias Gug Ubuntu Developer http://www.ubuntu.com ** Changed in: krb5 (Ubuntu) Importance: Undecided = High ** Changed in: krb5 (Ubuntu) Status: New = Incomplete -- Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/562261 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to krb5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562404] [NEW] package clamav-daemon 0.95.3 dfsg-1ubuntu0.09.10.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1
Public bug reported: Binary package hint: clamav The update manager was attempting to update clamav-daemon 0.95.3 on Ubuntu 9.10, but it encountered an error. Thus, clamav-daemon could not be updated. ProblemType: Package Architecture: amd64 Date: Tue Apr 13 11:33:21 2010 DistroRelease: Ubuntu 9.10 ErrorMessage: subprocess installed post-installation script returned error exit status 1 InstallationMedia: Ubuntu 9.10 Karmic Koala - Release amd64 (20091027) Package: clamav-daemon 0.95.3+dfsg-1ubuntu0.09.10.1 ProcVersionSignature: Ubuntu 2.6.31-20.58-generic SourcePackage: clamav Title: package clamav-daemon 0.95.3+dfsg-1ubuntu0.09.10.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 Uname: Linux 2.6.31-20-generic x86_64 ** Affects: clamav (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-package -- package clamav-daemon 0.95.3 dfsg-1ubuntu0.09.10.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 https://bugs.launchpad.net/bugs/562404 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to clamav in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
I have just updated and got the same error. I can't find /usr/lib/apache2/modules/mod_reqtimeout.so. -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 562370] [NEW] Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
On Tue, Apr 13, 2010 at 03:32:00PM -, Kow wrote: The module does not appear to exist: /usr/lib/apache2/modules/mod_reqtimeout.so importance critical assignee zulcss -- Mathias Gug Ubuntu Developer http://www.ubuntu.com ** Changed in: apache2 (Ubuntu) Importance: Undecided = Critical ** Changed in: apache2 (Ubuntu) Assignee: (unassigned) = Chuck Short (zulcss) -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
Me too. what shall I do -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
You can comment line 1 in /etc/apache2/mods-enabled/reqtimeout.load with a # and then restart apache -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 423252] Re: NSS using LDAP on Karmic breaks 'su' and 'sudo'
I agree. gnutls is often the source of strange, unforseen errors. I'd also vote to replace it with the reliable and proven openssl. So linking libldap2 with openssl fixes this issue? -- NSS using LDAP on Karmic breaks 'su' and 'sudo' https://bugs.launchpad.net/bugs/423252 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libnss-ldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562377] Re: [FFe] Add status action to slapd init script
FFe approved. Please go ahead. -- [FFe] Add status action to slapd init script https://bugs.launchpad.net/bugs/562377 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562404] Re: package clamav-daemon 0.95.3 dfsg-1ubuntu0.09.10.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1
Setting up clamav-daemon Setting up clamav-daemon (0.95.3+dfsg- 1ubuntu0.09.10.1) ... chown: invalid user: `Bradley:adm' dpkg: error processing clamav-daemon (--configure): subprocess installed post- installation script returned error exit status 1 Setting up clamav (0.95.3+dfsg-1ubuntu0.09.10.1) ... (0.95.3+dfsg-1ubuntu0.09.10.1) ... chown: invalid user: `Bradley:adm dpkg: error processing clamav- daemon(--configure)(--configure): subprocess installed post-installation script returned error exit status 1 Setting up clamav (0.95.3+dfsg- 1ubuntu0.09.10.1) ... subprocess installed post- installation script returned error installation script returned error exit status Setting up clamav (0.95.3+dfsg-1ubuntu0.09.10.1). You have changed the user and group the package uses. If you sudo dpkg-reconfigure clamav-daemon and set it back to clamav and clamav it should be ok. ** Changed in: clamav (Ubuntu) Status: New = Invalid -- package clamav-daemon 0.95.3 dfsg-1ubuntu0.09.10.1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 https://bugs.launchpad.net/bugs/562404 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to clamav in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
Me too * Starting web server apache2 apache2: Syntax error on line 204 of /etc/apache2/apache2.conf: Syntax error on line 1 of /etc/apache2/mods-enabled/reqtimeout.load: Cannot load /usr/lib/apache2/modules/mod_reqtimeout.so into server: /usr/lib/apache2/modules/mod_reqtimeout.so: cannot open shared object file: No such file or directory ...fail! -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 560377] Re: [lucid] Stuttering mouse
virt-manager VNC is affected only, other vnc connections are ok. ** Package changed: qemu-kvm (Ubuntu) = virt-manager (Ubuntu) ** Summary changed: - [lucid] Stuttering mouse + [lucid] Stuttering mouse in VNC ** Changed in: virt-manager (Ubuntu) Status: New = Confirmed -- [lucid] Stuttering mouse in VNC https://bugs.launchpad.net/bugs/560377 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu-kvm in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 369575] Re: Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?
Daniel Richard G. sk...@iskunk.org writes: For that matter, has there been any talk on a better way doing krb5.conf, like doing a /etc/krb5.conf.d/ or a krb5-auth-update(8) or the like? Debian Bug#429692. There's no progress on it so far as I know. I should look at adding something like that to Heimdal, since it would be rather convenient at times. -- Russ Allbery (r...@debian.org) http://www.eyrie.org/~eagle/ -- Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ? https://bugs.launchpad.net/bugs/369575 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to kerberos-configs in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
#5 solution worked for me, apache is working properly again. -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
The best way to work around this is to disable the reqtimeout module temporarily using sudo a2dismod reqtimeout then all will work, when this bug is fixed it can be re-enabled using sudo a2enmod reqtimeout It's easier to remember how to reverse the change if you use the apache too in the first place -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 561751] Re: package clamav-milter 0.96+dfsg-1ubuntu1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 20
** Changed in: clamav (Ubuntu) Status: Confirmed = In Progress ** Changed in: clamav (Ubuntu) Assignee: (unassigned) = Scott Kitterman (kitterman) ** Changed in: clamav (Ubuntu) Milestone: None = ubuntu-8.04.3 ** Changed in: clamav (Ubuntu) Milestone: ubuntu-8.04.3 = ubuntu-10.04 -- package clamav-milter 0.96+dfsg-1ubuntu1 failed to install/upgrade: subprocess installed post-installation script returned error exit status 20 https://bugs.launchpad.net/bugs/561751 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to clamav in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 558335] Re: freshclam log reports warning about libclamav version
0.96 final is in Lucid. Do you still have the problem? ** Changed in: clamav (Ubuntu) Status: Triaged = Incomplete -- freshclam log reports warning about libclamav version https://bugs.launchpad.net/bugs/558335 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to clamav in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
** Also affects: apache2 (Ubuntu Lucid) Importance: Critical Assignee: Chuck Short (zulcss) Status: Confirmed ** Changed in: apache2 (Ubuntu Lucid) Milestone: None = ubuntu-10.04 -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 369575] Re: Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ?
Er, how is it silent when pam-auth-update asks you a question? Silent, in the sense that when you run p-a-u, it doesn't indicate that the common-* files have been modified in any way; it just presents you with the same checkbox-list of profiles. You leave everything as-is, hit OK, look at the file, and the option you had just added is gone. (Not that I'm keen on the ability for p-a-u to preserve module options ---that means I have to guess what the tool does if the options change in a profile, and it has to merge that change with hand-modified options in common-*. Even worse if it asks the user what to do; how do you even word that question without confusing most people?) That seems to me like the best way to do things at scale. I don't want to forgo p-a-u. It's beneficial for single users and admins, yes, but it's a boon to large sites as well, because it reduces your entire PAM configuration from four arbitrary freeform script files (in which any mistakes can have major consequences) to a short vector of enabled/disabled PAM profiles. If a user wants to install something that hooks into the PAM stack that isn't already in the image (let's say, ConsoleKit), they don't have to hand-edit/merge anything, or come running for support when they inevitably break PAM and lock themselves out; they just check a new box. This is why I never considered hand-tuning common-*, and instead went with a custom profile. It's far better to wedge a new piece into p-a-u, than to toss p-a-u altogether and hand-maintain everything the old-fashioned way. (I can hardly even stand working with Debian Lenny anymore because it doesn't have this. That's how big an improvement it's been for me.) We can certainly try to make it work more smoothly for you, but it does feel like you're creating extra work for yourself in a few places. As I see it, custom profiles and hand-editing auto-generated files are extra work, and I'm trying to laze my way away from that! :-) Debian Bug#429692. There's no progress on it so far as I know. Just #include functionality? That seems overly modest (packages would still have to modify an existing file, they can't just drop a file into a directory), but still an improvement over what we have now. *push* *goad* *cajole* -- Why is /usr/share/pam-configs/krb5 specifying minimum_uid= ? https://bugs.launchpad.net/bugs/369575 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to kerberos-configs in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562261] Re: Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main)
The init_creds_step API in question was introduced between 1.7.x and 1.8-alpha1 (so, during the Lucid development cycle): http://git.debian.org/?p=pkg-k5-afs/debian-krb5.git;a=commitdiff;h=64d0958 and fixed between 1.8.1-beta1 and 1.8.1-beta2: http://git.debian.org/?p=pkg-k5-afs/debian-krb5.git;a=commitdiff;h=d3674eb It doesn’t look like any other packages need to get rebuilt; it’s a change in semantics, not signatures. (But yeah, we should get this fixed before new users of the API start depending on the incompatible semantics.) ** Changed in: krb5 (Ubuntu) Status: Incomplete = New -- Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/562261 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to krb5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
This bug was fixed in the package apache2 - 2.2.14-5ubuntu8 --- apache2 (2.2.14-5ubuntu8) lucid; urgency=low * debian/patches/210-backport-mod-reqtimeout-ftbfs.dpatch: Add missing mod_reqtime.so (LP: #562370) -- Chuck Short zul...@ubuntu.com Tue, 13 Apr 2010 15:09:57 -0400 ** Changed in: apache2 (Ubuntu Lucid) Status: Confirmed = Fix Released -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562516] [NEW] package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1
Public bug reported: Binary package hint: backuppc package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 ProblemType: Package Architecture: i386 Date: Tue Apr 13 02:21:03 2010 DistroRelease: Ubuntu 9.10 ErrorMessage: subprocess installed post-installation script returned error exit status 1 Package: backuppc 3.1.0-6ubuntu4 PackageArchitecture: all ProcVersionSignature: Ubuntu 2.6.31-14.48-generic-pae SourcePackage: backuppc Title: package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 Uname: Linux 2.6.31-14-generic-pae i686 ** Affects: backuppc (Ubuntu) Importance: Undecided Status: New ** Tags: apport-package i386 -- package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 https://bugs.launchpad.net/bugs/562516 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to backuppc in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562516] Re: package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1
** Attachment added: AptOrdering.txt http://launchpadlibrarian.net/44069895/AptOrdering.txt ** Attachment added: Dependencies.txt http://launchpadlibrarian.net/44069896/Dependencies.txt ** Attachment added: Dmesg.txt http://launchpadlibrarian.net/44069897/Dmesg.txt ** Attachment added: DpkgTerminalLog.gz http://launchpadlibrarian.net/44069898/DpkgTerminalLog.gz -- package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 https://bugs.launchpad.net/bugs/562516 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to backuppc in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562516] Re: package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1
*** This bug is a duplicate of bug 484617 *** https://bugs.launchpad.net/bugs/484617 Thank you for taking the time to report this bug and helping to make Ubuntu better. This particular bug has already been reported and is a duplicate of bug 484617, so it is being marked as such. Please look at the other bug report to see if there is any missing information that you can provide, or to see if there is a workaround for the bug. Additionally, any further discussion regarding the bug should occur in the other report. Feel free to continue to report any other bugs you may find. ** This bug has been marked a duplicate of bug 484617 package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 -- package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 https://bugs.launchpad.net/bugs/562516 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to backuppc in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562531] [NEW] Latest Apache 2.2 is missing mod_reqtimeout.so
Public bug reported: Binary package hint: apache2 The latest update to Apache 2 today on Lucid beta is missing a shared object file mod_reqtimeout.so and fails to start following upgrade. apache2: Syntax error on line 204 of /etc/apache2/apache2.conf: Syntax error on line 1 of /etc/apache2/mods-enabled/reqtimeout.load: Cannot load /usr/lib/apache2/modules/mod_reqtimeout.so into server: /usr/lib/apache2/modules/mod_reqtimeout.so: cannot open shared object file: No such file or directory ** Affects: apache2 (Ubuntu) Importance: Undecided Status: New ** Tags: apache2 -- Latest Apache 2.2 is missing mod_reqtimeout.so https://bugs.launchpad.net/bugs/562531 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 551544] Re: puppet in lucid does not support upstart status
** Branch linked: lp:~mathiaz/ubuntu/lucid/upstart/workaround-status- exit-code -- puppet in lucid does not support upstart status https://bugs.launchpad.net/bugs/551544 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to puppet in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 484617] Re: package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1
@Sudhakar, since this report has a long time without activity, is this issue still affecting you? Maybe this issue is related to postfix (is not a dependency of backuppc) but post installation script has this new lines (that older versions doesn't have): # add backuppc to /etc/aliases if [ -f /etc/aliases ] || [ -L /etc/aliases ]; then if ! grep -qi ^backuppc[[:space:]]*: /etc/aliases; then echo backuppc: root /etc/aliases test -x $(command -v newaliases) newaliases || : fi fi -- package backuppc 3.1.0-6ubuntu4 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1 https://bugs.launchpad.net/bugs/484617 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to backuppc in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 458201] Re: kernel stacktrace on volume detach in kvm guest
This bug was fixed in the package linux - 2.6.32-21.31 --- linux (2.6.32-21.31) lucid; urgency=low [ Andy Whitcroft ] * allow modules.builtin to be optional * d-i: add mpt2sas to the message-modules udeb - LP: #530361 [ Christopher James Halse Rogers ] * SAUCE: Nouveau: Add quirk framework to disable acceleration - LP: #544088, #546393 * SAUCE: Nouveau: Disable acceleration on MacBook Pros - LP: #546393 * SAUCE: Nouveau: Disable acceleration on GeForce3 cards - LP: #544088 * SAUCE: Nouveau: Disable acceleration on 6100 cards - LP: #542950 [ Stefan Bader ] * SAUCE: dma-mapping: Remove WARN_ON in dma_free_coherent - LP: #458201 [ Surbhi Palande ] * SAUCE: sync before umount to reduce time taken by ext4 umount - LP: #543617 [ Upstream Kernel Changes ] * tipc: Fix oops on send prior to entering networked mode (v3) - CVE-2010-1187 * KVM: x86 emulator: Add Virtual-8086 mode of emulation - LP: #561425 * KVM: x86 emulator: fix memory access during x86 emulation - LP: #561425 * KVM: x86 emulator: Check IOPL level during io instruction emulation - LP: #561425 * KVM: x86 emulator: Fix popf emulation - LP: #561425 * KVM: Fix segment descriptor loading - LP: #561425 * KVM: VMX: Update instruction length on intercepted BP - LP: #561425 * KVM: VMX: Use macros instead of hex value on cr0 initialization - LP: #561425 * KVM: SVM: Reset cr0 properly on vcpu reset - LP: #561425 * KVM: VMX: Disable unrestricted guest when EPT disabled - LP: #561425 * KVM: x86: disable paravirt mmu reporting - LP: #561425 * AppArmor: Fix put of unassigned ns if aa_unpack fails * AppArmor: Fix refcount bug when exec fails - LP: #562063 * AppArmor: Take refcount on cxt-profile to ensure it remains a valid reference - LP: #367499 * AppArmor: fix typo in scrubbing environment variable warning - LP: #562060 * AppArmor: fix regression by setting default to mediate deleted files - LP: #562056 * AppArmor: fix refcount order bug that can trigger during replacement - LP: #367499 * AppArmor: Make sure to unmap aliases for vmalloced dfas before they are live - LP: #529288 * AppArmor: address performance regression of replaced profile - LP: #549428 * AppArmor: make the global side the correct type - LP: #562047 * AppArmor: use the kernel shared workqueue to free vmalloc'ed dfas * sky2: add register definitions for new chips - LP: #537168 * sky2: 88E8059 support - LP: #537168 * net: Fix Yukon-2 Optima TCP offload setup - LP: #537168 * net: Add missing TST_CFG_WRITE bits around sky2_pci_write - LP: #537168 * sky2: print Optima chip name - LP: #537168 * (Upstream) dell-laptop: defer dell_rfkill_update to worker thread - LP: #555261 * drm/nv40: add LVDS table quirk for Dell Latitude D620 - LP: #539730 -- Andy Whitcroft a...@canonical.com Tue, 13 Apr 2010 18:50:58 +0100 ** Changed in: linux (Ubuntu) Status: Fix Committed = Fix Released ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2010-1187 -- kernel stacktrace on volume detach in kvm guest https://bugs.launchpad.net/bugs/458201 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to qemu-kvm in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562189] Re: AttributeError: 'Libvirt' object has no attribute 'vm'
I noticed that libvirt got updated to 0.7.5-5ubuntu22 today, and it's possible that this bug has been fixed by it, however, I'm not sure as I've got another bug instead that may just be obscuring it... -- AttributeError: 'Libvirt' object has no attribute 'vm' https://bugs.launchpad.net/bugs/562189 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to vm-builder in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 423252] Re: NSS using LDAP on Karmic breaks 'su' and 'sudo'
I was suspecting this was the case, I was meaning to try this myself but got caught up in doing more urgent things (paper deadline). I think liking with OpenSSL is an acceptable solution if this fixes this issue. Anyway this bug is really a show stopper for using Ubuntu in a lot of companies, so it should be fixed prior to the LTS release. -- NSS using LDAP on Karmic breaks 'su' and 'sudo' https://bugs.launchpad.net/bugs/423252 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libnss-ldap in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562575] [NEW] vm-builder fails to resolve package dependency in vanilla system
Public bug reported:
Using this vmbuilder command (note no additional packages requested,
just creating a completely vanilla system):
vmbuilder kvm ubuntu \
--suite lucid \
--flavour virtual \
--arch amd64 \
-o \
--libvirt qemu:///system \
--part vmbuilder.partition \
--user user \
--name user \
--pass default \
--ip 192.168.176.100 \
--mirror http://192.168.176.19:/ubuntu \
--dest /root/vm1
I get this output:
2010-04-13 20:34:43,139 INFO: Calling hook: preflight_check
2010-04-13 20:34:43,142 INFO: Calling hook: set_defaults
2010-04-13 20:34:43,143 INFO: Calling hook: bootstrap
2010-04-13 21:04:46,647 INFO: Calling hook: configure_os
2010-04-13 21:06:30,399 INFO:
2010-04-13 21:06:30,400 INFO: Current default time zone: 'Etc/UTC'
2010-04-13 21:06:30,403 INFO: Local time is now: Tue Apr 13 20:06:30
UTC 2010.
2010-04-13 21:06:30,403 INFO: Universal Time is now: Tue Apr 13 20:06:30
UTC 2010.
2010-04-13 21:06:30,404 INFO:
2010-04-13 21:06:32,540 INFO: E: Unmet dependencies. Try using -f.
2010-04-13 21:06:32,541 ERROR : Process (['chroot', '/tmp/tmp2fxDFW',
'apt-get', '-y', '--force-yes', 'dist-upgrade']) returned 100. stdout: Reading
package lists...
Building dependency tree...
You might want to run `apt-get -f install' to correct these.
The following packages have unmet dependencies:
mountall: Depends: makedev but it is not installed
Depends: plymouth but it is not installed
python2.6: Depends: libsqlite3-0 (= 3.6.22) but it is not installed
ubuntu-minimal: Depends: makedev but it is not installed
, stderr: E: Unmet dependencies. Try using -f.
Traceback (most recent call last):
File /usr/bin/vmbuilder, line 24, in module
cli.main()
File /usr/lib/python2.6/dist-packages/VMBuilder/contrib/cli.py, line 109,
in main
distro.build_chroot()
File /usr/lib/python2.6/dist-packages/VMBuilder/distro.py, line 83, in
build_chroot
self.call_hooks('configure_os')
File /usr/lib/python2.6/dist-packages/VMBuilder/distro.py, line 66, in
call_hooks
call_hooks(self, *args, **kwargs)
File /usr/lib/python2.6/dist-packages/VMBuilder/util.py, line 165, in
call_hooks
getattr(context, func, log_no_such_method)(*args, **kwargs)
File /usr/lib/python2.6/dist-packages/VMBuilder/plugins/ubuntu/distro.py,
line 157, in configure_os
self.suite.update()
File /usr/lib/python2.6/dist-packages/VMBuilder/plugins/ubuntu/dapper.py,
line 76, in update
env={ 'DEBIAN_FRONTEND' : 'noninteractive' })
File /usr/lib/python2.6/dist-packages/VMBuilder/plugins/ubuntu/dapper.py,
line 327, in run_in_target
return self.context.run_in_target(*args, **kwargs)
File /usr/lib/python2.6/dist-packages/VMBuilder/plugins/__init__.py, line
86, in run_in_target
return util.run_cmd('chroot', self.chroot_dir, *args, **kwargs)
File /usr/lib/python2.6/dist-packages/VMBuilder/util.py, line 120, in
run_cmd
raise VMBuilderException, Process (%s) returned %d. stdout: %s, stderr:
%s % (args.__repr__(), status, mystdout.buf, mystderr.buf)
VMBuilder.exception.VMBuilderException: Process (['chroot', '/tmp/tmp2fxDFW',
'apt-get', '-y', '--force-yes', 'dist-upgrade']) returned 100. stdout: Reading
package lists...
Building dependency tree...
You might want to run `apt-get -f install' to correct these.
The following packages have unmet dependencies:
mountall: Depends: makedev but it is not installed
Depends: plymouth but it is not installed
python2.6: Depends: libsqlite3-0 (= 3.6.22) but it is not installed
ubuntu-minimal: Depends: makedev but it is not installed
, stderr: E: Unmet dependencies. Try using -f.
Is this a problem in vmbuilder, or just a symptom of an unstable package
tree?
** Affects: vm-builder (Ubuntu)
Importance: Undecided
Status: New
--
vm-builder fails to resolve package dependency in vanilla system
https://bugs.launchpad.net/bugs/562575
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to vm-builder in ubuntu.
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 550629] Re: package samba-common 2:3.4.0-3ubuntu5.6 failed to install/upgrade: package samba-common is already installed and configured
p...@paul-desktop:~$ sudo apt-get purge samba-common-bin [sudo] password for paul: Reading package lists... Done Building dependency tree Reading state information... Done The following packages will be REMOVED: nautilus-share* samba-common-bin* 0 upgraded, 0 newly installed, 2 to remove and 0 not upgraded. 1 not fully installed or removed. After this operation, 13.8MB disk space will be freed. Do you want to continue [Y/n]? y (Reading database ... 222330 files and directories currently installed.) Removing nautilus-share ... Removing samba-common-bin ... Processing triggers for man-db ... p...@paul-desktop:~$ sudo aptitude download samba-common-bin Reading package lists... Done Building dependency tree Reading state information... Done Reading extended state information Initializing package states... Done Writing extended state information... Done Get:1 http://archive.ubuntu.com karmic-updates/main samba-common-bin 2:3.4.0-3ubuntu5.6 [4,789kB] Fetched 4,789kB in 20s (234kB/s) p...@paul-desktop:~$ sudo dpkg -i samba-common-bin_2%3a3.4.0-3ubuntu5.6_i386.deb Selecting previously deselected package samba-common-bin. (Reading database ... 222302 files and directories currently installed.) Unpacking samba-common-bin (from samba-common-bin_2%3a3.4.0-3ubuntu5.6_i386.deb) ... Setting up samba-common-bin (2:3.4.0-3ubuntu5.6) ... update-alternatives: error: /var/lib/dpkg/alternatives/nmblookup corrupt: invalid status dpkg: error processing samba-common-bin (--install): subprocess installed post-installation script returned error exit status 2 Processing triggers for man-db ... Errors were encountered while processing: samba-common-bin -- package samba-common 2:3.4.0-3ubuntu5.6 failed to install/upgrade: package samba-common is already installed and configured https://bugs.launchpad.net/bugs/550629 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 456806] Re: mountall vomits a shell onto virtual console when you run vi
Have given up with this SRU. Anyone affected can upgrade to Lucid soon enough. ** Changed in: mountall (Ubuntu Karmic) Status: Triaged = Won't Fix ** Changed in: mountall (Ubuntu Karmic) Assignee: Scott James Remnant (scott) = (unassigned) ** Changed in: mountall (Ubuntu Karmic) Milestone: karmic-updates = None -- mountall vomits a shell onto virtual console when you run vi https://bugs.launchpad.net/bugs/456806 You received this bug notification because you are a member of Ubuntu Server Team, which is a subscriber of a duplicate bug. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
I'm sort of new here, I'm still receiving this issue even though it says the fix has been released, does this take a while to propagate to the apt servers? -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562599] Re: can't start apache2
fixed in 2.2.14-5ubuntu8 -- can't start apache2 https://bugs.launchpad.net/bugs/562599 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 551544] Re: puppet in lucid does not support upstart status
** Changed in: puppet (Ubuntu Lucid) Status: Triaged = In Progress -- puppet in lucid does not support upstart status https://bugs.launchpad.net/bugs/551544 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to puppet in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 545426] Re: SDL support broken when using apparmor
Well, to be correct we should read the domain configuration as well as the storage pool definitions to correctly set up apparmor rules (just open them as required and by demand, not by foresight). Additionally what if someone decides to have an iscsi mounted filesystem on /opt or using some NFS storage on /net? Even /var/local or some complete custom paths are possible. So opening read access to all those things just vanishes the benefit of using apparmor. Call me paranoid but I think such a quick hack is not appropriate here, also it is for an LTS release that gets used on servers where security is of top level priority. -- SDL support broken when using apparmor https://bugs.launchpad.net/bugs/545426 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to libvirt in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 558335] Re: freshclam log reports warning about libclamav version
No. The problem I reported appears to be solved. Thank you very much. -- freshclam log reports warning about libclamav version https://bugs.launchpad.net/bugs/558335 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to clamav in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562635] [NEW] Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main)
Public bug reported: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 affects ubuntu/krb5 status confirmed importance wishlist subscribe ubuntu-archive done Please sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main) Explanation of the Ubuntu delta and why it can be dropped: krb5 has some ABI issues in 1.8, and are fixed in 1.8.1. We should use 1.8.1 for Lucid. Since upstream krb5 tends to be very stable, I think this is worth the risk of regression. Changelog entries since current lucid version 1.8+dfsg~alpha1-7ubuntu1: krb5 (1.8.1+dfsg-2) unstable; urgency=high * Fix crash in renewal and validation, Thanks Joel Johnson for such a prompt bug report, Closes: #577490 -- Sam Hartman hartm...@debian.org Mon, 12 Apr 2010 13:08:35 -0400 krb5 (1.8.1+dfsg-1) unstable; urgency=high * New upstream release * Fixes significant ABI incompatibility between Heimdal and MIT in the init_creds_step API; backward incompatible change in the meaning of the flags API. Since this was introduced in 1.8 and since no better solution was found, it's felt that getting 1.8.1 out everywhere that had 1.8 very promptly is the right approach. Otherwise software build against 1.8 will be broken in the future. * Testing of Kerberos 1.8 showed an incompatibility between Heimdal/MIT Kerberos and Microsoft Kerberos; resolve this incompatibility. As a result, mixing KDCs between 1.8 and 1.8.1 in the same realm may produce undesirable results for constrained delegation. Again, another reason to replace 1.8 with 1.8.1 as soon as possible. * Acknowledge security team upload, thanks for picking up the slack and sorry it was necessary -- Sam Hartman hartm...@debian.org Sun, 11 Apr 2010 10:12:59 -0400 krb5 (1.8+dfsg-1.1) unstable; urgency=high * Non-maintainer upload by the Security Team. * Fixed CVE-2010-0628: denial of service (assertion failure and daemon crash) via an invalid packet that triggers incorrect preparation of an error token. (Closes: 575740) * Makes src/slave/kpropd.c ISO C90 compliant (Closes: #574703) -- Giuseppe Iuculano iucul...@debian.org Fri, 09 Apr 2010 19:11:50 +0200 krb5 (1.8+dfsg-1) unstable; urgency=low * New upstream version * Include new upstream notice file in docs * Update symbols files * Include upstream ticket 6676: fix handling of cross-realm tickets issued by W2K8R2 * Add ipv6 support to kprop, Michael Stapelberg, Closes: #549476 * New Brazilian Portuguese translations, Thanks Eder L. Marques, Closes: #574149 -- Sam Hartman hartm...@debian.org Wed, 17 Mar 2010 15:51:54 -0400 -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.14 (GNU/Linux) Comment: Kees Cook k...@outflux.net iEYEARECAAYFAkvE9U8ACgkQH/9LqRcGPm1gggCeJOzyEaInHrty4J749iFQNVzi daEAnAu1Y5V9xz5gEs3ToR02yzCmm5Jd =i9Xn -END PGP SIGNATURE- ** Affects: krb5 (Ubuntu) Importance: Wishlist Status: Confirmed -- Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/562635 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to krb5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562261] Re: Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main)
While I'm not ubuntu-release or ubuntu-archive, I vote +1 for this into Lucid :) -- Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/562261 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to krb5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 558335] Re: freshclam log reports warning about libclamav version
** Changed in: clamav (Ubuntu) Status: Incomplete = Fix Released -- freshclam log reports warning about libclamav version https://bugs.launchpad.net/bugs/558335 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to clamav in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562261] Re: Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main)
To really make sure things are not broken, we'd have to look at packages started to use krb5_init_creds_step in lucid and make sure they're using the flags in the correct order. -- Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/562261 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to krb5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562635] Re: Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main)
*** This bug is a duplicate of bug 562261 *** https://bugs.launchpad.net/bugs/562261 ** This bug has been marked a duplicate of bug 562261 Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main) -- Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/562635 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to krb5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562599] Re: can't start apache2
*** This bug is a duplicate of bug 562370 *** https://bugs.launchpad.net/bugs/562370 ** This bug has been marked a duplicate of bug 562370 Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module -- can't start apache2 https://bugs.launchpad.net/bugs/562599 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562261] Re: Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main)
FFe approved, please upload. ** Changed in: krb5 (Ubuntu) Status: New = Confirmed -- Sync krb5 1.8.1+dfsg-2 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/562261 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to krb5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 555414] Re: package samba-common 2:3.4.0-3ubuntu5.6 failed to install/upgrade: subprocess installed post-installation script returned error exit status 10
I finally went into a terminal and used 'apt-get remove' to remove all of the error causing packages, one by one, then re-installed grub and other packages as needed to restore functioning and updating. As reported above, automatic re-configuring did not work. My system seems to be functioning now, I will append data if needed later. Thank you for your help and consideration. -- package samba-common 2:3.4.0-3ubuntu5.6 failed to install/upgrade: subprocess installed post-installation script returned error exit status 10 https://bugs.launchpad.net/bugs/555414 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 559230] Re: multi-machine topology, cannot reach an instance from the CLC
I tested it again thie evening, with Dustin monitoring. We again used lucid-amd64-topo2, and based the installs on the daily server/UEC images (releases.ubuntu.com is not accessible from tamarind, so I could not use Beta2). Installation was uneventful. I then ran the config_single.yaml test. No problems starting instances, but still the script (or even I, manually) could not ssh into them, failing with a timeout. ran, just for the sake of it (I do not know what is, or is not, blocked by the firewall(s)) a traceroute agaisnt one of the instances, from cepedak. It reached marula (the CC), and then starred all. I then logged in Marula, and ssh-ed to an instance I had manually started. I *could* reach it (but failed, correctly, on public key -- I had not added a new key for this run, and the ones used by uec_test.py had already been revoked). This is the log of the IRC chat between Dustin and myself: 2010-04-13 18:25:32 hggdh kirkland: nodes registered, running a single-instance test now 2010-04-13 18:33:02 hggdh kirkland: test running, log is being written to ~/uec-testing-scripts/resutls/single* 2010-04-13 18:33:09 hggdh kirkland: on cempedak 2010-04-13 18:33:20 kirklandhggdh: cool, and you can ssh in? 2010-04-13 18:35:08 hggdh kirkland: negative 2010-04-13 18:35:19 kirklandhggdh: cannot ssh in 2010-04-13 18:35:25 hggdh kirkland: ssh fails on timeout 2010-04-13 18:35:31 hggdh really sounds like routing 2010-04-13 18:36:18 kirklandhggdh: interesting 2010-04-13 18:36:25 kirklandhggdh: okay, put the log somewhere for me to check out 2010-04-13 18:38:27 hggdh kirkland: k. I just ran one instance by hand, and then tried to ssh into it -- fails with a timeout 2010-04-13 18:39:25 kirklandhggdh: okay, that's easy to reproduce 2010-04-13 18:39:27 kirklandhggdh: log? 2010-04-13 18:42:29 hggdh kirkland: people.c.c/~cerdea/single_test.log.2010-04-13_193218 2010-04-13 18:46:15 kirklandhggdh: rsync -aP people.canonical.com:~cerdea/single_test.log.2010-04-13_193218 . 2010-04-13 18:46:20 kirklandhggdh: file not found 2010-04-13 18:47:04 kirklandhggdh: found it, public_html 2010-04-13 18:47:27 hggdh heh. one wants it on public_html, another on the root ;-) 2010-04-13 18:49:35 kirklandhggdh: ls -alF users/admin/uectest-k0.priv 2010-04-13 18:50:07 kirklandhggdh: and cat that file, make sure it matches -BEGIN RSA PRIVATE KEY- 2010-04-13 18:50:33 kirklandhggdh: is that instance still running? 2010-04-13 18:50:43 kirklandhggdh: can you telnet to its port 22 ? 2010-04-13 18:51:03 hggdh kirkland: yes, the instance is still running 2010-04-13 18:52:00 hggdh kirkland: the priv key seems kosher 2010-04-13 18:52:27 kirklandhggdh: and telnet ? 2010-04-13 18:53:50 hggdh kirkland: timeout. Also, a traceroute (FWIW) reaches marula (the CC) and stops there 2010-04-13 18:54:07 kirklandhggdh: oh, interesting 2010-04-13 18:54:22 kirklandhggdh: that's got to be it 2010-04-13 18:54:25 hggdh kirkland: let me try to ssh from marula 2010-04-13 18:54:38 kirklandhggdh: yeah 2010-04-13 18:54:43 kirklandhggdh: scp the priv key over 2010-04-13 18:54:47 kirklandhggdh: and try from there 2010-04-13 18:55:15 hggdh kirkland: first test -- reachability -- successful 2010-04-13 18:55:21 hggdh will move the priv key there now 2010-04-13 18:55:21 kirklandhggdh: ack 2010-04-13 19:00:03 kirklandhggdh: and? 2010-04-13 19:00:13 hggdh kirkland: getting permission denied (pub key) 2010-04-13 19:00:30 hggdh kirkland: but the important piece is that I am *reaching* the instance 2010-04-13 19:00:34 kirklandhggdh: hrm, odd 2010-04-13 19:00:38 kirklandhggdh: agreed on that point 2010-04-13 19:00:49 kirklandhggdh: and you're doing ssh -i ./whatever.priv ubu...@ip ? 2010-04-13 19:00:58 kirklandhggdh: and whatever.priv is perm'd 600 2010-04-13 19:01:17 hggdh kirkland: yes indeed, and will check again 2010-04-13 19:01:26 hggdh but on wrong permission ssh would bail out 2010-04-13 19:03:41 hggdh kirkland: and the full command is ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i ./uectest-k0.priv ubu...@10.55.55.100 2010-04-13 19:04:07 hggdh although sort of overworked, I admit 2010-04-13 19:04:24 kirklandhggdh: hmm, okay 2010-04-13 19:04:35 kirklandhggdh: it may be that the guest is having trouble getting out 2010-04-13 19:04:48 kirklandhggdh: or at least to have the key injected 2010-04-13 19:04:58 kirklandhggdh: okay, add your traceroute findings to that bug 2010-04-13 19:05:11 kirklandhggdh: and email mathias (cc me) the link to that log
[Bug 559230] Re: multi-machine topology, cannot reach an instance from the CLC
traceroute output: ubu...@cempedak:~/uec-testing-scripts$ sudo traceroute -n -p 22 -P tcp 10.55.55.100 [sudo] password for ubuntu: traceroute to 10.55.55.100 (10.55.55.100), 30 hops max, 60 byte packets 1 10.55.55.100 12.337 ms 0.062 ms 0.057 ms 2 * * * 3 * * * 4 *^C ubu...@cempedak:~/uec-testing-scripts$ SSH try from Cempedak (the CLC): ubu...@cempedak:~/uec-testing-scripts$ ssh -vv 10.55.55.100 OpenSSH_5.3p1 Debian-3ubuntu3, OpenSSL 0.9.8k 25 Mar 2009 debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug2: ssh_connect: needpriv 0 debug1: Connecting to 10.55.55.100 [10.55.55.100] port 22. debug1: connect to address 10.55.55.100 port 22: Connection timed out ssh: connect to host 10.55.55.100 port 22: Connection timed out ubu...@cempedak:~/uec-testing-scripts$ SSH try from Marula (the CC): ubu...@marula:~$ ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no -i ./uectest-k0.priv ubu...@10.55.55.100 Warning: Permanently added '10.55.55.100' (RSA) to the list of known hosts. Permission denied (publickey). --- expected, since I had not added a key (and was using the one from the uec_test run) ubu...@marula:~$ -- multi-machine topology, cannot reach an instance from the CLC https://bugs.launchpad.net/bugs/559230 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 559230] Re: multi-machine topology, cannot reach an instance from the CLC
** Attachment added: single test log http://launchpadlibrarian.net/44097815/single_test.log.2010-04-13_193218 -- multi-machine topology, cannot reach an instance from the CLC https://bugs.launchpad.net/bugs/559230 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
Not normally, did you try the fix on #5. Simply commenting that line out got me back on track. On Tue, Apr 13, 2010 at 5:09 PM, Ramiro Jr. Franco rjfra...@gmail.comwrote: I'm sort of new here, I'm still receiving this issue even though it says the fix has been released, does this take a while to propagate to the apt servers? -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a direct subscriber of the bug. Status in “apache2” package in Ubuntu: Fix Released Status in “apache2” source package in Lucid: Fix Released Bug description: Binary package hint: apache2 When upgrading lucid today I received this error during apache restart in the install process: Syntax error on line 204 of /etc/apache2/apache2.conf: Syntax error on line 1 of /etc/apache2/mods-enabled/reqtimeout.load: Cannot load /usr/lib/apache2/modules/mod_reqtimeout.so into server: /usr/lib/apache2/modules/mod_reqtimeout.so: cannot open shared object file: No such file or directory The error appears to be part of this change: * debian/rules, debian/patches/209-backport-mod-reqtimeout.dpatch, debian/config2-dir/mods-available/reqtimeout.load, debian/config2-dir/mods-available/reqtimeout.conf debian/NEWS : Backport the mod-reqtimeout module from 2.2.15, this will mitigate apache slowloris bug in apache. Enable it by default. (LP: #392759) The module does not appear to exist: /usr/lib/apache2/modules/mod_reqtimeout.so To unsubscribe from this bug, go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/562370/+subscribe -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
Also did you: sudo apt-get update On Tue, Apr 13, 2010 at 8:09 PM, Ed Madrigal madrigal...@gmail.com wrote: Not normally, did you try the fix on #5. Simply commenting that line out got me back on track. On Tue, Apr 13, 2010 at 5:09 PM, Ramiro Jr. Franco rjfra...@gmail.comwrote: I'm sort of new here, I'm still receiving this issue even though it says the fix has been released, does this take a while to propagate to the apt servers? -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a direct subscriber of the bug. Status in “apache2” package in Ubuntu: Fix Released Status in “apache2” source package in Lucid: Fix Released Bug description: Binary package hint: apache2 When upgrading lucid today I received this error during apache restart in the install process: Syntax error on line 204 of /etc/apache2/apache2.conf: Syntax error on line 1 of /etc/apache2/mods-enabled/reqtimeout.load: Cannot load /usr/lib/apache2/modules/mod_reqtimeout.so into server: /usr/lib/apache2/modules/mod_reqtimeout.so: cannot open shared object file: No such file or directory The error appears to be part of this change: * debian/rules, debian/patches/209-backport-mod-reqtimeout.dpatch, debian/config2-dir/mods-available/reqtimeout.load, debian/config2-dir/mods-available/reqtimeout.conf debian/NEWS : Backport the mod-reqtimeout module from 2.2.15, this will mitigate apache slowloris bug in apache. Enable it by default. (LP: #392759) The module does not appear to exist: /usr/lib/apache2/modules/mod_reqtimeout.so To unsubscribe from this bug, go to: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/562370/+subscribe -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 561511] Re: eucalyptus NC doesn't recognize cache site
Have you checked if the maximum size is actually enforced or you're basing your report on the log message: [Mon Apr 12 15:49:06 2010][018988][EUCAINFO ] Maximum disk available = 439105 (under /var/lib/eucalyptus/instances) ** Changed in: eucalyptus (Ubuntu) Importance: Undecided = Medium ** Changed in: eucalyptus (Ubuntu) Status: New = Incomplete -- eucalyptus NC doesn't recognize cache site https://bugs.launchpad.net/bugs/561511 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 561475] Re: when sysctl net.ipv6.bindv6only=1, xinetd can not bind to both IPv4 and IPv6 on same port
** Changed in: xinetd (Ubuntu) Importance: Undecided = Low -- when sysctl net.ipv6.bindv6only=1, xinetd can not bind to both IPv4 and IPv6 on same port https://bugs.launchpad.net/bugs/561475 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to xinetd in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 559628] Re: yust another apparmor-message
Could you provide more information about which version of the package you're running? ** Changed in: ntp (Ubuntu) Importance: Undecided = Low ** Changed in: ntp (Ubuntu) Status: New = Incomplete -- yust another apparmor-message https://bugs.launchpad.net/bugs/559628 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to ntp in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562146] Re: Integrate nagios users with system ones
** Changed in: nagios3 (Ubuntu) Importance: Undecided = Wishlist -- Integrate nagios users with system ones https://bugs.launchpad.net/bugs/562146 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nagios3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 561779] Re: squid is not started on runlevel transition 1 - 2
** Changed in: squid (Ubuntu) Importance: Undecided = Low -- squid is not started on runlevel transition 1 - 2 https://bugs.launchpad.net/bugs/561779 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to squid in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 561750] Re: squid starts and stops immediately (after upgrade from karmic to lucid)
Could you outline your network configuration? Do you see any messages related to init and squid in /var/log/syslog? ** Changed in: squid (Ubuntu) Importance: Undecided = Medium ** Changed in: squid (Ubuntu) Status: New = Incomplete -- squid starts and stops immediately (after upgrade from karmic to lucid) https://bugs.launchpad.net/bugs/561750 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to squid in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 562370] Re: Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module
the best workaround solution for the problem is #8 https://bugs.launchpad.net/ubuntu/lucid/+source/apache2/+bug/562370/comments/8 edit the file is not so good. Use the support command of system: sudo a2dismod reqtimeout -- Upgrade from 2.2.14-5ubuntu6 to 2.2.14-5ubuntu7 results in syntax error, missing module https://bugs.launchpad.net/bugs/562370 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to apache2 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
