Re: [Vserver] FW: Oracle 10g... any Production Environments on VServer?
I'm not trying to convince you to switch to PG, I'm just curious if these features are available to me. BTW, one interesting feature that Oracle has is the ability to store hierarchical data in a flat db table and pull it out http://gppl.moonbone.ru/ EOQUOTE WHAT'S THIS This is a patch which allows PgSQL to make hierarchical queries a la Oracle do. EOQUOTE I thought they would include this in 8.x, but they didn't. Oh well, we'll wait another year or two then... -- Key fingerprint = 40D0 9FFB 9939 7320 8294 05E0 BCC7 02C4 75CC 50D9 We're giving you a new chance in life, and an opportunity to screw it up in a new, original way. ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] Locale query
Just trying to clear up minor annoyances within my vserver system at the moment, and I notice when I run perl (and probably other stuff), I get: perl: warning: Setting locale failed. perl: warning: Please check that your locale settings: LANGUAGE = en_GB:en_US:en_GB:en, LC_ALL = (unset), LANG = en_GB are supported and installed on your system. perl: warning: Falling back to the standard locale (C). I have google'd for the error, but the same 2 solutions seem to get discussed, and neither seem relevant to the vserver platform (namely reinstall gcc and play with the localdef tool) Is this a common thing on vservers, and if so, what's the commonest solution? Many thanks GW -- / Gary Wilson, aka dragon/dragonlord/dragonv480\ .'(_.--. e: [EMAIL PROTECTED] MSN: dragonv480 .--._)`. _ | Skype:dragonv480 ICQ:342070475 AIM:dragonv480 | _ `.( `--' w: http://volvo480.northernscum.org.uk `--' ).' \w: http://www.northernscum.org.uk / ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] Re: Locale query
On 2005-04-29, Gaz Wilson [EMAIL PROTECTED] wrote: I have google'd for the error, but the same 2 solutions seem to get discussed, and neither seem relevant to the vserver platform (namely reinstall gcc and play with the localdef tool) it is a localdef-issue Is this a common thing on vservers, and if so, what's the commonest solution? If it is a debian vserver: apt-get install locales -- Sune ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
RE: [Vserver] Ubuntu Guest Image
-Original Message- From: [EMAIL PROTECTED] [mailto:vserver- [EMAIL PROTECTED] On Behalf Of Darryl Ross Sent: Thursday, April 28, 2005 8:10 PM To: vserver@list.linux-vserver.org Heyas All, Does anyone have a Ubuntu Hoary guest image built? Alternatively, is it possible to use the debian-newvserver.sh script to build a hoary vserver? I started the process of documenting using Ubuntu guests. Here is what I've done so far: http://list.linux-vserver.org/archive/vserver/msg09330.html Part C steps 6-8 might be helpful, Create the new ubuntu disk image. If you want to use debian, google for debootstrap and you should see alternate syntax to use for the debootstrap program. (i.e. to create a virtual server named vsa with the ip address 192.168.1.99 and the host name vsa.mynetwork.com use this command: vserver vsa build -m debootstrap --hostname vsa.mynetwork.com --netdev eth0 --interface 192.168.1.99/24 -- -d warty -m http://archive.ubuntulinux.org/ubuntu) Yes, I realize this is for warty, but you should get by just fine by changing the reference from warty to hoary. -- Matthew Nuzum [EMAIL PROTECTED] www.followers.net - Makers of Elite Content Management System View samples of Elite CMS in action by visiting http://www.followers.net/portfolio/ ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Locale query
On Fri, Apr 29, 2005 at 12:44:39PM +0100, Gaz Wilson wrote: Just trying to clear up minor annoyances within my vserver system at the moment, and I notice when I run perl (and probably other stuff), I get: perl: warning: Setting locale failed. perl: warning: Please check that your locale settings: LANGUAGE = en_GB:en_US:en_GB:en, LC_ALL = (unset), LANG = en_GB are supported and installed on your system. perl: warning: Falling back to the standard locale (C). I have google'd for the error, but the same 2 solutions seem to get discussed, and neither seem relevant to the vserver platform (namely reinstall gcc and play with the localdef tool) well, basically it says that there is a locale set (namely en_GB ...) and that perl doesn't know about that locale ... now what could be the reason for that: - you 'enter' the guest with this locale set, and the guest doesn't know about it (likely) workaround: export LC_ALL=C LANG=C - your scripts inside the guest do set the locale although the requested locale isn't installed workarounds: either fix the settings or install the missing locales - settings and locales are present, just perl needs some 'special' locale packages to be happy ... Is this a common thing on vservers, and if so, what's the commonest solution? really depends on the guest setup, I'd say ... HTH, Herbert Many thanks GW -- / Gary Wilson, aka dragon/dragonlord/dragonv480\ .'(_.--. e: [EMAIL PROTECTED] MSN: dragonv480 .--._)`. _ | Skype:dragonv480 ICQ:342070475 AIM:dragonv480 | _ `.( `--' w: http://volvo480.northernscum.org.uk `--' ).' \w: http://www.northernscum.org.uk / ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Is the VServer the right thing for me?
Hi Arjen, Is there a tool (like testme.sh) that tests the common (maybe also uncommon) possibilities of misconfigurations (like the capabilities and chroot-exploids) from inside the VServer? You should have a look at the bastille linux project, as far as I know this is a script that can harden but also (taken from http://www.bastille-linux.org/) snip Bastille can also assess a system's current state of hardening, granularly reporting on each of the security settings with which it works. /snip (I don't think running it inside a vserver will be an issue since I understood it should not be able to escape the context its running in.) hm ... after a short overview, i dont't think its what i want ... I've tried to run it on Suse 9.2 ... unsupported at the moment And inside my vserver it doesn't recognize the OS (how could it be ... its an LFS http://www.linuxfromscratch.org ;-)) Thanks for the tip - it an interesting project, will try it asap on a Suse 9.1 :-)) Oliver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] vserver help output
Hello
I got a report that vserver output wrong infomration when
outputting the help.
---
From: Thorsten Gunkel [EMAIL PROTECTED]
1) the vserver scripts outputs wrong usage informations:
# vserver
Usage: /usr/sbin/vserver
{start|stop|suexec|restart|condrestart|exec|enter|chkconfig|running|status}
Right would be
/usr/sbin/vserver VSERVER_ID {start|stop|
Additionally at least the options unify and hashify are missing.
see less `which vserver` for the full list at the bottom.
This should probably also reported upstream.
---
---
From: Daniel van Eeden [EMAIL PROTECTED]
The usage info doesn't contain the build option and should require a
vserver name.
a debootstap called with deb31 won't work. Both Testing (sarge) and
Unstable (sid) got 3.1 in /etc/debian_version.
The only way I know to get output suitable for debootstrap is:
debconf-get-selections 2 /dev/null | grep ^base-config | grep
mirror/suite | awk '{ print $4 }'
An other option is to parse /etc/apt/sources.list but that won't be
reliable.
---
If a new version will fix that I would be happy otherwise I'll
try to fix it myself.
Regards,
// Ola
--
- Ola Lundqvist ---
/ [EMAIL PROTECTED] Annebergsslingan 37 \
| [EMAIL PROTECTED] 654 65 KARLSTAD |
| +46 (0)54-10 14 30 +46 (0)70-332 1551 |
| http://www.opal.dhs.org UIN/icq: 4912500 |
\ gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9 /
---
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] vserver help output
Forgot to give Debian bug references.
On Fri, Apr 29, 2005 at 09:14:22PM +0200, Ola Lundqvist wrote:
Hello
I got a report that vserver output wrong infomration when
outputting the help.
---
From: Thorsten Gunkel [EMAIL PROTECTED]
bugs.debian.org/306549
1) the vserver scripts outputs wrong usage informations:
# vserver
Usage: /usr/sbin/vserver
{start|stop|suexec|restart|condrestart|exec|enter|chkconfig|running|status}
Right would be
/usr/sbin/vserver VSERVER_ID {start|stop|
Additionally at least the options unify and hashify are missing.
see less `which vserver` for the full list at the bottom.
This should probably also reported upstream.
---
---
From: Daniel van Eeden [EMAIL PROTECTED]
bugs.debian.org/306531
He has also given a patch to fix this.
The usage info doesn't contain the build option and should require a
vserver name.
a debootstap called with deb31 won't work. Both Testing (sarge) and
Unstable (sid) got 3.1 in /etc/debian_version.
The only way I know to get output suitable for debootstrap is:
debconf-get-selections 2 /dev/null | grep ^base-config | grep
mirror/suite | awk '{ print $4 }'
An other option is to parse /etc/apt/sources.list but that won't be
reliable.
---
If a new version will fix that I would be happy otherwise I'll
try to fix it myself.
Regards,
// Ola
Regards,
// Ola
--
- Ola Lundqvist ---
/ [EMAIL PROTECTED] Annebergsslingan 37 \
| [EMAIL PROTECTED] 654 65 KARLSTAD |
| +46 (0)54-10 14 30 +46 (0)70-332 1551 |
| http://www.opal.dhs.org UIN/icq: 4912500 |
\ gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9 /
---
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver
--
- Ola Lundqvist ---
/ [EMAIL PROTECTED] Annebergsslingan 37 \
| [EMAIL PROTECTED] 654 65 KARLSTAD |
| +46 (0)54-10 14 30 +46 (0)70-332 1551 |
| http://www.opal.dhs.org UIN/icq: 4912500 |
\ gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9 /
---
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Is the VServer the right thing for me?
Hi NG, Hi Herbert, Is there a tool (like testme.sh) that tests the common (maybe also uncommon) possibilities of misconfigurations (like the capabilities and chroot-exploids) from inside the VServer? not yet, but sounds like something useful to me ... ok, lets do some brainstorming (comment: i'm no vserver specialist nor can i write programs on linux): Output could be like this: --- # vserver test enter [...] context id is now ... [...] # vcapcheck Checking environment ... conextid is: 4711 [OK] effective userid is: 0 [OK] real userid is: 0 [OK] effective groupid is: 0[OK] real groupid is: 0 [OK] Checking posix capabilities ... i have CAP_CHOWN [OK] i have CAP_KILL[OK] [...] i have CAP_LINUX_IMMUTABLE[WARN] if you have locked some files because of unification, you should assign the immutable-flag to an vps. to remove this capability edit ... i dont have CAP_NET_BROADCAST[OK] i have CAP_SYS_BOOT [ERROR] Warning: any vserver can reboot the read server i dont have CAP_MKNOD [OK] Checking the Network Separation ... determining if someone other listens on my ip [WARN] on port 22 (ssh) listens someone other, maybe the host is configured to listen on 0:0:0:0 trying to listen on localhost: no success [OK] [...] Trying to break out the chroot-jail ... ... to access the hosts files: no success [OK] ... to access other vservers: success [ERROR] [...] Trying to mount hda/sda/...: no success [OK] Checking dev-directory: nothing suspicious found [OK] Checking proc-fs [WARN] found kmem-entry [...] Checking for the usable RAM space [512MB] Checking for available disk space [10 G] if the vserver is on the same partition as the real server you should verify that the vserver can't grab all disk space available [...] --- hm ... this list will get very long ... but i think its very useful when configuring a vserver ... ... Oliver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Is the VServer the right thing for me?
This would be a great script, just reading the items that you wrote made me curious about some things in my setup and would like to test them out, but manually it would be a chore on several of them of course. micah On Fri, 29 Apr 2005, Oliver Dietz wrote: Hi NG, Hi Herbert, Is there a tool (like testme.sh) that tests the common (maybe also uncommon) possibilities of misconfigurations (like the capabilities and chroot-exploids) from inside the VServer? not yet, but sounds like something useful to me ... ok, lets do some brainstorming (comment: i'm no vserver specialist nor can i write programs on linux): Output could be like this: --- # vserver test enter [...] context id is now ... [...] # vcapcheck Checking environment ... conextid is: 4711 [OK] effective userid is: 0 [OK] real userid is: 0 [OK] effective groupid is: 0[OK] real groupid is: 0 [OK] Checking posix capabilities ... i have CAP_CHOWN [OK] i have CAP_KILL[OK] [...] i have CAP_LINUX_IMMUTABLE[WARN] if you have locked some files because of unification, you should assign the immutable-flag to an vps. to remove this capability edit ... i dont have CAP_NET_BROADCAST[OK] i have CAP_SYS_BOOT [ERROR] Warning: any vserver can reboot the read server i dont have CAP_MKNOD [OK] Checking the Network Separation ... determining if someone other listens on my ip [WARN] on port 22 (ssh) listens someone other, maybe the host is configured to listen on 0:0:0:0 trying to listen on localhost: no success [OK] [...] Trying to break out the chroot-jail ... ... to access the hosts files: no success [OK] ... to access other vservers: success [ERROR] [...] Trying to mount hda/sda/...: no success [OK] Checking dev-directory: nothing suspicious found [OK] Checking proc-fs [WARN] found kmem-entry [...] Checking for the usable RAM space [512MB] Checking for available disk space [10 G] if the vserver is on the same partition as the real server you should verify that the vserver can't grab all disk space available [...] --- hm ... this list will get very long ... but i think its very useful when configuring a vserver ... ... Oliver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
