Re: [Vserver] Making and using devices inside vservers

2006-05-24 Thread Mark Maas 
Mark Maas wrote:

> use, and public access is available, I don't really need the security.
Woops, I meant unavailable ofcourse... :-)

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

-- 
Mark Maas-martin(OpenPGP: 0xA8F5C970)
[EMAIL PROTECTED]
http://www.maas-martin.nl/mark/blog
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Making and using devices inside vservers

2006-05-24 Thread Mark Maas 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Corey Wright wrote:
>> -BEGIN PGP SIGNED MESSAGE-
>> Hash: SHA1
>>
>> Hello all,
>>
>> Could someone elaborate on how to make devices available inside a
>> vserver? (/dev/tty[0-9] or /dev/mem) etc.
> 
> can't you just copy the desired file from /dev to /vservers//dev or
> do a mknod, either one as root from the host?
> 
>> I would like to be able to burn a cd under a vserver, or even run X.
> 
> appears you need some additional capabilities for writing optical media. 
> search for Akito's conversations in these irc transcripts.
> 
> http://irc.13thfloor.at/LOG/2005-12/LOG_2005-12-19.txt
> http://irc.13thfloor.at/LOG/2005-12/LOG_2005-12-21.txt

Thanks guys, I now know that "making devices" means nothing more then
copying it from the host, to the guest (while still in the host. Am I
making sense here?)

One other question, as this is meant for a testing server for home
use, and public access is available, I don't really need the security.

Is there a way to turn off all "security" so I'm left with a vserver
Basically a computer within a computer?

- --
Mark Maas-martin(OpenPGP: 0xA8F5C970)
[EMAIL PROTECTED]
http://www.maas-martin.nl/mark/blog
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFEdOOiA2PZO6j1yXARAtgLAJ9jZsuKpla2uHqTZrrISIbGzL3lUgCdGo1F
ERmtQm8c7G3zd01W+o1GczE=
=apP9
-END PGP SIGNATURE-
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Errors on stopping vserver

2006-05-24 Thread Roderick A. Anderson 

Fareha Shafique wrote:

Roderick A. Anderson wrote:


Fareha Shafique wrote:


Hi,

When I stop the vserver I get the following:
Stopping sshd: [FAILED]
Shutting down kernel logger:  [FAILED]
Shutting down system logger: [  OK  ]
Starting killall:  Stopping sshd:[FAILED]

[FAILED]


I'm not sure why I this happens. Any help would be appreciated.




I'm trying to catch up on several months worth of messages (from the 
latest to earlier ) and can't remember if I saw an answer to this.  
FWIW I just ran into the same issue and it has to do with sshd failing 
start to in your guest server.  Typically becuase the IP address is 
already in use somewhere else.  ( The host server? ).  Check the 
settings in sshd_config for the host and all the guest servers.  Make 
sure the ListenAddress is set to/for the correct IP address/server 
combination.



Thanks for the reply. I have ssh working fine now. The kernel logger 
however always fails to start and hence fails to stop


Sorry I forgot about that.  Typically this comes from Redhat-ian 
systems.  Syslogd and klogd are started and stopped from 'inside' the 
same script.


   /etc/rc.d/init.d/syslog

Edit the file and comment out any lines that mention klogd.

In the Fedora Core 5 install I'm looking at there are these lines.

18: [ -f /sbin/klogd ] || exit 0

25: KLOGD_OPTIONS="-2"

40: echo -n $"Starting kernel logger: "
41: daemon klogd $KLOGD_OPTIONS
42: echo

47: echo -n $"Shutting down kernel logger: "
48: killproc klogd
49: echo

59: status klogd

79: RETVAL=1
80: echo -n "Reloading klogd..."
81: klog=`cat /var/run/klogd.pid 2>/dev/null`
82: if [ -n ${klog} ] && [ -e /proc/${klog} ]; then
83: kill -USR2 $klog;
84: RETVAL=$?
85: fi
86: if [ $RETVAL -ne 0 ]; then
87: fail
88: else
89: success
90: fi


In the immortal words of Herbert;

HTH,
Rod
--

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] Hashification process ( not working? )

2006-05-24 Thread Roderick A. Anderson 

Despite following the instructions found at

   http://linux-vserver.org/alpha+util-vserver

for vhashify I am getting error messages.

Two vserver guests; test and site; ( with a few different packages and 
some modified files )


I have:

   mkdir -p /etc/vservers/.defaults/apps/vunify/hash

   mkdir -p /var/vservers/.hash

   ln -s /var/vservers/.hash /etc/vservers/.defaults/apps/vunify/hash/0

   mkdir -p /etc/vservers/site/apps/vunify
   mkdir -p /etc/vservers/test/apps/vunify

   vserver site hashify

and then get this message.

   error: db4 error(13) from dbenv->open: Permission denied
   error: cannot open Packages index using db3 - Permission denied (13)
   error: cannot open Packages database in /var/vservers/site/.rpmdb

What did I miss?  ( This setup is based on the FC5 install instructions 
and I've added several packages using vyum. )  Any other references on 
the web site or wiki to using vhashify that I missed?



Rod
--
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Errors on stopping vserver

2006-05-24 Thread Fareha Shafique 

Roderick A. Anderson wrote:


Fareha Shafique wrote:


Hi,

When I stop the vserver I get the following:
Stopping sshd: [FAILED]
Shutting down kernel logger:  [FAILED]
Shutting down system logger: [  OK  ]
Starting killall:  Stopping sshd:[FAILED]

[FAILED]


I'm not sure why I this happens. Any help would be appreciated.



I'm trying to catch up on several months worth of messages (from the 
latest to earlier ) and can't remember if I saw an answer to this.  
FWIW I just ran into the same issue and it has to do with sshd failing 
start to in your guest server.  Typically becuase the IP address is 
already in use somewhere else.  ( The host server? ).  Check the 
settings in sshd_config for the host and all the guest servers.  Make 
sure the ListenAddress is set to/for the correct IP address/server 
combination.


Thanks for the reply. I have ssh working fine now. The kernel logger 
however always fails to start and hence fails to stop


-FS
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Errors on stopping vserver

2006-05-24 Thread Roderick A. Anderson 

Fareha Shafique wrote:

Hi,

When I stop the vserver I get the following:
Stopping sshd: [FAILED]
Shutting down kernel logger:  [FAILED]
Shutting down system logger: [  OK  ]
Starting killall:  Stopping sshd:[FAILED]

[FAILED]


I'm not sure why I this happens. Any help would be appreciated.


I'm trying to catch up on several months worth of messages (from the 
latest to earlier ) and can't remember if I saw an answer to this.  FWIW 
I just ran into the same issue and it has to do with sshd failing start 
to in your guest server.  Typically becuase the IP address is already in 
use somewhere else.  ( The host server? ).  Check the settings in 
sshd_config for the host and all the guest servers.  Make sure the 
ListenAddress is set to/for the correct IP address/server combination.



Rod
--
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Making and using devices inside vservers

2006-05-24 Thread Corey Wright 
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hello all,
>
> Could someone elaborate on how to make devices available inside a
> vserver? (/dev/tty[0-9] or /dev/mem) etc.

can't you just copy the desired file from /dev to /vservers//dev or
do a mknod, either one as root from the host?

> I would like to be able to burn a cd under a vserver, or even run X.

appears you need some additional capabilities for writing optical media. 
search for Akito's conversations in these irc transcripts.

http://irc.13thfloor.at/LOG/2005-12/LOG_2005-12-19.txt
http://irc.13thfloor.at/LOG/2005-12/LOG_2005-12-21.txt

if that doesn't get you all the way there, it should at least give you
enough key words to perform google searches on.

corey
-- 
[EMAIL PROTECTED]

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Hashification

2006-05-24 Thread Fareha Shafique 

Corey Wright wrote:


I've been struggling to fully understand how vhashify works for a while
now. I want to know more about it. It would be nice if someone could
answer the following questions for me or point to some document which
can help me understand the vhashify and unify better:
   



isn't there a vhashify.c? ;-)
 

I had a look at that but specifically for the answer of the first 
questions, unfortunately I didn't quite grasp what was going on :)
The reason I asked the questions is that I have 2 identical vservers 
(i.e. all the files are the same except those created by the skeleton 
build method). However, when I hashify, one vserver ends up with a lot 
more unified files than the other. So I'm trying to figure out why this 
is happening...I have not customized the exclude list in either vserver.



1) What files and how does vhashify step through and compare for
unification?
   



dunno.  i've wondered that myself, and postulated some, but "the proof is
in the pudding" so i haven't questioned it too much.

i'm guessing here, but every file in /etc/vservers//vdir not
explicitly excluded by some pattern in
/etc/vservers//apps/vunify/exclude or
/usr/lib/util-vserver/defaults/vunify-exclude is hashed, looked up in a
hash table (ie files within /etc/vservers/.defaults/apps/vunify/hash/0
named after value of hash of contents), file attributes are compared
against the hardlink in the hash table, and if found equal, then the files
are "unified".

so how close did i get? :-D

herbert, daniel, somebody correct me if i'm wrong.

 


2) What things are compared to determine if the files can be unified? In
other words, what properties of the file should be the same?
   



all properties besides file name.  at least that's my guess according to
http://www.debian.org/doc/manuals/debian-tutorial/ch-advanced.html#s-advanced-files-hardlinks
as unification just takes advantage of hardlinks (with the special
property of being immutable but unlinkable).

 


3) What is the format of an exclude file?
   



from http://linux-vserver.org/alpha+util-vserver, under "Directory/vserver
unification":

It has rsync-like excludelists, so that you can e.g. exclude anything
under /etc/ except /etc/termcap; the corresponding excludelist would be

   +/etc/termcap
   /etc

further see http://samba.anu.edu.au/ftp/rsync/rsync.html, specifically the
FILTER RULES and INCLUDE/EXCLUDE PATTERN RULES sections.

take all the above with a grain of salt as i'm just making educated
guesses.  hopefully somebody will at least confirm whether i'm right or
wrong.

corey
 


Thanks for your help. I really appreciate it.

-FS
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Making and using devices inside vservers

2006-05-24 Thread Herbert Poetzl 
On Wed, May 24, 2006 at 06:57:40PM +0200, Mark Maas wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
> 
> Hello all,
> 
> Could someone elaborate on how to make devices available inside a
> vserver? (/dev/tty[0-9] or /dev/mem) etc.

you can simply copy them from the host, or create
them on the host (inside the guest), but be aware
that adding devices will lower your security

> I would like to be able to burn a cd under a vserver, or even run X.

> I've found this page for that last thing,
>  but don't know how to do that
> part about creating devices.
> 
> Hope someone can help me?

HTH,
Herbert

> Mark
> - --
> Mark Maas-martin(OpenPGP: 0xA8F5C970)
> [EMAIL PROTECTED]
> http://www.maas-martin.nl/mark
> -BEGIN PGP SIGNATURE-
> Version: GnuPG v1.4.2.2 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
> 
> iD8DBQFEdJCEA2PZO6j1yXARAgpDAJ90i1UKMb2PZLtPCj4BSa8yv23fJwCcC0/l
> SRlcGzfCrL/ElWxQOb6JFVE=
> =Wrnq
> -END PGP SIGNATURE-
> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Hashification

2006-05-24 Thread Corey Wright 
> I've been struggling to fully understand how vhashify works for a while
> now. I want to know more about it. It would be nice if someone could
> answer the following questions for me or point to some document which
> can help me understand the vhashify and unify better:

isn't there a vhashify.c? ;-)

> 1) What files and how does vhashify step through and compare for
> unification?

dunno.  i've wondered that myself, and postulated some, but "the proof is
in the pudding" so i haven't questioned it too much.

i'm guessing here, but every file in /etc/vservers//vdir not
explicitly excluded by some pattern in
/etc/vservers//apps/vunify/exclude or
/usr/lib/util-vserver/defaults/vunify-exclude is hashed, looked up in a
hash table (ie files within /etc/vservers/.defaults/apps/vunify/hash/0
named after value of hash of contents), file attributes are compared
against the hardlink in the hash table, and if found equal, then the files
are "unified".

so how close did i get? :-D

herbert, daniel, somebody correct me if i'm wrong.

> 2) What things are compared to determine if the files can be unified? In
> other words, what properties of the file should be the same?

all properties besides file name.  at least that's my guess according to
http://www.debian.org/doc/manuals/debian-tutorial/ch-advanced.html#s-advanced-files-hardlinks
as unification just takes advantage of hardlinks (with the special
property of being immutable but unlinkable).

> 3) What is the format of an exclude file?

from http://linux-vserver.org/alpha+util-vserver, under "Directory/vserver
unification":

It has rsync-like excludelists, so that you can e.g. exclude anything
under /etc/ except /etc/termcap; the corresponding excludelist would be

+/etc/termcap
/etc

further see http://samba.anu.edu.au/ftp/rsync/rsync.html, specifically the
FILTER RULES and INCLUDE/EXCLUDE PATTERN RULES sections.

take all the above with a grain of salt as i'm just making educated
guesses.  hopefully somebody will at least confirm whether i'm right or
wrong.

corey
-- 
[EMAIL PROTECTED]

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Networking: inside and out

2006-05-24 Thread Daniel Hokka Zakrisson 

Grzegorz Nosek wrote:

2006/5/24, Roderick A. Anderson <[EMAIL PROTECTED]>:


Grzegorz Nosek wrote:



> Open file limits? Missing CAP_NET_BIND or some other capabilities?
> Maybe a strace will be useful (should show you what is the exact
> error). Does ip addr show (or ifconfig -a) on the guest show the
> proper IP address?

Possibility on the file limits.  I'll research.  CAP_NET_BIND?  Dang! I
didn't think this was a "special" capability.  ( Probably need some
scripts that do common things -- like set up a guest for httpd,
database, etc. )



You need CAP_NET_BIND if you want your guest to bind to ports < 1024.


CAP_NET_BIND_SERVICE is given to guests by default.

--
Daniel Hokka Zakrisson
GPG id: 06723412
GPG fingerprint: A455 4DF3 990A 431F FECA  7947 6136 DDA2 0672 3412
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Networking: inside and out

2006-05-24 Thread Grzegorz Nosek 

2006/5/24, Roderick A. Anderson <[EMAIL PROTECTED]>:

Grzegorz Nosek wrote:



> Open file limits? Missing CAP_NET_BIND or some other capabilities?
> Maybe a strace will be useful (should show you what is the exact
> error). Does ip addr show (or ifconfig -a) on the guest show the
> proper IP address?

Possibility on the file limits.  I'll research.  CAP_NET_BIND?  Dang! I
didn't think this was a "special" capability.  ( Probably need some
scripts that do common things -- like set up a guest for httpd,
database, etc. )


You need CAP_NET_BIND if you want your guest to bind to ports < 1024.



I'll run the strace ( didn't think of that ) later but now I have a
new(?) issue.  After trying nodev in interfaces I wasn't getting the
binding to eth0.  I just checked again and 


If you use nodev, make sure the IP address is assigned to the device
before you start the guest.



Found the problem!!!  A conflict ( I still have to find why ) with port
443 on the host and guest.


Hmm Listen directive in the host's apache configuration file?



Man I hate retro-fitting.  As soon as I get one checked out the host
becomes the 'host' only.

Thanks, once again, to all for suggestions.

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Networking: inside and out

2006-05-24 Thread Roderick A. Anderson 

Grzegorz Nosek wrote:




Open file limits? Missing CAP_NET_BIND or some other capabilities?
Maybe a strace will be useful (should show you what is the exact
error). Does ip addr show (or ifconfig -a) on the guest show the
proper IP address?


Possibility on the file limits.  I'll research.  CAP_NET_BIND?  Dang! I 
didn't think this was a "special" capability.  ( Probably need some 
scripts that do common things -- like set up a guest for httpd, 
database, etc. )


I'll run the strace ( didn't think of that ) later but now I have a 
new(?) issue.  After trying nodev in interfaces I wasn't getting the 
binding to eth0.  I just checked again and 


Found the problem!!!  A conflict ( I still have to find why ) with port 
443 on the host and guest.


Man I hate retro-fitting.  As soon as I get one checked out the host 
becomes the 'host' only.


Thanks, once again, to all for suggestions.


Rod
--



___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver


___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Networking: inside and out

2006-05-24 Thread Grzegorz Nosek 

2006/5/24, Roderick A. Anderson <[EMAIL PROTECTED]>:

I've ( thanks to everyone ) got a working Linux-Vserver and one guest.

The current issues are I can't get httpd or sshd to start in the guest.

This system is being migrated to L-V so has sshd and apache ( two
VirtualHosts ) running currently.

I have modified sshd_config, httpd.conf, and ssl.conf to listen only on
the IPs and ports the host is using and modified the guest's files to
listen on its IPs and ports.

The guest was build using this variation on the FC5 page.

vserver test build -m yum --context 34 --hostname=test.example.com
--interface test1=eth0:nn.nnn.nnn.34/25 -- -d fc5

Yes it is a half a Class-C network. ( All incriminating values have been
  changed to protect the guilty -- me. )

The error I'm getting is:

Starting httpd: (99)Cannot assign requested address: make_sock: could
not bind to address nn.nnn.nnn.34:80
no listening sockets available, shutting down
Unable to open logs




Any pointers?


Open file limits? Missing CAP_NET_BIND or some other capabilities?
Maybe a strace will be useful (should show you what is the exact
error). Does ip addr show (or ifconfig -a) on the guest show the
proper IP address?
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] Networking: inside and out

2006-05-24 Thread Roderick A. Anderson 

I've ( thanks to everyone ) got a working Linux-Vserver and one guest.

The current issues are I can't get httpd or sshd to start in the guest.

This system is being migrated to L-V so has sshd and apache ( two 
VirtualHosts ) running currently.


I have modified sshd_config, httpd.conf, and ssl.conf to listen only on 
the IPs and ports the host is using and modified the guest's files to 
listen on its IPs and ports.


The guest was build using this variation on the FC5 page.

vserver test build -m yum --context 34 --hostname=test.example.com 
--interface test1=eth0:nn.nnn.nnn.34/25 -- -d fc5


Yes it is a half a Class-C network. ( All incriminating values have been 
 changed to protect the guilty -- me. )


The error I'm getting is:

Starting httpd: (99)Cannot assign requested address: make_sock: could 
not bind to address nn.nnn.nnn.34:80

no listening sockets available, shutting down
Unable to open logs

I've fiddled a couple of settings trying to get it to work plus looked 
at every page on the web site, wiki, and old message I thought might 
help but, no joy.


Most of the networking stuff I've found seems to deal with getting 
around limited IPs.  This is not my issue.  I have an IP for each and 
every guest I'll be setting up.  FWIW, I have three _very_ old vservers 
( circa CTX kernels ) running anywhere from 6 to 10 guests so I'm pretty 
sure I just missed something that has changed in the new configuration.


Any pointers?


TIA,
Rod
--
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] Making and using devices inside vservers

2006-05-24 Thread Mark Maas 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hello all,

Could someone elaborate on how to make devices available inside a
vserver? (/dev/tty[0-9] or /dev/mem) etc.

I would like to be able to burn a cd under a vserver, or even run X.

I've found this page for that last thing,
 but don't know how to do that
part about creating devices.

Hope someone can help me?

Mark
- --
Mark Maas-martin(OpenPGP: 0xA8F5C970)
[EMAIL PROTECTED]
http://www.maas-martin.nl/mark
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFEdJCEA2PZO6j1yXARAgpDAJ90i1UKMb2PZLtPCj4BSa8yv23fJwCcC0/l
SRlcGzfCrL/ElWxQOb6JFVE=
=Wrnq
-END PGP SIGNATURE-
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] Hashification

2006-05-24 Thread Fareha Shafique 

Hi,

I've been struggling to fully understand how vhashify works for a while 
now. I want to know more about it. It would be nice if someone could 
answer the following questions for me or point to some document which 
can help me understand the vhashify and unify better:


1) What files and how does vhashify step through and compare for 
unification?


2) What things are compared to determine if the files can be unified? In 
other words, what properties of the file should be the same?


3) What is the format of an exclude file?

Thanks,
-FS
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] How multiple disk limits within a guest are supposed to work?

2006-05-24 Thread Herbert Poetzl 
On Tue, May 23, 2006 at 10:52:43AM -0400, Francis J. Lacoste wrote:
> Hi,
> 
> I've read the DiskLimits documentation on 
> http://linux-vserver.org/Disk+Limits 

> and I've able to set-up one disk limit on a guest vserver without 
> problem. 
> 
> But I'm wondering how multiple disk limits within the same context
> are supposed to work. It seems that you can configure multiple limit
> within the same context:
> 
> mkdir -p /etc/vservers/test1/dlimits/site1
> echo /vservers/test1/var/www/site1 
> > /etc/vservers/test1/dlimits/site1/directory
> echo $(( 50 * 1024 )) > /etc/vservers/test1/dlimits/site1/space_total
> 
> mkdir -p /etc/vservers/test1/dlimits/site2
> echo /vservers/test1/var/www/site2 
> > /etc/vservers/test1/dlimits/site2/directory
> echo $(( 50 * 1024 )) > /etc/vservers/test1/dlimits/site2/space_total

it seems you are confusing multiple limits (i.e.
limits for more than one partition) for each guest
with directory based disk limits (which are not
easy to accomplish with any unix filesystem)

> I was hoping that would limit the context to 50M inside the
> /var/www/site1 directory and 50M inside the /var/www/site2 directory.
> But it doesn't seem to work that way. 

it works that way if you make /var/www/site1 and 
/var/www/site2 different partitions, you might 
still share those partitions with other guests
(with different context ids)

> It seems that the overall limit for the context is 50M and that the
> size of both directory is accounted toward that limit. (Running df
> inside the guest shows 50M of total space and 30M used because there
> is 20M in one directory and 10M in another.)

> Also, I've noticed that if I fill the space inside the
> /var/www/site1 directory. I cannot create file anywhere else inside
> the guest.
> 
> So can someone explain to me how multiple dlimits inside the same
> guest should work? 

let's assume you have /vservers and /home and
(for whatever reason) you do something like:

/vservers/guest1 with /home/guest1 rbind mounted
into /vservers/guest1/home, then you can set
a limit for guest1 (actually /vservers) and
another limit for /vservers/guest1/home (actually
 /home)

> Thanks for all the help you can provide!

HTH,
Herbert

> P.S. I'm using the stable vserver 2.0.2-rc20 with then 2.6.16.16
> kernel and util-vserver 0.30.210.
> 
> -- 
> Francis J. Lacoste
> [EMAIL PROTECTED]



> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] My ISP unable to use ntp ; ( - How can I change /etc/localtime with ntp?

2006-05-24 Thread Herbert Poetzl 
On Tue, May 23, 2006 at 03:50:44PM +0200, Robert Michel wrote:
> Salve Herbert!
> 
> Herbert Poetzl schrieb am Samstag, den 20. Mai 2006 um 16:40h:
> > > Could I change /etc/localtime with ntp to correct the time myself?
> > > How?
> > > 
> > > On the longterm, it would be nice to have a better timesolution
> > > for vservers - the vserver should be able to use ntp and the
> > > host server should be like the Bios clock - only serving
> > > first information at boottime and serving the beat of seconds...
> > 
> > well, that might sound appealing at the first glance,
> > but trust me, that's nothing you really want, for
> > several reasons:
> > 
> >  - the time system inside the kernel is fairly complex,
> >to virtualize it per guest would add significant
> >overhead just for doing time keeping
> > 
> >  - there is no point in having 'more' than one time
> >base in a single kernel, once it is correct, the
> >entire system will have precise time 
> 
> There is an important point - a cheap vserver form an ISP
> who doen't care about ntpd after asking him four times
> (and then he set the time 2 times manualy...) arrr

well, those ISPs would probably not enable the 
feature to virtualize the time (which would add
a certain overhead) for their 'cheap guests'
so even if we did do that, it would not help
you very much ...

> > > It should be possibel to use the time independent form a 
> > > manipulation of the ISP
> > 
> > you can, just install a time deamon which is system
> > independant 
> 
> How can I do this, so that every normal program 
> (postfix, yaws...) get the time form my deamon?

with a preload library (or a modified libc)

> > or add another layer of virtualization
> > if you do not care about the overhead
> 
> I do not think that I can do this as normal 
> vsersver-user

sure, just use UML or QEMU inside your guest

> > but IMHO, the real solution to your issues is to
> > kindly ask the ISP to start an ntpd on the host (or
> > on a special time guest) to synchronize that
> 
> I know this, I tried this and it's faild.
> The ISP told me two times that they have installed ntpd
> but they correct the time only once... arrrggghhh...

maybe they just need a few hints how to config
ntpd properly, maybe they do not know how that
works (yet) ...

> Ok, how can I run as normal vserver-user (be root
> on my vserver) an own time daemon?

you need to record offset values, but avoid
changing the system clock (not sure there are
daemons who do that already, but for sure it
can be done)

> You don't mean ntpd or chrony who whant to set
> the time of the kernel?

at least not without modifications ...

best,
Herbert

> Greetings
> rob
> 
> 
> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver