Re: [Vserver] Re: [Devel] Container Test Campaign
Gerrit, I assuming you are doing your tests on the same system (i.e. same compiler/libs/whatever else), and you do not change that system over time (i.e. you do not upgrade gcc on it in between the tests). I hope! :) All binaries should be built statically to work the same way inside host/guest or you need to make sure that you have exactly the same versions of glibc and other system libraries. At least glibc can affect perforamnce very much :/ Ick - no one builds binaries statically in the real world. And, when you build binaries statically, you lose all ability to fix security problems in base libraries by doing an update of that library. Instead, all applications need to be rebuilt. Performance tests should reflect real end user usage - not contrived situations that make a particular solution look better or worse. If glibc can affect performance, that should be demonstrated in the real performance results - it is part of the impact of the solution and may need an additional solution or discussion. What I tried to say is that performance results done in different environments are not comparable so have no much meaning. I don't want us to waste our time digging in why one environment is a bif faster or slower than another. I hope you don't want too. Now, to have the same environment there are at least 2 ways: - make static binaries (not that good, but easiest way) - have exactly the same packages in host/VPS for all test cases. BTW, I also prefer 2nd way, but it is harder. Thanks, Kirill ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: [Devel] Container Test Campaign
On Tue, Jul 04, 2006 at 05:34:23PM +0200, Cedric Le Goater wrote: Kirill Korotaev wrote: Cedric, these informations are not explicit yet but please check the raw data, for example : http://lxc.sourceforge.net/bench/r3/dbenchraw you will see that each test is run nearly 100 times. the 5% min and max values are stripped before doing an average. min, max and std dev are missing in the graph. soon to come. the raw data already contains some interesting information on the results. cheers, can you please remake this test for OpenVZ with iosched=as? ok, we will, with and without. It will add one bar to the graph. I'd suggest to test _all_ available schedulers if possible, for example Linux-VServer decided to favor the cfq scheduler for 'fair' I/O scheduling per context, and OVZ did similar (IIRC) TIA, Herbert thanks for the feedback, C. ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: [Devel] Container Test Campaign
On Tue, Jul 04, 2006 at 03:02:54PM +0200, Clément Calmels wrote: Hi, Sorry, I just forgot one part of your email... (and sorry for the mail spamming, I probably got too big fingers or too tiny keyboard) 1.2 Can you tell how you run the tests. I am particularly interested in - how many iterations do you do? - what result do you choose from those iterations? - how reproducible are the results? - are you rebooting the box between the iterations? - are you reformatting the partition used for filesystem testing? - what settings are you using (such as kernel vm params)? - did you stop cron daemons before running the test? - are you using the same test binaries across all the participants? - etc. etc... A basic 'patch' test looks like: o build the appropriate kernel (2.6.16-026test014-x86_64-smp for example) o reboot o run dbench on /tmp with 8 processes sidenote: on a 'typical' Linux-VServer guest, tmp will be mounted as tmpfs, so be careful with that OVZ might do similar as might your host distro :) HTH, Herbert o run tbench with 8 processes o run lmbench o run kernbench For test inside a 'guest' I just do something like: o build the appropriate kernel (2.6.16-026test014-x86_64-smp for example) o reboot o build the utilities (vztcl+vzquota for example) o reboot o launch a guest o run in the guest dbench ... o run in the guest tbench ... -The results are the average value of several iterations of each set of these kind of tests. I will try to update the site with the numbers of iterations behind each values. - For the filesystem testing, the partition is not reformatted. I can change this behaviour... - For the settings of the guest I tried to use the default settings (I had to change some openvz guest settings) just following the HOWTO on vserver or openvz site. For the kernel parameters, did you mean kernel config file tweaking? - Cron are stopped during tests. - All binaries are always build in the test node. Feel free to provide me different scenario which you think are more relevant. -- Clément Calmels [EMAIL PROTECTED] ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: [Devel] Container Test Campaign
On Wed, Jul 05, 2006 at 02:43:17PM +0400, Kirill Korotaev wrote: - All binaries are always build in the test node. I assuming you are doing your tests on the same system (i.e. same compiler/libs/whatever else), and you do not change that system over time (i.e. you do not upgrade gcc on it in between the tests). I hope! :) All binaries should be built statically to work the same way inside I'm against that, IMHO statically built binaries (except for dietlibc and uClibc) are not really realistic host/guest or you need to make sure that you have exactly the same versions of glibc and other system libraries. At least glibc can affect perforamnce very much :/ yep, indeed, I'd suggest to use the very same filesystem for tests on the host as you use for the guests ... best, Herbert Kirill ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: [Devel] Container Test Campaign
ok, we will, with and without. It will add one bar to the graph. I'd suggest to test _all_ available schedulers if possible, for example Linux-VServer decided to favor the cfq scheduler for 'fair' I/O scheduling per context, and OVZ did similar (IIRC) For OpenVZ the reason is not CFQ fair scheduling only (which is not that fair actually in our tests done inhouse), but more in the fact that anticipatory scheduler has some bad issues with sync. on some real life workloads (e.g. with SMTP agents) anticipatory fails to work with reasonable performance. http://bugzilla.kernel.org/show_bug.cgi?id=5900 Thanks, Kirill ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] sshd creates /dev/pts/*, how can I create a /dev/pts/rob with an init.d script?
On Wed, Jul 05, 2006 at 11:44:54PM +0200, Robert Michel wrote: Salve Herbert, ML! Herbert Poetzl schrieb am Sonntag, den 02. Juli 2006 um 17:59h: What should I read to learn what fd,pts stands for and to know what /dev/pts/[14|20|21|31-34] are? *phew* good question, probably a lot of source code :) thing is, fd and pts (/14,/20 ...) are 'just' names used for character and block device nodes, identified by the unique major and minor identifiers ... so, basically c:136:14 means the 14th pseudo terminal (regardless of the name, could as well be named hansi) Could it by that I'm allowed to remove devices, but not allowed to create one? Exactly. Giving guests the ability to create devices is a huge security risk, basically equivalent to just giving access to the host directly. Whats about the pseudo terminals? sshd, screen ... and some others can create new ones as [EMAIL PROTECTED] :) asterisk seems like to have an own terminal: # from [Asterist-Users] ML Tzafrir Cohen wrote on # Tue Jul 4 09:05:46 MST 2006 # safe_asterisk has a flawed logic: it assumes that the tty device will # always exist. Thus it is not suited for use with screen. I used ln -s /dev/pts/31 /dev/tty9 successful, /dev/pts is very dynamic, i.e. it is assigned when you ask /dev/ptmx for a new terminal, and it will lose its connection and meaning when you close it but on the next day /usr/sbin/safe_asterisk does not found /dev/tty9. /dev/pts/31 exist only for my bash, after exiting this bash, also /dev/pts/31 has been gone, and so this hack does not work... ;( precisely, either you _want_ that output to go somewhere, then you have to 'provide' a real vc terminal or to make asterisk 'create' it on startup (by requesting a new one, like e.g. screen does) How can I create with /etc/init.d/asterisk a new pseudo terminal, e.g. /dev/pts/ast and ln -s /dev/pts/ast /dev/tty9 you could, for example, use screen to provide that pseudo terminal without modifying asterisk Dirty trick would be to start with /etc/init.d/asterisk a ssh or telnet connection to 127.0.0.1, is there a smart way to create pseudo terminal, especialy that this terminal is durable and do not fade away when something crashed? device nodes are always local, so they cannot be 'forwarded' to another host, OTOH, you are free to create fifos (pipes) and symlinks to 'redirect' stuff remotely and local [EMAIL PROTECTED] mknode . /dev/pts/asterisk [EMAIL PROTECTED] ln -s /dev/pts/asterisk /dev/tty9 ??? #mknod /dev/tty9 c 7 7 mknod: »/dev/tty9«: Die Operation ist nicht erlaubt (operatin is not allowed) better use /dev/vc/9 (c:4:9 or the udev equiv) but basically you 'could' create the device for the guest on the host side, and the guest will be able to use it, just be careful _what_ you give to your guests :) And mknod /dev/tty9 -p as FIFO does not help to run asterisk with a console. I found this: # From: Herbert Poetzl herbert_at_13thfloor.at # Date: Wed 17 May 2006 - 18:13:50 BST # Message-ID: [EMAIL PROTECTED] # On Sun, May 14, 2006 at 09:48:20PM -0700, EKC wrote: # I'm running a perl script inside of a linux vserver, and the script # requires access to tty and pty devices. However /dev/MAKEDEV and # mknod # cannot create pty devices from within a vserver. [...] # Is there a way to add devices from within a vserver itself? #pts/ptmx is auto created inside a guest, with proper #permissions and security (tty and pty are not required #inside a guest, unless you want to assign certain 'real' #consoles to the guest, like vt0/1/2 etc) ok and how can I use this magic auto creation inside a guest with/for /etc/init.d/asterisk? ;) man ptmx getpt(3), grantpt(3), ptsname(3), unlockpt(3) still a little bit too comlex for me ;( man expect man screen Well I could write #!/bin/sh # ttydumy.sh rm /dev/tty9 ln -s $tty /dev/tty9 and call screen .../ttydumy.sh inside safe_asterisk, but it seems that screen inside slows asterisk. (and this is ugly for ssh login and screen -r with multiple screens...) So [EMAIL PROTECTED] can indirectly create dumy devices and there is still no tool like mknode for vserver - because it is not so neccessary and does not have such a high priority - right? no, because it is a big can of worms and a security issue, just imagine somebody creating a block device which 'accidentially' is identical to your host's root partition, and then starts modifying stuff at a very low level :) Dont't get me wrong, I don't want to be unpolite and I don't want to be missunderstood that expecting support and including of that feature It's just that I want to understand the power of vserver and to do the best with them and also try to document/promote them that it is possible to run an umpached asterisk with a colord CLI (Patching asterisk would be a
Re: [Vserver] linux-vserver patch 2.0.x for kernel 2.6.16
On Mon, Jul 03, 2006 at 11:38:38AM +0200, Rik Bobbaers wrote: sorry guys, this was supposed to be to Bert only, that's why it was in dutch... good explanation, ignoring the fact that I do not 'really' speak or understand dutch either :) but that will not keep me from trying to translate it :) just ignore :) Rik Bobbaers wrote: dag gentse collega!, good day friend! ik ben van plan de 2.6.16.22 patch te maken met de laatste rc van vserver (en de laatste grsec). I plan(ed) to do a 2.6.16.22 patch with the latest release candidate from Linux-VServer (and the latest grsec version) deze zal je altijd kunnen vinden op : older? this? versions did/could/will end up here: http://ludit.kuleuven.be/software/vserver/ natuurlijk moeot je zelf kiezen of je grsec wilt enablen of niet :) of course I'd like to ~~~ to enable grsec or not? well, we'll probably know soon :) best, Herbert -- harry aka Rik Bobbaers K.U.Leuven - LUDIT -=- Tel: +32 485 52 71 50 [EMAIL PROTECTED] -=- http://harry.ulyssis.org Work hard and do your best, it'll make it easier for the rest -- Garfield Disclaimer: http://www.kuleuven.be/cwis/email_disclaimer.htm ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: [Devel] Container Test Campaign
Herbert Poetzl wrote: sidenote: on a 'typical' Linux-VServer guest, tmp will be mounted as tmpfs, so be careful with that OVZ might do similar as might your host distro :) good point. Can we document all these issues somewhere? Kirill ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] linux-vserver patch 2.0.x for kernel 2.6.16
Quoting Herbert Poetzl ([EMAIL PROTECTED]): On Mon, Jul 03, 2006 at 11:38:38AM +0200, Rik Bobbaers wrote: sorry guys, this was supposed to be to Bert only, that's why it was in dutch... good explanation, ignoring the fact that I do not 'really' speak or understand dutch either :) but that will not keep me from trying to translate it :) just ignore :) Rik Bobbaers wrote: dag gentse collega!, good day friend! ik ben van plan de 2.6.16.22 patch te maken met de laatste rc van vserver (en de laatste grsec). I plan(ed) to do a 2.6.16.22 patch with the latest release candidate from Linux-VServer (and the latest grsec version) deze zal je altijd kunnen vinden op : older? this? versions did/could/will end up here: http://ludit.kuleuven.be/software/vserver/ natuurlijk moeot je zelf kiezen of je grsec wilt enablen of niet :) (^^^ == moet?) of course I'd like to ~~~ to enable grsec or not? choose (of course *you* must choose yourself whether you enable grsec or not) :-) -serge ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Protecting guests' interfaces
Hi, On Wed, 05 Jul 2006, Baltasar Cevc wrote: Is there any way to restrict a guest from accessing some interfaces or services of other guests? The guest can only actively use the interfaces assigned to it (see the great flower page, /etc/vservers/vserver-name/interfaces about that), however, it can connect to other guests' interfaces. So if you talk about blocking network connections between the hosts, that would be a firewall thing, you'd have to set up iptables to get there. Yes, I know. But I have not succeeded to restrict access by iptables, neither. It seems that no iptables rules are used when the IP packets are delivered inside the host. At least inside one device. Or do I have a bug in my rules? Cheers, - Teemu ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] sshd creates /dev/pts/*, how can I create a /dev/pts/rob with an init.d script?
On 7/6/06, Herbert Poetzl [EMAIL PROTECTED] wrote: PS: I assume you know that there is a project which uses Linux-VServer to isolate several asterisk instances on a single host I didn't, do you have more information about this? D. blaze your trail -- redhat ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] linux-vserver patch 2.0.x for kernel 2.6.16
On Thursday 06 July 2006 13:17, Herbert Poetzl wrote: On Mon, Jul 03, 2006 at 11:38:38AM +0200, Rik Bobbaers wrote: sorry guys, this was supposed to be to Bert only, that's why it was in dutch... good explanation, ignoring the fact that I do not 'really' speak or understand dutch either :) but that will not keep me from trying to translate it :) just ignore :) Rik Bobbaers wrote: dag gentse collega!, good day friend! Well, a bether translation would be: Hello, colleague form Ghent Best regards, Bert. ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[asterik] Re: [Vserver] sshd creates /dev/pts/*, how can I create a /dev/pts/rob with an init.d script?
Salve Daniel! On Thu, 06 Jul 2006, Daniel W. Crompton wrote: On 7/6/06, Herbert Poetzl [EMAIL PROTECTED] wrote: PS: I assume you know that there is a project which uses Linux-VServer to isolate several asterisk instances on a single host I didn't, do you have more information about this? With Herbert's tipp I found some information very quick: http://www.telephreak.org/papers/vpa/ Web search engine and asterisk vserver virtual Private virtual private asterisk http://linux.slashdot.org/article.pl?sid=05/07/25/2038216 supi.. this is report about http://www.telephreak.org/papers/vpa/ ;) telephreak vserver asterisk Greetings, rob ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [asterik] Re: [Vserver] sshd creates /dev/pts/*, how can I create a /dev/pts/rob with an init.d script?
On 7/6/06, Robert Michel [EMAIL PROTECTED] wrote: On Thu, 06 Jul 2006, Daniel W. Crompton wrote: Web search engine and asterisk vserver virtual Private You are absolutely right, I should have just searched for it. Appologies. D. blaze your trail -- redhat ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] Re: Re: dist-upgrade problem with breezy
Thanks for confirmation. I wasn't sure so I removed it after the upgrade. Daniel W. Crompton wrote: On 7/5/06, Philippe Clérié [EMAIL PROTECTED] wrote: CAP_SYS_ADMIN Question is now should keep that capability? Depends if you want the admin for the vserver to have access to the whole machine. This capability is almost equal to giving somebody root on the host. D. blaze your trail -- redhat ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] sshd creates /dev/pts/*, how can I create a /dev/pts/rob with an init.d script?
Salve Herbert! Herbert Poetzl schrieb am Donnerstag, den 06. Juli 2006 um 13:10h: but on the next day /usr/sbin/safe_asterisk does not found /dev/tty9. /dev/pts/31 exist only for my bash, after exiting this bash, also /dev/pts/31 has been gone, and so this hack does not work... ;( precisely, either you _want_ that output to go somewhere, then you have to 'provide' a real vc terminal or to make asterisk 'create' it on startup (by requesting a new one, like e.g. screen does) Exactly. you could, for example, use screen to provide that pseudo terminal without modifying asterisk I have to play more with screen/dtach - could screen create performance or other problems? IMHO does screen does much more than to just create a pseudo terminal and to slow asterik significant. better use /dev/vc/9 (c:4:9 or the udev equiv) but basically you 'could' create the device for the guest on the host side, and the guest will be able to use it, just be careful _what_ you give to your guests :) So [EMAIL PROTECTED] can indirectly create dumy devices and there is still no tool like mknode for vserver - because it is not so neccessary and does not have such a high priority - right? no, because it is a big can of worms and a security issue, just imagine somebody creating a block device which 'accidentially' is identical to your host's root partition, and then starts modifying stuff at a very low level :) You mean [EMAIL PROTECTED] could do things with the power of [EMAIL PROTECTED] I can understand that it is good that [EMAIL PROTECTED] can't dump the RAM, read the bios etc... and everybody who setup his own vserver is happy about a securiy gain - but it is a bit different for people who rent a vserver and are only [EMAIL PROTECTED] BTW I'm in favor that by default every vserver installation creates a Vserver-README inside the root directory for every guest instance and a [EMAIL PROTECTED] ISP are promoting vserver with full root access As far as I know yet root-guest can't use: iptables, ping, tracerout, ntp, mknod so some misunderstandings or noise on mailinglist will come automaticaly. When I know more about vservers, I will try to contribute in that way... But back to the topic could [EMAIL PROTECTED] use mknod. Theoreticaly would it possible to add this feature with a vmknode and a tool for [EMAIL PROTECTED] that guest could create a block devices of their own without harming other guests or the host itself but it seems not to be a planed feature for vserver. It's unthankful that people asking everytime about errors or thinks that are not supported But I'm thankful about the vserver project and that you have the focus on security Greetings, rob ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: [Devel] Container Test Campaign
On Thu, 06 Jul 2006 14:44:23 +0400, Kirill Korotaev wrote: Gerrit, I assuming you are doing your tests on the same system (i.e. same compiler/libs/whatever else), and you do not change that system over time (i.e. you do not upgrade gcc on it in between the tests). I hope! :) All binaries should be built statically to work the same way inside host/guest or you need to make sure that you have exactly the same versions of glibc and other system libraries. At least glibc can affect perforamnce very much :/ Ick - no one builds binaries statically in the real world. And, when you build binaries statically, you lose all ability to fix security problems in base libraries by doing an update of that library. Instead, all applications need to be rebuilt. Performance tests should reflect real end user usage - not contrived situations that make a particular solution look better or worse. If glibc can affect performance, that should be demonstrated in the real performance results - it is part of the impact of the solution and may need an additional solution or discussion. What I tried to say is that performance results done in different environments are not comparable so have no much meaning. I don't want us to waste our time digging in why one environment is a bif faster or slower than another. I hope you don't want too. I *do* want to understand why one patch set or another is significantly faster or slower than any other. I think by now everyone realizes that what goes into mainline will not be some slice of vserver, or OpenVZ or MetaCluster or Eric's work in progress. It will be the convergance of the patches that enable all solutions, and those patches will be added as they are validated as beneficial to all participants *and* beneficial (or not harmful) to mainline Linux. So, testing of large environments is good to see where the overall impacts are (btw, people should start reading up on basic oprofile use by about now ;-) but in the end, each set of patches for each subsystem will be judged on their own merits. Those merits include code cleanliness, code maintainainability, code functionality, performance, testability, etc. So, you are right that testing which compares roughly similar environments is good. But those tests will help us identify areas where one solution or another may have code which provides functionality in some way which has lower impact. I do not want to have to dig into those results in great detail if the difference between two approaches is minor. However, if a particular area has major impacts to performance, we need to understand how the approaches differ and why one solution has greater impact than another. Sometimes it is just a coding issue that can be easily addressed. Sometimes it will be a design issue indicating that one solution or another has a design issue which might have been better addressed by another solution. The fun thing here (well, maybe not for each solution provider) is that we get to cherry pick the best implementations from each solution, or create new ones as we go which ultimate allow us to have application virtualization, containers, or whatever you want to call them. Now, to have the same environment there are at least 2 ways: - make static binaries (not that good, but easiest way) This is a case where easiest is just plain wrong. If it doesn't match how people will use their distros and solutions out of the box it has no real relevence to the code that will get checked in. - have exactly the same packages in host/VPS for all test cases. BTW, I also prefer 2nd way, but it is harder. Herbert's suggestion here is good - if you can use exactly the same filesystem for performance comparisons you remove one set of variables. However, I also believe that if the difference between any two filesystems or even distro environements doing basic performance tests (e.g. standardized benchmarks) then there is probably some other problem that we should be aware of. Most of the standardized benchmarks elimininate the variance of the underlying system to the best of their ability. For instance, kernbench carries around a full kernel (quite backlevel) as the kernel that it builds. The goal is to make sure that the kernel being built hasn't changed from one version to the next. In this case, it is also important to use the same compiler since there can be extensive variation between versions of gcc. gerrit ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Protecting guests' interfaces
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, Is there any way to restrict a guest from accessing some interfaces or services of other guests? The guest can only actively use the interfaces assigned to it (see the great flower page, /etc/vservers/vserver-name/interfaces about that), however, it can connect to other guests' interfaces. So if you talk about blocking network connections between the hosts, that would be a firewall thing, you'd have to set up iptables to get there. Yes, I know. But I have not succeeded to restrict access by iptables, neither. It seems that no iptables rules are used when the IP packets are delivered inside the host. At least inside one device. Or do I have a bug in my rules? Locally generated packages traverse somewhat different chains than packets from the internet; when using the appropriate chains, they should be filtered (well, it worked for me); as I currently don't have any special treatments for specific packets, I don't have the right chain in mind, you should be able to find it here, though: http://www.faqs.org/docs/iptables/traversingoftables.html Hope that helps, Baltasar ((( Baltasar Cevc ) World wide web: * http://www.openairkino.net/ (a project for the local youth; German only) * http://technik.juz-kirchheim.de/ (programming and admin projects) * http://baltasar.cevc-topp.de/ (private homepage) ) Phone: +49 176 232 20 822 ) -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.4 (Darwin) iD8DBQFErX0Wp2YsmzTbIwYRAnX1AKDQuOA64V2saeseKyXhXf4CrWwxlQCcDrAX dKeITADM5IvcpwJfujB8xmA= =21Em -END PGP SIGNATURE- ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [asterik] Re: [Vserver] sshd creates /dev/pts/*, how can I create a /dev/pts/rob with an init.d script?
Salve Daniel! On Thu, 06 Jul 2006, Daniel W. Crompton wrote: You are absolutely right, I should have just searched for it. Appologies. That was not my point - I was in a hurry and found some pages, and had only time to read them very fast. Virtual private asterisk (vpa) stress (again) the advantage to use vserver on a server and give server demons their own enviroment: Devide Et Impera! :) I was happy that also other people here on the list are interested in asterisk - could be usefull for exchanging knowhow/ideas... ;) Greetings, rob ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] /proc/virtnet error
While doing some clean up I was looking for remnants of a guest. When I ran: # find / -name '*vs666*' I got the following error message right away. WARNING: Hard link count is wrong for /proc/virtnet: this may be a bug in your filesystem driver. Since this directory has the context of guests as subdirs I was wondering if I might have caused this while _playing_ around -- creating, copying, deleting guests, etc. The host system is build from Daniel's excellent FC5 RPMs and instructions with the guests built using the vyum method. Filesystem is ext3 built on software raid ( with no other errors -- even at the console ). Rod -- ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] linux-vserver patch 2.0.x for kernel 2.6.16
On 7/6/06, Bert De Vuyst [EMAIL PROTECTED] wrote: On Thursday 06 July 2006 13:17, Herbert Poetzl wrote: On Mon, Jul 03, 2006 at 11:38:38AM +0200, Rik Bobbaers wrote: Rik Bobbaers wrote: dag gentse collega!, good day friend! Well, a bether translation would be: Hello, colleague form Ghent Actually a more exact, and perhaps better, translation would be: [Good] Day Ghentish colleague! D. blaze your trail -- redhat ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [asterik] Re: [Vserver] sshd creates /dev/pts/*, how can I create a /dev/pts/rob with an init.d script?
On 7/6/06, Robert Michel [EMAIL PROTECTED] wrote: Virtual private asterisk (vpa) stress (again) the advantage to use vserver on a server and give server demons their own enviroment: Devide Et Impera! :) I agree. ;) I was happy that also other people here on the list are interested in asterisk - could be usefull for exchanging knowhow/ideas... ;) I'd be happy to exchange any know how/ideas I have. D. blaze your trail -- redhat ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] What is use of split package?
Hi, I want to know what is use of split-2.6.14.3-vs2.01.tar [.gz] [.bz2] at http://www.13thfloor.at/vserver/s_rel26/v2.01/ What should I use only patch or both, patch and split? thanks in advance -- Sergio Belkin Soluciones Informáticas Open Source Mandriva Authorized Solutions Provider http://www.escritorioya.com.ar (011) 4788-8605 // Cel. 15-5494-5143 ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver