I tried again, the container is now running...could it be because I got the fix
from pam_lxcfs ?
ii liblxc1 2.0.0~rc10-0ubuntu2
amd64Linux Containers
userspace tools (library)
rc lxc
~$ pwd=/sys/fs/cgroup/systemd/`awk -F: '/systemd/ { print $3 }'
/proc/self/cgroup`
~$ echo $pwd
/sys/fs/cgroup/systemd//user.slice/user-1000.slice/session-3.scope
~$ ls -ld $pwd
drwxr-xr-x 2 design design 0 Mar 16 09:29
/sys/fs/cgroup/systemd//user.slice/user-1000.slice/session-3.scope
** Chang
Public bug reported:
Environment:
Xenial Xurus, 16.04, latest updates as of 14th March 2016, plus a bunch of
additional silos/ppas that I can provide on request (this is the laptop used by
the whole team so I wouldn't be surprised if this bug is the result of
conflicting packages).
LXC packag
Tristan, how is that a leak? Connections to 8.8.8.8 will go through the
VPN, not outside of it. By the way, the problem remaining is that
sometimes NM seems to still use the DNS of the router as well. It's as
if without VPN you have say 192.168.0.1 as primary DNS, but with VPN you
get these DNS ser
A simple workaround is to edit your VPN connection (via NM) and set up
static DNS, for example using Google servers:
8.8.8.8, 8.8.4.4
This way, the DNS request is sent through an external IP, hence it is
routed using the VPN. If you were using the default DNS from your router
(probably an interna
The patch has been merged in the nova code. Please note that the patch
implements the logic suggested in the comment #3:
if the file is present but empty nova will consider it as a missing file, then
it raises an exception.
--
You received this bug notification because you are a member of Ubunt
I submitted a patch to nova to fix this issue:
https://review.openstack.org/202640
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nova in Ubuntu.
https://bugs.launchpad.net/bugs/1413293
Title:
Unable to start instances, empty /etc/m
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2014-0099
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2014-0096
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2014-0075
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2014-0
Public bug reported:
Some security vulnerabilities have been fixed after the release of tomcat
7.0.52 that is packaged for Trusty: http://tomcat.apache.org/security-7.html
None of them have been backported. I see the same behaviour with older
distributions, too. Is there a chance to have the se
Public bug reported:
After 2^32 milliseconds from the startup, tomcat fails with the
following error:
ERROR [core.StandardServer] - StandardServer.await: accept:
java.net.SocketTimeoutException: Accept timed out
at java.net.PlainSocketImpl.socketAccept(Native Method)
at
java.net.
Public bug reported:
This message always appears when I update the system
ProblemType: Package
DistroRelease: Ubuntu 14.10
Package: nut-client 2.7.1-1ubuntu3
ProcVersionSignature: Ubuntu 3.16.0-34.45-generic 3.16.7-ckt8
Uname: Linux 3.16.0-34-generic x86_64
NonfreeKernelModules: nvidia
ApportVers
Public bug reported:
I don't know what to add
ProblemType: Package
DistroRelease: Ubuntu 14.04
Package: sa-compile 3.4.0-1ubuntu1
ProcVersionSignature: Ubuntu 3.13.0-36.63-generic 3.13.11.6
Uname: Linux 3.13.0-36-generic i686
ApportVersion: 2.14.1-0ubuntu3.4
Architecture: i386
Date: Thu Sep 18 15
Waiting for the SRU to land in Saucy. Has it been delayed for some
reason or has it been forgotten? :-)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/1244635
Title:
setuid executables
Good news.
However I must say that the documentation on LXC does not say that
libvirt is less secure than the official LXC:
https://help.ubuntu.com/13.10/serverguide/lxc.html#lxc-libvirt
So either libvirt should ship with an Apparmor profile for LXC, or a
warning should be added to the relevant p
Hi Stéphane,
I can see at least three ways of escaping.
The first is using LXC through libvirt. I see that there's an Apparmor
profile for usr.bin.lxc-start, but AFAIK libvirt does not use lxc-start.
Also, libvirt does not load the "lxc-containers" profile (AFAIK).
This is proven by the fact tha
> I also don't feel that this is a high priority bug since, so far, we
do not recommend allowing unprivileged users to use containers.
Agreed. Especially because (currently) it's fairly easy to escape from
LXC when you have root access to the container.
> I don't believe it would be a serious los
*** This bug is a security vulnerability ***
Public security bug reported:
If I execute "/var/lib/lxc/NAME/rootfs/usr/bin/sudo -i" on the host
system, it works exactly like "/usr/bin/sudo -i".
Now suppose that a user that has root access to the LXC container
creates a flawed setuid executable. W
** Description changed:
Many core packages depend on initramfs-tools when they should actually
depend on linux-initramfs-tools (virtual package provided by initramfs-
tools and dracut).
Debian seems to be using "Depends: initramfs-tools | linux-initramfs-
tools" for almost every relev
Marking as high as this bug makes dracut impossible to install.
** Changed in: udev (Ubuntu)
Status: New => Confirmed
** Changed in: ubuntu-meta (Ubuntu)
Status: New => Confirmed
** Changed in: multipath-tools (Ubuntu)
Status: New => Confirmed
** Changed in: lvm2 (Ubuntu)
** Also affects: lvm2 (Ubuntu)
Importance: Undecided
Status: New
** Also affects: console-setup (Ubuntu)
Importance: Undecided
Status: New
** Also affects: multipath-tools (Ubuntu)
Importance: Undecided
Status: New
** Also affects: ubuntu-meta (Ubuntu)
Importance
Hi Matthaus,
I just re-executed the operations described. I work with master and agent on
two different machines.
On the agent machine the /etc/puppet/puppet.conf is as follows:
<<
[main]
logdir=/var/log/puppet
vardir=/var/lib/puppet
ssldir=/var/lib/puppet/ssl
rundir=/var/run/puppet
factpath=$vard
On my linux box the fact is synched on the agent (with pluginsync=true
attribute) and the fact file is created in the folder
/var/lib/puppet/lib/facter (and not in
/etc/puppet/modules/modulewithfact/lib/facter/test_fact.rb as by your
example).
At this point the puppet daemon is not able to find th
Robie, I tested it on Debian wheezy and the situation is exactly the same.
I will try and track the problem to signal it at the more appropriate level.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to puppet in Ubuntu.
https://bugs.launc
Robie, yes the problem is exactly the one you described.
The puppet daemon does not source /var/lib/puppet/lib/facter for facts and my
proposed modification is a workaround to have it properly running.
Also the command "puppet agent --test" does not source the facts in
/var/lib/puppet/lib/facter
Hi, yes I know it is not needed to have a manifest file to propagate the fact
to the node.
In fact the facter gets propagated and is available on the node machine,
however whey I try to recall it from a manifest, the fact simply is not
evaluated.
I try to better describe the problem by answerin
efatult/puppet file in the puppet package from further versions.
I hope my example and explaination is clear enough.
Thanks and regards,
Andrea
** Affects: puppet (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubunt
I can't verify it anymore since i upgraded from 12.04 to 12.10, marked
as invalid
** Changed in: samba (Ubuntu)
Status: Incomplete => Invalid
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
https://bugs.launchpa
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1057772
Title:
package samba 2:3.6.3-2ubuntu2.3 failed to install/upgrade: il
sottoprocesso nuovo script post-removal ha restituito lo
Public bug reported:
installing samba server in ubuntu 12.04(.1) it's impossible, dpkg says
it fails to cnfigure every time the apt daemon is invoked
ProblemType: Package
DistroRelease: Ubuntu 12.04
Package: samba 2:3.6.3-2ubuntu2.3
ProcVersionSignature: Ubuntu 3.2.0-29.46-generic 3.2.24
Uname: L
*** This bug is a duplicate of bug 782973 ***
https://bugs.launchpad.net/bugs/782973
I don't think that the bug is duplicated, I had the same problem with
the fresh 12.4. qemu-kvm 1.0+noroms-0ubuntu13.
--
You received this bug notification because you are a member of Ubuntu
Server Team, whi
*** This bug is a duplicate of bug 782973 ***
https://bugs.launchpad.net/bugs/782973
** Also affects: qemu-kvm (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to kvm in Ubuntu.
http
=> Confirmed
** Changed in: kvm (Ubuntu)
Milestone: ubuntu-11.10-beta-2 => None
** Changed in: kvm (Ubuntu)
Assignee: Andrea Corbellini (andrea.corbellini) => (unassigned)
** This bug has been marked a duplicate of bug 782973
virtfs isn't enabled
--
You received this bug notifi
Assignee: (unassigned) => Andrea Corbellini (andrea.corbellini)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to kvm in Ubuntu.
https://bugs.launchpad.net/bugs/830084
Title:
fsdev is not supported by this qemu build
To manage notifica
=/home/andrea/.../:
there is no option group "fsdev"
fsdev is not supported by this qemu build.
Reading http://comments.gmane.org/gmane.comp.emulators.libvirt/40462 it
seems that kvm should Build-Depend on libattr1-dev.
** Affects: kvm (Ubuntu)
Importance: Undecided
S
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to amavisd-new in Ubuntu.
https://bugs.launchpad.net/bugs/804636
Title:
package amavisd-new-postfix 1:2.6.5-0ubuntu2 failed to
install/upgrade: il sottoprocesso vecchio script di post-ins
Public bug reported:
don't know why
ProblemType: Package
DistroRelease: Ubuntu 11.04
Package: amavisd-new-postfix 1:2.6.5-0ubuntu2
ProcVersionSignature: Ubuntu 2.6.38-10.46-generic 2.6.38.7
Uname: Linux 2.6.38-10-generic i686
AptOrdering:
abuse-frabs: Install
abuse: Install
amavisd-new-postfix
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to amavisd-new in Ubuntu.
https://bugs.launchpad.net/bugs/800833
Title:
package amavisd-new-postfix 1:2.6.5-0ubuntu2 failed to
install/upgrade: il sottoprocesso vecchio script di post-ins
Public bug reported:
removing Qbittorrent
but i had some problems downloading new packages
ProblemType: Package
DistroRelease: Ubuntu 11.04
Package: amavisd-new-postfix 1:2.6.5-0ubuntu2
ProcVersionSignature: Ubuntu 2.6.38-10.44-generic 2.6.38.7
Uname: Linux 2.6.38-10-generic i686
AptOrdering:
q
OK, then this bug is fixed, on Ubuntu's side. Thank you!
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in ubuntu.
https://bugs.launchpad.net/bugs/701765
Title:
open_basedir breaks by restricting paths to files that should be
Sorry for bumping so impolitely, but this is grave and still not
completely solved, at least in Hardy.
@James
Thanks for pointing this out. I am kind of surprised that it works without the
/etc/ path but i am fixing it now anyway.
@others
Can anyone at least confirm that this is *not* an issue a
Uhm. The open_basedir has /var/lib/php which is a valid prefix for
/var/lib/phpmyadmin/, and it has always (for two years until wednesday
when this bug appeared) worked with this open_basedir string.
To further clarify:
[...]:/usr/share/phpmyadmin/:/var/lib/phpmyadmin/:[...] works
[...]:/usr/shar
I am not completely confident that the bug is indeed fixed.
The original problem is gone, but I think I see a similar issue in the
updated package. On my Hardy server, paths *without* a trailing slash
now seem to be blocked unexpectedly.
[Fri Jan 14 15:48:37 2011] [error] [client 193.205.80.47] P
I have the same error after install KVM and use virtual-manager.
I try to add some iptables rules but nothing change.
We wait somebody help us to resolve this problem
thanks andrea
--
libvirt default network doesn't start, iptables errors, bad rules
https://bugs.launchpad.net/bugs/66804
mailmanctl will still exit, but if no
matching process is found, mailmanctl will remove the apparently stale
lock and make another attempt to claim the master lock.
Thanks a lot for your work,
Andrea
** Patch added: "Avoid buggy '-s' implementation"
https:
Hi all,
and thanks a lot for your work.
Yesterday I filled same bug for Debian (same evidence on Testing):
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598509
Ciao,
Andrea
** Bug watch added: Debian Bug tracker #598509
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598509
** Attachment added: "Dependencies.txt"
https://bugs.launchpad.net/bugs/651182/+attachment/1653547/+files/Dependencies.txt
--
Invocations of "/etc/init.d/mailman start" spawns multiple instances
https://bugs.launchpad.net/bugs/651182
You received this bug notification because you are a membe
Public bug reported:
Binary package hint: mailman
r...@vaio:/tmp# ps -u list
PID TTY TIME CMD
8490 ?00:00:00 mailmanctl
8491 ?00:00:00 python
8492 ?00:00:00 python
8493 ?00:00:00 python
8494 ?00:00:00 python
8495 ?00:00:00 python
Hi. Sorry but currently I'm not able to provide my domain.xml (however
will do as soon as I find the time). But I would like to say that I'm
not using eucalyptus and all my VMs work fine without apparmor.
--
Instances don't start correctly: Security Labeling error running
aa_change_profile()
htt
Oops, sorry! I ran "virsh capabilities" after disabling apparmor.
So, to clarify: with AppArmor, every attempt to use a virtual machine
fails; without it, everything works perfectly.
** Attachment added: "virsh-capabilities-with-apparmor"
https://bugs.edge.launchpad.net/ubuntu/+source/eucalyp
Hi Jamie and thank you for your feedback. Here are the answers to your
questions:
1. my capabilities are in the attachment;
2. there are no lines containing DENIED in my logs;
3. restarting libvirt without disabling AppArmor produces no effects.
** Attachment added: "virsh-capabilities"
https
I see this bug too, but I don't think the problem is in eucalyptus: I'm
using qemu+kvm+libvirt.
Whenever I try to start any of my virtual machines (that just some days
ago in Lucid worked fine) I get this error:
# virsh -c qemu:///system start abc
error: Failed to start domain abc
error: internal
** Attachment added: "AptOrdering.txt"
http://launchpadlibrarian.net/53472419/AptOrdering.txt
** Attachment added: "Dependencies.txt"
http://launchpadlibrarian.net/53472421/Dependencies.txt
** Attachment added: "Df.txt"
http://launchpadlibrarian.net/53472423/Df.txt
** Attachment added:
Public bug reported:
Error occurred in standard upgrade suggested by package manager.
The installation is standard with no special tricks.
ProblemType: Package
DistroRelease: Ubuntu 10.04
Package: slapd 2.4.21-0ubuntu5.2
ProcVersionSignature: Ubuntu 2.6.32-24.39-generic 2.6.32.15+drm33.5
Uname: L
Upgraded to Lucid two weeks ago. Everything runs smooth since then.
Regards
Andrea
dpkg -l | grep mysql
--
ii libdbd-mysql-perl4.012-1ubuntu1
A Perl5 database interface to the MySQL data
ii libmysqlclient15off
Alright then mine is a different problem.
However in the event of a reboot the dhcp client is not supposed to release the
address, since it is going to ask one again in a minute.
--
dhclient3 hangs on shutdown
https://bugs.launchpad.net/bugs/571933
You received this bug notification because you
It seems that the DHCP server does not reply to DHCPRELEASE so dhclient waits
until timeout.
My DSL modem does the same.
My workaround is to remove /etc/rc0.d/S35networking and
/etc/rc6.d/S35networking, but I would like to know if there is a way to
configure dhclient to ignore release requests,
Sorry for having not replied earlier. I haven't tried Lucid yet. However
I had to reinstall Karmic a couple of months ago and since then the
issue has appeared only once, even though the pc is booted daily.
Regards
Andrea
--
mysql-server-5.1 starts before filesystem is mounted (karmic)
Weird as it sounds, I got around the issue moving up the relevant entry
in fstab (/dev/sda7), and positioning it just between / and swap
mounting. I must warn, however, that mysqld seldom does not start anyway
and I cannot isolate the cause for such a random behaviour. Hope this
helps.
fstab
coreutils 6.10-6ubuntu1 [modified: bin/chmod]
you are using a broken chmod. Marking this bug as invalid cause the bug is not
there as the package installs fine on jaunty.
--
winbind not installable
https://bugs.launchpad.net/bugs/449814
You received this bug notification because you are a membe
coreutils 6.10-6ubuntu1 [modified: bin/chmod]
you are using a broken chmod. Marking this bug as invalid cause the bug is not
there as the package installs fine on jaunty.
** Changed in: samba (Ubuntu)
Status: Incomplete => Invalid
--
winbind not installable
https://bugs.launchpad.net/b
** Summary changed:
- amule
+ winbind uninstallable
** Summary changed:
- winbind uninstallable
+ winbind not installable
--
winbind not installable
https://bugs.launchpad.net/bugs/449814
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to
latest windbind package version is 2:3.4.0-3ubuntu5, (and you are
installing 2:3.3.2-1ubuntu3.2) would you mind giving an apt-get update
and try again?
** Changed in: samba (Ubuntu)
Status: New => Incomplete
--
amule
https://bugs.launchpad.net/bugs/449814
You received this bug notificatio
changing package from amule to winbind.
** Package changed: amule (Ubuntu) => samba (Ubuntu)
--
amule
https://bugs.launchpad.net/bugs/449814
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in ubuntu.
--
Ubuntu-server-bugs mailing
** Changed in: net-snmp (Ubuntu)
Importance: Undecided => Medium
Status: New => Confirmed
--
snmpd dosen't purge non persistent interfaces
https://bugs.launchpad.net/bugs/60213
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to net-
64 matches
Mail list logo