IRC chat logs for #ltsp on irc.freenode.net (webchat)


Channel log from 13 October 2020   (all times are UTC)

01:23RaphGro has left IRC (RaphGro!~raphgro@fedora/raphgro, Quit: Please remember your own message. It'll be read as soon as possible.)
05:26RaphGro has joined IRC (RaphGro!~raphgro@fedora/raphgro)
07:37danboid has joined IRC (danboid!~ISDADS\sg@cpc127016-macc4-2-0-cust104.1-3.cable.virginm.net)
07:38
<danboid>
alkisg, I can't see a list of required ports for a LTSP server in the docs. Am I missing it? TFTP, SSH, DHCP (if its running a DHCP server)... any others?
07:39
<alkisg>
danboid: we don't have any ltsp-specific services so we avoid to document things that are documented elsewhere
07:39
There's also NFS
07:39
And if you're using epoptes, a lot more
07:40
<danboid>
"we don't have any ltsp-specific services so we avoid to document things that are documented elsewhere" What do you mean and where is this documented?
07:40
<alkisg>
danboid: I mean that we don't have documentation for libreoffice
07:40
Because it's not specific to LTSP
07:40
We also don't have documentation about gedit
07:41
And we don't have documentation about NFS or SSHFS ports
07:41
If you want to write documentation about all these in the ltsp wiki, we don't mind though
07:41
<danboid>
Sure SSHFS only requires port 22 like SSH? I thought LTSP either used SSHFS or NFS
07:42
<alkisg>
Sure
07:42
And we don't document the software we're using
07:42
It's documented in their sites
07:42
E.g. in the ssh site, in the nfs site, etc
07:43
<danboid>
I'm confused. Does LTSP use NFS by default to share files. SSHFS or both?
07:43
<alkisg>
NFS for / rootfs, and SSHFS for /home
07:43
I.e. both
07:44
https://ltsp.org/ mentions some of the tools we're using
07:44
In the first page
07:48
<danboid>
I presume I only need to open the DHCP ports if I'm running a DHCP server on the LTSP server?
07:49
<alkisg>
netstat -nap is your friend
07:49
See the services you are running, and decide which of them you need
07:49
netstat -ntap
08:55
<danboid>
alkisg, Does an LTSP server need to open the inetd port, 9571?
08:55
<alkisg>
No
08:55
<danboid>
OK
09:00
Unless I'm missing something, it looks to me like people might be able to get away with just opening ports 22 TCP for SSH and SSHFS and 111 TCP and UDP for NFS, for a bare bones LTSP server not using epoptes and not running a dhcp server. Does that sound right?
09:05
This is for a LTSP server configured 4 years ago, so it may be a little different to the latest
09:05
<alkisg>
Then you need inetd
09:06
And possibly NBD, but not NFS
09:06
<danboid>
Ah right! Thanks
09:07
<alkisg>
NFS needs 2049 btw
09:07
<danboid>
Right yes, TCP and UDP right
09:07
for 2049
09:07
<alkisg>
But you're probably not using NFS at all
09:07
If you're using LTSP5
09:08
It depends on the distribution as well
09:08
<danboid>
Its listening on port 111
09:08
16.04
09:08
<alkisg>
Then you're not using NFS
09:09
<danboid>
OK, I didn't think so as exportfs and showmount weren't showing anything
09:11
So in my case I might just need SSH (22) and inetd ports open as the bare minimum
09:12
Sounds like if from what you've just told me + netstat output
09:13
inetd isn't used under latest LTSP / 20.04?
09:17
<alkisg>
You need NBD too, 10809
09:17
inetd isn't used in the new LTSP
09:17
You can use the new LTSP in any Ubuntu version, even 16.04, it's not specific to Ubuntu versions but to the LTSP version
09:17
<danboid>
Brilliant, thanks Alkis! You are the man
09:19
You've been doing this for 20 years now right?
09:19
LTSP that is
09:19
<alkisg>
No, I only joined the team in 2008
09:19
While the team started in 2000
09:22
<danboid>
Do any of the original devs still contribute ever
09:23
<alkisg>
vagrantc is still reviewing my packaging work and uploads to debian, but he's not an "initial dev", he joined a bit afterwards than 2000
09:25
<danboid>
It's a bit OT I know but does fail2ban do anything with iptables or ufw (or another firewall) being installed? I ask because it lists those as being optional
09:25
*without
09:27
I expect not but it doesn't seem to throw any errors if you don't have a firewall configured which seems wrong
09:28
As I doscovered last night when I found fail2ban wasn't working on one of our servers becasuse the timezone wasn't set correctly.
09:37
So in my case, NBD shares the system files and SSHFS the home dirs right
09:37
Under 16.04
09:37
With LTSP5
10:58GodFather has joined IRC (GodFather!~rcc@70-88-125-138-static.hfc.comcastbusiness.net)
11:06GodFather has left IRC (GodFather!~rcc@70-88-125-138-static.hfc.comcastbusiness.net, Ping timeout: 260 seconds)
11:20GodFather has joined IRC (GodFather!~rcc@70-88-125-138-static.hfc.comcastbusiness.net)
11:49Aison has left IRC (Aison!~Ivo@2a02:168:200f:100::1:1, Remote host closed the connection)
12:08GodFather has left IRC (GodFather!~rcc@70-88-125-138-static.hfc.comcastbusiness.net, Ping timeout: 260 seconds)
15:04Vercas has left IRC (Vercas!~Vercas@unaffiliated/vercas, Ping timeout: 256 seconds)
16:41Vercas has joined IRC (Vercas!~Vercas@unaffiliated/vercas)
17:00danboid has left IRC (danboid!~ISDADS\sg@cpc127016-macc4-2-0-cust104.1-3.cable.virginm.net, Ping timeout: 260 seconds)
17:51danboid has joined IRC (danboid!~ISDADS\sg@cpc127016-macc4-2-0-cust104.1-3.cable.virginm.net)
18:19danboid has left IRC (danboid!~ISDADS\sg@cpc127016-macc4-2-0-cust104.1-3.cable.virginm.net, Quit: Leaving)
18:49RaphGro has left IRC (RaphGro!~raphgro@fedora/raphgro, Quit: Please remember your own message. It'll be read as soon as possible.)
23:01lucascastro has left IRC (lucascastro!~lucascast@177-185-139-15.dynamic.isotelco.net.br, Remote host closed the connection)
23:01lucascastro has joined IRC (lucascastro!~lucascast@177-185-139-15.dynamic.isotelco.net.br)
23:24mgariepy has left IRC (mgariepy!~mgariepy@ubuntu/member/mgariepy, Ping timeout: 260 seconds)
23:34mgariepy has joined IRC (mgariepy!~mgariepy@ubuntu/member/mgariepy)