IRC chat logs for #ltsp on irc.libera.chat (webchat)


Channel log from 19 October 2016   (all times are UTC)

00:03GodFather has left IRC (GodFather!~rcc@cpe-74-75-125-61.maine.res.rr.com, Quit: Ex-Chat)
00:03GodFather has joined IRC (GodFather!~rcc@cpe-74-75-125-61.maine.res.rr.com)
00:08GodFather has left IRC (GodFather!~rcc@cpe-74-75-125-61.maine.res.rr.com, Remote host closed the connection)
00:25
<bennabiy>
Hyperbyte: But how do I make sure any changes to groups happen in LDAP, and that new groups generated happen in LDAP?
00:25
Like if a system program adds a group
00:26
do I manually need to transfer all users and groups to LDAP each time a change occurs?
00:26
Or with nsswitch configured, the system will auto add to LDAP?
04:56
<alkisg>
bennabiy: system programs generally use adduser, which adds users locally. Which system group do you care about?
04:57
Hyperbyte: fixed with ltspfs?
04:57
bennabiy: if it's only a couple of system groups like vboxusers and epoptes, then sure you can put those in ldap
04:58
<bennabiy>
alkisg: I guess I was just thinking of those, and things like sudo etc
04:59
<alkisg>
bennabiy, Hyperbyte, the current logic in ltsp is, "if you're using ldap, we won't touch your user database at all; make sure you know what you're doing"
04:59
Do you think it would be better if we still added manually all the system groups?
05:00
Or that would be more confusing?
05:00
<bennabiy>
Probably more confusing
05:01
<alkisg>
I'm not sure though, if ldap groups are available early enough, when e.g. virtualbox drivers create the /dev/vboxusb node
05:01
Because if ldap isn't available at that point, then the node will have the wrong permissions
05:01
bennabiy: maybe you should check that ^ since you have a running installation with ldap...
05:02
<bennabiy>
yes, but my permissions are messed up because my user is local and LDAP
05:02
<alkisg>
What permissions?
05:02
<bennabiy>
so all my ldap only stuff works, but my mix removes my user
05:02
<alkisg>
You created the users locally, and then you put him to ldap without updating his files?
05:03
<bennabiy>
any local system groups (like sudo) do not have my user listed but on the server it does
05:03
<alkisg>
This is groups, what about permissions?
05:03
<bennabiy>
I created the user locally, generated the system, and then brought in my LDAP info, which happens to have my user as well
05:03
<alkisg>
That means that your user has a different uid locally and in ldap though, so his files have broken permissions
05:03
You should do a chown -R after doing it that way
05:04
<bennabiy>
I can still run sudo on the client, but I am not listed as a valid admin to do gksudo
05:04
I have same UID on both
05:04
1000
05:04
<alkisg>
OK, then the permissions are all fine?
05:04
Because you said about permissions, yet you only mention group issues
05:04
So you got me confused
05:05
<bennabiy>
sorry
05:05
groups
05:05
permissions lacking because group lacking
05:05
<alkisg>
OK, we already talked about that above
05:06
And the result was that you should test if ldap is available very early or not, by doing ls -l /dev/vboxusb
05:06
If ldap is available before vbox creates its nodes, then you should just use ldap system groups, end of story
05:07
If ldap isn't available at that point... it's an issue, maybe ltsp should bring the system groups from the server anyway
05:07
To make this clearer; suppose vboxusers has gid=100 locally, and 101 in ldap
05:07
We want /dev/vboxusb to have gid=101, otherwise it won't work
05:08
<bennabiy>
yes
05:10
alkisg: https://pastebin.mozilla.org/8920039
05:11
<alkisg>
bennabiy: what is the vboxusers gid (1) locally, (2) in ldap, and (3) in /dev/vboxusb?
05:11
grep vboxusers /etc/group
05:12
getent group vboxusers
05:12
(assuming you have ldap first)
05:12
ls -lnd /dev/vboxusb
05:12
We want 1 != 2 == 3
05:12
<bennabiy>
1=2=3
05:12
<alkisg>
If 1==2, then we can't test, you need to change it in ldap and reboot the client
05:14
<bennabiy>
nsswitch.conf has ldap first
05:15
<alkisg>
OK, change the gid in ldap and reboot the client and test again
05:21
<bennabiy>
wait, I do not have vboxusers in ldap
05:21
that is why 1=2=3
05:21
<alkisg>
That's not the test we want then :)
06:03forum has joined IRC (forum!~Icedove@212-183-82-217.adsl.highway.telekom.at)
06:05ricotz has joined IRC (ricotz!~ricotz@p5B2A80E5.dip0.t-ipconnect.de)
06:05ricotz has joined IRC (ricotz!~ricotz@ubuntu/member/ricotz)
06:05kjackal_ has joined IRC (kjackal_!~quassel@athedsl-237936.home.otenet.gr)
06:18forum has left IRC (forum!~Icedove@212-183-82-217.adsl.highway.telekom.at, Ping timeout: 252 seconds)
06:59highvolt1ge is now known as highvoltage
07:00highvoltage has joined IRC (highvoltage!~highvolta@ubuntu/member/highvoltage)
07:27forum has joined IRC (forum!~Icedove@212-183-82-217.adsl.highway.telekom.at)
07:47forum has left IRC (forum!~Icedove@212-183-82-217.adsl.highway.telekom.at, Ping timeout: 245 seconds)
07:48Statler has joined IRC (Statler!~Georg@mail.lohn24.de)
07:49Statler_ has joined IRC (Statler_!~Georg@mail.lohn24.de)
08:03forum has joined IRC (forum!~Icedove@213-240-78-161.adsl.highway.telekom.at)
08:14forum1 has joined IRC (forum1!~Icedove@212-183-87-244.adsl.highway.telekom.at)
08:15forum has left IRC (forum!~Icedove@213-240-78-161.adsl.highway.telekom.at, Ping timeout: 250 seconds)
08:15forum1 is now known as forum
08:16
<scomi>
kalhmera se olous, kalhmera alkisg
08:16
<alkisg>
Geia sou scomi
08:16
!greek
08:16
<ltsp`>
greek: Στο παρόν κανάλι μιλάνε μόνο Αγγλικά, για υποστήριξη στα Ελληνικά από την υπηρεσία Τεχνικής Στήριξης ΣΕΠΕΗΥ διαβάστε το http://ts.sch.gr/wiki/IRC και στη συνέχεια πληκτρολογήστε /j #ts.sch.gr
08:16
<alkisg>
grapse: /join #ts.sch.gr
08:16
<scomi>
exw thn plhroforikario pou legame prin meres
08:17
<alkisg>
Diabase ligo auta pou grafw, eisai se la8os kanali
08:17
Mpaineis sto #ltsp enw prepei na mpaineis sto #ts.sch.gr pou einai ellhniko
08:17
Opote twra grapse auto: /join #ts.sch.gr
08:33mikkel has joined IRC (mikkel!~mikkel@mail.dlvs.dk)
08:47forum has left IRC (forum!~Icedove@212-183-87-244.adsl.highway.telekom.at, Ping timeout: 245 seconds)
08:49forum has joined IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at)
09:01scomi_ has joined IRC (scomi_!9366f746@gateway/web/freenode/ip.147.102.247.70)
09:13scomi_ has left IRC (scomi_!9366f746@gateway/web/freenode/ip.147.102.247.70, Quit: Page closed)
09:15scomi has left IRC (scomi!9366f746@gateway/web/freenode/ip.147.102.247.70, Quit: Page closed)
09:15scomi has joined IRC (scomi!9366f746@gateway/web/freenode/ip.147.102.247.70)
09:18scomi has left IRC (scomi!9366f746@gateway/web/freenode/ip.147.102.247.70, Client Quit)
09:23scomi has joined IRC (scomi!9366f746@gateway/web/freenode/ip.147.102.247.70)
09:24scomi has left IRC (scomi!9366f746@gateway/web/freenode/ip.147.102.247.70)
10:06eu^10725450 has joined IRC (eu^10725450!9366dc15@gateway/web/freenode/ip.147.102.220.21)
10:13forum has left IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at, Ping timeout: 265 seconds)
10:16mikkel has left IRC (mikkel!~mikkel@mail.dlvs.dk, Quit: Leaving)
10:39GodFather has joined IRC (GodFather!~rcc@cpe-74-75-125-61.maine.res.rr.com)
10:50forum has joined IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at)
10:59forum has left IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at, Ping timeout: 244 seconds)
11:25GodFather_ has joined IRC (GodFather_!~rcc@cpe-74-75-125-61.maine.res.rr.com)
11:26anna_ has joined IRC (anna_!c15c76b7@gateway/web/freenode/ip.193.92.118.183)
11:27anna_ has left IRC (anna_!c15c76b7@gateway/web/freenode/ip.193.92.118.183)
11:29GodFather has left IRC (GodFather!~rcc@cpe-74-75-125-61.maine.res.rr.com, Ping timeout: 265 seconds)
11:43ogra_ has left IRC (ogra_!~ogra_@p5098ed03.dip0.t-ipconnect.de, Excess Flood)
11:43ogra_ has joined IRC (ogra_!~ogra_@p5098ed03.dip0.t-ipconnect.de)
12:19BuddyButterfly has joined IRC (BuddyButterfly!~BuddyButt@h1359005.stratoserver.net)
12:19
<BuddyButterfly>
hi
12:20
I have ltsp-pnp successfully running. is it difficult to migrateit to a full fledged ltsp server? Such that multiple different systems could be offered? like kubuntu/xubunt/ubunt/SuSe etc.?
12:26kjackal_ has left IRC (kjackal_!~quassel@athedsl-237936.home.otenet.gr, Read error: Connection reset by peer)
12:38kjackal_ has joined IRC (kjackal_!~quassel@2a02:587:3102:a000:fd1a:9df7:5f32:7f82)
12:45al-geo has joined IRC (al-geo!5be2b379@gateway/web/freenode/ip.91.226.179.121)
12:48GodFather_ has left IRC (GodFather_!~rcc@cpe-74-75-125-61.maine.res.rr.com, Quit: Ex-Chat)
12:48GodFather_ has joined IRC (GodFather_!~rcc@cpe-74-75-125-61.maine.res.rr.com)
12:48
<al-geo>
hi. my fat client after pxe finds server and takes own ip, it stacks on two identic --> Boot network OS and wates of enter. i fixed this earlier but cant remember how. please help
12:51kjackal_ has left IRC (kjackal_!~quassel@2a02:587:3102:a000:fd1a:9df7:5f32:7f82, Remote host closed the connection)
12:55kjackal_ has joined IRC (kjackal_!~quassel@athedsl-237936.home.otenet.gr)
13:14GodFather_ has left IRC (GodFather_!~rcc@cpe-74-75-125-61.maine.res.rr.com, Ping timeout: 265 seconds)
13:27forum has joined IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at)
13:30GodFather_ has joined IRC (GodFather_!~rcc@cpe-74-75-125-61.maine.res.rr.com)
13:48
<alkisg>
BuddyButterfly: you just need to run ltsp-build-client a few times, and offer a pxelinux menu
13:50ben_roose has joined IRC (ben_roose!~roose@roose.cs.wichita.edu)
13:54
<BuddyButterfly>
alkisg: Ah, that easy? Cool, will have a look into it.
13:56GodFather_ has left IRC (GodFather_!~rcc@cpe-74-75-125-61.maine.res.rr.com, Ping timeout: 265 seconds)
14:02forum has left IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at, Ping timeout: 256 seconds)
14:08
<bennabiy>
alkisg: my question about groups was if I have a stock system, and then I in the future install a piece of software like virtualbox where a user needs to be added to the group... how do I make sure that gets into the LDAP and not just on the local system
14:08
?
14:16GodFather_ has joined IRC (GodFather_!~rcc@cpe-74-75-125-61.maine.res.rr.com)
14:22forum has joined IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at)
15:03kjackal_ has left IRC (kjackal_!~quassel@athedsl-237936.home.otenet.gr, Ping timeout: 250 seconds)
15:09
<BuddyButterfly>
bennabiy: either you use local user and groups or via ldap. if you use ldap then you have to maintain the directory service yourself.
15:26forum has left IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at, Remote host closed the connection)
15:27forum has joined IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at)
15:44kjackal_ has joined IRC (kjackal_!~quassel@195.97.12.34)
15:48kjackal__ has joined IRC (kjackal__!~quassel@83.212.233.131)
15:52kjackal_ has left IRC (kjackal_!~quassel@195.97.12.34, Ping timeout: 245 seconds)
15:53JuJuBee has joined IRC (JuJuBee!~knichel@24-148-115-153.ip.mhcable.com)
15:54
<JuJuBee>
My clients were set to a different timezone than the server. I changed the TIMEZONE var in lts.conf and rebooted client and it fixed yesterday.
15:55
Today timezone is incorrect again. I checked the /etc/timezone in chroot and it is correct, but the clock is off and timezone on client incorrect again today. Clock on client shows timezone as Etc/UTC
16:02
When I log into client and ctrl-alt-f2 for shell, /etc/timezone has Etc/UTC. Is this a bug?
16:04GodFather_ has left IRC (GodFather_!~rcc@cpe-74-75-125-61.maine.res.rr.com, Quit: Ex-Chat)
16:05GodFather_ has joined IRC (GodFather_!~rcc@cpe-74-75-125-61.maine.res.rr.com)
16:05GodFather_ is now known as GodFather
16:23BuddyButterfly has left IRC (BuddyButterfly!~BuddyButt@h1359005.stratoserver.net, Quit: Leaving.)
16:29Statler has left IRC (Statler!~Georg@mail.lohn24.de, Quit: Leaving)
16:36Debianuser_ has joined IRC (Debianuser_!c99655a3@gateway/web/freenode/ip.201.150.85.163)
16:36
<Debianuser_>
Hola
16:36
Me podrian ayudar con un problema
16:36
Al instalar DebianLTSP
16:37
Cuando creo la maquina cliente
16:39
No me corre el sistema por medio de la red
16:46Debianuser_ has left IRC (Debianuser_!c99655a3@gateway/web/freenode/ip.201.150.85.163, Ping timeout: 260 seconds)
17:05forum has left IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at, Remote host closed the connection)
17:05forum has joined IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at)
17:21forum has left IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at, Read error: Connection reset by peer)
17:22forum has joined IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at)
17:23GodFather has left IRC (GodFather!~rcc@cpe-74-75-125-61.maine.res.rr.com, Ping timeout: 265 seconds)
18:24kjackal__ has left IRC (kjackal__!~quassel@83.212.233.131, Ping timeout: 250 seconds)
19:11gehidore is now known as oats
19:11oats is now known as man
19:11man is now known as gehidore
19:14gehidore is now known as man
19:25forum has left IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at, Remote host closed the connection)
19:25forum has joined IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at)
19:28man is now known as gehidore
19:52forum has left IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at, Remote host closed the connection)
19:52forum has joined IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at)
19:55forum has left IRC (forum!~Icedove@192-164-130-75.hdsl.highway.telekom.at, Client Quit)
20:33
<alkisg>
JuJuBee: what's the output of this command on ctrl+alt+f2 on the client? getltscfg -a
20:33
Use getltscfg -a > /tmp/file if you want, then scp/pastebin it or something
20:34Grembler has joined IRC (Grembler!~Ben@cpc87179-aztw31-2-0-cust6.18-1.cable.virginm.net)
20:34
<alkisg>
bennabiy: package installation scripts generally don't know how to add users to ldap, so if you're using ldap for their generated groups, you have to do those steps manually yourself
20:35
ldap doesn't have a standard schema so postinst scripts can't just add users there
20:36
<bennabiy>
what about situations like libvirtd where the group is in use as primary group for a system user, so I cannot generate it in LDAP without deleting it, and cannot delete it without removing the user (or I guess I could just give it a dummy group until I get it back in place)
20:41
<alkisg>
bennabiy: those are good questions for an ldap channel :)
20:41
I don't think they are related to ltsp, and I've never used ldap
20:41
<bennabiy>
alkisg: thank you
20:42
<alkisg>
I only care about ldap enough to take care that it doesn't break ltsp... :)
21:00
<bennabiy>
seems pam_group would work
21:00
would that work in a fat client?
21:06
alkisg: does the cleanup script touch the /etc/security/group.conf file?
21:06
would that make it to a client?
21:07
be right back
21:18ricotz has left IRC (ricotz!~ricotz@ubuntu/member/ricotz, Quit: Leaving)
21:37bennabiy has left IRC (bennabiy!~bennabiy@unaffiliated/bennabiy, Remote host closed the connection)
22:00bennabiy has joined IRC (bennabiy!~bennabiy@unaffiliated/bennabiy)
22:01
<bennabiy>
hrm... I cannot get my user to have the right permissions on this fat client!
22:01
try again later ...
22:01* bennabiy sighs
22:36
<Hyperbyte>
bennabiy, your problem is not LTSP related.
22:36
Find some LDAP help.
22:38
If you want to see what the cleanup script touches, there's a list of files in /etc/ltsp/ltsp-update-image.excludes
23:20Grembler has left IRC (Grembler!~Ben@cpc87179-aztw31-2-0-cust6.18-1.cable.virginm.net, Read error: Connection reset by peer)
23:20Grembler has joined IRC (Grembler!~Ben@cpc87179-aztw31-2-0-cust6.18-1.cable.virginm.net)
23:22Grembler has left IRC (Grembler!~Ben@cpc87179-aztw31-2-0-cust6.18-1.cable.virginm.net)
23:48ben_roose has left IRC (ben_roose!~roose@roose.cs.wichita.edu, Remote host closed the connection)