[Bug 1300748] Re: nm-strongswan-service.name uses /usr/lib/ipsec/charon
Forgot a couple of important details: $ dpkg -l | grep strongswan ii libstrongswan 5.1.2-0ubuntu1 amd64strongSwan utility and crypto library ii network-manager-strongswan1.3.0-1 amd64network management framework (strongSwan plugin) ii strongswan-ike5.1.2-0ubuntu1 amd64strongSwan Internet Key Exchange (v2) daemon ii strongswan-nm 5.1.2-0ubuntu1 amd64strongSwan charon for interaction with NetworkManager ii strongswan-plugin-openssl 5.1.2-0ubuntu1 amd64strongSwan plugin for OpenSSL $ lsb_release -rd Description:Ubuntu Trusty Tahr (development branch) Release:14.04 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1300748 Title: nm-strongswan-service.name uses /usr/lib/ipsec/charon To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/network-manager-strongswan/+bug/1300748/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1300748] [NEW] nm-strongswan-service.name uses /usr/lib/ipsec/charon
Public bug reported: /etc/NetworkManager/VPN/nm-strongswan-service.name contains the line: program=/usr/lib/ipsec/charon instead of: program=/usr/lib/ipsec/charon-nm This doesn't work: Apr 1 13:41:28 laptopw-086 NetworkManager[974]: info Starting VPN service 'strongswan'... Apr 1 13:41:28 laptopw-086 NetworkManager[974]: info VPN service 'strongswan' started (org.freedesktop.NetworkManager.strongswan), PID 3464 Apr 1 13:41:28 laptopw-086 charon: 00[DMN] Starting IKE charon daemon (strongSwan 5.1.2, Linux 3.13.0-20-generic, x86_64) Apr 1 13:41:28 laptopw-086 charon: 00[LIB] loaded plugins: charon test-vectors aes rc2 sha1 sha2 md4 md5 random nonce x509 revocation constraints pkcs1 pkcs7 pkcs8 pkcs12 pem openssl xcbc cmac hmac ctr ccm gcm attr kernel-netlink resolve socket-default eap-identity addrblock Apr 1 13:41:28 laptopw-086 charon: 00[LIB] unable to load 5 plugin features (5 due to unmet dependencies) Apr 1 13:41:28 laptopw-086 charon: 00[LIB] dropped capabilities, running as uid 0, gid 0 Apr 1 13:41:28 laptopw-086 charon: 00[JOB] spawning 16 worker threads Apr 1 13:41:33 laptopw-086 NetworkManager[974]: warn VPN service 'strongswan' start timed out Apr 1 13:41:33 laptopw-086 NetworkManager[974]: info Policy set 'SSID' (wlan0) as default for IPv4 routing and DNS. Apr 1 13:41:38 laptopw-086 charon: 00[DMN] signal of type SIGTERM received. Shutting down Please change this. ** Affects: network-manager-strongswan (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1300748 Title: nm-strongswan-service.name uses /usr/lib/ipsec/charon To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/network-manager-strongswan/+bug/1300748/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1300394] [NEW] Wrong BIN in /etc/default/shinken
Public bug reported: Shinken doesn't start out of the box on Trusty Tahr when installing due to a changed(?) path for BIN in /etc/default/shinken which seems to be /usr/lib/python2.7/dist-packages/shinken/bin/ now. Please see details below. $ sudo service shinken start Starting scheduler: * FAILED: did not found scheduler file (/usr/share/pyshared/shinken/bin//shinken-scheduler) ; are you sure shinken-scheduler is installed? ...fail! Starting poller: * FAILED: did not found poller file (/usr/share/pyshared/shinken/bin//shinken-poller) ; are you sure shinken-poller is installed? ...fail! Starting reactionner: * FAILED: did not found reactionner file (/usr/share/pyshared/shinken/bin//shinken-reactionner) ; are you sure shinken-reactionner is installed? ...fail! Starting broker: * FAILED: did not found broker file (/usr/share/pyshared/shinken/bin//shinken-broker) ; are you sure shinken-broker is installed? ...fail! Starting receiver: * FAILED: did not found receiver file (/usr/share/pyshared/shinken/bin//shinken-receiver) ; are you sure shinken-receiver is installed? ...fail! Starting arbiter: * FAILED: did not found arbiter file (/usr/share/pyshared/shinken/bin//shinken-arbiter) ; are you sure shinken-arbiter is installed? ...fail! $ cat /etc/default/shinken ... ## These vars will override the hardcoded ones in init script ## ETC=/etc/shinken/ VAR=/var/lib/shinken/ BIN=/usr/share/pyshared/shinken/bin/ RUN=/var/run/shinken/ LOG=/var/log/shinken/ ... Changing that to: $ cat /etc/default/shinken ... ## These vars will override the hardcoded ones in init script ## ETC=/etc/shinken/ VAR=/var/lib/shinken/ #BIN=/usr/share/pyshared/shinken/bin/ BIN=/usr/lib/python2.7/dist-packages/shinken/bin/ RUN=/var/run/shinken/ LOG=/var/log/shinken/ ... et voilá: $ sudo service shinken restart Restarting scheduler ...done. Restarting poller ...done. Restarting reactionner ...done. Restarting broker ...done. Restarting receiver ...done. Restarting arbiter Doing config check ...done. ...done. More information: $ lsb_release -rd Description:Ubuntu Trusty Tahr (development branch) Release:14.04 $ dpkg -l | grep shinken ii shinken 1.4-2 amd64 Flexible monitoring tool - Meta-package ii shinken-common 1.4-2 amd64 Flexible monitoring tool - Common files ii shinken-module-broker-webui 1.4-2 amd64 Shinken WebUI broker module ii shinken-module-broker-webui-cfgpassword 1.4-2 amd64 Shinken cfg_password authentifcation module for WebUI broker ii shinken-module-broker-webui-sqlitedb1.4-2 amd64 Shinken Sqlite storage module for WebUI broker ii shinken-module-retention-picklefile 1.4-2 amd64 Retention module for Arbiter, Scheduler or Broker ** Affects: shinken (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1300394 Title: Wrong BIN in /etc/default/shinken To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/shinken/+bug/1300394/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 570936] Re: permission denied on /var/run/named/named.stats
I've tested some more, and it seems a 'w' permission is sufficient for /var/run/named/named.stats. ** Patch added: patch for bind9-9.7.0-P1.dfsg/debian/apparmor-profile http://launchpadlibrarian.net/46043725/bind9-9.7.0-P1.dfsg-apparmor.patch -- permission denied on /var/run/named/named.stats https://bugs.launchpad.net/bugs/570936 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 570936] Re: permission denied on /var/run/named/named.stats
I've tested some more, and it seems a 'w' permission is sufficient for /var/run/named/named.stats. ** Patch added: patch for bind9-9.7.0-P1.dfsg/debian/apparmor-profile http://launchpadlibrarian.net/46043725/bind9-9.7.0-P1.dfsg-apparmor.patch -- permission denied on /var/run/named/named.stats https://bugs.launchpad.net/bugs/570936 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 570936] [NEW] permission denied on /var/run/named/named.stats
Public bug reported: Binary package hint: bind9 First things first: $ lsb_release -rd Description:Ubuntu 10.04 LTS Release:10.04 $ apt-cache policy bind9 bind9: Installed: 1:9.7.0.dfsg.P1-1 Candidate: 1:9.7.0.dfsg.P1-1 Version table: *** 1:9.7.0.dfsg.P1-1 0 500 http://se.archive.ubuntu.com/ubuntu/ lucid/main Packages 100 /var/lib/dpkg/status I get a permission denied error on var/run/named/named.stats due to apparmor rules Example from syslog: Apr 27 19:33:49 ns named[1515]: received control channel command 'stats' Apr 27 19:33:49 ns named[1515]: could not open statistics dump file '/var/run/named/named.stats': permission denied Apr 27 19:33:49 ns named[1515]: dumpstats failed: permission denied Apr 27 19:33:50 ns kernel: [432780.140162] type=1503 audit(1272389629.995:21): operation=open pid=1516 parent=1 profile=/usr/sbin/named requested_mask=ac:: denied_mask=ac:: fsuid=103 ouid=103 name=/var/run/named/named.stats I'm running Ubuntu 10.04, and this seems to happen both with a newly installed system and one upgraded from Ubuntu 8.04 LTS. With a /etc/apparmor.d/usr.sbin.named changed as the diff below, everything seems to work OK. Please note that I haven't read up on which permissions should be allowed to the stats-file, this was just a quick fix, so please change the permissions if needed... $ diff -u usr.sbin.named.orig usr.sbin.named.new --- usr.sbin.named.orig 2010-04-27 22:15:43.005050234 +0200 +++ usr.sbin.named.new 2010-04-27 22:15:14.995624793 +0200 @@ -37,6 +37,7 @@ /usr/sbin/named mr, /var/run/named/named.pid w, /var/run/named/session.key w, + /var/run/named/named.stats rw, # support for resolvconf /var/run/named/named.options r, ** Affects: bind9 (Ubuntu) Importance: Undecided Status: New -- permission denied on /var/run/named/named.stats https://bugs.launchpad.net/bugs/570936 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to bind9 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 570936] [NEW] permission denied on /var/run/named/named.stats
Public bug reported: Binary package hint: bind9 First things first: $ lsb_release -rd Description:Ubuntu 10.04 LTS Release:10.04 $ apt-cache policy bind9 bind9: Installed: 1:9.7.0.dfsg.P1-1 Candidate: 1:9.7.0.dfsg.P1-1 Version table: *** 1:9.7.0.dfsg.P1-1 0 500 http://se.archive.ubuntu.com/ubuntu/ lucid/main Packages 100 /var/lib/dpkg/status I get a permission denied error on var/run/named/named.stats due to apparmor rules Example from syslog: Apr 27 19:33:49 ns named[1515]: received control channel command 'stats' Apr 27 19:33:49 ns named[1515]: could not open statistics dump file '/var/run/named/named.stats': permission denied Apr 27 19:33:49 ns named[1515]: dumpstats failed: permission denied Apr 27 19:33:50 ns kernel: [432780.140162] type=1503 audit(1272389629.995:21): operation=open pid=1516 parent=1 profile=/usr/sbin/named requested_mask=ac:: denied_mask=ac:: fsuid=103 ouid=103 name=/var/run/named/named.stats I'm running Ubuntu 10.04, and this seems to happen both with a newly installed system and one upgraded from Ubuntu 8.04 LTS. With a /etc/apparmor.d/usr.sbin.named changed as the diff below, everything seems to work OK. Please note that I haven't read up on which permissions should be allowed to the stats-file, this was just a quick fix, so please change the permissions if needed... $ diff -u usr.sbin.named.orig usr.sbin.named.new --- usr.sbin.named.orig 2010-04-27 22:15:43.005050234 +0200 +++ usr.sbin.named.new 2010-04-27 22:15:14.995624793 +0200 @@ -37,6 +37,7 @@ /usr/sbin/named mr, /var/run/named/named.pid w, /var/run/named/session.key w, + /var/run/named/named.stats rw, # support for resolvconf /var/run/named/named.options r, ** Affects: bind9 (Ubuntu) Importance: Undecided Status: New -- permission denied on /var/run/named/named.stats https://bugs.launchpad.net/bugs/570936 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 426813] Re: snmpd dies after requests with snmpwalk
We still have these problems in two of our servers. Both of these run MySQL 5 (packaged with Hardy). A bunch of other servers running MySQL doesn't have this problem though, nor our other servers. Any ideas on a workaround except Build your own package? Thanks, Micke -- snmpd dies after requests with snmpwalk https://bugs.launchpad.net/bugs/426813 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to net-snmp in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 426813] Re: snmpd dies after requests with snmpwalk
We still have these problems in two of our servers. Both of these run MySQL 5 (packaged with Hardy). A bunch of other servers running MySQL doesn't have this problem though, nor our other servers. Any ideas on a workaround except Build your own package? Thanks, Micke -- snmpd dies after requests with snmpwalk https://bugs.launchpad.net/bugs/426813 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs