18:31:51 #startmeeting 18:31:51 Meeting started Mon Feb 1 18:31:51 2021 UTC. The chair is raub. Information about MeetBot at http://wiki.debian.org/MeetBot. 18:31:51 Useful Commands: #action #agreed #help #info #idea #link #topic. 18:32:15 #chair bdmc jeoff noway2 18:32:15 Current chairs: bdmc jeoff noway2 raub 18:32:31 #topic 1. Check for Agenda Additions 18:32:35 Anyone? 18:32:44 Yeah 18:33:02 CVE-2021-3156 18:33:11 Oh yeah 18:33:46 We work on a shared system with public ssh, so it is a bit worrying 18:34:05 Yes. Only solution is to update 18:34:15 Unless we want to backport 18:34:20 (doable) 18:34:30 Yeah. Do you think our version of Debian has support for this patch? 18:35:03 I think Debian, yes. It is still as supported version. Ubuntu (pilot), nope 18:35:04 Maybe, Moya (debian) is a bit outdated, but not as outdated as Pilot. It might be available. 18:36:42 Cool. I'll look into that CVE this week. That brings me into another topic. Is it worth putting our work in Ansible Playbooks on an external git repo somewhere? 18:37:06 noway2: do you want to check if you can update moya's sudo? 18:37:36 jeoff: if there is nothing confidential in the playbooks, I am cool with that 18:37:56 I can look into that. Speaking of which, I sent you an email.... I forget the ipv4 port for Moya since my work connection doesn't have ipv6. 18:37:59 confidential == not only pw, but info on our infra 18:38:21 noway2: Hmmm, didn't see that email 18:38:39 spam bucket, probably. 18:38:42 But, 'ssh -p 622 raubvogel@moya.trilug.org" 18:39:04 jeoff: Why an external git repo, not the TriLUG Steering one? 18:39:50 Uptime guarentees mostly 18:40:12 Not saying Trilug Steering git isn't good, but it probably makes sense to keep patches on a different box 18:40:26 A third box? 18:40:41 jeoff: trilug's git is not on moya/pilot 18:42:22 raub: ah, then git is already external. Thoughts on playbooks? 18:43:21 jeoff: meaning? I run my two home vmhosts and a bunchof other clients though ansible 18:43:38 In fact, let me push an upgrade 18:44:54 Using playbooks to manage patches 18:45:00 and other interesting config state 18:45:28 I having nothing against that. As I said, I do that at home. And even at work 18:46:24 Right now I am adding Debian support to my playbook to deploy a kvm and/or docker server 18:46:58 (I am going to conver vmhost1 from centos to debian) 18:47:46 So, preaching to choir from where I stand 18:48:23 You guys are much more DevOps than I am. I am mostly Dev, with a bit of SysAdmin thrown in. 18:48:45 bdmc: No, I am extremely lazy 18:51:01 I'll start looking into ansible playbook stuff. That's all I have 18:55:08 Shall we move on 18:55:20 yes. 18:55:26 I have no objections. 18:56:01 #topic 2. Current Topics 18:57:19 I talked to Dwain earlier today. He said he will have a blurb the end of the day 18:57:47 But, I will prepare plan B in case that does not happen; I do not want to wait until next week 19:00:07 Plan B will be showing how to use KVM and virtualbox, and compare that a bit 19:00:56 This is based on what was mention in last meeting and something that may be useful to noway2 19:01:28 I was just thinking that... actually I am starting to get the VM thing... and poking around on Moya right now. 19:01:37 Cool 19:03:15 Anyway, that is the plan 19:03:44 #topic 3. Future Topics 19:04:24 jeoff should be giving the March meeting. Let me know when you have the blurb and bio 19:04:34 After that we have nothing. 19:06:01 I am going to reach out to Kevin / Nivex... is he still at all active? 19:06:02 Hmmm. Another History of Linux Roundtable? History of Unix? Introduction to the Command Line? 19:06:24 * raub shrugs. noway2 I dunno 19:06:25 I think so. He has attended at least a couple of the meetings lately. 19:06:56 Like Alan, who we haven't seen in person for quite a while. 19:07:15 But we think they exist 19:07:34 We do need to ask on the list for speakers. Who wants to do that? 19:07:52 And ping some of our old speakers 19:07:59 Either that, or they have been really advancing in AI, because they have sent very realistic avatars to our meetings. 19:08:39 As the mice has shown, all you need is a simple electronic brain 19:08:48 s/has/have 19:09:47 In any case I would be more comfortable if we had another 2-3 speakers 19:10:26 I just sent a message to the linux-ham list trying to ping Nivex. The email I had is several years old, so I thought I would try that apporach. 19:10:34 Other topics are: virtualization, containers 19:10:48 (topics for talks) 19:11:07 I really would like to have something hands-on 19:11:07 noway2: his e-mail address hasn't changed in decades, like mine. 19:11:36 raub: full-out "play-along" work session? 19:11:38 that make people create thingies that are put together. Like a homework or something 19:12:03 bdmc: something like that. Can take multiple sessions or continue online or whatver 19:12:27 Could be interesting, and fun. 19:12:34 What about something dealing with secure messaging? That seems to be a hot topic in the circles I frequent these days. Is there anything linux related to that? 19:12:44 Something that feels like a real project the participants can then use it at home or as experience 19:13:47 noway2: What kind of secure messaging? WhatsApp? 19:13:50 noway2: it depends on what kind of secure messaging you want. It can be as simple as a tunnel. And then you can add encryption, such as encryped mail 19:13:53 or something else? 19:14:06 SSH is another option? 19:14:06 Thent here is secure chatting, like signal (open source) 19:14:42 Something else. There seem to be more and more apps creeping up, like Session (similar to signal) that use onion routing and a few other features. 19:15:14 Something else relevant to today's world, might be a comparison of meeting tools -- Zoom, JitSi, Google Meet, etc. 19:16:00 bdmc: I could not give that talk. It would be too short: zoom sucks, google spies. 19:16:39 Go To Meeting seems to be what the security concious use, but it don't run on Linux. 19:16:45 Well, then we could go on and talk all about the wonderfullness of Microsoft! B-) 19:18:08 noway2: I did not know go to meeting still exists. I do not know who in the security community uses it unless a client demands it 19:18:36 gotomeeting is like facebook: ancient 19:18:58 Doesn't "everybody" use Facebook? 19:19:06 irc is not secure but it is resilient because it is not a walled garden like, say, slack 19:19:50 I have friends who use Telegram. 19:20:00 ( I think that that's the name. ) 19:20:36 Yep 19:20:46 And then there is something called, if I remember correctly, Big Blue Button???? 19:20:46 noway2: in any case, it is a valid topic 19:21:06 I think that is like a class thingie 19:21:47 Something like a Zoom or meet.jit.si replacement. 19:22:18 https://bigbluebutton.org/ 19:23:23 Yeah. thats a school app. 19:24:49 I still would like to see when we will be ready to run our own jitsi instance 19:25:55 Anywhoo, keep coming up with ideas for talks 19:26:21 We can put them in https://steering.trilug.org/wiki/index.php/UpcomingMeetings 19:26:34 Moving onto... 19:26:37 #topic 4. Tech Items 19:26:56 noway2: do you have something for this topic? Otherwise we can move on 19:27:03 Just a quick update. 19:27:33 Go for it 19:28:00 I had been reading up on some tutorials for libvirt, kvm, qemu, etc... it is now getting past the word salad stage and earlier after I was able to log in again, I was looking at the XML conf and images and stuff already on Moya. I think I will try spinning up a server instance here pretty quick. 19:28:30 It looks like there is plenty of disk space. Memory may be a little short, not sure. 19:29:19 You can probabtl get away with a test vm with 1-2GB of RAM 19:30:00 My home desktop (which I am using right now to type this) uses 4GB, but has GUI 19:30:56 the free -m command on Moya only shows 234 meg free memory our of 32,240 meg. 19:31:20 Wow 19:31:40 There are several VM instances configured, but only pilot is running or set to load. 19:32:04 Can you run top and see who is using what? Configured but not running instances use no memory 19:32:43 libvirt+ running 12.7% mem 19:34:15 top confirms memory usage: KiB Mem: 33013880 total, 32774296 used, 239584 free, 275052 buffers 19:35:12 I guess I need to look at how much mem is assigned to Pilot and see what it is using. 19:35:12 Well, Linux always try to use any free memory, which is why I was wondering what top said 19:35:37 virsh dumpxml pilot 19:37:43 4194304 19:37:48 4194304 19:38:00 virsh dominfo pilot 19:38:23 So pilot is only using 4GB? 19:38:44 Max and Used 4194304 KiB 19:39:42 yup, but moya says 31g of memory with 31g in use. nothign else other than the VM showed up in top. Might need to dig deeper. Something is using it. 19:40:15 do virsh list -a 19:40:24 AFAIK, Linux does not like to have unused RAM. It finds something to use it on 19:41:38 Good point. I am running this laptop and it says 338 mb free with 3757 used. 19:44:02 noway2: Are you currently logged in to Moya? 19:44:07 yes. 19:44:17 what does virst list -a say? 19:44:27 or even virsh list -a 19:44:50 Should show both Dom0 and Pilot running, and then others. 19:45:19 error: unexpected data '-a' 19:45:26 virsh list --all 19:45:31 Yes 19:46:18 It shows pilot running, dargo, debian8, debiantesting, ipaserver1 and rhel7.2 shut off 19:47:20 Right, I heard that, but forgot. Not a Xen server, but KVM. 19:47:54 As raub said, most of that memory will be in cache or buffers or.... 19:48:29 So it is only running one vm, pilot. You have free memory 19:48:52 If Pilot is a 4gig machine, it's probably the VM just keeping stuff in memory but has room to let it go. 19:49:41 We'll see what happens when I spin up an image. I'll start with about 1 - 2 gig and see what the allocation looks like. 19:49:43 The VM in a KVM machine is just another program. It will be taking up the amount of space that the OS has allocated to it. 19:51:23 Agreed. 19:52:20 Yes, Pilot will take up 4G of memory, no more, no less. 19:52:53 And the OS has just allocated more to Libvirt+ because it can.... 19:53:30 Where do you see that? I see 3.993g. 19:54:29 Duh, you're right. So where is the extra going, unless it just hasn't been paged out or something. 19:55:27 Are you talking about the physical memory in Moya? As raub and I have said, it is "extra" and Linux will find a use. 19:55:58 That machine has a lot of capacity for more VMs. 19:56:18 Yes, I think it wa a red herring that caught me by surprise. I think it will be fine. Once I spin up a VM we can take another look. 19:56:47 Sounds like a plan 19:57:11 Since we spent so much time, let's go on to the last topic 19:57:16 #topic 5. General Business 19:57:17 K 19:57:38 bdmc: Do we have anything due ($) coming up? 19:58:17 No more than the usual bank charges, if I remember correctly. I haven't looked at the account this month. 19:58:33 I am concerned about meetup and other bills 19:59:04 I paid Michael for Meetup. I don't think that we have any other bills pending. 19:59:15 K 19:59:45 Well, I have nothing left 20:00:00 That was a good meeting! 20:00:11 Entertaining! 20:00:41 If anyone needs to add more stuff or followup with what we talked here, use the steering mailing list 20:00:42 However, time for some of us to get back to work. 20:00:50 bdmc: Indeed 20:01:12 Alright then. Thanks for showing up 20:01:18 #endmeeting