anyone else experience a 5 minute network issue?
i have graphs
i can check
fine from here
perhaps it was just my vps
maybe
what kvr?
did you trace the kvr?
30
yeah hard to know, if it happens again try pinging kvr30 at the same tiem
will do
KiSpeaking of weird connectivity issues, I'm getting 503's from ecx.images-amazon.com. Makes shopping hard.
hmm i never see 503s
is that internal server error?
or was that 500
oh http://ecx.images-amazon.com gives 503
it just don't tell me that it's a 503
503 usually is a proxy response,  saying no backend servers are available to fulfill a request
and, I'm like 10 hours late.  nevermind.
lol, so late :P
I know.  as usual.
from now on, before I type in here, I'm going to check the time.  if it's 5+ hours,  resist the urge to type.  lol
you could just type anyway and spark conversation about how late you are
could make a game out of it, commenting on stuff from last week
confuse everyone
haha
late responses seem fine by me
I'm setting up an SSL cert for a new site. I know this changes sometimes--is 2048 the best way to go right now? e.g: openssl genrsa -out ~/domain.com.ssl/domain.com.key 2048
sorressean: Did you use a third party CA?  I'm in the market so I'd be curious to know who you went with if so
kellytk:  I'm going through namecheap, they have comodo SSL which is like $10.
I know there's way more expensive, but I don't need it.
i've used both gandi and startssl, both of those are alright too
That's a good deal.  Yes I've been pointed to StartSSL.  I found gandi didn't have a great reputation
how so?
I don't recall particulars
only caveat i can think of w/startssl is if you use the free cert product, you have to pay them to revoke
namecheap is cheap enough not to worry imo
you still need to to do chain certificates.
ah. was just curious because i've never heard anyone say anything bad about them (i've used them for 10+ years myself)
That's good to know
That's what she said!!
but all the cheap ones are like that
sorressean: most of the stuff that needs to be none now days is on the server
you need to disable sslv3, tls1.0, use longer dh key
and some other stuff
now days hsts has become more popular too
That's what she said!!
which forces ssl
yeah, I just didn't know if 2048 was good enough.
https://spritesmods.com/?art=hddhack&page=7
or if there was anything else to keep in mind when generating.
generating i don't think so now
2048 is fine
someone got linux running on a hard-disk firmware
awesome. thanks.
also that's nuts.
That's impressive
That's what she said!!
the killer ethernet cards are meant to run linux for qos
in general i think i like the idea of smart devices wehre part of it is the restricted normal firmware and part of it is closer access that OS can upload
that hdd hack is awesome
http://imgur.com/WVGGmqo  curious pattern
thats just pinging the gateway too
that looks like buffer bloat
http://imgur.com/OMqVwRz
yup
grody: Which hour of the day is packetloss beginning?
I should also ask the timezone
what do folks think about the google restructuring / alphabet conglomerate? https://investor.google.com/releases/2015/0810.html
It's a good effort to avoid a anti-trust lawsuit (or, is it a response to an existing suit?).
yea, that's what i was thinking too mike-burns
I recall they had issues in Europe
It does seem that European countries are a bit more stringent.
I'm growing to quite like news.ycombinator.com
oh?
never heard of it
lol
just going there now
cool
It was created because HN has come to suck, to put it bluntly
i never really read it much until someone was telling me about somethign that was on it
(hsawa)
which i still think is kind of nifty
erk maybe that's not quite it
lobste.rs even has a lovely BBS interface :)
rwasa
https://news.ycombinator.com/item?id=9948749
i'm not a big fan of assembler web server, but the idea behind improving performance is still interesting.
https://lobste.rs/s/chovpc :P
even if it's usually php etc that slow web sites down
they did assembler ssh implementation too
with their own ssl code
it's tls where it really bet nginx
That's what she said!!
and alternative ssl implementations are important i think
the reason why rwasa is slower than nginx should be fixable
for some reason on localhost i find lighttpd performs better than nginx for me
but localhost is kind of a special case
oh, sendfile support was the reason nginx was faster.
there's also another cool web server that can do reordering and preloading
https://h2o.examp1e.net/