[06:32] *** ziyourenxiang has joined #arpnetworks
[08:34] *** YesThatTom has joined #arpnetworks
[08:34] *** YesThatTom has left 
[12:03] <nathani> Do the kvr hosts have hardware raid or software raid?
[12:04] <nathani> I know it's hotswappable drives
[12:04] <nathani> Just not sure about hardware or software
[12:24] <up_the_irons> hardware for sure
[17:10] *** gizmoguy has quit IRC (Ping timeout: 250 seconds)
[17:10] *** DaCa has quit IRC (Ping timeout: 268 seconds)
[17:10] *** toddf has quit IRC (Ping timeout: 268 seconds)
[17:11] *** gizmoguy has joined #arpnetworks
[17:11] *** toddf has joined #arpnetworks
[17:11] *** ChanServ sets mode: +o toddf
[17:11] *** DaCa has joined #arpnetworks
[17:25] *** KDE_Perry has quit IRC (Ping timeout: 264 seconds)
[17:27] *** mkb has quit IRC (Ping timeout: 246 seconds)
[17:27] *** mkb has joined #arpnetworks
[17:27] *** KDE_Perry has joined #arpnetworks
[17:27] <mkb> I wish I knew why that happened
[17:42] <mercutio> why what happened?
[17:42] <mercutio> freenode network outages?
[17:42] <mercutio> probably ddos..
[17:43] <mkb> said ping timeout on my end
[17:43] <mercutio> you weren't the only one
[17:43] <mkb> I just assumed it was me or something close
[17:44] <mkb> hmm
[17:44] <mercutio> kde_perry went out too
[17:44] <mercutio> but looks like just you two this time :)
[17:44] <mercutio> the other ones were earlier
[17:55] *** ziyourenxiang has quit IRC (Quit: Leaving)
[18:03] <nathani> http://www.macrumors.com/2016/03/16/apple-icloud-google-cloud-platform/
[18:04] <mkb> I hate these clouds
[18:05] <mkb> tcpdump no longer tells me what traffic is from what since it's practically all to AWS
[18:25] <nathani> could you look up the tcp stack and do some packet inspection to check URLs for GET requests and such
[18:25] <nathani> mkb^
[18:27] <mkb> they encrypt it all
[18:27] <mkb> I mean I have root and can get past that
[19:20] <mercutio> heh i loved it when i had an adsl modem i could run tcpdump on
[19:20] <mercutio> pity only really old ones work
[19:21] <mercutio> it just seemed so right.  i can tcpdump now, but that's with pppoe..
[19:23] *** JC_Denton has quit IRC (*.net *.split)
[19:23] *** nesta has quit IRC (*.net *.split)
[19:28] *** JC_Denton has joined #arpnetworks
[19:28] *** nesta has joined #arpnetworks
[19:38] *** shepo has joined #arpnetworks
[19:38] <shepo> hello
[19:38] <shepo> holaaaaa
[19:39] *** shepo has quit IRC (Read error: Connection reset by peer)
[19:42] <brycec> Hello user that didn't stick around more than 2 minutes
[19:53] <nathani> anyone use spotify? If so - does anyone actually pay for it?
[19:53] * brycec on both accounts
[19:54] * brycec is listening this very second, even.
[19:54] <nathani> I would still be using iTunes - but its just so slow in comparison
[19:55] <nathani> on my first month trial at the moment
[19:55] <brycec> As someone not indoctrinated in the iOS ecosystem, iTunes really offers me nothing (especially on *nix)
[19:56] <nathani> I notice you had some irssi / itunes controller project in your github repo
[19:56] <nathani> does spotify have a *nix client?
[19:57] <brycec> I used to use OSX, ages ago. Kinda dropped off around 10.6
[19:57] <brycec> Spotify has a Linux binary client, and a web client (flash is required, I think.)
[19:59] <brycec> And as an Android, and Chromecast user - Spotify has Android clients and I can "cast" it to Chromecast devices
[19:59] <nathani> cool
[20:00] * nathani thinks of installing debian on my thinkpad (currently running Windows10) To try out the Linux client
[20:01] <brycec> it's nothing particularly special. You're just as well off, if not better, using the Windows client if you're on Windows.
[20:01] <mercutio> are there any decent music players on unix comparable to foobar2000 yet?
[20:01] <brycec> Linux client tends to lag a bit feature-wise.
[20:01] <mercutio> i never did like rhythmbox and the like
[20:02] <brycec> I really couldn't say since I have no experience with foobar2000
[20:02] <mercutio> ahh
[20:02] <brycec> i.e. I don't know what makes foobar2000 so great :p
[20:02] <mercutio> https://www.foobar2000.org/images/img/main-black.png
[20:03] <mercutio> it's nice and simple, and it makes it easy to read and do stuff and play albums :)
[20:03] <mercutio> whilst being light weight
[20:03] <brycec> Looks like it has a library manager built-in too?
[20:03] <mercutio> kind of
[20:03] <mercutio> you just build the library by adding directories
[20:03] <brycec> Sounds like VLC's scheme
[20:03] <mercutio> but then you can exit and go back in
[20:03] <mercutio> and it will retain that
[20:04] <mercutio> also you can put more in there and it'll pick it up
[20:04] <brycec> Yeah iirc VLC has that. It's not the default playlist view, it has a library thinger.
[20:04] <mercutio> hmm
[20:04] <mercutio> heh prodigy
[20:04] <mercutio> i remember prodigy :)
[20:05] <brycec> For the very minimal amount I need/use a media thing in linux, I'm happy with Rhythmbox. (I just use it to sync to a USB drive for the car)
[20:05] <mercutio> i used to use mpg123/ogg123
[20:05] * brycec is currently watching Rhythmbox notice changes in his music directory)
[20:05] <mercutio> and just play albums from command line
[20:06] <mercutio> for some reason i found rhythmbox really slow
[20:06] <mercutio> i wonder how big my music library is
[20:06] <mercutio> it's all over the network..
[20:06] <mercutio> well actually over the internet :)
[20:06] <mercutio> only 144gb
[20:07] <mercutio> but even that is just over 8 weeks long..
[20:07] <brycec> It's not noticeably slow for me. Takes about 5 seconds of showing a blank library before it shows my 340GB library, 101+ days
[20:07] <mercutio> ahh i was thinking of scanning time
[20:08] <mercutio> i suppose i don't need to keep rescanning
[20:08] <mercutio> maybe i should try it again sometime
[20:08] <mercutio> i've been just using foobar2000 on windows :)
[20:08] <brycec> (And said library is on an NFS share)
[20:08] <mercutio> 5 seconds is ok
[20:08] <mercutio> it't not like i reboot every day :)
[20:13] <brycec> Also, Spotify is integrated into my receiver -- or failing a fancy receiver, a PS4 -- so I can tell the client to move my music playback from my laptop/headphones/etc to the receiver while I cook, AND I can still control playback using the receiver remote, my computer, or even the Spotify app on my phone.
[20:13] <mercutio> that sounds hadny
[20:13] <mercutio> i always wanted remote room audio
[20:13] <brycec> (My receiver isn't "fancy" - I'd say it was lower-mid-range at the time I bought it 3 years ago)
[20:13] <mercutio> instead of having to turn the volume up and open doors :)
[20:42] *** dj_goku has joined #arpnetworks
[20:55] *** mjp_ has quit IRC (Remote host closed the connection)
[20:57] *** mjp_ has joined #arpnetworks
[21:39] *** DaCa has quit IRC (Ping timeout: 268 seconds)
[22:18] <mkb> does mozilla like confusing their users
[22:18] <mkb> "the owner of this website has configured their website improperly. to protect you, firefox has not connected to this website."
[22:19] <mkb> that means the certificate didn't verify
[22:19] <mkb> if it's just configured improperly, why do you have to not connect?
[22:19] <mercutio> firefox and chrome have both started getting strict with ssl certs.
[22:19] <mkb> and if it's an actual security problem, why do you say it's configured improperly?
[22:20] <mercutio> they went from warning users to not letting users through
[22:20] <mercutio> like i think you need tls support now?
[22:20] <mkb> the exception button still worked fortunately
[22:20] <mercutio> ahh cool
[22:21] <mercutio> i hit quite a few websites in google with a different domain configured
[22:21] <mkb> but it's the text that irritates me
[22:21] <mercutio> so the cert will be for a different domain but still have the right content
[22:21] <mkb> they know 99% of that is not a real issue
[22:21] <mkb> and yet they keep making it harder to get through
[22:22] <mercutio> itd epends what level of trust you need/want/desire from a site
[22:22] <mercutio> like a bank having a misconfigured domain name would send alarm bells
[22:22] <mercutio> some random internet forum or such not relaly
[22:22] <mkb> this guy's blog seems to be signed with let's encrypt
[22:23] <mkb> which apparently doesn't actually work
[22:23] <mercutio> oh
[22:23] <mercutio> i hit an issue with let's encrypt where it was working in chrome but not firefox
[22:23] <mercutio> it may not be including the intermediate cert
[22:23] <mkb> oh that is configured improperly...
[22:23] <mercutio> kind of, yeah
[22:24] <mercutio> it's complicated
[22:24] <mercutio> they have two legacy certs
[22:24] <mercutio> to use to increase browser support while they're trying to get their root cert everywhere
[22:24] <mercutio> that's my understanding
[22:24] <mercutio> so not necessarily improperly configured
[22:24] <mercutio> but less "openly" configured
[22:25] * mkb looks at the cert again
[22:25] <mercutio> you could say it's like allowing ssl support for legacy users
[22:25] <mkb> CN=Let's Encrypt Authority X1/O=Let's Encrypt/C=US
[22:25] <mercutio> if you want the widest audience you need to, but if you are only expecting modern users it's not so bad
[22:25] <mkb> oh no.. https://letsencrypt.org/certs/isrg-keys.png
[22:26] <mercutio> although it's a bit safer than allowing ssl users
[22:27] <mercutio> The site just works on chrome right?
[22:28] <mkb> idk I don't have it installed
[22:28] <mercutio> Ahh
[22:28] <mercutio> Well it is a blog
[22:28] * mkb tries safari
[22:28] <mkb> https://blog.josefsson.org/2014/06/23/offline-gnupg-master-key-and-subkeys-on-yubikey-neo-smartcard/
[22:28] <mercutio> I think you b are safe to just accept
[22:29] <mkb> I'm safe because I'm just reading it :)
[22:29] <mercutio> Chrome Android bitches
[22:29] <mkb> it could have some sort of zero-day, but that's true of everything
[22:29] <mercutio> Says invalid cert authority
[22:30] <mercutio> I get so many random b letters on my phone
[22:31] <mkb> though I don't see why safari likes it
[22:31] <mercutio> it actualyl works fine on chrome on pc too
[22:32] <mercutio> maybe he hasn't noticed
[22:32] <mercutio> you could tell him :)
[22:32] <mercutio> curl doesn't like it either
[22:33] <brycec> I'm okay with the message. It's not technical and it's not supposed to be - it's supposed to be as simple as possible for the typical luddite to understand. The idea is to say there's a problem and that it's not the $lusers's fault.  22:15 <mkb> "the owner of this website has configured their website improperly. to protect you, firefox has not connected to this website."
[22:33] *** DaCa has joined #arpnetworks
[22:33] <brycec> (As someone that is technical support for their immediate family, who aren't exactly "bright" when it comes to computers...)
[22:34] <brycec> And frankly I'd rather a too-secure than a too-loose policy. Like mercutio said, if it's a bank or important online provider then that shit is serious. If it's Joe's Blog then maybe it's not a big deal, but I don't want my mother making that decision...
[22:35] <mkb> yes but it's supposed to happen when something is seriously wrong and it just acts like there's some minor configuration problem
[22:35] <mkb> SSH gives a much more urgent warning
[22:35] <mkb> ``IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY! Someone could be eavesdropping on you right now (man-in-the-middle attack)!''
[22:37] <brycec> Because you don't want $luser calling the police over it...
[22:37] <brycec> And trust me, $lusers overreact in comical ways.
[22:38] <brycec> (Not making this up - personal experience)
[22:38] <mkb> oh I believe you
[22:38] <brycec> So the message can't be *too* alarming...
[22:38] <mkb> but he'll click the exception button
[22:38] <brycec> Not if he can't find it
[22:38] <mkb> it was right there
[22:38] <mkb> well
[22:38] <brycec> Well the Exception button is there, but to actually add the exception isn't clear
[22:38] <mkb> $luser generally can't find things which are right on the screen
[22:39] <mkb> and I admit to having done it hundreds of times
[22:39] <brycec> And last I recall, the exception button was hidden under "I Understand the Risks"
[22:40] <mkb> it's labeled Advanced -> Add exception -> Confirm here
[22:40] <mkb> nothing really indicates that there's a risk
[22:40] <mkb> maybe ``To protect your information from being stolen''
[22:41] <mkb> hmm maybe this is a different message
[22:41] <mkb> though that's silly too... unknown issuer and fake issuer would look the same
[22:42] * brycec hasn't really dealt with FF personally in a awhile, and I know they change things...
[22:42] <mkb> as far as I can tell from Google the most common reason to get that message is because you've installed an antivirus program
[22:42] <mkb> of course they MITM you
[22:43] <mkb> I really expected to find a bunch of screenshots with arrows before page two and I didn't so maybe it's not so hopeless
[23:02] <mercutio> brycec: i'm ok with it being tight as long as it's easy to add exceptions :)
[23:03] <mercutio> firefox to me seems better than it used to be