[00:11] *** d^_^b has quit IRC (Remote closed the connection) [00:11] *** d^_^b has joined #arpnetworks [01:06] *** mhoran_ has joined #arpnetworks [01:06] *** ChanServ sets mode: +o mhoran_ [01:06] *** mhoran has quit IRC (Read error: 54 (Connection reset by peer)) [02:45] *** ballen has quit IRC (Read error: 60 (Operation timed out)) [06:29] jeev: you seem to miss the point, after being whitelisted, if you regularly communicate with a mail server, no delays [06:29] aka for people you communicate regularly with, a one time delay seems acceptable, to cut mail flow by up to 80% [06:33] *** mhoran_ is now known as mhoran [06:47] depeer the innanet [07:45] *** sentabi_ has joined #arpnetworks [08:02] *** djnaff has joined #arpnetworks [08:49] *** sentabi__ has joined #arpnetworks [08:59] *** sentabi_ has quit IRC (Read error: 110 (Connection timed out)) [09:16] any one know how many ipv4 addresses come in the topic package [09:22] 1 [09:22] All packages include a /30, which is essentially one IP. [09:29] how much for extra 3 [09:35] toddf, i'd show some interest [09:35] i need to try it first. [09:35] *** ballen has joined #arpnetworks [09:35] *** ChanServ sets mode: +o ballen [09:35] i thought a /31 was one ip [09:35] and a /30 is 4 [09:35] more like /32 [09:35] well /31 being a 2 [09:35] but one useable [09:38] * ballen doesn't wanna work [09:40] mhoran: just use v6, pleanty of extras there *grin* [09:40] Yep. [09:41] coil: /32 is 1 IP, /31 2, /30 4. However, /30 has two usable, one for the router, one for you. [09:41] /32 and /31 cannot properly be used in routing. [09:42] up_the_irons does proper CIDR routing, so that requires a /30 per customer. [09:42] (The other two IPs are reserved, the first for network, last for broadcast.) [09:48] so how much for extra ones :) [09:48] djnaff, dont take my word for it. my assumption would be $1-$2/each/month, probably 1 [09:48] you should wit a moment for up_the_irons to come by [09:49] or maybe send an email to sales, maybe he has that going to his cell phone [09:49] 5 IPs (/29 subnet, $4) [09:49] ahh, it saays on his website too haha [09:49] or 13 IPs (/28 subnet, $8) [09:50] I believe up_the_irons only sells IP's in CIDR blocks [09:50] not individually [09:53] *** ballen is now known as ballen|away [09:55] ty [10:02] *** cablehead has joined #arpnetworks [10:02] *** ChanServ sets mode: +o cablehead [10:24] *** ballen|away is now known as ballen [10:26] *** visinin has joined #arpnetworks [10:54] *** djnaff has quit IRC ("Naff_script · "Don't force it, get a larger hammer"") [11:18] *** soysamurai has joined #arpnetworks [11:53] ballen: you're right, IPs are only sold in CIDR blocks; no funky diving out individual IPs from a large net and then firewalling off what you "shouldn't" see [11:53] ya [11:54] mhoran: you could actually do a /31 with static ARP entries (since no broadcast address exists) [11:55] but I imagine I'd get tired of explaining that [11:55] you could route individual IP's once the initial block is allocated [11:56] as long as they set the netmask to all 1's no further config required [11:56] toddf: sroute: I find your spam fighting techniques interesting [11:56] just don't borrow 1and1 hosting's insane cisco based networking scheme `ip subnet zero' stuff [11:57] a client of mine has a colo there [11:57] toddf: but this would require customers to share a VLAN, no? [11:57] toddf: ip subnet zero, LOL [11:57] yeah that's funky stuff [11:57] Destination Gateway Flags Refs Use Mtu Prio Iface [11:57] default 10.255.255.1 UGS 158 677002749 - 8 nfe0 [11:57] 10.255/16 link#1 UCLS 1 0 - 8 nfe0 [11:57] 10.255.255.1 00:00:0c:07:ac:00 UHLc 6 0 - 8 nfe0 [11:57] then add aliases on nfe0 as netmask of all 1's [11:58] !route add -llinfo -iface -net 10.255.0.0/16 10.255.255.1 -ifp nfe0 [11:58] isn't that special [11:58] toddf, i'd like to try your spamd shit [11:58] thats a fun line to add to your hostname.nfe0 file [11:58] but spamd is spamassassin, no? :D [11:58] no [11:58] not in OpenBSd [11:58] jeev: spamd is the name of a daemon spamassassin runs, but /usr/libexec/spamd on OpenBSD is quite different [11:58] OpenBSD spamd. [11:58] ah yea i use freebsd. [11:59] toddf: sroute: regarding spam fighting, any blog posts I can read? I use dspam currently, and it works quite well, but I'm always into finding better techniques. and dspam only works for my user (I've trained it), and I find asking customers to train theirs is futile [11:59] up_the_irons: I use dspam myself, behind openbsd's spamd [11:59] toddf: gotcha [11:59] I guess I'll reformat the spamd man page myself, since the openbsd webserver took a hit and is just serving static pages for a bit [12:00] (hardware hit for those with active imaginations) [12:00] ah [12:00] thought my papasmurf worked [12:01] hahaha [12:01] thats so 90s [12:01] smurfing [12:01] Greylisting is definitely an interesting technique, but I've never been able to get it to work well. [12:01] I just don't get enough volume. [12:01] :D [12:01] GUess I just need to become more popular! [12:01] i would love to greylist [12:01] I have one customer who went from 900k mails an hour to 100k mails an hour or less [12:02] toddf, is there a spamd for freebsd [12:02] Incoming mail at work runs through SA before delivery, and that does a pretty decent job. [12:02] jeev: Yes. [12:02] As well as pf, of course. [12:02] my postfix setup with rbl's and shit are awesome [12:02] jeev: I have no idea, it would work with pf, easily, because of tables .. [12:03] jeev: /usr/ports/mail/spamd [12:03] SA is pretty decent but I hate the dependencies. [12:03] Yup. I already needed perl for other things, so ... [12:04] Hm. If I get rid of all my friends, I could ditch perl. But with no friends, I could never use spamd ... [12:04] I don't see how I could win this one. [12:04] As a long-time friend of yours I vote that you ditch Perl. [12:05] $insert_your_favorite_cmdline_http_to_stdou_app http://todd.fries.net/pub/spamd.cat8 | less [12:07] s/stdou/stdout/ [12:07] Ah, that worked much better. :) [12:07] sa's deps suck [12:07] especially when upgraindg perl;l [12:07] upgrading perl [12:08] So with spamd, greylisting means that the first 10 seconds of a message delivery is stuttered? [12:09] How does a sender go from whitelisted to blacklisted? [12:09] (e.g. how do I mark sometihng as spam?) [12:09] It's more than that. [12:09] by re-connecting [12:09] after 26 mins [12:09] from the same ip [12:09] from the same sender [12:09] to the same recipient [12:10] Well there we go. Saved me some typing! [12:10] then the next connection bypasses spamd altogether and hits the mta directly [12:10] My secondary MX runs spamd, which helps a lot. [12:10] mike-burns: As does yours. [12:10] mhoran: News to me! [12:11] So spamd means that first-time senders will have a 26-minute delay on delivery? [12:11] Yes. [12:11] first time IP's [12:11] there's a huge difference [12:11] Indeed. [12:11] Typically you purge the whitelist, too, which means if they don't mail you after some period of time, they get greylisted again. [12:11] some postfix greylisting does it per sender address and per recipient as well [12:11] So that's my problem -- people don't mail me often enough to keep them whitelisting. [12:11] s/whitelisting/whitelisted. [12:11] I have a list of manual over-rides, that never see spamd [12:12] Well that purging doesn't make sense; if someone is whitelisted they should be whitelisted. [12:12] ip renumbering [12:12] Oh sure. [12:12] you can always change the default from 31 days to 1024 days [12:13] if anybody wants to play with stuttering hit any tcp port on 208.79.89.90 [12:14] http://www.skytopia.com/project/fractal/mandelbulb.html [12:15] Pretty. [12:15] http://undeadly.org/cgi?action=article&sid=20090717041621 [12:15] there's one person's adventure documented with spamd [12:17] spamd makes sense on a busy server, but less sense on my personal VPS. [12:18] I'm using Postgrey on my VPS [12:18] and no other spam filtering [12:18] catches almost everything [12:19] much better then just using dspam alone [12:19] postgrey sounds like it's for postfix [12:19] ;D [12:19] indeed [12:19] but really it could be used with any mta [12:58] *** soysamurai has quit IRC () [13:12] *** soysamurai has joined #arpnetworks [13:47] ballen: depends entirely on what you're using the `personal' VPS for [13:48] ballen: I'm using mine as an extension/backup/whatever makes sense .. of Free Daemon Hosting .. kindof like a slowly allocated cloud but not as expensive (if I had 1 system up for 1 month at amazon, for example, it'd be over $100) [13:49] amazon's way expensive [13:54] not if you get it for free [14:11] *** soysamurai has quit IRC () [14:41] jeev: how would I get a vm at amazon for free??? [14:59] hey, i said not if you get it for free, i didn't say that i do [14:59] ;) [15:21] *** ballen is now known as ballen|away [15:51] *** ballen|away is now known as ballen [17:22] *** ballen is now known as ballen|away [18:19] *** cablehead has quit IRC ("Leaving.") [19:06] *** ballen|away is now known as ballen [19:09] *** sbp_ has joined #arpnetworks [19:12] sup [19:12] hi [19:22] *** sentabi__ has quit IRC () [19:47] *** heavysixer has quit IRC () [19:52] hows things [20:01] Excellent. [20:03] right on [20:09] *** cablehead has joined #arpnetworks [20:09] *** ChanServ sets mode: +o cablehead [20:10] *** cablehead has quit IRC (Client Quit) [20:51] why couldn't everyghint just remain 800x600 [20:51] so we wouldn't have to worry about formatting [20:51] why would you want a shity screen resolution [20:52] or am i just missing it [20:53] tired of html struggles [20:53] ;D [20:53] :) [20:57] maybe you'd be interested.. [20:58] what you mean [21:02] i need to get a hold of some people who want palin to become president [21:02] and just beat them [21:02] haha [21:02] ill vote for you [21:02] but i dont even know who palin is [21:03] sarah palin, the moron ex governor of alaska [21:03] the one americans say "we can relate, vote for her!" [21:03] hahaahaha oh my god [21:03] i need to stop caring about the public [21:05] ahh [21:12] *** heavysixer has joined #arpnetworks [21:12] *** ChanServ sets mode: +o heavysixer [21:21] *** ballen is now known as ballen|away [21:28] my little cousin is friends with the kid from two and a half men, i asked him to get me charlie sheen's email address so i can email him about his 9/11 thingies he speaks out about [22:20] *** ballen|away is now known as ballen [23:59] *** obsidieth has quit IRC (lindbohm.freenode.net irc.freenode.net) [23:59] *** coil has quit IRC (lindbohm.freenode.net irc.freenode.net)