***: d^_^b has joined #arpnetworks
mhoran_ has joined #arpnetworks
ChanServ sets mode: +o mhoran_
mhoran has quit IRC (Read error: 54 (Connection reset by peer))
ballen has quit IRC (Read error: 60 (Operation timed out)) toddf: jeev: you seem to miss the point, after being whitelisted, if you regularly communicate with a mail server, no delays
aka for people you communicate regularly with, a one time delay seems acceptable, to cut mail flow by up to 80% ***: mhoran_ is now known as mhoran vxp: depeer the innanet ***: sentabi_ has joined #arpnetworks
djnaff has joined #arpnetworks
sentabi__ has joined #arpnetworks
sentabi_ has quit IRC (Read error: 110 (Connection timed out)) djnaff: any one know how many ipv4 addresses come in the topic package mhoran: 1
All packages include a /30, which is essentially one IP. djnaff: how much for extra 3 jeev: toddf, i'd show some interest
i need to try it first. ***: ballen has joined #arpnetworks
ChanServ sets mode: +o ballen coil: i thought a /31 was one ip
and a /30 is 4 vxp: more like /32 coil: well /31 being a 2
but one useable -: ballen doesn't wanna work toddf: mhoran: just use v6, pleanty of extras there *grin* mhoran: Yep.
coil: /32 is 1 IP, /31 2, /30 4. However, /30 has two usable, one for the router, one for you.
/32 and /31 cannot properly be used in routing.
up_the_irons does proper CIDR routing, so that requires a /30 per customer.
(The other two IPs are reserved, the first for network, last for broadcast.) djnaff: so how much for extra ones :) jeev: djnaff, dont take my word for it. my assumption would be $1-$2/each/month, probably 1
you should wit a moment for up_the_irons to come by
or maybe send an email to sales, maybe he has that going to his cell phone ballen: 5 IPs (/29 subnet, $4) jeev: ahh, it saays on his website too haha ballen: or 13 IPs (/28 subnet, $8)
I believe up_the_irons only sells IP's in CIDR blocks
not individually ***: ballen is now known as ballen|away djnaff: ty ***: cablehead has joined #arpnetworks
ChanServ sets mode: +o cablehead
ballen|away is now known as ballen
visinin has joined #arpnetworks
djnaff has quit IRC ("Naff_script · "Don't force it, get a larger hammer"")
soysamurai has joined #arpnetworks up_the_irons: ballen: you're right, IPs are only sold in CIDR blocks; no funky diving out individual IPs from a large net and then firewalling off what you "shouldn't" see ballen: ya up_the_irons: mhoran: you could actually do a /31 with static ARP entries (since no broadcast address exists)
but I imagine I'd get tired of explaining that toddf: you could route individual IP's once the initial block is allocated
as long as they set the netmask to all 1's no further config required up_the_irons: toddf: sroute: I find your spam fighting techniques interesting toddf: just don't borrow 1and1 hosting's insane cisco based networking scheme `ip subnet zero' stuff
a client of mine has a colo there up_the_irons: toddf: but this would require customers to share a VLAN, no?
toddf: ip subnet zero, LOL
yeah that's funky stuff toddf: Destination Gateway Flags Refs Use Mtu Prio Iface
default 10.255.255.1 UGS 158 677002749 - 8 nfe0
10.255/16 link#1 UCLS 1 0 - 8 nfe0
10.255.255.1 00:00:0c:07:ac:00 UHLc 6 0 - 8 nfe0
then add aliases on nfe0 as netmask of all 1's
!route add -llinfo -iface -net 10.255.0.0/16 10.255.255.1 -ifp nfe0 ballen: isn't that special jeev: toddf, i'd like to try your spamd shit toddf: thats a fun line to add to your hostname.nfe0 file jeev: but spamd is spamassassin, no? :D ballen: no
not in OpenBSd toddf: jeev: spamd is the name of a daemon spamassassin runs, but /usr/libexec/spamd on OpenBSD is quite different mhoran: OpenBSD spamd. jeev: ah yea i use freebsd. up_the_irons: toddf: sroute: regarding spam fighting, any blog posts I can read? I use dspam currently, and it works quite well, but I'm always into finding better techniques. and dspam only works for my user (I've trained it), and I find asking customers to train theirs is futile toddf: up_the_irons: I use dspam myself, behind openbsd's spamd up_the_irons: toddf: gotcha toddf: I guess I'll reformat the spamd man page myself, since the openbsd webserver took a hit and is just serving static pages for a bit
(hardware hit for those with active imaginations) jeev: ah
thought my papasmurf worked toddf: hahaha
thats so 90s
smurfing mhoran: Greylisting is definitely an interesting technique, but I've never been able to get it to work well.
I just don't get enough volume. jeev: :D mhoran: GUess I just need to become more popular! jeev: i would love to greylist toddf: I have one customer who went from 900k mails an hour to 100k mails an hour or less jeev: toddf, is there a spamd for freebsd mhoran: Incoming mail at work runs through SA before delivery, and that does a pretty decent job.
jeev: Yes.
As well as pf, of course. jeev: my postfix setup with rbl's and shit are awesome toddf: jeev: I have no idea, it would work with pf, easily, because of tables .. mhoran: jeev: /usr/ports/mail/spamd mike-burns: SA is pretty decent but I hate the dependencies. mhoran: Yup. I already needed perl for other things, so ...
Hm. If I get rid of all my friends, I could ditch perl. But with no friends, I could never use spamd ...
I don't see how I could win this one. mike-burns: As a long-time friend of yours I vote that you ditch Perl. toddf: $insert_your_favorite_cmdline_http_to_stdou_app http://todd.fries.net/pub/spamd.cat8 | less
s/stdou/stdout/ mhoran: Ah, that worked much better. :) jeev: sa's deps suck
especially when upgraindg perl;l
upgrading perl mike-burns: So with spamd, greylisting means that the first 10 seconds of a message delivery is stuttered?
How does a sender go from whitelisted to blacklisted?
(e.g. how do I mark sometihng as spam?) mhoran: It's more than that. toddf: by re-connecting
after 26 mins
from the same ip
from the same sender
to the same recipient mhoran: Well there we go. Saved me some typing! toddf: then the next connection bypasses spamd altogether and hits the mta directly mhoran: My secondary MX runs spamd, which helps a lot.
mike-burns: As does yours. mike-burns: mhoran: News to me!
So spamd means that first-time senders will have a 26-minute delay on delivery? mhoran: Yes. toddf: first time IP's
there's a huge difference mike-burns: Indeed. mhoran: Typically you purge the whitelist, too, which means if they don't mail you after some period of time, they get greylisted again. toddf: some postfix greylisting does it per sender address and per recipient as well mhoran: So that's my problem -- people don't mail me often enough to keep them whitelisting.
s/whitelisting/whitelisted. toddf: I have a list of manual over-rides, that never see spamd mike-burns: Well that purging doesn't make sense; if someone is whitelisted they should be whitelisted. toddf: ip renumbering mike-burns: Oh sure. toddf: you can always change the default from 31 days to 1024 days
if anybody wants to play with stuttering hit any tcp port on 208.79.89.90 vxp: http://www.skytopia.com/project/fractal/mandelbulb.html mike-burns: Pretty. toddf: http://undeadly.org/cgi?action=article&sid=20090717041621
there's one person's adventure documented with spamd mike-burns: spamd makes sense on a busy server, but less sense on my personal VPS. ballen: I'm using Postgrey on my VPS
and no other spam filtering
catches almost everything
much better then just using dspam alone jeev: postgrey sounds like it's for postfix
;D ballen: indeed
but really it could be used with any mta ***: soysamurai has quit IRC ()
soysamurai has joined #arpnetworks toddf: ballen: depends entirely on what you're using the `personal' VPS for
ballen: I'm using mine as an extension/backup/whatever makes sense .. of Free Daemon Hosting .. kindof like a slowly allocated cloud but not as expensive (if I had 1 system up for 1 month at amazon, for example, it'd be over $100) up_the_irons: amazon's way expensive jeev: not if you get it for free ***: soysamurai has quit IRC () toddf: jeev: how would I get a vm at amazon for free??? jeev: hey, i said not if you get it for free, i didn't say that i do
;) ***: ballen is now known as ballen|away
ballen|away is now known as ballen
ballen is now known as ballen|away
cablehead has quit IRC ("Leaving.")
ballen|away is now known as ballen
sbp_ has joined #arpnetworks sbp_: sup ballen: hi ***: sentabi__ has quit IRC ()
heavysixer has quit IRC () sbp_: hows things mhoran: Excellent. sbp_: right on ***: cablehead has joined #arpnetworks
ChanServ sets mode: +o cablehead
cablehead has quit IRC (Client Quit) jeev: why couldn't everyghint just remain 800x600
so we wouldn't have to worry about formatting sbp_: why would you want a shity screen resolution
or am i just missing it jeev: tired of html struggles
;D sbp_: :) jeev: maybe you'd be interested.. sbp_: what you mean jeev: i need to get a hold of some people who want palin to become president
and just beat them sbp_: haha
ill vote for you
but i dont even know who palin is jeev: sarah palin, the moron ex governor of alaska
the one americans say "we can relate, vote for her!"
hahaahaha oh my god
i need to stop caring about the public sbp_: ahh ***: heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
ballen is now known as ballen|away jeev: my little cousin is friends with the kid from two and a half men, i asked him to get me charlie sheen's email address so i can email him about his 9/11 thingies he speaks out about ***: ballen|away is now known as ballen
obsidieth has quit IRC (lindbohm.freenode.net irc.freenode.net)
coil has quit IRC (lindbohm.freenode.net irc.freenode.net)