[04:41] *** ziyourenxiang has joined #arpnetworks
[06:20] *** vtoms has joined #arpnetworks
[07:17] *** heavysixer has joined #arpnetworks
[07:17] *** ChanServ sets mode: +o heavysixer
[08:05] *** fink has joined #arpnetworks
[08:07] <fink> RandalSchwartz: thanks for your help re: zfs, i've got everything running on the 768 vps, seems to be fine so far
[08:07] <RandalSchwartz> cool!
[08:07] <RandalSchwartz> install zfs-snapshot-mgmt too
[08:07] <RandalSchwartz> then you get auto snapshots
[08:08] <fink> ok
[08:17] <j3m> how do you get zfs on / installed on the vps?
[08:17] <RandalSchwartz> you boot from the CD, follow the instructions
[08:17] <RandalSchwartz> fink just did this... he has experience
[08:17] <RandalSchwartz> based on my experience
[08:17] <fink> haha
[08:17] <RandalSchwartz> I've done it twice now :)
[08:18] <j3m> okay, that is my misunderstanding, I don't have a vps yet, didn't realize you could boot from a cd
[08:18] <RandalSchwartz> yes - a virtual Freebsd-8 release CD is always installed
[08:18] <fink> j3m: yea i didn't know either. arpnetworks should have a wiki! then we can post our experiences
[08:18] <RandalSchwartz> so you can "boot" from it if something hoses on your maindrive
[08:18] <j3m> that is handy :)
[08:19] <RandalSchwartz> this cuts down on Garry's support time for those of us who know
[08:23] <j3m> is zfs io performance okay on vps? I mean compared to zfs single disk or a 2-disk mirror on real hardware?
[08:23] <RandalSchwartz> fast enough for me. :)
[08:24] <RandalSchwartz> keep in mind, the underlying disk is raid already
[08:24] <RandalSchwartz> so you don't need to use raidz
[08:24] <RandalSchwartz> but the snapshots and other things are worth the trip
[08:24] <fink> j3m: speed was not my major concern, as much as the other benefits of zfs, such as management/backups
[08:24] <j3m> I've been using it locally and zfs + jails is very nice
[08:24] <fink> j3m: yea, exactly
[08:24] <fink> i'm only worried about using it with under 1gig of ram
[08:25] <RandalSchwartz> zfs adjusts automatically for that
[08:25] <j3m> yeah, box here has 1.5
[08:25] <RandalSchwartz> it used to require some sysctl tuning
[08:25] <RandalSchwartz> now it just works
[08:26] <fink> RandalSchwartz: oh ok, cool. i read about cyschubert's laptop here: http://wiki.freebsd.org/ZFSTuningGuide
[08:26] <j3m> 8.0 does seem to be a huge improvement
[08:28] <j3m> anyone ever try to get iredmail working in a jail?
[08:28] <fink> j3m: heh, i was just looking at iredmail last night
[08:29] <fink> i think i will try it soon
[08:29] <j3m> I tried here but it really wanted 127.0.0.1 to work
[08:29] <j3m> tried to manually fix all the configs... but no luck yet
[08:30] <fink> RandalSchwartz: do you have any links on not needing to tune for zfs? the handbook still says we should
[08:30] <fink> j3m: you're trying the betas?
[08:30] <j3m> yes, was trying beta3
[08:30] <RandalSchwartz> hmm.  something I read googling around for error messages
[08:30] <RandalSchwartz> don't remember now
[08:31] <RandalSchwartz> might have been a misinterpretation
[08:32] <j3m> fink: I cloned the Mercurial repository now, going to try and fix the scripts it uses to set things up
[08:32] <fink> RandalSchwartz: maybe it applies to hte new stuff in 8.1
[08:32] <fink> j3m: cool, i'd like to know how it goes
[08:32] <fink> j3m: are you using ldap or mysql?
[08:32] <j3m> ldap is required
[08:33] <j3m> so I am using that
[08:33] <j3m> it still uses mysql I think as well, can't remember for sure
[08:33] <fink> do you have an existing ldap db?
[08:33] <j3m> no
[08:33] <j3m> installed on a fresh jail, the setup script installs all the ports it needs
[08:34] <j3m> the ldap actually worked fine
[08:34] <fink> ok
[08:34] <j3m> I could use the admin web interface to manage email accounts and whatnot
[08:34] <j3m> it just wasn't able to recieve mail and pass it through all the seperate steps for spam and virus stuff
[08:35] <j3m> lots of 127.0.0.1 ports involved there
[08:35] <fink> j3m: right, that's annoying
[08:35] <RandalSchwartz> good thing there's 65,000 ports :)
[08:35] <j3m> yeah, lol
[08:35] <fink> i'm planning on having the mailserver, db, various webservers in different jails, so it will take a lot of hacking, i assume…
[08:36] <RandalSchwartz> imagine if the boys at berkely had only given a single byte value for that
[08:36] <fink> pays to think ahead
[08:37] <RandalSchwartz> well, ipv4 wasn't far enough ahead
[08:37] <RandalSchwartz> but who knew that there'd be this many internet machines
[08:38] <j3m> yeah, supprising IPv4 worked as long as it did
[08:39] <j3m> fink: I'm doing basically that locally now, but the mailserver part isn't quite there yet...
[08:40] <j3m> fink: it's not actually that much hacking, most things work fine in jails
[08:40] <fink> j3m: i mean, to get all the jails to work with iredmail
[08:41] <j3m> oh... yeah, if you are going to split that up it might get dicey
[08:41] <j3m> good luck, lol
[08:41] <j3m> :)
[08:42] <j3m> I have never been very good at getting a working mailserver configuration that actually did everything I wanted it to
[08:42] <fink> j3m: yea, that's why iredmail looks cool
[08:42] <j3m> iredmail looks like the easiest way
[08:42] <fink> plus it's python, so it's easy to hack, hopefully
[08:42] <j3m> however, it's meant to be all on one server
[08:43] <j3m> all you have to do one a clean jail is run it's setup script
[08:43] <j3m> on*
[08:44] <fink> j3m: yea but i don't want the webserver & db & email server etc all running in one jail
[08:45] <j3m> I didn't like that idea either, but the amount of work to change it seemed too much to bother
[08:45] <j3m> especially with jails and snapshots
[08:47] <j3m> as long as those services are all used only for the mail, at least the entire mail system is isolated
[08:47] <j3m> and I would just firewall off all the ports except smtp and imap ones
[08:48] <j3m> can use ssh port forwarding to access the web interface when needed
[08:50] <j3m> at least that's my plan once I get iredmail working...
[08:52] <fink> j3m: sounds reasonable
[09:21] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang)
[12:33] <dxtr> Uhm, up_the_irons
[12:38] <dxtr> This is bad. Realbad.
[12:38] <dxtr> Real vad*
[12:38] <dxtr> bad!
[12:39] <dxtr> Christ :P
[12:52] <dxtr> Hum. If I sign my message (GPG) - what does that mean? That I'm including my key and stuff?
[13:11] <toddf> heh
[13:11] <toddf> signing only gives enough of a fingerprint to proove it was your key that signed it
[13:11] <toddf> change one char inside the message, signature is invalid
[13:11] <toddf> change one char inside the signature, signature is invalid
[13:11] <toddf> thats all
[13:11] <toddf> if you understood public key cryptography .. this would be a no brainer ;-)
[13:13] *** yoberi has joined #arpnetworks
[13:16] <dxtr> toddf: I thought I did :D
[13:16] <yoberi> Hi all, does anyone know if the arpnetworks VPS accounts include dedicated ipv4 addresses? Will I need to learn ipv6 to use any arpnetworks services? Thanks.
[13:20] <dxtr> Garry should really update his pgp key
[13:21] <dxtr> It was like revoked last year
[13:21] <toddf> yoberi: yes and no
[13:22] <yoberi> toddf: please do explain!
[13:22] <toddf> yoberi: http://arpnetworks.com/vps says clearly 'Dedicated IPs' and 'Native IPv6 network'
[13:23] <j3m> they do include ipv4 addresses, 1 for free, you don't need to learn ipv6, though you should
[13:23] <toddf> you can use or not your IPv6 allocation
[13:23] <toddf> should, yes, I like this ;-)
[13:23] <yoberi> Will I be able to host such services as a mail relay (as an offsite backup)?
[13:24] <toddf> just look at the disk and the mem and the bandiwdth .. if you don't exceed those you're good to go
[13:24] <yoberi> j3m: okay that's sweet. I just need one ipv4 address to tackle my current issues. Would like an excuse to learn ipv6 as well
[13:24] <toddf> backups might require some thinking given the price of disk but mail seems quite easily doable
[13:24] <dxtr> toddf: I assume you don't have any kind of responsibility? :)
[13:25] <toddf> dxtr: quite the opposite, own and run my own business, this is `fun' for me
[13:25] <dxtr> toddf: Right
[13:25] <yoberi> I'm really just looking for a backup for when both of our ISPs is down, or the mail server is being serviced
[13:26] <toddf> yoberi: up to you to configure the system as you wish, you get the mem and disk and bandwidth, and the ability to ask for a different iso to be available if you are not liking what is there by default, and the VPS is yours to do with what you wish (though illegal activity is frowned upon here, otherwise, go have fun)
[13:27] <yoberi> toddf: sounds great-- just what I need to handle backup offsite services. Thanks for the tips/advice.
[13:29] <dxtr> toddf: Hey, could you check my pgp key out? :)
[13:29] <dxtr> 11C1331A - I sent that to a key server at least
[13:31] <toddf> gpg: requesting key 11C1331A from hkp server keys.gnupg.net
[13:31] <toddf> gpg: key 11C1331A: public key "Kim Lidström <dexter@dxtr.cc>" imported
[13:31] <toddf> gpg: Total number processed: 1
[13:31] <toddf> gpg:               imported: 1  (RSA: 1)
[13:31] <toddf> $ gpg --list-keys 11C1331A
[13:31] <toddf> pub   4096R/11C1331A 2010-04-05
[13:31] <toddf> uid                  Kim Lidström <dexter@dxtr.cc>
[13:31] <toddf> sub   4096R/DC3E3F11 2010-04-05
[13:31] <dxtr> toddf: Cool
[13:32] <dxtr> But does that give you my public key?
[13:42] *** schmir has joined #arpnetworks
[14:20] *** schmir has quit IRC (Remote host closed the connection)
[14:28] <fink> on the console server: what keycombo is this? [Enter `^Ec?' for help]
[14:30] <fink> oh, got it nvm
[14:30] <up_the_irons> ctrl-e followed by 'c' followed by '?'
[14:30] <fink> thanks
[14:30] <up_the_irons> np
[14:33] <up_the_irons> anyone got an ipad yet? ;)
[14:56] <amdprophet> i've got 6
[14:56] <amdprophet> kidding, i wish i had even one
[15:06] <dxtr> Hey, up_the_irons
[15:19] <jlgaddis> heh, i was gonna try to get bruce schneier to sign my pgp key the other day, but i settled for signing my book
[15:20] <up_the_irons> LOL
[15:20] <j3m> lol
[15:20] <amdprophet> ROFL
[15:20] <j3m> met him at a party once
[15:21] <j3m> wish I would have been less inebriated, lol
[15:25] <j3m> ah well...
[15:29] <jlgaddis> j3m: i wish that a lot
[15:29] <j3m> lol
[15:38] <jlgaddis> off to chase a tornado, later
[16:07] <dxtr> How the hell does this work!? :(
[16:07] <dxtr> Mutt an gnupg
[16:09] <j3m> dxtr: something like this - http://codesorcery.net/old/mutt/mutt-gnupg-howto
[16:10] <dxtr> j3m: Yeah, I saw that
[16:10] <dxtr> But I was like "wtf!?" when I sent my friend a key (And vice versa) and all we saw was the signature
[16:12] <j3m> not sure, never tried gnupg with mutt...
[16:14] <up_the_irons> dxtr: I usually hit: (p)gp followed by (b)oth (sign and encrypt)
[16:15] <dxtr> up_the_irons: Yeah, well, do I really want to encrypt it before I got his key? :D
[16:16] <up_the_irons> dxtr: no, you need his pub key to encrypt it for him
[16:16] <dxtr> Exactly
[16:17] <dxtr> Well, we tried to send each other our public keys but all we saw (in mutt) was the signatures
[16:17] <dxtr> But apparently it worked
[16:22] <au> morning
[16:22] <up_the_irons> dxtr: you should see something like this near the top of the message:
[16:22] <up_the_irons> [-- The following data is PGP/MIME encrypted --]
[16:22] <dxtr> up_the_irons: Yeah :)
[16:22] <RandalSchwartz> up_the_irons - did you feel the quake yesterday?
[16:22] <up_the_irons> RandalSchwartz: no, was driving at the time
[16:22] <RandalSchwartz> I'm happy I wasn't up on the 44th floor
[16:23] <dxtr> 44th floor? I don't think we have that many building with 44 floors here :D
[16:23] <up_the_irons> hehe
[16:24] <dxtr> buildings
[16:24] <dxtr> On the other hand we have like ~10,000,000 citizens
[16:25] <au> new yorkers?
[16:26] <dxtr> Make that ~9,500,000
[16:35] <RandalSchwartz> Yes - my office is on the 44th floor of the 9th tallest building in LA
[16:35] <RandalSchwartz> (Paul Hastings)
[16:35] <RandalSchwartz> I'm eye-level with the continuous cop copters :)
[16:35] <dxtr> That's sick
[16:36] <dxtr> I'm getting sick when I'm at the second floor in this apartment
[16:36] <dxtr> .. AND THE KITCHEN IS ON THE SECOND FLOOR
[16:38] <RandalSchwartz> wow
[16:39] <dxtr> :D
[16:41] <dxtr> I'm still amazed how my last VPS can reach pretty good speeds (Stockholm<->LA) while my home ISP doesn't
[16:41] <dxtr> To the VPS I've got here that is
[16:44] <au> hej dxtr :)
[16:45] <dxtr> au: Hej?
[16:46] <au> not a swede?
[16:46] <dxtr> Yes I am
[16:47] <au> was saying hello :P
[16:47] <dxtr> Viking, gräv bort skåne, etc.
[16:47] <dxtr> True swede \o
[16:47] <au> I know little swedish :P I am from Australia
[16:48] <dxtr> Oh
[16:48] <dxtr> I thought we knew each other or something :P
[17:16] *** fink has quit IRC (Quit: fink)
[17:20] *** z0mbie has joined #arpnetworks
[17:20] <z0mbie> hi
[17:21] <z0mbie> admin?
[17:24] *** z0mbie has quit IRC (Client Quit)
[17:36] *** z0mbie has joined #arpnetworks
[17:43] *** download has joined #arpnetworks
[17:43] <z0mbie> sux
[17:43] <download> hi
[17:43] <download> mel
[17:43] <z0mbie> lol
[17:43] <z0mbie> dont have admin
[17:49] *** download has quit IRC ()
[17:50] *** z0mbie has quit IRC (Quit: suck my dick)
[17:55] <dxtr> At least he's being mature about it
[19:24] *** fink has joined #arpnetworks
[20:02] *** Ehtyar has quit IRC (Remote host closed the connection)
[20:03] *** Ehtyar has joined #arpnetworks
[21:14] *** heavysixer has quit IRC (Quit: heavysixer)
[21:26] <au> bbl
[21:53] *** fink has quit IRC (Quit: fink)
[23:50] *** au has quit IRC (Quit: ZNC - http://znc.sourceforge.net)