***: viq has quit IRC (*.net *.split)
viq has joined #arpnetworks
viq has quit IRC (*.net *.split)
viq has joined #arpnetworks
LT has joined #arpnetworks
AndrewBC has quit IRC (Ping timeout: 264 seconds)
AndrewBC has joined #arpnetworks
schmir has joined #arpnetworks
AndrewBC_ has joined #arpnetworks
AndrewBC has quit IRC (Ping timeout: 260 seconds)
schmir has quit IRC (Ping timeout: 265 seconds)
LucasWilcox has quit IRC (Read error: Connection reset by peer)
LucasWilcox has joined #arpnetworks
Wraithan has quit IRC (Excess Flood)
Wraithan has joined #arpnetworks
cedwards: figured out my listen-on-v6 issue. I had !localnets, yet I was querying from my second VPS in the same range.
***: schmir has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
schmir has joined #arpnetworks
AndrewBC_ is now known as AndrewBC
ziyourenxiang has joined #arpnetworks
vtoms has joined #arpnetworks
dxtr: cedwards o
***: nukeAFK has joined #arpnetworks
dstufft has joined #arpnetworks
dstufft is now known as Guest85490
Guest85490 is now known as dstufft2
dstufft2 has quit IRC (Client Quit)
cmeiklejohn has quit IRC (Quit: leaving)
cmeiklej1hn has joined #arpnetworks
cmeiklej1hn is now known as cmeiklejohn
schmir has quit IRC (Remote host closed the connection)
heavysixer has left
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
cmeiklejohn has quit IRC (Changing host)
cmeiklejohn has joined #arpnetworks
cedwards has quit IRC (Ping timeout: 265 seconds)
vtoms has quit IRC (Quit: Leaving.)
vtoms has joined #arpnetworks
cedwards has joined #arpnetworks
cmeiklejohn has quit IRC (Remote host closed the connection)
cmeiklejohn has joined #arpnetworks
cmeiklejohn has quit IRC (Changing host)
cmeiklejohn has joined #arpnetworks
awyeah: blech. I haet it when I f*ck up my boot loader.
***: ziyourenxiang has quit IRC (Quit: ziyourenxiang)
LT has quit IRC (Quit: Leaving)
awyeah: quiet today.
***: vtoms has quit IRC (Remote host closed the connection)
vtoms has joined #arpnetworks
heavysixer has quit IRC (Quit: heavysixer)
RandalSchwartz: "yeah ... a bit TOO quiet... "
-: cedwards gets the chills.
dxtr: I've written 9 pages now about what one should think of when creating a network for a mid-sized company
And I'm not done yet o
I'm hoping this will make me pass the course
***: schmir has joined #arpnetworks
-: jdoe twiddles thumbs and waits for OpenSolaris 2010.03
RandalSchwartz: openOraclelaris ?
jdoe: haha. right.
dxtr: Wtf is this crap I'm about to write an essay on?
OCTAVE?
And no, It isn't GNU Octave
Wikipedia doesn't even have an article on it
RandalSchwartz: then it doesn't exist, or isn't of relevance to nerds
dxtr: exactly
Thing is it's a nerd course
IT-coordination
***: Aila has joined #arpnetworks
dxtr: My second cousing thinks Computer Engineering and Chemical Engineering sounds boring
!!
Aila: hi can anyone lend me a hand, i can't seem to get my reverse dns working... i'm running bind9
dxtr: And Master of Science in Engineering too!
RandalSchwartz: Let's do a ritual and sacrifice my second cousin
***: baklava has joined #arpnetworks
baklava has quit IRC (Changing host)
baklava has joined #arpnetworks
RandalSchwartz: reverse dns?
has it been delegated to you?
do you have sensible master files?
do you have an offsite slave as well?
Aila: yes it's been delegated to me
i have master files
no offsite slave
RandalSchwartz: are the parent NS records correct?
wait - I should ask what the problem is, I guess. :)
Aila: well
nslookup 174.136.101.162
gives error
** server can't find 162.101.136.174.in-addr.arpa: SERVFAIL
that's ns1.nullbnc.com which has a reverse set for it
RandalSchwartz: lemme see
so 101.136.174.in-addr.arpa is served by arp
are you sure the delgation is in place?
***: vtoms has quit IRC (Quit: Leaving.)
dxtr: 101.136.174.in-addr.arpa. 3600 IN SOA ns1.arpnetworks.com. gdolley.arpnetworks.com. 1004 28800 7200 604800 3600 :D
RandalSchwartz: yeah - this is a problem - 174.101.136.174.in-addr.arpa is an alias for 174.160-175.101.136.174.in-addr.arpa.
Host 174.160-175.101.136.174.in-addr.arpa not found: 3(NXDOMAIN)
***: Aila has quit IRC (Ping timeout: 248 seconds)
RandalSchwartz: it's delegated to an alias that doesn't exist
might be your problem, might be ARPs
up_the_irons: jdoe: you're a solaris fan?
RandalSchwartz: email support
***: schmir has quit IRC (Ping timeout: 276 seconds)
up_the_irons: Aila probably didn't set up the zone name right, even though I tell everyone the zone name in advance.
bob^^: reverse dns is confusing if you're new to it all
my solution: force everyone to read DNS and BIND before allowing them on the internet
cedwards: that reminds me, I'd like to get reverse setup as well.
up_the_irons: email to support@ for delegation?
up_the_irons: cedwards: yup
RandalSchwartz: oop... gone before this
darn it
if they ask a question, they Must Stay (tm).
cedwards: up_the_irons: what information do you need in the support request? just my name server(s)?
up_the_irons: cedwards: IPs and PTR records required; or if you want delegation, your name servers. As always, include the VPS UUID so it is easy for me to find :)
***: Aila has joined #arpnetworks
Aila: sorry RandalSchwartz, freenode kicked me off
soo
host 174.136.101.162
Host 162.101.136.174.in-addr.arpa not found: 2(SERVFAIL)
cedwards: up_the_irons: sent. thanks.
RandalSchwartz: ... it's delegated to an alias that doesn't exist
... might be your problem, might be ARPs
Aila: http://pastebin.com/07svA1tv
RandalSchwartz: ... email support
that's what I said after you left
did you understand what I pasted before?
ARP owns 101.136.174
and apparently they provide 174.101.136.174
which redirects to probably something you need to provide
Aila: i got this in email when they delegated my ipvs block
So just name your zone "160-175.101.136.174.in-addr.arpa" and proceed to set up
your PTRs normally.
RandalSchwartz: ahh yes... 160-175.101.136.174.in-addr.arpa name server ns2.nullbnc.com.
160-175.101.136.174.in-addr.arpa name server ns1.nullbnc.com.
those are you?
Aila: yes
RandalSchwartz: are you serving that domain
Aila: ye
RandalSchwartz: apparently, you aren't providing 174 in there
you should fix that
Aila: yea i know
one sec
RandalSchwartz: yeah - no SOA for Host 160-175.101.136.174.in-addr.arpa not found: 3(NXDOMAIN)
if I can't get an SOA for it, I'm not going to get records either
do you have a master file for that, and are you announcing it?
your port 53 is open, at least. :)
so's port 22. good luck with that.
-: RandalSchwartz re-ports ssh routinely now
***: heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
Aila: ;)
RandalSchwartz: so are you diagnosing the problem?
Aila: here are my configs
http://pastebin.com/EjiVEZRs
i don't see what i'm doing wrong
RandalSchwartz: I'm not getting that SOA from there
are you sure it has re-read your amster?
master?
ahh - I do see the soa now
says "refused"
might be a permissions things
Aila: ah
try again, i just restarted bind
RandalSchwartz: are you passing both tcp and udp 53?
***: sentabi has quit IRC (Excess Flood)
Aila: yes
174.136.101.174 is defined in interfaces so not sure the prob there
RandalSchwartz: I dunno either, but I gotta go
Aila: ok cya
jdoe: up_the_irons: I have a love/hate thing with Solaris. I respect it, I want to like it, but since I don't know it particularly well it's a painful experience.
dxtr: jdoe: I read "I want to be like it"
jdoe: up_the_irons: I love ZFS though, and since I don't trust FBSD's implementation (anecdotal experiences with similar setups to mine went poorly) I went with opensolaris.
dxtr: sure, I'll take Larry's yacht and billions of billions :P
***: sentabi has joined #arpnetworks
jdoe: ... anyway, so far it hasn't fucked me too badly :P
***: sentabi has quit IRC (Changing host)
sentabi has joined #arpnetworks
up_the_irons: jdoe: ah i c
dxtr: Uhm..
What can one do from stopping unauthorized people from plugging in to my (wired) network and using it?
I don't see it :p
That's a question in my assignment
Doesn't say wired - but it doesn't say wireless either
up_the_irons: dxtr: you could filter based on MAC address. Only authorized MAC addresses pass traffic through the switch.
there are other ways
google it
;)
jdoe: dxtr: PoE. Just make sure it's a lot of P oE.
dxtr: Wouldn't one need a really expensive switch for that? :P
jdoe: naw, just a beefy power cable, a knife and some duct tape...
dxtr: I was asking up_the_irons :)
jdoe: I know, but my answer was better.
up_the_irons: dxtr: i think a cisco 2924XL could do it, which is like $20 used these days
dxtr: Cool
jdoe: pretty sure it can.
you might not want the XL though, isn't that the 2U one?
dxtr: isn't there like WPA but for wired? :D
jdoe: ipsec plays nice with ipv6, so ... sure.
is it more trouble than it's worth?
oh fuck yeah :P
dxtr: So basically the only thing I've got is to filter MAC addresses and lock in the switches? :P
up_the_irons: jdoe: there is a 2U version of the XL, but the majority are 1U
jdoe: ah.
I used to have the 2U one.
up_the_irons: probably with an "FX" port (Fiber, but only 100 Mbps ;)
jdoe: two iirc
up_the_irons: yeah two
jdoe: been a while. Thing was a heavy piece of shit :P
up_the_irons: lol
dxtr: Hm, kan pf filter my mac address+
jdoe: yeah, I've got two 3550s next to me now with the jumbo gbics. At least I hope they're gbics and not two giant 100mbit ports :P
up_the_irons: pf can do anything
actually i dunno. ebtables on Linux can do MAC filtering.
dxtr: And one thing; Let's say I'm really obsessed with just letting some people access the network
Wouldn't it be possible to first filter MAC addresses in the switch - but to let people connect to the internet they must connect to an openvpn server within the network
And that vpn have its own subnet
And firewall is only allowing that subnet to access the net so to speak
That would make it encrypted and safe
... right? :)
DaCa: you might also want to look into authpf
dxtr: Hey, thanks for the tip
I actually might start using that
up_the_irons: dxtr: yeah sounds about right
dxtr: FUCK YEAH! I'm kind of done with this course
Are there any good pdf readers for Linux?
DaCa: epdfview, which is evince without the gnome bloat
dxtr: Awesome
Thank you
I'd like an ncurses based pdf viewer :P
DaCa: ps2ascii foo.pdf | less
dxtr: cool
***: jasey has joined #arpnetworks
jasey: ok
up_in_irons
who the fuck designed your site
it's like 2001 took a shit and it came out
that shit is fucking awful
can you please update it?
because it is really a disgrace
i'm from EFnet
from #sexytime
my name on there is jase
and i think your site is shit
do you loves it, honeybitch?
-: jasey blows a sugarkiss
jasey: bye baby
***: nesta has joined #arpnetworks
jasey has left
nesta is now known as aem
jasey has joined #arpnetworks
jasey: sorry
i forgot to post my pic
this is what i look like
http://i46.tinypic.com/6qeebo.jpg
bye sugarniggers
***: jasey has left
up_the_irons: LOL
dxtr: Wat?
aem: hahah
up_the_irons: jasey
dxtr: up_the_irons: He's your ex? ;)
up_the_irons: i hope not
dxtr: haha
do you know what sucks?
I got an A in a programming course that I just found out I already got an A in
...
Is that normal? :P
jdoe: up_the_irons: disgrunted former customer? :P
up_the_irons: jdoe: don't think so, probably random troll
***: schmir has joined #arpnetworks
AndrewBC: silly internet monsters
dxtr: What's the point of following a list on twitter?
Doesn't show up on the front page anyway
***: schmir has quit IRC (Remote host closed the connection)
dxtr: http://twitter.com/IPv4Countdown :D
up_the_irons: dxtr: hah nice!
and that's not necessarily how many IPs are available in your region.
who knows when ARIN will run out
if i sell out a few more servers, i'll have to submit another request to ARIN
***: heavysixer has quit IRC (Quit: heavysixer)
dxtr: up_the_irons: pwnd :D
How many have you got now?
In total
up_the_irons: 2 /21's and a /20
so equivalent to a /19
dxtr: cool
What do a subnet that size cost? :)
up_the_irons: https://www.arin.net/fees/fee_schedule.html
$2250 per year
***: amdprophet has joined #arpnetworks
dxtr: Cool
Wtf. End users?
RandalSchwartz: this is going to be a close game... LAL vs PHX
up_the_irons: end users can request IPs, yes
RandalSchwartz: 1.5 spread for LA, 220.5 for the over/under (!)
dxtr: up_the_irons: That's kind of awesome :p
I'll get an /18 block when I get a job o
up_the_irons: dxtr: it's not all that easy though
dxtr: Bummer
I'll have to bribe my ISP too?
RandalSchwartz: ipv4 exhasution is coming soon
dxtr: RandalSchwartz: Nowai
:)
up_the_irons: http://twitter.com/IPv4Countdown
RandalSchwartz: you'll have to buy from the highest bidder
that's why I got my /28 now
up_the_irons: yep
LOL
RandalSchwartz: I won't need most of them for a year or two
but I don't want to not have, or need to renumber
up_the_irons: man, I should put that on my order page, "Get them now, before they run out!"
dxtr: haha
Talk about advertisement
"Get your ipv4 address here before they run out!"
RandalSchwartz: if you could even get a machine now. :)
or do you have that back online?
AndrewBC: hint hin
t
dxtr: I seriously spoke with a guy yesterday who didn't believe the address' would run out for at least 10 years
RandalSchwartz: so he's seriously crazy
dxtr: And that we wouldn't start using ipv6 within that period because "we'd have to update almost every single network card"
-: RandalSchwartz . o O (network card?)
RandalSchwartz: comcast is already starting to deliver v6 to homes
AndrewBC: oh is that a thought bubble?
that's cute
RandalSchwartz: I'm part of a pilot program
dxtr: Because ipv6 addresses are 64 bit that mac address' are too! (Right? ;))
RandalSchwartz: 4 over 6 may be the new tunnel :)
dxtr: And old, unupdated, network cards can only handle 32 bit mac addresses (Like todays... Right? ;))
I have no idea what he was talking about. I just ignored him after a while
I think he was on dope
RandalSchwartz: network cards have no idea of v4 or v6
v4 and v6 are not layer 2
it's all layer 3
up_the_irons: RandalSchwartz: haha, machine will come soon, almost got everything in order
dxtr: I said that too, but he said "Exactly! And most network cards are layer 1!", I proved him wrong and said something about ISA cards
up_the_irons: RandalSchwartz: ChinaNet also is doing a ton of IPv6, and they have an IPv4 *decommission* plan already
they claim by 2016, they will no longer route IPv4
dxtr: My isp doesn't even have a plan to test IPv6 yet
:D
They're too busy digging down fiber everywhere
RandalSchwartz: layer 1? voltage? :)
up_the_irons: there's gonna be some cheappie IPv6 tunnel software that'll hit Windows machines, just you watch companies try to sell that
"See more of the Internet than you could before!"
dxtr: Why not just use sixxs or he.net? :P
up_the_irons: those are for technical users
i'm talking the masses
dxtr: Fuck the masses!
RandalSchwartz: well - thats' why comcast is hitting the massses
dxtr: That's kind of my motto
"Don't like that my website looks the same in Opera and IE6!? FUCK YOU!"
RandalSchwartz: comcast is "the" network for a large part of broadband america
dxtr: Don't like that my website doesn't look the same*
RandalSchwartz: Gotta suck to have to rely on so few ISPs in such a developed country
RandalSchwartz: we're hardly dveloped :)
dxtr: Compared to Sweden? :D
up_the_irons: ooO, found another big netblock to ban, owned by: http://delivery.net/
-: up_the_irons bans their /22
AndrewBC: yay email marketing
dxtr: Haha
AndrewBC: larger penis, please
dxtr: I blocked 'em too!
up_the_irons: if anyone is interested in my compilation over the past couple weeks: http://pastie.org/private/xiqsjmww4jlmxeiqlrwbaa
dxtr: o
up_the_irons: I use this file as follows (postfix): smtpd_client_restrictions = ... check_client_access cidr:/etc/postfix/rejections_cidr ...
dxtr: I'm using pf ;)
up_the_irons: nice
dxtr: I'm currently blocking every single part of the swedish government too
Both at home and on my vps :D
cedwards: up_the_irons: what are you using to compile the list? hopefully not manual log parsing.
up_the_irons: cedwards: the spam i receive :)
cedwards: up_the_irons: ohh, you actually get spam huh :)
up_the_irons: i just look at the headers
-: cedwards doesn't remember the last spam he got.
up_the_irons: cedwards: yeah some still get through
so to weed those out, i look at the headers and see if I can find a marketing company behind it. i usually can
cedwards: as i mentioned, my postfix config is pretty strict
plus postgrey, zen.spamhaus.org, spf policy.. it seems to catch all of it.
up_the_irons: cedwards: what do you use for spf policy?
cedwards: i don't think i'm going to do grey listing, because of the mail farm problem and I don't like delays in my email
cedwards: let me grab my config.. (my primary MX runs Debian stable)
up_the_irons: the delays aren't that bad, and the deay is configurable
up_the_irons: cedwards: but i use most of the other techniques available to me
dxtr: I use SpamAssassin + zen.spamhaus.org
up_the_irons: damn, your pastebin post expired
dxtr: That catches all of it
cedwards: postfix-policyd-spf-python package
RandalSchwartz: I use zen + greylist
up_the_irons: the thing i don't like about spamassassin is it sucked so bad when i used to run it like 3 years ago. i had switched to dspam which worked SOOOOOOOO much better. but now I don't have the patience for "training"
i may have to give spamassassin another try
RandalSchwartz: greylist?
cedwards: ah i c
RandalSchwartz: postgrey
dxtr: up_the_irons: I'm even daring deleting my spam directly :D
up_the_irons: RandalSchwartz: ah ok
dxtr: because I ran it a couple of weeks - got some spam but never a false hit
So I'm thinking "What the hell!"
RandalSchwartz: you need to whitelist with grey though
otherwise, some big ISPs lose
and from there, you need to run SA or something
SA doesn't hit often here, but when it does, it is
cedwards: http://pastebin.com/QRpyvexf - master.cf
up_the_irons: i have a few spam trap addresses, and i'm currently trying to think of something that could tie in spam I get to them, to OpenBSD's spamd / pf, somehow, so I can just block known spammers in real time. surely someone must have already done this :)
RandalSchwartz: I used to do that
cedwards: check_policy_service unix:private/policyd-spf in main.cf
up_the_irons: cedwards: thanks
RandalSchwartz: I had "if anyone offends me, their IP is blocked for two hours"
and offense had many levels
including triggering spamtraps
in fact, my setup was a model for the spam fighting cabal
especially my high-MX trap
whcih I haven't bothered with yet
jdoe: up_the_irons: if you like living dangerously, deliver the spamtraps to a perl script (.forward or an alias I guess) and have it extract the ip
up_the_irons: what does an spf check even do? I'm not familiar with SPF records that much
jdoe: spf says "these hosts can send mail from this domain"
cedwards: sorry about the slow pastes. i'm on my first-gen eeepc
up_the_irons: RandalSchwartz: high-MX trap?
RandalSchwartz: you cannot block *any* IP for longer than two hours though
since legit mail is likely also trying to get through
but two hours is enough to stop most zombies
cedwards: up_the_irons: yeah. in DNS you define the domains/IP mail is allowed to come from.
up_the_irons: jdoe: i c
cedwards: up_the_irons: if a mail server is checking SPF (sender policy framework), and the incoming says domain.tld but doesn't match the definition, it's blocked.
up_the_irons: cedwards: but will an spf check ever deny legit mail?
RandalSchwartz: it might
my accountant needs to send foo@stonehenge.com
and they send from their ISP
up_the_irons: jdoe: yeah, writing my own script to parse IPs is the last resort
cedwards: up_the_irons: I haven't seen it. if the servers are configured properly.
RandalSchwartz: so if anyone really noticed stonehenge.com SPF, it'd fail
jdoe: up_the_irons: it's a bad idea.
RandalSchwartz: you should just use it as part of a score
up_the_irons: RandalSchwartz: mmm... that's kinda not good
RandalSchwartz: ah ok
jdoe: up_the_irons: consider DKIM instead.
dxtr: By the way guys, speaking of e-mai
e-mail
RandalSchwartz: not a good/bad boolean
dxtr: How come I can't mail to Hotmail from my domain?
They end up in the spam folder :/
cedwards: i've found most places don't bother with it (yet?)
RandalSchwartz: you still write to hotmail?
who the hell uses that?
other than spammers
and windows users :)
dxtr: My girlfriend :)
RandalSchwartz: "same thing"
dxtr: I could perhaps send a mail to someone and let them check the header to see what IP it comes frmo
Could it be an SPF problem?
jdoe: up_the_irons: spf is more like a white/blacklist, dkim just says "I sent this email" ... so it's more for establishing trust.
RandalSchwartz: windows is a pretty good virus-loading platform
up_the_irons: jdoe: dkim looks interesting
cedwards: if you've configured your SPF definition properly, I don't see it causing problems.
should just stop spoofing the from domain.
dxtr: Oh, SPF is an actual DNS thing
Cool :D
jdoe: up_the_irons: yeah, and plugs nicely into sendmail/postfix.
I've never actually filtered on it, but the BIG BOYS like incoming email more if it's DKIM signed.
and since I still want to email people at hotmail/gmail/yahoo occasionally...
cedwards: did ya'll know you can filter your gmail by language?
RandalSchwartz: offensive language?
cedwards: i used to get tons of russian and chinese spam. i applied basically if:chinese -> trash, and it's no more.
RandalSchwartz: spoken language. spanish, english, russian, etc
RandalSchwartz: people speak russian?
up_the_irons: hehe
***: mhoran_ has joined #arpnetworks
RandalSchwartz: only if they're *spies*
-: cedwards suppresses a 'in soviet russia' joke.
***: Aila has quit IRC (Ping timeout: 265 seconds)
jdoe: routing go boom again?
mhoran_: Looks like it.
***: hsbt has quit IRC (Ping timeout: 260 seconds)
diatribes has quit IRC (Ping timeout: 260 seconds)
mhoran has quit IRC (Ping timeout: 252 seconds)
diatribes has joined #arpnetworks
koan has quit IRC (Ping timeout: 260 seconds)
mick_laptop has quit IRC (Ping timeout: 276 seconds)
hsbt has joined #arpnetworks
Wraithan has quit IRC (Ping timeout: 264 seconds)
BarberRonny has quit IRC (Ping timeout: 264 seconds)
up_the_irons: W.T.F.
***: mick_laptop has joined #arpnetworks
mhoran_: Oh, there it is.
-: jdoe BLAMES up_the_irons
***: mhoran has joined #arpnetworks
ChanServ sets mode: +o mhoran
Wraithan has joined #arpnetworks
up_the_irons: Mzima dies AGAIN
mhoran: Damn.
up_the_irons: They stopped sending me routes at 12:30AM this morning
Had it fixed by like 1:30PM
dxtr: Uhm.. To add an SPF record I'd do something like: dxtr.cc. IN SPF "v=spf1 a mx -all"
mhoran: Yeah, I noticed something this morning.
dxtr: ?
up_the_irons: now appears I am still getting routes, BUT THEY ARE NOT PASSING TRAFFIC
mhoran: That sucks.
***: mhoran_ has quit IRC (Quit: leaving)
up_the_irons: Well, I sent off an email to Global Crossing today
mhoran: Word.
up_the_irons: I think I'll also revive my discussion with Level3 :)
RandalSchwartz: damn routes
cedwards: dxtr: at a glance that looks aout right
***: BarberRonny has joined #arpnetworks
RandalSchwartz: damn trafifc
it should all Just Work
mhoran: Man, they've been pretty stable up to now, up_the_irons ?
This is all since the merger/takeover/whatever it was?
dxtr: cedwards: Awesome :)
***: koan has joined #arpnetworks
up_the_irons: mhoran: this is all since yesterday :)
cedwards: dxtr: because i have to relay_host through my isp, i have to include their mx in my spf too
up_the_irons: mhoran: so yeah, i figure the takeover has something to do with it. some people do a takeover well, some others day, "Let's 'reorganize' and 'integrate' this into our network", and then they blow it all up
mhoran: Yeah.
cedwards: cedwards: not optimal, but it's better than nothing.
dxtr: cedwards: talking to yourself?
mhoran: Har har.
up_the_irons: that happens to me sometimes
cedwards: dxtr: erg. yes
-: cedwards curses this damned eeepc 701 keyboard
dxtr: cedwards: To do that one would do "v=spf1 a mx mx:mail.isp.tld -all" ?
Or add one more SPF?
add another
cedwards: dxtr: let me look at mine
dxtr: No!
Look at mine instead ;)
cedwards: dxtr: v=spf1 a mx include:xmission.com ~all
dxtr: You see what I did? I made a homoerotic joke
Is xmission your isp?
That's a horrible name
cedwards: dxtr: it is. they are an awesome isp though.
dxtr: the ceo is an old geek. comes to user group meetings and everything.
dxtr: We have ISPs that are named "The Broadband Company", "Broadband2", "Bahnhof" and stuff
The first two are translated :P
cedwards: static IPs are company policy. they support 'home services', which most others frown upon.
dxtr: Home services?
cedwards: like mail, web, etc services on residential connections.
dxtr: Mkay
Well, I've got a static IP and 100Mb
That's enough for me
cedwards: the other telecoms around here list that as against policy, although don't always enforce it.
dxtr: Oh, and I'm allowed to have those home services :)
At least last time I checked the contract a couple of years ago
Now Telenor have bought the ISP
And I hate Telenor
cedwards: generally isps here suck.
dxtr: ISPs here are generally good - but it has taken a turn to the worse
***: aem has quit IRC (Ping timeout: 240 seconds)
cedwards: when your down speed is 1.5M, then you can complain to me.
***: aem has joined #arpnetworks
RandalSchwartz: I'm still only a few blocks away from my machine at ARP.
I should visit :)
and oversee.net has a high-speed to wilshire, so my ping times are undre 2ms from work
dxtr: cedwards: I don't think we ca get that low
The lowest we can get here is 2Mbps :D
cedwards: dxtr: my DSL is 1.5M down, ~768 up. It's _pathetic_, yet my only option.
jdoe: I don't bother with DSL here.
cedwards: i get better speeds on my air card, or tethering through my mobile phone.
dxtr: My fiber is 100Mbps down, 10Mbps up. I think that's pathetic :7
:/
jdoe: cedwards: presumably shitty latency though ;)
dxtr: I want 100Mbps up!
Honestly
Preferrably 1000Mbps down (I think it's availble in some places here)
cedwards: i have a rental property that can get 30M up/down.. but I don't want to live in it
..although the internet speeds are inviting.
dxtr: I think some ISP here (TeliaSonera or something) started with a gigabit connection for like $100 USD each month or something
$100 US*
RandalSchwartz: At least with fiber, you're regular. :)
dxtr: What do you mean?
cedwards: ~rimshot
RandalSchwartz: heh
dxtr: Gah
Man
I hate you :p
I was like "WTF?"
RandalSchwartz: A bit... backed up? :)
dxtr: I ate moms chicken the other day and I'm still quite loose after that experience
cedwards: it is just a series of tubes after all.
RandalSchwartz: until the poker chips block it!
dxtr: Okay, it's 04:43
I don't know how you guys manage to stay up all nights every day and still do some work day time
RandalSchwartz: this isn't night yet
dxtr: See!
It's early morning and you're like "It isn't night yet"
RandalSchwartz: damn round earth!
why can't it be FLAT?
dxtr: According to FES it is
RandalSchwartz: FES?
dxtr: Flart earth society
RandalSchwartz: the third largest city in morocco?
dxtr: https://secure.wikimedia.org/wikipedia/en/wiki/Flat_Earth_Society
RandalSchwartz: ... http://en.wikipedia.org/wiki/Fes
dxtr: "The Flat Earth model depicts Antarctica as an ice wall surrounding a disk shaped Earth"
RandalSchwartz: Flywheel Energy Storage?
Foundation for Ecological Security?
cedwards: i've heard of the FES
RandalSchwartz: Fuerzas Especialies?
Foreign Exchange Student?
dxtr: If I'm not mistaken they believe the earth is flat, surrounded by an ice wall and resting on a FRIGGIN' TURTLE
RandalSchwartz: it's turtles all the way down
well - objects first, then turtles
cedwards: a round earth and photos from space are government conspiracies.
dxtr: I like turtles!
cedwards: ninja turtles?
RandalSchwartz: turtles all the way down = slow all the way down
ninja turtles are amongst us
dxtr: Q. If the planets are round, why isn't the earth?
A. The earth is not a planet.
Bahaha
RandalSchwartz: literally it isn't
since planet = "wanderer"
dxtr: Q: "Why does gravity vary with altitude?"
A: The moon and stars have a slight gravitational pull.
RandalSchwartz: earth does not "wander" from our observation
dxtr: Q: "If gravity does not exist, how does terminal velocity work"?
A: When the acceleration of the person is equal to the acceleration of the Earth, the person has reached terminal velocity.
RandalSchwartz: o/~ because the world is round... it turns me ooooooon o/~
dxtr: :D
They say there is no gravity
We stay on earth because it is going upwards
RandalSchwartz: gravity... is heavy, dude.
dxtr: http://www.theflatearthsociety.org/tiki/tiki-index.php?page=Gravity
cedwards: gravity is a series of tubes?
dxtr: Q. Can't we just circumnavigate the earth by traveling in a straight line without a navigational aid?
A. It is not possible to travel in a perfectly straight line for very long without a navigational aid.
cedwards: dxtr: are those all from that site?
RandalSchwartz: I use a ruler
dxtr: cedwards: tes
yes*
http://www.theflatearthsociety.org/tiki/tiki-index.php?page=Form+and+Magnitude
http://i23.tinypic.com/nwkp5t.jpg <- Apparently that is the edge of our world
http://www.theflatearthsociety.org/tiki/tiki-index.php?page=The+Ice+Wall
And apparently there are temperatures near 0K reaching the other side of the wall
Or, well, if you try to walk them
http://www.theflatearthsociety.org/tiki/tiki-index.php?page=High+Altitude+Photographs
"
The only pictures which show the horizon as an arc of a circle are NASA's space photography. NASA is a fraudulent organization and is not to be trusted."
http://www.theflatearthsociety.org/tiki/tiki-index.php?page=Undersea+Cables
They've got to be kidding
AndrewBC: lol
so the sun is a spotlight, too
wonder how they explain video where the continent comes out of the darkness on one side and then disappears on the other side every time
"Oh, shit you're right. It's not flat, it's a ring"
"And we must be on the outer edge!
dxtr: hehe
***: mrbit has joined #arpnetworks
mrbit: hello.
admins in?/
are the 20$'s rly sold out?
vps
i need one pretty quick if you can
RandalSchwartz: for now
everythign is sold out
mrbit: 30's?
rly?
RandalSchwartz: more machines coming soon
mrbit: nothing at all?
RandalSchwartz: put your request in
mrbit: ugh
ok
RandalSchwartz: might fulfill in a week or two
mrbit: on ur site i suppose?
RandalSchwartz: my site? hardly
go to arpnetworks.com :)
mrbit: you know what i meant i hope
heh
arps site
RandalSchwartz: I'm just a customer
mrbit: i realize that :)
RandalSchwartz: but the admins hang out here a lot
mrbit: I miss my arp box
:D
and my awk one
what happened to awk?
RandalSchwartz: awk ?
mrbit: i need one in la
i was rly looking forward to getting one of the vps' tonight but i'll just get one when you guys get some more in
RandalSchwartz: "you"?
mrbit: ?
"me"?
yes..
RandalSchwartz: when "you guys"
who the hell are you talking to?
mrbit: the arp staff
RandalSchwartz: yeah, they aren't here
not right now
mrbit: yeah well i'm sure they'll see it later randal
:)
RandalSchwartz: but you make it sound like it's *us*
and it's not
mrbit: oi vey
..
RandalSchwartz: far more non-ARP here than ARP
mrbit: quite a smartass you are sir
RandalSchwartz: so please speak appropriately
no - just interested in actual conversation
not crap
mrbit: Please do not be a jerk.
i'm just inquiring
RandalSchwartz: please speak appropriately then
mrbit: heh
RandalSchwartz: this is a support channel for ARP
mrbit: are you on the right network? efnet was a left turn
RandalSchwartz: not a personal channel from YOU to ARP
so please carve off a clue
mrbit: i'll carve some /ignore in your very long nick
RandalSchwartz: If only you'd also stop speaking here, it'd be a good thing
since you seem to be a few cards short of a deck
mrbit: wow, you've really god a attitude man.
god=got
RandalSchwartz: yeah - I want people to make sense here
you don't
mrbit: I did make sense.
You're being a jerk.
RandalSchwartz: please read scrollback
mrbit: i'll just idle and wait
thx for letting me know they're not here Randal
RandalSchwartz: clearly you haven't been idling here mch
and now you are, and think it's your personal channel to ARP
mrbit: i'm pretty sure I just joined.
RandalSchwartz: and it isn't
mrbit: i don't have time for u.
pz
RandalSchwartz: so I'm letting you know that you're inappropriate
and "u" is for SMS, not IRC.
if you're paying for IRC by the character, sucks to be "u"
mrbit: do I know you from somewhere?
or are you just an asshole to everyone that makes a typo?
RandalSchwartz: Probably not
And I'm guessing you're about 17
right?
mrbit: do you think they appreciate your talking to potential c ustomers like you are?
RandalSchwartz: *my* potential customers?
hardly
again, you confuse me for someone from ARP.
I'm just a customer.
mrbit: :)
you're so cute.
like a lil teddy bear
RandalSchwartz: You're likely not my type
mrbit: that peaks anal english
on irc
RandalSchwartz: Yeah - definitely 17
maybe even 16.
somewhere in there.
Where you're still trying your "stance"
and have to challenge anyone not aligned with you
instead of just embracing them
and recognizing what works and what doesn't
I remember that era
More important to be "right" than be "useful"
"I want a box tonight" ... also typical 17-year-old unrealistic behavior
mike-burns: I never really noticed, but that is a very long nick.
RandalSchwartz: I'd like it to be shorter
but that's the name they gave me
mike-burns: It's a good name, no doubt.
RandalSchwartz: I tried using just Merlyn for a while
but I never legally changed to that
even though I had ideas of doing that
It's a crappy name, actually
Randal - what, not "ll"?
mike-burns: It took me a few months to realize that RandalSchwartz and Merlyn were the same (back when I was a Perl dev).
RandalSchwartz: Schwartz - are you kidding me?
mike-burns: The non-double-L is unique!
Makes you memorable.
RandalSchwartz: unique = nobody gets it :)
mike-burns: Well at least it's shorter---short enough to fit in an IRC nick, even.
RandalSchwartz: As bad as if it was Råndäl :)
mike-burns: One more L and you might be over the limit.
-: mike-burns is too lazy to actually count.
RandalSchwartz: Apparently RandalSchwartz is short enough here
although much longer, and it wouldn't
we're interviewing a key guy from Freenode tomorrow
mike-burns: Well it's a good thin you don't have that extra L!
RandalSchwartz: I'll ask him
mike-burns: Smart idea.
RandalSchwartz: for FLOSS Weekly
Dan Lynch helping me
from Linux Outlaws
mike-burns: Not familiar with him, but that sounds like a nice mashup.
Are you going to tell him that FreeBSD is better than Linux?
RandalSchwartz: there are people who are saying "OMG - linux outlaws *on* twit?"
but in fact, no
Linux Outlaws is its own show
I would not pretend to replace or compete wiht that
mike-burns: Fair enough, though I'm sure you could take them.
RandalSchwartz: no - he does a news show
this weeks releases, important things
my shows are timeless
you can listen to my show a year from now and learn something
mike-burns: Ah, I see.
So he's trying to get in on the timeless action.
RandalSchwartz: no - I need a co-host
and we've already chatted
mike-burns: For when people time travel and need to be in a time-free environment.
RandalSchwartz: heh
mike-burns: Well it's time for me to sleep. Have a good one.
mrbit: g'night mike
AndrewBC: flying backwards flips have been deemed 10 times more effective than barrel rolls: http://www.youtube.com/watch?v=_Ez5QPW-ku4
***: aem has quit IRC (Ping timeout: 260 seconds)
j3m has joined #arpnetworks
jdoe: lol scrollback
up_the_irons: RandalSchwartz: how long are you in LA for? I should show you your machine
RandalSchwartz: I actually like Merlyn for you; you should keep it
jdoe: yeah the scrollback was pretty good
mrbit: there is no way to get a vps tonight, sorry. You could try Slicehost or Linode or RootBSD, I think they have pretty quick setups (I know Slicehost is like within an hour)
Port: py-policyd-spf-0.7.1p0
Path: mail/py-policyd-spf
Info: external SPF policy checker for postfix
I found what cedwards is using, in an OpenBSD port
mrbit: I can wait up_the_irons, thank u
However your guy here.. Randal is quite rude..
up_the_irons: RandalSchwartz isn't my guy, just another dude like everyone else...
and I LOL'd at your conversation
mrbit: right, i was just saying he's pretty damn rude
up_the_irons: don't worry about it; if anyone pushing bits on IRC affects you that much, you have bigger problems. I was just told earlier my website looks like 2001 took a shit on it, and look I'm still happy
mrbit: heh
just commenting man
up_the_irons: same
:)
mrbit: ^--pretty obvious i ignored him
after the taunts
any idea when arp is going to get soem vps' in?
up_the_irons: mid-June or thereabouts
mrbit: wow..
up_the_irons: unless someone wants to lend me $5K
mrbit: right on. I'll fill out that form on your site then
you just need some more machines and a rack?
well thats awesome man
you're doing great if you sold out
haha, i just read that 2001 took a shit..... part
missed that
who cares what it looks like? the entire point of a site is to relay info
:)
right?
up_the_irons: I have the additional cabinet now, and everything that went along with it. Basically expanded my cage in LA. Now I just need another box.
mrbit: wish i could send u this 2u
i'm taking it to my old work tomm
they're letting colo for free
up_the_irons: mrbit: you got that right. everyone who likes the site says the same thing, it's just to relay info
mrbit: where are you located?
mrbit: i'll get ya one if you hook me up :)
Chattanooga, TN
box is going to vpntranet.com
i had worked there for 5 years
up_the_irons: yeah I can't compete with free ;)
mrbit: working for kmctelecom, centurytel
and locals
up_the_irons: I used to do a lot of colo, but it is so low margin now
it's like, what is the point
mrbit: yeah, you lose $
i've already looked into a room myself
so i can do both
that anothe 2 years down the rd
up_the_irons: yeah, and everything is going virtual anyway. why worry about hardware when I can do it for you ;)
mrbit: heh, cause i'm preparing my own :)
i like to make money too
up_the_irons: yeah
mrbit: i just wanted a vps to hook my buddies up with some ipv6 hsots for irc connections
up_the_irons: cool
mrbit: no charging anything
t
june's good though
its always good to haev an extra ipv4 for dns too
up_the_irons: yeah
mrbit: i like to spread them out like they were intented for
are you a cig smoker ?
up_the_irons: mrbit: no
odd question, why? :)
mrbit: not prying, was just gonna let you know about these Gauloises if you did
up_the_irons: I live in CA, not many people smoke here anymore ;)
laws have got so tight
not that I ever smoked anyway
mrbit: i'm going to be in cali in 6 weeks
first time ;)
-: mrbit is excited
up_the_irons: mrbit: what city?
mrbit: outside of la about an hr
i forgot what city he said
up_the_irons: don't smoke in Burbank or Glendale in public, you'll get a citation ;)
mrbit: but we're goign to newport beach
to hang out with my friend ed
talk business
up_the_irons: ah
Newport Beach is cool
mrbit: so i hear
ed's got a beachhouse tehre
there
amdprophet: it's illegal to smoke within 15 metres of any business here now
mrbit: yeah,i heard that..
amdprophet: and no smoking in pubs or restaraunts
up_the_irons: amdprophet: where are you located?
mrbit: getting straight nazi with the cigs there
amdprophet: vancouver, bc
up_the_irons: ah
mrbit: ohh vancouver
wow..
didnm't know that
if i were around more non smokers
I wouldn't smoke at all
I don't smoke when I'm around non smokers
amdprophet: i've got my motivation, my grandma just died from lung cancer
up_the_irons: sucks
amdprophet: heavy smoker
mrbit: my dad passed in 05 from it
he smoked like a chimney too
winston 100's
up_the_irons: wow
mrbit: yeah man, its rough seeing someone die light that..
light=like
gasping for their last breathe
i quit for 6 months afterwards
then fell right back
amdprophet: :(
my addiction is fast food... i'm trying to stop
mrbit: thats just as bad
depending on what you eat there
amdprophet: i've gained a lot of weight in the past 3 years, went from 130 to 195
mrbit: damn!
up_the_irons: my new addiction is CoD: MW2
amdprophet: rofl
that's got to be the worst addiction
kills millions each year
up_the_irons: amdprophet: 130 to 195? damn dude
mrbit: thats rough
up_the_irons: i went from 150 to 175 one year, but i'm back down to 160
mrbit: you guys probably aren't going to believe this
but i'm going tno tell ya anyway
wtf not..
so i get up this morning.. i let the log out front.. jump in the shower
i get out of the shower go to my bedroom
2 girls in my bed
going at it
and taking pics of each other with my cannon rebel xti
I thought i had really lost it.. like about to get sent to t he looney bin for seeing shit lost it
amdprophet: only 2 girls? i woke up next to 30 this morning
mrbit: nice
mad props fatty
=P
lol
amdprophet: rofl
i'm not fat... yet
i was underweight before, now i'm just slightly overweight
up_the_irons: wait a min... if they took pics with *your* cannon rebel xti... then we want to see pics
mrbit: hehe, just teasin
***: j3m has quit IRC (Read error: Operation timed out)
mrbit: ok
hold on
up_the_irons: lol
amdprophet: pics or it didn't happen, awaiting for a PM
up_the_irons: yup, that is the rule around here it seems
mrbit: ohh it happened.. i'm plugging the cam in no w
***: j3m has joined #arpnetworks
amdprophet: i think i completely fail at IPv6 tunnelbroker in openbsd
mrbit: i should have known that requewst was coming
lol
up_the_irons: srsly
mrbit: ipv6 damn near sets itself now days
up_the_irons: amdprophet: i tried to do a 6to4 router in openbsd, then found out it wasn't supported b/c of security concerns
amdprophet: really...
how recently?
mrbit: what ver?
amdprophet: i'll probably rip my hair out if it's still not supported
up_the_irons: mrbit: my airport extreme does everything automatic, it is nice. only sucky thing is if your local 6to4 tunnel is messed up, you'll lose all traffic aimed at ipv6. most people won't even know what is wrong.
I think I tried it with 4.4
amdprophet: OpenBSD risor.teralink.ca 4.6 GENERIC.MP#81 amd64
-: amdprophet hopes it's supported now
mrbit: obsd is a bit more picky with 6
up_the_irons: http://old.nabble.com/git0-tunnel-with-any-remote-endpoint-td22868545.html
"The major difference and also the concern for security is that the
remote endpoint (where the packet will be forwarded to) is determined
from the IPv6 address, eg 2002:aabb:ccdd:: becomes aa.bb.cc.dd.
mrbit: mmmk
up_the_irons: There are a lot of security pitfalls in 6to4 and if I recall correctly
that is the reason why OpenBSD does not support 6to4. IMHO that was a
mrbit: picking out some good ones i guess
up_the_irons: just decision. "
mrbit: one chubster
and one skinny redhead
both freaks.
-: amdprophet waits for a rick roll
up_the_irons: amdprophet: it can still do v6 over v4. just not 6to4 anycast
mrbit: kinda makes me wanta leave the door unlocked more often
my luck i'll get stabbed in the face one day
-: amdprophet walks through mrbit's door and stabs him in the face
mrbit: MY EYE!
up_the_irons: "Yes officer, I heard a chubby girl and crazy red head were gonna stab him in the face"
amdprophet: lol
up_the_irons: If you go missing, I'll call the Chattanooga PD on your behalf
amdprophet: RandalSchwartz: you around?
mrbit: wtf, why isnt my ftp rnuning
amdprophet: FBI
up_the_irons: what is the difference between amavis, amavis-new, and amavis-ng. I hate it when projects get confusing like that.
amdprophet: wow..
yea i can't stand that either
anyone using an android phone here?
up_the_irons: not i
amdprophet: i switched to a nexus one from my iphone 3g, i'm loving it so much
especially since the 2.2 update
mrbit: i like my droid
up_the_irons: a buddy has the Incredible and he loves it
mrbit: its faster than the nexus
not stock
but after i tweaked it
amdprophet: were you comparing it against a tweaked n1?
mrbit: ohh yeah i neglected to mention
they broughth beer too
amdprophet: awesome
mrbit: and various other narcodics
i just saw the pic and reminded me
ok
uploading some now
damn the camera does add weight
tits and ass look bigger on the blonde
amdprophet: if i'm tunnelling, should i need to change my PF config?
mrbit: http://www.ifconfig.net/wtfnicemorning
up_the_irons: amdprophet: client or server?
amdprophet: up_the_irons: it's for tunnelbroker
up_the_irons: "The requested URL /wtfnicemorning was not found on this server"
mrbit: ahh yeah
perms
up_the_irons: amdprophet: not sure
amdprophet: http://pastie.org/private/qnba43qcxkxeob70rczktq
is that 6to4 or v6 over v4
up_the_irons: looks like 6 over 4
HE uses a /128 for the endpoints? shame shame
but shouldn't that be /127 anyway?
if they 'did it right', it'd be a /64 for the endpoints
amdprophet: /128 would have 0 available hosts, wouldn't it?
just broadcast + network addy
mrbit: blam
http://xerxes.ifconfig.net/wtfnicemorning/
i took the camera away anbd took advantage..
sorry
ill take more nude pics next time
lol oops i left incriminating evidence in there
me
amdprophet: lol
mrbit: after that.. I'm buying a damn camera tomm
hidden cam
they all want to do a porn site now
i say "well, go recruit some more friends and we'll see what we can do.."
up_the_irons: LOL
amdprophet: rofl
up_the_irons: I'll host it
mrbit: hells yeah you're in cali
up_the_irons: your camera is quite good
mrbit: legal
amdprophet: I'll be quality control
mrbit: i <3 that camera
i got it for free too
up_the_irons: rofl
mrbit: scammed dell.com
lulz
i wanta nikon to go along with it
and that new samsung
touch screen camera
7:
"
everyone done yet?
wget
so i can rm
amdprophet: safari froze
one sec
mrbit: heh
amdprophet: k thx
mrbit: yup
AndrewBC: uno momento!
mrbit: i said hurry andn wget
AndrewBC: meh, nevermind, I didn't install wget
up_the_irons: bah i was only half way thru
AndrewBC: would take too long
mrbit: bah.., heh
AndrewBC: I saw the last picture though. Pretty cute
up_the_irons: i did wget --mirror, but alas, already gone
mrbit: hold on..
u guys ready?
get them qjuick
up_the_irons: yep
AndrewBC: consider me done
thanks though :)
mrbit: k
go
up_the_irons: weee
mrbit: yay wandering strange..
heh
-: mrbit write a note in his appt book for a test
mrbit: gharnaherpachipliaids
get them?
up_the_irons: yep
mrbit: thats some odd shit
not normal anyway
not that im complaining
come one come all
bitches in bits bedroom
i'll name the new video that
up_the_irons: srsly that's a good name
mrbit: that would be a sweet job
wonder if i got anymore beer.. i hope so.
berb
up_the_irons: amdprophet: the /128 is odd. that's one and only one IP
amdprophet: hmmm
mrbit: i wish dood would give me the money to order this g5 LCD already
amdprophet: it's what he's autoconfigure script gives me
mrbit: its just been sitting by the fireplace without a screen
looks so out of place
up_the_irons: "/128 when it is absolutely known that one and only one device
is connecting"
RFC 3177
Note that that is only a recommendation
mrbit: i can't wait to get spackles bsd setup script back
i'm getting that tomm
*ramble ramble*
hahahahah, i left a good one out.
hold on..
up_the_irons: lol
mrbit: i'm not right..
i should have captioned that
www.ifconfig.net/wtf
that's me discovering what's going on in my room
up_the_irons: LOL
mrbit: caption "Hrm.. What's this.. :)"
what channels am i missing on here
other tha freesideatl
i want a box a netdepot.com
don't wanta pay that though
>.<
i rly need to do something with that domain
whats to do out there in a shrot business visit?
where should an out of stater visit for sure ..
up_the_irons: nothing really
mrbit: whoa
http://chattanooga.craigslist.org/bfs/1736375957.html
check it out
not bad