***: viq has quit IRC (*.net *.split)
viq has joined #arpnetworks
viq has quit IRC (*.net *.split)
viq has joined #arpnetworks
LT has joined #arpnetworks
AndrewBC has quit IRC (Ping timeout: 264 seconds)
AndrewBC has joined #arpnetworks
schmir has joined #arpnetworks
AndrewBC_ has joined #arpnetworks
AndrewBC has quit IRC (Ping timeout: 260 seconds)
schmir has quit IRC (Ping timeout: 265 seconds)
LucasWilcox has quit IRC (Read error: Connection reset by peer)
LucasWilcox has joined #arpnetworks
Wraithan has quit IRC (Excess Flood)
Wraithan has joined #arpnetworks cedwards: figured out my listen-on-v6 issue. I had !localnets, yet I was querying from my second VPS in the same range. ***: schmir has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
schmir has joined #arpnetworks
AndrewBC_ is now known as AndrewBC
ziyourenxiang has joined #arpnetworks
vtoms has joined #arpnetworks dxtr: cedwards o ***: nukeAFK has joined #arpnetworks
dstufft has joined #arpnetworks
dstufft is now known as Guest85490
Guest85490 is now known as dstufft2
dstufft2 has quit IRC (Client Quit)
cmeiklejohn has quit IRC (Quit: leaving)
cmeiklej1hn has joined #arpnetworks
cmeiklej1hn is now known as cmeiklejohn
schmir has quit IRC (Remote host closed the connection)
heavysixer has left
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
cmeiklejohn has quit IRC (Changing host)
cmeiklejohn has joined #arpnetworks
cedwards has quit IRC (Ping timeout: 265 seconds)
vtoms has quit IRC (Quit: Leaving.)
vtoms has joined #arpnetworks
cedwards has joined #arpnetworks
cmeiklejohn has quit IRC (Remote host closed the connection)
cmeiklejohn has joined #arpnetworks
cmeiklejohn has quit IRC (Changing host)
cmeiklejohn has joined #arpnetworks awyeah: blech. I haet it when I f*ck up my boot loader. ***: ziyourenxiang has quit IRC (Quit: ziyourenxiang)
LT has quit IRC (Quit: Leaving) awyeah: quiet today. ***: vtoms has quit IRC (Remote host closed the connection)
vtoms has joined #arpnetworks
heavysixer has quit IRC (Quit: heavysixer) RandalSchwartz: "yeah ... a bit TOO quiet... " -: cedwards gets the chills. dxtr: I've written 9 pages now about what one should think of when creating a network for a mid-sized company
And I'm not done yet o
I'm hoping this will make me pass the course ***: schmir has joined #arpnetworks -: jdoe twiddles thumbs and waits for OpenSolaris 2010.03 RandalSchwartz: openOraclelaris ? jdoe: haha. right. dxtr: Wtf is this crap I'm about to write an essay on?
OCTAVE?
And no, It isn't GNU Octave
Wikipedia doesn't even have an article on it RandalSchwartz: then it doesn't exist, or isn't of relevance to nerds dxtr: exactly
Thing is it's a nerd course
IT-coordination ***: Aila has joined #arpnetworks dxtr: My second cousing thinks Computer Engineering and Chemical Engineering sounds boring
!! Aila: hi can anyone lend me a hand, i can't seem to get my reverse dns working... i'm running bind9 dxtr: And Master of Science in Engineering too!
RandalSchwartz: Let's do a ritual and sacrifice my second cousin ***: baklava has joined #arpnetworks
baklava has quit IRC (Changing host)
baklava has joined #arpnetworks RandalSchwartz: reverse dns?
has it been delegated to you?
do you have sensible master files?
do you have an offsite slave as well? Aila: yes it's been delegated to me
i have master files
no offsite slave RandalSchwartz: are the parent NS records correct?
wait - I should ask what the problem is, I guess. :) Aila: well
nslookup 174.136.101.162
gives error
** server can't find 162.101.136.174.in-addr.arpa: SERVFAIL
that's ns1.nullbnc.com which has a reverse set for it RandalSchwartz: lemme see
so 101.136.174.in-addr.arpa is served by arp
are you sure the delgation is in place? ***: vtoms has quit IRC (Quit: Leaving.) dxtr: 101.136.174.in-addr.arpa. 3600 IN SOA ns1.arpnetworks.com. gdolley.arpnetworks.com. 1004 28800 7200 604800 3600 :D RandalSchwartz: yeah - this is a problem - 174.101.136.174.in-addr.arpa is an alias for 174.160-175.101.136.174.in-addr.arpa.
Host 174.160-175.101.136.174.in-addr.arpa not found: 3(NXDOMAIN) ***: Aila has quit IRC (Ping timeout: 248 seconds) RandalSchwartz: it's delegated to an alias that doesn't exist
might be your problem, might be ARPs up_the_irons: jdoe: you're a solaris fan? RandalSchwartz: email support ***: schmir has quit IRC (Ping timeout: 276 seconds) up_the_irons: Aila probably didn't set up the zone name right, even though I tell everyone the zone name in advance. bob^^: reverse dns is confusing if you're new to it all
my solution: force everyone to read DNS and BIND before allowing them on the internet cedwards: that reminds me, I'd like to get reverse setup as well.
up_the_irons: email to support@ for delegation? up_the_irons: cedwards: yup RandalSchwartz: oop... gone before this
darn it
if they ask a question, they Must Stay (tm). cedwards: up_the_irons: what information do you need in the support request? just my name server(s)? up_the_irons: cedwards: IPs and PTR records required; or if you want delegation, your name servers. As always, include the VPS UUID so it is easy for me to find :) ***: Aila has joined #arpnetworks Aila: sorry RandalSchwartz, freenode kicked me off
soo
host 174.136.101.162
Host 162.101.136.174.in-addr.arpa not found: 2(SERVFAIL) cedwards: up_the_irons: sent. thanks. RandalSchwartz: ... it's delegated to an alias that doesn't exist
... might be your problem, might be ARPs Aila: http://pastebin.com/07svA1tv RandalSchwartz: ... email support
that's what I said after you left
did you understand what I pasted before?
ARP owns 101.136.174
and apparently they provide 174.101.136.174
which redirects to probably something you need to provide Aila: i got this in email when they delegated my ipvs block
So just name your zone "160-175.101.136.174.in-addr.arpa" and proceed to set up
your PTRs normally. RandalSchwartz: ahh yes... 160-175.101.136.174.in-addr.arpa name server ns2.nullbnc.com.
160-175.101.136.174.in-addr.arpa name server ns1.nullbnc.com.
those are you? Aila: yes RandalSchwartz: are you serving that domain Aila: ye RandalSchwartz: apparently, you aren't providing 174 in there
you should fix that Aila: yea i know
one sec RandalSchwartz: yeah - no SOA for Host 160-175.101.136.174.in-addr.arpa not found: 3(NXDOMAIN)
if I can't get an SOA for it, I'm not going to get records either
do you have a master file for that, and are you announcing it?
your port 53 is open, at least. :)
so's port 22. good luck with that. -: RandalSchwartz re-ports ssh routinely now ***: heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer Aila: ;) RandalSchwartz: so are you diagnosing the problem? Aila: here are my configs
http://pastebin.com/EjiVEZRs
i don't see what i'm doing wrong RandalSchwartz: I'm not getting that SOA from there
are you sure it has re-read your amster?
master?
ahh - I do see the soa now
says "refused"
might be a permissions things Aila: ah
try again, i just restarted bind RandalSchwartz: are you passing both tcp and udp 53? ***: sentabi has quit IRC (Excess Flood) Aila: yes
174.136.101.174 is defined in interfaces so not sure the prob there RandalSchwartz: I dunno either, but I gotta go Aila: ok cya jdoe: up_the_irons: I have a love/hate thing with Solaris. I respect it, I want to like it, but since I don't know it particularly well it's a painful experience. dxtr: jdoe: I read "I want to be like it" jdoe: up_the_irons: I love ZFS though, and since I don't trust FBSD's implementation (anecdotal experiences with similar setups to mine went poorly) I went with opensolaris.
dxtr: sure, I'll take Larry's yacht and billions of billions :P ***: sentabi has joined #arpnetworks jdoe: ... anyway, so far it hasn't fucked me too badly :P ***: sentabi has quit IRC (Changing host)
sentabi has joined #arpnetworks up_the_irons: jdoe: ah i c dxtr: Uhm..
What can one do from stopping unauthorized people from plugging in to my (wired) network and using it?
I don't see it :p
That's a question in my assignment
Doesn't say wired - but it doesn't say wireless either up_the_irons: dxtr: you could filter based on MAC address. Only authorized MAC addresses pass traffic through the switch.
there are other ways
google it
;) jdoe: dxtr: PoE. Just make sure it's a lot of P oE. dxtr: Wouldn't one need a really expensive switch for that? :P jdoe: naw, just a beefy power cable, a knife and some duct tape... dxtr: I was asking up_the_irons :) jdoe: I know, but my answer was better. up_the_irons: dxtr: i think a cisco 2924XL could do it, which is like $20 used these days dxtr: Cool jdoe: pretty sure it can.
you might not want the XL though, isn't that the 2U one? dxtr: isn't there like WPA but for wired? :D jdoe: ipsec plays nice with ipv6, so ... sure.
is it more trouble than it's worth?
oh fuck yeah :P dxtr: So basically the only thing I've got is to filter MAC addresses and lock in the switches? :P up_the_irons: jdoe: there is a 2U version of the XL, but the majority are 1U jdoe: ah.
I used to have the 2U one. up_the_irons: probably with an "FX" port (Fiber, but only 100 Mbps ;) jdoe: two iirc up_the_irons: yeah two jdoe: been a while. Thing was a heavy piece of shit :P up_the_irons: lol dxtr: Hm, kan pf filter my mac address+ jdoe: yeah, I've got two 3550s next to me now with the jumbo gbics. At least I hope they're gbics and not two giant 100mbit ports :P up_the_irons: pf can do anything
actually i dunno. ebtables on Linux can do MAC filtering. dxtr: And one thing; Let's say I'm really obsessed with just letting some people access the network
Wouldn't it be possible to first filter MAC addresses in the switch - but to let people connect to the internet they must connect to an openvpn server within the network
And that vpn have its own subnet
And firewall is only allowing that subnet to access the net so to speak
That would make it encrypted and safe
... right? :) DaCa: you might also want to look into authpf dxtr: Hey, thanks for the tip
I actually might start using that up_the_irons: dxtr: yeah sounds about right dxtr: FUCK YEAH! I'm kind of done with this course
Are there any good pdf readers for Linux? DaCa: epdfview, which is evince without the gnome bloat dxtr: Awesome
Thank you
I'd like an ncurses based pdf viewer :P DaCa: ps2ascii foo.pdf | less dxtr: cool ***: jasey has joined #arpnetworks jasey: ok
up_in_irons
who the fuck designed your site
it's like 2001 took a shit and it came out
that shit is fucking awful
can you please update it?
because it is really a disgrace
i'm from EFnet
from #sexytime
my name on there is jase
and i think your site is shit
do you loves it, honeybitch? -: jasey blows a sugarkiss jasey: bye baby ***: nesta has joined #arpnetworks
jasey has left
nesta is now known as aem
jasey has joined #arpnetworks jasey: sorry
i forgot to post my pic
this is what i look like
http://i46.tinypic.com/6qeebo.jpg
bye sugarniggers ***: jasey has left up_the_irons: LOL dxtr: Wat? aem: hahah up_the_irons: jasey dxtr: up_the_irons: He's your ex? ;) up_the_irons: i hope not dxtr: haha
do you know what sucks?
I got an A in a programming course that I just found out I already got an A in
...
Is that normal? :P jdoe: up_the_irons: disgrunted former customer? :P up_the_irons: jdoe: don't think so, probably random troll ***: schmir has joined #arpnetworks AndrewBC: silly internet monsters dxtr: What's the point of following a list on twitter?
Doesn't show up on the front page anyway ***: schmir has quit IRC (Remote host closed the connection) dxtr: http://twitter.com/IPv4Countdown :D up_the_irons: dxtr: hah nice!
and that's not necessarily how many IPs are available in your region.
who knows when ARIN will run out
if i sell out a few more servers, i'll have to submit another request to ARIN ***: heavysixer has quit IRC (Quit: heavysixer) dxtr: up_the_irons: pwnd :D
How many have you got now?
In total up_the_irons: 2 /21's and a /20
so equivalent to a /19 dxtr: cool
What do a subnet that size cost? :) up_the_irons: https://www.arin.net/fees/fee_schedule.html
$2250 per year ***: amdprophet has joined #arpnetworks dxtr: Cool
Wtf. End users? RandalSchwartz: this is going to be a close game... LAL vs PHX up_the_irons: end users can request IPs, yes RandalSchwartz: 1.5 spread for LA, 220.5 for the over/under (!) dxtr: up_the_irons: That's kind of awesome :p
I'll get an /18 block when I get a job o up_the_irons: dxtr: it's not all that easy though dxtr: Bummer
I'll have to bribe my ISP too? RandalSchwartz: ipv4 exhasution is coming soon dxtr: RandalSchwartz: Nowai
:) up_the_irons: http://twitter.com/IPv4Countdown RandalSchwartz: you'll have to buy from the highest bidder
that's why I got my /28 now up_the_irons: yep
LOL RandalSchwartz: I won't need most of them for a year or two
but I don't want to not have, or need to renumber up_the_irons: man, I should put that on my order page, "Get them now, before they run out!" dxtr: haha
Talk about advertisement
"Get your ipv4 address here before they run out!" RandalSchwartz: if you could even get a machine now. :)
or do you have that back online? AndrewBC: hint hin
t dxtr: I seriously spoke with a guy yesterday who didn't believe the address' would run out for at least 10 years RandalSchwartz: so he's seriously crazy dxtr: And that we wouldn't start using ipv6 within that period because "we'd have to update almost every single network card" -: RandalSchwartz . o O (network card?) RandalSchwartz: comcast is already starting to deliver v6 to homes AndrewBC: oh is that a thought bubble?
that's cute RandalSchwartz: I'm part of a pilot program dxtr: Because ipv6 addresses are 64 bit that mac address' are too! (Right? ;)) RandalSchwartz: 4 over 6 may be the new tunnel :) dxtr: And old, unupdated, network cards can only handle 32 bit mac addresses (Like todays... Right? ;))
I have no idea what he was talking about. I just ignored him after a while
I think he was on dope RandalSchwartz: network cards have no idea of v4 or v6
v4 and v6 are not layer 2
it's all layer 3 up_the_irons: RandalSchwartz: haha, machine will come soon, almost got everything in order dxtr: I said that too, but he said "Exactly! And most network cards are layer 1!", I proved him wrong and said something about ISA cards up_the_irons: RandalSchwartz: ChinaNet also is doing a ton of IPv6, and they have an IPv4 *decommission* plan already
they claim by 2016, they will no longer route IPv4 dxtr: My isp doesn't even have a plan to test IPv6 yet
:D
They're too busy digging down fiber everywhere RandalSchwartz: layer 1? voltage? :) up_the_irons: there's gonna be some cheappie IPv6 tunnel software that'll hit Windows machines, just you watch companies try to sell that
"See more of the Internet than you could before!" dxtr: Why not just use sixxs or he.net? :P up_the_irons: those are for technical users
i'm talking the masses dxtr: Fuck the masses! RandalSchwartz: well - thats' why comcast is hitting the massses dxtr: That's kind of my motto
"Don't like that my website looks the same in Opera and IE6!? FUCK YOU!" RandalSchwartz: comcast is "the" network for a large part of broadband america dxtr: Don't like that my website doesn't look the same*
RandalSchwartz: Gotta suck to have to rely on so few ISPs in such a developed country RandalSchwartz: we're hardly dveloped :) dxtr: Compared to Sweden? :D up_the_irons: ooO, found another big netblock to ban, owned by: http://delivery.net/ -: up_the_irons bans their /22 AndrewBC: yay email marketing dxtr: Haha AndrewBC: larger penis, please dxtr: I blocked 'em too! up_the_irons: if anyone is interested in my compilation over the past couple weeks: http://pastie.org/private/xiqsjmww4jlmxeiqlrwbaa dxtr: o up_the_irons: I use this file as follows (postfix): smtpd_client_restrictions = ... check_client_access cidr:/etc/postfix/rejections_cidr ... dxtr: I'm using pf ;) up_the_irons: nice dxtr: I'm currently blocking every single part of the swedish government too
Both at home and on my vps :D cedwards: up_the_irons: what are you using to compile the list? hopefully not manual log parsing. up_the_irons: cedwards: the spam i receive :) cedwards: up_the_irons: ohh, you actually get spam huh :) up_the_irons: i just look at the headers -: cedwards doesn't remember the last spam he got. up_the_irons: cedwards: yeah some still get through
so to weed those out, i look at the headers and see if I can find a marketing company behind it. i usually can cedwards: as i mentioned, my postfix config is pretty strict
plus postgrey, zen.spamhaus.org, spf policy.. it seems to catch all of it. up_the_irons: cedwards: what do you use for spf policy?
cedwards: i don't think i'm going to do grey listing, because of the mail farm problem and I don't like delays in my email cedwards: let me grab my config.. (my primary MX runs Debian stable)
up_the_irons: the delays aren't that bad, and the deay is configurable up_the_irons: cedwards: but i use most of the other techniques available to me dxtr: I use SpamAssassin + zen.spamhaus.org up_the_irons: damn, your pastebin post expired dxtr: That catches all of it cedwards: postfix-policyd-spf-python package RandalSchwartz: I use zen + greylist up_the_irons: the thing i don't like about spamassassin is it sucked so bad when i used to run it like 3 years ago. i had switched to dspam which worked SOOOOOOOO much better. but now I don't have the patience for "training"
i may have to give spamassassin another try
RandalSchwartz: greylist?
cedwards: ah i c RandalSchwartz: postgrey dxtr: up_the_irons: I'm even daring deleting my spam directly :D up_the_irons: RandalSchwartz: ah ok dxtr: because I ran it a couple of weeks - got some spam but never a false hit
So I'm thinking "What the hell!" RandalSchwartz: you need to whitelist with grey though
otherwise, some big ISPs lose
and from there, you need to run SA or something
SA doesn't hit often here, but when it does, it is cedwards: http://pastebin.com/QRpyvexf - master.cf up_the_irons: i have a few spam trap addresses, and i'm currently trying to think of something that could tie in spam I get to them, to OpenBSD's spamd / pf, somehow, so I can just block known spammers in real time. surely someone must have already done this :) RandalSchwartz: I used to do that cedwards: check_policy_service unix:private/policyd-spf in main.cf up_the_irons: cedwards: thanks RandalSchwartz: I had "if anyone offends me, their IP is blocked for two hours"
and offense had many levels
including triggering spamtraps
in fact, my setup was a model for the spam fighting cabal
especially my high-MX trap
whcih I haven't bothered with yet jdoe: up_the_irons: if you like living dangerously, deliver the spamtraps to a perl script (.forward or an alias I guess) and have it extract the ip up_the_irons: what does an spf check even do? I'm not familiar with SPF records that much jdoe: spf says "these hosts can send mail from this domain" cedwards: sorry about the slow pastes. i'm on my first-gen eeepc up_the_irons: RandalSchwartz: high-MX trap? RandalSchwartz: you cannot block *any* IP for longer than two hours though
since legit mail is likely also trying to get through
but two hours is enough to stop most zombies cedwards: up_the_irons: yeah. in DNS you define the domains/IP mail is allowed to come from. up_the_irons: jdoe: i c cedwards: up_the_irons: if a mail server is checking SPF (sender policy framework), and the incoming says domain.tld but doesn't match the definition, it's blocked. up_the_irons: cedwards: but will an spf check ever deny legit mail? RandalSchwartz: it might
my accountant needs to send foo@stonehenge.com
and they send from their ISP up_the_irons: jdoe: yeah, writing my own script to parse IPs is the last resort cedwards: up_the_irons: I haven't seen it. if the servers are configured properly. RandalSchwartz: so if anyone really noticed stonehenge.com SPF, it'd fail jdoe: up_the_irons: it's a bad idea. RandalSchwartz: you should just use it as part of a score up_the_irons: RandalSchwartz: mmm... that's kinda not good
RandalSchwartz: ah ok jdoe: up_the_irons: consider DKIM instead. dxtr: By the way guys, speaking of e-mai
e-mail RandalSchwartz: not a good/bad boolean dxtr: How come I can't mail to Hotmail from my domain?
They end up in the spam folder :/ cedwards: i've found most places don't bother with it (yet?) RandalSchwartz: you still write to hotmail?
who the hell uses that?
other than spammers
and windows users :) dxtr: My girlfriend :) RandalSchwartz: "same thing" dxtr: I could perhaps send a mail to someone and let them check the header to see what IP it comes frmo
Could it be an SPF problem? jdoe: up_the_irons: spf is more like a white/blacklist, dkim just says "I sent this email" ... so it's more for establishing trust. RandalSchwartz: windows is a pretty good virus-loading platform up_the_irons: jdoe: dkim looks interesting cedwards: if you've configured your SPF definition properly, I don't see it causing problems.
should just stop spoofing the from domain. dxtr: Oh, SPF is an actual DNS thing
Cool :D jdoe: up_the_irons: yeah, and plugs nicely into sendmail/postfix.
I've never actually filtered on it, but the BIG BOYS like incoming email more if it's DKIM signed.
and since I still want to email people at hotmail/gmail/yahoo occasionally... cedwards: did ya'll know you can filter your gmail by language? RandalSchwartz: offensive language? cedwards: i used to get tons of russian and chinese spam. i applied basically if:chinese -> trash, and it's no more.
RandalSchwartz: spoken language. spanish, english, russian, etc RandalSchwartz: people speak russian? up_the_irons: hehe ***: mhoran_ has joined #arpnetworks RandalSchwartz: only if they're *spies* -: cedwards suppresses a 'in soviet russia' joke. ***: Aila has quit IRC (Ping timeout: 265 seconds) jdoe: routing go boom again? mhoran_: Looks like it. ***: hsbt has quit IRC (Ping timeout: 260 seconds)
diatribes has quit IRC (Ping timeout: 260 seconds)
mhoran has quit IRC (Ping timeout: 252 seconds)
diatribes has joined #arpnetworks
koan has quit IRC (Ping timeout: 260 seconds)
mick_laptop has quit IRC (Ping timeout: 276 seconds)
hsbt has joined #arpnetworks
Wraithan has quit IRC (Ping timeout: 264 seconds)
BarberRonny has quit IRC (Ping timeout: 264 seconds) up_the_irons: W.T.F. ***: mick_laptop has joined #arpnetworks mhoran_: Oh, there it is. -: jdoe BLAMES up_the_irons ***: mhoran has joined #arpnetworks
ChanServ sets mode: +o mhoran
Wraithan has joined #arpnetworks up_the_irons: Mzima dies AGAIN mhoran: Damn. up_the_irons: They stopped sending me routes at 12:30AM this morning
Had it fixed by like 1:30PM dxtr: Uhm.. To add an SPF record I'd do something like: dxtr.cc. IN SPF "v=spf1 a mx -all" mhoran: Yeah, I noticed something this morning. dxtr: ? up_the_irons: now appears I am still getting routes, BUT THEY ARE NOT PASSING TRAFFIC mhoran: That sucks. ***: mhoran_ has quit IRC (Quit: leaving) up_the_irons: Well, I sent off an email to Global Crossing today mhoran: Word. up_the_irons: I think I'll also revive my discussion with Level3 :) RandalSchwartz: damn routes cedwards: dxtr: at a glance that looks aout right ***: BarberRonny has joined #arpnetworks RandalSchwartz: damn trafifc
it should all Just Work mhoran: Man, they've been pretty stable up to now, up_the_irons ?
This is all since the merger/takeover/whatever it was? dxtr: cedwards: Awesome :) ***: koan has joined #arpnetworks up_the_irons: mhoran: this is all since yesterday :) cedwards: dxtr: because i have to relay_host through my isp, i have to include their mx in my spf too up_the_irons: mhoran: so yeah, i figure the takeover has something to do with it. some people do a takeover well, some others day, "Let's 'reorganize' and 'integrate' this into our network", and then they blow it all up mhoran: Yeah. cedwards: cedwards: not optimal, but it's better than nothing. dxtr: cedwards: talking to yourself? mhoran: Har har. up_the_irons: that happens to me sometimes cedwards: dxtr: erg. yes -: cedwards curses this damned eeepc 701 keyboard dxtr: cedwards: To do that one would do "v=spf1 a mx mx:mail.isp.tld -all" ?
Or add one more SPF?
add another cedwards: dxtr: let me look at mine dxtr: No!
Look at mine instead ;) cedwards: dxtr: v=spf1 a mx include:xmission.com ~all dxtr: You see what I did? I made a homoerotic joke
Is xmission your isp?
That's a horrible name cedwards: dxtr: it is. they are an awesome isp though.
dxtr: the ceo is an old geek. comes to user group meetings and everything. dxtr: We have ISPs that are named "The Broadband Company", "Broadband2", "Bahnhof" and stuff
The first two are translated :P cedwards: static IPs are company policy. they support 'home services', which most others frown upon. dxtr: Home services? cedwards: like mail, web, etc services on residential connections. dxtr: Mkay
Well, I've got a static IP and 100Mb
That's enough for me cedwards: the other telecoms around here list that as against policy, although don't always enforce it. dxtr: Oh, and I'm allowed to have those home services :)
At least last time I checked the contract a couple of years ago
Now Telenor have bought the ISP
And I hate Telenor cedwards: generally isps here suck. dxtr: ISPs here are generally good - but it has taken a turn to the worse ***: aem has quit IRC (Ping timeout: 240 seconds) cedwards: when your down speed is 1.5M, then you can complain to me. ***: aem has joined #arpnetworks RandalSchwartz: I'm still only a few blocks away from my machine at ARP.
I should visit :)
and oversee.net has a high-speed to wilshire, so my ping times are undre 2ms from work dxtr: cedwards: I don't think we ca get that low
The lowest we can get here is 2Mbps :D cedwards: dxtr: my DSL is 1.5M down, ~768 up. It's _pathetic_, yet my only option. jdoe: I don't bother with DSL here. cedwards: i get better speeds on my air card, or tethering through my mobile phone. dxtr: My fiber is 100Mbps down, 10Mbps up. I think that's pathetic :7
:/ jdoe: cedwards: presumably shitty latency though ;) dxtr: I want 100Mbps up!
Honestly
Preferrably 1000Mbps down (I think it's availble in some places here) cedwards: i have a rental property that can get 30M up/down.. but I don't want to live in it
..although the internet speeds are inviting. dxtr: I think some ISP here (TeliaSonera or something) started with a gigabit connection for like $100 USD each month or something
$100 US* RandalSchwartz: At least with fiber, you're regular. :) dxtr: What do you mean? cedwards: ~rimshot RandalSchwartz: heh dxtr: Gah
Man
I hate you :p
I was like "WTF?" RandalSchwartz: A bit... backed up? :) dxtr: I ate moms chicken the other day and I'm still quite loose after that experience cedwards: it is just a series of tubes after all. RandalSchwartz: until the poker chips block it! dxtr: Okay, it's 04:43
I don't know how you guys manage to stay up all nights every day and still do some work day time RandalSchwartz: this isn't night yet dxtr: See!
It's early morning and you're like "It isn't night yet" RandalSchwartz: damn round earth!
why can't it be FLAT? dxtr: According to FES it is RandalSchwartz: FES? dxtr: Flart earth society RandalSchwartz: the third largest city in morocco? dxtr: https://secure.wikimedia.org/wikipedia/en/wiki/Flat_Earth_Society RandalSchwartz: ... http://en.wikipedia.org/wiki/Fes dxtr: "The Flat Earth model depicts Antarctica as an ice wall surrounding a disk shaped Earth" RandalSchwartz: Flywheel Energy Storage?
Foundation for Ecological Security? cedwards: i've heard of the FES RandalSchwartz: Fuerzas Especialies?
Foreign Exchange Student? dxtr: If I'm not mistaken they believe the earth is flat, surrounded by an ice wall and resting on a FRIGGIN' TURTLE RandalSchwartz: it's turtles all the way down
well - objects first, then turtles cedwards: a round earth and photos from space are government conspiracies. dxtr: I like turtles! cedwards: ninja turtles? RandalSchwartz: turtles all the way down = slow all the way down
ninja turtles are amongst us dxtr: Q. If the planets are round, why isn't the earth?
A. The earth is not a planet.
Bahaha RandalSchwartz: literally it isn't
since planet = "wanderer" dxtr: Q: "Why does gravity vary with altitude?"
A: The moon and stars have a slight gravitational pull. RandalSchwartz: earth does not "wander" from our observation dxtr: Q: "If gravity does not exist, how does terminal velocity work"?
A: When the acceleration of the person is equal to the acceleration of the Earth, the person has reached terminal velocity. RandalSchwartz: o/~ because the world is round... it turns me ooooooon o/~ dxtr: :D
They say there is no gravity
We stay on earth because it is going upwards RandalSchwartz: gravity... is heavy, dude. dxtr: http://www.theflatearthsociety.org/tiki/tiki-index.php?page=Gravity cedwards: gravity is a series of tubes? dxtr: Q. Can't we just circumnavigate the earth by traveling in a straight line without a navigational aid?
A. It is not possible to travel in a perfectly straight line for very long without a navigational aid. cedwards: dxtr: are those all from that site? RandalSchwartz: I use a ruler dxtr: cedwards: tes
yes*
http://www.theflatearthsociety.org/tiki/tiki-index.php?page=Form+and+Magnitude
http://i23.tinypic.com/nwkp5t.jpg <- Apparently that is the edge of our world
http://www.theflatearthsociety.org/tiki/tiki-index.php?page=The+Ice+Wall
And apparently there are temperatures near 0K reaching the other side of the wall
Or, well, if you try to walk them
http://www.theflatearthsociety.org/tiki/tiki-index.php?page=High+Altitude+Photographs
"
The only pictures which show the horizon as an arc of a circle are NASA's space photography. NASA is a fraudulent organization and is not to be trusted."
http://www.theflatearthsociety.org/tiki/tiki-index.php?page=Undersea+Cables
They've got to be kidding AndrewBC: lol
so the sun is a spotlight, too
wonder how they explain video where the continent comes out of the darkness on one side and then disappears on the other side every time
"Oh, shit you're right. It's not flat, it's a ring"
"And we must be on the outer edge! dxtr: hehe ***: mrbit has joined #arpnetworks mrbit: hello.
admins in?/
are the 20$'s rly sold out?
vps
i need one pretty quick if you can RandalSchwartz: for now
everythign is sold out mrbit: 30's?
rly? RandalSchwartz: more machines coming soon mrbit: nothing at all? RandalSchwartz: put your request in mrbit: ugh
ok RandalSchwartz: might fulfill in a week or two mrbit: on ur site i suppose? RandalSchwartz: my site? hardly
go to arpnetworks.com :) mrbit: you know what i meant i hope
heh
arps site RandalSchwartz: I'm just a customer mrbit: i realize that :) RandalSchwartz: but the admins hang out here a lot mrbit: I miss my arp box
:D
and my awk one
what happened to awk? RandalSchwartz: awk ? mrbit: i need one in la
i was rly looking forward to getting one of the vps' tonight but i'll just get one when you guys get some more in RandalSchwartz: "you"? mrbit: ?
"me"?
yes.. RandalSchwartz: when "you guys"
who the hell are you talking to? mrbit: the arp staff RandalSchwartz: yeah, they aren't here
not right now mrbit: yeah well i'm sure they'll see it later randal
:) RandalSchwartz: but you make it sound like it's *us*
and it's not mrbit: oi vey
.. RandalSchwartz: far more non-ARP here than ARP mrbit: quite a smartass you are sir RandalSchwartz: so please speak appropriately
no - just interested in actual conversation
not crap mrbit: Please do not be a jerk.
i'm just inquiring RandalSchwartz: please speak appropriately then mrbit: heh RandalSchwartz: this is a support channel for ARP mrbit: are you on the right network? efnet was a left turn RandalSchwartz: not a personal channel from YOU to ARP
so please carve off a clue mrbit: i'll carve some /ignore in your very long nick RandalSchwartz: If only you'd also stop speaking here, it'd be a good thing
since you seem to be a few cards short of a deck mrbit: wow, you've really god a attitude man.
god=got RandalSchwartz: yeah - I want people to make sense here
you don't mrbit: I did make sense.
You're being a jerk. RandalSchwartz: please read scrollback mrbit: i'll just idle and wait
thx for letting me know they're not here Randal RandalSchwartz: clearly you haven't been idling here mch
and now you are, and think it's your personal channel to ARP mrbit: i'm pretty sure I just joined. RandalSchwartz: and it isn't mrbit: i don't have time for u.
pz RandalSchwartz: so I'm letting you know that you're inappropriate
and "u" is for SMS, not IRC.
if you're paying for IRC by the character, sucks to be "u" mrbit: do I know you from somewhere?
or are you just an asshole to everyone that makes a typo? RandalSchwartz: Probably not
And I'm guessing you're about 17
right? mrbit: do you think they appreciate your talking to potential c ustomers like you are? RandalSchwartz: *my* potential customers?
hardly
again, you confuse me for someone from ARP.
I'm just a customer. mrbit: :)
you're so cute.
like a lil teddy bear RandalSchwartz: You're likely not my type mrbit: that peaks anal english
on irc RandalSchwartz: Yeah - definitely 17
maybe even 16.
somewhere in there.
Where you're still trying your "stance"
and have to challenge anyone not aligned with you
instead of just embracing them
and recognizing what works and what doesn't
I remember that era
More important to be "right" than be "useful"
"I want a box tonight" ... also typical 17-year-old unrealistic behavior mike-burns: I never really noticed, but that is a very long nick. RandalSchwartz: I'd like it to be shorter
but that's the name they gave me mike-burns: It's a good name, no doubt. RandalSchwartz: I tried using just Merlyn for a while
but I never legally changed to that
even though I had ideas of doing that
It's a crappy name, actually
Randal - what, not "ll"? mike-burns: It took me a few months to realize that RandalSchwartz and Merlyn were the same (back when I was a Perl dev). RandalSchwartz: Schwartz - are you kidding me? mike-burns: The non-double-L is unique!
Makes you memorable. RandalSchwartz: unique = nobody gets it :) mike-burns: Well at least it's shorter---short enough to fit in an IRC nick, even. RandalSchwartz: As bad as if it was Råndäl :) mike-burns: One more L and you might be over the limit. -: mike-burns is too lazy to actually count. RandalSchwartz: Apparently RandalSchwartz is short enough here
although much longer, and it wouldn't
we're interviewing a key guy from Freenode tomorrow mike-burns: Well it's a good thin you don't have that extra L! RandalSchwartz: I'll ask him mike-burns: Smart idea. RandalSchwartz: for FLOSS Weekly
Dan Lynch helping me
from Linux Outlaws mike-burns: Not familiar with him, but that sounds like a nice mashup.
Are you going to tell him that FreeBSD is better than Linux? RandalSchwartz: there are people who are saying "OMG - linux outlaws *on* twit?"
but in fact, no
Linux Outlaws is its own show
I would not pretend to replace or compete wiht that mike-burns: Fair enough, though I'm sure you could take them. RandalSchwartz: no - he does a news show
this weeks releases, important things
my shows are timeless
you can listen to my show a year from now and learn something mike-burns: Ah, I see.
So he's trying to get in on the timeless action. RandalSchwartz: no - I need a co-host
and we've already chatted mike-burns: For when people time travel and need to be in a time-free environment. RandalSchwartz: heh mike-burns: Well it's time for me to sleep. Have a good one. mrbit: g'night mike AndrewBC: flying backwards flips have been deemed 10 times more effective than barrel rolls: http://www.youtube.com/watch?v=_Ez5QPW-ku4 ***: aem has quit IRC (Ping timeout: 260 seconds)
j3m has joined #arpnetworks jdoe: lol scrollback up_the_irons: RandalSchwartz: how long are you in LA for? I should show you your machine
RandalSchwartz: I actually like Merlyn for you; you should keep it
jdoe: yeah the scrollback was pretty good
mrbit: there is no way to get a vps tonight, sorry. You could try Slicehost or Linode or RootBSD, I think they have pretty quick setups (I know Slicehost is like within an hour)
Port: py-policyd-spf-0.7.1p0
Path: mail/py-policyd-spf
Info: external SPF policy checker for postfix
I found what cedwards is using, in an OpenBSD port mrbit: I can wait up_the_irons, thank u
However your guy here.. Randal is quite rude.. up_the_irons: RandalSchwartz isn't my guy, just another dude like everyone else...
and I LOL'd at your conversation mrbit: right, i was just saying he's pretty damn rude up_the_irons: don't worry about it; if anyone pushing bits on IRC affects you that much, you have bigger problems. I was just told earlier my website looks like 2001 took a shit on it, and look I'm still happy mrbit: heh
just commenting man up_the_irons: same
:) mrbit: ^--pretty obvious i ignored him
after the taunts
any idea when arp is going to get soem vps' in? up_the_irons: mid-June or thereabouts mrbit: wow.. up_the_irons: unless someone wants to lend me $5K mrbit: right on. I'll fill out that form on your site then
you just need some more machines and a rack?
well thats awesome man
you're doing great if you sold out
haha, i just read that 2001 took a shit..... part
missed that
who cares what it looks like? the entire point of a site is to relay info
:)
right? up_the_irons: I have the additional cabinet now, and everything that went along with it. Basically expanded my cage in LA. Now I just need another box. mrbit: wish i could send u this 2u
i'm taking it to my old work tomm
they're letting colo for free up_the_irons: mrbit: you got that right. everyone who likes the site says the same thing, it's just to relay info
mrbit: where are you located? mrbit: i'll get ya one if you hook me up :)
Chattanooga, TN
box is going to vpntranet.com
i had worked there for 5 years up_the_irons: yeah I can't compete with free ;) mrbit: working for kmctelecom, centurytel
and locals up_the_irons: I used to do a lot of colo, but it is so low margin now
it's like, what is the point mrbit: yeah, you lose $
i've already looked into a room myself
so i can do both
that anothe 2 years down the rd up_the_irons: yeah, and everything is going virtual anyway. why worry about hardware when I can do it for you ;) mrbit: heh, cause i'm preparing my own :)
i like to make money too up_the_irons: yeah mrbit: i just wanted a vps to hook my buddies up with some ipv6 hsots for irc connections up_the_irons: cool mrbit: no charging anything
t
june's good though
its always good to haev an extra ipv4 for dns too up_the_irons: yeah mrbit: i like to spread them out like they were intented for
are you a cig smoker ? up_the_irons: mrbit: no
odd question, why? :) mrbit: not prying, was just gonna let you know about these Gauloises if you did up_the_irons: I live in CA, not many people smoke here anymore ;)
laws have got so tight
not that I ever smoked anyway mrbit: i'm going to be in cali in 6 weeks
first time ;) -: mrbit is excited up_the_irons: mrbit: what city? mrbit: outside of la about an hr
i forgot what city he said up_the_irons: don't smoke in Burbank or Glendale in public, you'll get a citation ;) mrbit: but we're goign to newport beach
to hang out with my friend ed
talk business up_the_irons: ah
Newport Beach is cool mrbit: so i hear
ed's got a beachhouse tehre
there amdprophet: it's illegal to smoke within 15 metres of any business here now mrbit: yeah,i heard that.. amdprophet: and no smoking in pubs or restaraunts up_the_irons: amdprophet: where are you located? mrbit: getting straight nazi with the cigs there amdprophet: vancouver, bc up_the_irons: ah mrbit: ohh vancouver
wow..
didnm't know that
if i were around more non smokers
I wouldn't smoke at all
I don't smoke when I'm around non smokers amdprophet: i've got my motivation, my grandma just died from lung cancer up_the_irons: sucks amdprophet: heavy smoker mrbit: my dad passed in 05 from it
he smoked like a chimney too
winston 100's up_the_irons: wow mrbit: yeah man, its rough seeing someone die light that..
light=like
gasping for their last breathe
i quit for 6 months afterwards
then fell right back amdprophet: :(
my addiction is fast food... i'm trying to stop mrbit: thats just as bad
depending on what you eat there amdprophet: i've gained a lot of weight in the past 3 years, went from 130 to 195 mrbit: damn! up_the_irons: my new addiction is CoD: MW2 amdprophet: rofl
that's got to be the worst addiction
kills millions each year up_the_irons: amdprophet: 130 to 195? damn dude mrbit: thats rough up_the_irons: i went from 150 to 175 one year, but i'm back down to 160 mrbit: you guys probably aren't going to believe this
but i'm going tno tell ya anyway
wtf not..
so i get up this morning.. i let the log out front.. jump in the shower
i get out of the shower go to my bedroom
2 girls in my bed
going at it
and taking pics of each other with my cannon rebel xti
I thought i had really lost it.. like about to get sent to t he looney bin for seeing shit lost it amdprophet: only 2 girls? i woke up next to 30 this morning mrbit: nice
mad props fatty
=P
lol amdprophet: rofl
i'm not fat... yet
i was underweight before, now i'm just slightly overweight up_the_irons: wait a min... if they took pics with *your* cannon rebel xti... then we want to see pics mrbit: hehe, just teasin ***: j3m has quit IRC (Read error: Operation timed out) mrbit: ok
hold on up_the_irons: lol amdprophet: pics or it didn't happen, awaiting for a PM up_the_irons: yup, that is the rule around here it seems mrbit: ohh it happened.. i'm plugging the cam in no w ***: j3m has joined #arpnetworks amdprophet: i think i completely fail at IPv6 tunnelbroker in openbsd mrbit: i should have known that requewst was coming
lol up_the_irons: srsly mrbit: ipv6 damn near sets itself now days up_the_irons: amdprophet: i tried to do a 6to4 router in openbsd, then found out it wasn't supported b/c of security concerns amdprophet: really...
how recently? mrbit: what ver? amdprophet: i'll probably rip my hair out if it's still not supported up_the_irons: mrbit: my airport extreme does everything automatic, it is nice. only sucky thing is if your local 6to4 tunnel is messed up, you'll lose all traffic aimed at ipv6. most people won't even know what is wrong.
I think I tried it with 4.4 amdprophet: OpenBSD risor.teralink.ca 4.6 GENERIC.MP#81 amd64 -: amdprophet hopes it's supported now mrbit: obsd is a bit more picky with 6 up_the_irons: http://old.nabble.com/git0-tunnel-with-any-remote-endpoint-td22868545.html
"The major difference and also the concern for security is that the
remote endpoint (where the packet will be forwarded to) is determined
from the IPv6 address, eg 2002:aabb:ccdd:: becomes aa.bb.cc.dd. mrbit: mmmk up_the_irons: There are a lot of security pitfalls in 6to4 and if I recall correctly
that is the reason why OpenBSD does not support 6to4. IMHO that was a mrbit: picking out some good ones i guess up_the_irons: just decision. " mrbit: one chubster
and one skinny redhead
both freaks. -: amdprophet waits for a rick roll up_the_irons: amdprophet: it can still do v6 over v4. just not 6to4 anycast mrbit: kinda makes me wanta leave the door unlocked more often
my luck i'll get stabbed in the face one day -: amdprophet walks through mrbit's door and stabs him in the face mrbit: MY EYE! up_the_irons: "Yes officer, I heard a chubby girl and crazy red head were gonna stab him in the face" amdprophet: lol up_the_irons: If you go missing, I'll call the Chattanooga PD on your behalf amdprophet: RandalSchwartz: you around? mrbit: wtf, why isnt my ftp rnuning amdprophet: FBI up_the_irons: what is the difference between amavis, amavis-new, and amavis-ng. I hate it when projects get confusing like that. amdprophet: wow..
yea i can't stand that either
anyone using an android phone here? up_the_irons: not i amdprophet: i switched to a nexus one from my iphone 3g, i'm loving it so much
especially since the 2.2 update mrbit: i like my droid up_the_irons: a buddy has the Incredible and he loves it mrbit: its faster than the nexus
not stock
but after i tweaked it amdprophet: were you comparing it against a tweaked n1? mrbit: ohh yeah i neglected to mention
they broughth beer too amdprophet: awesome mrbit: and various other narcodics
i just saw the pic and reminded me
ok
uploading some now
damn the camera does add weight
tits and ass look bigger on the blonde amdprophet: if i'm tunnelling, should i need to change my PF config? mrbit: http://www.ifconfig.net/wtfnicemorning up_the_irons: amdprophet: client or server? amdprophet: up_the_irons: it's for tunnelbroker up_the_irons: "The requested URL /wtfnicemorning was not found on this server" mrbit: ahh yeah
perms up_the_irons: amdprophet: not sure amdprophet: http://pastie.org/private/qnba43qcxkxeob70rczktq
is that 6to4 or v6 over v4 up_the_irons: looks like 6 over 4
HE uses a /128 for the endpoints? shame shame
but shouldn't that be /127 anyway?
if they 'did it right', it'd be a /64 for the endpoints amdprophet: /128 would have 0 available hosts, wouldn't it?
just broadcast + network addy mrbit: blam
http://xerxes.ifconfig.net/wtfnicemorning/
i took the camera away anbd took advantage..
sorry
ill take more nude pics next time
lol oops i left incriminating evidence in there
me amdprophet: lol mrbit: after that.. I'm buying a damn camera tomm
hidden cam
they all want to do a porn site now
i say "well, go recruit some more friends and we'll see what we can do.." up_the_irons: LOL amdprophet: rofl up_the_irons: I'll host it mrbit: hells yeah you're in cali up_the_irons: your camera is quite good mrbit: legal amdprophet: I'll be quality control mrbit: i <3 that camera
i got it for free too up_the_irons: rofl mrbit: scammed dell.com
lulz
i wanta nikon to go along with it
and that new samsung
touch screen camera
7:
"
everyone done yet?
wget
so i can rm amdprophet: safari froze
one sec mrbit: heh amdprophet: k thx mrbit: yup AndrewBC: uno momento! mrbit: i said hurry andn wget AndrewBC: meh, nevermind, I didn't install wget up_the_irons: bah i was only half way thru AndrewBC: would take too long mrbit: bah.., heh AndrewBC: I saw the last picture though. Pretty cute up_the_irons: i did wget --mirror, but alas, already gone mrbit: hold on..
u guys ready?
get them qjuick up_the_irons: yep AndrewBC: consider me done
thanks though :) mrbit: k
go up_the_irons: weee mrbit: yay wandering strange..
heh -: mrbit write a note in his appt book for a test mrbit: gharnaherpachipliaids
get them? up_the_irons: yep mrbit: thats some odd shit
not normal anyway
not that im complaining
come one come all
bitches in bits bedroom
i'll name the new video that up_the_irons: srsly that's a good name mrbit: that would be a sweet job
wonder if i got anymore beer.. i hope so.
berb up_the_irons: amdprophet: the /128 is odd. that's one and only one IP amdprophet: hmmm mrbit: i wish dood would give me the money to order this g5 LCD already amdprophet: it's what he's autoconfigure script gives me mrbit: its just been sitting by the fireplace without a screen
looks so out of place up_the_irons: "/128 when it is absolutely known that one and only one device
is connecting"
RFC 3177
Note that that is only a recommendation mrbit: i can't wait to get spackles bsd setup script back
i'm getting that tomm
*ramble ramble*
hahahahah, i left a good one out.
hold on.. up_the_irons: lol mrbit: i'm not right..
i should have captioned that
www.ifconfig.net/wtf
that's me discovering what's going on in my room up_the_irons: LOL mrbit: caption "Hrm.. What's this.. :)"
what channels am i missing on here
other tha freesideatl
i want a box a netdepot.com
don't wanta pay that though
>.<
i rly need to do something with that domain
whats to do out there in a shrot business visit?
where should an out of stater visit for sure .. up_the_irons: nothing really mrbit: whoa
http://chattanooga.craigslist.org/bfs/1736375957.html
check it out
not bad