[00:50] *** awyeah_ has joined #arpnetworks [00:52] *** toddf has quit IRC (Ping timeout: 276 seconds) [00:52] *** awyeah has quit IRC (Ping timeout: 276 seconds) [00:52] *** mike-burns has quit IRC (Ping timeout: 276 seconds) [00:54] *** mike-burns has joined #arpnetworks [00:54] *** ChanServ sets mode: +o mike-burns [00:56] *** toddf has joined #arpnetworks [00:56] *** ChanServ sets mode: +o toddf [01:00] *** schmir has joined #arpnetworks [01:12] *** LT has joined #arpnetworks [02:22] *** schmir has quit IRC (Ping timeout: 252 seconds) [02:54] *** nakano is now known as nakano_ [04:04] *** nakano_ is now known as nakano [04:09] *** schmir has joined #arpnetworks [04:58] *** schmir has quit IRC (Remote host closed the connection) [04:59] *** ziyourenxiang has joined #arpnetworks [05:48] *** razorluv_ has quit IRC (Quit: leaving) [06:42] *** heavysixer has quit IRC (Quit: BAMPF!) [07:51] *** awyeah_ is now known as awyeah [07:52] Anyone here use any of the desktop search apps? Like copernic or X1? [08:22] *** Lefty has quit IRC (Quit: Lost terminal) [08:55] *** heavysixer has joined #arpnetworks [08:55] *** ChanServ sets mode: +o heavysixer [09:16] *** LT has quit IRC (Quit: Leaving) [09:20] *** Lefty has joined #arpnetworks [10:00] *** wallshot has joined #arpnetworks [10:11] "submit one traceroute output (ipv6) per day" ... "sorry, you've already submitted an ipv6 traceroute within the last 24 hours" [10:11] that's not 1 per day! [10:12] unless you script something to drop it in on 24 hours to the second [10:16] I've crontabbed it. [10:16] *** nakano is now known as nakano_ [10:16] *** nakano_ is now known as nakano [10:16] if it misses one once in a while to being a few seconds too early.. no real loss to me. [10:17] I have it automatically getting new IPv6 addresses to use each day. then mark that IP as used, so that is doesn't try to use the same one a second time. [10:17] *** nakano is now known as nakano_ [10:23] yeah i'm thinking a new ipv6 alias and outputs in a cronjob would be nice [10:31] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang) [10:50] wallshot: the basis for the scripts I crontabbed: http://www.tunnelbroker.net/forums/index.php?topic=975.0 [10:51] I modified the scripts and DB schema slightly. If you try to reuse the same hostname/IP, it gets rejected. so I added a column for "State" which defaults to 0 (unused) and after teh submission script is run.. rather than deleting the entry, it changes "State" to a 1 (used) I also makde the IP column "unique" so I can parse the feed multiple times, and don't get duplicate entries. [10:52] nice [10:52] way more complex than i was thinking [10:52] I parse the feed once a day, for new entries. and run the submission script once a day also. [10:52] thought i'd have a script that generated an ip based on how many days it's been since sept 27 or something [10:52] it's not really that complex. very simple DB schema.. and the person who posted the script did all of the real work. [10:53] so it just kept incrementing day by day [10:54] Submit traceroute where? [10:54] he.net's ipv6 "certification" thing [10:54] It's in the script. ;-) [10:55] dxtr: ipv6.he.net/certification [10:55] Oh, right [10:55] fun little ipv6 learnign thing [10:55] I learned a bit, and will get a free t-shirt. not bad for something I was interested in anyway. [10:56] will I get a t-shirt if I live in Sweden? :D [10:57] *** ziyourenxiang has joined #arpnetworks [10:58] I didn't read anything about it being open to only US addresses, but you may want to email ipv6@he.net and ask. but honestly, even without the t-shirt, it's a decent learning tutorial to go through the tasks [10:58] I WANT THE T-SHIRT! [10:58] lol [10:58] :) [10:58] There's a TSHIRT?? [10:59] *** ziyourenxiang has quit IRC (Client Quit) [11:00] jpalmer: they accent non-US addresses, I just expect things will take longer. [11:00] jpalmer: ... and if you're in Zimbabwe or something, who the fuck knows. [11:00] s/and/though/ [11:00] zimbabwe? i thought that place was fictional :P [11:00] j/k [11:01] tooth: yeah [11:01] I dunno. They also said like... 4-6 weeks or something, didn't they? [11:01] tooth: pictures: http://groups.google.com/group/windows/web/no-bots [11:01] oh shit it's tooth [11:01] buh [11:01] jdoe: So, I'll get my t-shirt around the time my new 60" plasma TV gets delivered. [11:02] jpalmer, link doesn't work for me. [11:02] tooth: hah. bad copy/paste. my bad. sec [11:02] http://www.tunnelbroker.net/forums/index.php?topic=1069.0 [11:05] dude, if you think that's bad you need to see the back :P [11:05] http://broquea.corp.he.net/v6shirt.png [11:06] They have to give them away because nobody would buy it. [11:08] do they tell u when they ship it, or does it just happen all automagically when you hit sage? [11:08] you have to verify your address. [11:08] yeah i just did that yesterday [11:08] and chose my size [11:09] omg excellent nerd shirt! [11:09] yeah, that's it, I think. [11:09] not really. [11:09] but it might make a great rag :P [11:09] i find that some of the coziest tshirts i have are good rags [11:10] I find that some of my best rags make the coziest shirts. [11:11] so i actually punched in the ipv6 address from back of shirt into my browser, and felt a moment of "oh duh" when it pulled up the he.net ipv6 page [11:12] lol [11:12] * jdoe golf claps [11:14] LOL [11:44] *** nakano_ is now known as nakano [11:56] *** plundra has quit IRC (Ping timeout: 240 seconds) [12:00] *** plundra has joined #arpnetworks [12:01] I'm not going to lie. e.net needs more tests. that was kinda enjoyable. we'll have to think up a few, and suggest them. [12:03] there aren't really many tests you can do. [12:03] do you have a functioning ipv6 mx? check. [12:03] do you have a functioning ipv6 dns? check. [12:03] does your registrar share the love? check. [12:04] oh right, website too. [12:04] (check.) [12:04] tis true, they got despeate for "more tests" when they made with the 100 daily submisisons thing [12:04] *** shansa has joined #arpnetworks [12:04] i think 10 would have been enough [12:14] *** heavysixer has quit IRC (Ping timeout: 276 seconds) [12:16] *** plundra has quit IRC (Ping timeout: 255 seconds) [12:23] *** shansa has quit IRC (Quit: leaving) [12:34] *** heavysixer has joined #arpnetworks [12:34] *** ChanServ sets mode: +o heavysixer [12:36] *** plundra has joined #arpnetworks [12:37] jdoe: yeah, but there are other things you could do, to get more involved. maybe something along the lines of "request that /48, and subnet it" or asking some routing questions so that people get deeper into that aspect of ipv6. I see (and have personally HAD) issues with autoconfig not working right.. so maybe some tests that help you learn and fundamentally understand those aspects [12:37] actually, hrm. let me share those ideas with HE. brb [12:38] eh [12:38] the problem is that a lot of stuff is still in flux [12:38] sure [12:39] ie DHCPv6 which is poorly supported at best. [12:39] (isc dhcpd only supports it recently, almost no client oses do) [12:40] the /48 would be fun [12:41] and, some of it is probably a little more outside of HE's scope. I mean, I assume HE's goal behind this is #1) to drive understanding. #2) to help educate the masses, #3) those masses to help educate others (by doing things like asking for reverse delegation, and such) #4) to quantifiably demonstrate that IPv6 is growing (every domain that gets glue, is counted in those adoption rates, helping drive the effort) etc. [12:41] seems you can allocate a /48 on he.net's tunnelbroker, for people who aren't already offered one by arpnetworks [12:41] with that in mind, the routing/subet aspects help with #1, and maybe #2) but not the rest. [12:41] just click "Allocate /48" link on the tunnel details i guess [12:42] so he.net should totally have you play with that [12:42] Yeah, I have a half dozen /48's now. [12:42] wallshot: yeah, they already have the infrastructure for it. [12:42] "Let the enumeration of the grains of sand of the beaches commence!" [12:42] if each grain had its own IP, we'd have how many trillions of ip's left? :) [12:43] RandalSchwartz: haha [12:43] the sad thing is that dhcpv6 is applying a v4 mindset to v6 [12:43] rtsol can have extensions added, including supplying dns info etc [12:43] yeah - let them use the MACaddr as prescribed [12:43] toddf: I haven't messed with it much, so.. I can't comment [12:44] stateless autoconfig vs stateful, rtsol is what I've used for 10+ years [12:44] dhcpv6 has only showed up in recent years [12:44] though some dhcpv6 proponents like to say 'this is how we will allocate subnets to clients' so maybe there is some merit, I'm not aware of subnet allocations via rtsol... [12:45] as for the autconfig test, they could do something like "what is the MAC address of your client machine" then, you have to login from that machine, with the autoconfig address, and click the "check" button. littel things like that. [12:46] *** atsen has joined #arpnetworks [12:57] *** atsen has quit IRC (Quit: later skater!) [13:17] * awyeah like the new twitter. [13:18] * toddf just uses the pidgin plugin [13:31] * tooth isn't a twit [13:31] :D [13:33] * RandalSchwartz is a twit host! [13:33] * jpalmer is just a twit carrier. [13:34] the truth is, I've never tweeted. and up until the recent iphone jailbreak, I never even READ a tweet. [13:34] * nesta twitches [13:36] i once searched twitter for a recent news event [13:36] it showed me a bunch of user's tweets. users with penises as their image thumbs [13:36] that's what i get for using a work computer to check twitter for the first time [13:36] a lesson to not ever visit twitter again [13:53] *** RandalSchwartz has quit IRC (Quit: rebooting emacs) [13:54] *** RandalSchwartz has joined #arpnetworks [14:01] lol emacs irc :( [14:04] *** mattx86 has joined #arpnetworks [14:05] *** NightStar has joined #arpnetworks [14:07] There are not issued free shell [14:07] Here are granted free shell? [14:09] NightStar - nothing free. [14:09] paid-for machines [14:09] which run shells yes. [14:09] NightStar: no, arpnetworks doesn't do free. ;) [14:10] though, depending on your needs, they are well worth the price. [14:11] I generally do not have internet money, so I'm looking for a free shell ", if there are not issued free shell, you do not know where to find them? on what channel? [14:13] they don't exist. [14:13] well the sort of do. [14:14] there are still things like sdf.lonestar.org, but they're restricted unless you pay, and they're not likely to tolerate bullshit. [14:14] NightStar: ask a freind for a shell. one who trusts you implicitely. (which, excludes it being some random guy on IRC) [14:15] there are a few free shell places left. silenceisdefeat.com [14:15] *** NightStar has quit IRC (Quit: NightStar Script v 1.0 http://Glooz.ru/) [14:26] *** shansa has joined #arpnetworks [14:29] *** schmir has joined #arpnetworks [14:30] *** schmir has quit IRC (Remote host closed the connection) [14:35] there's a handful of free shell providers left.. I even came across one that did a free vps service! :) [14:36] though, I didn't dare signup hehe [14:38] wow really [14:38] thats funny [14:38] yeah [15:06] *** heavysixer has quit IRC (Quit: BAMPF!) [15:28] heh... a recruiter just asked me "Oh, I have an opening needing Perl... is that somethign you have expertise in." :) [15:29] does "Literally, I wrote the book on Perl" mean anything? :) [15:33] hi all [15:34] *** nukeAFK is now known as nuke` [15:36] anyone wanna point me on the right direction in how to config mail on my vps so i can use alias@mydomains.bla with pop3? [15:36] RandalSchwartz :P [15:36] nuke` - what operating system? [15:36] debian [15:36] Oh - no idea then [15:36] nuke`: are you just wanting the system mail sent to you? [15:36] I figured you as a freebsd guy. then I can help :) [15:37] no i want to be able to use it [15:37] like a normal mais [15:37] mail* [15:37] send receive not just local [15:37] nuke`: check out howtoforge.com - great tutorials [15:37] k gonna check ty [15:38] I've setup mail servers and antispam boxes for different distros using the different (distro-specific) tutorials there [15:39] yeah im checking this one [15:39] Setting Up A Mail Server Using Exim4, Clamav, Dovecot, SpamAssassin And Many More On Debian [15:39] boo exim. [15:39] RandalSchwartz: lol [15:39] yeah, postfix is best IMHO [15:40] Yeah - you won't regret postfix [15:40] I'm using cyrus with postfix for pop3/imap [15:40] postfix for SMTP/SMTPS and dovecot for POP3/IMAP [15:40] err - dovecot yes [15:40] sorry, cyrus was the old thing [15:40] the tricky part is getting authentication from the right place for pop3/imap [15:41] and smtps [15:41] and dovecot for SMTPA ;) [15:41] last time I did it, I don't think it was too bad [15:42] right I think I used dovecot for that [15:42] RandalSchwartz: now that dovecot can provide auth it's reasonable straightforward. [15:42] RandalSchwartz: cyrus-sasl was a PITA. [15:42] reasonably. [15:42] I think my problem is I wanted to use /etc/passwd but my dovecot is chrooted [15:42] or wait... it's because postfix is chrooted [15:43] so getting it to talk to dovecot properly [15:43] u guys sound like u could do it in 5min instead of me going on for days :P [15:43] for freebsd, yes [15:43] RandalSchwartz: yeah, the 'trick' is getting the path/permissions right for the socket for postfix. [15:43] not a linux user htough [15:44] happily it's a one-off, once you figure that out you can stop beating your head against the wall. [15:44] ... my poor, poor head :( [15:45] nuke`: to get a "perfect" mail server, you could very well be there for days.. me anyways ;) [15:45] "postconf -n" is my friend [15:46] "what have I tweaked HERE to copy it over THERE" [15:46] mail servers are a bit of a pain to configure, atleast the way I want one configured [15:46] that's why for the time being, I've decided to stay with rackspace for email service [15:46] yeah i guess your right, gonna go sleep and try it tmorrow again [15:46] nn all [15:46] sleep at 4pm? :) [15:46] night [15:46] i find postfix pretty damn easy [15:46] qmail i had to patch up the ass to get the way i wanted, that was a pain [15:47] qmail also suffers djbism [15:47] yeah, postfix is 'easy', and dovecot relatively so [15:48] I can't imagine why anyone would use sendmail (with or without m4) at this point [15:48] m4 is its own wtf, anyway :) [15:48] it's when you add in SSL, antispam, antivirus, e-mail signing and so forth is when it gets complicated [15:49] I have postgrey, and amavisd-new (post-queue) [15:49] the tricky part was not passing outbound mail through amavisd [15:49] domain-based 'virtual' hosting using a MySQL database isn't exactly straight-forward either [15:49] mysql? ugh. [15:50] postgres for the win [15:50] friends don't let friends use mysql [15:50] I was gonna ask what ppl use nowadays [15:50] especially now that oracle is strangling it [15:50] lol randal, line up ^ :P [15:50] mmm sqlite [15:50] I presume mysql will go the same way as "open"solaris [15:51] that's the first thing I assumed would go - not opensolaris [15:51] already gone [15:51] opensolaris hasn't gone, exactly. [15:51] well, it's not the source of solaris any more [15:51] when oracle fails to release "solaris express", then I'll call it dead. [15:51] it now exists only as a fork [15:52] jdoe: ah [15:52] they've already said no more solaris releeases with source [15:52] no they haven't [15:52] so it's done. gone. [15:52] oh - source *after the fact* yeah [15:52] they explicitly said source will happen... just not until after a proper solaris release. [15:52] and no community input [15:52] yeah [15:52] well that's not surprising. [15:52] I dunno, I have high hopes for illumos. [15:52] (seriously) [15:54] going back to the e-mail for a moment.. [15:54] RandalSchwartz: why wouldn't you pass outbound mail thru amavisd-new? [15:55] because when I send a GTUBE I don't want it to bounce? ;) [15:55] well I mean, I do [15:55] but from the OTHER server. [15:55] unless you don't have massive amounts of users on your mail server [15:55] :P [15:55] one user [15:55] and he got mad. :) [15:55] most people don't scan outbound. [15:55] google doesn't :P [15:55] his legit mail was blocked. [15:56] RandalSchwartz: you, I presume? :) [15:56] no. [15:56] neil bauman (insightcruises.com) [15:56] ah, fair enough [15:56] so I had to work out how not to scan on port 587 mail [15:57] and yet still get tls or sasl to kick in [15:57] ah [15:58] filter_catchall_pcre contains /^/ FILTER smtp-amavis:[127.0.0.1]:10024 [15:59] and it's not enabled on submission or smtps [15:59] but *is* enabled on 25 [15:59] ... check_sender_access pcre:/usr/local/etc/postfix/filter_catchall_pcre [16:00] last step of smtpd_recipient_restrictions in main.cf [16:00] I couldn't find any other way to write "filter this sometimes" [16:01] great way to kill a few hours on my laptop "sudo port install wine" :) [16:01] I think I'm compiling X11. :) [16:01] hm.. says that Neil had the idea basically for insight cruises while reading a perl programming book... was it your book? :) [16:01] Yes. [16:01] nice :) [16:02] I was his first speaker for the first cruise too [16:02] that was about 60 cruises ago for me. [16:02] wow [16:02] can you actualy feel the whole lot of respect flowing from my keyboard to you? ~_~ [16:03] were most of them with insight? [16:03] all of them [16:03] well - formerly called geekcruises, yes. [16:03] but we're trying to eliminate that name everywhere. [16:04] anyone with more than one vps with ARP? are your vpses hosted on he same physical host? [16:04] yes. and no [16:04] at least, I imagine they aren't [16:05] since I have to use a different console host [16:05] yes [16:05] each one has a different kveXX? [16:05] yeah [16:05] kvr* [16:05] ok. that's safer I guess. [16:06] well - considering the huge amount of redundancy, and the MTBF of the hosts, I wouldn't worry [16:06] in fact, far better at ARP than many other places. [16:06] raid 10 disk, redundant power, redundant net [16:06] RandalSchwartz: the way I would have done it was to add the content filter lines just to inbound, and have unfiltered local/submission ports. [16:07] jdoe - that's what I did [16:08] RandalSchwartz: I meant in master.cf, not main.cf [16:09] oh, well, then I'd have to list all 5 other restrictions in master.cf [16:10] this way, I could keep the heavy one in main.cf, and the exceptions in master [16:10] RandalSchwartz: that's pretty neat, the cruise thing [16:10] I'll have to check that out [16:11] RandalSchwartz: I would have done "-o content_filter=..." etc. and left the rest of the filtering alone, but yeah I dig. I think. [16:11] well - it's not really a content filter [16:11] it's a reject if this thing bitches [16:12] so it has to go in the restrictions [16:12] and content_filter isn't allowed there [16:12] except indirectly [16:12] it wasn't obvious to me either... but I found it by googling. :) [16:13] your setup seems... odd. [16:13] but what do I know :) [16:16] how would content_filter= trigger a reject at handshake time because it's spammy? [16:16] it has to be in a _restriction [16:16] not a filter [16:17] ahh - maybe it's possible now [16:17] I might be able to simplify my setup then [16:18] I'd have to look, I've never bothered with before-queue filters before recently. [16:19] ... okay, I do have it setup here. And in master.cf too. [16:19] can share the config if you'd like. [16:20] no - I'm now trying to remember why I had to have it in the _restrictions [16:23] haha [17:00] *** nakano is now known as nakano_ [17:03] *** mattx86 has quit IRC (Read error: Operation timed out) [17:06] *** nakano_ is now known as nakano [17:15] *** heavysixer has joined #arpnetworks [17:15] *** ChanServ sets mode: +o heavysixer [18:11] *** wallshot has quit IRC (Quit: Leaving.) [18:47] *** mattx86 has joined #arpnetworks [19:04] *** shansa has quit IRC (Quit: leaving) [22:07] *** shansa has joined #arpnetworks