#arpnetworks 2010-10-13,Wed

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)

WhoWhatWhen
***Tadaka has quit IRC (Quit: leaving) [00:06]
.............. (idle for 1h9mn)
nakano_ is now known as nakano
LT has joined #arpnetworks
[01:15]
schmir has joined #arpnetworks [01:23]
................ (idle for 1h18mn)
mjp has quit IRC (Quit: leaving) [02:41]
.............. (idle for 1h8mn)
hsbt has quit IRC (Ping timeout: 255 seconds) [03:49]
.... (idle for 16mn)
hsbt has joined #arpnetworks [04:05]
.............. (idle for 1h7mn)
ziyourenxiang has joined #arpnetworks [05:12]
dxtr has quit IRC (Changing host)
dxtr has joined #arpnetworks
[05:19]
.................................... (idle for 2h56mn)
schmir has quit IRC (Remote host closed the connection) [08:15]
.... (idle for 19mn)
nakano is now known as nakano_
nakano_ is now known as nakano
[08:34]
nakano is now known as nakano_ [08:48]
nakano_ is now known as nakano [09:02]
.... (idle for 17mn)
LT has quit IRC (Quit: Leaving) [09:19]
ElectricBill has quit IRC (Quit: Leaving) [09:28]
nakano is now known as nakano_
nakano_ is now known as nakano
[09:35]
Tadaka has joined #arpnetworks [09:46]
nakano is now known as nakano_
schmir has joined #arpnetworks
[09:54]
schmir has quit IRC (Remote host closed the connection) [10:05]
ziyourenxiang has quit IRC (Quit: ziyourenxiang) [10:12]
....... (idle for 34mn)
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
[10:46]
........................... (idle for 2h11mn)
nakano_ is now known as nakano
schmir has joined #arpnetworks
schmir has quit IRC (Ping timeout: 240 seconds)
[12:57]
.... (idle for 18mn)
schmir has joined #arpnetworks [13:23]
........ (idle for 39mn)
schmir` has joined #arpnetworks
nerdd_ has joined #arpnetworks
nerdd has quit IRC (Ping timeout: 245 seconds)
schmir has quit IRC (Ping timeout: 252 seconds)
schmir` is now known as schmir
[14:02]
tinono has joined #arpnetworks [14:12]
.... (idle for 16mn)
schmir` has joined #arpnetworks
schmir has quit IRC (Ping timeout: 252 seconds)
[14:28]
schmir` is now known as schmir [14:39]
......... (idle for 43mn)
schmir has quit IRC (Ping timeout: 252 seconds)
schmir has joined #arpnetworks
[15:22]
.... (idle for 16mn)
heavysixer has quit IRC (Quit: heavysixer) [15:39]
................ (idle for 1h17mn)
tuv has joined #arpnetworks [16:56]
tuvwho up*
i'm debating whether i should get my new vps from linode or arpnetworks. the major attraction to linode (compared to arp) is backup
so, do you offer backup?
[16:58]
***dytra has joined #arpnetworks
dytra has quit IRC (Client Quit)
[16:59]
..... (idle for 22mn)
fink has joined #arpnetworks
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
[17:22]
up_the_ironstuv: we don't, sorry [17:25]
***LucasWilcox has quit IRC (Quit: leaving) [17:37]
....... (idle for 31mn)
schmir has quit IRC (Remote host closed the connection) [18:08]
toddftuv: I looked at linode, it doesn't hardly even compare to arp .. unless you want a cheap vps with a single ipv4 IP and a limit on the os you can run [18:09]
vcslol @ 2 ip limmit
and having to run linux?
:|
[18:09]
mhoranYuck. [18:10]
up_the_ironslol [18:10]
mhoranI have to run Linux all day at work. Why would I want to run Linux on my VPS. [18:10]
vcsIm not saying linux sucks [18:10]
mhoranI am. :p [18:10]
vcsobviously arp runs with a linux backend (KVM)
i am saying it sucks HAVING to use it
when free/openbsd are better at most server related tasks
and more secure
[18:10]
mhoranup_the_irons: Speaking of KVM, are your PPM up to date or have you been keeping KVM up to date and not your PPM? [18:11]
vcswhen it comes to a VPS where there are no hardware compatibility constraints as well as no need for virtualization
i see very few incentives to run linux
[18:12]
mhoranEr, PPA. [18:12]
up_the_ironsmhoran: the KVM in my PPA is what I use currently. I have not upgraded because 1) it works very well, so if it ain't broke, don't fix it 2) it would cause downtime to perform the dist-upgrade
gotta bail, cd $home
[18:13]
vcsI like that reasoning [18:13]
mhoranup_the_irons: Cool. I've finally got some time to possibly move us off our deprecated Xen setup, and am looking into KVM. Tried setting up an installation based off your PPA but wanted to make sure there wasn't anything more recent before I went too far. [18:14]
***sentabi has quit IRC (Ping timeout: 272 seconds) [18:24]
sentabi has joined #arpnetworks
Dougy_ has joined #arpnetworks
Dougy has quit IRC (Read error: Connection reset by peer)
[18:32]
......... (idle for 41mn)
tuvi'm a debian die hard, so the option of not running linux is not very relevant to me [19:17]
finkpshaw@debian
;)
[19:18]
tuvfink: there is a kfreebsd in debian, if your beef is with linux
if it's with debian though, it's a lost cause
[19:19]
finktuv: i bet you're one of those vi* lovers, as well? [19:20]
tuvfink: nah.. never got vi. emacs [19:20]
finktuv: ah cool, well then at least we have something in common [19:21]
vcsi have no beef with linux
i just hate being restricted to only linux :)
[19:23]
finklove rms, hate linux? [19:24]
vcshaha
I just hate how linux makes me jump through so many hoops
to have a good default system vs 0days
seems like the is no interest in proactive security in most linux distros
or nothing that is effective anyway
linux is great dont get me wrong
but for systems where security counts, i dont have time to spend a few days locking down a system good
for the desktop, it cant be beat
[19:24]
tuvvcs: out of curiosity, what is it that you need to lock down in linux? [19:30]
vcssay i run debian
I would need to patch the kernel with grsecurity to add more secure chroot + SSP and memory randomization
i would need to chroot alot of notoriously insecure daemons
i dont have time to do that
say i ran a more enterprisey linux, like RHEL
i would need to disable like 30 services and tweak selinux so it did not break stuff
[19:30]
tuvwhat are some examples of 'notoriously insecure daemons' that you can't replace? [19:33]
vcsalso chroot daemons
well, bind has a bad record
it can be replaced yes
but i prefer to run all network services in chroot
besides stuff that needs root and cant be chrooted realistically, like OpenSSH
also, chroot in linux is too easy to break out of by default
so i need to apply grsecurity to basically any kernel that comes with a distro
but its not just about track records, its about proactive measures against future exploits
that may already be present in code
I can jail stuff easily with FreeBSD, and OpenBSD comes with most network services chrooted by default
the downside is of course hardware support and virtualization
but since we are running them in VPS, that does not even matter
and for linux only binary programs, OpenBSD, FreeBSD, solaris etc support emulation
i love linux, i just wish more measures were taken by default in distros to be secure by default or with little effort
thats really my only complaint with linux ;)
distros like debian get so much right
[19:33]
finkvcs: you use jails? [19:38]
vcsfink: when I am working with a freebsd box yes [19:39]
tuv: both linode and arp are great providers, but i feel less boxed in at arp because one can get additional ipv4 addresss (linode limits 2 per vm) and a full /48 block of ipv6 which will be nice in the future
and being able to run whatever OS i want with arp is great
[19:45]
........... (idle for 53mn)
tinonoyou know what I want now? DragoflyBSD with HAMMER :-p [20:38]
..... (idle for 20mn)
vcshehe
Hammer sounds cool
[20:58]
...... (idle for 25mn)
***fink has quit IRC (Quit: fink) [21:23]
..... (idle for 24mn)
tinono has quit IRC (Quit: leaving) [21:47]
.................... (idle for 1h37mn)
Tadaka has quit IRC (Quit: Computer has gone to sleep) [23:24]

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)