***: nakano_ is now known as nakano
LT has joined #arpnetworks
schmir has joined #arpnetworks
mjp has quit IRC (Quit: leaving)
hsbt has quit IRC (Ping timeout: 255 seconds)
hsbt has joined #arpnetworks
ziyourenxiang has joined #arpnetworks
dxtr has quit IRC (Changing host)
dxtr has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
nakano is now known as nakano_
nakano_ is now known as nakano
nakano is now known as nakano_
nakano_ is now known as nakano
LT has quit IRC (Quit: Leaving)
ElectricBill has quit IRC (Quit: Leaving)
nakano is now known as nakano_
nakano_ is now known as nakano
Tadaka has joined #arpnetworks
nakano is now known as nakano_
schmir has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
ziyourenxiang has quit IRC (Quit: ziyourenxiang)
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
nakano_ is now known as nakano
schmir has joined #arpnetworks
schmir has quit IRC (Ping timeout: 240 seconds)
schmir has joined #arpnetworks
schmir` has joined #arpnetworks
nerdd_ has joined #arpnetworks
nerdd has quit IRC (Ping timeout: 245 seconds)
schmir has quit IRC (Ping timeout: 252 seconds)
schmir` is now known as schmir
tinono has joined #arpnetworks
schmir` has joined #arpnetworks
schmir has quit IRC (Ping timeout: 252 seconds)
schmir` is now known as schmir
schmir has quit IRC (Ping timeout: 252 seconds)
schmir has joined #arpnetworks
heavysixer has quit IRC (Quit: heavysixer)
tuv has joined #arpnetworks tuv: who up*
i'm debating whether i should get my new vps from linode or arpnetworks. the major attraction to linode (compared to arp) is backup
so, do you offer backup? ***: dytra has joined #arpnetworks
dytra has quit IRC (Client Quit)
fink has joined #arpnetworks
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer up_the_irons: tuv: we don't, sorry ***: LucasWilcox has quit IRC (Quit: leaving)
schmir has quit IRC (Remote host closed the connection) toddf: tuv: I looked at linode, it doesn't hardly even compare to arp .. unless you want a cheap vps with a single ipv4 IP and a limit on the os you can run vcs: lol @ 2 ip limmit
and having to run linux?
:| mhoran: Yuck. up_the_irons: lol mhoran: I have to run Linux all day at work. Why would I want to run Linux on my VPS. vcs: Im not saying linux sucks mhoran: I am. :p vcs: obviously arp runs with a linux backend (KVM)
i am saying it sucks HAVING to use it
when free/openbsd are better at most server related tasks
and more secure mhoran: up_the_irons: Speaking of KVM, are your PPM up to date or have you been keeping KVM up to date and not your PPM? vcs: when it comes to a VPS where there are no hardware compatibility constraints as well as no need for virtualization
i see very few incentives to run linux mhoran: Er, PPA. up_the_irons: mhoran: the KVM in my PPA is what I use currently. I have not upgraded because 1) it works very well, so if it ain't broke, don't fix it 2) it would cause downtime to perform the dist-upgrade
gotta bail, cd $home vcs: I like that reasoning mhoran: up_the_irons: Cool. I've finally got some time to possibly move us off our deprecated Xen setup, and am looking into KVM. Tried setting up an installation based off your PPA but wanted to make sure there wasn't anything more recent before I went too far. ***: sentabi has quit IRC (Ping timeout: 272 seconds)
sentabi has joined #arpnetworks
Dougy_ has joined #arpnetworks
Dougy has quit IRC (Read error: Connection reset by peer) tuv: i'm a debian die hard, so the option of not running linux is not very relevant to me fink: pshaw@debian
;) tuv: fink: there is a kfreebsd in debian, if your beef is with linux
if it's with debian though, it's a lost cause fink: tuv: i bet you're one of those vi* lovers, as well? tuv: fink: nah.. never got vi. emacs fink: tuv: ah cool, well then at least we have something in common vcs: i have no beef with linux
i just hate being restricted to only linux :) fink: love rms, hate linux? vcs: haha
I just hate how linux makes me jump through so many hoops
to have a good default system vs 0days
seems like the is no interest in proactive security in most linux distros
or nothing that is effective anyway
linux is great dont get me wrong
but for systems where security counts, i dont have time to spend a few days locking down a system good
for the desktop, it cant be beat tuv: vcs: out of curiosity, what is it that you need to lock down in linux? vcs: say i run debian
I would need to patch the kernel with grsecurity to add more secure chroot + SSP and memory randomization
i would need to chroot alot of notoriously insecure daemons
i dont have time to do that
say i ran a more enterprisey linux, like RHEL
i would need to disable like 30 services and tweak selinux so it did not break stuff tuv: what are some examples of 'notoriously insecure daemons' that you can't replace? vcs: also chroot daemons
well, bind has a bad record
it can be replaced yes
but i prefer to run all network services in chroot
besides stuff that needs root and cant be chrooted realistically, like OpenSSH
also, chroot in linux is too easy to break out of by default
so i need to apply grsecurity to basically any kernel that comes with a distro
but its not just about track records, its about proactive measures against future exploits
that may already be present in code
I can jail stuff easily with FreeBSD, and OpenBSD comes with most network services chrooted by default
the downside is of course hardware support and virtualization
but since we are running them in VPS, that does not even matter
and for linux only binary programs, OpenBSD, FreeBSD, solaris etc support emulation
i love linux, i just wish more measures were taken by default in distros to be secure by default or with little effort
thats really my only complaint with linux ;)
distros like debian get so much right fink: vcs: you use jails? vcs: fink: when I am working with a freebsd box yes
tuv: both linode and arp are great providers, but i feel less boxed in at arp because one can get additional ipv4 addresss (linode limits 2 per vm) and a full /48 block of ipv6 which will be nice in the future
and being able to run whatever OS i want with arp is great tinono: you know what I want now? DragoflyBSD with HAMMER :-p vcs: hehe
Hammer sounds cool ***: fink has quit IRC (Quit: fink)
tinono has quit IRC (Quit: leaving)
Tadaka has quit IRC (Quit: Computer has gone to sleep)