on a train from LA to Sandy Eggo
hi RandalSchwartz
hey fink
hello
how do I use VNC to view my console, please?
or just console?
oh
now I see. :)
hello again
can I set rdns myself?
if you request it
yet
yeah
at least ipv6 rdns can be propogated to you
delegated?
I can delegate IPv4 and/or IPv6 to the NS's of your choice.
submit a support ticket with your vps UUID,  and the subnets you want delegated,  and the hostnames of the NS's we're delegating to.
or,  if you just want us to setup soe PTR records for you,  we can do that too.
jpalmer: I have sent an e-mail to support with my username
jm|laptop: let me look.  sec
atm it is just two PTR records
one for my IPv4 and one for my ::2 IPv6
k thank
I don't see it in the support portal yet.   let me give it a few minutes.  if it still doesn't show, I'll check the spam box.
jm|laptop: can you /msg me the username?
cool.
get that?
hmm. What blocks pings?
icmp
well yes. I mean can I not ping my VM?
oh wait
3 packets transmitted, 3 received, 0% packet loss, time 13742ms
rtt min/avg/max/mdev = 178.598/184.336/190.902/5.069 ms
crikey.
wow
so 'akami DOS' in google is fun
http://seclists.org/nanog/2011/Jan/1049 bleh
haha
56k dos
it effects any hosting center that has dialups
including one that a client of mine hosts their equipment at
before i read the whole thing
i thought the guy was complaining that one of his 56k users was being hit with a DoS
and thought, how is this even a story
summary: akamai goes bezerk towards dialup pools somehow and they've taken since early this week to recognnize and the problem is ongoing
yeah
sounds brutal
saturating ds3's at mid sized hosting centers everywhere
toddf: akamai is ideally suited for dos'ing :/
gig interfaces everywhere
they could probably bring down large parts of the internet if someone can get a dos going on all of them
Hee, I just learnt Akamai will be participating in IPv6 day
fun fun times :D
June 8th, 2011.  Are you READY?
cool
Heh... so, so much is going to break.
It's going to be fun
lucky: not quiet :)
quite
i think it's a good idea
www.v6.facebook.com works right now
google have something too
actually depending on what dns you use google can do ipv6 now
oh, I think it's a good idea that stuff will break
it's brilliant, even.
It'll be the kick in the pants lazy netadmins need to get their heads out of the sand wrt IPv6
it'll be on fucking cnn
when their clients cannot access Google, Facebook, Yahoo, etc.
geeks break the internet!
Psh, we built it, it's our right to break.
haha
squid 2.7 doesn't have ipv6 support :(
and squid 3 openbsd support for ipv6 seems to not work
mind you they're not taking out theri A records
OpenBSD has been iffy imo.
IIRC, the apache implementation it comes with doesn't have IPv6 either.
hnmm
I personally suspect De Raadt is stuck in 1996, but :P
at least he's safe there
it doesn't by default at least
fink, haha :D
;)
I have very mixed feelings about OpenBSD, I understand some of the decisions and most of them have good logic behind them, but I often don't *agree*.
i think openbsd's ipv6 problems revolve around them not being able to bind to both at once
running OpenBSD is nice
i can sleep at night
whereas if im running linux, gotta worry about root/remote vulns all the time
plus, takes hours and hours to secure a linux system
insecure by default seems to be the norm for linux
i understand its more cutting edge
but jeez....
linux definitley has its place though... virtualization.
it depends on the distro
many are absolutely minimalist by default
minimal security
debian has... nothing set up by default, except maybe sshd
my main problem is the lack of stack smash protection in many distros by default
leaving out stuff like ASLR
requiring me to patch it in with my own kernel, which is a pain to maintain when there are security problems
Gentoo though... the install CD *shudder* # vi \ bash: vi: command not found
...? # nano
*up pops nano*
haha
wow
I promptly threw the entire computer out the window.
who uses gentoo though
i mean seriously
funroll loops
there are some good distros out there
but seriously... windows got stack protection and more recently ASLR implemented
years before any linux distro besides rehhat/centos adopted it
and adoption of the tech is still low
seems stack protection is enabled in hardened gentoo :P
i think the people that bash windows security and use stock linux for the most part need to reevaluate their security
haha
but what good is hardened gentoo
it always breaks since its gentoo
same with Ubuntu.
so its useless for a production environment
since 8.04 apparently
ubuntu has gotten progressively worse as a distro
bugs gallore
hi
I want to use a vps as pentesting server for my work, some ISP blocks nmap scans, etc. Arpnetworks too?
arpnetworks doesn't block anything .. ssh has some anti spam policy on port 22, but thats it. if you don't attract attention like DOS or do bad things, you're generally welcomed ;-)
then I can use my vps to run nmap scans or similar?
not DoS
from my VPS
toddf?
hmmm