vin: then allow it on ur firewall's config... then reload ***: vin has left
LT has joined #arpnetworks
whitefang has joined #arpnetworks
amdprophet has quit IRC (Remote host closed the connection)
Ehtyar has joined #arpnetworks
schmir has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
schmir has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
schmir has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
schmir has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
schmir has joined #arpnetworks
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer toddf: jdoe: there are rate limiting (but not to my understanding, blocking) being done on port 22, ask support@ for details ***: cubelogic has joined #arpnetworks
cubelogic has quit IRC (Ping timeout: 240 seconds)
cubelogic has joined #arpnetworks bharatak: win 2 toddf: you need http://todd.fries.net/pub/lose.pl bob^^: heh, nice script :)
i'd have to modify it to catch /names too ;) toddf: its a regex match, program to your fancy. ***: rquisumbing has joined #arpnetworks
rquisumbing has quit IRC (Client Quit) jdoe: toddf: should have specified, temp blocking :) toddf: the protection generally mitigates most ssh port attackers letting legitimate stuff through, but if you connect at at high rate you might get some unwanted throttling ***: Zuul_ has joined #arpnetworks
Zuul has quit IRC (Ping timeout: 250 seconds)
LT has quit IRC (Quit: Leaving)
HighJinx has quit IRC (Ping timeout: 240 seconds)
fink has joined #arpnetworks
coobra has quit IRC (Quit: leaving)
HighJinx has joined #arpnetworks
coobra has joined #arpnetworks
coobra has quit IRC (Changing host)
coobra has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
coobra has quit IRC (Remote host closed the connection) bharatak: http://todd.fries.net/pub/lose.pl
i need new fingers :) ***: bharatak has quit IRC (Quit: leaving)
hiro_dSn_ has joined #arpnetworks
cubelogic has quit IRC (Ping timeout: 260 seconds)
cubelogic has joined #arpnetworks
hiro_dSn has quit IRC (Ping timeout: 272 seconds)
Ehtyar has quit IRC (Remote host closed the connection)
nerdd_ has joined #arpnetworks
nerdd has quit IRC (Ping timeout: 264 seconds) awyeah: yay freebsd 8.2 released. fink: woo vcs: wooohoo ***: raptelan has quit IRC (Ping timeout: 240 seconds)
raptelan has joined #arpnetworks
zeeby has quit IRC (Ping timeout: 272 seconds)
zeeby has joined #arpnetworks pilgrimd: quick! everyone csup your VPSes! :D vcs: lol fink: who thinks arp should have a freebsd mirror for us? ;) vcs: would be good advertising
for arp Husky: nice
upgrade comin jpalmer: vcs: I'm pretty active int he FreeBSD community, and I couldn't tell you which companies host the mirrors right now. so, I don't know how effective the advertising would be. pilgrimd: If you can sup RELENG_8_2, the whole tree should be there, right? ***: _pe has joined #arpnetworks
_pe has quit IRC (Ping timeout: 240 seconds)
_pe has joined #arpnetworks
_pe has quit IRC (Remote host closed the connection)
_pe has joined #arpnetworks
a_j__c_ is now known as a_j__c
a_j__c has quit IRC (Changing host)
a_j__c has joined #arpnetworks
_pe has quit IRC (Ping timeout: 260 seconds)
_pe has joined #arpnetworks _pe: hello. ***: shatt has joined #arpnetworks shatt: boo _pe: any arpnetworks employees around? jlgaddis: fyi, $coworker (with an arp vps) says lots of hosts in 203.81/16 have been scanning him on 21, 22, and 443/tcp for the last couple days. vcs: whats new
tons of zombies out there
trying to assimilate jlgaddis: "Portscans
to my VPS aren't unusual, but this traffic pattern seems different than
normal."
just thought i'd mention it, feel free to ignore it a_j__c: just make sure you have secure passwords, should take care of 50% of the danger of being cracked. jpalmer: _pe: if you ask us what you need, we may be able to answer you here. otherwise, and email to support@arpnetworks.com is the best. _pe: jpalmer: thanks, i've filed an issue, of course; just thought it might be easier to chat. jpalmer: a_j__c: well, in all honesty, you should probably disable password based auth for remote connections (such as ssh) use ssh keys only, and only leave password based auth enabled at the console. a_j__c: ^ jpalmer: _pe: is this the plan9 issue? _pe: i'm trying to install plan 9 but the install kernel just stops. since filing my issue i've received advice that the virtio drivers may be the problem.
jpalmer: yep vcs: dont use passwords at all ;) a_j__c: _pe: may I ask why plan9? vcs: public key auth is way better -: a_j__c has never used plan9 vcs: in every way shape and form jpalmer: _pe: I see the ticket, but I don't have the access to change your drivers or CD media. It'll likely get done this evening though. _pe: a_j_c: going to experiment with moving some of my hosted sites to plan 9. jlgaddis: i only have ssh accessible from a /16 and a /32 and i use keys. i think i'm good. a_j__c: _pe: oh ok _pe: jpalmer: thanks. i'm not knowledgeable about kvm/qemu so i'm not sure what might help. i have run plan 9 under qemu 0.9.1 on openbsd for a while, but my initial setup just worked and i haven't done further reading about qemu. jpalmer: jlgaddis: I do something similar. I only allow SSH keys, and only allow it from specific hosts (which I call "keyhole servers") the keyhole servers run NO services, other than ssh. and have some pretty intense firewalls including a bruteforce timeout.
I then SSH into the keyhole server from my remote locations (wherever that may be) using agent forwarding. then from there I ssh into the actual destination server. sort of like a piggyback step. fink: jpalmer: hey, how much would it add to the monthly cost to add an ipv4 + 512MB ram? _pe: a_j_c: i've gone through the usual sort of religious conversion to plan 9, but as there are few users, worldwide, and even fewer developers, life in that world can be challenging. :) jpalmer: _pe: no doubt. I myself have never used plan9 _pe: it's an interesting system. unfortunately there's no modern web browser so for a lot of folks it ends up being a passing fancy. jpalmer: fink: /msg fink ping
doh fink: who's ping? jpalmer: that guy over there in the corner :P fink: he's on first jpalmer: hey at least I didn't "/msg fink your server as at 1.2.3.4 and the root password is abracadabra!" fink: HOW
DID YOU KNOW MY PASSWORD
WTF _pe: fink: found written on a piece of paper in your wallet :) fink: _pe: oh, did i leave that at your gf's place by accident?
hiyooooo
;)
_pe: sorry, that was unacceptable, my apologies _pe: hehe
was trying to decide whether to up the ante
:) -: fink snaps on his tie and 'professionalizes' _pe: [generic rejoinder involving pimping] fink: piming|yomama _pe: mom didn't bring home much money last night. fink: _pe: LOL, you don't need me _pe: :) jlgaddis: jpalmer: *nod* we call 'em "jumpboxes" jpalmer: hah, my "gf" is technically my fiancee, for 1 more weekend.
I get married next saturday. jlgaddis: my condolences^H^H^H^H^H^H^H^Hgratulations, sir _pe: congratulations jpalmer: lol a_j__c: so its safe to assume you won't be on here as much? :P
jk vcs: haha ***: nerdd_ has quit IRC (Read error: Connection reset by peer)
nerdd has joined #arpnetworks fink: jpalmer: congrats ***: Jason_Wood has joined #arpnetworks
crazed is now known as pantimedias
pantimedias is now known as crazed RandalSchwartz: oof. time to plan on an 8.2 upgrade for my boxes a_j__c: so, what does ArpNetworks bring to the table that $current_provider doesn't? vcs: BSD, Ipv6 RandalSchwartz: a_j__c - depends on $current_provider vcs: good service
good prices a_j__c: well, they don't have BSD for one thing -: RandalSchwartz wanders off a_j__c: and only 50GB bandwidth ***: rquisumbing has joined #arpnetworks raptelan: how can I view a list of listening ports/programs? I used to use `netstat -nlptu` on linux (-n = numeric IPs, -l = listening only, -p = show program name, -t = tcp, -u = udp (thus no unix sockets)), but I see that netstat is significantly different on openbsd. a_j__c: man sockstat raptelan: cheers
a_j__c: err, not found, no man page
is that something in ports?
nope, can't find it there either. a_j__c: what?
sockstat isn't a man page?
man 1 sockstat raptelan: man: no entry for sockstat in the manual. a_j__c: that's messed up
well, there's several copies of it online raptelan: I'm running 4.8 stable a_j__c: oh you're on openbsd raptelan: a_j__c: what good will a man page do if the command doesn't exist?
oh, I'm sorry
I thought this was #openbsd
whoops a_j__c: no its #arpnetworks
hehe raptelan: yeah, I got my windows mixed up.
thanks for trying though :) a_j__c: I tried :) raptelan: meh, fstat | grep internet | grep -v '<--' | grep -v '<->' | grep -v -- '-->' ***: lucky has quit IRC (Remote host closed the connection)
chess has joined #arpnetworks
DDevine has joined #arpnetworks
cubelogic has quit IRC (Remote host closed the connection)
HighJinx has quit IRC (Ping timeout: 272 seconds)
key has joined #arpnetworks
_pe has quit IRC (Remote host closed the connection)
HighJinx has joined #arpnetworks
fink has quit IRC (Quit: fink)
lucky has joined #arpnetworks
lucky has quit IRC (Changing host)
lucky has joined #arpnetworks
lucky has quit IRC (Ping timeout: 272 seconds)
lucky has joined #arpnetworks
lucky has quit IRC (Remote host closed the connection)
lucky has joined #arpnetworks up_the_irons: somebody email support@ with the feature request: freebsd mirror :)
jpalmer: even without advertising, hosting a mirror would be cool. i have the bandwidth, might as well use it for a good cause G: up_the_irons: I'd send the e-mail, but I'm not really a FreeBSD user :) up_the_irons: i c ***: mig5 has quit IRC (Quit: Lost terminal)
mig5 has joined #arpnetworks lucky: another ipv6 mirror would be <3tastic up_the_irons: lucky: ah yes, I could do that :)