[00:09] <vin\> why dont you change it into a higher port .... eg: 33022
[00:09] <vin\> then allow it on ur firewall's config... then reload
[00:42] *** vin\ has left 
[00:55] *** LT has joined #arpnetworks
[00:56] *** whitefang has joined #arpnetworks
[01:57] *** amdprophet has quit IRC (Remote host closed the connection)
[02:05] *** Ehtyar has joined #arpnetworks
[02:50] *** schmir has joined #arpnetworks
[03:48] *** schmir has quit IRC (Remote host closed the connection)
[03:49] *** schmir has joined #arpnetworks
[03:49] *** schmir has quit IRC (Remote host closed the connection)
[03:50] *** schmir has joined #arpnetworks
[03:52] *** schmir has quit IRC (Remote host closed the connection)
[04:36] *** schmir has joined #arpnetworks
[04:43] *** schmir has quit IRC (Remote host closed the connection)
[04:44] *** schmir has joined #arpnetworks
[05:30] *** heavysixer has joined #arpnetworks
[05:30] *** ChanServ sets mode: +o heavysixer
[05:41] <toddf> jdoe: there are rate limiting (but not to my understanding, blocking) being done on port 22, ask support@ for details
[06:05] *** cubelogic has joined #arpnetworks
[06:09] *** cubelogic has quit IRC (Ping timeout: 240 seconds)
[06:36] *** cubelogic has joined #arpnetworks
[07:16] <bharatak> win 2
[07:32] <toddf> you need http://todd.fries.net/pub/lose.pl
[07:33] <bob^^> heh, nice script :)
[07:33] <bob^^> i'd have to modify it to catch /names too ;)
[07:40] <toddf> its a regex match, program to your fancy.
[08:01] *** rquisumbing has joined #arpnetworks
[08:05] *** rquisumbing has quit IRC (Client Quit)
[08:31] <jdoe> toddf: should have specified, temp blocking :)
[08:33] <toddf> the protection generally mitigates most ssh port attackers letting legitimate stuff through, but if you connect at at high rate you might get some unwanted throttling
[08:46] *** Zuul_ has joined #arpnetworks
[08:48] *** Zuul has quit IRC (Ping timeout: 250 seconds)
[09:11] *** LT has quit IRC (Quit: Leaving)
[09:33] *** HighJinx has quit IRC (Ping timeout: 240 seconds)
[09:34] *** fink has joined #arpnetworks
[10:19] *** coobra has quit IRC (Quit: leaving)
[10:19] *** HighJinx has joined #arpnetworks
[10:25] *** coobra has joined #arpnetworks
[10:25] *** coobra has quit IRC (Changing host)
[10:25] *** coobra has joined #arpnetworks
[10:28] *** schmir has quit IRC (Remote host closed the connection)
[10:35] *** coobra has quit IRC (Remote host closed the connection)
[10:50] <bharatak>  http://todd.fries.net/pub/lose.pl
[10:51] <bharatak> i need new fingers :)
[11:05] *** bharatak has quit IRC (Quit: leaving)
[11:19] *** hiro_dSn_ has joined #arpnetworks
[11:21] *** cubelogic has quit IRC (Ping timeout: 260 seconds)
[11:21] *** cubelogic has joined #arpnetworks
[11:23] *** hiro_dSn has quit IRC (Ping timeout: 272 seconds)
[11:53] *** Ehtyar has quit IRC (Remote host closed the connection)
[12:06] *** nerdd_ has joined #arpnetworks
[12:08] *** nerdd has quit IRC (Ping timeout: 264 seconds)
[12:21] <awyeah> yay freebsd 8.2 released.
[12:21] <fink> woo
[12:21] <vcs> wooohoo
[12:21] *** raptelan has quit IRC (Ping timeout: 240 seconds)
[12:22] *** raptelan has joined #arpnetworks
[12:22] *** zeeby has quit IRC (Ping timeout: 272 seconds)
[12:23] *** zeeby has joined #arpnetworks
[12:24] <pilgrimd> quick! everyone csup your VPSes! :D
[12:25] <vcs> lol
[12:29] <fink> who thinks arp should have a freebsd mirror for us? ;)
[12:31] <vcs> would be good advertising
[12:31] <vcs> for arp
[12:31] <Husky> nice
[12:31] <Husky> upgrade comin
[12:34] <jpalmer> vcs:  I'm pretty active int he FreeBSD community,  and I couldn't tell you which companies host the mirrors right now.  so,  I don't know how effective the advertising would be.
[12:38] <pilgrimd> If you can sup RELENG_8_2, the whole tree should be there, right?
[12:48] *** _pe has joined #arpnetworks
[12:53] *** _pe has quit IRC (Ping timeout: 240 seconds)
[13:05] *** _pe has joined #arpnetworks
[13:07] *** _pe has quit IRC (Remote host closed the connection)
[13:08] *** _pe has joined #arpnetworks
[13:10] *** a_j__c_ is now known as a_j__c
[13:10] *** a_j__c has quit IRC (Changing host)
[13:10] *** a_j__c has joined #arpnetworks
[13:14] *** _pe has quit IRC (Ping timeout: 260 seconds)
[13:23] *** _pe has joined #arpnetworks
[13:23] <_pe> hello.
[13:25] *** shatt has joined #arpnetworks
[13:25] <shatt> boo
[13:26] <_pe> any arpnetworks employees around?
[13:29] <jlgaddis> fyi, $coworker (with an arp vps) says lots of hosts in 203.81/16 have been scanning him on 21, 22, and 443/tcp for the last couple days.
[13:33] <vcs> whats new
[13:33] <vcs> tons of zombies out there
[13:33] <vcs> trying to assimilate
[13:35] <jlgaddis> "Portscans
[13:35] <jlgaddis> to my VPS aren't unusual, but this traffic pattern seems different than
[13:35] <jlgaddis> normal."
[13:35] <jlgaddis> just thought i'd mention it, feel free to ignore it
[13:37] <a_j__c> just make sure you have secure passwords, should take care of 50% of the danger of being cracked.
[13:38] <jpalmer> _pe:   if you ask us what you need,  we may be able to answer you here.  otherwise,  and email to support@arpnetworks.com is the best.
[13:38] <_pe> jpalmer: thanks, i've filed an issue, of course; just thought it might be easier to chat.
[13:38] <jpalmer> a_j__c: well,  in all honesty,  you should probably disable password based auth for remote connections (such as ssh)    use ssh keys only,  and only leave password based auth enabled at the console.
[13:39] <a_j__c> ^
[13:39] <jpalmer> _pe:  is this the plan9 issue?
[13:39] <_pe> i'm trying to install plan 9 but the install kernel just stops. since filing my issue i've received advice that the virtio drivers may be the problem.
[13:39] <_pe> jpalmer: yep
[13:39] <vcs> dont use passwords at all ;)
[13:39] <a_j__c> _pe: may I ask why plan9?
[13:39] <vcs> public key auth is way better
[13:39] * a_j__c has never used plan9
[13:39] <vcs> in every way shape and form
[13:39] <jpalmer> _pe:  I see the ticket,   but I don't have the access to change your drivers or CD media.  It'll likely get done this evening though.
[13:39] <_pe> a_j_c: going to experiment with moving some of my hosted sites to plan 9.
[13:40] <jlgaddis> i only have ssh accessible from a /16 and a /32 and i use keys.  i think i'm good.
[13:40] <a_j__c> _pe: oh ok
[13:40] <_pe> jpalmer: thanks. i'm not knowledgeable about kvm/qemu so i'm not sure what might help. i have run plan 9 under qemu 0.9.1 on openbsd for a while, but my initial setup just worked and i haven't done further reading about qemu.
[13:41] <jpalmer> jlgaddis: I do something similar.   I only allow SSH keys,  and only allow it from specific hosts (which I call "keyhole servers")   the keyhole servers run NO services, other than ssh. and have some pretty intense firewalls including a bruteforce timeout.
[13:42] <jpalmer> I then SSH into the keyhole server from my remote locations (wherever that may be)  using agent forwarding.  then from there I ssh into the actual destination server.  sort of like a piggyback step.
[13:43] <fink> jpalmer: hey, how much would it add to the monthly cost to add an ipv4 + 512MB ram?
[13:43] <_pe> a_j_c: i've gone through the usual sort of religious conversion to plan 9, but as there are few users, worldwide, and even fewer developers, life in that world can be challenging. :)
[13:43] <jpalmer> _pe:  no doubt.  I myself have never used plan9
[13:44] <_pe> it's an interesting system. unfortunately there's no modern web browser so for a lot of folks it ends up being a passing fancy.
[13:45] <jpalmer> fink:   /msg fink ping
[13:45] <jpalmer> doh
[13:45] <fink> who's ping?
[13:45] <jpalmer> that guy over there in the corner :P
[13:45] <fink> he's on first
[13:47] <jpalmer> hey at least I didn't  "/msg fink your server as at 1.2.3.4 and the root password is abracadabra!"
[13:47] <fink> HOW
[13:47] <fink> DID YOU KNOW MY PASSWORD
[13:47] <fink> WTF
[13:47] <_pe> fink: found written on a piece of paper in your wallet :)
[13:48] <fink> _pe: oh, did i leave that at your gf's place by accident?
[13:48] <fink> hiyooooo
[13:48] <fink> ;)
[13:48] <fink> _pe: sorry, that was unacceptable, my apologies
[13:49] <_pe> hehe
[13:49] <_pe> was trying to decide whether to up the ante
[13:49] <_pe> :)
[13:49] * fink snaps on his tie and 'professionalizes'
[13:49] <_pe> [generic rejoinder involving pimping]
[13:49] <fink> piming|yomama
[13:49] <_pe> mom didn't bring home much money last night.
[13:50] <fink> _pe: LOL, you don't need me
[13:50] <_pe> :)
[13:51] <jlgaddis> jpalmer: *nod* we call 'em "jumpboxes"
[13:55] <jpalmer> hah,  my "gf" is technically my fiancee, for 1 more weekend.
[13:55] <jpalmer> I get married next saturday.
[13:56] <jlgaddis> my condolences^H^H^H^H^H^H^H^Hgratulations, sir
[13:56] <_pe> congratulations
[13:56] <jpalmer> lol
[14:03] <a_j__c> so its safe to assume you won't be on here as much? :P
[14:03] <a_j__c> jk
[14:04] <vcs> haha
[14:06] *** nerdd_ has quit IRC (Read error: Connection reset by peer)
[14:06] *** nerdd has joined #arpnetworks
[14:12] <fink> jpalmer: congrats
[14:33] *** Jason_Wood has joined #arpnetworks
[14:34] *** crazed is now known as pantimedias
[14:35] *** pantimedias is now known as crazed
[14:40] <RandalSchwartz> oof.  time to plan on an 8.2 upgrade for my boxes
[14:42] <a_j__c> so, what does ArpNetworks bring to the table that $current_provider doesn't?
[14:42] <vcs> BSD, Ipv6
[14:42] <RandalSchwartz> a_j__c - depends on $current_provider
[14:42] <vcs> good service
[14:42] <vcs> good prices
[14:42] <a_j__c> well, they don't have BSD for one thing
[14:43] * RandalSchwartz wanders off
[14:43] <a_j__c> and only 50GB bandwidth
[15:45] *** rquisumbing has joined #arpnetworks
[16:32] <raptelan> how can I view a list of listening ports/programs?  I used to use `netstat -nlptu` on linux (-n = numeric IPs, -l = listening only, -p = show program name, -t = tcp, -u = udp (thus no unix sockets)), but I see that netstat is significantly different on openbsd.
[16:33] <a_j__c> man sockstat
[16:33] <raptelan> cheers
[16:34] <raptelan> a_j__c: err, not found, no man page
[16:34] <raptelan> is that something in ports?
[16:34] <raptelan> nope, can't find it there either.
[16:34] <a_j__c> what?
[16:35] <a_j__c> sockstat isn't a man page?
[16:35] <a_j__c> man 1 sockstat
[16:35] <raptelan> man: no entry for sockstat in the manual.
[16:35] <a_j__c> that's messed up
[16:35] <a_j__c> well, there's several copies of it online
[16:36] <raptelan> I'm running 4.8 stable
[16:36] <a_j__c> oh you're on openbsd
[16:36] <raptelan> a_j__c: what good will a man page do if the command doesn't exist?
[16:36] <raptelan> oh, I'm sorry
[16:36] <raptelan> I thought this was #openbsd
[16:36] <raptelan> whoops
[16:36] <a_j__c> no its #arpnetworks
[16:36] <a_j__c> hehe
[16:36] <raptelan> yeah, I got my windows mixed up.
[16:37] <raptelan> thanks for trying though :)
[16:37] <a_j__c> I tried :)
[17:01] <raptelan> meh, fstat | grep internet | grep -v '<--' | grep -v '<->' | grep -v -- '-->'
[17:09] *** lucky has quit IRC (Remote host closed the connection)
[17:16] *** chess has joined #arpnetworks
[17:24] *** DDevine has joined #arpnetworks
[18:21] *** cubelogic has quit IRC (Remote host closed the connection)
[19:06] *** HighJinx has quit IRC (Ping timeout: 272 seconds)
[19:15] *** key has joined #arpnetworks
[19:26] *** _pe has quit IRC (Remote host closed the connection)
[20:01] *** HighJinx has joined #arpnetworks
[21:03] *** fink has quit IRC (Quit: fink)
[21:31] *** lucky has joined #arpnetworks
[21:32] *** lucky has quit IRC (Changing host)
[21:32] *** lucky has joined #arpnetworks
[21:55] *** lucky has quit IRC (Ping timeout: 272 seconds)
[22:38] *** lucky has joined #arpnetworks
[22:42] *** lucky has quit IRC (Remote host closed the connection)
[22:45] *** lucky has joined #arpnetworks
[22:58] <up_the_irons> somebody email support@ with the feature request: freebsd mirror :)
[22:59] <up_the_irons> jpalmer: even without advertising, hosting a mirror would be cool.  i have the bandwidth, might as well use it for a good cause
[23:15] <G> up_the_irons: I'd send the e-mail, but I'm not really a FreeBSD user :)
[23:15] <up_the_irons> i c
[23:30] *** mig5 has quit IRC (Quit: Lost terminal)
[23:32] *** mig5 has joined #arpnetworks
[23:40] <lucky> another ipv6 mirror would be <3tastic
[23:42] <up_the_irons> lucky: ah yes, I could do that :)