| ↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |
| Who | What | When |
|---|---|---|
| *** | EhtyarWRK has quit IRC (Quit: There are two major products that come out of Berkeley: LSD and UNIX. We don't believe this to be a coincidence.) | [00:26] |
| ....................................................... (idle for 4h31mn) | ||
| heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer | [04:57] | |
| ........... (idle for 52mn) | ||
| nukefree is now known as nuke` | [05:49] | |
| ............................................. (idle for 3h44mn) | ||
| cmeiklejohn has quit IRC (Quit: WeeChat 0.3.3)
cmeiklejohn has joined #arpnetworks | [09:33] | |
| .... (idle for 16mn) | ||
| cubelogic has joined #arpnetworks | [09:50] | |
| HighJinx has quit IRC (Ping timeout: 260 seconds) | [10:00] | |
| ...... (idle for 25mn) | ||
| Sheath is now known as husky | [10:25] | |
| HighJinx has joined #arpnetworks
slashnick has joined #arpnetworks jdoe has quit IRC (Ping timeout: 240 seconds) | [10:37] | |
| slashnick | something up with the network? I'm getting massive packet loss to my vps. | [10:42] |
| *** | jdoe has joined #arpnetworks
slashnick has quit IRC (Client Quit) | [10:42] |
| jdoe | ... guess not anymore. Heh.
80% loss to the machine itself, or at least, 80% loss after any2-ix.la.arpnetworks.com | [10:44] |
| novemberico | nah, i just get high latency at any2ix.coresite.com
no loss though | [10:49] |
| *** | slashnick has joined #arpnetworks
jdoe has quit IRC (Ping timeout: 250 seconds) bitslip has quit IRC (Ping timeout: 240 seconds) koan has quit IRC (Ping timeout: 246 seconds) bitslip has joined #arpnetworks jdoe has joined #arpnetworks koan has joined #arpnetworks koan has quit IRC (Changing host) koan has joined #arpnetworks | [10:51] |
| RandalSchwartz | I'm seeing a bit of dataloss at br01-1-1.lax4.net2ez.com
according to an mtr I've been running for the past few minutes and a bit of congestion at any2-ix.la.arpnetworks.com | [11:07] |
| jdoe | I imagine it's probably related to those two other dudes who pinged out with me.
an issue with a specific host I guess? | [11:09] |
| RandalSchwartz | maybe | [11:10] |
| .... (idle for 19mn) | ||
| *** | dferris has quit IRC (Ping timeout: 252 seconds)
koan has quit IRC (Ping timeout: 252 seconds) dferris has joined #arpnetworks jdoe has quit IRC (Remote host closed the connection) jdoe has joined #arpnetworks koan has joined #arpnetworks koan has quit IRC (Changing host) koan has joined #arpnetworks | [11:29] |
| ....... (idle for 34mn) | ||
| jdoe | looking increasingly like that :P | [12:05] |
| *** | toddf has quit IRC (Quit: leaving)
toddf has joined #arpnetworks ChanServ sets mode: +o toddf | [12:18] |
| ........ (idle for 35mn) | ||
| rcsheets has joined #arpnetworks | [12:56] | |
| ....... (idle for 33mn) | ||
| up_the_irons | RandalSchwartz: jdoe : i got alerts for kvr06 around 11am
looked like high host traffic for a bit | [13:29] |
| RandalSchwartz | o/~ he's got... high host... he's got... high host... o/~ | [13:30] |
| up_the_irons | lol | [13:30] |
| *** | bitslip has quit IRC (Ping timeout: 252 seconds)
bitslip has joined #arpnetworks koan has quit IRC (Ping timeout: 244 seconds) koan has joined #arpnetworks koan has quit IRC (Changing host) koan has joined #arpnetworks | [13:33] |
| amdprophet has joined #arpnetworks | [13:45] | |
| amdprophet | wow, this room is larger than i remember | [13:45] |
| RandalSchwartz | we had some remodelling done
do you like the fireplace? | [13:46] |
| *** | bitslip has quit IRC (Ping timeout: 240 seconds) | [13:48] |
| mike-burns | It's the mirrors; they make the place look bigger. | [13:49] |
| RandalSchwartz | and the smoke! Must have both smoke and mirrors! | [13:49] |
| *** | dferris has quit IRC (Ping timeout: 252 seconds)
koan has quit IRC (Ping timeout: 244 seconds) dferris has joined #arpnetworks koan has joined #arpnetworks koan has quit IRC (Changing host) koan has joined #arpnetworks | [13:49] |
| up_the_irons | offending customer on kvr06 shutdown
just got some more packet loss alerts, but won't be a problem anymore | [13:54] |
| *** | koan has quit IRC (Read error: Connection reset by peer)
bitslip has joined #arpnetworks koan has joined #arpnetworks koan has quit IRC (Changing host) koan has joined #arpnetworks | [13:54] |
| .... (idle for 18mn) | ||
| vcs | o.O
bad customers! | [14:14] |
| ...... (idle for 26mn) | ||
| slashnick | up_the_irons: huzzah, thanks! | [14:40] |
| ..... (idle for 22mn) | ||
| *** | bGeorge has quit IRC (Quit: Bye.)
bGeorge has joined #arpnetworks | [15:02] |
| ........... (idle for 53mn) | ||
| Ehtyar has quit IRC (Remote host closed the connection) | [15:56] | |
| ..... (idle for 21mn) | ||
| fink has joined #arpnetworks | [16:17] | |
| ...... (idle for 25mn) | ||
| wickedSA has joined #arpnetworks
wickedSA has quit IRC (Client Quit) | [16:42] | |
| wickedSA_ has joined #arpnetworks | [16:49] | |
| wickedSA_ | up_the_irons: is it fixed? what is status? just kidding. all clear. | [17:01] |
| up_the_irons | wickedSA_: go f yourself
;) | [17:06] |
| .... (idle for 16mn) | ||
| anyone have a Cisco ASA using RADIUS auth? I have some software I want to test and see if radius auth works on the ASA through some rails code | [17:22] | |
| ............ (idle for 56mn) | ||
| dxtr | up_the_irons: No, but I got coffee. Does that count? | [18:18] |
| up_the_irons | dxtr: 'fraid no | [18:18] |
| dxtr | Oh c'mon!
Don't be picky | [18:19] |
| fink | heh, sony got hacked agains | [18:27] |
| RandalSchwartz | RandalSchwartz is safely in SLC | [18:28] |
| dxtr | Again!?
fink: Link! | [18:28] |
| fink | http://it.slashdot.org/story/11/06/02/2348233/Sony-Compromised-Again?utm_source=rss1.0&utm_medium=feed | [18:28] |
| RandalSchwartz | plaintext passwords! Gah!
RandalSchwartz looks up at calendar in 2011! and sql injection! what are they using, php? | [18:32] |
| *** | cubelogic has quit IRC (Ping timeout: 240 seconds) | [18:35] |
| pilgrimd | It's Sony. PHP may be asking too much.
Also, plaintext password storage is required for certain common forms of secure password transmission, since both ends need to know the password. | [18:37] |
| RandalSchwartz | nope. I don't buy it
there's never a reason the thing you're auth'ing to needs to store anything more than a hash these days. anything after that, you use public-key encryption (SSL, etc) so, absolutely no excuse. at all. | [18:40] |
| dferris | I worked for a large online meeting company in 2004 and nothing sensative was stored in the clear | [18:42] |
| G | heh yeah, that Sony hack is crazy | [18:48] |
| pilgrimd | RandalSchwartz: cram-md5 and digest-md5 sasl authentication require knowledge of the password. | [18:53] |
| RandalSchwartz | and md5 is lame. :)
new starts don't use it cleartext transmission of the SASL protocol is also broken people should be using SSL again - this is 2011 | [18:54] |
| pilgrimd | There are instances where SSL isn't possible. | [18:54] |
| RandalSchwartz | not 1997
Nope. SSL is always possible. implemented, maybe not. but that's the #fail then | [18:54] |
| *** | HighJinx has quit IRC (Ping timeout: 260 seconds) | [18:55] |
| pilgrimd | digest-md5 is used in secure http authentication. | [18:57] |
| RandalSchwartz | again - fail
if you aren't SSL, you're broken and http auth is 1997, not 2011 and if you're SSL, you can use basic auth. :) SSL and certs, or SSL and basic auth, or just plan SSL and sessions. no need for server to know a cleartext password. EVER. | [18:57] |
| pilgrimd | SSL+basic auth is still just transmission protection. | [18:59] |
| RandalSchwartz | and sufficient
the server still doesn't have a cleartext password winer winner | [18:59] |
| pilgrimd | it's also subject to the strength of the certificate structure you're using. | [18:59] |
| RandalSchwartz | sure, so is any combination of security
so be careful cleartext passwords are below the threshold | [18:59] |
| pilgrimd | yes, it does, basic auth sends the server the base64-encoded version of the password. | [18:59] |
| RandalSchwartz | yes - and the server hashes that, to compare against a hash
bingo - server doesn't need cleartext password ok - not as good as yubikey or securicard. But whatever. if you care, use a OTP stack but basic SSL is pretty damn impenetrable and far better than storing plaintext on server | [19:00] |
| pilgrimd | if I have control of both endpoints, stored shared secrets aren't a big deal, but security relying on third parties creates additional issues. | [19:02] |
| RandalSchwartz | and sony proves that the pot is too sweet at the endpoint
who cares about the middle they get one password each and if people can intercept your SSL traffic, you don't belong on the net | [19:04] |
| ...... (idle for 26mn) | ||
| fink | heh
RandalSchwartz: how'd your 8.2 upgrade go? | [19:30] |
| RandalSchwartz | didn't do any of them yet
that's on the short to-do list I might even farm that out (nudge nudge) | [19:34] |
| fink | RandalSchwartz: mine went swimmingly
no probls | [19:41] |
| RandalSchwartz | cool | [19:44] |
| .... (idle for 17mn) | ||
| *** | mike-burns has quit IRC (Read error: Operation timed out)
up_the_irons has quit IRC (Read error: Operation timed out) Yamazaki-kun has quit IRC (Read error: Operation timed out) up_the_irons has joined #arpnetworks ChanServ sets mode: +o up_the_irons mike-burns has joined #arpnetworks ChanServ sets mode: +o mike-burns Yamazaki-kun has joined #arpnetworks | [20:01] |
| cubelogic has joined #arpnetworks
fink has quit IRC (Quit: fink) HighJinx has joined #arpnetworks | [20:12] | |
| ..... (idle for 20mn) | ||
| Yamazaki-kun has quit IRC (Write error: Broken pipe)
mike-burns has quit IRC (Read error: Connection reset by peer) mike-burns has joined #arpnetworks ChanServ sets mode: +o mike-burns Yamazaki-kun has joined #arpnetworks | [20:38] | |
| ......................... (idle for 2h4mn) | ||
| cubelogic has quit IRC (Ping timeout: 246 seconds) | [22:47] | |
| ↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |