***: mtve has joined #arpnetworks
LT has joined #arpnetworks
jlgaddis has quit IRC (Quit: leaving)
jlgaddis has joined #arpnetworks
jlgaddis has quit IRC (Changing host)
jlgaddis has joined #arpnetworks
dzup has quit IRC (Ping timeout: 245 seconds)
dzup has joined #arpnetworks
easymac has quit IRC (Ping timeout: 252 seconds)
cmeiklejohn has joined #arpnetworks
easymac has joined #arpnetworks
easymac has quit IRC (Changing host)
easymac has joined #arpnetworks
easymac has quit IRC (Client Quit)
Guest29176 has joined #arpnetworks
Guest29176 has quit IRC (Client Quit)
easymac_ has joined #arpnetworks
cmeiklejohn has quit IRC (Quit: Computer has gone to sleep.)
LT has quit IRC (Quit: Leaving)
easymac_ is now known as easymac
easymac is now known as Guest73661
Guest73661 has quit IRC (Quit: leaving)
mercutio has quit IRC (Ping timeout: 244 seconds)
cmeiklejohn has joined #arpnetworks
meingtsla has quit IRC (Quit: Leaving)
meingtsla has joined #arpnetworks
mercutio has joined #arpnetworks
hive-mind has quit IRC (Disconnected by services)
hive-mind has joined #arpnetworks
cmeiklejohn has quit IRC (Quit: Computer has gone to sleep.)
qbit_ has joined #arpnetworks
heavysixer has quit IRC (*.net *.split)
lazard has quit IRC (*.net *.split)
qbit has quit IRC (*.net *.split)
qbit_ is now known as qbit
cmeiklejohn has joined #arpnetworks
cmeiklejohn has quit IRC (Client Quit)
heavysixer has joined #arpnetworks
lazard has joined #arpnetworks
hitchcock.freenode.net sets mode: +o heavysixer sorressean: I'm looking at building a hosting service to host a couple services. It's a games deal, so users will need to log in and compile their code etc. What sorts of mechenisms should I put in place to keep them from launching outbound connections within limitations and resources? Is that all I'd need to worry about?
also, would there be a way to limit them to x number of inbound ports? CaZe: Depends on your OS. mercutio: http://www.openbsd.org/cgi-bin/man.cgi?query=systrace&apropos=0&sektion=0&manpath=OpenBSD+Current&arch=i386&format=html
that's one way
basically the only kind of way to limit is block system calls
linux has something similar as well i think
the other way is to have virtual code rather than real code
like a c interpreter brycec: Linux has SELinux and Apparmor
not that I have any extensive experience with either
but I'm told OpenSuSE has a solid default Apparmor install staticsafe: just updated my vps to fbsd 9.1-RELEASE :) brycec: oooh 9.1-release is out? spiffy RandalSchwartz: ugh - that means 8.3 is probably eol'ed, and it's time for me to update everything brycec: oh it's not officially built according to http://www.freebsd.org/releases/9.1R/schedule.html staticsafe: brycec: its on the mirrors already brycec: still gotta go through secteam :/ mercutio: i think there'll be a freebsd 8.4 randal
or maybe not
google says they don't have enough manpower
someone had idea of kickstarter project sorressean: hmm. I'm using freebsd, but I'm thinking I might just need to do some traffic inspection.
that would be easier than trying to log everything.
My main concern is, I have 3 users. user1 compiles a program and runs a DOS against someone else and I get an abuse report. I need to handle it, but I need to track the user that did it. ***: cmeiklejohn has joined #arpnetworks
heavysixer has quit IRC (*.net *.split)
lazard has quit IRC (*.net *.split)
alexstanford2 has quit IRC (*.net *.split)
RandalSchwartz has quit IRC (*.net *.split)
up_the_irons has quit IRC (*.net *.split)
cullum has quit IRC (*.net *.split)
pansexual has quit IRC (*.net *.split)
amdprophet has quit IRC (*.net *.split)
staticsafe has quit IRC (*.net *.split)
CESSMASTER has quit IRC (*.net *.split)
dferris has quit IRC (*.net *.split)
medum has quit IRC (*.net *.split)
[Derek] has quit IRC (*.net *.split)
mtve has quit IRC (*.net *.split)
CaZe has quit IRC (*.net *.split)
SpaceDump has quit IRC (*.net *.split)
henderb has quit IRC (*.net *.split)
Lefty has quit IRC (*.net *.split)
er|c has quit IRC (*.net *.split)
jpalmer has quit IRC (*.net *.split)
dr_jkl has quit IRC (*.net *.split)
gluffis has quit IRC (*.net *.split)
qbit has quit IRC (*.net *.split)
jnq has quit IRC (*.net *.split)
sorressean has quit IRC (*.net *.split)
meingtsla has quit IRC (*.net *.split)
notion has quit IRC (*.net *.split)
twobithacker has quit IRC (*.net *.split)
kraigu has quit IRC (*.net *.split)
avj has quit IRC (*.net *.split)
tabthorpe has quit IRC (*.net *.split)
doomviking has quit IRC (*.net *.split)
pyro-__ has quit IRC (*.net *.split)
brycec has quit IRC (*.net *.split)
qbit has joined #arpnetworks
jnq has joined #arpnetworks
sorressean has joined #arpnetworks
mtve has joined #arpnetworks
CaZe has joined #arpnetworks
SpaceDump has joined #arpnetworks
henderb has joined #arpnetworks
Lefty has joined #arpnetworks
qbit has quit IRC (*.net *.split)
jnq has quit IRC (*.net *.split)
sorressean has quit IRC (*.net *.split)
[Derek] has joined #arpnetworks
meingtsla has joined #arpnetworks
notion has joined #arpnetworks
twobithacker has joined #arpnetworks
kraigu has joined #arpnetworks
avj has joined #arpnetworks
tabthorpe has joined #arpnetworks
doomviking has joined #arpnetworks
pyro-__ has joined #arpnetworks
brycec has joined #arpnetworks
alexstanford2 has joined #arpnetworks
RandalSchwartz has joined #arpnetworks
up_the_irons has joined #arpnetworks
cullum has joined #arpnetworks
pansexual has joined #arpnetworks
amdprophet has joined #arpnetworks
staticsafe has joined #arpnetworks
hitchcock.freenode.net sets mode: +o up_the_irons
cmeiklejohn has quit IRC (Quit: Computer has gone to sleep.)
er|c has joined #arpnetworks
jpalmer has joined #arpnetworks
dr_jkl has joined #arpnetworks
gluffis has joined #arpnetworks
heavysixer has joined #arpnetworks
lazard has joined #arpnetworks
hitchcock.freenode.net sets mode: +o heavysixer
qbit has joined #arpnetworks
jnq has joined #arpnetworks
sorressean has joined #arpnetworks
CESSMASTER has joined #arpnetworks
dferris has joined #arpnetworks
medum has joined #arpnetworks
dzup has quit IRC (Ping timeout: 245 seconds)
dzup has joined #arpnetworks
HighJinx has quit IRC (Quit: Leaving)
HighJinx has joined #arpnetworks
cmeiklejohn has joined #arpnetworks
cmeiklejohn has quit IRC (Excess Flood)
cmeiklejohn has joined #arpnetworks
cmeiklejohn has quit IRC (Excess Flood)
cmeiklejohn has joined #arpnetworks
cmeiklejohn has quit IRC (Excess Flood)
cmeiklejohn has joined #arpnetworks
staticsafe has quit IRC (Quit: WeeChat 0.3.9.2)
staticsafe has joined #arpnetworks
cmeiklejohn has quit IRC (Quit: ["Textual IRC Client: www.textualapp.com"])
_mnathani_ has joined #arpnetworks
_mnathani_ has quit IRC (Client Quit) dr_jkl: hmm
freebsd or openbsd... mercutio: openbsd dr_jkl: why
what makes openbsd's shit smell sweeter? staticsafe: that is a rather silly question
what is this for? mercutio: it contains itself
it's not randomly disobedient dr_jkl: what is what for? i want a bsd box for fuckin' around on.
perl, irc. etc. staticsafe: randomly disobedient? mercutio: openbsd has better man pages, is more consistent, less crap in the base install staticsafe: what? mercutio: and higher quality standards
that said there are less knobs.
well he was talking about shitting
so i thought of dogs dr_jkl: why has a user on irc automatically got to be male? (: staticsafe: because english doesn't have a gender-neutral pronoun dr_jkl: there's a generally accepted gender neutral pronoun.
'ze'
ze/zir, etc staticsafe: first time i've heard of that dr_jkl: well, now you know. (:
tell your friends.
hm
a cursory glace at some internet sources point to a focus on security first
i like this. mercutio: are you a feminist dr_jkl?
cos it seems strange to go on a tirade like that randomly dr_jkl: tirade? hardly. i was simply passing on some info
like a 'hey, didja know...' ***: heavysixer has quit IRC (*.net *.split)
lazard has quit IRC (*.net *.split)
heavysixer has joined #arpnetworks
hitchcock.freenode.net sets mode: +o heavysixer