[01:42] hah, anyone use zerigo cloud DNS? [02:20] not i [02:20] run your own dns [02:21] i dunno why dns is something people like to push off to others [02:27] oh yeah I mostly host my own DNS [02:27] just one of my clients uses zerigo for all his stuff [02:27] all down [02:28] their "6" nameservers have been DDoSed off the internet the past 48 hours [02:49] wow [02:49] my personal domain has 5 name servers [02:49] but generally speaking 3 is plenty for most people [02:50] and it's just cos it was esay to do for me :) [02:50] did you read about linkedin's dns being hacked somehow [02:50] and a few other sites [02:50] it's hard to tell how [02:53] hah yeah [02:53] I heard in linkedin's case it was their DNS hoster who injected an incorrect nameserver or something stupid [02:53] personal websites = dns.he.net [02:54] work stuff = 2 physical servers with a 3rd remote VPS [03:26] ahh i never saw anything conclusive [03:26] i was half following on nanog [03:26] linkedin worked normally quicklpy though [03:26] craigslist didn't [03:26] but i'm not in US [06:15] and a few other sites [06:15] have you seen the absurdly long thread [06:15] http://mailman.nanog.org/pipermail/nanog/2013-June/thread.html, ctrl+f coordinated [06:40] yeah [06:40] i'm subscribed [06:41] i only briefly looked as i said [06:41] i tried to only briefly look, but was getting a popup every few minutes about new mail like yesterday [06:41] so i decided to just read it [06:41] heh [06:41] i don't get popups [06:42] i'm not really following the /25 thing either [06:42] hah [06:42] someone said about padding acks to 1500 bytes [06:42] wat [06:42] just, "wat" [06:42] i suppose it's one way to keep ratios up [06:43] although you need the other end to send big ack [06:43] on net neutrility [06:43] cogent always has peering disagreements or issues [06:44] they're usually the source of the issues so presumably they would have a lot [06:45] i thoguht isp's were the source of the sisues [06:45] verizon, comcast etc [07:18] gizmoguy: zerigo sucks [07:18] gizmoguy: i used them for a year; when they got bought out by 8x8, their services all started to suck [07:19] no support, no product improvements, they got ddos'd off the internet last year and pledged to improve stuff..sounds like they haven't [07:20] for me, personal stuff is on he.net unless they need wildcards, important stuff is on dnsmadeeasy or whateverelse [07:20] and that coordinated hacking thread was silly [07:20] trying out rage4 atm [07:20] i'm on route53 for dns [07:22] i have a few consulting clients who use easydns as a registrar and dns host and like them a lot [07:59] *** toddf has quit IRC (Remote host closed the connection) [07:59] *** toddf has joined #arpnetworks [07:59] *** ChanServ sets mode: +o toddf [08:08] *** dj_goku has joined #arpnetworks [08:08] *** dj_goku has quit IRC (Changing host) [08:08] *** dj_goku has joined #arpnetworks [08:27] *** first2know has quit IRC (Quit: Leaving) [08:31] *** scottschecter has joined #arpnetworks [09:00] Do you guys prefer a specific MTA over another for bsd? I currently use postfix on *nix, I'm open to looking at anything else though. I just don't want to touch exim, assuming it's even in the ports to begin with. [09:01] postfix fan here [09:02] haha I figured. postfix works good, just wasn't sure if there was another favorite for BSD [09:06] I might just be configuring it to relay to the linux box anyway, so I guess it doesn't matter to much. [09:16] sorressean: there's a lot of excitement behind OpenSMTPD in the BSD project, but I've no personal experience with it. [09:16] brycec: yeah, I seen that. Looks like it's just barely ready to get into the wild though, not sure how well that'd do for me. [09:17] (If I recall correctly, I think opensmtpd became the default MTA in 5.3, or maybe it's just slated to be default) [09:18] sorressean: It's getting a good workout, even while being pretty young. I know it's used at Microsoft to handle some part of their bulk mailing stuff. [09:18] OpenSMTPD is getting rapid dev atm [09:18] haha that's kind of cool. [09:18] #opensmtpd btw :) [09:18] exchange is clearly the beast for the job. [09:23] MS uses postfix in their FOPE spam handling platform [09:23] is the opensmtpd implementation being used for transaction email or something? [09:29] m0unds: I couldn't say, I'm not involved and it's not something easily searched in my irc logs [09:34] ah, gotcha [10:12] *** first2know has joined #arpnetworks [10:15] *** heavysixer has joined #arpnetworks [10:15] *** ChanServ sets mode: +o heavysixer [10:18] *** heavysixer has quit IRC (Client Quit) [11:18] *** first2know has quit IRC (Remote host closed the connection) [11:19] *** first2know has joined #arpnetworks [11:29] *** toddf has quit IRC (Remote host closed the connection) [11:29] *** toddf has joined #arpnetworks [11:29] *** ChanServ sets mode: +o toddf [11:29] if anyone's interested, oreilly media coupon code DSUG2 = 50% off ebooks [11:30] *** heavysixer has joined #arpnetworks [11:30] *** ChanServ sets mode: +o heavysixer [11:31] *** first2know has quit IRC (Ping timeout: 256 seconds) [11:44] i don't run any mta :< [11:44] or handle mail myself [11:45] that seems weird [11:45] i don't like running my own mail [11:46] it's a hassle to move it around, so i host mine via office365 [11:52] What do you guys use to find out what is taking up the most amount of space on your FreeBSD servers? [11:56] http://www.freebsd.org/cgi/man.cgi?query=du&sektion=1 [12:00] Eh [12:01] I ended up just using 'find /usr/home -type f -size +20000k -exec ls -lh {} \; | awk '{ print $9 ": " $5 }' [12:01] Displays everything in /usr/home > 20MB [12:02] it sure does [12:03] *** first2know has joined #arpnetworks [12:09] *** first2know has quit IRC (Ping timeout: 256 seconds) [12:09] *** first2know has joined #arpnetworks [12:19] m0unds i dont run my own mail at all because effort and deliverability [12:19] i use sailthru, ses and sendgrid for outbound [12:19] inbound is gandi or gapps or w/e depending on what it's for [12:25] hazardous: i just figure other people have the good hardware and redundant systems to handle it. gandi is awesome though, in general [12:25] * staticsafe hosts his own mail for certain stuff and has it hosted for certain other stuff [12:26] I'm actually finally moving my stuff back to my own server this weekend [12:26] Thanks for reminding me [12:26] i've got an MTA for outbound-only, but that's it [12:32] m0unds for inbound mail at least [12:32] the one thing i do not want to deal with [12:32] is multiple redundant backups to not lose mail, and spam filters [12:32] i'd much rather have someone else just sort that out for me [12:32] yeah [12:33] i've had an acct w/spamexperts for a couple years as a filtering/continuity sort of hting [12:33] thing* [12:33] if i have important mail that needs to remain private, well, that's what client-side pgp is for [13:00] *** heavysixer has quit IRC (Quit: heavysixer) [13:13] phlux: ncdu - ncurses du, browses the tree, sorts by space used, name, etc [13:13] oh and lets you delete from inside the app even (recursively) [14:17] m0unds: yeah.. that was my impression of zerigo [14:17] I'm moving him to route53 at the moment [14:17] gizmoguy: it's a bummer, because their services before acquisition were pretty alright [14:18] I assume on route53 they can zone transfer from a primary DNS server I host? [14:18] gizmoguy: I use DNSMadeEasy for shit I need up, tis awesome [14:19] I never liked that route53 (and some others) charge by the query :/ [14:19] "It supports slaving from a DNS master using IXFR (zone transfer) requests" [14:19] answered my own question [14:19] Does that mean it can be converted to a master, gizmoguy ? [14:19] Or is it permanently slaved? [14:19] brycec: I want to run route53 as a permanent slave [14:19] eh, as long as the "per query" pricing is set at a reasonable threshold, it doesn't bother me in the slightest [14:19] oh misunderstood [14:20] not like stupid dyn and their 600k query base limit [14:20] m0unds: seems to be like a cent per million queries or something [14:20] $.50 per million [14:20] i think [14:20] does Route53 have v6 on any of their NSes? [14:20] I wish I had a way to get an idea what my usage would be without moving to self-hosted or route53 [14:21] brycec: for my personal svcs w/email and stuff i average less than 100k/mo [14:21] "Amazon Route 53 supports both forward (AAAA) and reverse (PTR) IPv6 records. However, the Route 53 service itself is not available over IPv6 at this time." [14:21] :( [14:21] Thanks that gives me some idea [14:21] ~200,000+ queries on one of my domains [14:22] gizmoguy: meh lame [14:23] since most of my svcs are accessed by eyeball networks, i don't really care about ipv6 right now [14:23] lulz [14:23] No m0unds, everyone on the edge of the internet has ipv6 enabled [14:23] WE DO? [14:23] * m0unds checks [14:23] nope. [14:23] every single person [14:23] hahaha [14:24] i had to ask comcast for ipv6 at home on my business acct [14:24] it's going to take them 3 weeks to alloc [14:24] ipv6 was deployed perfectly 5 years ago in my happy place in my head [14:24] heh gizmoguy [14:24] * brycec is 100% IPv6 compat/capable [14:25] * gizmoguy whoises everyone in the chan to see who is cool enough to have IRCv6 [14:25] In fact, my ipv4 connection died one day and I didn't notice it. That was fun. [14:25] * m0unds puts on his best whois-pants [14:25] oh what's with stupid freenode hiding everyone's IPs [14:25] I assure you gizmoguy I'm connected to Freenode over ipv6 [14:25] good work brycec [14:26] I am too :) [14:26] gizmoguy: it's not hiding mine [14:26] * m0unds panics [14:26] * gizmoguy ddos's [14:26] nuuuuu [14:26] gizmoguy's isn't hidden either :DDD [14:26] retaliate! [14:27] i can't, i'd knock all of nz offline [14:27] m0unds: take this: [14:27] :D [14:27] ~> ping6 -s 6400 2600:3c00::f03c:91ff:fe69:aef1 [14:27] PING 2600:3c00::f03c:91ff:fe69:aef1(2600:3c00::f03c:91ff:fe69:aef1) 6400 data bytes [14:27] 6408 bytes from 2600:3c00::f03c:91ff:fe69:aef1: icmp_seq=1 ttl=53 time=193 ms [14:27] ow [14:27] brycec: 09:25:12 [freenode] -!- brycec [~cobryce@unaffiliated/cobryce] [14:27] heh [14:27] m0unds: "i can't, i'd knock all of nz offline [14:28] soo true [14:28] lol [14:28] * staticsafe hits gizmoguy with 100mbit [14:28] there goes nz [14:28] hahahah [14:28] :P [14:28] we are connected to dialup to the US [14:28] it's an entire city block of modem banks [14:29] it's ok. we only have 5 people on the internet down here [14:29] under carefully constructed leanto structures [14:29] lol [14:29] and it's timeshare too [14:29] so I have to get off soon [14:29] fred wants to use it [14:29] * staticsafe says hi to the other nz guy in here [14:29] Moved my mail over to my own server again today [14:29] you get your "internet bill" on a monthly basis, and you're billed by the bps [14:29] Feelsgoodman.jpg [14:29] ohi mercutio! [14:30] he won't deny it [14:30] i think mercutio works for an ISP in nz [14:30] his domain looks familiar [14:30] nznogger @ mercutio? [14:31] his ISP peers with ARP Networks too lol [14:31] i read that as nzlogger [14:32] we all work double jobs in NZ [14:32] I'm sysadmin during the day, cut down trees in the weekend [14:32] do you wear high heels, suspenders and a bra? [14:32] http://bgp.he.net/AS9559 i think is the one [14:34] lol m0unds [14:35] i'm glad someone caught that, maybe [14:44] m0unds: not usually :P [14:44] (monty python ref) [14:44] so gizmoguy zerigo is still down? [14:45] m0unds: I'm a lumberjack and it's ok ? [14:46] staticsafe: I think it might be back again [14:46] post mortem: http://www.zerigo.com/blog/2012/07/zerigodnsoutage [14:47] er that post is from 2012 gizmoguy [14:48] lol [14:48] well I guess they didn't learn much then [14:48] that's the one i mentioned from last year when they said they'd "try harder" or something [14:48] hahahah [14:49] that's the newest post on their blog :S [14:49] zerigostatus.com [14:49] i think [14:49] http://zerigostatus.com/ [14:49] a.ns.zerigo.net - Up [14:49] b.ns.zerigo.net - Down [14:49] c.ns.zerigo.net - Down [14:49] d.ns.zerigo.net - Up [14:49] e.ns.zerigo.net - Down [14:49] still fighting [14:49] hahaha [14:49] f.ns.zerigo.net - Down [14:50] 2/6 ain't bad? [14:50] What are the recommended administrative e-mail addresses? I know there's abuse@ and postmaster@, but are there any others? [14:50] dns@ and webmaster@ [14:50] um, those are the two big ones - you could always add hostmaster if you manage your dns [14:51] webmaster is a great spam target [14:51] ^ [14:51] for whatever reason, 80% of my admin address spam across all domains i run hits webmaster [14:52] aren't there some that are required? [14:52] like, if the e-mail bounces, you could be written off as spam by the provider? [14:52] eh, not really [14:52] i recommend keeping abuse@ and postmaster@ [14:52] with some of the sillier RBLs, they'll cry about abuse@ [14:52] besides that *shrug* [14:52] roger that..thanks [14:54] * staticsafe slaps opendns [14:54] ..? [14:55] http://okazaki.tomoyo.ca/mtB.png my friend made a typo and it keeps doing that [15:22] *** knigma-m_ has joined #arpnetworks [15:22] *** knigma-m has quit IRC (Read error: Connection reset by peer) [15:32] i was really confused there for a second wondering who you are because one of my friends hosts his image off tomoyo.eu [15:39] yes wintereise uses tomoyo.eu [15:53] *** knigma-m has joined #arpnetworks [15:53] *** knigma-m_ has quit IRC (Read error: Connection reset by peer) [16:08] lol postgres- supported_versions: WARNING: Unknown Debian release: 7.1 [16:09] how do you know her, staticsafe [16:09] haha [16:09] also is it an anime or something. [16:09] *** knigma-m has quit IRC (Read error: Connection reset by peer) [16:10] *** knigma-m_ has joined #arpnetworks [16:15] its a character from an anime [16:15] *** knigma-m_ has quit IRC (Read error: Connection reset by peer) [16:15] *** knigma-m has joined #arpnetworks [16:19] oh [16:19] do you like anime? [16:22] yes [16:23] what's an anime? [16:27] m0unds: "What anime sounds like to your parents" - http://www.youtube.com/watch?v=a0g8bwYzMyU [16:27] lol [16:27] ahahahahah [16:28] that's fantastic [16:30] http://www.youtube.com/watch?v=37dBT09KryA this was listed as "related" [16:32] that dude creepy [17:04] *** heavysixer has joined #arpnetworks [17:04] *** ChanServ sets mode: +o heavysixer [17:11] *** heavysixer has quit IRC (Quit: heavysixer) [17:32] he sure is [17:32] the base ids rules on srx devices will protect against..winnuke [17:33] i don't know why that's so amusing [17:46] what's winnuke? [17:47] http://en.wikipedia.org/wiki/Winnuke [17:49] oh [17:49] yeah, ancient [17:49] haha [17:49] lol i don't know those OSes [17:49] my first comp was win xp [17:49] what..? [17:49] how old are you? [17:51] the first computer i ever used was an IBM express [17:51] my dad's company sent it to our house for him to generate quotes on [17:51] um [17:51] a teenager [17:51] ;s [17:51] yeah I figured you had to be [17:52] people in another channel were like what the fuck when they found out my first internet connection was broadband [17:52] The first computer I remember us having was some huge white laptop [17:52] lol [17:52] I think it only had DOS on it [17:52] oh man [17:52] my dad also ended up with an NEC laptop that booted from 3.5" floppy and had an external 4800baud modem [17:52] I first got into Linux during my family's 56k days [17:52] I'll never forget playing with ppp for the first time [17:52] I almost gave up on Linux [17:53] this was back when Corel offered a Linux suite [17:53] i remember using ubuntu version 9.04? as a little kid [17:53] :3 [17:53] I remember when there was no Ubuntu and the world was better for it! [17:53] heh [17:54] terms i don't know: baud [17:54] http://en.wikipedia.org/wiki/Baud [17:55] terms you should google: baud [17:55] 4800 baud = 4800 bits per second [17:55] orrrrr 4.8kbit/sec [17:56] isn't ~5kb/s basically 56k [17:56] slightly less than .6KB/sec [17:57] wat [17:57] 4.8kbit/sec = .6KB/sec [17:57] you'd be hard pressed to get much more than 5KB/sec over 56k [17:58] my first linux use was redhat 4 [17:59] my friend's brother was an intern at intel, and they had him learning how to use it. i borrowed the discs and installed it on my old 486 [18:04] *** heavysixer has joined #arpnetworks [18:04] *** ChanServ sets mode: +o heavysixer [18:19] *** heavysixer has quit IRC (Quit: heavysixer) [18:21] *** HighJinx has quit IRC () [18:45] 9600 baud 4 lyf [18:45] O NO U DINT [18:45] or do you mean, like, literally [18:45] I don't really bother changing my kit off 9600 baud [18:45] because you're in nz [18:45] makes it harder to guess what speed I set it up to [18:45] I really <3 the gear that does baud-negotiation [18:46] I've got an HP switch that does it [18:46] you serial in to it at any sped [18:46] hit enter a few times and it works out what speed you're talking to it at [18:46] ^ the future right there [18:47] i don't know if i can handle how bad these scaled images look on this ereader [18:47] i might have to resort to reading in the browser or something [18:49] http://sdrv.ms/1aDNEmy [19:59] *** dj_goku has quit IRC (Ping timeout: 276 seconds) [21:07] *** dj_goku has joined #arpnetworks [21:26] up_the_irons: how much capacity does arp have to any2ix? could it be congesting? [21:27] hey up_the_irons, whenever you're back - what kind of spec can i get for around 200ish? preferably with ssds [21:28] icmp deprioritisation and return routes etc makes it harder to tell [21:35] hmm facebook looks ok [21:36] well 1 msec jitter [21:36] maybe other end or maybe the san jose / los angeles thing [22:05] hi guys [22:05] any idea which encoding is this ? "Çñ®PNl?4Ó!?¬ØQìw" [23:04] nope [23:04] maybe unicode?