hah, anyone use zerigo cloud DNS?
not i
run your own dns
i dunno why dns is something people like to push off to others
oh yeah I mostly host my own DNS
just one of my clients uses zerigo for all his stuff
all down
their "6" nameservers have been DDoSed off the internet the past 48 hours
wow
my personal domain has 5 name servers
but generally speaking 3 is plenty for most people
and it's just cos it was esay to do for me :)
did you read about linkedin's dns being hacked somehow
and a few other sites
it's hard to tell how
hah yeah
I heard in linkedin's case it was their DNS hoster who injected an incorrect nameserver or something stupid
personal websites = dns.he.net
work stuff = 2 physical servers with a 3rd remote VPS
ahh i never saw anything conclusive
i was half following on nanog
linkedin worked normally quicklpy though
craigslist didn't
but i'm not in US
<mercutio> and a few other sites
have you seen the absurdly long thread
http://mailman.nanog.org/pipermail/nanog/2013-June/thread.html, ctrl+f coordinated
yeah
i'm subscribed
i only briefly looked as i said
i tried to only briefly look, but was getting a popup every few minutes about new mail like yesterday
so i decided to just read it
heh
i don't get popups
i'm not really following the /25 thing either
hah
someone said about padding acks to 1500 bytes
wat
just, "wat"
i suppose it's one way to keep ratios up
although you need the other end to send big ack
on net neutrility
cogent always has peering disagreements or issues
they're usually the source of the issues so presumably they would have a lot
i thoguht isp's were the source of the sisues
verizon, comcast etc
gizmoguy: zerigo sucks
gizmoguy: i used them for a year; when they got bought out by 8x8, their services all started to suck
no support, no product improvements, they got ddos'd off the internet last year and pledged to improve stuff..sounds like they haven't
for me, personal stuff is on he.net unless they need wildcards, important stuff is on dnsmadeeasy or whateverelse
and that coordinated hacking thread was silly
trying out rage4 atm
i'm on route53 for dns
i have a few consulting clients who use easydns as a registrar and dns host and like them a lot
Do  you guys prefer a specific MTA over another for bsd? I currently use postfix on *nix, I'm open to looking at anything else though. I just don't want to touch exim, assuming it's even in the ports to begin with.
postfix fan here
haha I figured. postfix works good, just wasn't sure if there was another favorite for BSD
I might just be configuring it to relay to the linux box anyway, so I guess it doesn't matter to much.
sorressean: there's a lot of excitement behind OpenSMTPD in the BSD project, but I've no personal experience with it.
brycec:  yeah, I seen that. Looks like it's just barely ready to get into the wild though, not sure how well that'd do for me.
(If I recall correctly, I think opensmtpd became the default MTA in 5.3, or maybe it's just slated to be default)
sorressean: It's getting a good workout, even while being pretty young. I know it's used at Microsoft to handle some part of their bulk mailing stuff.
OpenSMTPD is getting rapid dev atm
haha that's kind of cool.
#opensmtpd btw :)
exchange is clearly the beast for the job.
MS uses postfix in their FOPE spam handling platform
is the opensmtpd implementation being used for transaction email or something?
m0unds: I couldn't say, I'm not involved and it's not something easily searched in my irc logs
ah, gotcha
if anyone's interested, oreilly media coupon code DSUG2 = 50% off ebooks
i don't run any mta :<
or handle mail myself
that seems weird
i don't like running my own mail
it's a hassle to move it around, so i host mine via office365
What do you guys use to find out what is taking up the most amount of space on your FreeBSD servers?
http://www.freebsd.org/cgi/man.cgi?query=du&sektion=1
Eh
I ended up just using 'find /usr/home -type f -size +20000k -exec ls -lh {} \; | awk '{ print $9 ": " $5 }'
Displays everything in /usr/home > 20MB
it sure does
m0unds i dont run my own mail at all because effort and deliverability
i use sailthru, ses and sendgrid for outbound
inbound is gandi or gapps or w/e depending on what it's for
hazardous: i just figure other people have the good hardware and redundant systems to handle it. gandi is awesome though, in general
I'm actually finally moving my stuff back to my own server this weekend
Thanks for reminding me
i've got an MTA for outbound-only, but that's it
m0unds for inbound mail at least
the one thing i do not want to deal with
is multiple redundant backups to not lose mail, and spam filters
i'd much rather have someone else just sort that out for me
yeah
i've had an acct w/spamexperts for a couple years as a filtering/continuity sort of hting
thing*
if i have important mail that needs to remain private, well, that's what client-side pgp is for
phlux: ncdu - ncurses du, browses the tree, sorts by space used, name, etc
oh and lets you delete from inside the app even (recursively)
m0unds: yeah.. that was my impression of zerigo
I'm moving him to route53 at the moment
gizmoguy: it's a bummer, because their services before acquisition were pretty alright
I assume on route53 they can zone transfer from a primary DNS server I host?
gizmoguy: I use DNSMadeEasy for shit I need up, tis awesome
I never liked that route53 (and some others) charge by the query :/
"It supports slaving from a DNS master using IXFR (zone transfer) requests"
answered my own question
Does that mean it can be converted to a master, gizmoguy ?
Or is it permanently slaved?
brycec: I want to run route53 as a permanent slave
eh, as long as the "per query" pricing is set at a reasonable threshold, it doesn't bother me in the slightest
oh misunderstood
not like stupid dyn and their 600k query base limit
m0unds: seems to be like a cent per million queries or something
$.50 per million
i think
does Route53 have v6 on any of their NSes?
I wish I had a way to get an idea what my usage would be without moving to self-hosted or route53
brycec: for my personal svcs w/email and stuff i average less than 100k/mo
"Amazon Route 53 supports both forward (AAAA) and reverse (PTR) IPv6 records. However, the Route 53 service itself is not available over IPv6 at this time."
:(
Thanks that gives me some idea
~200,000+ queries on one of my domains
gizmoguy: meh lame
since most of my svcs are accessed by eyeball networks, i don't really care about ipv6 right now
lulz
No m0unds, everyone on the edge of the internet has ipv6 enabled
WE DO?
nope.
every single person
hahaha
i had to ask comcast for ipv6 at home on my business acct
it's going to take them 3 weeks to alloc
ipv6 was deployed perfectly 5 years ago in my happy place in my head
heh gizmoguy
In fact, my ipv4 connection died one day and I didn't notice it. That was fun.
oh what's with stupid freenode hiding everyone's IPs
I assure you gizmoguy I'm connected to Freenode over ipv6
good work brycec
I am too :)
gizmoguy: it's not hiding mine
nuuuuu
gizmoguy's isn't hidden either :DDD
retaliate!
i can't, i'd knock all of nz offline
m0unds: take this:
:D
~> ping6 -s 6400 2600:3c00::f03c:91ff:fe69:aef1
PING 2600:3c00::f03c:91ff:fe69:aef1(2600:3c00::f03c:91ff:fe69:aef1) 6400 data bytes
6408 bytes from 2600:3c00::f03c:91ff:fe69:aef1: icmp_seq=1 ttl=53 time=193 ms
ow
brycec: 09:25:12 [freenode] -!- brycec [~cobryce@unaffiliated/cobryce]
heh
m0unds: "i can't, i'd knock all of nz offline
soo true
lol
there goes nz
hahahah
:P
we are connected to dialup to the US
it's an entire city block of modem banks
it's ok. we only have 5 people on the internet down here
under carefully constructed leanto structures
lol
and it's timeshare too
so I have to get off soon
fred wants to use it
Moved my mail over to my own server again today
you get your "internet bill" on a monthly basis, and you're billed by the bps
Feelsgoodman.jpg
ohi mercutio!
he won't deny it
i think mercutio works for an ISP in nz
his domain looks familiar
nznogger @ mercutio?
his ISP peers with ARP Networks too lol
i read that as nzlogger
we all work double jobs in NZ
I'm sysadmin during the day, cut down trees in the weekend
do you wear high heels, suspenders and a bra?
http://bgp.he.net/AS9559 i think is the one
lol m0unds
i'm glad someone caught that, maybe
m0unds: not usually :P
(monty python ref)
so gizmoguy zerigo is still down?
m0unds: I'm a lumberjack and it's ok ?
staticsafe: I think it might be back again
post mortem: http://www.zerigo.com/blog/2012/07/zerigodnsoutage
er that post is from 2012 gizmoguy
lol
well I guess they didn't learn much then
that's the one i mentioned from last year when they said they'd "try harder" or something
hahahah
that's the newest post on their blog :S
zerigostatus.com
i think
http://zerigostatus.com/
a.ns.zerigo.net - Up
b.ns.zerigo.net - Down
c.ns.zerigo.net - Down
d.ns.zerigo.net - Up
e.ns.zerigo.net - Down
still fighting
hahaha
f.ns.zerigo.net - Down
2/6 ain't bad?
What are the recommended administrative e-mail addresses? I know there's abuse@ and postmaster@, but are there any others?
dns@ and webmaster@
um, those are the two big ones - you could always add hostmaster if you manage your dns
webmaster is a great spam target
^
for whatever reason, 80% of my admin address spam across all domains i run hits webmaster
aren't there some that are required?
like, if the e-mail bounces, you could be written off as spam by the provider?
eh, not really
i recommend keeping abuse@ and postmaster@
with some of the sillier RBLs, they'll cry about abuse@
besides that *shrug*
roger that..thanks
..?
http://okazaki.tomoyo.ca/mtB.png my friend made a typo and it keeps doing that
i was really confused there for a second wondering who you are because one of my friends hosts his image off tomoyo.eu
yes wintereise uses tomoyo.eu
lol postgres-  supported_versions: WARNING: Unknown Debian release: 7.1
how do you know her, staticsafe
haha
also is it an anime or something.
its a character from an anime
oh
do you like anime?
yes
what's an anime?
m0unds: "What anime sounds like to your parents" - http://www.youtube.com/watch?v=a0g8bwYzMyU
lol
ahahahahah
that's fantastic
http://www.youtube.com/watch?v=37dBT09KryA this was listed as "related"
that dude creepy
he sure is
the base ids rules on srx devices will protect against..winnuke
i don't know why that's so amusing
what's winnuke?
http://en.wikipedia.org/wiki/Winnuke
oh
yeah, ancient
haha
lol i don't know those OSes
my first comp was win xp
what..?
how old are you?
the first computer i ever used was an IBM express
my dad's company sent it to our house for him to generate quotes on
um
a teenager
;s
yeah I figured you had to be
people in another channel were like what the fuck when they found out my first internet connection was broadband
The first computer I remember us having was some huge white laptop
lol
I think it only had DOS on it
oh man
my dad also ended up with an NEC laptop that booted from 3.5" floppy and had an external 4800baud modem
I first got into Linux during my family's 56k days
I'll never forget playing with ppp for the first time
I almost gave up on Linux
this was back when Corel offered a Linux suite
i remember using ubuntu version 9.04? as a little kid
:3
I remember when there was no Ubuntu and the world was better for it!
heh
terms i don't know: baud
http://en.wikipedia.org/wiki/Baud
terms you should google: baud
4800 baud = 4800 bits per second
orrrrr 4.8kbit/sec
isn't ~5kb/s basically 56k
slightly less than .6KB/sec
wat
4.8kbit/sec = .6KB/sec
you'd be hard pressed to get much more than 5KB/sec over 56k
my first linux use was redhat 4
my friend's brother was an intern at intel, and they had him learning how to use it. i borrowed the discs and installed it on my old 486
9600 baud 4 lyf
O NO U DINT
or do you mean, like, literally
I don't really bother changing my kit off 9600 baud
because you're in nz
makes it harder to guess what speed I set it up to
I really <3 the gear that does baud-negotiation
I've got an HP switch that does it
you serial in to it at any sped
hit enter a few times and it works out what speed you're talking to it at
^ the future right there
i don't know if i can handle how bad these scaled images look on this ereader
i might have to resort to reading in the browser or something
http://sdrv.ms/1aDNEmy
up_the_irons: how much capacity does arp have to any2ix?  could it be congesting?
hey up_the_irons, whenever you're back - what kind of spec can i get for around 200ish? preferably with ssds
icmp deprioritisation and return routes etc makes it harder to tell
hmm facebook looks ok
well 1 msec jitter
maybe other end or maybe the san jose / los angeles thing
hi guys
any idea which encoding is this ?  "Çñ®PNl?4Ó!?¬ØQìw"
nope
maybe unicode?