[00:17] *** bfft_ has quit IRC (Quit: leaving) [00:33] brycec: same as with anything; if i get complaints, then you're done [02:01] so probably you'd survive 10 minutes as an exit [02:01] maybe less [02:01] middleman probably acceptable [02:32] *** laotzi has quit IRC (Read error: Connection reset by peer) [02:50] *** xiphias has quit IRC (Ping timeout: 240 seconds) [02:51] *** xiphias has joined #arpnetworks [04:02] *** ziyourenxiang has joined #arpnetworks [04:40] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang) [05:13] I want to file a complaint [05:22] “If you have a complaint, I suggest you submit it through our email system. I'd be happy to refer you to our website.” [05:23] Well [05:24] I'm complaining about every arp subscriber other than me [05:24] because I want the servers to myself [05:24] so [05:24] take that. [05:25] just pay up and it is all yours :P [05:29] what? pay? [05:29] i thought this was America [05:47] *** r0ni has joined #arpnetworks [05:58] *** ziyourenxiang has joined #arpnetworks [06:07] 'murica [06:13] *** xiphias has quit IRC (Ping timeout: 240 seconds) [06:14] *** xiphias has joined #arpnetworks [06:29] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang) [07:24] *** robonerd has quit IRC (Ping timeout: 252 seconds) [07:28] *** m0unds_ has joined #arpnetworks [07:28] *** N3RG4L has quit IRC (Max SendQ exceeded) [07:29] *** N3RG4L has joined #arpnetworks [07:30] *** TheHiTCH_ has joined #arpnetworks [07:34] *** m0unds has quit IRC (*.net *.split) [07:34] *** TheHiTCHO has quit IRC (*.net *.split) [07:34] *** brycec has quit IRC (*.net *.split) [07:35] *** brycec has joined #arpnetworks [07:48] *** xiphias has quit IRC (Ping timeout: 240 seconds) [07:48] *** xiphias has joined #arpnetworks [07:48] *** xiphias has quit IRC (Changing host) [07:48] *** xiphias has joined #arpnetworks [08:33] *** heavysixer has joined #arpnetworks [08:33] *** ChanServ sets mode: +o heavysixer [08:59] *** heavysixer has quit IRC (Quit: heavysixer) [09:14] *** ThalinVien has quit IRC (*.net *.split) [09:16] *** ThalinVien has joined #arpnetworks [09:20] *** r0ni has quit IRC (Ping timeout: 240 seconds) [09:54] *** r0ni has joined #arpnetworks [10:26] *** brycec has quit IRC (Ping timeout: 246 seconds) [10:30] *** brycec has joined #arpnetworks [10:53] *** plett has quit IRC (Remote host closed the connection) [10:55] *** plett has joined #arpnetworks [12:36] *** heavysixer has joined #arpnetworks [12:36] *** ChanServ sets mode: +o heavysixer [12:42] today i've learned that freebsd's default ntpd config allows monlist queries to everyone, which enables malicious entities to abuse the ntp server to perfom amplification ddos attacks. so if your server responds to "ntpdc -c monl " you should fix your config asap or you might become part of (and be responsible for) a ddos attack (this is comparable to running an open dns resolver) [12:44] FreeBSD is the Linux of the BSDs. [12:45] at least it's not just linux :) [12:45] ... [12:45] m0unds_: S [12:45] it's the most unix-like of the linuxes [12:45] omgz must run teh opanbsdz for mad skurity [12:46] *** heavysixer has quit IRC (Quit: heavysixer) [12:46] * RandalSchwartz has a continual problem with people who type "..." [12:46] it's. Not. Needed. Evar. [12:47] just say what you're going to say when you're ready. [12:47] i was saying S [12:47] obviously [12:47] * RandalSchwartz rolls eyes [12:47] http://svnweb.freebsd.org/base/head/etc/ntp.conf?revision=259973&view=markup&pathrev=259973 [12:47] trying to study what monl does [12:48] it makes the ntp server send you its last 600 clients/peers [12:49] ahh - so you can have that point at another server via source spoofing? [12:49] little request => big response => ddos [12:50] jep. as it's udp and you can put any source address in the request (if you're with a lame ass provider which doesn't implement bcp 38) [12:51] so just add "disable monitor" to my ntp.conf? [12:52] as far as i understand it, it's "restrict noquery" which does the trick [12:52] but i think best would be to use this config: http://svnweb.freebsd.org/base/head/etc/ntp.conf?revision=259973&view=co&pathrev=259973 [12:53] ok [12:53] (which should be the new default as of 45 hours ago) [13:15] why doesn't freebsd use openntpd? [13:23] * m0unds_ shrugs [13:27] *** m0unds_ is now known as m0unds [13:34] *** fink has joined #arpnetworks [13:53] *** heavysixer has joined #arpnetworks [13:53] *** ChanServ sets mode: +o heavysixer [14:16] *** heavysixer has quit IRC (Quit: heavysixer) [14:30] *** fink has quit IRC (Quit: fink) [15:00] *** heavysixer has joined #arpnetworks [15:00] *** ChanServ sets mode: +o heavysixer [15:13] *** heavysixer has quit IRC (Quit: heavysixer) [15:27] *** heavysixer has joined #arpnetworks [15:27] *** ChanServ sets mode: +o heavysixer [15:43] *** heavysixer has quit IRC (Quit: heavysixer) [15:58] *** qbit has quit IRC (Ping timeout: 260 seconds) [16:00] *** qbit has joined #arpnetworks [16:29] *** heavysixer has joined #arpnetworks [16:29] *** ChanServ sets mode: +o heavysixer [16:49] *** heavysixer has quit IRC (Quit: heavysixer) [16:59] *** heavysixer has joined #arpnetworks [16:59] *** ChanServ sets mode: +o heavysixer [17:10] *** heavysixer has quit IRC (Quit: heavysixer) [17:28] *** robonerd has joined #arpnetworks [17:37] *** CaZe` has quit IRC (Ping timeout: 245 seconds) [17:37] *** CaZe` has joined #arpnetworks [18:03] *** heavysixer has joined #arpnetworks [18:03] *** ChanServ sets mode: +o heavysixer [18:16] *** heavysixer has quit IRC (Quit: heavysixer) [18:32] *** robonerd has quit IRC (Quit: ...) [18:35] *** robonerd has joined #arpnetworks [20:12] *** fink has joined #arpnetworks [20:42] *** TheHiTCH_ has quit IRC () [20:42] *** TheHiTCHO has joined #arpnetworks [20:45] hey all :) [20:48] hi [21:01] staticsafe what's happenin? [21:14] *** fink has quit IRC (Ping timeout: 260 seconds) [22:04] *** r0ni has quit IRC (Quit: Textual IRC Client: www.textualapp.com) [23:01] *** ziyourenxiang has joined #arpnetworks [23:19] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang)