whats something you can do on an Ubuntu system which is perhaps harder or not possible to do on a CentOS system? Use Unity. good answer heh lol Use APT repos (I feel like this is a game of Family Feud) apparently my ipv6 is broken because things changed recently here, and I'm still routing old-school orly I was unaware of any changes I'm still doing it like this: http://support.arpnetworks.com/kb/main/how-to-configure-ipv6-on-freebsd up_the_irons gave me a new strategy that involves fe80::1 and fe80::2 RandalSchwartz: You have a /48? unfortunately, his email to me seems to be the only docs, and I don't understand how it will know my external IP for my machine or how that will get routed yes... I have a /48 Ahhh Easy explanation. Traffic for the /32 hits ARP's router. ARP knows that the "next hop" (or "gateway") for your /48 is fe80::2%vlan-XXXX and routes the /48 to that link-local address. ahh... that makes sense then the world doesn't need my full route... just the route to arp afaik those wiki instructions are still valid for /64s. When I picked up the /48 last year, I had to setup the fe80:: stuff too. Yep Which is all it ever had, since ARP advertises its /32 But I don't need to advertise my /48 to arp? is that managed by some config somewhere? It's hard-coded but up_the_irons ahh *by How do I set my em0 to be both the fe80 and my normal address? as in... what do I add to this: ipv6_ifconfig_em0="2607:f2f8:3080::/64" fe80::2 is your primary address ^^ And then you add any other addresses as aliases *fe80::2/64 (yes, /64 for the link-local) ipv6_addrs_em0= ... ? I can't help with FreeBSD-specifics, sorry (at least, that's how it is for ipv4) Apparently it's this form (from a forum post 2011): ipv6_ifconfig_em0_alias0="fec0:0:0:2::80/64" ahh where fec0... is the desired address yeah... I recall there being a discontinuity between v4 and v6 like that (In Debian-land, I just add this to my /etc/network/interfaces up ip -6 addr add 2607:f2f8:a650::5:80C3:9134/64 dev eth0) http://www.freebsd.org/cgi/man.cgi?query=rc.conf&sektion= confirms and notes that ipv4_addrs_... is old symtax yeah, because I'm still running 8.3 :) My new box will be 9.neweest 9.2 I think it is You're practically 2 major releases behind, eesh I know. Shoemaker's children problems I take Billable Hours over Overhead Hours every day because I never know when Billable Hours dry up but lately, I've been getting back-to-back work I've been paying for a second server for four months, and haven't even booted it once yet. Well, work is good. Stick with the money. And... just don't sleep, get caught up on FreeBSD releases. lol, been there If I'd realised how fast and easy pkgng makes things, I would not have dragged my feet. http://www.techdirt.com/articles/20140227/06521826371/keurig-will-use-drm-new-coffee-maker-to-lock-out-refill-market.shtml is this actually a thing I'm not surprised... It' It's ink cartridges all over Just takes a tiny eeprom and some electrical contacts, nothing fancier than a chip+pin/smartcard. And why? because they can. shipped new version of coffee: now requires signed keys to brew And I suspect because they need to. Once everybody in the world has bought one, how do you sustain revenue? How do you sustain the massive size of the company (because downsizing is baaaad, even to fit an adjusted market demand) i mean yeah it's not surprising but it just seems like an absolutely comical asshole move drming a drink They're not drm'ing the drink though, just the module that goes in the machine. Strictly speaking. Once that DRM becomes tamper-detecting, then it's a super-asshole move. i mean the coffeemakers already require wifi to operate and have licencing servers Do they really? under the guise of "we can SMS you when your coffee is done for remote machines" and other crap i mean nespresso already got sued for their coffeepod drm lol My coffee is already wifi-enabled, but that's because I go to Starbucks. (I don't drink coffee very often.) And technically DRM'd - I can't exactly buy it from someone besides Starbucks when I'm inside a Starbucks. THAT is a nice idea. selling coffee in starbucks ;) "too bad" we don't have starbucks here Easy to do an under-the-table transaction, but the coffee-brewing gear would be rather obvious. Or the vendor is walking in and out over and and over. ] And technically DRM'd - I can't exactly buy it from someone besides Starbucks when I'm inside a Starbucks. ehhhhhhhhh i've seen some places that aren't starbucks sell starbucks like they will pay for use of the logo, get supplied by them for products Yeah, grocery stores (like Safeway) have licensed branches. But that's /licensed/ (Meaning, it's in-line with "DRM") http://www.theguardian.com/world/2013/oct/20/thai-coffee-stall-starbucks-starbung staticsafe: http://t.co/oKbX4cPvjQ http://t.co/oKbX4cPvjQ -> http://www.npr.org/2014/03/02/282129737/first-listen-tycho-awake @smokeping https://smokeping.cobryce.com/ m0unds: this is great yeah, fourth track (i think) is probably my fav really like the band element added to the electronic stuff, sounds so good gonna see 'em again in may staticsafe: did you hear his remix of "I take comfort in your ignorance" by ulrich schnauss? nope https://soundcloud.com/tycho/ulrich-schnauss-i-take-comfort SoundCloud: "Ulrich Schnauss - I Take Comfort in Your Ignorance (Tycho Remix) by Tycho" by Tycho http://shop.iso50.com/collections/awake/products/awake the art design is so good ikr my wife went nuts last year and bought a bunch of his prints and stuff "hazardous | shipped new version of coffee: now requires signed keys to brew" LOLZ don't joke about that, it might happen! RandalSchwartz: i don't need to advertise your /48 because I already advertise the /32 "above" it and routing to a link-local address is kinda like in v4 when people would route to /30's in an rfc1918 range if the router sets a static link-local its all good. if the protocol is rtadvd/rtsol then link local is done by default anyway. if one is setting up two routers with static routes between then, link-local makes sense so one doesn't need to set a global ip in the link between the two routers. if you're toddf and expect arpnetworks to have a static mac for routers, you're upa creek without a paddle until you course correct and use the global addresses since neither rtadvd nor static link-local is programmed on arpnetworks's side. just sayin ;-) hazardous: signed keys to brew .. *sigh* .. thats the next stomach turning reality in freedom removed from food. the first is that farmers and consumers are no longer authorized to plant seeds from crops they grow/retrieve from the supermarket .. due to patents and such on the engineered crops .. http://arstechnica.com/security/2014/03/hackers-hijack-300000-plus-wireless-routers-make-malicious-changes/ Ars Technica: "Hackers hijack 300,000-plus wireless routers, make malicious changes" all these home routers are pretty dodgy :/ s/home router/ars technica article/ all these ars technica articles are pretty dodgy it's a real problem whatever the source Not dis agreeing with the former you know it's worse than admin/admin default l/p ? a lot of modems and routers have hardcoded other passwords, and so even if you change your login they can login as a different user. err change your password I'm happy to say I can't remember the last time I ran a "home router." Been running Linux or BSD boxes since my very beginning. yes, but that's not what the vast majority of users do it's kind of scary to me Not my problem :p yeah, it's careless and wreckless and abundant it's probably the biggest issue around atm that hasn't had dire consqeuences yet. Imagine an automanufacturer with a "special key" that works on every one of their vehicles. oh i think they have those the shift to electronic locks... means that it can cost $400 or something if you lose your keys but it's not necessarily safer than normal Perhaps. And the fact that I cannot access every car on the planet at once from my deskchair means it's far less of an issue. and tehre's these sniffer things out now, which can "listen" to the itneraction between your car locking mechanism and your remote locker and replay it to unlock I was just trying to come up with an analogous industry for the public to grasp which means it's safer to lock your car with a key than electronically well the car thing, you have to be nearby to record it but if you're looking for a target it's ok just like lots of these internet exploits which aren't looking for individual, but "a target" I wish the auto industry would be open about their security :/ If they're so damn confident their locks are secure, they should have no problem releasing some details. As far as anyone knows, it's a simple RF pattern that can be played back. (This is indeed the case with some cars, but not all) garage door openers are the same i have door locking on my alarm it is convenient heh, good example. Back in the 90's, crooks could drive down a street and blast common "open" codes. Since then, garade door openers actually cleaned up their act and enacted some fundamental security. but what's more convenient is that my car beeps when i don't lock it because then i can realise i forgot to lock it dude there are still issues in 200s 2000s i dunno if there are now still again if you're looking for "a target" it's pretty easy to find one afaik but yeah if you want a particular one it may be harder I thought that since openers and remotes went to "pairing" it had effectively cut that attack out. nope there's also some bluetooth exploits (In the 80's and 90's, it was just a few dip switches to set your "code," and when you set yours the same as a neighbour then fun times.) Theoretically possible, but you have to remember how LOUD an opening garage is. You'd be better off covering a small window with duct tape and punching it in. haha No matter how loud, if the garage is far from the living quarters, nobody would hear it. ahh i live in wet city no-one sticks garages very far away Hell, the only time the garage door was heard when I was a kid was when the connecting door was open, or you were upstairs above the garage. weird (when I was a kid == old, before the prevalence of "whisperdrive" etc) i've heard next door neighbours garages in the past where i am now don't have a garage just a car port wow, wtf is wrong with your garage doors :P i dunno, most non automatic ones are loud too and often end up a bit bent so they can be annoying to open/shut well i assume there's probably a strong corrrelaction between old/poorly maintained, vs new and remote-opening it's weird they're noisy though, cos most are damn slow too well i suppose it is convenient for slow if you want to get out cos most you can close the door from inside, and get out before it's closed Skimming Google, it appears that garages are far more vulnerable to physical attacks. Haven't seen one mention of remote vulnerabilities my garage door opener has a dc motor and the door itself is noisier than the opener also, i can't hear either from inside the house when it opens, but i can hear the keypad chimes my alarm emits when it opens interesting i think in general houses here haev poor noise insulation real fun physical attack on garage doors w/glass in them (like ornamental windows or whatever) like i can hear people downstairs easy just bust out a small glass piece, then reach in with a pole of some sort and disengage the opener (emerg disconnect) then open the door from the outside heh m0unds: or a coat hanger up through the top seal and over the door there may be an alarm though brycec No need to break a window doesn't happen a lot here, but i've heard a lot about it in mid-atlantic usually involves breaking glass, regardless of whether it's necessary cars are common targets here and usuaully it's just smash and run afaik well for break ins for car theifs, it's usually models with bad locks and older Interesting, if not overly-detailed bit of information on remote opener security http://en.wikipedia.org/wiki/Garage_door_opener Garage door opener :: A garage door opener is a motorized device that opens and closes garage doors. Most are controlled by switches on the garage wall, as well as by remote controls carried by the owner. The electric opener The electric overhead garage door opener was invented by C.G. Johnson in 1926 in Hartford City, Indiana. Electric Garage Door openers did not become popular until Era Meter Company of Chicago offered one after World... wow 1926 they only took off here recentlyish i think like last 15 years or something My impression is that they've been as popular as cars have in the US, at least as far as new construction. heh people have older cars here on average i think the government keeps wanting to reduce the number of older cars yeah, every house on my block growing up had an opener all those houses were built in 1980-1984 ^ average age of 12.7 years is old it seems From what I gather, the 60's were a big boom. my car is over 20 years old :/ http://marantecamerica.com/customers/residential.html?id=99 that's my fancy opener i wonder why they didn't take off here (I part under http://upload.wikimedia.org/wikipedia/commons/1/16/Appearance_of_sky_for_weather_forecast,_Dhaka,_Bangladesh.JPG) s/part/park/ (I park under http://upload.wikimedia.org/wikipedia/commons/1/16/Appearance_of_sky_for_weather_forecast,_Dhaka,_Bangladesh.JPG) heh you live in bangladesh? No, I just park there :P (First Google Image result for "sky") i have no idea how to figure out how common remote garage door openers are here easily they're common in commercial car parking places. Frankly, I assume they all are nowadays. I know there was a time when openers weren't common, but that was a Long Time Ago(tm) well i've lived in quite a few places and none have had them but the last 3 places i lived in only had carports. do you have carports over there much? at apartment complexes older houses might have them if they don't have an attached garage i actually prefer carports in some ways what m0unds said - apartment complexes, trailer parks. Basically anywhere that isn't a "house" has a garage. can smokeping trigger a traceroute and email it when a significant change in the network is detected? Probably, yes. you can get alerts on "someloss" fucking "someloss" you could use that to trigger a traceroute hahaha # Boy this is getting annoying. #alerts = someloss i don't haev any email alerts handy After numerous attempts to install smokeping from source, I resorted to using something called ghettoforge a repo that had an RPM version so i don't know what informationi it provides, but i imagine it's enough to do a traceroute oh god centos The email itself is pretty sparse. doesnt' have any default config :/ and it wasn't working i hate centos brycec: does it say which host? you could parse config file.. Example for someloss: http://sprunge.us/WWBJ so you can parse thec onfig file for ARP.ThisGW.ThisGW6 You can even set your own mailtemplate to format the data the way you want. http://oss.oetiker.ch/smokeping/doc/smokeping_config.en.html Jump to *** Alerts *** And you can explicitly call out to a program instead of sending email mnathani: ^ "The program will the be called whenever an alert matches, using the following 5 arguments (except if edgetrigger is 'yes'; see below): name-of-alert, target, loss-pattern, rtt-pattern, hostname." cool NB I think "hostname" in smokeping parlance is the ARP.ThisGW.IPv6, not the host= value maybe i should look at it too brycec: thanks np I am going to try and find a host in every country and add it to my smokeping heh gl Of course, "every country" is far less useful than "on every transit provider" why do you care what your ping to north korea is like? He wants the censors to have the quickest access to his contennt? This should help with your goal, mnathani https://ring.nlnog.net/participants/ http://www.regent-holidays.co.uk/country/north-korea/ I've actually pared back my smokeping hosts Why do you have so many graphs overlapping? What do you mean? like when you click on hosts @smokeping https://smokeping.cobryce.com/ But I'm not sure what you mean by "graphs overlapping." Can you give an example? you show multiple lines on one graph i assume that's what he means Like https://smokeping.cobryce.com/?target=Slaves ? I mean like all the voipms nodes overlapping brycec: is there a way to easily rate limit notifications? like..notify once upon $condition and not again til it's normal? There might be, but I'm not aware of it. mnathani: To give me an overall view of the service as a whole. If I want a given node, I just click it. Which one of you lot is a kiwi? https://twitter.com/Donal_OKeeffe/status/439817245380710402 TWITTER: Say what you will about George W Bush, but he wouldn't have stood for Russian aggression in Ukraine. He'd have invaded New Zealand by now. (Sat Mar 01 17:39:37 +0000 2014, retweeted 3059 times) i'd still rather some automatic type fault finding when tehre's a real issue s/real/current/ i'd still rather some automatic type fault finding when tehre's a current issue although it's helpful to see packet loss isues across networks etc as is What do the grey shades above and below a smokeping graph mean? Jitter, iirc @wa what is jitter jitter (English word);1->noun->small rapid variations in a waveform resulting from fluctuations in the voltage supply or mechanical vibrations or other sources, 2->noun->a small irregular movement;jit-ter (6 letters ->2 syllables);disturbance -> interference -> noise -> motion -> movement (total: 5);trijet;(none);13 (International English) -> 13 (North American English);(???) ?54-8837 mean deviation would be a more precise description @wa what is verpassen overpasses (English word);noun->bridge formed by the upper level of a crossing of two highways at different levels;\'ohverp,asuhz (IPA: ˈoʊvɝpˌæsəz);1929 (Interwar period) (85 years ago);overpass;flyover;bridge -> span;(none among common words);(none among common words) @define verpassen No definitions found for verpassen. Huh, interesting. @define jitter No definitions found for jitter. it doesn't know german Or apparently @define is broken :( goddamnit Google Stop breaking my shit (i didn't expect it to, just wondering ;) haha Error 404 (Not Found)!!1 That is the actual page returned from Google, "!!1" lol (technically, http://sprunge.us/OHDA is the actual page returned) Network Jitter or delay variation is a measure of the variablility for a series of one-way latency measurements. brycec: forgot if i asked this before, but is brycebot open source? i want to add dict.cc support BryceBot is not. Components of it are. It's built atop other open source projects. But its code is not in a condition I'm comfortable releasing. smokeping doens't actually show mean ping from memory it's the most common ping What do you mean? I'm looking at it show that to me. brycec: yeah i understand where the outliers go to those spikes i think it removes top/bottom 25% or such is that mode? avg = mean or median or what yeh it's not mean though eg "media rtt: 887.7 us avg" it's the median so it's the middle ping https://smokeping.cobryce.com/?target=ARP.Upstream6 oh it says it's median anywaY is the average median min median and max median i think it is median per runtime but i think it's probably mean of all the values when showing the total when it says "averaeg" so it doesn't really show jitter that well sd would be standard deviation? yeh whats the am/s average median? i'm guessing "amsterdams per second" :D ratio of average median vs standard deviation as per http://oss.oetiker.ch/smokeping/doc/reading.en.html if you have a few outlying high pings it basically doesn't show up easily (i have a host that's doing that for some reason) if you leave ping command running to it the second before and after will be fine, but for one second ping is high and i have no idea why "the dark area around the line shows the amount of variation between individual probes" like I said, the jitter. "Heavy fluctuation of the RTT (round trip time) values also indicate that the network is overloaded. This shows on the graph as smoke; the more smoke, the more fluctuation." maybe it needs a few spikes why does g.root-servers.net not respond to pings? use i.root-servers.net? all the other 12 are responding, but not g perhaps I should use a dig probe well they'r erun by diff people right I just switched VPS's for my weechat I seem to be missing some info from the first column where the nicks should be seems like a colour issue black fg and bg in the server buffer or chat buffer? m0unds: My mistake. I was expecting text in a location in the chat buffer where there was supposed to be none ah smart filters are a cool feature in weechat too also, you can turn off the nick list to make it appear like vanilla irssi if you're more used to that by some chance How would I go about doing a full back up of a server, and then doing regular incremental or differential backup so as to not require a complete backup each time. To restore, I would only need the full backup and the latest incremental to restore. mnathani: zfs send... oh that needs all the incrementals I guess this is more differential than incremental oh you want each incremental to be since the original yes you could do that with zfs send :/ How about if I am not ruuning ZFS heh well i'd make a copy of the file system am looking for something that would fit nicely in a BASH script and then use something like rsync against it? but i don't know if you scan store that do you want/need delta compression? dont think so because you could have a script that just gets files that have changed / werent' there orogiinally and puts them in a tarball but it means if you do things like append a little gbit to a whole lot of files it has to store it twice rsnapshot (I think that's the name) provides you a unified image care of hard-links. You can grab any incremental snap and it's 100% complete. I'm still a fan of duplicity though. There might be a way to tell it to create incrementals against the root. transparent_hugepage=never Does anyone know if that kernel parameter is still required to install 64bit CentOS 6 on kvr02 ? i imagine it crashes if it doesn't work http://aprogrammerslife.info/wp-content/uploads/2013/01/tirinhaEN-45.png lol mnathani: it won't hurt otherwise