***: BryceBot has joined #arpnetworks mnathani: whats something you can do on an Ubuntu system which is perhaps harder or not possible to do on a CentOS system? mike-burns: Use Unity. staticsafe: good answer heh ***: SpeedBus has quit IRC (Ping timeout: 245 seconds)
SpeedBus_ has joined #arpnetworks
SpeedBus_ is now known as SpeedBus
grepidem1c has joined #arpnetworks
grepidemic has quit IRC (Remote host closed the connection)
easymac has joined #arpnetworks
easymac has quit IRC (Changing host)
easymac has joined #arpnetworks
Guest84340 has quit IRC (Quit: leaving)
jpalmer has joined #arpnetworks
novae has quit IRC (Ping timeout: 264 seconds)
novae has joined #arpnetworks brycec: lol
Use APT repos
(I feel like this is a game of Family Feud) RandalSchwartz: apparently my ipv6 is broken because things changed recently here, and I'm still routing old-school brycec: orly
I was unaware of any changes RandalSchwartz: I'm still doing it like this: http://support.arpnetworks.com/kb/main/how-to-configure-ipv6-on-freebsd
up_the_irons gave me a new strategy that involves fe80::1 and fe80::2 brycec: RandalSchwartz: You have a /48? RandalSchwartz: unfortunately, his email to me seems to be the only docs, and I don't understand how it will know my external IP for my machine
or how that will get routed
yes... I have a /48 brycec: Ahhh
Easy explanation. Traffic for the /32 hits ARP's router. ARP knows that the "next hop" (or "gateway") for your /48 is fe80::2%vlan-XXXX and routes the /48 to that link-local address. RandalSchwartz: ahh... that makes sense then
the world doesn't need my full route... just the route to arp brycec: afaik those wiki instructions are still valid for /64s. When I picked up the /48 last year, I had to setup the fe80:: stuff too.
Yep
Which is all it ever had, since ARP advertises its /32 RandalSchwartz: But I don't need to advertise my /48 to arp?
is that managed by some config somewhere? brycec: It's hard-coded but up_the_irons RandalSchwartz: ahh brycec: *by RandalSchwartz: How do I set my em0 to be both the fe80 and my normal address?
as in... what do I add to this: ipv6_ifconfig_em0="2607:f2f8:3080::/64" brycec: fe80::2 is your primary address ^^
And then you add any other addresses as aliases
*fe80::2/64 (yes, /64 for the link-local) RandalSchwartz: ipv6_addrs_em0= ... ? brycec: I can't help with FreeBSD-specifics, sorry RandalSchwartz: (at least, that's how it is for ipv4) -: brycec googles brycec: Apparently it's this form (from a forum post 2011): ipv6_ifconfig_em0_alias0="fec0:0:0:2::80/64" RandalSchwartz: ahh brycec: where fec0... is the desired address RandalSchwartz: yeah... I recall there being a discontinuity between v4 and v6 like that brycec: (In Debian-land, I just add this to my /etc/network/interfaces up ip -6 addr add 2607:f2f8:a650::5:80C3:9134/64 dev eth0) ***: novae has quit IRC (Ping timeout: 240 seconds) brycec: http://www.freebsd.org/cgi/man.cgi?query=rc.conf&sektion= confirms and notes that ipv4_addrs_... is old symtax RandalSchwartz: yeah, because I'm still running 8.3 :)
My new box will be 9.neweest
9.2 I think it is brycec: You're practically 2 major releases behind, eesh RandalSchwartz: I know. Shoemaker's children problems
I take Billable Hours over Overhead Hours every day
because I never know when Billable Hours dry up ***: novae has joined #arpnetworks RandalSchwartz: but lately, I've been getting back-to-back work
I've been paying for a second server for four months, and haven't even booted it once yet. brycec: Well, work is good. Stick with the money. And... just don't sleep, get caught up on FreeBSD releases.
lol, been there
If I'd realised how fast and easy pkgng makes things, I would not have dragged my feet. hazardous: http://www.techdirt.com/articles/20140227/06521826371/keurig-will-use-drm-new-coffee-maker-to-lock-out-refill-market.shtml
is this actually a thing brycec: I'm not surprised... It'
It's ink cartridges all over
Just takes a tiny eeprom and some electrical contacts, nothing fancier than a chip+pin/smartcard.
And why? because they can. hazardous: shipped new version of coffee: now requires signed keys to brew brycec: And I suspect because they need to. Once everybody in the world has bought one, how do you sustain revenue? How do you sustain the massive size of the company (because downsizing is baaaad, even to fit an adjusted market demand) hazardous: i mean yeah it's not surprising but it just seems like an absolutely comical asshole move
drming a drink brycec: They're not drm'ing the drink though, just the module that goes in the machine. Strictly speaking.
Once that DRM becomes tamper-detecting, then it's a super-asshole move. hazardous: i mean the coffeemakers already require wifi to operate
and have licencing servers brycec: Do they really? hazardous: under the guise of "we can SMS you when your coffee is done for remote machines" and other crap
i mean nespresso already got sued for their coffeepod drm brycec: lol
My coffee is already wifi-enabled, but that's because I go to Starbucks. (I don't drink coffee very often.)
And technically DRM'd - I can't exactly buy it from someone besides Starbucks when I'm inside a Starbucks. ant: THAT is a nice idea. selling coffee in starbucks ;)
"too bad" we don't have starbucks here brycec: Easy to do an under-the-table transaction, but the coffee-brewing gear would be rather obvious. Or the vendor is walking in and out over and and over. hazardous: ] <brycec> And technically DRM'd - I can't exactly buy it from someone besides Starbucks when I'm inside a Starbucks.
ehhhhhhhhh
i've seen some places that aren't starbucks sell starbucks
like they will pay for use of the logo, get supplied by them for products brycec: Yeah, grocery stores (like Safeway) have licensed branches.
But that's /licensed/
(Meaning, it's in-line with "DRM") ***: exm has joined #arpnetworks ant: http://www.theguardian.com/world/2013/oct/20/thai-coffee-stall-starbucks-starbung m0unds: staticsafe: http://t.co/oKbX4cPvjQ BryceBot: http://t.co/oKbX4cPvjQ -> http://www.npr.org/2014/03/02/282129737/first-listen-tycho-awake ***: exm has left "WeeChat 0.4.3"
Guest51353 is now known as pjs mnathani: @smokeping BryceBot: https://smokeping.cobryce.com/ ***: thestereobus has joined #arpnetworks staticsafe: m0unds: this is great ***: thestereobus has quit IRC (Quit: thestereobus) m0unds: yeah, fourth track (i think) is probably my fav
really like the band element added to the electronic stuff, sounds so good
gonna see 'em again in may ***: thestereobus has joined #arpnetworks m0unds: staticsafe: did you hear his remix of "I take comfort in your ignorance" by ulrich schnauss? ***: thestereobus_ has joined #arpnetworks staticsafe: nope m0unds: https://soundcloud.com/tycho/ulrich-schnauss-i-take-comfort BryceBot: SoundCloud: "Ulrich Schnauss - I Take Comfort in Your Ignorance (Tycho Remix) by Tycho" by Tycho staticsafe: http://shop.iso50.com/collections/awake/products/awake -: staticsafe orders ***: thestereobus has quit IRC (Ping timeout: 269 seconds)
thestereobus_ is now known as thestereobus m0unds: the art design is so good staticsafe: ikr m0unds: my wife went nuts last year and bought a bunch of his prints and stuff ***: thestereobus has quit IRC (Quit: thestereobus) up_the_irons: "hazardous | shipped new version of coffee: now requires signed keys to brew"
LOLZ
don't joke about that, it might happen!
RandalSchwartz: i don't need to advertise your /48 because I already advertise the /32 "above" it
and routing to a link-local address is kinda like in v4 when people would route to /30's in an rfc1918 range toddf: if the router sets a static link-local its all good. if the protocol is rtadvd/rtsol then link local is done by default anyway. if one is setting up two routers with static routes between then, link-local makes sense so one doesn't need to set a global ip in the link between the two routers.
if you're toddf and expect arpnetworks to have a static mac for routers, you're upa creek without a paddle until you course correct and use the global addresses since neither rtadvd nor static link-local is programmed on arpnetworks's side. just sayin ;-)
hazardous: signed keys to brew .. *sigh* .. thats the next stomach turning reality in freedom removed from food. the first is that farmers and consumers are no longer authorized to plant seeds from crops they grow/retrieve from the supermarket .. due to patents and such on the engineered crops .. ***: novae has quit IRC (Ping timeout: 240 seconds)
novae has joined #arpnetworks mercutio: http://arstechnica.com/security/2014/03/hackers-hijack-300000-plus-wireless-routers-make-malicious-changes/ BryceBot: Ars Technica: "Hackers hijack 300,000-plus wireless routers, make malicious changes" mercutio: all these home routers are pretty dodgy gizmoguy: :/ brycec: s/home router/ars technica article/ BryceBot: <mercutio> all these ars technica articles are pretty dodgy mercutio: it's a real problem whatever the source brycec: Not dis agreeing with the former mercutio: you know it's worse than admin/admin default l/p ?
a lot of modems and routers have hardcoded other passwords, and so even if you change your login they can login as a different user.
err change your password brycec: I'm happy to say I can't remember the last time I ran a "home router." Been running Linux or BSD boxes since my very beginning. mercutio: yes, but that's not what the vast majority of users do
it's kind of scary to me brycec: Not my problem :p
yeah, it's careless and wreckless mercutio: and abundant
it's probably the biggest issue around atm that hasn't had dire consqeuences yet. brycec: Imagine an automanufacturer with a "special key" that works on every one of their vehicles. mercutio: oh i think they have those
the shift to electronic locks... means that it can cost $400 or something if you lose your keys
but it's not necessarily safer than normal brycec: Perhaps. And the fact that I cannot access every car on the planet at once from my deskchair means it's far less of an issue. mercutio: and tehre's these sniffer things out now, which can "listen" to the itneraction between your car locking mechanism and your remote locker
and replay it to unlock brycec: I was just trying to come up with an analogous industry for the public to grasp mercutio: which means it's safer to lock your car with a key than electronically
well the car thing, you have to be nearby to record it
but if you're looking for a target it's ok
just like lots of these internet exploits which aren't looking for individual, but "a target" brycec: I wish the auto industry would be open about their security :/ If they're so damn confident their locks are secure, they should have no problem releasing some details. As far as anyone knows, it's a simple RF pattern that can be played back. (This is indeed the case with some cars, but not all) mercutio: garage door openers are the same
i have door locking on my alarm
it is convenient brycec: heh, good example. Back in the 90's, crooks could drive down a street and blast common "open" codes. Since then, garade door openers actually cleaned up their act and enacted some fundamental security. mercutio: but what's more convenient is that my car beeps when i don't lock it
because then i can realise i forgot to lock it
dude there are still issues in 200s
2000s
i dunno if there are now still
again if you're looking for "a target" it's pretty easy to find one afaik
but yeah if you want a particular one it may be harder brycec: I thought that since openers and remotes went to "pairing" it had effectively cut that attack out. mercutio: nope
there's also some bluetooth exploits brycec: (In the 80's and 90's, it was just a few dip switches to set your "code," and when you set yours the same as a neighbour then fun times.) mercutio: Theoretically possible, but you have to remember how LOUD an opening garage is. You'd be better off covering a small window with duct tape and punching it in.
haha brycec: No matter how loud, if the garage is far from the living quarters, nobody would hear it. mercutio: ahh
i live in wet city
no-one sticks garages very far away brycec: Hell, the only time the garage door was heard when I was a kid was when the connecting door was open, or you were upstairs above the garage. mercutio: weird brycec: (when I was a kid == old, before the prevalence of "whisperdrive" etc) mercutio: i've heard next door neighbours garages in the past
where i am now don't have a garage just a car port brycec: wow, wtf is wrong with your garage doors :P mercutio: i dunno, most non automatic ones are loud too
and often end up a bit bent
so they can be annoying to open/shut
well i assume there's probably a strong corrrelaction between old/poorly maintained, vs new and remote-opening
it's weird they're noisy though, cos most are damn slow too
well i suppose it is convenient for slow if you want to get out
cos most you can close the door from inside, and get out before it's closed brycec: Skimming Google, it appears that garages are far more vulnerable to physical attacks. Haven't seen one mention of remote vulnerabilities m0unds: my garage door opener has a dc motor and the door itself is noisier than the opener
also, i can't hear either from inside the house when it opens, but i can hear the keypad chimes my alarm emits when it opens mercutio: interesting
i think in general houses here haev poor noise insulation m0unds: real fun physical attack on garage doors w/glass in them (like ornamental windows or whatever) mercutio: like i can hear people downstairs easy m0unds: just bust out a small glass piece, then reach in with a pole of some sort and disengage the opener (emerg disconnect) then open the door from the outside mercutio: heh brycec: m0unds: or a coat hanger up through the top seal and over the door mercutio: there may be an alarm though brycec brycec: No need to break a window m0unds: doesn't happen a lot here, but i've heard a lot about it in mid-atlantic
usually involves breaking glass, regardless of whether it's necessary mercutio: cars are common targets here
and usuaully it's just smash and run afaik
well for break ins
for car theifs, it's usually models with bad locks and older brycec: Interesting, if not overly-detailed bit of information on remote opener security http://en.wikipedia.org/wiki/Garage_door_opener BryceBot: Garage door opener :: A garage door opener is a motorized device that opens and closes garage doors. Most are controlled by switches on the garage wall, as well as by remote controls carried by the owner. The electric opener The electric overhead garage door opener was invented by C.G. Johnson in 1926 in Hartford City, Indiana. Electric Garage Door openers did not become popular until Era Meter Company of Chicago offered one after World... mercutio: wow 1926 -: brycec isn't surprised mercutio: they only took off here recentlyish i think
like last 15 years or something brycec: My impression is that they've been as popular as cars have in the US, at least as far as new construction. mercutio: heh people have older cars here on average i think
the government keeps wanting to reduce the number of older cars m0unds: yeah, every house on my block growing up had an opener
all those houses were built in 1980-1984 brycec: ^ mercutio: average age of 12.7 years is old it seems brycec: From what I gather, the 60's were a big boom. mercutio: my car is over 20 years old :/ m0unds: http://marantecamerica.com/customers/residential.html?id=99
that's my fancy opener mercutio: i wonder why they didn't take off here brycec: (I part under http://upload.wikimedia.org/wikipedia/commons/1/16/Appearance_of_sky_for_weather_forecast,_Dhaka,_Bangladesh.JPG)
s/part/park/ BryceBot: <brycec> (I park under http://upload.wikimedia.org/wikipedia/commons/1/16/Appearance_of_sky_for_weather_forecast,_Dhaka,_Bangladesh.JPG) mercutio: heh
you live in bangladesh? brycec: No, I just park there :P
(First Google Image result for "sky") mercutio: i have no idea how to figure out how common remote garage door openers are here easily
they're common in commercial car parking places. brycec: Frankly, I assume they all are nowadays. I know there was a time when openers weren't common, but that was a Long Time Ago(tm) mercutio: well i've lived in quite a few places
and none have had them
but the last 3 places i lived in only had carports.
do you have carports over there much? m0unds: at apartment complexes
older houses might have them if they don't have an attached garage mercutio: i actually prefer carports in some ways brycec: what m0unds said - apartment complexes, trailer parks. Basically anywhere that isn't a "house" has a garage. mnathani: can smokeping trigger a traceroute and email it when a significant change in the network is detected? brycec: Probably, yes. mercutio: you can get alerts on "someloss" brycec: fucking "someloss" mercutio: you could use that to trigger a traceroute
hahaha brycec: # Boy this is getting annoying.
#alerts = someloss mercutio: i don't haev any email alerts handy mnathani: After numerous attempts to install smokeping from source, I resorted to using something called ghettoforge a repo that had an RPM version mercutio: so i don't know what informationi it provides, but i imagine it's enough to do a traceroute
oh god centos brycec: The email itself is pretty sparse. mercutio: doesnt' have any default config :/
and it wasn't working
i hate centos
brycec: does it say which host?
you could parse config file.. brycec: Example for someloss: http://sprunge.us/WWBJ mercutio: so you can parse thec onfig file for ARP.ThisGW.ThisGW6 brycec: You can even set your own mailtemplate to format the data the way you want.
http://oss.oetiker.ch/smokeping/doc/smokeping_config.en.html Jump to *** Alerts ***
And you can explicitly call out to a program instead of sending email
mnathani: ^
"The program will the be called whenever an alert matches, using the following 5 arguments (except if edgetrigger is 'yes'; see below): name-of-alert, target, loss-pattern, rtt-pattern, hostname." mercutio: cool brycec: NB I think "hostname" in smokeping parlance is the ARP.ThisGW.IPv6, not the host= value mercutio: maybe i should look at it too -: brycec has smokepign_config.en.html bookmarked mnathani: brycec: thanks brycec: np mnathani: I am going to try and find a host in every country and add it to my smokeping mercutio: heh -: brycec points to nlnog mercutio: gl brycec: Of course, "every country" is far less useful than "on every transit provider" mercutio: why do you care what your ping to north korea is like? brycec: He wants the censors to have the quickest access to his contennt?
This should help with your goal, mnathani https://ring.nlnog.net/participants/ mercutio: http://www.regent-holidays.co.uk/country/north-korea/ brycec: I've actually pared back my smokeping hosts mnathani: Why do you have so many graphs overlapping? brycec: What do you mean? mnathani: like when you click on hosts
@smokeping BryceBot: https://smokeping.cobryce.com/ -: brycec knows the url, thanks brycec: But I'm not sure what you mean by "graphs overlapping." Can you give an example? mercutio: you show multiple lines on one graph
i assume that's what he means brycec: Like https://smokeping.cobryce.com/?target=Slaves ? mnathani: I mean like all the voipms nodes overlapping m0unds: brycec: is there a way to easily rate limit notifications?
like..notify once upon $condition and not again til it's normal? brycec: There might be, but I'm not aware of it.
mnathani: To give me an overall view of the service as a whole. If I want a given node, I just click it.
Which one of you lot is a kiwi? https://twitter.com/Donal_OKeeffe/status/439817245380710402 BryceBot: TWITTER: Say what you will about George W Bush, but he wouldn't have stood for Russian aggression in Ukraine. He'd have invaded New Zealand by now. (Sat Mar 01 17:39:37 +0000 2014, retweeted 3059 times) mercutio: i'd still rather some automatic type fault finding when tehre's a real issue
s/real/current/ BryceBot: <mercutio> i'd still rather some automatic type fault finding when tehre's a current issue mercutio: although it's helpful to see packet loss isues across networks etc as is mnathani: What do the grey shades above and below a smokeping graph mean? brycec: Jitter, iirc mnathani: @wa what is jitter BryceBot: jitter (English word);1->noun->small rapid variations in a waveform resulting from fluctuations in the voltage supply or mechanical vibrations or other sources, 2->noun->a small irregular movement;jit-ter (6 letters ->2 syllables);disturbance -> interference -> noise -> motion -> movement (total: 5);trijet;(none);13 (International English) -> 13 (North American English);(???) ?54-8837 brycec: mean deviation would be a more precise description up_the_irons: @wa what is verpassen BryceBot: overpasses (English word);noun->bridge formed by the upper level of a crossing of two highways at different levels;'ohverp,asuhz (IPA: ˈoʊvɝpˌæsəz);1929 (Interwar period) (85 years ago);overpass;flyover;bridge -> span;(none among common words);(none among common words) brycec: @define verpassen BryceBot: No definitions found for verpassen. brycec: Huh, interesting. mnathani: @define jitter BryceBot: No definitions found for jitter. up_the_irons: it doesn't know german brycec: Or apparently @define is broken :(
goddamnit Google
Stop breaking my shit up_the_irons: (i didn't expect it to, just wondering ;)
haha brycec: <title>Error 404 (Not Found)!!1</title>
That is the actual page returned from Google, "!!1" up_the_irons: lol brycec: (technically, http://sprunge.us/OHDA is the actual page returned) mnathani: Network Jitter or delay variation is a measure of the variablility for a series of one-way latency measurements. up_the_irons: brycec: forgot if i asked this before, but is brycebot open source?
i want to add dict.cc support brycec: BryceBot is not. Components of it are. It's built atop other open source projects. But its code is not in a condition I'm comfortable releasing. mercutio: smokeping doens't actually show mean ping
from memory it's the most common ping brycec: What do you mean? I'm looking at it show that to me. up_the_irons: brycec: yeah i understand mercutio: where the outliers go to those spikes
i think it removes top/bottom 25% or such
is that mode? brycec: avg = mean mercutio: or median or what
yeh it's not mean though brycec: eg "media rtt: 887.7 us avg" mercutio: it's the median
so it's the middle ping brycec: https://smokeping.cobryce.com/?target=ARP.Upstream6 mercutio: oh it says it's median anywaY mnathani: is the average median
min median and max median mercutio: i think it is median per runtime
but i think it's probably mean of all the values when showing the total
when it says "averaeg"
so it doesn't really show jitter that well mnathani: sd would be standard deviation? mercutio: yeh mnathani: whats the am/s mercutio: average median?
i'm guessing brycec: "amsterdams per second" :D mnathani: ratio of average median vs standard deviation
as per http://oss.oetiker.ch/smokeping/doc/reading.en.html mercutio: if you have a few outlying high pings
it basically doesn't show up easily
(i have a host that's doing that for some reason)
if you leave ping command running to it the second before and after will be fine, but for one second ping is high
and i have no idea why brycec: "the dark area around the line shows the amount of variation between individual probes" like I said, the jitter.
"Heavy fluctuation of the RTT (round trip time) values also indicate that the network is overloaded. This shows on the graph as smoke; the more smoke, the more fluctuation." mercutio: maybe it needs a few spikes ***: notion_ has quit IRC (Ping timeout: 265 seconds) mnathani: why does g.root-servers.net not respond to pings? mercutio: use i.root-servers.net? mnathani: all the other 12 are responding, but not g
perhaps I should use a dig probe mercutio: well they'r erun by diff people ***: wallshot has quit IRC (Ping timeout: 264 seconds)
wallshot1 has joined #arpnetworks mnathani: right ***: mnathani has quit IRC (Quit: WeeChat 0.4.2)
mnathani has joined #arpnetworks mnathani: I just switched VPS's for my weechat
I seem to be missing some info from the first column where the nicks should be
seems like a colour issue
black fg and bg m0unds: in the server buffer or chat buffer? mnathani: m0unds: My mistake. I was expecting text in a location in the chat buffer where there was supposed to be none m0unds: ah
smart filters are a cool feature in weechat too
also, you can turn off the nick list to make it appear like vanilla irssi if you're more used to that by some chance mnathani: How would I go about doing a full back up of a server, and then doing regular incremental or differential backup so as to not require a complete backup each time. To restore, I would only need the full backup and the latest incremental to restore. mercutio: mnathani: zfs send...
oh
that needs all the incrementals mnathani: I guess this is more differential than incremental mercutio: oh you want each incremental to be since the original mnathani: yes mercutio: you could do that with zfs send
:/ mnathani: How about if I am not ruuning ZFS mercutio: heh
well i'd make a copy of the file system mnathani: am looking for something that would fit nicely in a BASH script mercutio: and then use something like rsync against it?
but
i don't know if you scan store that
do you want/need delta compression? mnathani: dont think so mercutio: because you could have a script that just gets files that have changed / werent' there orogiinally
and puts them in a tarball
but it means if you do things like append a little gbit to a whole lot of files it has to store it twice ***: jlgaddis has quit IRC (Changing host)
jlgaddis has joined #arpnetworks brycec: rsnapshot (I think that's the name) provides you a unified image care of hard-links. You can grab any incremental snap and it's 100% complete.
I'm still a fan of duplicity though. There might be a way to tell it to create incrementals against the root. ***: kevr has quit IRC (Read error: Connection reset by peer)
kevr has joined #arpnetworks mnathani: transparent_hugepage=never Does anyone know if that kernel parameter is still required to install 64bit CentOS 6 on kvr02 ? ***: kevr has quit IRC (Changing host)
kevr has joined #arpnetworks mercutio: i imagine it crashes if it doesn't work ***: RandalSchwartz has quit IRC (Remote host closed the connection) mercutio: http://aprogrammerslife.info/wp-content/uploads/2013/01/tirinhaEN-45.png milki: lol up_the_irons: mnathani: it won't hurt otherwise ***: jcv has quit IRC (Ping timeout: 240 seconds)
jcv has joined #arpnetworks