[00:38] *** Guest23944 is now known as easymac
[00:38] *** easymac is now known as Guest14487
[01:39] *** Guest14487 is now known as easymac
[01:39] *** easymac is now known as Guest59604
[02:39] *** Guest59604 is now known as easymac
[02:40] *** easymac is now known as Guest10302
[03:40] *** Guest10302 is now known as easymac
[03:41] *** easymac is now known as Guest78562
[04:06] *** Guest78562 has quit IRC (Quit: leaving)
[04:54] *** novae has joined #arpnetworks
[05:02] *** novae has quit IRC (Ping timeout: 245 seconds)
[05:04] *** novae has joined #arpnetworks
[06:15] *** KILLALLHUMANS01 has quit IRC (Ping timeout: 245 seconds)
[06:22] *** KILLALLHUMANS01 has joined #arpnetworks
[06:22] *** KILLALLHUMANS01 has quit IRC (Changing host)
[06:22] *** KILLALLHUMANS01 has joined #arpnetworks
[07:06] <mercutio> bryce?
[07:06] <mercutio> you have a strange alias
[07:33] <m0unds> hahaha
[07:41] *** novae has quit IRC (Remote host closed the connection)
[07:41] *** novae has joined #arpnetworks
[08:02] <brycec> mercutio: ?
[08:03] <brycec> Oh, the KILLALLHUMANS01 nick
[08:03] <brycec> I have some great nicks...
[08:03] <staticsafe> heh
[08:03] <brycec> A few of my other favourites: IM_AWESOME the_cheat Always_Batman lpr0
[08:04] *** brycec is now known as lpr
[08:04] * lpr on fire
[08:04] *** lpr is now known as lpr0
[08:04] * lpr0 on fire
[08:04] <lpr0> there we go
[08:04] *** lpr0 is now known as brycec
[08:04] <RandalSchwartz> my nick is boring :)
[08:34] <milki> lolol
[12:50] <up_the_irons> so Ubuntu is going to systemd just like Debian, fml
[12:50] <m0unds> haha
[12:50] <m0unds> it's not that bad
[12:51] <up_the_irons> binary logs?  can't even tail shit without a tool.  no thanks
[12:51] <up_the_irons> bloat bloat bloat
[12:51] <up_the_irons> it's like GRUB
[12:52] <up_the_irons> i just wanna fucking boot my machine, and you (grub) make it so difficult because you tried to tackle every other fucking problem on earth, making it horrible just to boot my system
[12:53] <up_the_irons> if i want to boot a FreeBSD system, it's "fdisk -BI ad0" and CALL IT A DAY.  it works as intended.  *nix philosophy, do one simple thing and do it right
[12:57] <m0unds> it appears as though systemd still provides a socket to give you the ability to bind your syslogger to a socket and write logs to discrete files on disk vs the journal
[12:58] <m0unds> i mean, it'll still write to the journal, but it'll also allow you to write to log files
[13:01] <up_the_irons> see, reading that make me vomit a little in my mouth
[13:01] <up_the_irons> *made
[13:01] <m0unds> haha
[13:01] <plett> up_the_irons: As a Linux user looking in on FreeBSD from the outside, it looks equally crazy. It has three distinct firewalls with incompatible syntaxes, and kernel modules and userland tools for all of them in the base image.
[13:02] <m0unds> pf or gtfo
[13:02] <up_the_irons> i understand what you're saying, but it so f'in overkill.  it should not be necessary to jump through those hoops just to log in text.
[13:02] <m0unds> retrieving a specific log from the journal isn't terribly painful though - journalctl -u nginx = nginx logs
[13:02] <up_the_irons> plett: i thought everyone used pf...
[13:02] <m0unds> yeah, i don't know anyone who uses bsd who doesn't use pf
[13:03] <plett> up_the_irons: ipfw and ipf are also there and supported
[13:03] <m0unds> ipfw back in the day maybe
[13:03] <up_the_irons> yeah but who uses ipfw and ipf anymore?
[13:03] <m0unds> pf is so well documented and designed, there's no reason not to use it
[13:03] <m0unds> but if you want to, it's there
[13:03] <up_the_irons> don't get me wrong, freebsd isn't immune to this problem; it's just less
[13:04] <plett> And yes, pf is lovely
[13:07] <plett> I've been told that the journald binary logging stuff isn't tightly tied to systemd, and that you can just run a good old syslogd instead
[13:09] <up_the_irons> i c
[13:10] <m0unds> is there any practical reason that iptables doesn't have ipv6 support built in vs using ip6tables?
[13:10] <m0unds> i always use ufw or afp or whatever to manage iptables rules because i hate the syntax
[13:11] <m0unds> s/afp/apf
[13:11] <BryceBot> <m0unds> i always use ufw or apf or whatever to manage iptables rules because i hate the syntax
[13:17] <staticsafe> I suppose now is a bad time to link this - http://www.openbsdfoundation.org/gsoc2014.html#systemd
[13:17] <brycec> ha
[13:18] <brycec> One nice thing about the journal, up_the_irons et al, is that it makes it easy to pull specific timeframes.
[13:18] <staticsafe> indeed
[13:19] <up_the_irons> ah that is indeed useful
[13:20] <m0unds> i like the boot logging functionality - you can query current boot, previous boot, boot prev to that, etc
[13:23] <staticsafe> linux has a new netfilter API called nftables, apparently the syntax is quite nicer
[13:23] <m0unds> ah
[13:23] <staticsafe> http://netfilter.org/projects/nftables/
[13:23] <plett> staticsafe: I read through some of the example syntax a while ago, it's still nowhere near as nice as pf
[13:24] <staticsafe> yeah
[13:24] <staticsafe> https://wiki.archlinux.org/index.php/Nftables certainly much nicer than iptables though
[13:25] <brycec> <3 pf syntax, soooooo readable :D
[13:25] <m0unds> that's junos-ish
[13:25] <up_the_irons> i never use iptables directly, always through ferm.  <3 ferm
[13:26] <up_the_irons> tree-based rules, basically
[13:26] <staticsafe> http://ferm.foo-projects.org/ interesting
[13:26] <up_the_irons> i've used it for years
[13:26] <m0unds> oh, that's neat
[13:28] <up_the_irons> looks like nftables has a tree-like syntax too
[13:28] <staticsafe> yeah
[13:28] * brycec lazies out and uses ufw for his iptables systems
[13:29] <m0unds> brycec: that's what i use most of the time
[13:29] * staticsafe doesn't have any firewall rules on his VMs
[13:29] <m0unds> HERESY
[13:29] <staticsafe> other than the occasional DROP rule for some abuser
[13:30] <brycec> I didn't used to either, just kept services listening on the right ports. But then there were some services I couldn't configure quite like that
[13:30] <staticsafe> like mysql? :P
[13:32] <staticsafe> RouterOS firewall sytax is a bit weird but consistent with the rest of the system
[13:33] <m0unds> yea, it's not bad to manage
[13:33] <staticsafe> add action=log chain=forward comment="Filter port 25 outbound" dst-address=::/0 dst-port=25 log-prefix=SMTPOUTBOUND protocol=tcp src-address=::/0
[13:33] <m0unds> they finally stopped doing stupid shit like changing syntax between releases and things
[13:34] <brycec> staticsafe: nah mysql is easy to bind to an interface, or not bind at all (socket only)
[13:34] <staticsafe> ah
[13:34] <brycec> (can't remember what it was though... oh well)
[13:36] <staticsafe> Cisco IOS ACLs ugh
[13:36] <m0unds> yuck
[15:07] <m0unds> yay, lightning
[15:45] <dne> up_the_irons: re: grub - try syslinux (or extlinux) instead
[15:45] <up_the_irons> i c
[15:45] * dne uses it even w/ freebsd
[15:49] <dne> e.g. to multiboot between root-on-ZFS and mfsbsd: https://gist.github.com/dne/1054313
[15:49] <BryceBot> Gist: "Multi-boot FreeBSD w/ ZFS root on a GPT partitioned disk using Syslinux"
[15:51] <m0unds> dne: that's cool
[16:14] <mercutio> i like ferm too
[16:45] <RandalSchwartz> tomorrow... the big upgrade day
[16:46] <RandalSchwartz> freebsd from 8.3 (EOL) to 8.4 (supported for another year)
[16:46] <RandalSchwartz> perl from 5.10(!) to 5.16
[16:46] <RandalSchwartz> pkg to pkgng
[16:46] <RandalSchwartz> thank goodness for snapshots :)
[16:47] <m0unds> good luck
[17:14] <mnathani> up_the_irons: did you go with the i5 or i7 T520
[17:45] <up_the_irons> i5
[18:06] <up_the_irons> i7's were hard to find actually
[18:06] <mnathani> whats the screen resolution?
[18:07] <mnathani> 1080p or lower?
[18:07] <staticsafe> 1600x900
[18:07] <staticsafe> 15" T520 here
[18:07] <mnathani> well, atleast its widescreen
[18:11] <m0unds> i miss the prevalence of 16:10 displays
[18:57] *** dj_goku has quit IRC (Remote host closed the connection)
[19:15] *** ziyourenxiang has joined #arpnetworks
[19:26] *** dj_goku has joined #arpnetworks
[19:26] *** dj_goku has quit IRC (Changing host)
[19:26] *** dj_goku has joined #arpnetworks
[19:43] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang)
[23:17] *** john3213 has joined #arpnetworks
[23:22] *** john3213 has left