[00:19] CaZe: yes, http://support.arpnetworks.com/kb/main/is-there-a-firewall-filter-rate-limit-or-similar-device-applied-to-my-traffic [00:50] farstrucker [00:50] *** Guest28513 is now known as farstrucker [01:36] /win 6 [02:56] *** jcv has quit IRC (*.net *.split) [02:56] *** toeshred has quit IRC (*.net *.split) [02:56] *** tellnes has quit IRC (*.net *.split) [02:56] *** sga0 has quit IRC (*.net *.split) [02:56] *** novae_ has quit IRC (*.net *.split) [02:56] *** koan has quit IRC (*.net *.split) [02:56] *** twobithacker has quit IRC (*.net *.split) [02:56] *** hive-mind has quit IRC (*.net *.split) [02:56] *** anisfarhana has quit IRC (*.net *.split) [02:56] *** gizmoguy has quit IRC (*.net *.split) [02:56] *** SpeedBus has quit IRC (*.net *.split) [02:56] *** medum has quit IRC (*.net *.split) [02:56] *** raptelan has quit IRC (*.net *.split) [02:56] *** CaZe has quit IRC (*.net *.split) [02:56] *** qbit has quit IRC (*.net *.split) [02:56] *** reardencode has quit IRC (*.net *.split) [02:56] *** staticsafe has quit IRC (*.net *.split) [02:56] *** mike-burns has quit IRC (*.net *.split) [02:56] *** brycec has quit IRC (*.net *.split) [02:56] *** joepie91 has quit IRC (*.net *.split) [02:56] *** milki has quit IRC (*.net *.split) [02:56] *** b^_^d has quit IRC (*.net *.split) [02:56] *** meingtsla has quit IRC (*.net *.split) [02:56] *** pjs has quit IRC (*.net *.split) [02:56] *** mercutio has quit IRC (*.net *.split) [02:56] *** jpalmer has quit IRC (*.net *.split) [03:01] *** jcv has joined #arpnetworks [03:01] *** toeshred has joined #arpnetworks [03:01] *** tellnes has joined #arpnetworks [03:01] *** sga0 has joined #arpnetworks [03:02] *** novae_ has joined #arpnetworks [03:02] *** koan has joined #arpnetworks [03:02] *** twobithacker has joined #arpnetworks [03:02] *** hive-mind has joined #arpnetworks [03:02] *** anisfarhana has joined #arpnetworks [03:02] *** gizmoguy has joined #arpnetworks [03:02] *** SpeedBus has joined #arpnetworks [03:02] *** medum has joined #arpnetworks [03:02] *** raptelan has joined #arpnetworks [03:02] *** CaZe has joined #arpnetworks [03:02] *** qbit has joined #arpnetworks [03:03] *** reardencode has joined #arpnetworks [03:03] *** staticsafe has joined #arpnetworks [03:03] *** mike-burns has joined #arpnetworks [03:03] *** sinisalo.freenode.net sets mode: +o mike-burns [03:04] *** milki has joined #arpnetworks [03:04] *** b^_^d has joined #arpnetworks [03:04] *** meingtsla has joined #arpnetworks [03:04] *** pjs has joined #arpnetworks [03:04] *** mercutio has joined #arpnetworks [03:04] *** jpalmer has joined #arpnetworks [03:09] *** brycec has joined #arpnetworks [03:09] *** joepie91 has joined #arpnetworks [04:39] *** farstrucker has quit IRC (Quit: Lost terminal) [06:48] *** anisfarhana has quit IRC (Ping timeout: 272 seconds) [06:53] *** anis has joined #arpnetworks [07:18] *** NiTeMaRe has joined #arpnetworks [10:09] up_the_irons: Oh, I thought it were more aggressive than that. [10:09] s/it/the limits/ [10:09] up_the_irons: Oh, I thought the limits were more aggressive than that. [10:09] * CaZe implements his own [10:14] Most likely, up_the_irons doesn't want to interfere [too much], just enough to curtail the most flagrant attacks. One should never rely on their hosting provider (unless you're paying for management) to handle basic security, of course. [10:16] * up_the_irons nods [10:17] The rate limit is more for ARP's network's protection than your own - limit the flood upstream to keep the downstream waters calm. [10:49] Well, I use publickey. [10:49] It's just annoying to have my logs fill up. [10:50] pf rate-limit syntax is stupid easy :) as is setting up fail2ban (depending on your OS) [10:50] Yeah, I've already set it up. I just never bothered to in the first place. [14:07] *** eryc has quit IRC (*.net *.split) [14:07] *** carvite has quit IRC (*.net *.split) [14:07] *** toddf has quit IRC (Ping timeout: 260 seconds) [14:08] *** carvite has joined #arpnetworks [14:08] *** toddf has joined #arpnetworks [14:08] *** ChanServ sets mode: +o toddf [14:12] *** eryc has joined #arpnetworks [15:12] *** Hien has quit IRC (Ping timeout: 240 seconds) [15:14] *** Hien has joined #arpnetworks [16:00] *** RandalSchwartz has joined #arpnetworks [16:00] * RandalSchwartz waves [16:00] hey RandalSchwartz [16:01] so I'm still not sure I understand how to get to the console of my dedicated box [16:01] do I just need to be on the VPN? [16:01] Yes [16:01] ok - I'm on the VPN, now what. :) [16:02] up_the_irons: Are you around to help RandalSchwartz ? [16:02] I know that you pull up a web page [16:02] I see an IPMI URL [16:02] Presumably using the private VPN address of your box [16:02] Probably that address, yes. [16:02] Oh wait, I remember... we got this far before [16:02] then it is broken because Java is broken on OSX. [16:02] http://support.arpnetworks.com/kb/dedicated-servers/how-do-i-access-my-arp-metal-dedicated-server-console [16:02] it's pretty clear under "Console Access" [16:03] *ahem* Did I say FAQ-bot, or did I say up_the_irons? :P [16:03] Ohh.. it actually works now. [16:03] (You're right though, it is plain and clear) [16:03] brycec: BryceBot should should answer with FAQ links ;) [16:03] is it the "console redirection" that I want? [16:03] Someday it might [16:03] :) [16:03] how do I get the equivalent of the VNC console? [16:04] (Though I've just started learning Ruby, so I'm going to try and keep PHP out of my head for a little while) [16:05] and if I want 8.4 instead of 8.3 release, is that a support request? [16:05] I think you just load the appropriate ISO and reboot the machine to the CD [16:05] See the "Virtual Media" section on the FAQ article [16:06] right - I see that I can *upload* an 8.4 image... but I'd rather not upload if it's already there somewhere. :) [16:06] RandalSchwartz: No it's not uploading. Read the FAQ carefully. it's linked to ARP's ISO library. [16:06] ok [16:07] that FAQ doesn't talk about how to VNC though [16:07] To access your server's console, click Remote Control -> Console Redirection -> Launch Console [16:07] I tried Launch Console... did nothing. [16:07] is it supposed to launch some sort of thing like "chicken of the vnc"? [16:07] So it DOES talk about it, but the button isn't working for you apparently. [16:07] it launches a Java app that is equiv to VNC [16:08] yeah, not working :( [16:08] RandalSchwartz: trying using a windows VM [16:08] ok - so my virtual media looks like \iso\mfsbsd-8.3-RELEASE-amd64.iso [16:09] java generally works better on windows [16:09] the iso library pages do not talk about \iso\ [16:09] odd, OSX usually isn't an OS where i get a lot of headaches with this stuff [16:09] (if you're on Linux, like me, THEN it can be a bit tricky ;) [16:09] do I just cut-n-paste FreeBSD-8.3-RELEASE-amd64-dvd1.iso into the last part of that box? [16:09] oops. 8.4 of course [16:09] reardencode: Read the Virtual Media section of the FAQ link above [16:09] woops [16:09] Oh - there is no dvd [16:09] RandalSchwartz: ^ [16:09] Path to image: \iso\ [16:10] "Replace with the ISO filename listed in our ISO Library" [16:10] and there's a link to the library [16:10] listen - I'm looking at all that [16:10] and I'm not stupid [16:10] it says "you can change..." [16:10] and "here are the isos" [16:11] but not how to adapt a web page with links into a form fillout box [16:11] do I need to put \iso\ in front of the link? [16:11] Yes, it says verbatim: [16:11] "Fill in the form as follows:" [16:11] and then "Path to image: \iso\" [16:11] where are you seeing that? [16:11] are we reading the same thing? [16:11] http://support.arpnetworks.com/kb/dedicated-servers/how-do-i-access-my-arp-metal-dedicated-server-console [16:11] Oh crap... more scrolling [16:11] yes [16:11] scroll down to "Virtual Media" [16:11] my fault for not scrolling [16:12] np [16:12] But I'll have to find the wget URL for 8.4 [16:12] RandalSchwartz: No need, 8.4 is already available [16:13] Nope [16:13] not 8.4 dvd [16:13] Oh you specifically want the -dvd1.iso [16:13] RandalSchwartz: gimme a URL and i'll wget it real fast for ya [16:13] No - not urgent right now [16:13] k [16:13] I have a half dozen other issues [16:13] that's what happens when I'm sitting across from Neil [16:13] then whenever you're ready just send the URL to support@ [16:14] up_the_irons: http://mirrors.arpnetworks.com/freebsd/ISO-IMAGES-amd64/8.4/FreeBSD-8.4-RELEASE-amd64-dvd1.iso [16:14] http://mirrors.arpnetworks.com/FreeBSD/ISO-IMAGES-amd64/8.4/FreeBSD-8.4-RELEASE-amd64-dvd1.iso [16:14] that should work [16:14] mnathani: o/ [16:14] :) [16:14] the console redirect is erroring in safari with Failed to load resource: Frame load interrupted [16:14] maybe chrome will work betterr [16:14] brycec: jinx [16:14] up_the_irons: Just wondering - do you deduplicate, hardlink from ISO_Library to the mirrors? [16:14] Er, from the mirror'd copy to ISO_Library [16:15] RandalSchwartz: chrome will probably be better [16:15] brycec: lol no i just copy it over ;) [16:15] would probably be smart to hardlink or something... [16:15] up_the_irons: And you complain about running out of disk space? :P [16:16] 8.4 -dvd1 is now there [16:16] up_the_irons: find freebsd/ -iname '*.iso' -exec ln -f {} ISO_Libary/ + [16:16] Or something about like that [16:16] HOT [16:16] Overwrites existing files with the hardlink [16:18] ugh - security issues [16:18] launch.jnlp can't be opened because it is from an unidentifed devleoper [16:19] Thank you Mr. Jobs [16:19] yeah u have to click trust on the dialog [16:19] nope - got past that dialog... failed at "self signed cert" step [16:20] sounds like you need to loosen your security settings [16:20] Not sure where that would be [16:20] there were no prefs on the java executor [16:20] System Preferences -> Security maybe? [16:21] i'm not sure i've had that problem before; a self signed cert should be OK [16:21] RandalSchwartz: check out http://superuser.com/questions/404178/importing-a-self-signed-ssl-certificate-on-macos [16:21] java complained [16:22] it's not the browser complaining [16:22] oh [16:22] RandalSchwartz: http://faq.mydocsonline.com/786/mdodesktop-jnlp-cant-be-opened-because-it-is-from-an-unidentified-developer/ [16:22] It's not Java, it's OSX [16:22] Yes - I already got past that step [16:23] this is the NEXT step [16:23] Sorry thought you were stuck on │16:18:38 RandalSchwartz | launch.jnlp can't be opened because it is from an unidentifed devleoper [16:23] (I didn't see where you got past that) [16:24] Yeah - I got past that [17:20] you should be able to just 2fingertap/rightclick [17:21] and click open [17:21] iirc that automatically only blocks doubleclick executions [17:21] but you can 'open anyway' via context menu [17:25] (It's been established that he got past that part.) [17:25] But you have a good tip. [17:36] even setting "allow applications downloaded from anywhere" in preferences doesn't help [17:36] just checked [17:38] is there any chance you can give that download a real cert, not a self-cert? [18:00] RandalSchwartz Do you have fbsd in virtualbox / vagrant for salt testing? [18:02] not for salt testing no [18:04] How about vagrant / fbsd period? [18:06] I've got the latest vagrant and vbox. I can't seem to avoid errors related to "mount_virtualbox_shared_folder".. looks like my synced_folders are mounted OK but it never runs the salt provisioner because this error happens.. [18:06] you have to use NFS [18:06] Right, I am using nfs [18:07] here, let me paste my Vagrantfile [18:07] (if you don't mind taking a look) [18:07] the timing for NFS and direct salt provisioning is broken [18:07] the NFS mounts too late [18:07] of course it does :-/ [18:07] ok [18:07] so I just boot the box, then highstate myself [18:07] yea [18:07] ok [18:10] ahh! solved the java problem ! [18:10] requires system preferences -> java [18:11] security tab, move slider to medium [18:11] I can now see my server's console! [18:20] RandalSchwartz would you mind sharing your Vagrantfile with me? Just want to make sure I'm not mising something.. my box is taking like 3 minutes to boot [18:21] yeah gimme sec [18:21] awesome.. thanks man [18:22] ... http://pastebin.com/9yKEdfuJ [18:22] right on.. thank you [18:22] I built the basebox with https://github.com/wunki/vagrant-freebsd [18:23] That's what I used too [18:25] then I disabled the FreeBSD: { enabled: no } for repos [18:25] and point at my own poudriere [18:26] then pkg upgrade, pkg install py27-salt [18:27] RandalSchwartz Do you use pkg to keep salt updated via salt? Someone in #salt gave me a statefile that uses the git repo to stay updated.. pretty nifty [18:27] I have poudriere build things [18:27] I like packages... build once, install 6 times [18:27] woah.. salt provisioner is running :) [18:27] the missing piece was mounting . to /vagrant instead of /usr/home/vagrant (where I was trying before) [18:28] unfortunately, 2014.1.7 is broken from ports [18:28] I installed it, and borked my system [18:28] luckily, I had a 2014.1.4 around [18:28] error: pathspec '2014.1.7' did not match any file(s) known to git. [18:28] grrr [19:26] Well that's better. [19:27] Only 13 lines of log from brute force attempts in the last 8 hours. [19:27] That's quite reasonable