mus1cb0x: i'll keep watching it
mnathani: Anyone try using 2 factor authentication from: https://www.duosecurity.com/
Apparently they support SSH, RDP, Wordpress logins among other things
-: milki^ uses duo
milki^: ive repalced google auth with it
m0unds: yea, same here (replaced gauth w/duo)
mhoran: I just set up 2 factor on my ARP VPS and blogged about it: http://bit.ly/1mU8qSz
BryceBot: http://bit.ly/1mU8qSz -> http://mhoran.wordpress.com/2014/08/06/setting-up-two-factor-authentication-on-freebsd/
mhoran: It's pretty fantastic. Set up all my other hosts to require mh.com as a jumphost.
m0unds: neat
hazardous: neat
brycec: Oh cool - last I'd heard of Duo, it wasn't free.
JC_Denton: free up to a point, i think
and the free plan lacks some features, iirc
brycec: Up to 10 users now
https://www.duosecurity.com/editions
JC_Denton: does anyone know if VPSes still get setup on the weekends?
brycec: ARP isn't "closed" on the weekends. Like weekdays, it's subject to staff availability.
(afaik ARP isn't their "day job")
JC_Denton: ah
ordered late Thursday. was just a little surprised not to see anything yet, but i understand it's the weekend ;-)
brycec: Yeah, a bit unusual but not unheard of. Feel free to email-poke them.
support@arpnetworks.com
-: brycec returns to stupid nginx tricks
JC_Denton: want to test drive a VPS to get a feel for the network before ordering a dedi
i wonder if the VPS and the dedi can share a VLAN?
brycec: They can, yes.
JC_Denton: sweet :)
that'll go perfectly with my plan to put a xen center on the dedi and have the VPS be a VPN frontend for it
brycec: Heck if you're feeling dangerous, you can QinQ between your VPN VPS and your dedi
JC_Denton: lol
pyvpx: jumbo frames ahoy!
mnathani: JC_Denton: be aware the VPS network is limited to 100meg, where as the dedicated can use the full 1gig
hazardous: brycec: isn't totp fairly open that you don't have to use duo
i think google authenticator or authy should work for basic totp without fallbacks like per-device push/sms
***: m0unds_ has quit IRC (*.net *.split)
pjs has quit IRC (*.net *.split)
anisfarhana has quit IRC (*.net *.split)
eryc has quit IRC (*.net *.split)
mus1cb0x has quit IRC (*.net *.split)
SpaceDump has quit IRC (*.net *.split)
milki has quit IRC (*.net *.split)
davantalus has quit IRC (*.net *.split)
NiTeMaRe has quit IRC (*.net *.split)
jcv has quit IRC (*.net *.split)
m0unds_ has joined #arpnetworks
pjs has joined #arpnetworks
anisfarhana has joined #arpnetworks
eryc has joined #arpnetworks
mus1cb0x has joined #arpnetworks
SpaceDump has joined #arpnetworks
milki has joined #arpnetworks
davantalus has joined #arpnetworks
NiTeMaRe has joined #arpnetworks
jcv has joined #arpnetworks
brycec: mnathani: That's not 100% true, you can get put on a host with a GbE port
Of course, upstream/Internet is still limited to 100Mbps
hazardous: I use TOTP (and use the Authenticator app) just fine
Been using it for awhile
I'm quite happy with it
hazardous: I haven't used Duo at all, so I can't speak for its "features"
***: sga0 has quit IRC (Ping timeout: 240 seconds)
mnathani: brycec: thats what I meant, Internet Network from a VPS is limited to 100Mbps http://support.arpnetworks.com/kb/vps/what-is-the-uplink-speed-of-a-vps VS Dedicated: http://support.arpnetworks.com/kb/dedicated-servers/about-the-dual-1-gbps-gige-nics-on-arp-metal-dedicated-servers
brycec: Strictly, that doesn't say that Metal has 1GBps to the Internet... Just that they have GbE NICs and connections to the switches.
up_the_irons: When you're around, would you kindly chime in on whether ARP Metal has 1gbps Internet connections?
meingtsla: Judging from the order form, it seems like they come with 100 Mbps + 10,000 GB bandwidth by default, and can be upgraded to "100 Mbps unmetered" or "1 Gbps unmetered"
Hm, sorry, actually I was making part of that up. It only says 10,000 GB bandwidth :/
up_the_irons: all dedi's are on a 1 Gbps port
***: dj_goku has quit IRC (Remote host closed the connection)
dj_goku has joined #arpnetworks
acf__: up_the_irons: is arpnetworks.com on a VPS?
ie, if I run wget -O /dev/null http://www.arpnetworks.com/100mb.bin
should it reflect the 1Gbps connection?
***: acf__ is now known as acf_
up_the_irons: acf_: it's on a vps
so it would not reflect 1 Gbps
acf_: cool. thanks
***: sga0 has joined #arpnetworks
mnathani: brycec: I used to have an ARP Metal server, and the Internet connection was gigabit.
mus1cb0x: another d/c from my arp box
hmm
brycec: Thanks for chiming in, up_the_irons
On both points
Always wondered...
[about the 100mb.bin speed]
***: jlgaddis has joined #arpnetworks
jlgaddis has quit IRC (Changing host)
jlgaddis has joined #arpnetworks
up_the_irons: brycec: np
mnathani: up_the_irons: http://mirrors.arpnetworks.com/ << that has to be on a dedicated box ?
as opposed to a VPS
up_the_irons: yes
mnathani: whats the *nix equivalent of setting up an SSH Tunnel to allow connections from other hosts as a SOCKS proxy
I tried: ssh -D $LocalPort -p $sshPort $remotehostname
milki^: i deleted all my rescomp tunnel aliases -.-
mnathani: Reading the man pages got me to the following command which worked: ssh -D $InternalIP:1080 -4p $sshport $RemoteSSHhostname
jpalmer: How is your CentOS 7 immersion coming along?