[00:05] ok, dang. been right around daily past few days [00:06] i'll keep watching it [00:34] Anyone try using 2 factor authentication from: https://www.duosecurity.com/ [00:34] Apparently they support SSH, RDP, Wordpress logins among other things [01:08] * milki^ uses duo [01:08] ive repalced google auth with it [05:56] yea, same here (replaced gauth w/duo) [06:16] I just set up 2 factor on my ARP VPS and blogged about it: http://bit.ly/1mU8qSz [06:17] http://bit.ly/1mU8qSz -> http://mhoran.wordpress.com/2014/08/06/setting-up-two-factor-authentication-on-freebsd/ [06:17] It's pretty fantastic. Set up all my other hosts to require mh.com as a jumphost. [08:24] neat [11:18] neat [11:45] Oh cool - last I'd heard of Duo, it wasn't free. [11:45] free up to a point, i think [11:45] and the free plan lacks some features, iirc [11:45] Up to 10 users now [11:45] https://www.duosecurity.com/editions [11:46] does anyone know if VPSes still get setup on the weekends? [11:46] ARP isn't "closed" on the weekends. Like weekdays, it's subject to staff availability. [11:46] (afaik ARP isn't their "day job") [11:47] ah [11:48] ordered late Thursday. was just a little surprised not to see anything yet, but i understand it's the weekend ;-) [11:48] Yeah, a bit unusual but not unheard of. Feel free to email-poke them. [11:49] support@arpnetworks.com [11:49] * brycec returns to stupid nginx tricks [11:50] want to test drive a VPS to get a feel for the network before ordering a dedi [11:50] i wonder if the VPS and the dedi can share a VLAN? [11:51] They can, yes. [11:52] sweet :) [11:52] that'll go perfectly with my plan to put a xen center on the dedi and have the VPS be a VPN frontend for it [11:53] Heck if you're feeling dangerous, you can QinQ between your VPN VPS and your dedi [11:53] lol [12:16] jumbo frames ahoy! [12:41] JC_Denton: be aware the VPS network is limited to 100meg, where as the dedicated can use the full 1gig [12:46] brycec: isn't totp fairly open that you don't have to use duo [12:47] i think google authenticator or authy should work for basic totp without fallbacks like per-device push/sms [12:50] *** m0unds_ has quit IRC (*.net *.split) [12:50] *** pjs has quit IRC (*.net *.split) [12:50] *** anisfarhana has quit IRC (*.net *.split) [12:50] *** eryc has quit IRC (*.net *.split) [12:51] *** mus1cb0x has quit IRC (*.net *.split) [12:51] *** SpaceDump has quit IRC (*.net *.split) [12:51] *** milki has quit IRC (*.net *.split) [12:51] *** davantalus has quit IRC (*.net *.split) [12:51] *** NiTeMaRe has quit IRC (*.net *.split) [12:51] *** jcv has quit IRC (*.net *.split) [12:51] *** m0unds_ has joined #arpnetworks [12:51] *** pjs has joined #arpnetworks [12:51] *** anisfarhana has joined #arpnetworks [12:51] *** eryc has joined #arpnetworks [12:53] *** mus1cb0x has joined #arpnetworks [12:54] *** SpaceDump has joined #arpnetworks [12:54] *** milki has joined #arpnetworks [12:54] *** davantalus has joined #arpnetworks [12:54] *** NiTeMaRe has joined #arpnetworks [12:54] *** jcv has joined #arpnetworks [15:09] mnathani: That's not 100% true, you can get put on a host with a GbE port [15:09] Of course, upstream/Internet is still limited to 100Mbps [15:09] hazardous: I use TOTP (and use the Authenticator app) just fine [15:09] Been using it for awhile [15:09] I'm quite happy with it [15:10] hazardous: I haven't used Duo at all, so I can't speak for its "features" [15:17] *** sga0 has quit IRC (Ping timeout: 240 seconds) [15:48] brycec: thats what I meant, Internet Network from a VPS is limited to 100Mbps http://support.arpnetworks.com/kb/vps/what-is-the-uplink-speed-of-a-vps VS Dedicated: http://support.arpnetworks.com/kb/dedicated-servers/about-the-dual-1-gbps-gige-nics-on-arp-metal-dedicated-servers [16:29] Strictly, that doesn't say that Metal has 1GBps to the Internet... Just that they have GbE NICs and connections to the switches. [16:29] up_the_irons: When you're around, would you kindly chime in on whether ARP Metal has 1gbps Internet connections? [16:34] Judging from the order form, it seems like they come with 100 Mbps + 10,000 GB bandwidth by default, and can be upgraded to "100 Mbps unmetered" or "1 Gbps unmetered" [16:36] Hm, sorry, actually I was making part of that up. It only says 10,000 GB bandwidth :/ [16:42] all dedi's are on a 1 Gbps port [16:49] *** dj_goku has quit IRC (Remote host closed the connection) [17:00] *** dj_goku has joined #arpnetworks [17:06] up_the_irons: is arpnetworks.com on a VPS? [17:06] ie, if I run wget -O /dev/null http://www.arpnetworks.com/100mb.bin [17:06] should it reflect the 1Gbps connection? [17:06] *** acf__ is now known as acf_ [17:09] acf_: it's on a vps [17:09] so it would not reflect 1 Gbps [17:09] cool. thanks [17:14] *** sga0 has joined #arpnetworks [17:33] brycec: I used to have an ARP Metal server, and the Internet connection was gigabit. [17:41] another d/c from my arp box [17:41] hmm [17:57] Thanks for chiming in, up_the_irons [17:58] On both points [17:58] Always wondered... [17:58] [about the 100mb.bin speed] [19:16] *** jlgaddis has joined #arpnetworks [19:16] *** jlgaddis has quit IRC (Changing host) [19:16] *** jlgaddis has joined #arpnetworks [21:08] brycec: np [21:10] up_the_irons: http://mirrors.arpnetworks.com/ << that has to be on a dedicated box ? [21:11] as opposed to a VPS [21:21] yes [21:45] whats the *nix equivalent of setting up an SSH Tunnel to allow connections from other hosts as a SOCKS proxy [21:46] I tried: ssh -D $LocalPort -p $sshPort $remotehostname [22:16] i deleted all my rescomp tunnel aliases -.- [23:57] Reading the man pages got me to the following command which worked: ssh -D $InternalIP:1080 -4p $sshport $RemoteSSHhostname [23:58] jpalmer: How is your CentOS 7 immersion coming along?