#arpnetworks 2015-01-18,Sun

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)

WhoWhatWhen
***novae has quit IRC (Remote host closed the connection) [00:01]
jlgaddis has joined #arpnetworks
jlgaddis has quit IRC (Changing host)
jlgaddis has joined #arpnetworks
novae has joined #arpnetworks
[00:06]
..... (idle for 22mn)
jcv has quit IRC (Ping timeout: 265 seconds) [00:29]
................................................................................. (idle for 6h44mn)
ben1 has joined #arpnetworks
merc2 has quit IRC (Ping timeout: 276 seconds)
[07:13]
............................................... (idle for 3h54mn)
zeshoem has quit IRC (Remote host closed the connection)
zeshoem has joined #arpnetworks
[11:11]
......... (idle for 40mn)
milki has quit IRC (Remote host closed the connection) [11:52]
milki has joined #arpnetworks [12:03]
milkii hosed my vps. no sudo and no root password -.- [12:03]
milki kicks gettext [12:09]
...... (idle for 27mn)
no rsynca nd git too -.-
my best bet is probably...single user mode to reset the root passwd
[12:36]
...... (idle for 26mn)
JC_Dentoncan you get on the console? [13:03]
milkiya i have console
but i only have my normal user login
not sure what other options i have that will get me root
alright, got vnc working
lets see if this will get me boot screens
excellent
[13:06]
mercutiosu?
it's good to have sudo and su
oh no root password :/
[13:11]
milkiya, i have a gpg encrypted file that contains the random password i created
i dont remember the password for that file either >.>
but im in single user mode
i should be able to recover root with this
[13:12]
mercutiofun :) [13:14]
milkiyay sudo works again -.- [13:27]
***milki has left
milki has joined #arpnetworks
[13:36]
mercutiohow did you break it? [13:45]
................... (idle for 1h31mn)
***joepie91 has quit IRC (Disconnected by services)
joepie91_ has joined #arpnetworks
[15:16]
........ (idle for 39mn)
zeshoems/break it/break in [15:57]
BryceBot<mercutio> how did you break in? [15:57]
mercutioi meant break being able to login [15:59]
....................... (idle for 1h50mn)
***dj_goku has quit IRC (Ping timeout: 264 seconds)
dj_goku has joined #arpnetworks
[17:49]
dj_goku has quit IRC (Ping timeout: 245 seconds) [18:00]
milkime? [18:02]
BryceBotThat's what she said!! [18:02]
milkimercutio: pkg delete gettext
!
i keep on forgetting that it breaks sudo
[18:02]
mercutiooh what
and it doesn't warn you?
isnt' gettext gpl?
[18:02]
milki/usr/ports/UPDATING does warn you
but the command itself doesnt
needs more <blink>
[18:03]
***dj_goku has joined #arpnetworks
dj_goku has quit IRC (Changing host)
dj_goku has joined #arpnetworks
[18:04]
mercutiohshs
<aol><netscape><blink>
[18:04]
milkithe exact text is
You must first delete the existing installation of gettext and then
reinstall it. This will break sudo, so you *must* do this in a root
shell (sudo -i) if you use sudo.
[18:05]
mercutiobut it doesn't tell you to type YES to conitnue or such? [18:09]
milkinope
i dont recall there ever being a prompt for delete
only install
:P
[18:09]
...... (idle for 26mn)
brycecFreeBSD is silly in that way. As important as UPDATING is, there is absolutely no beating you over the head with it before you break things. [18:36]
........ (idle for 38mn)
mercutiosounds scary [19:14]
.... (idle for 16mn)
is it possible to check if someone is in sudo rather than su? [19:30]
brycecWhat do you mean by "someone is in..."? [19:32]
mercutiolike has used sudo to get to root [19:33]
brycec/var/log/auth.log (or /var/log/secure, or... whatever else you have systlog configured for) [19:35]
mercutioas the update script i meant [19:35]
brycecWhat update script? Did I miss something? [19:36]
mercutiomilki updated gettext and it broke sudo [19:37]
brycecTechnically, a package could look to see if sudo is installed. However, this would need to be run before the package is installed, and it would need to abort the process somehow. I don't think that's possible. (But I'm not a FreeBSD packager...) [19:39]
mercutiooh hmm
i should have just checked
SUDO_GID=1000
it has environment variables
so i blame the update script :/
[19:40]
brycecOh you meant checking to see if the present invocation is within sudo. [19:41]
mercutioyeh [19:41]
brycecIf I were logged in on a tty as root and ran pkg upgrade, the system would still be hosed
"hosed"
Or for those living more dangerously, the update could have been done by cron and the presence/use of sudo would not have been detected by $SUDO_ variables and he'd be right back where he is now.
(Except being chastised for running updates blindly from cron)
My point is that relying on checking that the update is being run from sudo is a poor way to check whether the update is going to hose things up. Heck, I'd bet that the ENV is sanitised before any package scripts are run, so there go the $SUDO_ variables.
[19:42]
mercutiowell it's better than nothing
it could give a warning
[19:46]
***bmacs has joined #arpnetworks [19:54]
bmacsgraphs.arpnetworks.com seems to be ill right now. [19:56]
mercutiohmm can't establish secure connection for me [19:57]
brycecup_the_irons: ^ [19:58]
bmacsThe http anf https connections both just hang it seems [19:58]
mercutioyeah same here [19:58]
bmacstoo much graphing, not enough web serving
The box returns pings though. weird.
[19:59]
mercutioit accepts tcp connection too [20:01]
bmacsah, it accepts the connection then jsut doesn’t say anything back? [20:02]
mercutioyeah
curl -v https://
[20:02]
bmacsweird. [20:02]
mercutioprobably apache got into a bind
but that's just a guess
[20:02]
bmacsSounds like a good guess to me. [20:03]
brycecBut, Apache is a web server. It has no business being a BIND. No wonder it's having issues... [20:04]
mercutioyay for overloading words [20:05]
brycecfwiw, sent up_the_irons an e-mail, in case he's not watching IRC and no alerts were triggered (the host pings, the port is open... which covers 90% of service check configurations out there) [20:09]
mercutiosmart thinking [20:12]
brycecbrycec tries to be smart
brycec has also setup monitoring before and been stung by situations like this
Which reminds me... I really need to setup host monitoring for a client :/
[20:13]
bmacsWhat does everyone here use for monitoring? I was looking into nagios but it seems overly complicated. [20:14]
mercutioxymon is lighter weight
but ugly :/
http://xymon.sourceforge.net/
[20:14]
bmacsI like the green laserbeam down the side of their page. haah [20:15]
mercutiohaha
i find it less annoying than zabbix
zabbix is a huge slow resource hog
xymon with a facelift could be pretty awesome
[20:15]
bmacsYeah, I want the kind of thing that could be displayed on a large screen 24/7 in the office so that CEO types think we know what we are doing [20:18]
mercutiopingdom? [20:19]
bmacshuh. pingom doesn’t look too bad. looks like it could get pricey though. [20:19]
mercutiosysadmin is one of thoese areas where people don't know what you do unless things go wrong :/
but ceo types can pay for it?
[20:19]
bmacsgood point. [20:20]
mercutioyou can get free single host trial
last i looked web interface seemed to get nicer
and a lot of the free options tend to have pretty clunky interfaces
well all of them that i know of :/
the kind of people who decide to write free open source monitoring don't seem to be the type to be good at design.
[20:20]
bmacsI’ve noticed. it’s weird. the code can be great, but the design often falls short. [20:21]
mercutioyeh or downright shocking :/
i like zabbix because it's fast and cross platform.
[20:22]
bmacsPingdom seems to only be able to monitor publicly facing sites. [20:22]
mercutiobut i've only ever used it for monitoring load etc rather than for alerts.
i use nodeping.com for alerts.
and spong
ahh yeah that's for extnerla monitoring
what didn't you like about nagios?
it's probablythe most popular for medium to large sites using open source monitoring.
for smaller sites you care more that configuration is confusing/annoying/etc.
cacti isn't bad too.
it just means you need to export via ipmi from other hosts.
ipmi
uhh i mean snmp
[20:22]
bmacsYeah, cacti is pretty good. maybe that’s what I should just use and expose server load and such via snmp
maybe my only problem with nagios is that it looks a little clunky. I should probably play with it and see how I like it.
[20:25]
mercutioit is a little clunky
but it's functional.
[20:26]
bmacsyeah. it must be if it’s so popular. [20:27]
***toeshred has quit IRC (Read error: Connection reset by peer) [20:32]
brycecbmacs: Recently I've used Opsview. They have a free offering, and it's built atop nagios, reasonably easy to setup.
I wonder if BigBrother is still around...
[20:42]
bmacsI’ll check it out. [20:43]
mercutioxymon takes big brother plugins
i know the look is pretty ick, but it is pretty functional :/
http://en.wikipedia.org/wiki/Comparison_of_network_monitoring_systems
[20:43]
BryceBotComparison of network monitoring systems :: The following tables compare general and technical information for a number of network monitoring systems. Please see the individual products' articles for further information. Features Legend Product Name The name of the software, linked to its Wikipedia article. IP SLAs Reports Support of Cisco's IP Service Level Agreement mechanism. Logical Grouping Supports arranging the hosts or [20:44]
mercutiohmm [20:44]
bmacsI’m just going to install every one of those. haha [20:45]
mercutiohaha
trend prediction seems to be uncommon
distributed monitoring is surprisingly common
[20:45]
brycec2015-01-18 20:16:45 mercutio zabbix is a huge slow resource hog2015-01-18 20:21:42 mercutio i like zabbix because it's fast and cross platform.
I'm confused, mercutio, is it fast or slow?
[20:47]
mercutiooops
i meant xymon the second time
sorry i'm overheating
i know it's hard to understand from where you are :)
[20:47]
bryceclol
overheating?
[20:47]
mercutioyeh it's really hot here :/
@weather auckland
[20:48]
BryceBotAuckland, New Zealand: Clear 81°F (27°C), Humidity: 66%, Wind: Calm -- For more details including the forecast and almanac, see http://www.wunderground.com/cgi-bin/findweather/getForecast?query=-36.973896,174.878021 or re-request this with: @weather -v auckland [20:48]
mercutiohmm that doesn't /sound/ so hot, but it feels hot :/
xymon is c rather than perl
[20:48]
brycecbtw bmacs, afaik Cacti is graphing/logging only, no alerting. [20:49]
bmacsHmm. yeah. [20:49]
brycecmonit is worth considering, depending on your exact scenario [20:49]
mercutioalso it can still be good to use more than one monitoring thing [20:49]
brycecIt's same-host, but can manage processes, restarting or performing other actions as necessary
^++
[20:49]
mercutiolike i use cacti to check load averages, but i never alert on load averages.
i just use it to see when things get worse etc
or for trends.
[20:50]
brycecOoh and munin is nice too [20:50]
mercutiobut like if web hosting, you can alert based on how quickly a page loads.
so many options :)
[20:50]
brycecI use so many of them... [20:51]
bmacsgraphing page load times would be pretty sweet. [20:51]
mercutioheh brycec get him to use smokeping too :)
bmacs: you can do graphing of page load times with curl too
err with smokeping/curl
[20:51]
brycectruth ^
(There's some alerting to it too)
[20:51]
mercutiobrycec: oh? [20:52]
brycecBut I don't use alerting, so I can't speak to it. [20:52]
mercutioi haven't tried the alerting :) [20:52]
brycecMe either :p [20:53]
mercutiomercutio makes mental note to look into more monitoring again sometime
i still want soemthing that will deduce where there are issues
it's kind of a complex problem though. like a few days ago? arp had some loss on ntt due to ddos, but it seemed that coresite stuff was fine.
[20:53]
brycecNagios/opsview does that for network links [20:54]
mercutiobrycec: but does it do it for upstream of upstream etc?
like if it can be more particular that'd be nifty.
[20:55]
brycecIf host X is down, then it doesn't alert for downstream hosts Y and Z [20:55]
mercutioyeah but it's more complicated than that
because sometimes there's partial connectivity from differnet locations etc.
and host y/z maybe on a different subnet to x and behave differently etc
[20:57]
brycecIf Y/Z are on a different subnet, then you wouldn't configure them as downstream hosts :P [20:58]
mercutioeven if they're vm's off box x?
it seems i'm mostly thinking of network issues
[20:58]
brycecIt's however you want to configure things... [20:59]
mercutioit seems network issues are likely to increase more and more
i wonder if snmp amplification attacks are being done yet
(speaking of snmp)
[20:59]
.............. (idle for 1h9mn)
***toeshred has joined #arpnetworks
mkb has quit IRC (Remote host closed the connection)
[22:08]
.......... (idle for 48mn)
mkb has joined #arpnetworks [22:58]

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)