[01:14] <up_the_irons> lol
[01:40] <brycec> And suddenly you're back. What, were you off with your /other/ family again? Ugh.  /s
[02:10] <up_the_irons> lol
[02:10] <up_the_irons> yes
[05:17] *** mnathani_ has quit IRC ()
[05:22] *** mnathani_ has joined #arpnetworks
[07:49] *** carvite has quit IRC (Ping timeout: 252 seconds)
[07:55] *** carvite has joined #arpnetworks
[08:05] <sorressean> Has anyone had problems with IPMI? when I click on cd-rom image, it just says I don't have priviledges to perform this action, then my session times out and I have to log in again.
[08:06] <brycec> I don't remember having any issues with the virtual CD. sorressean: I trust that you logged back in and tried it again with the same result?
[08:07] <sorressean> eah.
[08:07] <sorressean> yes*
[08:42] <sorressean> Meh. this IPMI java interface is not accessible.
[08:42] <sorressean> Is there a serial console?
[08:51] <brycec> Welcome to the nature of most IPMI web interfaces on the market :( But fortunately it's your standard IPMI interface so tools like ipmitool will work too
[08:52] <brycec> (And just to clarify - The vast majority of server BMC/IPMI web interfaces suck, terribly and horribly. Just know that it's not ARP's fault.)
[08:53] <staticsafe> indeed
[08:53] <sorressean> Yeah, I figured it was'bnt.
[08:53] <staticsafe> submitted the needed paperwork to ARIN, now we wait \o/
[08:53] <sorressean> thanks, going to try ipmitool
[08:54] <brycec> Hooray staticsafe
[08:54] <brycec> I want an ASN of my own... just to have, not for any real purpose.
[08:56] <staticsafe> heh
[08:56] <staticsafe> unfortunately ARIN frowns upon that
[08:56] <brycec> Yeeeaaaah
[08:56] <brycec> That they do.
[08:56] <brycec> I just want to feel important.
[09:26] <RandalSchwartz> For many months after I was abruptly terminated from Intel, the ASN for intel corp was still in my name
[09:26] <RandalSchwartz> might have even been years... I forget.
[09:27] <RandalSchwartz> it was some amazingly low number. :)
[09:28] <brycec> lol
[09:29] <brycec> AS99?
[09:29] <RandalSchwartz> Yeah, that was it
[09:29] <brycec> RegDate:        1987-02-19
[09:30] <brycec> Seems like it's no longer used
[09:30] <RandalSchwartz> yeah - I don't even remember why we got it, or why my name ended up attached to it.
[09:30] <RandalSchwartz> oh - it's because we had an internal net, and two connections to the world
[09:35] <twobithacker> doesn't appear to be in the routing table
[09:35] <brycec> Because it's not announcing anything
[09:35] <RandalSchwartz> Yeah, not sure how they're doing it now
[09:36] <twobithacker> huh, bgp.he.net says it was seen as recently as Oct 2014
[09:36] <RandalSchwartz> weird
[09:37] <brycec> I thought Intel had a /8 but I don't see it now so I'm guessing they gave that back too.
[09:39] <RandalSchwartz> for a while, they used 128.215 inside the company, but it didn't belong to them. :)
[09:39] <brycec> lol. I wonder who it does belong to...
[09:39] <RandalSchwartz> Oh wait... that was the right number
[09:39] <RandalSchwartz> one part of the company was using a routable number, but just made it up
[09:39] <RandalSchwartz> eventually became a problem when we got "the net"
[09:39] <brycec> You stay classy, Intel!
[09:40] <RandalSchwartz> so they had to do a great renumbering
[09:41] <RandalSchwartz> eventually joining 128.215
[10:43] *** acf___ has joined #arpnetworks
[10:43] *** SpaceDum1 has joined #arpnetworks
[10:48] *** anis has joined #arpnetworks
[10:48] *** acf__ has quit IRC (*.net *.split)
[10:48] *** CaZe has quit IRC (*.net *.split)
[10:48] *** SpaceDump has quit IRC (*.net *.split)
[10:48] *** anisfarhana has quit IRC (*.net *.split)
[10:48] *** ix33 has quit IRC (*.net *.split)
[10:51] *** ix33 has joined #arpnetworks
[11:01] <staticsafe> hm ARIN needs an invoice, I guess I'll have to wait for billing to run today
[11:01] <brycec> staticsafe: What's wrong with last month's invoice?
[11:02] <staticsafe> my last ARP invoice was in April 2014 :P
[11:02] <brycec> Oh I see, returning to the fold then
[12:35] *** hive-mind has quit IRC (Ping timeout: 256 seconds)
[12:36] *** hive-mind has joined #arpnetworks
[12:37] <mercutio> static: with 32bit asn's you'd think they wouldn't see the need for such things?
[12:37] <mercutio> or are requeusting a short ASN?
[12:38] <brycec> I think they just realized that there's no point in being reckless, that's how we end up with /8's used by a single company.
[12:38] * brycec should upgrade zeit.arpnetworks.com to Jessie...
[12:40] <mercutio> i don't that was a bad thing in the first place.
[12:40] <mercutio> i just don't think anybody expected the internet to last so long
[12:40] <mercutio> without changes
[12:40] <brycec> Well sure nobody planned ahead/expected it.
[12:41] <brycec> But I still don't think Ford Motor Company needs 16.8 million public IP addresses.
[12:41] <mercutio> that could have been fixed 18 years ago or something though
[12:42] <brycec> Practically everything could have been fixed in the past... hindsight and whatnot
[12:42] <mercutio> yeah
[12:44] <brycec> I have less of an issue with /8s that are assigned to computer companies (Apple, HP, DEC) or whole governments and transit providers, but COME ON why does an car company need 17 million IP's?!? Or an oil company? Or financial services?
[12:44] * brycec rages
[12:44] <m0unds> gotta put those PLCs on the public internet brycec
[12:44] <brycec> (That being said, I still don't think the United States Dept. of Defense needs 201 million public IP's, especially when they run their own non-Internet networks)
[12:45] <brycec> lol m0unds
[12:45] <mercutio> yeah well we know ipv4 is a mess
[12:45] <brycec> (And MIT's /8 is just MIT holding out to be dicks. True story.)
[12:45] <mercutio> so now we're trying to screw up ipv6
[12:46] <mercutio> the ip address  side of ipv6 is fine..
[12:46] <mercutio> but how the hell do you multihome?
[12:47] <brycec> heh
[12:47] <mercutio> do you need a /48?  do you need a /32?
[12:54] <sorressean> Anyone done any installs with IPMI using ipmitool? trying to install BSD over SoL. it's just hanging, not sure if there was anything special I needed to do.
[12:56] <mkb> I usually spend an enormous amount of time and effort trying to make it work and eventually give up and try to get someone else to do it
[12:58] <mercutio> the sol is configured normally, but you need to make sure whatever you're using is outputting to serial
[12:58] <mercutio> java works
[12:58] <sorressean> awshit.
[12:58] <mercutio> i think i did java
[12:58] <sorressean> okay, maybe I can do that from FreeBSD installer
[12:58] <brycec> mercutio++
[13:00] <sorressean> Yeah, the java one isn't accessible with a reader.
[13:00] <sorressean> There is literally no way for me to do this.
[13:01] <brycec> Some installers start a serial terminal by default alongside VGA.
[13:01] <brycec> I think Debian does, for instance.
[13:01] <staticsafe> multihoming with /48 works just fine
[13:03] <mercutio> static: yeh i think it generally does atm
[13:04] <mercutio> but if everyone wanted to do it, there might be a push to become more restrictive
[13:04] <sorressean> Hrm. wonder if I can get arp to deploy bsd for me, given my issues
[13:04] <mercutio> and it goes back to the way of doing things that happened in ipv4
[13:04] <sorressean> This is fun learning, but I need this working so I can start the switch
[13:04] <mercutio> with people using "provider" space to multihome
[13:05] <mercutio> sorressean: you can't get java wokring?
[13:05] <mercutio> oh right
[13:05] <brycec> sorressean: Which BSD? if it's OpenBSD, I'll do it for you.
[13:05] <sorressean> mercutio:  applet is not accessible
[13:05] <sorressean> brycec:  it's FreeBSD
[13:05] <brycec> blech :P
[13:06] <sorressean> I'm not cool enough for OpenBSD. :p
[13:06] <sorressean> I like my jails.
[13:06] <mercutio> jails aren't necessarily secure
[13:07] <sorressean> No, they're not.
[13:07] <sorressean> But they make my life a lot easier sometimes.
[13:07] <brycec> It's nice to have logical machines :)
[13:07] <sorressean> (I can easily just wipe them out and rebuild if I need. So I have a development jail)
[13:07] <mercutio> cool
[13:08] <brycec> it's not a hatred of FreeBSD or anything, just that I have far less experience installing it (and there are more questions involved, etc)
[13:08] <brycec> (oh and it takes longer)
[13:08] <BryceBot> That's what she said!!
[13:08] <mercutio> yeah as long as you're not overvalueing security from them, they're probably pretty useful
[13:08] <brycec> Too often people think of VM's and containers and jails as magical security cures. Gotta correct those people before they do damage.
[13:09] <mercutio> brycec: i think vm's are introducing less security in general :)
[13:09] <mercutio> it's a complex  problem though
[13:09] <sorressean> Yeah, it's useful in a sense, but it's not really the base of my security
[13:09] <brycec> Good.
[13:10] <mercutio> like 4 vm's are more likely to have a hole than 1 server.
[13:10] <brycec> (all my jails communicate over lo - now THERE's some network security :D)
[13:10] <brycec> *lo0
[13:10] <brycec> (er, lo1 actually)
[13:10] <mercutio> lo1
[13:10] <sorressean> brycec:  I do that too.
[13:10] <staticsafe> 100ge7-2.core1.lon2.he.net thats a lot of bits
[13:10] <sorressean> It's cool because you can limit what connects where and resource usage of groups of services
[13:11] <mercutio> it's only ge
[13:12] <mercutio> * 100 :)
[13:12] <staticsafe> heh
[13:12] <mercutio> youu can get 100 gigabit ethernet cards for pc now i thnk
[13:13] <mercutio> like connectx-4 does 100ge i thikn
[13:13] <mnathani_> @exch 56.49 usd to cad
[13:13] <BryceBot> 56.49 USD -> 68.20224117 CAD (as of Thu, 30 Apr 2015 13:01:02 -0700)
[13:14] <staticsafe> the GBP to CAD exchange rate is painful
[13:15] <staticsafe> @exch 72.50 gbp to cad
[13:15] <BryceBot> 72.50 GBP -> 111.26679936831 USD -> 134.33607868174 CAD (as of Thu, 30 Apr 2015 13:01:02 -0700)
[13:15] <staticsafe> yeah
[13:17] <mercutio> damnit have to request quote to get price for 100gbe card :/
[13:19] <brycec> heh
[13:20] <mercutio> i wonder what rouuting performance would be like on linux near 100gbe :/
[13:32] <mercutio> http://arstechnica.com/security/2015/04/30/spam-blasting-malware-infects-thousands-of-linux-and-freebsd-servers/
[13:32] <mercutio> this souunds like they've put some effort into doing a good job.
[13:43] <mercutio> what openbsd has a bug
[13:44] <mercutio> with mailformed executables.
[13:46] <brycec> It happens sometimes
[13:46] <BryceBot> That's what she said!!
[13:46] <brycec> And specifically, maliciously-formed ELFs
[13:46] <mercutio> yeah
[13:46] <mercutio> hmm hammer2 may be getting ported to openbsd :)
[13:47] <mercutio> gsoc project
[13:47] <brycec> <-- not holding his breath
[13:48] <mercutio> neither
[13:48] <mercutio> that's why i said may
[13:48] <mercutio> may overload whoever is doing it
[16:43] <mercutio> oh openbsd 5.7 is out already
[17:31] <m0unds> gah, one of my fans sounds sick
[17:32] <m0unds> sounds like an old garage door opener
[17:39] <mercutio> at least fans are cheap
[18:21] <mkb> but nobody has received it in the mail yet
[18:22] <mercutio> oh?
[18:22] <mercutio> it's usually early :(
[18:22] <mercutio> isn't it?
[18:22] <mercutio> i don't like cd's
[18:22] <mkb> it used to be
[18:23] <mkb> the new shipper is in England, that won't help us in North America
[18:23] <mercutio> i don't even have a cdrom drive :/
[18:23] <mercutio> the idea mostly is for support
[18:24] <mercutio> and to make it easier to write it off as a business expense
[18:24] <mercutio> rather than to actually use
[18:24] <mercutio> i think most people who buy cd's still download it
[18:24] <mercutio> i'm starting to even use usb sticks less now
[18:24] <mkb> eh.. it'll arrive by the time I have a chance to install it and I only need it on my thinkpad locally at least
[18:24] <mercutio> i can just do pxe boot over network
[18:24] <mkb> now I'll download it a million times to install on servers
[18:28] <mkb> why in the world do they do this?
[18:28] <mkb> https://blog.mozilla.org/security/2015/04/30/deprecating-non-secure-http/
[18:29] <mercutio> what
[18:29] <mercutio> just title :)
[18:30] <mercutio> what i want is in between http and https
[18:31] <mercutio> i want validation of content, cacheable
[18:31] <mercutio> and validation of where something's coming from-
[18:31] <mercutio> having keys etc on packgaes etc gives a reasonable certainty
[18:31] <mkb> and doesn't require https
[18:32] <mercutio>  i'd actually like extended attribute stuff to be done more on unix
[18:32] <mercutio> like when you download a file it stores where it came from
[18:32] <mercutio> but yeah i'm kind of irrate at the way that caching is going out hte window
[18:33] <mercutio> if you have 20 cellphones in an office you can't have a local proxy it cache updates
[18:33] <mercutio> s/it/to/
[18:33] <BryceBot> <mercutio> if you have 20 cellphones in an office you can't have a local proxy to cache updates
[18:33] <mkb> http was supposed to do that
[18:33] <mercutio> well not on android, as all the updates go via https.
[18:33] <mkb> the rfc describes all sorts of caches and proxies
[18:33] <mercutio> yeah i haev a local proxy
[18:33] <mkb> https screws it up
[18:33] <mercutio> it's even on ssd's :)
[18:34] <mercutio> it's very noticable with things like updating packages on two hosts.
[18:34] <mercutio> because it's like 100x the speed :)
[18:35] <mkb> I wish I had more than one openbsd machine at work
[18:35] <mercutio> why's that?
[18:35] <mkb> everything would work much better if only we'd scrap linux
[18:35] <mercutio> like what?
[18:36] <mkb> no more systemd
[18:36] <mercutio> systemd is fine
[18:36] <mkb> actually that's not a fair complaint because I don't think we're ever going to really upgrade past centos 6
[18:37] <mercutio> i find stability and predictability are better with openbsd
[18:37] <mercutio> but upgrades can be a pita
[18:37] <mkb> exactly
[18:37] <mercutio> lots of people still use centos5
[18:37] <mercutio> i hate centos
[18:37] <mkb> they go changing crap every six months on linux or else it's one of the old centos 6 machines
[18:37] <mercutio> what's with that fastmirror crap
[18:37] <mercutio> it doesn't even work reliably
[18:37] <mercutio> and it takes ages
[18:37] <mkb> we have a mirror but fastmirror can't figure that out
[18:38] <mkb> and there's like 5 mirrors on internet2 closer that it can't find either
[18:38] <mercutio> new zealand is actually good for mirrors in general
[18:38] <mercutio> and most mirrors will do 60 to 80mb/sec+
[18:38] <mercutio> there's no openbsd mirror in new zealand though.
[18:39] <mercutio> yeah it's 5 mirrors on internet2 that's the issue
[18:39] <mercutio> i can understand it not finding a local mirror...
[18:39] <mercutio> if it's just your own mirror
[18:39] <mercutio> but it seems to be bad even with public mirrors
[18:39] <mkb> I think we have a public mirror
[18:39] <mkb> It's a university
[18:39] <mercutio> oh
[18:39] <mercutio> oh taht's even worse :)
[18:40] <mkb> should be 1Gbit/s
[18:40] <mercutio> the problem with universitys can sometimes be that file storage is non-local and slow
[18:41] <mkb> oh I never considered he might put the files on NFS
[18:41] <mercutio> so there may be plenty of network capacity and slow disk
[18:41] <mkb> I hope not
[18:42] <mercutio> it depends, is nfs everywhere there?
[18:42] <mercutio> it used to be extremely common in sun days
[18:42] <mercutio> it's not so common for newer setups, that are more linuxy ;/
[18:42] <mkb> we use it all over the place, but I don't know anything about how it's run
[18:43] <mercutio> but it's making a come back with vmware
[18:59] <mercutio> sorressean: did you get sorted ok?
[21:07] *** dj_goku has quit IRC (Remote host closed the connection)
[22:05] *** mordac has joined #arpnetworks
[22:05] <mordac> hello, can i please request that the OpenBSD 5.7 install CD be added to the list of CD-ROMs available in the control panel? The amd64 URL is http://ftp5.usa.openbsd.org/pub/OpenBSD/5.7/amd64/install57.iso
[22:06] <mordac> the i386 url is http://ftp5.usa.openbsd.org/pub/OpenBSD/5.7/amd64/install57.iso
[22:09] <mordac> er...http://ftp5.usa.openbsd.org/pub/OpenBSD/5.7/i386/install57.iso
[22:25] <mercutio> it'll probably be added shortly mordac
[22:26] <mercutio> it's less than 24 hours since release.
[22:41] <brycec> mkb, mercutio - if you hadn't heard there are manufacturing issues with the CD's so they're late.
[22:42] <brycec> (It's still best to send an email so up_the_irons has a todo item to cross off)
[22:53] <mordac> mercutio: I make the request because it was my request that got 5.6 up in November. I don't mind making the request and it seems to get the job done. :)
[22:53] <mercutio> ahh ok
[22:54] <brycec> heh
[22:54] <brycec> Oh mordac, typical OpenBSD nerd...
[22:58] <brycec> Well up_the_irons tells me my dedicated machine has been upgraded, and indeed it's back up and running... but for whatever reason I cannot SSH in. *sigh*
[22:59] <mercutio> ipmi?
[23:01] <brycec> looks like it. Damn firewall... worked fine before the shutdown, now I'm apparently locked out.
[23:05] <brycec> <3 "sol activate"
[23:12] <mercutio> yeah it's convenient.  what'd you do to it?
[23:14] <brycec> Second hard drive and more RAM
[23:25] * brycec gets to look forward to an online RAID build in-production, w00t
[23:35] <brycec> wtf, Linux... "ip route add...." "RTNETLINK answers: No such process" and I have no routes
[23:38] <brycec> heh my network configs are apparently totally screwy. Thank goodness for IPMI sol!
[23:40] <mercutio> hmm
[23:40] <mercutio> uubuuuntu trusty?
[23:41] <brycec> Debian Wheezy
[23:41] <mercutio> oops leaning on keys
[23:41] <mercutio> ahhh
[23:41] <mercutio> that shouldn't have anything weird about it's setup
[23:41] <brycec> Seems like it might be having some odd issues with bridging atop bonded interfaces
[23:41] <mercutio> sh
[23:41] <mercutio> oh
[23:41] <brycec> purely script-wise. Technically it works fine.
[23:42] <brycec> For whatever reason when Debian's ifup adds the ipv4 to the bridge, it doesn't take. No errors or anything, and I can manually run the ip commands later and get it up.
[23:43] <brycec> well here goes nothing...
[23:45] <brycec> hooray! everything is just fine
[23:45] <brycec> removed the inet6 configuration and everything came up just fine