[05:06] *** _iwc has joined #arpnetworks [05:24] *** _iwc has quit IRC (Killed (Sigyn (Spam is off topic on freenode.))) [05:31] *** _iwc has joined #arpnetworks [05:49] *** _iwc has quit IRC (K-Lined) [05:57] *** dj_goku_ has quit IRC (Remote host closed the connection) [08:25] *** avj has quit IRC (Quit: leaving) [12:35] I'm seconding the image list issue. Especially with the BSDS, you have to check against what is currently supported. If something isn't supported (9.1 I think is still supported) there's no point in sticking with 9.0 on the list. [12:41] Devil's Advocate: But what if a customer wants 9.0? Answer: Then they're the kind of customer that knows how to install it themselves. [12:41] Yeah, if you have very specific requirements for 9.0 you should be able to install it. [14:51] *** sorressean has quit IRC (Read error: Connection reset by peer) [14:51] *** sorressean has joined #arpnetworks [15:01] *** sorressean has quit IRC (Remote host closed the connection) [15:30] 7. et-3-1-0.lax22.ip4.gtt.net 0.0% 18 174.8 175.4 174.7 182.0 1.8 [15:31] 8. ge0-arpnet.cust.lax07.mzima.net 58.8% 18 174.9 177.3 174.9 182.0 3.1 [15:31] 9. anycast-arp.mainstreamhosting.net 70.6% 18 173.3 173.4 173.3 173.6 0.1 [15:31] whats up? [15:31] pl like crazy? :) [15:31] *** up_the_irons has quit IRC (Ping timeout: 240 seconds) [15:31] goddamnit [15:32] yes there is [15:32] ddos? [15:32] yeh likely [15:32] ok better upgrade internet :) [15:32] or have good ddos communities aka nullroute :) [15:33] *** jcv has quit IRC (Ping timeout: 244 seconds) [15:34] Stinking packet loss [15:34] *** jcv has joined #arpnetworks [15:34] yeh havent had pl in my network last couple years [15:35] but on the other hand I got 20gb transit with 0.5 % usage :) [15:37] again :( [15:37] 60% loss is amazing [15:37] That's what she said!! [15:37] *** up_the_irons has joined #arpnetworks [15:37] *** ChanServ sets mode: +o up_the_irons [15:38] my mobile go crazy with sms :) but hey its fun I watch tv soo its okey only 00.30 here :) [15:42] not any monitoring knowing destination easy that is attacked and can do nullroute? and provider null it and it goes away? [15:42] *** jcv has quit IRC (Ping timeout: 244 seconds) [15:43] it is null routed on some providers [15:43] *** jcv has joined #arpnetworks [15:44] this one give 65% pl ge0-arpnet.cust.lax07.mzima.net [15:44] still [15:44] yeh it's mzima that's broken [15:45] shutdown peer there then :) reroute over working route :) [15:50] i hate it when my ii bot disconnects from irc when I get to many alerts quickly :) [15:50] PROBLEM anycast-arp.mainstreamhosting.net/CPU Load CRITICAL CHECK_NRPE: Socket timeout after 10 seconds. kinda like that one :) [16:07] *** [FBI] starts logging #arpnetworks at Thu Oct 15 16:07:26 2015 [16:07] *** [FBI] has joined #arpnetworks [16:08] *** JC_Denton has joined #arpnetworks [16:08] is arp back online now? [16:08] Not dead? [16:08] urghl i have issues too [16:09] But my packets do seem to be lagged [16:09] Ill shutdown my anycasting until I wake up as I have a huge campain going and would be not to good if it cant reach the web :) [16:09] I got 77% loss on the mzima.net route in still [16:09] im on twc rr in ohio - v4 path is rr->level3->giglinx (??)->arp [16:09] i freaked out and assumed hardware [16:09] im seeing tons of pl [16:09] Guess this explains why my vpn can't reconnect. I just figured it was an El Capitain bug as I just rebooted from that upgrade. [16:09] *** jpalmer has quit IRC (Ping timeout: 250 seconds) [16:10] my level3 route. is like 60-70% loss too.. its huge.. seems to be major ddos [16:10] this dude 4.68.111.17 looks crushed [16:10] *** jpalmer has joined #arpnetworks [16:10] :( [16:11] smokeping has lost its mind, it's hilarious to see the sudden spike [16:11] i whipped up a ghetto perl monitoring script this past weekend - this is it's first real test (its actually working as desired...) [16:12] http://smokeping.mainstreamhosting.net/smokeping/smokeping.cgi?target=network.anycast-arp.normal this is from london. :) [16:13] *** JC_Denton has quit IRC (Ping timeout: 260 seconds) [16:14] nagios is a good monitoring tool :) [16:16] https://smokeping.cobryce.com/?target=ARP.ARPWebsite this is from 5 different networks (but served from ARP) :p [16:16] Thanks up_the_irons https://twitter.com/arpnetworks/status/654797205249757185 [16:17] TWITTER: We're experiencing a large DDoS attack in our Los Angeles data center. Sorry for the lost packets, we're working on it. (Thu Oct 15 23:13:13 +0000 2015) [16:17] brycec: believe it or not, some people still order really old versions because they have legacy apps they claim won't run on newer stuff [16:18] any idea if arp might be interested in other locations. Like in europe? [16:18] up_the_irons: I still regard it as essentially irresponsible to include unmaintained releases. Besides it's clear that they can install whatever else they need if they're one of those special people. [16:19] *** JC_Denton has joined #arpnetworks [16:19] (That is of course just an opinion, and you're free to go about your life as you wish) [16:19] mrsaint: I'm working on a location in Germany [16:19] brycec: to each his own :) [16:20] up_the_irons: I have hosting germany netherlands and uk and good really good in .se I can offer good pricing. [16:22] up_the_irons: (In case you missed it in the scrollback, I'm not against the images existing, or their ISO's. Just trying to clean up the signup form because wow that list just kept on going and going and going) [16:23] I'm definitely happy to see that IPv6 traffic isn't affected nearly as bad as IPv4 in this ddos [16:24] tobad 0.00001% use ipv6 :( [16:25] >50% of my daily traffic is ipv6 [16:29] damn [16:29] less then 1% of my 4gb used bw is ipv6 :) [16:33] brycec: I saw it. People order the old versions, so... [16:36] * brycec shakes his head in those peoples' directions [16:36] *** [FBI] has quit IRC (Ping timeout: 265 seconds) [16:37] *** [FBI] starts logging #arpnetworks at Thu Oct 15 16:37:14 2015 [16:37] *** [FBI] has joined #arpnetworks [16:37] *** carvite has quit IRC (Ping timeout: 265 seconds) [16:39] *** carvite has joined #arpnetworks [16:39] *** thestereobus has quit IRC (Quit: thestereobus) [16:41] time to get some sleep. up in 6h to work :) Good luck with the ddos guys [16:42] *** JC_Denton has joined #arpnetworks [16:58] *** carvite has quit IRC (*.net *.split) [16:58] *** meingtsla has quit IRC (*.net *.split) [16:58] *** awyeah has quit IRC (*.net *.split) [16:58] *** ant has quit IRC (*.net *.split) [16:58] *** brycec has quit IRC (*.net *.split) [16:58] *** mercutio has quit IRC (*.net *.split) [16:58] *** plett has quit IRC (*.net *.split) [16:58] *** grody has quit IRC (*.net *.split) [16:58] *** freedomcode has quit IRC (*.net *.split) [16:58] *** qbit has quit IRC (*.net *.split) [16:58] *** mnathani has quit IRC (*.net *.split) [16:58] *** tooth has quit IRC (*.net *.split) [16:58] *** mike-burns has quit IRC (*.net *.split) [16:58] *** b^_^d has quit IRC (*.net *.split) [16:58] *** DaCa has quit IRC (*.net *.split) [16:58] *** KILLALLHUMANS01 has quit IRC (*.net *.split) [16:58] *** Hien has quit IRC (*.net *.split) [16:58] *** djkrikke-2 has quit IRC (*.net *.split) [16:58] *** milki has quit IRC (*.net *.split) [16:58] *** Seju has quit IRC (*.net *.split) [16:58] *** joepie91_ has quit IRC (*.net *.split) [16:58] *** jbergstroem has quit IRC (*.net *.split) [16:58] *** mhoran has quit IRC (*.net *.split) [16:58] *** KDE_Perry has quit IRC (*.net *.split) [16:58] *** trobotham has quit IRC (*.net *.split) [16:58] *** nesta has quit IRC (*.net *.split) [16:58] *** vom513 has quit IRC (*.net *.split) [16:58] *** medum has quit IRC (*.net *.split) [16:58] *** phlux has quit IRC (*.net *.split) [16:58] *** BryceBot has quit IRC (*.net *.split) [16:58] *** hycer has quit IRC (*.net *.split) [16:58] *** neish has quit IRC (*.net *.split) [16:58] *** dne has quit IRC (*.net *.split) [16:58] *** jpalmer has quit IRC (*.net *.split) [16:58] *** gizmoguy has quit IRC (*.net *.split) [16:58] *** hive-mind has quit IRC (*.net *.split) [16:58] *** lteo has quit IRC (*.net *.split) [16:58] *** tellnes has quit IRC (*.net *.split) [16:58] *** mrsaint has quit IRC (*.net *.split) [16:58] *** jcv has quit IRC (*.net *.split) [16:58] *** relrod has quit IRC (*.net *.split) [16:58] *** pyvpx has quit IRC (*.net *.split) [16:58] *** acf_ has quit IRC (*.net *.split) [16:58] *** mnathani_ has quit IRC (*.net *.split) [16:58] *** tabthorpe has quit IRC (*.net *.split) [16:58] *** JC_Denton has quit IRC (*.net *.split) [16:58] *** toeshred has quit IRC (*.net *.split) [16:58] *** jlgaddis has quit IRC (*.net *.split) [16:58] *** pjs has quit IRC (*.net *.split) [16:58] *** eryc has quit IRC (*.net *.split) [16:58] *** mjp_ has quit IRC (*.net *.split) [16:58] *** MrMorden has quit IRC (*.net *.split) [17:05] *** MrMorden has joined #arpnetworks [17:06] *** up_the_irons has quit IRC (*.net *.split) [17:06] *** chrismsnz has quit IRC (*.net *.split) [17:06] *** staticsafe has quit IRC (*.net *.split) [17:06] *** rendrag has quit IRC (*.net *.split) [17:06] *** RandalSchwartz has quit IRC (*.net *.split) [17:06] *** toddf has quit IRC (*.net *.split) [17:09] *** JC_Denton has joined #arpnetworks [17:09] *** toeshred has joined #arpnetworks [17:09] *** mjp_ has joined #arpnetworks [17:09] *** jlgaddis has joined #arpnetworks [17:09] *** pjs has joined #arpnetworks [17:09] *** eryc has joined #arpnetworks [17:10] *** jcv has joined #arpnetworks [17:10] *** relrod has joined #arpnetworks [17:10] *** pyvpx has joined #arpnetworks [17:10] *** acf_ has joined #arpnetworks [17:10] *** mnathani_ has joined #arpnetworks [17:11] *** carvite has joined #arpnetworks [17:12] *** medum_ has joined #arpnetworks [17:12] *** tabthorpe has joined #arpnetworks [17:15] *** mike-burns has joined #arpnetworks [17:15] *** b^_^d has joined #arpnetworks [17:15] *** DaCa has joined #arpnetworks [17:15] *** KILLALLHUMANS01 has joined #arpnetworks [17:15] *** Hien has joined #arpnetworks [17:15] *** kornbluth.freenode.net sets mode: +o mike-burns [17:15] *** up_the_irons has joined #arpnetworks [17:16] *** chrismsnz has joined #arpnetworks [17:16] *** staticsafe has joined #arpnetworks [17:16] *** rendrag has joined #arpnetworks [17:16] *** RandalSchwartz has joined #arpnetworks [17:16] *** toddf has joined #arpnetworks [17:16] *** kornbluth.freenode.net sets mode: +oo up_the_irons toddf [17:16] *** tooth has joined #arpnetworks [17:16] *** djkrikke-2 has joined #arpnetworks [17:16] *** milki has joined #arpnetworks [17:16] *** Seju has joined #arpnetworks [17:16] *** joepie91_ has joined #arpnetworks [17:16] *** jbergstroem has joined #arpnetworks [17:16] *** mhoran has joined #arpnetworks [17:16] *** KDE_Perry has joined #arpnetworks [17:16] *** kornbluth.freenode.net sets mode: +o mhoran [17:16] *** meingtsla has joined #arpnetworks [17:16] *** awyeah has joined #arpnetworks [17:16] *** ant has joined #arpnetworks [17:16] *** brycec has joined #arpnetworks [17:16] *** mercutio has joined #arpnetworks [17:16] *** plett has joined #arpnetworks [17:16] *** grody has joined #arpnetworks [17:16] *** freedomcode has joined #arpnetworks [17:16] *** qbit has joined #arpnetworks [17:16] *** mnathani has joined #arpnetworks [17:18] *** jpalmer has joined #arpnetworks [17:18] *** gizmoguy has joined #arpnetworks [17:18] *** hive-mind has joined #arpnetworks [17:18] *** tellnes has joined #arpnetworks [17:18] *** mrsaint has joined #arpnetworks [17:19] *** lteo has joined #arpnetworks [17:19] *** nesta has joined #arpnetworks [17:21] *** vom513 has joined #arpnetworks [17:21] *** phlux has joined #arpnetworks [17:21] *** BryceBot has joined #arpnetworks [17:21] *** hycer has joined #arpnetworks [17:21] *** neish has joined #arpnetworks [17:21] *** dne has joined #arpnetworks [17:26] *** bmacs has joined #arpnetworks [17:33] Is the DDoS still going on? [17:34] *** trobotham has joined #arpnetworks [17:34] there's some mitigation [17:34] most routes are fine now [17:34] *** dwarren has joined #arpnetworks [17:34] *** sorressean has joined #arpnetworks [17:35] at the same time freenode's been having ddos attacks it seems [17:35] so you are saying rackspace is behind this? ;) [17:36] Is the target ARP? or is it one of the hsoted clients? [17:36] lets blame rackspace for everything. [17:36] most notably suckage. [17:36] also I don't know if it was network side or server side, but I'm getting some insane server lag. [17:36] heh [17:37] can't really talk about targets. [17:37] sorressean: on what host? [17:37] mercutio: arpnetworks dedicated [17:37] oh [17:37] probably network then [17:37] it's still happening? [17:38] I presume if anything was making the box lag that hard it would'/ve had higher load averages, top showed nothing and no swap usage. [17:38] it's quite recently it got better [17:38] mercutio: seems to be slightly better. it's spiking now. [17:40] maybe a separate issue but if you're seeing loss and high ping spikeyness near the arp network then send in support ticket with traces in both directions [17:40] hrm. will do [17:41] i think the ddos has actually stopped now [17:41] Oh, was there an attack on the network? [17:41] Was Linode hit too? I'm trying to hit a site that has two VPS at Linode serving their authoritative DNS and connections are just timing out, confirmed from several other home ISPs. And a third site with DNS from name.com isn't resolving either. [17:41] I just recently joined IRC after a server reboot. [17:41] brycec: I was just using my linode vps. seems okay. [17:41] could have been, i hvae no idea :) [17:42] sorressean: so strange [17:42] thanks [17:42] I know freenode was under for a while as well. [17:42] bryce along with these freenode dos's. [17:42] First the ddos and then a bunch of different DNS servers appear broken, I start getting suspicious. [17:42] I can't confirm on their DNS though. not using their dns for anything. may have been attack directly at their DNS systems. [17:43] (To be clear, these aren't "Linode DNS" or whatever, but actual VPS at Linode running BIND) [17:43] ah gotcha. [17:43] my system is in dallas if that helps. [17:43] I've poked those servers' owners, but wondered if there was something more widespread happening, or if this is just an unfortunate coincidence. [17:44] But in other exciting news, I received my OpenBSD 5.8 sets today :) [17:44] brycec: that's only exciting if it's FreeBSD! ;) [17:44] Why would you be excited for FreeBSD 5.8?? [17:47] Does FreeBSD sell CD/DVD sets any more? [17:49] openbsd 5.8 [17:49] mercutio: yes. [17:49] oh right [17:49] was reading bottom to top :) [17:49] lolol [17:49] bloody ddos attacks. [17:50] *** mkb has joined #arpnetworks [17:50] for some reason they never really evolved though [17:53] Your current account balance is $8.796585458091763898. [17:53] Love tarsnap. [18:02] haha [18:44] *** vom513 has quit IRC (Quit: leaving) [18:55] http://www.nytimes.com/2015/10/16/technology/ultradns-server-problem-pulls-down-websites-including-netflix-for-90-minutes.html?_r=0 [18:56] thanks sorressean [18:57] Friend's blog is still down though :( blog.anthrobsd.net [18:57] the nameservers simply don't seem to have any records besides an SOA for his domain [18:57] Also arpnetworks tweated about DDOS issues [18:57] brycec: any idea what provider? [18:58] whois data says name.com [18:59] I have a domain hosted with them. seems to be fine from my end. (bscbstudentsofma.org) [19:00] thansk for checking [19:00] *thanks [19:01] friend says he hasn't touched anything but hasn't looked into further. [19:01] And I decided not to care about it more than he does. [19:03] heh, those are great facedesk moments. [19:04] And to move on to my next problem. Firewall can hit an address, but a system behind the firewall (not router, no nat, just a transparent bridging firewall) gets "no route to host" for no apparent reason :) [19:04] If it's not one thing, it's another. [19:05] sounds like my day. [19:05] I've never spent so much time in ssh. [19:06] sorressean: i've been trying to get office 2k13 to activate all day [19:06] i'd rather be network troubleshootin' [19:06] :P [19:06] also I never thought I'd curse so much about perl. [19:06] It wasn't as fun as network troubleshooting. [19:06] * brycec does a headless OpenBSD upgrade for a pick-me-up [19:07] somewhere somehow spamassassin and perl and amavisd-new broke. but recompililing, even if you get all dependencies didn't matter, so it was a matter of grabbing random perl libraries that were missing, recompiling and then running again tos ee what was broken still. [19:08] to see* [19:15] Okay... so this host can ping host X, but curl bombs out immediately with "No route to host". lolwut [19:16] ping wouldn't update routing tables would it? [19:16] that can be firewalling [19:16] if it returns icmp-unreachable [19:16] thanks mercutio [19:16] I forgot this box has its own pf.conf that limits outgoing traffic [19:17] * brycec sends mercutio a cookie [19:17] the modern trend seems to be to just drop traffic.. [19:17] (This is why I'm trying to consolidate firewalls too) [19:20] OpenBSD 5.8 (GENERIC.MP) #723: Wed Aug 5 00:21:20 MDT 2015 [19:20] w00t [19:20] your cookie did not arrive. It was blocked by pf.conf [19:20] I didn't send it to you, sorressean :P [19:20] well, mercutio 's cookie didn't arrive! [19:20] it was blocked by *his* pf.conf! [19:21] heh [19:22] it feels so weird to have such an early release [19:22] I'm just excited to have it before the release date [19:22] heh [19:22] (this is the first time I've actually bought a set. and a shirt.) [19:22] i'm waiting for the release date. [19:23] I'm 90% done with my first upgrade [19:23] are you upgrading to 5.8-stable? [19:23] And as an admin of the preeminent (if I do say so myself) OpenBSD shell host, I plan to have it upgraded before release date too [19:23] Si. [19:23] oh wow i thought you didn't do updates there. [19:24] ? [19:24] well not very often i meant [19:24] damnit i've forgotten the name of it now :) [19:24] On devio.us? We're running 5.7 now :p [19:24] oh [19:24] it was a couple of versions behind before wasn't it [19:24] Sorta, we've had a checkered history [19:24] brycec: I knew I recognized the name, didn't realize you worked on devious. [19:25] Ran 4.7 for the longest time (until around 5.5 or so) due to technical issues [19:25] er, 4.9 crept in there too [19:25] is it down atm? [19:25] I got an account, but I haven't found anything fun to do with it yet. just made sure a package compiled on BSD. [19:25] That's what she said!! [19:25] mercutio: nope, it's up. [19:25] until we were running 5.4, and were "stuck" on that until we had a remote KVM to ensure the time_t upgrade went smooth [19:25] OpenBSD wolfman.devio.us 5.7 GENERIC.MP#3 i386 [19:26] i'm not getting dns [19:26] mercutio: our DNS is hosed-ish, I mentioned it earlier in #arpnetworks (Linode) [19:26] oh [19:26] right [19:26] dns is down completely :) [19:26] what's the ip? [19:26] Yeah :( 2001:470:4:2a5::feed:dead [19:26] ipv4 [19:27] 98.142.108.75 [19:27] Was going to say "I have no idea" but remembered I have open ssh connections to it [19:27] it's in motd too it seems [19:27] bitrig? [19:27] (Our DNS isn't setup in the most optimal way right now... mainly because I don't admin it, and what's setup right now was meant to be temporary.) [19:27] Congrats mercutio you're the 3rd person ever to see that gag [19:27] [and say something about it] [19:28] oh it's not really? :) [19:28] i see :) [19:28] It's OpenBSD, really [19:28] It was an April Fools joke [19:28] well bitrig is openbsd too [19:28] 6 months later... [19:29] Not enough people laughed yet. [19:29] heh [19:29] And only in the sense that OpenBSD is NetBSD :P [19:29] invalid system call [19:29] gah [19:29] brycec: I just connected via dns. [19:29] I think. one sec [19:29] sorressean: you must have it cached, because ns1.devio.us and ns2.devio.us don't respond [19:29] i wish openbsd would keep supporting older binaries :) [19:30] @tdr [19:30] Theo de Raadt says: "thisistheone8888" is someone who throws out uneducated thoughts without any practice. Oh wait, this is misc. I forgot. [19:30] *** dj_goku has joined #arpnetworks [19:30] I'm sure Theo's said something about "Fuck backwards compat" [19:30] maybe it's propigating now or something. for whatever reason I can ping it from my linode, never connected from linode. well, if I did it was months ago. [19:31] hm maybe Linode is filtering 53/udp to the Internet [19:31] major lag [19:31] it was all good earlier [19:32] Well it is a busy box... [19:32] well it looks like he.net being lame [19:32] I am curious, what is the general use case? I doubt really heavy development can go on there. [19:33] shells were all the rage in the 90s. [19:33] i had one :) [19:33] mercutio++ [19:33] email, text web browsing, code dev, testing connectivity [19:33] Also IRC bouncers, but we frown on that [19:34] well, if you frown at me I can say I didn't see it! [19:34] heh i got ddos'ed when irc bouncing years back [19:34] but i suppose that's what you get for logging in to efnet [19:34] someone wanted my nick [19:35] sorressean: just to clarify, dig devio.us @173.230.139.107 works for you? [19:35] or @74.207.236.79 ? [19:35] (from your Linode VPS) [19:37] no, it doesn't. maybe it's cached at Linode's DNS servers. [19:37] i can reach .108 but not .107 [19:37] Must be it I guess. [19:37] hangon [19:37] i can reach both now [19:37] yeah. sorry for the false hope there... [19:37] I know it's not cached on my specific instance, but it's probably cached on their DNS. [19:37] i still can't dig though [19:37] sorressean: no worries, just wanted to be sure before I told the guy whose dns servers they are something false [19:38] He must be rebooting .107 right now [19:41] woo, dns is back [19:41] same here [19:42] Do we have any stats on how large this DDoS was, traffic wise? [20:04] Meh. OVH spam/support is seriously shitty, but I have to give them props for doing cool stuff with energy usage. [20:29] * mercutio found bryce's talk [20:33] ..was it hard to find? [20:34] nope [20:34] at least once dns was working :) [20:35] i really want something like php-fpm that can just listen on heaps of sockets and start php if necessary for a user. [20:35] and then leave a pool running for more common sites, and just start as needed for less common [20:35] $OneOfTheseDays I'll write something just for us [20:35] oh i want a general solution [20:36] because php startup cost is really high [20:36] well, I'll open-source it and stuff [20:36] of course i'd rather php just had a cheaper startup cost. [20:36] but for shared web hosting in general it'd be great. [20:36] You're talking to someone that oversees a system that calls php-cgi hundreds of times a minute, trust me, I know :P [20:36] *php-fastcgi [20:37] heh [20:38] it's one of those glaring problems [20:38] that would require considerable effort to fix. [20:38] of course one way to look at it is "ram is cheap" [20:38] but you still get process table bloating [20:39] and php caches don't work when you run as cgi [20:39] also this talk has good audio [20:39] i'm so used to talks that you can hardly make out what people are saying [20:39] We see the load mostly on disk IO load (but that may have something to do with what our users are doing) [20:40] WOULD YOU LIKE ME TO TALK LOUDER? :p [20:40] you talk loud enough [20:40] all the disk i/o should be cached [20:40] that may just be from not having enough ram for reads. [20:40] Or their stuff is loading various random stuff [20:41] Fun fact: we don't have 100GB of RAM to cache all of /home :P [20:41] heh [20:41] i dunno [20:41] We have *drumroll* 2GB. [20:41] if i was specing hardware i would have gone with at least 24gb of ram :) [20:41] yeh i know [20:41] ram is cheap, but that'll be ddr1 :/ [20:41] Nah we're ddr2 [20:41] pretty sure [20:41] oh real [20:41] now I'm not so sure... [20:42] i doubt it's ddr2 [20:42] Whatever, cheaper than ram is "free hardware" [20:42] heh [20:42] true, you could probably get something better donated now days [20:42] but shifting around and stuff [20:43] We're actually working on getting another box up [20:43] but it's having hardware issues apparently [20:43] ahh [20:43] do you get much rack space? [20:43] As I recall, it has 24GB or so [20:43] I have no idea [20:43] oh ok [20:43] I don't know much beyond what sudo grants me :p [20:44] ahh [20:44] but yeah i still get surprised by how well openbsd runs on old hardware [20:44] it never used to seem that amazing performance wise [20:44] it just hasn't got that much slower over time [20:44] lol [20:45] generating keys for ssh is slow on old hw [20:46] ill generate some for you if you like :) [20:51] hmm there's al ong video on network performance on freebsd there too [20:51] That was a good talk [20:51] maybe that'll tell me how linux compares to freebsd network wise [20:52] It won't. [20:52] oh ok [20:52] thanks :) [20:52] it should still be interesting :) [20:52] It will describe ways of bettering network metrics and improving network performance on FreeBSD [20:52] as memory serves [20:56] yeah i think i'll leave that for later :) [20:56] oh yeh [20:57] i just bought 3 dual port 10 gigabit ethernet cards [20:57] for US $50 :) [20:58] total [20:58] yay for ebay and make best offer :) [20:58] hot damn [20:58] Congrats [21:00] they're untested [21:00] but i bought one like that for $20 untested before and it was fine [21:00] GL [21:00] *Good luck [21:00] What sort? [21:00] there's no driver on openbsd [21:00] mellanox connectx [21:00] they generate a lot of interrupts, but are fine performance wise [21:00] * brycec considers whether he should be upgrading his ancient crappy GbE home network :p [21:01] Cool [21:01] by a lot i mean i was doing 150k+ [21:01] before i played with coalescing [21:01] (there's been some recent list traffic about 10GbE cards) [21:01] yeah i want to try writing a driver for openbsd [21:01] but it's way down the list :) [21:01] s/writing/porting/ [21:01] yeah i want to try porting a driver for openbsd [21:01] i got a box of sfp+ direct attach cables before [21:01] so now i have heaps of cables, so i thought i needed some more cards :) [21:02] lol [21:04] you can get 1x the single port card for like $16 or something [21:04] and the make offer was selling for $175 [21:04] http://www.ebay.com/itm/121605173632?_trksid=p2057872.m2748.l2649&ssPageName=STRK%3AMEBIDX%3AIT [21:05] Well man good luck with those, hope they work out for ya. $50 isn't bad for a gamble. [21:05] yeah i suspect they just have no way to test [21:06] and dual port cards for back to back is just so much more convenient [21:06] ebay seems flooded with them [21:58] *** bmacs has quit IRC (Quit: bmacs) [22:26] my only dive into kernel code was trying to patch up a screen reader for Linux that ran fully in the kernel. [22:27] It was... less than fun. Mostly because screen readers don't belong in the kernel. [22:27] Sounds like a thing Linux would do. [22:27] There was not even an attempt at decoupling. It's just fully there. [22:53] is it still in the kernel? [22:53] i remember people getting excited about tux [22:53] That's what she said!! [22:53] the in kernel web server [22:53] and i'm like uhh [22:53] i would like to see more kernel level stuff for medium level type stuff [22:53] like receive file and output straight to disk [22:54] you can send file, but not receive file [22:54] but normal coalescing could help there too. downloading using dsl or such with low speed and no coalescing is a bit of an unnecessary burden [23:01] ddos gone now? [23:09] Supposed to be, yep [23:17] yeah it's the nastiest ddos i've seen on arp ever. [23:17] it was [23:26] yeah.. found the destination also I guess? some specific target ? [23:26] as it used to be.. [23:26] yeah weirdly it always seems to be [23:26] sometimes you hear about people attacking dns servers and so forth of providers afterwards. [23:27] but for the vast majority of cases it's one user. [23:27] for residential users it's usually people playing call of duty and mouthing off or such [23:28] yeah its boring.. [23:33] such is life :) [23:33] i think it was lithuania that once had huge coordinated attack on banking system [23:33] but most attacks are more to annoy than orderly. [23:38] its easy for a client to configure ntpd wrong and you get ddos due to those aswell.. Its not easy to keep everything secure either. [23:56] it's hard to configure openntpd wrong