***: d4c4 is now known as DaCa mercutio: nathani: when do you get warmer weather? brycec: Heads up to anyone that cares: zeit.arpnetworks.com is getting slammed with bursts of 20.000pps
It can handle it fine, I'm sure, but just so you know and whatnot.
Surprisingly, from a single IP it looks like (not a DDoS) 207.86.247.66 mercutio: i just got alerted bryce brycec: heh
I broke the firewall on it :( emailed support@
Didn't know you were up/around, mercutio milki: oops mercutio: i did talk a couple of hours earlier :)
but yeah wasn't watching irc brycec: iptables is not my native language, what can I say? I'm a pf guy. (I referenced a target that hadn't yet been initialized. Oops)
mercutio: you might've gone to bed? I don't know what time it is there :p mercutio: i hate iptables :) brycec: Likewise
...does iptables have a syntax checker? like pfctl -n? mercutio: heh it's 8:43 now brycec: I probably should've checked that before applying mercutio: i use ferm
which fails everything if something is wrong syntax wise brycec: mercutio: ah thanks, I'll try and remember that. (You're 9 hours "ahead" of ARP, except it's 21 hours, I know) mercutio: i'm 21 hours ahead actually
oh right
i responded too early hah
i think of being behind by 3 hours, and ahead a day brycec: heh before you'd read all of what I'd typed
Yeah that works too. You're "opposite east coast US"
(but that's just getting confusing if I describe it that way.)
woo, and it's back online again up_the_irons: brycec: yeah, ferm is the only way to make iptables tolerable mercutio: i assume most people have at least 3 time servers anyway :) up_the_irons: if you *just* use ferm, it's actually kinda nice mercutio: i got bitten by bad rules on iptables many years ago
so i'm pretty apprehensive about scripts that just run through iptables commands brycec: heh, I use ufw because it's super simple and makes valid rules on its own
But I needed to write some custom rules... and that's when I got bit mercutio: Don't think it should be necessary
Was CPU pegged? brycec: Nope, it had plenty of CPU to handle it.
But no point in wasting resources when a host is obviously just DoS'ing mercutio: i think it's probably just them trying it on to see if it forwards traffic
s/forwards/amplifys/ BryceBot: <mercutio> i think it's probably just them trying it on to see if it amplifys traffic brycec: 20kpps over the span of 30+ minutes is more than a probe, I think mercutio: hmm it wasn't sending lots of response though
idk brycec: Indeed, our ntpd isn't vulnerable
They just kept trying -: brycec would be super-embarrassed as the ntp admin if we were mercutio: i see so many sip probes around
and a few other things i don't even recognise
yeah
when ntp attacks first started there were a few vulnerable people around
it's kind of disconcerting when there are still vulnerable people though brycec: (Fun fact: ufw even attempts to do a syntax check, so no idea how it all broke) ***: mnathani_ has joined #arpnetworks mnathani_: mercutio: April through October the average high is in double digits
June to September are usually warm mercutio: ahh, you seem to have been negative for a while mnathani_: anyone else notice ipvfoo chrome extension relocate?
previously it was just at the end of the address bar, now its more to the right and closer to the corner brycec: mnathani_: All of Chrome changed things up
http://www.ghacks.net/2016/03/03/how-to-hide-extension-icons-in-google-chrome/
(And I really don't like it.) mercutio: i've been havign heaps of performance issues with chrome recently
just the other day i had some dialog box that just wouldn't shut
and i had to kill chrome
but it's also been lagging out
none of the new changes seem to improve performance ***: toeshred has quit IRC (Quit: WeeChat 1.0.1)
toeshred has joined #arpnetworks