nathani: when do you get warmer weather? Heads up to anyone that cares: zeit.arpnetworks.com is getting slammed with bursts of 20.000pps It can handle it fine, I'm sure, but just so you know and whatnot. Surprisingly, from a single IP it looks like (not a DDoS) 207.86.247.66 i just got alerted bryce heh I broke the firewall on it :( emailed support@ Didn't know you were up/around, mercutio oops i did talk a couple of hours earlier :) but yeah wasn't watching irc iptables is not my native language, what can I say? I'm a pf guy. (I referenced a target that hadn't yet been initialized. Oops) mercutio: you might've gone to bed? I don't know what time it is there :p i hate iptables :) Likewise ...does iptables have a syntax checker? like pfctl -n? heh it's 8:43 now I probably should've checked that before applying i use ferm which fails everything if something is wrong syntax wise mercutio: ah thanks, I'll try and remember that. (You're 9 hours "ahead" of ARP, except it's 21 hours, I know) i'm 21 hours ahead actually oh right i responded too early hah i think of being behind by 3 hours, and ahead a day heh before you'd read all of what I'd typed Yeah that works too. You're "opposite east coast US" (but that's just getting confusing if I describe it that way.) woo, and it's back online again brycec: yeah, ferm is the only way to make iptables tolerable i assume most people have at least 3 time servers anyway :) if you *just* use ferm, it's actually kinda nice i got bitten by bad rules on iptables many years ago so i'm pretty apprehensive about scripts that just run through iptables commands heh, I use ufw because it's super simple and makes valid rules on its own But I needed to write some custom rules... and that's when I got bit Don't think it should be necessary Was CPU pegged? Nope, it had plenty of CPU to handle it. But no point in wasting resources when a host is obviously just DoS'ing i think it's probably just them trying it on to see if it forwards traffic s/forwards/amplifys/ i think it's probably just them trying it on to see if it amplifys traffic 20kpps over the span of 30+ minutes is more than a probe, I think hmm it wasn't sending lots of response though idk Indeed, our ntpd isn't vulnerable They just kept trying i see so many sip probes around and a few other things i don't even recognise yeah when ntp attacks first started there were a few vulnerable people around it's kind of disconcerting when there are still vulnerable people though (Fun fact: ufw even attempts to do a syntax check, so no idea how it all broke) mercutio: April through October the average high is in double digits June to September are usually warm ahh, you seem to have been negative for a while anyone else notice ipvfoo chrome extension relocate? previously it was just at the end of the address bar, now its more to the right and closer to the corner mnathani_: All of Chrome changed things up http://www.ghacks.net/2016/03/03/how-to-hide-extension-icons-in-google-chrome/ (And I really don't like it.) i've been havign heaps of performance issues with chrome recently just the other day i had some dialog box that just wouldn't shut and i had to kill chrome but it's also been lagging out none of the new changes seem to improve performance