--- Log opened Fri Mar 16 00:00:11 2012 00:11 -!- rangerz [~mwalker@c-98-211-44-193.hsd1.tn.comcast.net] has quit [Quit: Leaving.] 00:43 <@Corydon76-home> Evilpig: probably a header file that was missing 00:43 <@Corydon76-home> What was the error? 00:44 <@Evilpig> I don't remember right now. it was a page of errors. 00:44 <@Evilpig> gcc -lncurses -lpthread -o ../bwmon bwmon.o 00:44 <@Evilpig> bwmon.o: In function `main': 00:44 <@Evilpig> bwmon.c:(.text+0x3b5): undefined reference to `pthread_create' 00:44 <@Evilpig> bwmon.c:(.text+0x587): undefined reference to `initscr' 00:44 <@Evilpig> several like that 00:44 <@Corydon76-home> First one generally is the clue, and the remaining can be completely off base 00:45 <@Evilpig> collect2: ld returned 1 exit status 00:45 <@Evilpig> make[1]: *** [bwmon] Error 1 00:45 <@Evilpig> make[1]: Leaving directory `/home/wilbur/tmp/bwmon-1.3/src' 00:45 <@Evilpig> make: *** [all] Error 1 00:45 <@Corydon76-home> libc6-dev is what you needed, probably 00:46 <@Corydon76-home> Second one is libncurses5-dev 00:47 <@Evilpig> still erroring. not a big deal since i just pulled the working binary over 00:48 <@Corydon76-home> Yeah, that's rather weird. I wouldn't expect it to work if those libraries weren't present 00:48 <@Corydon76-home> This is Ubuntu, right? 00:48 <@Evilpig> yeah 00:48 <@Evilpig> this utility is old as dirt too 00:48 <@Evilpig> it could be any number of things 00:48 <@Corydon76-home> Did you copy a tarball from another machine, or did you copy a preconfigured directory from another machine? 00:49 <@Evilpig> copied the source from sourceforge 00:49 <@Corydon76-home> Very weird. Usually the configure script figures all that out 00:49 <@Evilpig> haha configure script. 00:49 <@Evilpig> this has a makefile and that's it 00:53 <@Evilpig> nifty. The frist is showing Pan's Labyrinth tonight 00:53 <@Corydon76-home> Do you have a 64-bit machine? 00:53 <@Evilpig> yar 00:54 <@Corydon76-home> It has 64-bit issues with the source 00:55 <@Evilpig> makes sense. like I said it's old as dirty 00:55 <@Evilpig> dirt 00:56 <@Evilpig> it's a quick n dirty bandwidth monitor that i've used for years 00:56 <@Corydon76-home> Oh, the problems aren't that serious 00:57 <@Corydon76-home> Try doing a make clean all 00:57 <@Corydon76-home> Oh, lovely, clean isn't even a target 00:57 <@Evilpig> hehe 00:57 <@Evilpig> Notlarry and I are going to the hotel in the morning, btw 00:58 <@Corydon76-home> Oh, it is a target, it just doesn't do what it should 00:58 <@Evilpig> I think I finally fixed the wireless issue they have been having and we are going to pull some copper to the ballroom 00:58 <@Corydon76-home> Okay 00:58 <@Corydon76-home> Do you need any assistance? 00:58 <@Evilpig> nah we should have it covered. just letting you know 00:59 <@Evilpig> if the wireless nonsense is still going on I am going to setup my server at the house to catch the syslog traffic from their captive portal appliance and see if I can't get a real picture of what is going on 01:18 <@Corydon76-home> Pig: try installing bwm-ng 01:20 <@Evilpig> similar 01:20 <@Corydon76-home> Almost exactly the same 01:21 <@Corydon76-home> Half second interval, though, more recent, and packaged 01:21 <@Evilpig> yeah. interesting that one will do disk throughput 01:22 <@Corydon76-home> bmon is another that is packaged 01:22 <@Evilpig> I've got my binary that works for now. but i'll keep this in mind for future uses 01:23 <@Corydon76-home> I found those with 'apt-cache search bandwidth' 01:25 <@Corydon76-home> nload does a graphical representation of the bandwidth curve, in curses mode 01:25 <@Evilpig> http://spydermansforum.com/mrtg/ <-- what i'm watching 01:26 <@Evilpig> offloading the backup files tonight and was wanting to see a fast than 5 min update 01:27 <@Evilpig> faster* 02:49 -!- sync350 [~sync@c-24-30-78-161.hsd1.ga.comcast.net] has joined #se2600 02:56 <@Catonic> nice 02:59 <@Catonic> netflow 02:59 <@Evilpig> i've seen netflow before, I think 02:59 <@Catonic> basically like ntop without 50% utilization 03:00 <@Catonic> we're using that and often see 2kpps just in netflow 03:00 <@Catonic> of course, that's whatever the max on the firewall is at 800Mbit/s 03:01 <@Catonic> 678k connections? 03:01 <@Evilpig> this isn't pushing anything like that 03:02 <@Evilpig> more like 150guys all spamming a forum throughout the day 03:05 <@Evilpig> Catonic: did you see this shit about paying the TSA $100 to bypass airport security? http://online.wsj.com/article/SB10001424052702303863404577281483630937016.html 03:32 <@Evilpig> Dagmar: any chance you're awake? 03:39 -!- ZombieChicken [~none@108-222-196-145.lightspeed.nsvltn.sbcglobal.net] has joined #se2600 03:39 -!- ZombieChicken [~none@108-222-196-145.lightspeed.nsvltn.sbcglobal.net] has quit [Changing host] 03:39 -!- ZombieChicken [~none@unaffiliated/forgottenwizard] has joined #se2600 04:02 -!- MinecraftRelay [~bot@wilpig.org] has joined #se2600 04:02 < MinecraftRelay> test 1,2,3 04:02 < MinecraftRelay> so far so good 04:04 -!- MinecraftRelay [~bot@wilpig.org] has quit [Client Quit] 04:07 -!- MinecraftRelay [~bot@wilpig.org] has joined #se2600 04:09 < MinecraftRelay> [dynmap] wilpig: Test from web 04:10 < MinecraftRelay> [dynmap] wilpig: ohhhhhhhh dear 04:10 <@Evilpig> test from irc 04:11 < MinecraftRelay> time to die and see what happens 04:15 -!- vaneck [~vaneck@96-38-5-186.static.jcsn.tn.charter.com] has quit [Ping timeout: 276 seconds] 04:19 <@Evilpig> hrmm. death messages shoudl be working and they aren't 04:23 <@Catonic> no i hadn't 04:23 <@Catonic> every night I fight speed step. 04:24 <@Evilpig> last restart 04:24 -!- MinecraftRelay [~bot@wilpig.org] has quit [] 04:25 <@Catonic> wait, so it's a $13 tax if I don't and a $100 fee + $13 tax if I do? 04:27 -!- MinecraftRelay [~bot@wilpig.org] has joined #se2600 04:27 < MinecraftRelay> time to try and kill myself once more 04:28 < MinecraftRelay> and still no message went through to irc. damnit 04:37 <@Evilpig> bah! I want these death messages to work. guess it's time to shove this bot into another channel and beat it until it works liek I want 04:37 -!- MinecraftRelay [~bot@wilpig.org] has quit [] 04:40 * Catonic kills MinecraftRelay 04:40 <@Catonic> und kiner eier 04:44 <@Catonic> I get sick twice a year... and this year, it comes before my one week vacation, when I wanted to see the oldsters. 04:45 <@Catonic> and also during Epic Drinking Week. =/ 04:51 <@Evilpig> keep your germs. I haven't been what I would consider sick in probably a year or more now 05:00 <@Catonic> man fuck speedstep 05:01 <@Catonic> so the lappie runs at 1.6GHz and 150 degrees until a certain point is hit... 05:01 <@Catonic> around 156 degrees... 05:02 <@Catonic> then it clamps to 600MHz and doesn't resume 1.6GHz until temp drops below 121 degrees... 05:02 <@Catonic> except it can run at 125 degrees infinitely at 600MHz. 05:02 <@Catonic> the hystersis loop doesn't go low enough to actually bring it out of the holding behavior 05:26 <@Catonic> I have a good question 05:27 <@Catonic> what's a good way to make sure that services are available? 05:27 -!- Catonic [~catonic@adsl-98-83-43-92.bhm.bellsouth.net] has quit [Quit: Reconnecting] 05:27 -!- Catonic [~catonic@adsl-98-83-43-92.bhm.bellsouth.net] has joined #se2600 05:27 -!- mode/#se2600 [+o Catonic] by ChanServ 05:30 <@Evilpig> which type of services? 05:31 <@Evilpig> Dagmar: I want to build a bukkit plugin from the git repo because the update process for the downloads is too damned slow. how? 05:43 <@Evilpig> i'm getting closer.... 05:46 <@Evilpig> jarjar.x86_64 : Jar Jar Links 05:52 <@Evilpig> wtf? my parents are on vacation again?! 05:58 -!- MinecraftRelay [~bot@wilpig.org] has joined #se2600 05:58 < MinecraftRelay> wilpig learned to fly...briefly... 05:59 <@Evilpig> Muhahahahaha 06:00 -!- MinecraftRelay [~bot@wilpig.org] has quit [Client Quit] 06:00 -!- MinecraftRelay [~bot@wilpig.org] has joined #se2600 06:02 < MinecraftRelay> since I don't see anything more creative 06:02 < MinecraftRelay> Death: wilpig tried to walk on water. 06:02 < MinecraftRelay> Death: wilpig fell to the hunger of the horde! 06:09 <@Evilpig> one last test and i'll stop messing with stuff 06:09 -!- MinecraftRelay [~bot@wilpig.org] has quit [] 06:10 -!- MinecraftRelay [~bot@wilpig.org] has joined #se2600 06:16 <@Evilpig> bah! waypoints are broken. gonna have to find a new mod for that then import all the old ones 06:19 < MinecraftRelay> Death: wilpig, looked at a pigzombie the wrong way. 06:56 <@Evilpig> if I didn't know better i'd swear I smell that damned airfreshener that I threw in teh trash the other night 06:59 <@Catonic> you do 06:59 <@Evilpig> my head is sure hurting like I do 07:00 <@Catonic> did you check to see if more cans can be found? 07:00 <@Catonic> you should get a can, take it to the doctor and get a note that you're allergic to $substance in it 07:00 <@Evilpig> there should be some in teh housekeeping supplies. but definitely noplace jojo king of the idiots can findi t 07:02 <@Evilpig> if I do find one in here this morning it will be my last day here. :( and he'll have to make a trip to the E.R. to explain how he "fell" onto that can and got it lodged in there 07:04 <@Catonic> I sure as fuck would like to know why one week I can burn DVDs and the next I can't. 07:04 <@Catonic> only thing different is the media 07:04 <@Evilpig> no solarstorm this week 07:24 <@Catonic> looks like the drive needs updating. Oh, but Sony only provides firmware that runs on Windows. 07:45 <@opticron> fuck sony 07:51 -!- mode/#se2600 [+o ladymerlin] by ChanServ 08:10 -!- sync350 [~sync@c-24-30-78-161.hsd1.ga.comcast.net] has quit [Quit: Leaving] 08:36 <@Catonic> ferreal 08:36 * opticron puts a foot through his stereo deck 08:54 -!- rangerz [~mwalker@c-98-211-44-193.hsd1.tn.comcast.net] has joined #se2600 09:06 -!- vaneck [~vaneck@96-38-5-186.static.jcsn.tn.charter.com] has joined #se2600 09:07 < phaile> i am convinced exchange 2010 very literally ships broken. 09:08 < phaile> i've had to fix the shit out of this thing repeatedly to make it even work, which it's prone to shit it's pants with any change. 09:20 < phaile> (no job security jokes from mgmt ppls plz) 09:22 < phaile> >WHEW< 09:25 < phaile> it was just a binding that tore itself up this time. no rebuild of virtual directories needed *this time* <_< 09:35 * Dagmar stabs some zone files. 09:36 <@Dagmar> Sitting here making Inkscape pictures so management will understand what we're doing with DNS when we fix it and stop this madness. 09:36 <@Dagmar> Mirage and I may be the only two people who understand the problem, as far as I can tell 12:06 <@rattle> Dagmar: Looking forward to having all your MS stuff raped? 12:07 <@Dagmar> ehwot? 12:14 <@rattle> You haven't been following the MS12-020 drama? 12:15 <@rattle> It's basically inevitable that we'll see a self propagating worm in the near future. 12:15 <@Dagmar> Wait... so you're telling me that Microsoft has a remotely exploitable vulnerability in one of their products/ 12:15 <@Dagmar> That never happens. 12:15 <@Dagmar> You must be making it up. 12:15 <@Dagmar> My complete answer on the matter is: Thank god I'm a fucking Unix admin. 12:16 <@rattle> Well, it's been several years since there was a pre-authentication RCE. 12:17 <@Dagmar> I just sent an email to one of our head Windows guys about it tho', just to make sure it's keeping him up nights like it should be. 12:18 <@rattle> There are plenty of PoCs that get crash, but no EIP control yet. It's only a matter of time. Then, we get to party like it's 2004. 12:18 <@Dagmar> Yeah, hence the keeping him up at night thing. 12:18 <@rattle> If you guys aren't aggressively applying the MS12-020 patch, you are fucked. Like, with a chainsaw fucked. 12:18 <@Dagmar> I would be staring at my phone and hyperventilating if I were responsible for that 12:20 <@Corydon76-home> rattle: I'm not aggressively applying it. I have no Windows machines, let alone Windows servers. 12:20 <@Dagmar> chaFUUUUUUU 12:20 <@Dagmar> http://www.net-security.org/secworld.php?id=12608 12:21 <@Dagmar> Definitely going to lean on that guy later since I don't see a mention of it in the change calendar 12:21 <@rattle> How fast do you guys normally get your Patch Tuesday deployments done? 12:21 <@Dagmar> Usually within the month, or on the weekend if it's ugly 12:22 <@Dagmar> PoC code in the wild, IMHO, means that fucker had better be running around the office getting approval to do that this tonight 12:22 <@Dagmar> I've been neck deep in a stupid DNS issue 12:23 <@rattle> Corydon76-home: I don't have the luxury of being an OS snob. I've got server infrastructure running on every major platform. Linux, Solaris, MS, BSD, OSX, appliances, etc.. 12:23 <@Dagmar> Some of the stuff here isn't set up right, and we've apparently been doing a horizontal referral for a zone that's tied to AD auth 12:24 <@Dagmar> ...and earlier this week, OpenDNS apparently mislaid their exception list and some machines started getting back an A record that shouldn't have come through--if we had fucking A records in the zone they're currently living in on our nameservers. 12:24 <@Corydon76-home> rattle: the only way we could possibly be running infrastructure on Windows is if Amazon, for some bizarre reason, ran S3 on Windows. 12:24 <@Dagmar> Certain AD admins are going to have to suck it up and let us put that shit up as slave zones. 12:25 <@Dagmar> My entire week has been chock full of hate for DiamondIP. 12:25 <@Dagmar> It took all damn day to fix a problem that would have been solved in about two hours, if all I had to deal with was BIND and some fucking flat files 12:26 <@Dagmar> On the plus side, I'm almost done with a really eye-watering set of slides to fully explain the problem. 12:28 <@rattle> Corydon76-home: Don't they? I though the elastic drive stuff allowed you to create raw devices that sync block level to S3. 12:29 <@Corydon76-home> No, that's EBS, which is probably built on top of S3. 12:30 <@rattle> I don't do much with AWS. I got my own cloud. My own IP allocation, my own multiple transit providers, my own network layer lb/ids/nms, my own virtualized machine/storage/poogang. And I can also do things that AWS will not let me, like offload traffic at the BGP level for DDoS protection. 12:30 <@Corydon76-home> I suspect it's all built on top of some custom webserver, not even Apache, because Apache is too bulky and slow for their needs 12:30 <@rattle> Although, I do have a direct 100M link to Amazon.. Nice for backups. 12:30 <@Dagmar> You say that, and it smells like Java to me. 12:30 <@Corydon76-home> Yeah, CloudFlare is what a lot of people use, because they don't have the infrastructure otherwise to weather DDoS. 12:31 <@Corydon76-home> Dagmar: I supposed it's possible, but S3 is so stinkin' fast, I don't know. 12:31 <@rattle> I'm setup to have VeriSign announce my net blocks, filter traffic, and pipe it back to me over a GRE tunnel. 12:32 <@rattle> Never actually had to pull that level though.. 12:32 <@Corydon76-home> We use S3 to distribute entire music catalogs. 12:32 <@rattle> Sounds expensive. 12:33 <@Corydon76-home> Yep, I think our Amazon bill is in the hundreds of dollars range every month. 12:33 <@rattle> That's not bad, actually. 12:33 <@Corydon76-home> Compare that to a site I host for my partner, which cost me exactly 11 cents last month 12:34 <@Corydon76-home> Of which, 8 cents was storage fees 12:35 <@Corydon76-home> Actually, I can't say they're going to charge me the 11 cents, either. Every month in the past, they've waived charges, because the charges are so low. 12:36 <@Corydon76-home> rattle: even if you only move your static images and pages over to Amazon, it's amazing how cheap the hosting is. 12:37 <@rattle> AWS bandwidth isn't exactly cheap... 12:37 <@Dagmar> Cheaper than exploding webservers, tho'. 12:38 <@Dagmar> We flirted with that possibility for one of the groups here 12:39 <@rattle> Last time I calculated the specifics, it wasn't much different for what I'm paying right now in terms of just bandwidth. 12:39 <@Corydon76-home> One of our clients hosted their webserver onsite, which, until recently, was over a T1. Anytime someone downloaded the catalog PDF, connectivity suffered. 12:40 <@rattle> A big chunk of that is that I'm housed in a carrier class datacenter with like 2 dozen providers and a peering point.. So my bandwidth costs are super low. 12:41 <@rattle> Overall, AWS would probably be cheaper because they kill my costs per VM instance and whatnot... 12:41 <@rattle> But then, I also don't have to deal with things like sudden latency spikes between my VM's and IO lag. 12:41 <@rattle> And I can have things like real load balancers.. 12:43 <@Corydon76-home> Yes, it's a completely different scale on your hands. 12:43 <@rattle> I suppose I wouldn't be so down on AWS if I wasn't blowing away the uptime of everyone I know hosting on it. 12:44 <@rattle> That USEAST-1 outage was, well, bad. 12:44 <@Corydon76-home> Yeah, but that could've happened to anyone. 12:45 <@rattle> They have issues fairly often. They had an outage just the other day? That one big one was just really, really bad. 12:46 <@rattle> AWS is like consumer level cloud. It's good, but not the bomb. 12:46 <@Corydon76-home> Well, it affected their EC2 instances 12:46 <@rattle> Ever look at these guys? http://www.terremark.com/services/infrastructure-cloud-services/enterprise-cloud.aspx 12:52 <@rattle> AWS doesn't do this: http://www.terremark.com/services/infrastructure-cloud-services/enterprise-cloud/security.aspx 12:55 <@rattle> They can actually do live memory forensics. They have a tool chain to move a VM between hosts and slurp it's memory into a debugger during the move. 12:55 <@rattle> Rad stuff. 12:55 <@rattle> And a real Threat Intelligence team that actually looks after customers, and not just their own ass. 13:25 <@Dagmar> That *is* slick 13:30 <@Evilpig> just now getting home from work 13:31 <@Evilpig> Dagmar: did you see my latest minecraft addition? 13:34 <@Dagmar> No, I couldn't connecct the other night 13:34 <@Dagmar> Is it still on 1.1 or something? 13:34 <@Evilpig> sit tight. 13:34 <@Evilpig> it was 13:34 <@Evilpig> I upgraded this morning 13:34 <@Dagmar> Fuckign nVidia card is playing up. Probably a driver issue. 13:34 <@Evilpig> waypoint are still broken for now 13:35 <@Dagmar> I am getting framy issues where the screen fills with vertical streaks for video, and depending on the rendering method, the color palette is pink on the second monitor 13:35 <@Dagmar> The pink issue seems to be an nVidia driver bug from what I'm seeing on forums. 13:36 < MinecraftRelay> okay ready for the new addition? 13:36 < MinecraftRelay> no... 13:36 <@Dagmar> Gimme a sec to login 13:36 < MinecraftRelay> pigmen or lava? 13:36 < MinecraftRelay> don't login. stay right there 13:36 <@Dagmar> It's been a very busy day and I'm glad I did this from home 13:36 < MinecraftRelay> pigmen or lava. take your pick 13:37 < MinecraftRelay> Pigmen, simply cause I can kill them later 13:37 < MinecraftRelay> Death: wilpig lost a fight against a zombie pig. 13:37 < MinecraftRelay> I am seeing some lag issues still 13:38 < MinecraftRelay> Death: wilpig died at the hands of ninja assassins 13:38 < MinecraftRelay> ? 13:38 < MinecraftRelay> the death messages are going to the channel now 13:39 < MinecraftRelay> [dynmap] wilpig: lies and slander. everything that he said 13:39 < MinecraftRelay> The connected texture support is weird 13:40 < MinecraftRelay> someone say something on channel so I can see if it is appearing in dynmap too 13:40 <@Dagmar> Boooga wooga 13:40 < MinecraftRelay> who what? 13:41 < MinecraftRelay> nope. guess i'm missing a connector 13:41 < MinecraftRelay> working on a couple fun new projects 13:41 < MinecraftRelay> i'm about to work my ass into bed. been up since about 5:30 yesterday night 13:41 <@Dagmar> Ouch 13:42 < MinecraftRelay> Did king stupid beat you with experience again? 13:42 < MinecraftRelay> left work this morning and picked up notlarry then went to the hotel to straighten out some issues 13:43 < MinecraftRelay> the connection points are there in the craftirc config. not sure why they aren't working right 13:44 < MinecraftRelay> the main thing is, it's working again. and now if someone dies stupidly the channel can mock them 13:45 < MinecraftRelay> Death: wilpig put his hands in the toaster! 13:47 < MinecraftRelay> there are clearly some performance issues I need to work out. but I think I know what they are 13:50 -!- the_hugme [~jallman@service.vendormate.net] has quit [Quit: Leaving.] 13:50 <@Evilpig> i'll work on the performance issues later tonight after I wake up. gonna try to get some sleep now 13:51 <@Evilpig> that appeared on dynmap. hrmm 13:51 < MinecraftRelay> [dynmap] wilpig: maybe it was just lagged 14:02 <@Evilpig> 03/16/2012 07:21:00 OUT FOR DELIVERY[I] 14:02 <@Evilpig> that I did not expect 14:03 <@Evilpig> http://www.newegg.com/Product/Product.aspx?Item=N82E16833118144 <-- will be here today sometime 14:06 <@Dagmar> <-jealous 14:12 <@Dagmar> Can't raise a freakin windows admin to save my life 14:14 <@Evilpig> there isnt' a windows admin. you just have terrence 14:14 <@Evilpig> one of these days he will answer the phone when i'm berating him for not answering the damn phone 14:14 <@Dagmar> We don't have Terrence today, for good reason. 14:15 <@Dagmar> He's having a kid tomorrow 14:16 <@Evilpig> $35 for an 8 port unmanaged gig switch isn't bad. I think that deal is still good. free shipping too 14:18 <@Dagmar> Ah finally got Ham 14:18 <@Dagmar> *Now* I'm sure someone's aware of the change in status for MS12-020 14:21 <@Evilpig> http://www.net-security.org/secworld.php?id=12608 it was in teh DHS this morning too 14:21 <@Dagmar> Good 14:22 <@Dagmar> yeah thta's the same URL I saw when I looked around a bit 14:22 <@Evilpig> this was the link from the DHS this morning. http://krebsonsecurity.com/2012/03/hackers-offer-bounty-for-windows-rdp-exploit/ 14:51 < phaile> LOOOL 14:51 < phaile> http://pastebin.com/UzDKcCQy 14:56 <@Dagmar> Yep 14:58 < phaile> i very much do not want to waste an ip on autodiscover for outlookanywhere. 15:06 <@Dagmar> It could be worse. 15:07 <@Dagmar> You don't even want to see the inkscape diagrams I've been working on today 15:07 <@Bahhumbug> do they involve someone being stabbed in the face with a kitchen knife? 15:07 <@Dagmar> I'm probably not going to be able to get the managers to sit down and listen to a high-speed lecture from me on how DNS works. 15:07 <@Bahhumbug> They're managers. Surely they understand such a key infrastructure component. 15:07 <@Dagmar> ...so I'm just going to bomb them with an OpenOffice powerpoint set, and hopefully they'll just go "TL;DR: Just make it work." 15:08 <@Dagmar> Bahhumbug: Dude, this is part of DNS operation that even *I* have to sit and think carefully about 15:08 <@Dagmar> Just because we've got some windows admins who want complete and total control over part of the namespace 15:08 <@Bahhumbug> If I cared more I'd ask what you are doing. But it's Friday, and I find myself not caring about much of anything at all at present. 15:09 <@Bahhumbug> And that's your key issue right there :) 15:09 <@Dagmar> Preventing our nameservers from asking OpenDNS about important hostnames relating to AD authentication. 15:09 <@Dagmar> ...because it proved this week that their whitelist doesn't always work like it should. 15:09 <@Bahhumbug> farming out critical infra parts to outside agencies... not my idea of sane. 15:10 <@Dagmar> I think at this point i'm just going to say "This needs to be a slave zone. Deal with it." 15:10 <@Dagmar> They were apparently under the impression they could just declare that the nameservers should just have NS records pointing inbound and nothing else. 15:10 <@Dagmar> That's a horizontal referral and they do _not_ work well. 15:11 <@Dagmar> Among other things, it leaves the nameserver in question of the impression that it should have an A record where it doesn't. 15:11 <@Bahhumbug> If glue is in place it should be fine unless they are delegated in some weird fashion. 15:11 <@Dagmar> Some weird fashion, yes. 15:11 <@Bahhumbug> heh 15:11 <@Dagmar> LIke a horizontal referral 15:11 <@Bahhumbug> I'll admit, I need to look that term up. I may know it by another name, but it's not striking any bells. 15:12 <@Dagmar> Case in point... subdomain.domain.com has two NS records pointing to ns01.subdomain.domain.com 15:12 <@Dagmar> All the glue records in the world will not help that 15:12 <@Bahhumbug> But that gets back to the whole "not gving a shit" thing I mentioned. 15:12 <@Dagmar> The server thinks it's authoritative for domain.com, and subdomain.domain.com is _not_ in it's own zone file. 15:12 <@Dagmar> ...which wouldn't even help. 15:13 <@Dagmar> ...because then it would still think it's auth and master for subdomain.domain.com and we'd be back to square one. 15:13 <@Bahhumbug> Yep. still not really caring. 15:13 <@Bahhumbug> But I get what you're saying. 15:13 <@Dagmar> The thing needs to be slaved to the actual master, or we need to _put the damn A records in there_ 15:13 <@Bahhumbug> (sorry, not trying to sound flippant, it's just being a fucking long week) 15:13 <@Dagmar> I'm not having anoter day like Monday was 15:13 <@Bahhumbug> s/being/been/ 15:13 <@Dagmar> Dude, I totally understand 15:14 <@Dagmar> God damn I love caffiene 15:15 <@Dagmar> This morning I was trudging along 15:15 <@Bahhumbug> I love caffeine, too. 15:15 <@Dagmar> Now that I'm up to "operatinal temperature" I've got about a dozen screens going at once 15:15 <@Bahhumbug> heh 15:15 <@Dagmar> FIX ALL THE THINGS! 15:15 <@Bahhumbug> Indeed. 15:15 <@Bahhumbug> Know what else fixes things? 15:15 <@Bahhumbug> Guns 15:15 <@Bahhumbug> Guns fix things. 15:16 * Bahhumbug heads to my gun safe, picks a weapon at random, grabs some spare rounds, and goes out back to shoot shit. 15:16 <@Dagmar> Just as long as no one gets the crazy idea that this is something more esoteric than caffiene I don't care how crazy they think I am when I'm buzzzing on caffiene 15:16 <@Dagmar> Some months back the nice lady at the ER was relaly giving me the gimlet eye 15:16 * Bahhumbug makes another reference to I love caffeine too 15:16 < phaile> lool like you've got one of those little vanilla shakers like starbucks with powdered adderall in it? 15:17 <@Dagmar> I was there because I'd fainted from issues with excess heat, getting checked out, and I was at about 500-600mg of caffiene. 15:17 <@Bahhumbug> hint: "i before e except after c" is a load of crap. 15:17 <@Dagmar> Everyone else is at 33 1/3 and I'm zipping along at 78, basically. 15:18 <@Dagmar> She was like "Are you sure you haven't done any drugs today? Like perhaps marijuana, cocaine, or methamphetamines?" 15:18 <@Dagmar> Her emphasis, not mine. 15:18 <@Dagmar> If Opheria wasn't there to vouch for me the woman would have probably had metro checking me out 15:19 <@Dagmar> High metabolism, attention deficit, hyperactive, and any amount of caffiene and yes I *am* remarkably like a six-foot tall hummingbird. 15:20 <@Dagmar> I'm not making ANY MORE EXCUSES for being a freak 15:20 <@Bahhumbug> hahahaha 15:20 <@Dagmar> I had a lot of caffiene in me last night or I would have probably wrecked 15:20 <@Dagmar> Some asshat did the whole "pull directly out in front of the guy" thing on White Bridge Road. 15:20 <@Dagmar> Road was *wet* 15:20 <@Dagmar> Some people would have slammed on the brakes. 15:20 <@Bahhumbug> "caffeine" 15:21 <@Dagmar> Those people would have bounced off a quarterpanel. 15:21 <@Dagmar> I slipped around this guy with about six inches to spare. 15:21 <@Dagmar> ...because shit was still moving kinda slow for me 15:21 <@Dagmar> He was _fully_ in my lane when I got to him 15:21 <@Dagmar> Completely didn't fucking look 15:22 <@Bahhumbug> I hate fuckers like that. 15:22 <@Dagmar> ...because I saw the motherfucker not even turn his head 15:22 <@Dagmar> He also narrowly escaped an ass-beating. 15:22 <@Dagmar> ...because at the light ahead he got out of his car to cuss at me for nearly hitting him, claiming I switched lanes. 15:22 <@Dagmar> I elected to simply scare the screaming bejeezus out of him to make him get back in his car. 15:23 <@Bahhumbug> I did a _LOT_ of bike riding in Chicago. My Krypto lock was on an easy release catch. I've smashed in windows and dented quarterpanels and door panels as a result of people doing stupid shit like pulling out in front of me. 15:23 <@Bahhumbug> You amuse me, Dagmar. 15:23 <@Bahhumbug> In a good way :) 15:23 <@Bahhumbug> I think most of it has to do with your choice of phrases. 15:24 <@Dagmar> I took a nice deep breath, put down the kickstand, pumped the blood pressure up in my face so it was nice and red, flipped up the visor and then him him with a 100db continuous string of obscenity. 15:24 <@Bahhumbug> I find "I elected to simply scare the screaming bejeezus out of him to make him get back in his car." amusing as hell./ 15:24 <@Dagmar> GETBACKINYOURFUCKINGCARRIGHTGODDAMNNOWMOTHERFUCKERORSOHELPMEI'LLEATYOURDOESN'TLOOKWHEREHE'SDRIVINGFACEANDIMEANRIGHTFUCKINGNOWJUSTSHUTUPANDGETINTHESEAT 15:25 <@Dagmar> Do not taunt teh Happy Fun Dagmar. 15:25 <@Dagmar> The only thing I regret is not wishing him a nice evening. 15:25 <@Bahhumbug> hah 15:25 <@Dagmar> It would have been a great way to finish it 15:25 <@Bahhumbug> indeed 15:26 <@Bahhumbug> and on that note. off to shoot shit. 15:26 * Bahhumbug & 15:47 < phaile> okay, here's my little plan. 15:47 < phaile> i'm gonna juke exchange 2010. 15:48 < phaile> problem: users are out of town and if i switch certs i don't know if they'll keep working 15:48 < phaile> outlookanywhere needs autodiscover.someserver.com because the certs it builds itself are teh_s0x0r 15:49 < phaile> i'm gonna do a.... hostfile entry! 15:49 < phaile> brb. off to the kroger bistro to test. 16:09 < phaile> Ok- the answer is fail. it sends it into not responding. dns is not the way to beat it- glad i didn't do it serverside and have it not work after real dns aggregated. 16:14 <@Dagmar> Ohhh... It's using self-signed certs? 16:14 <@Dagmar> There's a trust relationship that needs to be in place before that will work. 16:15 <@Dagmar> Do you guys have your own toy CA set up and the certificate for it handed out to the client machines? 16:15 <@Dagmar> ...otherwise you're going to need somethign signed by a registrar, I suspect. 16:15 <@Dagmar> This sort of thing is like _the_ most common cause of mysterious failures 16:16 <@Dagmar> Brott: Seeing as how the site isn't responding... Why does that suprise you?? 16:19 < phaile> it's all still in testing technically, but yes- i don't mind to load a cert for the users once i get one with the RIGHT NAMES in it, which i have to build by hand (there's a commandline app that will do it) 16:20 < phaile> the problem is i can't switch it with folks out of town so right now wrong cert has to stay. 16:20 < phaile> all of it works, minus OA though. 16:24 -!- phaile [~phaile@gateway/tor-sasl/jb7od] has quit [Excess Flood] 16:25 -!- phaile [~phaile@gateway/tor-sasl/jb7od] has joined #se2600 16:34 <@Dagmar> By command-line app do you mean openssl. 16:34 <@Dagmar> ...because that's what I use. 16:34 <@Dagmar> That and CA.sh, of course. 16:35 <@Dagmar> There really isn't a way around learning them now. If you have to touch certs, your options are 1) exquisite pain or 2) never-ending pain. 16:35 <@Dagmar> #1 is from OpenSSL. 16:35 <@Dagmar> #2 is from not learning OpenSSL. 16:35 <@brimstone> easy-rsa ftw 16:37 <@Dagmar> Hey what's so hard about `openssl req -nodes -newkey rsa:2048 -keyout mahkey.key -out newreq.pem`? 16:37 <@Dagmar> ...other than I had to go look at my ~/.bash_history to remember it properly. 16:39 <@Dagmar> Also... fuck GeoTrust. 16:39 <@Dagmar> Their documentation for intermediate certificates is an abomination. 16:39 <@brimstone> intermediate certificates are bullshit 16:40 <@Dagmar> No, they're actually the _right_ way to do things, unless you're GeoTrust and are axiomatically ASSHOLES who don't want people shipping the intermediate certs out into browsers. 16:40 <@brimstone> web of trust 4 life! 16:41 <@Dagmar> ...because if the fucking clients had the intermediate certs, no one would have to fuck with figuring out how to put them into the goddamn webserver using their _incorrect_ documentation. 16:41 <@Dagmar> It solves exactly zero problems. 16:41 <@Dagmar> ...or rather, it trades one obnoxious problem for another, which is zero-sum. 16:41 <@brimstone> i'm just pissed the cert i got doesn't have it's intermediate cert or CA cert in android or debian 16:42 <@Dagmar> Android doesn't really seem to update their certs. 16:42 <@Dagmar> Neither does iPhone, for that matter. 16:42 <@Dagmar> I wound up fucking doing up seven different ADKs just to test that 16:43 <@Dagmar> ...and I'm glad as fuck someone showed mercy on me and told me where Android keeps it's goddamn keystore so I could see where to hook things. 16:44 < m0j0-j0j0> Certs is a breath mint 16:47 -!- m0j0-j0j0 [~jkemp@cnet520-hosoc.mcclatchyinteractive.com] has quit [Quit: Comments like that are why you have no friends] 16:48 <@brimstone> ... was his /quit talking to himself? 16:48 <@brimstone> i don't get that guy 16:49 <@Dagmar> Someone found an awesome price break in Google Music 16:49 <@Dagmar> https://play.google.com/store/music/album/Tjenesten_På_P3_Radiomandlen?id=Bvt2ku7vhah2cn5htovhkkmy7vm 16:50 <@Dagmar> There's like, a jillion tracks. All 99 cents each. 16:50 <@Dagmar> Total price $11.49 17:06 < timoguin> that's pretty cheap for a jillion 17:22 <@rhia> http://videosift.com/video/Copyright-Math 17:44 <@Catonic> how many is a jillion? 17:49 <@rhia> 5 Mulders 17:52 <@Catonic> hi rhia 17:55 <@rhia> hi Catonic 18:21 <@oddball> rhia? I thought you had abandoned this channel 18:28 <@Catonic> ppl get lost on occasion 19:05 -!- Netsplit *.net <-> *.split quits: ShadowHntr, @rattle 19:06 -!- Netsplit over, joins: ShadowHntr, @rattle 20:01 -!- sync350 [~sync@adsl-184-36-107-137.asm.bellsouth.net] has joined #se2600 21:59 -!- sync350 [~sync@adsl-184-36-107-137.asm.bellsouth.net] has quit [Quit: This computer has gone to sleep] --- Log closed Sat Mar 17 00:00:11 2012