--- Log opened Thu Aug 15 00:00:34 2019
03:25 < aestetix> ugh
03:25 < aestetix> there's a holocaust denier in one of the channels I am in
03:25 < aestetix> they are worse than 9/11 truthers
05:47 <@Shadow404> Or moon lander hoaxers?
05:47 <@Shadow404> aestetix: should I stand in for Dolemite?
05:53 -!- k3ymkr [~KeyMaker@ec2-52-6-16-39.compute-1.amazonaws.com] has quit [Remote host closed the connection]
07:03 <@Dagmar> Last night I was dealing with a guy who believes that NTP traffic should be encrypted "for security"
07:04 <@Dagmar> Seemed to be a circular argument about what "security".  "If encryptd, then secure!  If secure, then encrypted!"
07:05 <@Dagmar> I'm like, what benefit do we gain by encrypting some pretty damn public and commonly-available information, beyond an increase in computational cost severl orders of magnitude higher than before?
07:06 <@Dagmar> "Security!"
07:12 <@Shadow404> ntp traffic....why?
07:12 <@Dagmar> For security, of course!
07:12 <@Evilpig> obviously to stop some ocean's 11-esce heist that involves speeding up a clock
07:12 <@Dagmar> He didn't seem to understand that it requires some explicit benefit or it's just paranoid overcomplication
07:13 <@Dagmar> Yeah I even walked them through the possible results of an MITM
07:14 <@Shadow404> ntp mitm might mess up a few log files and automated scripts, but not tne entire network
07:15 <@Shadow404> youd have to dns inject the ntp hostname to start anyway
07:19 <@Dagmar> Yeah the guy tried to argue it woulc be used to break ssl
07:19 <@Dagmar> I'm like, "This would take weeks to cause enough drift"
07:19 <@Shadow404> nope, thats tunneled
07:20 <@Dagmar> No, if you managed to get the thing to drift the clock several days, you could make certs appaer to expire early
07:20 <@Dagmar> ...but it would take an asston of time to get NTP to drift a clock that much
07:20 <@Shadow404> maybe, i think on a highly monitored network youd notice the attacks effect way before that in other systems
07:21 <@Shadow404> like automation events
07:41 <@Mirage> Dagmar: was his name Sal or were his initials TRD?
07:41 <@Evilpig> haha
07:41 <@Dagmar> It was terabit from ##Linux
07:41 <@Dagmar> The guy generally doesn't make it more than a week after I lose my /ignore list before he's back in it
07:46 <@Mirage> Kerb only requires +/- 5 minutes to break auth...that would be a much greater concern.   Of course the ntp servers in Dell-EMC aren't even all sync'd properly and my laptop time has a tendency to bounce +/- 4-5 minutes depending on which server I'm getting updates from, which also seems to be tied with which VPN concentrator AnyConnect has decided to use
07:47 <@Dagmar> yeah but that's a denial of service
07:48 <@Dagmar> It's not like drifting the clock will let you magically not need a password or something
07:51 < xray> Also many Windows domain functions stop working if a machine is out by more than 110 minutes.
07:51 < xray> 10 minurtes
07:51 < xray> Need more coffee
07:51 <@Dagmar> There's plenty of ways those can break just because it's Tuesday
07:52 <@Mirage> You should have told him about the "speedy top" issues we used to have at VU with that VMware glitch.  That was really fun when TCP handshakes kept breaking because the responses kept intermittently "timing out" on a gigabit network and causing issues similar to the old USR 36.6 modem "spiraling death syndrom"
08:01 <@Mirage> Joy...still not any new customers coming on so another quarter of training/cert.  First was Azure, then AWS, now "VMware Cloud on AWS" along with VMware vSAN and/or NSX-T
08:04 <@Mirage> Posted before, but was talking to someone and this came up, so  figured I'd post it again in case anyone missed it or just wants a chuckle: http://web.mit.edu/jemorris/humor/500-miles
08:04 < PigBot> None (at web.mit.edu) http://tinyurl.com/mhb5vfl
08:10 <@Dagmar> Ugh
08:10 <@Dagmar> There's a ping check bound to * on this nagios install, and I have just added 100 hosts which just aren't being tested by IP address
08:11 <@Dagmar> The tool does a quick lookup into a db with the serial number to find all the addresses
08:11 <@Dagmar> ...and here's this damn check_ping complaining because C234A83B1283 isn't an IP address
08:11 <@Mirage> so nagios is tied to a CMDB?
08:12 <@Dagmar> Mirage: Well, someone keeps re-addressing the units, which has been causing regular misses here and there so I've finally sat down and put together a framework that just goes and reestablishes communication using every last known address if necessary, to get the update info
08:14 <@Dagmar> At least every single one of these is reporting correctly out of the gate, but now i *definitely* have to do something about that overly-broad check_ping directive
08:17 <@Mirage> instead of managing all those hosts wouldn't it be easier to just do a broadcast ping on the subnet the hosts are on and call it good?!   lol!
08:24 <@Dagmar> You mean a broadcast ping to 10.0.0.0/8?
08:25 <@Mirage> i'm just throwing out idiotic ideas that some lazy asshat might come up with that make all the rest of us beat our heads on our desks
08:31 <@Dagmar> Well, the changes have to happen, and lacking any formal CMDB the simplest solution to this ongoing problem is to just make a primitive CMDB that handles small changes gracefully
08:32 <@Dagmar> The same thing will go and apply firmware updates during the appointed time window
08:35 <@Dagmar> The main issue is that the Nagios instance was sort of hasily thrown together, so... everything's got the host-based check_host_alive, and an additional service check that does the exact same thing
08:35 <@Dagmar> I think I'm probably going to wind up killing the redundant service bound to *
08:48 -!- xray [~xray@c-73-43-4-206.hsd1.ga.comcast.net] has quit [Ping timeout: 246 seconds]
08:49 -!- xray [~xray@c-73-43-4-206.hsd1.ga.comcast.net] has joined #se2600
09:15 -!- xray [~xray@c-73-43-4-206.hsd1.ga.comcast.net] has quit [Quit: Ping timeout (120 seconds)]
09:15 -!- xray [~xray@c-73-43-4-206.hsd1.ga.comcast.net] has joined #se2600
09:39 <@Mirage> https://www.foxnews.com/us/jeffrey-epsteins-autopsy-reveals-several-broken-neck-bones-cause-of-death-pending-report
09:39 < PigBot> Jeffrey Epstein autopsy reveals broken bones in neck, cause of death pending: report | Fox News (at www.foxnews.com)
09:41 <@Mirage> WTF is supposed to be so unusual about a broken neck in connection to a hanging?  Isn't that simply a sign it was done properly vs being strangled, which is/was viewed as improperly when hangings were commonplace?
09:41 <@Dagmar> That depends on how long you wanted the criminal to suffer
09:41 <@Mirage> and also...who gives a fuck
09:42 <@Dagmar> ...but if a neck is just broken with rope burns, that doesn't necessarily mean they were killed by hanging
09:42 <@Dagmar> Hence, autopsy
09:42 <@Dagmar> But I'm pretty sure they hired professionals who wouldn't bodge covering it up
09:42 <@Dagmar> guys who know to hang and pull the legs rather than strangle and just string the body up later
09:44 -!- xray [~xray@c-73-43-4-206.hsd1.ga.comcast.net] has quit [Quit: Ping timeout (120 seconds)]
09:45 -!- xray [~xray@c-73-43-4-206.hsd1.ga.comcast.net] has joined #se2600
09:48 <@Dagmar> Ther'es nothing wrong with just using dd to image copy the entire thing
09:48 <@Dagmar> @#$@#
10:23 -!- K`Tetch [~no@unaffiliated/ktetch] has joined #se2600
10:25 -!- K`Tetch_ [~no@unaffiliated/ktetch] has quit [Ping timeout: 268 seconds]
10:37 -!- crashcartpro [uid29931@gateway/web/irccloud.com/x-dpvpyuzffobiltxt] has joined #se2600
10:51 -!- dfused [~flajackun@c-73-53-17-10.hsd1.wa.comcast.net] has quit []
12:03 <@Mirage> lol... jackass from a local exterminating service just knocked on the door and was trying to sell me services based on "neighbors have been reporting ants and wasps around the home".   My response to him was "no shit...ants and wasps in TX during the summer?!  who would have thought such a thing."  Then I told him he was an idiot and to fuck off in the most polite way possible.
12:03 <@Mirage> ants and wasps...that's like telling someone in middle tn that there had been reports of camel crickets and japanese beetles (lady bugs) in the area
12:34 <@Shadow404> and roaches in georgia
12:34 <@Mirage> and FL
12:34 <@Shadow404> damn nazi roaches too
12:35 -!- strages [uid11297@gateway/web/irccloud.com/x-kfbtomdxjcrwpzca] has quit [Quit: Connection closed for inactivity]
12:47 <@Evilpig> Fuckin' ants....
12:48 <@Evilpig> Here's your ants
12:48 <@Evilpig> https://photos.app.goo.gl/2wBbJ4n7xjMnfTVJ7
12:48 < PigBot> Shared album - Wilbur Longwisch - Google Photos (at photos.app.goo.gl) http://tinyurl.com/yyfqst6g
12:48 <@Evilpig> motherfuckers moved into my car.  The car where food is not allowed in, so they didn't find anything to eat in there.  If you zoom in on there you'll see they carried their damned eggs up into my door
12:50 <@Mirage> At the old house we had them infest all our clothes in the closet after the first big rain of the fall.  There'd been a nest not too far from one of the weep holes in the brick and they used that to get in.   it was pretty nasty.
12:56 -!- strages [uid11297@gateway/web/irccloud.com/x-eqjmmagsnwddeofb] has joined #se2600
12:59 -!- dfused [~flajackun@c-73-53-17-10.hsd1.wa.comcast.net] has joined #se2600
13:01 <@Evilpig> I doused the assholes with poison, then went to the carwash and cleaned everything vacuumed those that were left and then learned that I could put ant bait on the door sill and close the door without issue.
13:02 <@Evilpig> so bait in both doors, one under the seat, and since I had one left over there's one in the trunk.  changed parking spots, more ants a few days after I took those but thye moved to the driver's side.  fuckin' fucks.
13:02 <@Evilpig> gave it to the dealer and pointed them out and said "they're you're problem now"
13:02 <@Evilpig> I had already scheduled to take it in for maint
13:02 <@Mirage> we hosed them down with the kitchen (food safe) spray, then had to wash all the clothes to get all the eggs and dead bodies out of them.
15:28 <@Mirage> Public service notice:   If you decide you want to get a 2x2.5" drive + slim CD tray that goes in a 5.25" slot, DO NOT buy this one:  https://www.amazon.com/gp/product/B07K8R7L45/ref=ppx_yo_dt_b_asin_title_o08_s00
15:28 < PigBot> Amazon.com: ICY DOCK ExpressCage MB732SPO-B Ultra Slim/Slim ODD Bracket & Dual 2.5" SAS/SATA HDD/SSD Hot Swap Cage for External 5.25" ODD Bay: Computers & Accessories (at www.amazon.com) http://tinyurl.com/y27w75y3
15:29 <@Mirage> I'm waiting on this better one to replace that PoS so I can return it to Amazon.   https://www.amazon.com/gp/product/B07Q713HZW/ref=ppx_yo_dt_b_asin_title_o01_s00
15:29 < PigBot> Amazon.com: ICY DOCK 2 x 2.5 SAS/SATA SSD/HDD & (Ultra) Slim Optical Disk Drive Backplane Cage for External 5.25" Bay - ToughArmor MB602SPO-B: Computers & Accessories (at www.amazon.com) http://tinyurl.com/y62cqpg2
15:31 <@Mirage> First one I got is fine minus the fact that the on/off switches on the front are *waaaaayyy* too esy to bump.  Second one the switches don't work (which is actually a bonus), but the drive light also doesn't work, and the SATA/SAS connection is shit...drive in Bay2 keeps disconnecting for no fucking reason.
16:50 <@eryc> https://www.youtube.com/watch?v=a2GVxYfKSxA
16:51 < PigBot> Elon Musk vs Mark Zuckerberg. Epic Rap Battles of History (at www.youtube.com) http://tinyurl.com/y8e52uze
19:21 <@Evilpig> Mirage: you're just having shit luck lately
19:22 <@Evilpig> did you piss off a tech god somewhere?  open a computer case and NOT leave some blood behind?
19:42 -!- crashcartpro [uid29931@gateway/web/irccloud.com/x-dpvpyuzffobiltxt] has quit [Quit: Connection closed for inactivity]
22:05 -!- strages [uid11297@gateway/web/irccloud.com/x-eqjmmagsnwddeofb] has quit [Quit: Connection closed for inactivity]
--- Log closed Fri Aug 16 00:00:36 2019