--- Log opened Mon Mar 20 00:00:32 2023
07:02 <@Dolemite> mr0ning, be0tches and h0ez!
07:03 <@Dolemite> 8 years ago today we were sitting on the balcony at the hotel for GeekNIC and watching the ducks float down the river
07:06 < Evilpig> Dolemite: did you get winnie the pooh yesterday too?
07:06 <@Dolemite> I did
07:06 <@Dolemite> Woke up to the Radarr emails
07:06 < Evilpig> I watched it when I went to bed last nigght.  did not disappoint
07:06 <@Dolemite> And it's a good quality...   I checked it just to make sure it wasn't another cam
07:14 <@Dagmar> OKay.  Fuck Fortinet's support
07:14 <@Dolemite> Wasn't that pretty much your stance last week?
07:15 <@Dagmar> THis is the third time now that I've had to put in a ticket on something and their initial response was for an actual human to not read the ticket and then paste some bullshit instructiojns back at me that include steps I performed while exposing the bug
07:15 <@Dagmar> This has been an ongoing _theme_ with them
07:15 <@Dagmar> THey've got people being instructed to respond to everythign within x number of hours, but there's absolutely no standard being set to keep that response from being a waste of the customer's time
07:16 <@Dagmar> The product is good, but it's starting to look like their technical support staff are a bunch of ignorant assholes
07:16 <@Dagmar> I'm seriously thinking about suggesting to them they hire some _other_ company to do their support for them
07:17 <@Dagmar> When you upgrade the firmware on their units, it includes a four-year-old copy of the goddamn geo-ip database
07:17 <@Dagmar> THat causes a regression in behaviour until the unit manages to upgrade the database again.  That is undeniably a bug.
07:18 <@Dagmar> So why in the galloping fuck does someone over there think it's useful to give me instructions on how to manually update the geo-ip database?
07:18 <@Dagmar> The first interaction I had with their support people went okay
07:18 <@Dagmar> THe four I've had since have been shit
07:20 <@Dagmar> In the course of unraveling what the fuck was going on, I also stumbled across what is very likely a rule miscompilation problem
07:21 <@Dagmar> One that is the reason the firewall couldn't update it's geo-ip database in the first place
07:22 <@Dagmar> Because their VPN wizard doesn't give you the option of sending specific DNS server information out to L2TP clients, I had to essentially put in a rule that port forwards DNS requests for those servers to our internal servers
07:23 <@Dagmar> That rule got fouled up in the firmware update and I'm pretty sure I know how, but the result was that the firewall itself could not talk to those DNS servers anymore
07:24 <@Dagmar> What fixed it was me scratching my head and scribbling up a quick set of stanzas to remove those rules and put them back
07:24 <@Dagmar> It was when I did that that I figured out how that fuckup happened
07:25 <@Dagmar> While I do _like_ that all their configuration stuff is basically generating YAML which it then re-parses later, some of the options aren't valid until certain other options have been set
07:25 <@Dagmar> The thing that's generating the YAML doesn't always get the order of operations correct
07:26 <@Dagmar> SO it looks like it just fucked up when it saved the config and then after the firmware update it loaded a broken version of that rule
07:26 <@Dagmar> I could probably think of a few ways that could go bad, but it's not my fuckin' problem to fix it
07:35 <@Dagmar> I'm starting to suspect that their support team is a subordinate group to their bughunting team, because it sure seems like they spend most of their time trying to deny there could ever be a problem with their product
07:36 <@Dagmar> "Fuck fixing the product, we'll fix the perception!"
07:36 < Evilpig> that's just support 101.  deny everything, read solution from book that appears close, eliminate >80% of tickets
07:36 <@Dagmar> We're giving them too much money for that shit
07:37 < Evilpig> as long as accounting controls the company and not people that actually care about the product, you're gonna get that because it's the most cost effective way to deal with the bulk of issues
07:37 <@Dagmar> I'm about to start posting the shit that I uncover to Reddit so it can be viewed nice and publicly
07:37 <@Dagmar> I'm pretty sure they'll care about that
07:37 < Evilpig> gotta find an insider that can get you past the facade
07:38 <@Dagmar> That the units are engaging in regressions and able to miscompile their own rules is something that a lot of people are going to view as a serious problem
07:40 <@Dagmar> They need a Tier II team
07:40 <@Dagmar> Something for the people who don't think packets traverse zones in the hands of microscopic pixies, who check their work carefully, and otherwise never call support
07:41 <@Dagmar> We're already at the point where if I have someone else ask me for a gotomeeting so they can fuck around and just paste shit into a firewall to see what happens, I'm rebooting into Slackware and telling them "Sorry, I don't support that options"
07:42 <@Dagmar> ...and there is no typo in that
07:43 <@Dagmar> The second interaction I had with them was because BGP was only sending one route per connection and we couldn't find where to enable multiroute
07:43 <@Dagmar> I had to sit through almost an hour of some tier I flunkie carefully checking all the IP settings involved in two sets of multipath VPN definitions
07:44 <@Dagmar> Like, we can see from the fuckin' sniffer and the status monitors that packets are flowing
07:44 <@Dagmar> Nooo she has to spend an hour checking dumb shit because apparently it's all she knows how to do
08:15 <@Dagmar> ...and to add insult to injury, despite that I have put into every ticket my availability is 9am-6pm CST, I just got a call from Fortinet technical support
08:15 <@Dagmar> ...and I repeated my availability and hung up
08:15 <@Dagmar> because fuck them
08:16 <@Dagmar> There's only so much of my time I'm going to let those fuckers waste
08:36 <@Mirage> Gerson decided he wanted to 'shadow' me for the re-IP change over the weekend and wound up regretting it, which I knew he would.   There were originally supposed to be 12 linux hosts that needed to be moved but they wound up pushing all but one to the next change and there were 210 windows boxes being done.  
08:39 <@Dagmar> Fun!
08:39 <@Mirage> What drove him crazy was all the waiting because there are 4 teams doing stuff and you have to wait your turn.  Started at 5p Sat and I think he was about to lose his mind by 6:30 while we were still waiting on the DB teams to shut down their databases to be able to actually start doing stuff.  The apps team for the one linux box finally hopped on and validated their stuff was good about 9:45.  
09:02 <@Dagmar> This is what happens when people can't be arsed to perform automated service monitoring like responsible adults
09:03 <@Dolemite> Mirage: I ran into the ol' Realtek-is-a-piece-of-shit issue with FreeBSD over the weekend.   The mobo for my TrueNAS box uses one and worked great as long as I wasn't actually pushing at 1 GBs to it...   but I started to rsync from another server over to it and sure enough, buffers would fill up and it would just decide to stop working until the watchdog reset it.   Ordered Intel NIC last night.
09:13 <@Mirage> Yeah, I've got a dual-head intel in mine for the frontend and intel x520 fiber card for the backend to the esxi boxes
09:15 <@Mirage> If you'd said something before ordering it, I had to flip the esxi boxes from intel->broadcom because 7.x no longer officially supports the intel nics i had in them for 6.x
09:15 <@Mirage> Or if you just want a spare dual I can shoot you 1-2 of them anyway
09:22 <@Mirage> TX DPS changed how they do things during covid and have stuck to the changes still, which is extremely annoying.  Cousin needs to go in to get an adult driver permit so that he can practice driving a bit before going to take the road test that's required since his license expired over 2 years ago.  Everything is appt only now via their web site.  First available in our area was in July.  Expanding it out 
09:22 <@Mirage> we were able to find one not too far away for May.  A bit farther out and we found one for early Apr, but it's a 2h drive from here.  Hoping that his PO will approve the trip, though we're not really holding our breath on it given the distance
09:23 <@Dolemite> Yeah, TN did similar.   I ended up going to a rural county to get Patrick his written exam because all of the Knox County appointments were full for 5-6 weeks out.
09:33 <@Mirage> He's gonna do an online class that includes the written portion of the test so that all he has to do is go there, give them the paperwork, get his eyes checked, pay, and leave.
09:35 <@Mirage> Apparently schools here don't do drivers ed, so there are lots of driving schools to choose from.  One here local, according to their web site, is approved for and has their own coarse for doing teh road test, so that's the route we're hoping to be able to take to that done for him.
09:35 <@Dagmar> Jesus.  Fuck these Fortinet people
09:35 <@Mirage> What sucks is that it will require another trip to the DMV after to get the permit flipped to a real license
09:35 <@Dagmar> I've said a bunch of times, and even filled in forms stating my availability begins at 9am CST
09:36 <@Dagmar> One of their dudes just rang me up at 8:04--and I'm sure this is for the most recent ticket that shoudl be making it clear I do not need their help--so I just said "My availability begins at 9am Central Standard Time" and hung up
09:37 <@Dagmar> Fuck him for not making an effort to read the ticket
09:37 <@Dagmar> My tolerance for that is all used up.
10:55 <@Dagmar> I'm guessing they were probably calling because I two-starred the previous interaction explaining that I didn't appreciate the trend of them sending responses that show they aren't actually reading the answers to the questions they require for submitting a ticket
10:55 <@Dagmar> ...which just shows that I'm right about that.
11:24 <@Mirage> Anyone else tired of all the shit ass "I'll sign up for anything that pays" movies that Bruce Willis has been doing the past few years?
11:24 <@Dolemite> You don't have to worry about that happening any more
11:25 <@Dagmar> It's a fair bet a number of those films happened because of the dementia
11:25 <@Dagmar> There was definitely something meta about him playing the only experienced space marine
11:26 <@Dagmar> ...in a movie full of noob-asses
11:37 <@Mirage> Proof it's not just me and not just because I'm an asshole.  https://www.fil.ion.ucl.ac.uk/news-item/misophonia-supersensitive-brain-connection-explains-why-some-people-hate-the-sound-of-others-eating/
11:37 < PigBot> Misophonia: Supersensitive brain connection explains why some people hate the sound of others eating - Wellcome Centre for Human Neuroimaging | FIL | UCL (at www.fil.ion.ucl.ac.uk) https://tinyurl.com/2fq3f322
11:40 <@Mirage> Had someone in the change meeting over the weekend that kept eating something into their mic that was driving me nuts.  I politely asked a couple of times that "whomever is eating please mute" and finally when it persisted one of the two project managers called out the person and told them if they didn't mute that they were going to be muted so that they were't triggering the "Misophonics" in the webex.
11:40 <@Mirage> I'd never heard of "Misophonia" until then and had to look it up... then pointed it out to my wife since she takes extreme issue to me having issues w/ listening to her eat
11:49 <@Dagmar> It's not just you.  Audra hates it as well
11:49 <@Dagmar> ...although someone should have just muted the fucker
11:58 <@Mirage> Yeah, they should slap this shit down hard and follow-up w/ high penalties for frivolity.  https://www.youtube.com/watch?v=d_yUTTQHGtQ&ab_channel=MSNBC
11:59 < PigBot> Trump files motion to deem Georgia probe unconstitutional - YouTube (at www.youtube.com) https://tinyurl.com/2qokmhj2
11:59 <@Mirage> Enough lawyers loose their license or get w/ heavy penalties for enabling his bullshit and he'll run out of ones willing to do so
11:59 <@Dagmar> Frankly I'm surprised any lawyer is willing to end their career by working for trump
12:00 <@Dagmar> Maybe they should start publicizing that he's not actually paying them as promised
12:00 <@Dagmar> ...or maybe those lawyers are working because of blackmail
12:29 <@Dolemite> ok, just got the best compliment at work.  Someone just referred to me as the Level 24 Chaotic Neutral Wizard.
14:01 <@Mirage> I really had to fight the urge in this BS Security Awareness Training that I just had to do for a customer, which ONLY partains to onsite physical security, whether it's required to ensure that your workstation is locked and anything on your desk is put away in compliance with the clean desk policy before hiding or leaving the area for an activie shooter situation.
14:03 <@Mirage> I mean, it could just be a ruse to get people to leave so they can do some quick corporate espionage like in the movies when they pull the fire alarm to clear a floor
14:07 <@Mirage> https://youtu.be/cC1CqyCN9Q0
14:07 < PigBot> How To Be A Linux User - YouTube (at youtu.be) https://tinyurl.com/2nfnu54a
22:29 < Warcop> i'm just in for the bad hacker scroll in Rabbit Hole
--- Log closed Tue Mar 21 00:00:33 2023