1330646891 Q * PowerKe Read error: Operation timed out 1330646938 Q * ghislain Quit: Leaving. 1330647887 J * PowerKe ~tom@94-226-105-186.access.telenet.be 1330648181 M * Bertl_oO off to bed now ... have a good one everyone! 1330648186 N * Bertl_oO Bertl_zZ 1330648691 Q * clopez Ping timeout: 480 seconds 1330649742 Q * jeroen__ Ping timeout: 480 seconds 1330650392 J * jeroen__ ~jeroen@095-097-051-172.static.chello.nl 1330652355 M * neofutur fyi : beware, if you know people using linode : https://twitter.com/#!/neofutur/status/175390802552434690 1330653523 J * notau ~notau@gw-1.mel1.paranode.id.au 1330658286 Q * FireEgl Quit: Leaving... 1330660176 Q * notau Quit: Computer has gone to sleep. 1330663130 J * quasisane ~sanep@c-24-218-184-186.hsd1.nh.comcast.net 1330665787 J * FireEgl FireEgl@2001:470:e056:1:5c1:67b0:f72c:a3b4 1330666695 N * Bertl_zZ Bertl 1330666700 M * Bertl morning folks! 1330666780 M * neofutur linode admits the hack, they call it an "incident" 1330666791 M * neofutur more than 200000$ worth of bitcoins have been stolen, more links on my twitter 1330668855 M * Bertl still trying to figure how that affects Linux-VServer or the Linux-VServer community? 1330669191 M * neofutur sorry for the offtopic, just sharing the info 1330669231 M * neofutur ( people using vserver could have linode hosting ) 1330669455 M * Bertl i.c. well, thanks for the info I guess ... 1330669610 M * neofutur but I agree its very very loosely ontopic and mostly offtopic 1330669618 M * neofutur just, this is so big i needed to share the info 1330669634 M * neofutur having a very secure is no more enough, you need to trust the datacenter and their employees 1330669650 M * neofutur s/a very secure/a very secure server/ 1330669874 M * Bertl you always need to 'trust' the datacenter folks to some degree, after all they have physical access to _your_ machine 1330669908 M * Bertl but I'm not sure what that BTC thing is ... 1330670387 M * neofutur I can query you some links and argumentation if needed ;) 1330670393 M * neofutur wont add more offtopic here ;) 1330670472 M * Bertl yes, please do 1330670476 M * neofutur ah just two links here, some stats on bitcoin usage : http://bitcoinwatch.com/ and the official website : http://bitcoin.org/ 1330671845 J * ncopa ~ncopa@3.203.202.84.customer.cdi.no 1330672103 Q * jrayhawk Ping timeout: 480 seconds 1330672781 M * Bertl off for now ... bbl 1330672787 N * Bertl Bertl_oO 1330673979 J * ghislain ~AQUEOS@adsl2.aqueos.com 1330674282 Q * derjohn_mob Ping timeout: 480 seconds 1330674413 J * jrayhawk ~jrayhawk@nursie.omgwallhack.org 1330674500 J * ghislain1 ~AQUEOS@adsl2.aqueos.com 1330674760 Q * ghislain Ping timeout: 480 seconds 1330675557 Q * grobie Ping timeout: 480 seconds 1330676891 Q * ensc|w Remote host closed the connection 1330676900 J * ensc|w ~ensc@www.sigma-chemnitz.de 1330679028 J * derjohn_mob ~aj@87.253.171.199 1330679239 J * notau ~notau@gw-1.mel1.paranode.id.au 1330680710 J * kir ~kir@swsoft-msk-nat.sw.ru 1330680800 P * kir 1330682881 J * nono_ ~gomes@licencieux.ircam.fr 1330682890 Q * nono_ Remote host closed the connection 1330683960 Q * Aiken Quit: Leaving 1330685020 J * petzsch ~markus@dslb-092-078-115-163.pools.arcor-ip.net 1330688164 J * Guest4786 ~yang@lux.prunk.si 1330688218 M * Guest4786 hello, which is the latest stable kernel branch? 1330688251 M * Guest4786 i wonder if they fixed pgp signatures on kernel.org 1330688348 M * daniel_hozac stable in what sense? 1330688612 M * Guest4786 i mean stable in the sense of being tested to work witg vserver 1330688629 M * daniel_hozac 3.2 then 1330688645 M * Guest4786 yes but which from 3.2 1330688720 M * Guest4786 last time when i tried to obtain kernel from kernel.org it was signed by someonr who wasnt mentioned in their pgp list 1330688757 M * Guest4786 and i read they were hacked too 1330689772 M * Bertl_oO I'd say currently 3.2.9 should be fine 1330690009 N * Bertl_oO Bertl 1330690054 F * ChanServ +o Bertl 1330690057 T * Bertl http://linux-vserver.org/ |stable 2.2.0.7,exp 2.3.2.7,grsec 2.3.0.36.38 | util-vserver-0.30.216-pre3029 | He who asks a question is a fool for a minute; he who doesn't ask is a fool for a lifetime -- share the gained knowledge on the Wiki, and we forget about the minute. 1330690075 F * Bertl -o Bertl 1330690087 N * Bertl Bertl_oO 1330690426 M * Guest4786 signed by greg hartman id 6092693e 1330690672 M * Bertl_oO looks good 1330690760 Q * notau Quit: Computer has gone to sleep. 1330694296 M * karasz hello 1330694331 M * karasz what happened to util-vserver on 17-Feb-2012, seems 3 releases roughly one hour apart... 1330694369 M * daniel_hozac work was done 1330694446 M * Mr_Smoke I seem to remember that was the whole cgroup in /dev vs /sys/fs issue, right ? 1330694513 M * daniel_hozac probably, but the log could tell for sure. 1330698604 J * notau ~notau@gw-1.mel1.paranode.id.au 1330698623 Q * derjohn_mob Ping timeout: 480 seconds 1330699013 Q * Guest4786 Remote host closed the connection 1330699690 Q * notau Quit: Computer has gone to sleep. 1330699765 J * annyy annyy@79.125.169.14 1330699769 M * annyy http://xeducation.info/2012/02/young-italian-nimfo-teens-loves-group-sex-adolescenza-perversa-italian/ 1330699772 Q * annyy autokilled: spambot. Dont mail support@oftc.net with questions. (2012-03-02 14:49:32) 1330699794 J * annyy annyy@79.125.201.195 1330699798 Q * annyy autokilled: spambot. Dont mail support@oftc.net with questions. (2012-03-02 14:49:58) 1330699812 J * annyy annyy@79.125.169.223 1330699826 Q * annyy autokilled: spambot. Dont mail support@oftc.net with questions. (2012-03-02 14:50:26) 1330699836 J * annyy annyy@79.125.201.97 1330699869 Q * annyy autokilled: spambot. Dont mail support@oftc.net with questions. (2012-03-02 14:51:09) 1330699888 J * annyy annyy@79.125.169.211 1330699934 Q * annyy autokilled: spambot. Dont mail support@oftc.net with questions. (2012-03-02 14:52:13) 1330699949 J * annyy annyy@79.125.168.142 1330699957 Q * annyy autokilled: spambot. Dont mail support@oftc.net with questions. (2012-03-02 14:52:37) 1330699994 J * annyy annyy@79.125.169.58 1330700013 Q * annyy autokilled: Mail support@oftc.net with questions (2012-03-02 14:53:33) 1330700038 J * annyy annyy@79.125.201.159 1330700043 Q * annyy autokilled: spambot. Dont mail support@oftc.net with questions. (2012-03-02 14:54:03) 1330700054 J * annyy annyy@79.125.168.235 1330700058 Q * annyy autokilled: Mail support@oftc.net with questions (2012-03-02 14:54:17) 1330700076 M * Mr_Smoke O.o 1330700120 M * DelTree :) 1330700140 M * Mr_Smoke Macedonian bots. Gees. 1330700940 M * Wonka they have internet in Yugoslavia? *duck* 1330701975 Q * petzsch Quit: Leaving. 1330703340 J * derjohn_mob ~aj@80.187.200.0 1330704355 M * ghislain1 humm i wonder what vdispatch-conf does :) 1330704362 Q * ncopa Quit: Leaving 1330705124 J * notau ~notau@gw-1.mel1.paranode.id.au 1330706721 Q * notau Quit: Computer has gone to sleep. 1330714956 Q * derjohn_mob Ping timeout: 480 seconds 1330715776 J * sweil ~stefan@p54ADB623.dip.t-dialin.net 1330716994 J * clopez ~clopez@ks3094377.kimsufi.com 1330718687 J * petzsch ~markus@dslb-092-078-115-163.pools.arcor-ip.net 1330719776 Q * FireEgl Read error: Operation timed out 1330720643 J * bonbons ~bonbons@2001:960:7ab:0:c065:668f:aea4:7d4d 1330720804 M * julius would you mind me asking a question about iproute/vlan not directly related to linux-vserver? 1330724039 Q * petzsch Quit: Leaving. 1330724467 Q * dowdle 1330724661 J * cuba33ci_ ~cuba33ci@114-36-235-31.dynamic.hinet.net 1330724679 M * Bertl_oO depends on the question :) 1330724755 Q * cuba33ci Read error: Operation timed out 1330724764 N * cuba33ci_ cuba33ci 1330725608 Q * clopez Ping timeout: 480 seconds 1330725744 M * Bertl_oO anyway, off to bed now .. have a good one everyone! 1330725749 N * Bertl_oO Bertl_zZ 1330726305 M * ard julius : whats up? 1330726404 M * julius I started using vlans 1330726432 M * ard woot :-) 1330726459 M * julius so I create some vlan devices with `ip link add … vlan id ` 1330726476 M * ard respect ! that's the only right command 1330726493 M * julius Now I'm not sure how to manage untagged traffic on that ethernet device 1330726519 M * ard untagged traffic will just arrive at your ethernet device... 1330726521 M * fback some devices require to create vlan tagged with 0 1330726535 M * ard adding vlan interfaces will just add a protocol handler to the network stack on that device 1330726544 M * fback device drivers, that is 1330726562 M * julius so tagged traffic to a specified vlan doesn't arrive at eth0 itself - for example? 1330726569 M * ard I think you probably mean the switches :-) 1330726591 M * ard No, it will be handled by the vlan code... and hence arrive at the vlan interface 1330726611 M * ard if you tcpdump, you will see it arrives at eth0 1330726611 M * julius okay - I thought eth0 would still get everything :) 1330726619 M * julius thank you :) 1330726634 M * fback ard: via_velocity is an example 1330726635 M * ard but you bound an 802.1q handler to that device 1330726654 M * ard fback : ah... via has always been weird if I recall 1330726694 M * ard fback : But the velocity is unable to do .1P ? I mean: just prio not a tag? 1330726708 M * fback ard: seems so 1330726744 M * ard julius : vlan protocol handler is comparable to the ip protocol handler. The vlan protocol handler just "removes" the tag and calls the protocol handlers again.... 1330726768 M * fback and because it's handled by hardware, you'll see no untagged traffic on eth0 without vlan0 1330726771 M * ard julius : those handlers can be something different than IP. You can even connect it to a bridge :-) 1330726772 M * julius again for a different interface tho 1330726811 M * fback what's more, you only need to create this vlan to point, you want to receive untagged traffic 1330726823 M * fback it will arrive to eth0, as expected :> 1330726825 M * ard Actually: in different words: eth0 still gets everything but the ip stack doesn't understand tags ;-) 1330726858 M * julius now you've got me confused again… 1330726863 M * ard :-) 1330726872 M * fback ard, no, packets with unknown tags are dropped by this hw 1330726898 M * ard fback : that's true... there is a lot of hardware support for vlans these days :-) 1330726902 M * fback the same with untagged frames, if vid0 doesn't exist :) 1330726918 M * julius I'd like to have an interface on which untagged packets arrive - and have those that are tagged come out of another interface 1330726950 M * ard julius : if you want to have to correct view: a packet arrives at eth0. The packet contains a protocol id. The network handler will search for a handler for that protocol id. 1330726957 M * fback took me few hours of pulling hairs to find this out 1330726983 M * ard vlan tags are just protocols on ethernet, just like ip is a protocol on ethernet 1330727023 M * julius ard: so the handler is a "callback" that delivers the packet to the vlan device after stripping the tag? 1330727037 M * ard the vlan protocol handler will look at the id, and remove the tag from the packet, and then uses the network handler again to check the protocol handlers 1330727053 M * ard julius : something like that yes... 1330727072 M * fback ard: otoh, it's unadvised to have trunk with native vlan by most switch vendors 1330727075 M * ard and then it reiterates, and discovers the ip protocol on that vlan device 1330727120 M * julius okay 1330727122 M * ard julius : and now hardware vendors have hardware helpers that filter out unwanted traffic... 1330727164 M * julius and those are bound to have some hardware(manufacturer)-specific bugs 1330727179 M * ard a vlan tag is just 32 bits of data in front of your payload. 16 bits of the 802.1Q protocol id, 3 bits of priority data, and 12 bits of vlan tag 1330727185 M * fback or unexpected features :-) 1330727234 M * ard if you have a hardware helper, changes are about 100% that if you tcpdump eth0, you won't ever see the tag, but the tag is there in the meta-data of the packet buffer in the kernel :-) 1330727268 M * ard If you don't have a helper, you can see nice tags flowing :-) 1330727269 M * julius the tags aren't relevant to anything but "routing" to the proper interface anyway 1330727278 M * julius okay :) 1330727300 M * ard The tag also contains a priority :-). 1330727332 M * julius okay - haven't done anything with qos on linux yet 1330727334 M * ard So now you have some insight in vlans... 1330727335 M * fback ard: this field, not a tag 1330727348 M * ard fback : hush! details! :_) 1330727355 M * fback tag is just 12 bits, as you already pointed :P 1330727393 M * ard julius : on to your next thing: SVL vs IVL ... that's a nice headache creator :-) 1330727402 M * julius *google* 1330727411 M * ard But 90% of the time you won't have problems with it 1330727459 M * ard In a switch you can have a mac-address table per vlan (IVL==Independent-Vlan-Learning), or global (Shared Vlan Learning) 1330727496 J * petzsch ~markus@dslb-092-078-115-163.pools.arcor-ip.net 1330727501 M * ard On a switch that supports IVL, you can have mac-address X appear on port Y vlan Q, and port Z vlan P 1330727539 M * ard On a switch that only does SVL, having that mac-address appear on different ports indepedent of the vlan, will make your forwarding to that mac borken 1330727563 M * julius let me have a look at the manual 1330727564 M * ard changes are that you won't have to think about it 1330727614 Q * sweil Remote host closed the connection 1330727623 M * ard But if you are going for more complex setups (bridging of traffic accross ethernet tunnels) it is good to know how it works. 1330727673 M * ard Anyway, got to go home, sleepy time :-( 1330727676 M * fback ard: and I haven't seen SVL switch for quite a time now :) 1330727703 M * julius okay - thanks again :) 1330727722 M * ard fback : yes, I was even surprised that most home routers are having better and better switches... 1330727758 M * fback even broadcom gest better and better, hihi 1330727785 M * ard broadcoms were always good, only too bad it wasn't documented, so it was meaningless :-) 1330727800 M * julius I just got a gs108t from netgear for my home network :P 1330727807 M * ard cool! 1330727811 M * ard I have 3 of those 1330727832 M * ard watch your power supply though, if there is too much ripple, the switch crashes... 1330727837 M * julius now I can use my dockstar for routing :P 1330727838 M * julius o.O 1330727849 M * fback their robochip is virtually in every cheap switch... even in some cisco (not ex-linksys) gear 1330727852 M * julius crash as in bricked? 1330727871 M * ard no, just fully not functional until you powercycle 1330727887 M * ard powerlight is on, but every led of every port is turned off 1330727896 M * ard I had that problem with all three of them 1330727927 M * julius haven't noticed anything yet 1330727927 M * ard But I also used to have at least 2 power failures a year... And I mean upstream power... 1330727930 Q * bonbons Quit: Leaving 1330727950 M * ard If it happens, it only happens once or twice a year... 1330727964 M * ard I have mine on a UPS and everything is stable since 1330727994 M * julius power failures don't seem to be an issue over here :P 1330728036 M * ard Well, if it fails within the next year, you know what to do :-). Buy a UPS, or live with it. If it doesn't fail, that's even better :-) 1330728094 M * julius don't think I'll need a ups 1330728096 M * ard My life depended on it, so I bought 3com switches and a UPS. I know have both GS108T and a comparable 3com switch 1330728110 M * julius okay 1330728125 M * ard (my girlfriend would have killed me if the voip server was once again unreachable :-( ). 1330728143 M * ard Then again, I also have 2 (A)DSL lines :-) 1330728152 M * julius hehe - I was wondering what kind of critical service you were running 1330728154 M * ard just to survive :-) 1330728177 M * ard the voip server is crucial for her company 1330728196 M * julius makes sense 1330728206 M * ard some nice asterisk setup and a good and cheap voip provider really makes calling and getting called easy 1330728212 M * julius I wonder if the dockstar is strong enough for asterisk 1330728243 M * ard If you don't do media conversion it should work on most hardware 1330728260 M * ard It usually only forwards the audio packets :-) 1330728295 M * ard And there are "hackers" on the internet that scan your asterisk regularly for open accounts 1330728387 A * ard is really going :-) 0/~ 1330728391 M * julius which leads us to the next item on my todo list: snort 1330728392 M * julius ^^ 1330729116 J * clopez ~clopez@ks3094377.kimsufi.com 1330729341 Q * petzsch Quit: Leaving. 1330729371 J * imcsk8 ~ichavero@148.229.1.11 1330732018 Q * ghislain1 Quit: Leaving.