[00:11] <vychune> o/
[00:15] <cyberanger> hey vychune
[00:16] <vychune> how you been man
[00:16] <cyberanger> great
[00:16] <vychune> good
[00:17] <cyberanger> and you?
[00:17] <vychune> ok but i been at work since 830
[00:18] <cyberanger> day not over yet? heh
[00:18] <vychune> -_+-
[00:19] <cyberanger> just think of the overtime
[00:19] <cyberanger> or at least the stable work
[00:19] <vychune> lol
[00:20] <vychune> they cut my overtime
[00:20] <cyberanger> beats a layoff
[00:21] <vychune> true true
[00:23] <vychune> hows the server going?
[00:23] <cyberanger> and I know it beats looking for another job :-/
[00:23] <vychune> LOL
[00:23] <cyberanger> server? I got a few
[00:23] <vychune> lol
[00:25] <vychune> gtg got caught
[00:25] <cyberanger> uh...ok, chat later
[00:25] <cyberanger> oh, irc work, ah
[00:52] <elijah-mbp> hello
[00:56] <cyberanger> hey elijah-mbp
[00:59] <cyberanger> how's it going
[03:50] <vychune> o/
[04:08] <cyberanger> hey vychune
[04:08] <vychune> hey'
[04:08] <cyberanger> what server were you asking about?
[04:08] <techMiles> hey cyberanger./
[04:08] <cyberanger> hey techMiles
[04:08] <techMiles> and hey vychune
[04:09] <vychune> you said you were  doing a repository
[04:09] <vychune> hey tech
[04:09] <cyberanger> ah, right, mirror
[04:10] <cyberanger> going well, gotta upgrade some things before it's fully running
[04:10] <cyberanger> but it's covering two lts releases now
[04:10] <cyberanger> and some
[04:10] <cyberanger> techMiles: where did we leave off
[04:10] <techMiles> cyberanger: I installed the alternate ISO to the laptop.
[04:11] <techMiles> that's the last I got it
[04:11] <cyberanger> you did a full install too?
[04:12] <techMiles> cyberanger: hmm? I did a format/install using a disc I burnt the alternate ISO to
[04:12] <cyberanger> ok, that equals a yes then
[04:13] <cyberanger> I'd presume
[04:15] <cyberanger> techMiles: that disc can also do a command line install
[04:15] <techMiles> is that what I ought to have done? lol.....
[04:15] <cyberanger> so if you install virtualbox
[04:16] <cyberanger> and try out some custom installs too, that's one of two ways I do
[04:16] <cyberanger> (other is a net install)
[04:16] <cyberanger> no, you did what you planned on doing
[04:18] <cyberanger> just letting you know that disc is useful for a few reasons
[04:18] <techMiles> yeah
[04:20] <techMiles> also, my server seems to have a hardware problem. lol
[04:22] <cyberanger> I use alternate for full disc encryption, custom installs, and with jigdo and zsync, keep the load off the servers, and get the newest releaes too
[04:28] <techMiles> cyberanger: what do you use for a server? and do you host your own or rent hosting space?
[04:42] <cyberanger> techMiles: both, linode vps
[04:43] <cyberanger> ubuntu, debian
[04:43] <techMiles> would you recommend linode to a semi-novice ?
[04:43] <cyberanger> depends on the wallet, and needs a little
[04:44] <cyberanger> but it's the one I would, for most people
[04:44] <techMiles> heh. very empty wallet (for now. working on that) and needs, mostly just to play. would like to have some "production" stuff on it.
[04:45] <cyberanger> well, 20 a month, mostly to play, is there a spare desktop?
[04:46] <techMiles> that's what is currently failing on me
[04:46] <cyberanger> might be good to try on that, narrow down your thoughts
[04:48] <cyberanger> oh, well, 10 dollars is as low as I've seen
[04:48] <cyberanger> benifits for a bigger co, extra features too, 20 a month, linode is who I'd recommend
[04:49] <cyberanger> also they focus on linux, which is real good
[04:49] <techMiles> yeah
[04:50] <techMiles> can you choose where you have your hosting?
[04:50] <techMiles> at least country?
[04:50] <techMiles> i'd like to have a site up, and since this server I've been hosting myself is failing me.
[04:52] <cyberanger> techMiles: they've got a few DC's one london
[04:52] <cyberanger> others all in the US
[04:52] <techMiles> they list US
[04:55] <cyberanger> techMiles: yeah, and london, uk
[04:55] <techMiles> I'd at least like US. if I can't choose more specifically than that.
[04:56] <techMiles> am looking to get a job soon, or enough for 6+ months of hosting and job next august
[04:56] <cyberanger> newark, atlanta, dallas
[04:57] <cyberanger> freemont ca
[04:57] <cyberanger> and one more?
[04:57] <techMiles> lol.
[04:57] <techMiles> would prob go with atlanta
[04:57] <techMiles> as it'd be stuff mostly for my area
[04:58] <techMiles> college learning I'd gotten and collected to put up for others
[04:58] <cyberanger> I can't remember if it was 5 DC's or 5 US DC's
[04:58] <cyberanger> don't grab ATL
[04:58] <cyberanger> that's the limit
[04:59] <techMiles> hm?
[04:59] <cyberanger> not limit, sorry, advise against
[05:00] <cyberanger> there's a few restrictions at that DC
[05:00] <cyberanger> not linode's fault
[05:00] <cyberanger> port restrictions
[05:01] <techMiles> Ahhh
[05:01] <techMiles> so dallas
[05:01] <techMiles> next closest to my area
[05:01] <cyberanger> or newark
[05:01] <techMiles> where's newark again? >.>
[05:02] <cyberanger> new jersey
[05:02] <techMiles> ahhhh
[05:02] <techMiles> methinks dallas is closer, idk
[05:03] <cyberanger> networks are milliseconds apart
[05:03] <techMiles> yes, but there's latency and jitter w/ distance
[05:03] <techMiles> takes more lag time to get to a server in London than it does to one in Canada
[05:03] <cyberanger> london has times beating newark dallas
[05:03] <techMiles> even though they both ahve to go through customs..
[05:04] <techMiles> sorry, wejoke at my college
[05:04] <techMiles> that our elearn system has to go through customs, so that's why it takes so long to load
[05:04] <cyberanger> and atlanta just barely better, and my needs rule that out
[05:04] <techMiles> yeah
[05:04] <techMiles> what are you needs w/ it, if I might ask?
[05:05] <cyberanger> the IRC port 6667 is blocked and I keep the possibility open for that
[05:05] <cyberanger> I have proxies on it, for british tv
[05:06] <cyberanger> and testing geoip blocks
[05:06] <cyberanger> on us systems
[05:06] <techMiles> yeah
[05:06] <techMiles> you'll hafta tell me more about all of that sometime.
[05:06] <techMiles> I know about the IRC stuff (some).
[05:06] <cyberanger> (by testing, I mean breaking)
[05:06] <techMiles> lmao
[05:06] <cyberanger> running opennic dns server
[05:07] <cyberanger> small apache server, personal site on it
[05:07] <cyberanger> and this irc client
[05:07] <cyberanger> (some testing, bittorrent on a rare day)
[05:09] <cyberanger> it gets utilized
[05:16] <cyberanger> techMiles: what are you thinking?
[05:17] <cyberanger> and for linode, your not gonna find any major difference in locations, atlanta aside
[05:22] <cyberanger> but idk if your planning for anything more sensitive than most
[05:23] <cyberanger> I know dallas is good, opennic has some servers there
[05:24] <techMiles> how do you mean more sensitive?
[05:26] <cyberanger> you metioned latency as a concern, but my tests showed minute differences between all linode datacenters plus four other data centers
[05:27] <cyberanger> atl won, barely, due to routing, everything heads to the meet me room in atl
[05:27] <cyberanger> followed by newark or london
[05:28] <cyberanger> we're talking millisecond difference, extremely close
[05:29] <cyberanger> but ntp is something where that matters, it's more sensitive
[05:29] <cyberanger> but I wouldn't host an ntp server on a vps
[05:32] <techMiles> nah no ntp
[05:32] <techMiles> millisecond difference is fine
[05:34] <cyberanger> they'll let you move data centers too
[05:34] <cyberanger> I'd choose dallas or newark, if you want a US server
[05:37] <cyberanger> are you thinking of any projects to try first
[05:39] <techMiles> have thought about DNS.
[05:39] <techMiles> thinking more on the opennic dns
[05:39] <techMiles> but I know || that much about opennic
[05:39] <cyberanger> http://www.opennicproject.org
[05:40] <cyberanger> it's worthwhile
[05:41] <techMiles> how so?
[05:42] <cyberanger> well, gives you a chance to learn about bind, dns
[05:42] <techMiles> have been thinking about running a local DNS server that caches the top, say, 100 hits at my house
[05:43] <cyberanger> offers free domains, non-icann tlds (the downside here is lack of usability outside opennic, but that's fine for expemermental and personal projects)
[05:44] <cyberanger> techMiles: what's your router?
[05:44] <techMiles> cyberanger: a 2wire
[05:44] <techMiles> it sucksssss harddd
[05:44] <cyberanger> ah, yeah
[05:45] <techMiles> I swwear one day I'll put every device I can on it and burn it up.
[05:45] <cyberanger> dns cache is all or nothing, but that's ok for dns
[05:45] <cyberanger> it sounds like squid is something to learn for that
[05:46] <techMiles> squid?
[05:46] <techMiles> I know so little!
[05:46] <techMiles> lol
[05:46] <cyberanger> squid proxy
[05:46] <techMiles> I knew that, but didn't know the scope
[05:46] <cyberanger> cacheing proxy
[05:46] <techMiles> ah yeah that rings a bell now..
[05:48] <cyberanger> keeps a certain amount of http data cached
[05:48] <cyberanger> should cover your needs and some
[05:49] <techMiles> cyberanger: I'd like to run an IRC network, but that'd technically be against a non-competition agreement I have with a network for which I'm staff. so would probably just setup another server for them if I did so. or host a private network that would be outside of the non-competition bit.
[05:50] <techMiles> but I'd like a website, probably wordpress, maybe opennic.
[05:50] <techMiles> probably, after i get the hang of it.
[05:50] <cyberanger> techMiles: your staff on an IRC network that made you sign a non-compete?
[05:50] <techMiles> cyberanger: not made. And actually I could agrgue the non-compete would be null and void on me
[05:50] <techMiles> as I am voluntary help, and don't run a server.
[05:51] <cyberanger> you signed it though
[05:51] <techMiles> aggitating, but I do more work than those that do run a server. others have a set it and forget it method. -_-
[05:51] <cyberanger> a non compete for that?
[05:51] <techMiles> I had/have no aspirations to run an IRC network of my own.
[05:52] <cyberanger> I figure you don't want to say what network
[05:52] <techMiles> it's kind've a moot point to try and run a new network now, rather than run a server linked to an existing one.
[05:53] <techMiles> cyberanger: if you ask directly. lol. Not sure a difference that it makes, but if you ask directly I would tell you.
[05:54] <techMiles> cyberanger: was probably not the best move to agree to the terms of that, but is easily enough undone with resigning as staff. Honestly, very little is done w/ the network that I'd like to see done anyway.
[05:54] <cyberanger> well, I'm more suprised by the non compete really, I've run some servers, consider linking to some small network if I get another going again
[05:55] <techMiles> see I'd like to do that. just for the experience, I s'pose.
[05:55] <techMiles> but everyone goes to huge servers nowadays anyway
[05:55] <techMiles> growth is so slow
[05:56] <cyberanger> well, I'm on mutiple servers, so that doesn't hurt really
[05:56] <techMiles> this one is tiny, in comparison to the top 10
[05:56] <techMiles> but honestly I like little on freenode but this channel and the xchat channel
[05:56] <techMiles> don't much like undernet or quakenet, either.
[05:57] <cyberanger> I'm suprised the non-compete is that limited
[05:57] <techMiles> how do you mean?
[05:58] <cyberanger> most have some idea of protecting profit, how do you profit from irc
[05:58] <techMiles> this is mostly parallel with the NDA.
[05:58] <cyberanger> and seems rare that you resign and done
[05:58] <techMiles> well, the NDA holds even after resignation.
[05:58] <cyberanger> usually it's resign and 30 days
[05:59] <cyberanger> an NDA is the same, protect bussiness intrests
[05:59] <techMiles> but the non-compete... it can't really be held after we resign. for full operators it might be afterwards.
[05:59] <techMiles> but mostly it's that I can't take what is applied there to other networks. at least the proprietary.
[06:00] <cyberanger> what could be proprietary, irc has had little proprietary involvement, now I gotta ask what the network is
[06:00] <techMiles> I have no desire to resign, so I haven't remembered the exact policy.
[06:01] <techMiles> lol. proprietary as in, setup-specific, server configs that would violate security, then there's hand-written code they've used.
[06:01] <techMiles> proprietary was a bad word there.
[06:01] <techMiles> intellectual property would protect what I am talking asbout
[06:02] <techMiles> I'm actually not sure if I signed a non-compete/NDA for 2011
[06:02] <techMiles> specifically for 2011
[06:02] <cyberanger> I've never had a non compete (the NDA wasn't a true non compete, more of a protection I'd not harm their security)
[06:04] <cyberanger> but plenty of NDA's, and mimicking a config never was an issue, even for DoD grade smartcards
[06:05] <techMiles> this one uses... ehh.. some more specific stuff? heh.
[06:05] <cyberanger> not sure what IP they have exactly, hand written code makes sense under that
[06:05] <techMiles> idk
[06:07] <techMiles> and ofc server-setup is NDA
[06:08] <techMiles> idk if there's be an issue with running another network so long as I did no advertising whatsoever about it.
[06:08] <techMiles> I know there's one guy who does. but he's like me, voluntary help made staff. but his was pre-existing
[06:10] <cyberanger> the whole thing is volentary
[06:10] <cyberanger> err... voluntary
[06:10] <techMiles> I say voluntary meaning unpaid/only semi-official
[06:10] <techMiles> but yes.
[06:11] <cyberanger> claims years of exp.. in irc, nobody gets paid
[06:11] <cyberanger> claims openness
[06:11] <techMiles> sorry. I specify voluntary so much because most hear 'staff' and think 'employed' and think 'paid'
[06:11] <cyberanger> and yet an NDA, non compete
[06:12] <cyberanger> techMiles: understand, but of what I read, nobody is paid on this
[06:12] <techMiles> I've never heard of anyone getting paid
[06:12] <cyberanger> when does the NDA and non compete expire
[06:13] <techMiles> I think it is yearly, and/or when you resign. the pages where they NDA was hosted in the forums aren't accessible. at least -I- can't find them.
[06:13] <techMiles> I need to actually request those..
[06:14] <cyberanger> so, your currently not under them it sounds like
[06:14] <techMiles> if I don't have access to the documentation, no, not really.
[06:14] <cyberanger> you might want to read over that closer, and ask a bit more this time
[06:15] <techMiles> Indeed.
[06:15] <techMiles> I incquired where they'd gone and said I couldn't remember saying anything about 2011 directly, and that they aren't availasble anymore where I can see.
[06:15] <cyberanger> nothing wrong with NDA's (I have issues with some non competes)
[06:16] <techMiles> I remember clearly reading it, and that I had no issues with it.
[06:16] <cyberanger> they both can be overly broad, but usually NDA's can only cover what's not public under law
[06:17] <cyberanger> thus configs are hard in this context to cover
[06:17] <techMiles> yeah
[06:17] <techMiles> I think it covers passwords, salts, etc
[06:17] <cyberanger> due to limited ways to config, sooner or later you'll get it close
[06:17] <cyberanger> now that is good, approate for an NDA
[06:18] <cyberanger> irrevalant for a non compete
[06:18] <techMiles> I just hope this doesn't make the owner paranoid about me. :P
[06:18] <techMiles> He's also become a friend. He's the first owner of a network i've ever actually seen active on the network
[06:19] <cyberanger> good, I hope he'd not be paranoid about this, or asking for clarification on a non compete or nda
[06:20] <cyberanger> a non compete in IT that's too broad can be a job killer
[06:21] <cyberanger> but for tn, usually tossed out in court, right to work state
[06:21] <techMiles> he lives in NL, but yeah US law would apply as I am a resident here
[06:22] <cyberanger> hard to say with international law, all the more reason to clarify then
[06:23] <techMiles> yeah
[06:26] <cyberanger> I don't doubt his intentions as protecting his effort, if it's just salt info and passwords, maybe a spefic config value
[06:26] <techMiles> I think it's mostly to protect the network.
[06:26] <techMiles> i.e. : don't steal my users, don't steal my methods, don't steal my security information
[06:27] <cyberanger> yeah, but that can be too much there
[06:27] <cyberanger> I mean, I'm on 5 networks, did freenode steal me from oftc
[06:28] <techMiles> are you staff?
[06:28] <cyberanger> there are similarties, differences, I'm on both networks
[06:28] <cyberanger> not on those two
[06:28] <techMiles> and no it means things like me advertising. or saying things like 'hey come over to techMilesnetwork.com for a better chat'
[06:28] <cyberanger> which is why I chose them
[06:30] <cyberanger> ok, so you leave account related info alone, maybe metion your learning about ircd's, maybe peering with a friend (as a disclaimer, before you do anything)
[06:30] <techMiles> yeah
[06:30] <techMiles> I will see.
[06:30] <techMiles> He gets paranoid, as many have screwed him over.
[06:31] <cyberanger> set boundries, he explains any methods he has protected, you don't advertise, keep the peace
[06:31] <cyberanger> I do get that
[06:31] <techMiles> I'd love to do moer with networks, etc.
[06:31] <techMiles> there's nothing against the NDA/non-compete to help on others.
[06:31] <techMiles> I'm not entirely sure it's against it to be staff.
[06:31] <techMiles> on another one
[06:31] <techMiles> I'd love to help more places grow and get better than they are.
[06:32] <techMiles> but it takes sooo long.
[06:32] <techMiles> the one network I was made an admin of once, I was the main one doing work
[06:32] <techMiles> there was a root who didn't even fix a tiny netsplit. I fixed it.
[06:32] <techMiles> and He was the one who supposedly helped recompile the network.
[06:32] <techMiles> it -still- aggitates me
[06:33] <techMiles> very much an A-H, he was
[06:34] <cyberanger> yeah well, you find that everywhere it seems
[06:34] <techMiles> yeah
[06:34] <techMiles> it'd have been fine, if he didn't attempt to lord over me that he was root and I wasn't.
[06:34] <techMiles> root admin*
[06:34] <cyberanger> I'm not saying build an irc network, btw, just that the nda and non compete seems odd
[06:34] <techMiles> it does.
[06:35] <techMiles> but I think it's because he is, as I said, used to getting screwed over and wants to protect himself and his network as best as he can.
[06:35] <techMiles> Most of his income was from his freelance work
[06:36] <techMiles> is from his freelance work*
[06:36] <techMiles> and his communities which are tied into the IRC network
[06:36] <cyberanger> yeah, I understand why NDA's exist, and also how they can be abused
[06:37] <techMiles> I honestly kept hoping eh'd turn me over to a netadmin position, so I could do more, esp when the first person he thought was good for the job turned out to not take is as seriously as need be.
[06:37] <techMiles> know of any networks that need good help?
[06:37] <techMiles>  :P
[06:38] <cyberanger> well, question is if they want it too
[06:38] <cyberanger> lol
[06:38] <techMiles> hmm?
[06:38] <techMiles> I meant to answer questions in a #help channel
[06:39] <cyberanger> #freenode could at times
[06:40] <cyberanger> really any network has a channel like that, could
[06:40] <cyberanger> perhaps the north american pirate party network
[06:40] <cyberanger> and due to the fairly limited focus of that network
[06:40] <techMiles> the what?
[06:40] <techMiles> ol
[06:40] <techMiles> lol*
[06:41] <cyberanger> that'd be a good pic
[06:41] <cyberanger> pick*
[06:41] <cyberanger> irc.pirateparty.ca
[06:41] <techMiles> what's it for?
[06:41] <cyberanger> (also covers the US and Mexico)
[06:41] <cyberanger> Pirate Party and some other groups
[06:42] <cyberanger> digital rights type groups
[06:42] <techMiles> ah
[06:43] <cyberanger> Pirate Party is a political party with only one focus, digital rights
[06:43] <techMiles> I see.
[06:43] <cyberanger> outside that issue, things are independent of the party
[06:44] <cyberanger> it's not that big in the us
[06:44] <cyberanger> gaining traction in canada
[06:44] <cyberanger> and other groups are on the network too
[06:45] <techMiles> I see no help channel. and their opers channel is public?
[06:45] <cyberanger> #main I think
[06:46] <cyberanger> afaik, public, not 100% though
[06:46] <techMiles> anywhere else?
[06:47] <techMiles> honestly am a bit wary given the issues digi rights brings up.
[06:47] <cyberanger> not afaik
[06:47] <cyberanger> oh, other networks, yeah
[06:49] <cyberanger> really, any network can use it
[06:49] <cyberanger> as time goes on, quality fails
[06:53] <techMiles> recommendations?
[06:55] <techMiles> my main duty at the other network is documentation
[06:55] <cyberanger> a friend in #opennic has a smaller network, unfortunately the name slips my mind atm though
[06:56] <cyberanger> I asked, he's out atm
[06:56] <techMiles> I'd love to have a server up and going to do many of the projects I've been wanting to do.
[06:57] <cyberanger> and having an ircd for this one, your current one, is an idea
[06:57] <techMiles> yeah
[06:57] <techMiles> i've done so before
[06:58] <techMiles> was working on services, it kept dieing from the sendq
[06:58] <techMiles> was working on fixing that
[06:58] <techMiles> and idr what happened
[07:01] <techMiles> what IRCd do you recommend?
[07:01] <cyberanger> sounds like you've got a list
[07:01] <cyberanger> depends on the network
[07:01] <techMiles> right. squid, opennic and IRCd
[07:02] <cyberanger> kinda a thing they like in sync
[07:02] <techMiles> well, personally I've found Unreal to be to my liking.
[07:02] <techMiles> might try out the RC they have.
[07:03] <techMiles> of 3.2.9
[07:03] <cyberanger> small list then, the ircd might mean compiling it
[07:03] <techMiles> I'ev managed compiling an IRCd before
[07:03] <techMiles> I compiled xchat from source whenever there's a new release out or I redo a computer
[07:04] <cyberanger> yeah, but nice to skip when you can
[07:05] <cyberanger> just seems cleaner to use a package system
[07:06] <techMiles> yeah
[07:06] <cyberanger> squid for a local network, makes more sense to be on a local network
[07:06] <techMiles> yeah
[07:06] <cyberanger> but that's simple
[07:06] <techMiles> but the question is, how would I have to set that up. use a proxy to the server?
[07:07] <cyberanger> to the server, or on the server?
[07:07] <techMiles> the proxy would be the server, wouldn't it? with squid?
[07:07] <cyberanger> it'd be running on some machine
[07:08] <techMiles> well should I put it on my linux server or my windows desktop?
[07:08] <cyberanger> my network, it's on the router, firewalled from the outside
[07:09] <techMiles> oh see i can't do that, sadly.
[07:09] <cyberanger> well I'm partial to linux
[07:09] <techMiles> I'd love to.
[07:09] <techMiles> what router do you have?
[07:09] <cyberanger> yeah, homebuilt router
[07:09] <techMiles> Ahh
[07:09] <techMiles> see if I have a machine that could take it, I'd do that.
[07:09] <cyberanger> linux kernel
[07:10] <techMiles> I'd basically have a server that acted as a router, DHCP server, firewall, and DNS proxy
[07:10] <cyberanger> doesn't take much really
[07:10] <cyberanger> well, that'd have to be local
[07:11] <techMiles> installing on server.
[07:11] <techMiles> at least for now it works fine.
[07:12] <techMiles> if/;when I get the money, I want to build a better server.
[07:12] <techMiles> hopefully with two NICs
[07:12] <techMiles> so I can use it as a router, dhcp, firewall, etc
[07:13] <techMiles> at least, more streamlined than with only one NIC?
[07:13] <techMiles> have one incoming, one outgonig.
[07:13] <cyberanger> yeah, more than one NIC, dhcp (the kernel has iptables, there is benifits with dns being local)
[07:14] <cyberanger> toss in a serial port, gpsd, and ntpd, a compatible gps
[07:14] <techMiles> gps?
[07:14] <cyberanger> you can run a local ntp server even
[07:14] <techMiles> wow.
[07:14] <techMiles> ntp is.. ? I forget. :/
[07:14] <cyberanger> yeah, for the time signal
[07:14] <cyberanger> network time protocall
[07:15] <techMiles> Ah
[07:15] <techMiles> would probably pass on that one.
[07:15] <techMiles> until I had a really primo machine
[07:15] <techMiles> and GbE
[07:15] <cyberanger> yeah, be fun to try though
[07:16] <cyberanger> yeah, at least for the LAN
[07:16] <cyberanger> with a switch to match
[07:16] <techMiles> yeah.
[07:16] <techMiles> I have a cisco catalyst 2900XL
[07:16] <techMiles> but oneof the fans is going
[07:18] <cyberanger> btw, primo in my case is an old hp machine cira 1997
[07:18] <techMiles> yeah
[07:18] <techMiles> I say primo meaning one that isn't failing atm
[07:18] <cyberanger> with a second nic
[07:18] <techMiles> this current server is failing. I think the HDD might be.
[07:18] <techMiles> and it's terrible to work inside the case
[07:18] <techMiles> so basically I want a new case to shove it all into. eventually update some of the components, etc.
[07:19] <techMiles> or slowly update the stuff, so that I can have a progressively better machine for it
[07:20] <cyberanger> there's a point where that's costlier
[07:20] <techMiles> yeah.
[07:20] <cyberanger> compared to a new build
[07:20] <techMiles> indeed.
[07:20] <techMiles> hmm
[07:20] <techMiles> it isn't finding the squid.conf
[07:21] <cyberanger> did you install squid with apt
[07:21] <techMiles> yes
[07:21] <cyberanger> ls /etc/squid/squid.conf says not found?
[07:21] <techMiles> yes
[07:22] <techMiles> wait lemme see
[07:22] <techMiles> yes
[07:22] <techMiles> not found
[07:22] <cyberanger> that's not right
[07:25] <techMiles> I used squid3
[07:25] <techMiles> perhaps just squid?
[07:25] <techMiles> or squid-common ?
[07:25] <techMiles> now there is a squid.conf
[07:26] <cyberanger> guessing you added squid the
[07:28] <techMiles> the config file is loooong
[07:30] <cyberanger> yeah, is this on your lan?
[07:31] <techMiles> yes
[07:33] <cyberanger> then it's not too hard
[07:34] <cyberanger> localhost is enabled by default
[07:34] <cyberanger> localnet is setup, all rfc1918 addresses
[07:34] <techMiles> I don't plan on giving external access w/o some form of authentication.
[07:35] <cyberanger> just gotta remove the comment for it, under http_access
[07:35] <cyberanger> and your firewall covers that already
[07:35] <cyberanger> plus the acl
[07:35] <cyberanger> since port forwarding isn't set
[07:38] <cyberanger> there are a few auth methods, for a lan only setup though as described, that's enough
[07:38] <techMiles> yeah
[07:38] <techMiles> where's the http port bit?
[07:38] <techMiles> or do I need to worry about that?
[07:39] <cyberanger> bind to 0.0.0.0:3128
[07:39] <techMiles> ah
[07:39] <techMiles> it's already setup for me.
[07:39] <techMiles> lol
[07:39] <cyberanger> so ifconfig addresses, 3128
[07:40] <techMiles> so, I just change the proxy on this computer to server.ip.address:3128?
[07:41] <cyberanger> if it's the same machine, localhost or 127.0.0.1
[07:41] <cyberanger> yeah
[07:42] <cyberanger> if it's a different machine on the lan, remove the comment on http_access localnet and restart it
[07:42] <cyberanger> then it's the serveripaddress
[07:43] <techMiles> am looking for localnet..
[07:43] <techMiles> don't see it for http_access
[07:43] <techMiles> can I just add it with the http_access allow localhost ?
[07:43] <cyberanger> if it's the same machine, yes
[07:46] <techMiles> mmk
[07:47] <cyberanger> #http_access allow localnet#http_access allow localhost
[07:47] <cyberanger> http_access allow ncsa_auth_users
[07:47] <cyberanger> those are the two default lines commented out on mine, plus my auth line added
[07:49] <cyberanger> you should have the two, but you have localhost, that's good
[07:49] <cyberanger> suprised localnet is left out
[07:49] <techMiles> how do I know if it's working? :)
[07:51] <cyberanger> tell your browser to use it, then view something obscure (I use apple, since I never seem to run into any)
[07:52] <techMiles> hmm tells me access denied.
[07:53] <cyberanger> what's your http_access rules?
[07:53] <techMiles> what you described.
[07:53] <techMiles> localhost allowed, and localnet allowed.
[07:53] <techMiles> but it lets me ping google via terminal just fine
[07:54] <cyberanger> well, the termial isn't set for the proxy, and ping sidesteps it
[07:54] <cyberanger> did you remove the comment tag #
[07:54] <techMiles> yes
[07:54] <cyberanger> what's localnet and localhost defined as?
[07:55] <techMiles> idk where do I define those?
[07:55] <cyberanger> localnet by default is all rfc1918 addresses
[07:55] <cyberanger> localhost is the lo address
[07:55] <cyberanger> hrm
[07:57] <cyberanger> look for
[07:57] <cyberanger> acl localhost src 127.0.0.1/32
[07:58] <cyberanger> then three lines like it
[07:58] <cyberanger> acl localnet src ....
[07:58] <cyberanger> acl localnet src ....
[07:58] <cyberanger> acl localnet src ....
[07:58] <techMiles> I see them
[07:58] <cyberanger> sudo service squid restart
[07:59] <cyberanger> and try
[08:00] <techMiles> unknown instance
[08:00] <techMiles> ah it's squid3
[08:01] <techMiles> still nuttin
[08:02] <techMiles> ahhhh
[08:02] <techMiles> it has two dirs. /etc/squid and /etc/squid3
[08:02] <techMiles> I had been trying this in /etc/squid/
[08:02] <techMiles> tht's probably the issue
[08:05] <cyberanger> yeah, that's been annoying
[08:05] <techMiles> 2011/03/01 02:02:20| aclParseAccessLine: ACL name 'localnet' not found.
[08:05] <techMiles> FATAL: Bungled squid.conf line 648: http_access allow localnet
[08:05] <cyberanger> I'd purge squid3
[08:05] <cyberanger> it's the newest, a bit of a rewrite
[08:05] <techMiles> yeah.
[08:06] <cyberanger> I'm slowly migrating over
[08:06] <cyberanger> they changed enough on it
[08:07] <techMiles> It worksssss!!!!!
[08:08] <techMiles> now, a great feature (impo) would be a web-based management system for this....
[08:08] <techMiles> to add blacklisted/whitelisted sites
[08:08] <techMiles> keyword filter stuff mayhap
[08:09] <cyberanger> hrm
[08:10] <cyberanger> wonder if webmin fits that bill
[08:10] <cyberanger> but I find config files better
[08:10] <cyberanger> easier to lock down
[08:10] <cyberanger> no browser expliot risks
[08:12] <techMiles> mmhhmmm
[08:13] <techMiles> webmin DOES say it works with squid
[08:13] <techMiles> but best to learn the hard-way?
[08:14] <cyberanger> eh, well, it's the way I learned
[08:15] <cyberanger> best is a little more defined than that
[08:16] <techMiles> I'd have it where I want it much more quickly using webmin
[08:16] <techMiles> but I'd learn more if i use the conf files
[08:17] <cyberanger> and if webmin breaks
[08:17] <techMiles> yeah
[08:17] <techMiles> does it also handle ip tables?
[08:17] <cyberanger> and what method will google cite more
[08:17] <cyberanger> webmin, idk
[08:17] <cyberanger> again, I issue shell commands
[08:17] <cyberanger> for that
[08:18] <techMiles> yeah.
[08:18] <cyberanger> and learn, read
[08:18] <techMiles> it doesn't say it.
[08:18] <techMiles> but yeah.
[08:18] <cyberanger> it seems to be repetition really
[08:18] <techMiles> yeah
[08:18] <techMiles> okay. so question
[08:18] <cyberanger> do it enough, burned in
[08:19] <techMiles> if I do a shift+refrresh, does that also recache the page on the server?
[08:19] <cyberanger> shift refresh?
[08:19] <techMiles> eh. a re-get of the page.
[08:19] <cyberanger> you mean, hit refresh, f5 so on
[08:19] <techMiles> bia the browser
[08:19] <cyberanger> it grabs the cache bits, checks for new content
[08:20] <techMiles> shift+refresh, where it doesn't use the local cache, but redownloads the page from the webserver
[08:20] <cyberanger> some content can be told to ignore the cache, and advertisers make it look like it's allways changed
[08:20] <cyberanger> so it'll allways grab that outside the cache
[08:21] <techMiles> yeah
[08:21] <cyberanger> but squid trys to hand you it's cache contents if it can
[08:21] <techMiles> yeah.
[08:24] <techMiles> what I'd like to do, is eventually get it versatile and stable enough to have the router set to use it for the DNS.
[08:24] <techMiles> not sure if that'd be wise, though.
[08:26] <techMiles> where do I tell it how many pages to keep? and/or for how long?
[08:28] <cyberanger> if it's stable, DNS works
[08:28] <techMiles> I'd mostly be worried about the hardware being stable.
[08:29] <cyberanger> it's set up to be dynamic nowadays, you can fix that if you'd like, but I'd advise against it for most people
[08:29] <cyberanger> how much it can hold in ram, and how long, depends on how your ram is utilized
[08:30] <cyberanger> and makes sense since people have a habit on visiting the same site over and over, it'll cache it
[08:30] <techMiles> yeah
[08:30] <cyberanger> while on the same token, so many sites are dynamic, to hold it longer, pointless, since squid has to change it anyhow
[08:30] <techMiles> I'd like it set to, say, if it gets 5 hits on same domain, cache all pages from that domain for x days, if it gets 20 hits on same site, cache that site for, say, 3 days.
[08:31] <cyberanger> as for dns, you usually want mutiple servers listed anyhow
[08:31] <cyberanger> so, lanaddress, then two opennic servers maybe
[08:31] <cyberanger> if lanaddress is on top, it'll allways get queued
[08:32] <cyberanger> if it's hardware fails, it skips on down
[08:32] <techMiles> WOW big difference atm.
[08:32] <techMiles> from a page I loaded a bit ago on the laptop
[08:32] <techMiles> and just now on the desktop
[08:32] <cyberanger> now, a poor config can cause issues, but the configs are simple enough and hey, that's what testings for
[08:32] <cyberanger> both via squid?
[08:34] <techMiles> yes.
[08:35] <techMiles> I will probably leave it how it is but for playing around now.
[08:35] <cyberanger> and that's the funny thing, nobody values a good cache system anymore
[08:35] <techMiles> I do! at least after seeing this I certainly dooo
[08:36] <techMiles> would be nice if it could, like I think you've mentinoed to me before, go out and get packages and updates pre-downloaded.
[08:36] <cyberanger> schools see it's benifits, but have no clue why (due to their filters, using squid or something in the process)
[08:37] <techMiles> yeah.
[08:37] <techMiles> my school could use a good DNS cache for their online learning system alone.
[08:37] <cyberanger> export http_proxy=http://127.0.0.1:3128
[08:37] <cyberanger> export ftp_proxy=http://127.0.0.1:3128
[08:37] <cyberanger> sudo apt-get update
[08:37] <cyberanger> sudo apt-get -d dist-upgrade
[08:38] <techMiles> that'll do the packages and etc pre-gotten?
[08:38] <cyberanger> that'll only download, but the next machine (at least the shared packages) will use the same cache if set too
[08:38] <techMiles> woot
[08:38] <cyberanger> and so it's still a speed up
[08:38] <techMiles> but I only set it in the browser.
[08:38] <techMiles> not whole-system.
[08:38] <cyberanger> remove -d and it'll install
[08:38] <cyberanger> thus the export lines
[08:39] <techMiles> and what about on the server itself? will it use the squid proxy automagically?
[08:39] <techMiles> I'm onfused. do I put the export lines into the squid.conf ?
[08:39] <cyberanger> no, in the terminal (for all the time, one of the bashrc files, or run them as a command now, for this run)
[08:40] <cyberanger> there's two bashrc files, $HOME/.bashrc
[08:41] <cyberanger> and /etc/bashrc
[08:41] <techMiles> uh oh. it's stuck on
[08:41] <techMiles> something
[08:41] <cyberanger> the difference is the user it's under
[08:41] <cyberanger> uh, what's stuck
[08:41] <techMiles> 82% [Connecting to security.ubuntu.com (91.189.92.166)]
[08:41] <techMiles> gets stuck there
[08:42] <techMiles> ah fixed that time
[08:42] <cyberanger> what command
[08:42] <techMiles> sudo apt-get update
[08:42] <techMiles> al;ways hangs at that one.
[08:42] <techMiles> but fixes after
[08:42] <cyberanger> security.ubuntu.com is only two servers, if I recall
[08:42] <cyberanger> kinda bad if they get hammered
[08:43] <techMiles> man it is NOT going to that security.ubuntu.com server
[08:44] <cyberanger> thus why I try not to mirror them, if I can (I mirror from a mirror first, then archive.ubuntu.com, then security.ubuntu.com, to try and avoid hitting it for long)
[08:44] <techMiles> must be busy
[08:44] <techMiles> everybody doing auto-updates or something at 2am?
[08:44] <techMiles> went slooooow but finally finished
[08:44] <cyberanger> heh, that sucks
[08:44] <cyberanger> well, 2am in the CST
[08:44] <techMiles> abnd you'll hafta teach me how to mirror.
[08:45] <cyberanger> 03:44 here
[08:45] <cyberanger> that's gonna take disc space
[08:46] <techMiles> yeah.
[08:46] <techMiles> if I could build me a home server for all the stuff I wanna do.
[08:46] <techMiles> it'd be grand.
[08:47] <techMiles> I'd have a HDD set aside for it.
[08:49] <cyberanger> how big?
[08:49] <techMiles> idk. how big of one would I need?
[08:49] <cyberanger> depends on how much your mirroring I guess
[08:49] <techMiles> lol.
[08:49] <techMiles> yeah
[08:50] <cyberanger> just lucid and hardy is 125GB, the whole ubuntu archive is I think over 500Gb now
[08:50] <cyberanger> the releases mirror seems to constantly stay shy of 70GB
[08:51] <cyberanger> releases is cd images and whatnot
[08:51] <cyberanger> apt is looking at archive
[08:52] <techMiles> hmm..
[08:52] <techMiles> what would you recommend?
[08:52] <techMiles> I keep my server on latest LTS
[08:52] <cyberanger> and the portion I'm currently mirroring (looking at grabbing a full mirror, just gotta upgrade to that) is enough for me
[08:52] <techMiles> and PC on latest stable, sometimes latest beta.
[08:53] <cyberanger> so just lucid I take it, and maverick atm
[08:53] <techMiles> yeah
[08:53] <cyberanger> beta seems to change so much, and you've got small amount of machines, idk if it's worth it to you
[08:53] <techMiles> would be nice to also mirror maybe, the desktop, alternate, and server ISO's
[08:53] <cyberanger> a caching proxy might be enough for you
[08:54] <cyberanger> well the iso's are simplier
[08:54] <cyberanger> and I can see that
[08:55] <techMiles> I already do a semblance of  mirroring the ISOs.
[08:55] <techMiles> I download and leave them open in torrent for seeding for a few days/week
[08:55] <techMiles> until the #'s go down
[08:56] <cyberanger> I've got some plans that justify a mirror more, from installfests to maintaining mutiple machines at a sci-fi convention, and I want to presume that they'll become offline, too much traffic at the hotel (killed the network by having email checked in the morning and streaming netflix at night to put everyones kids to sleep)
[08:56] <cyberanger> and I'd like to actually stick it in a datacenter, and host a public mirror
[08:57] <techMiles> it's bedtime though
[08:57] <techMiles> great learning session and discussions.
[08:57] <techMiles> tyvm cyberanger
[08:59] <techMiles> g'night
[09:02] <cyberanger> quite welcome
[09:02] <cyberanger> heh, whoops, missed that timing
[09:07] <chibihogoshino> ah.. tea in the am is so nice
[09:37] <cyberanger> chibihogoshino: well, the brits do agree tea time is 4 o'clock, I think your 12 hours early
[09:37] <chibihogoshino> it is 4 tho
[09:37] <cyberanger> thus 12 hours early, not 11 or 13
[09:37] <chibihogoshino> 4 o clock is 4 o clock
[09:38] <cyberanger> but they meant 1600
[09:38] <chibihogoshino> baa.. thats to late
[09:38] <chibihogoshino> i have tea now .. it will be cold by then
[09:38] <cyberanger> why? ;-)
[09:39] <chibihogoshino> cold tea isnt good
[10:03] <cyberanger> reheat it;-)
[10:13] <chibihogoshino> eww
[10:30] <cyberanger> hehe
[15:21] <Xpistos> What up peeps
[15:21] <Xpistos> wrst
[17:55] <wrst> hey Xpistos, a belated hello to you
[19:11] <orias> o/
[20:37] <vychune> o/
[22:01] <cyberanger> hey orias
[22:01] <cyberanger> wrst: it's not like you to be that late
[22:04] <cyberanger> techMiles: DarkDNA IRC network
[22:05] <orias> lol
[22:12]  * cyberanger is holding a virtual party here, virtual fake ID's will be checked
[22:15] <cyberanger> you don't look like a bill gates, wearing a tux shirt, come in ;-)
[23:24] <techMiles> irc.darkdna.net ?
[23:37] <cyberanger> techMiles: yeah
[23:48] <techMiles> cyberanger: I do not see you there.
[23:52] <cyberanger> techMiles: that's pretty much cause I'm not atm, lol
[23:53] <techMiles> cyberanger: you forget the port with that?