=== Lcawte is now known as Lcawte|Away
=== Guest38218 is now known as Monotoko
=== map is now known as Guest67946
[05:20] <mapps> morning
[05:25] <mapps> sweet
[05:25] <mapps> judge judy on:D
[07:31] <diplo> Morning all
[07:31] <diplo> mapps: Really.... judge judy! :/
[07:32] <MooDoo> diplo: phew, glad you said that
[07:34] <diplo> :P
=== feisar is now known as Guest51581
[08:27] <JamesTait> Good morning all; happy Safety Pin Day! :-D
[08:44] <brobostigon> morning boys and girls.
[08:50] <MooDoo> hello brobostigon
[08:50] <brobostigon> morning MooDoo
[08:53] <bashrc_> morning
[08:56] <brobostigon> morning bashrc_
=== bashrc_ is now known as bashrc
[09:35] <foobarry> spam txt from giffgaff :@
[09:36] <brobostigon> oh dear.
[09:43]  * davmor2 prods JamesTait with a safety pin to see if he pops like a balloon?  No but he does scream like a girl
[09:43] <JamesTait> How rude!
[09:46] <MooDoo> Everyones servers patched?
[09:47] <brobostigon> yes.
[09:49] <awilkins> I get spamtxt from Domino's Pizza
[10:24] <davmor2> MooDoo: I'm still trying to run the test on mine it doesn't like starttls it appears :(
[10:34] <MooDoo> davmor2: :(
[10:42] <bashrc> I patched my server yesterday
[10:43] <foobarry> i run scientigic linux- self patching
[10:44] <bashrc> you also have to regenerate any SSL certificates
[10:47] <MooDoo> foobarry: is that any good?  I've been looking at it
[10:47] <foobarry> WFM
[10:49] <foobarry> i've run large desktop infrastructures too using it
[10:49] <foobarry> and servers of course
[10:50] <foobarry> i also like centos
[10:50] <foobarry> but i dont think centos is configged for security updates via cron OOTB
[10:53] <foobarry> i want to get the blue shell ! http://www.amazon.co.uk/gp/product/B00B8QDNW2/ref=s9_simh_gw_p63_d0_i3?pf_rd_m=A3P5ROKL5A1OLE&pf_rd_s=center-2&pf_rd_r=1J9THJXHCE26R14R2XM6&pf_rd_t=101&pf_rd_p=455344027&pf_rd_i=468294
[10:54] <foobarry> oh, not at that price
[11:35] <MooDoo> bloomin heart bleed
=== Lcawte|Away is now known as Lcawte
[12:08] <awilkins> Yeah
[12:08] <awilkins> Do we really think we need to change passwords?
[12:09] <awilkins> I have about 80 in my password manager
[12:09] <popey> i changed a few
[12:09] <popey> based on advice from the lastpass security audit tool
[12:09] <awilkins> Yeah, I might change my gmail at least
[12:09] <popey> which is fricking amazing
[12:09] <popey> i have 2fa on gmail
[12:09] <awilkins> Yeah, I suppose I should sort that out
[12:18] <MooDoo> https://www.dropbox.com/s/n96uuv10ehjspng/BLOG-HEARTBEAT.jpg :D
[12:27] <popey> hah
[12:28] <popey> i used to love that show
[12:28] <popey> uh, 20 years ago
[12:31] <MooDoo> yeah just throught it was funny as i'm dealing with a lot of heartbleed issues :D
[12:33] <MartijnVdS> MooDoo: everyone is :|
[12:35] <SuperMatt> MooDoo: lawls
[12:35] <SuperMatt> MooDoo: you have *no idea* how many heart bleed issues I'm dealing with
[12:36] <SuperMatt> let's just say that we're only a little snowed under, and you have to imagine that with immense levels of sarcasm
[12:37] <MartijnVdS> SuperMatt: now imagine dealing with (local council) government
[12:39] <SuperMatt> MartijnVdS: ouch
[12:39] <SuperMatt> the one thing I keep hearing though is "no, don't restart httpd now" and I'm just like "lol you mean that your security is less important than 10 seconds downtime? OK!"
[12:40] <MartijnVdS> SuperMatt: good thing we had DigiNotar here a few years ago, and there are procedures/protocols now
[12:44] <MooDoo> SuperMatt: yup we're soo busy
[12:48] <SuperMatt> just take the number of servers you're dealing with, then scale it up *many* times and you'll realise how busy we are!
[12:53] <MooDoo> SuperMatt: pah i've more servers that you :p
[13:06] <popey> I had zero to patch \o/
[13:06] <popey> hurrah for no ssl
[13:06] <MartijnVdS> popey: ...
[13:06] <MartijnVdS> I even had to patch my Synology NAS
[13:06] <popey> i have nothing that does https, nothing at all
[13:07] <foobarry> i'm on holiday this week
[13:07] <popey> \o/
[13:07] <foobarry> not sure if \o/ or /o\
[13:07] <popey> nice timing
[13:08] <MooDoo> MartijnVdS: oh rats forgot about my NAS
[13:08] <MartijnVdS> MooDoo: http://ukdl.synology.com/download/criticalupdate/update_pack/4458-2/ if it's a synology
[13:09] <MooDoo> no netgear, but it's old, so I'm not sure if it's even affected lol
[13:10] <foobarry> most of my servers self updated but applications might need a closer look
[13:11] <MartijnVdS> yeah, I rebooted my servers to be on the safe side
[13:12] <foobarry> its amazing how quickly 4yr olds can get good as games like mario kart
[13:12] <foobarry> :-|
[13:13] <foobarry> although he's clicked on internet play sometimes. explains a lot. sometimes i've played on the internet and thought..is this guy drunk or just 4yrs old
[13:13] <MartijnVdS> foobarry: you could too.. if you only played it as intensely and often as they do
[13:14] <foobarry> heh.. he plays prob 1hr a week on sat mornings
[13:14] <foobarry> and talks about it for 7 days in between
[13:18] <MooDoo> foobarry: my son is 5 and the same with minecraft, i've just let him use fraps so he can record his own videos lol
[13:31]  * popey coughs up http://podcast.ubuntu-uk.org/2014/04/10/s07e02-the-one-where-everybody-finds-out/
[13:32] <brobostigon> :)
[13:49]  * Laney just heard the f-bomb
[13:49] <Laney> OUTRAGEOUS
[13:49] <MooDoo> the what?
[13:50] <brobostigon> is it a gasous anal axpulsion.?
[13:50] <brobostigon> expulsion*
[13:51] <Laney> similar
[13:51] <popey> yeah ⍨
[13:52] <brobostigon> i see.
[13:52]  * brobostigon gets a match
[14:05] <andrewebdev> was listening to a linux podcast last night regarding mir, and just as it got to the point where I was too frustrated to continue listening, reason popped it's in the door in the form of popey
[14:05] <popey> haha
[14:05] <popey> Linux Unplugged?
[14:05] <andrewebdev> yeah
[14:06] <popey> thanks
=== bashrc_ is now known as bashrc
[17:03] <daftykins> hrmm, probably not wise for a web server to be going 20MB into swap?
[17:56] <mapps> sweet
[17:56] <mapps> hey daftykins
[17:56] <mapps> prob not
[17:56] <mapps> :D
[17:56] <daftykins> ^_^
[17:57] <daftykins> hallo
[17:58] <mapps> :)
[18:46] <diddledan> lots of interesting announcements: https://cloud.google.com/events/google-cloud-platform-live/
[19:26] <mapps> hm
[19:26] <mapps> cloud sucks daftykins
[19:27] <daftykins> tab complete fail!
[19:51] <SuperMatt> cloud doesn't suck, it's just most people suck at using it!
[19:53] <SuperMatt> for instance, if you want to use wordpress on a bunch of load balanced servers, you're going to have a bad time
[19:58] <bigcalm> Good morning peeps :)
[19:59] <SuperMatt> it's morning already? but I don't want to go back to work yet
[19:59] <SuperMatt> there are still too many heartbleed tickets!
[19:59] <daftykins> lol
[20:00] <shauno> ugh.  I had to deal with that today, which was unexpected
[20:01] <shauno> mostly trying to find a reassuring way to say "don't worry, we're so hopelessly out of date that we weren't exposed"
[20:02] <SuperMatt> I'm still unsure about resetting passwords and renewing certs
[20:02] <SuperMatt> I figure that if attacks against heartbleed were going to affect me, I would have been got by now
[20:04] <shauno> honestly, I think for most people it's largely hypothetical
[20:05] <shauno> the more realistic worry (imho) is that people like yahoo were exposed.  targets big enough for someone to go fishing if they had some shiney new sploit before it was public
[20:05] <SuperMatt> indeed
[20:06] <shauno> I mean, it's nice that there's a dance to go through if you want the peace of mind.  but I'd be more worried about my accounts on others' systems, than my own
[20:07] <shauno> one thing that did raise an eyebrow though, is people scanning 443 on their own ranges to see what needs to be updated
[20:08] <diddledan> shauno: "we're aware of the issue and at this point we believe our systems are no-longer vulnerable"
[20:08] <diddledan> where no-longer == hadn't been in the first place
[20:08] <shauno> rather than just "update all the things", they're assuming https is the only place they're using ssl
[20:08] <diddledan> at least ssh isn't an issue :-)
[20:09] <diddledan> but smtps and pop3s and imaps are probably vulnerable
[20:09] <diddledan> I donno what microsoft-world uses for ssl?
[20:10] <diddledan> some in-house thing I guess
[20:10] <diddledan> microsoft closed sauce
[20:11] <SuperMatt> the command I've used most today: lsof -n | grep ssl | DEL
[20:11] <SuperMatt> to see if any services had a preloaded version of openssl still in memory
[20:11] <diddledan> | DEL?
[20:11] <daftykins> what's the third portion?
[20:11] <SuperMatt> oops, grep DEL
[20:11] <shauno> I wouldn't be surprised to find openssl on windows.  it's bsd licensed, so it'll crop up everywhere
[20:12] <diddledan> I used sudo grep libcrypto /proc/*/maps | grep '(deleted)' | cut -d/ -f3 | uniq | xargs ps
[20:12] <diddledan> that way it tells me what processes I need to restart
[20:12] <SuperMatt> mine's a little quicker :P
[20:12] <SuperMatt> but it does the same
[20:13] <shauno> I think mine's been "paste" :(  so much email.  so so much.
[20:15] <daftykins> lol
[20:16] <shauno> (my first day back since the start of the month, so ..)
=== bashrc_ is now known as bashrc
[20:22] <daftykins> shauno: you part timer!
[20:22] <shauno> I try :D
[20:22] <shauno> I even booked "bring your child to work day" off as vacation
[20:28] <bigcalm> Potato batteries!
[20:28] <diddledan> shauno: but you don't have a child
[20:29] <bigcalm> Perfect reason not to be in work that day
[20:29] <bigcalm> Children do not make for a productive work environment
[20:29] <shauno> it's for their benefit, really.  they don't need a humbug :)
[20:30] <daftykins> lol
[20:31] <daftykins> bag of humbugs!
[20:31] <daftykins> that'd pacify them
[20:32] <diddledan> shauno: but the lolz
[20:32] <diddledan> shauno: of being humbuggery
[20:33] <diddledan> I know being a grouch can take a lot of effort, but it's surely worth it when you ruin everyone's day, no?
[20:53] <diddledan> http://blog.fastmail.fm/2014/04/10/when-two-factor-authentication-is-not-enough/
[20:56] <denny> Heyla. I seem to have lost the ability to listen to 'net radio stations. I'm inclined to blame my new ISP, but just before I call them up and shout at them, what else should I check?  Rhythmbox on 12.04, happy to install something else to see if that works, less happy to upgrade distro version right this second.  Tried running Rhythmbox from command-line, didn't get any useful errors (just the usual Gtk mess).
[21:00] <daftykins> denny: what are you testing?
[21:03] <denny> actually, it just occurred to me to try from the laptop.  That works.  So um... Rhythmbox on my 12.04 desktop doesn't work (but did a week ago when I last used it), Rhythmbox on my 13.10 laptop on the same network does work.  You tell me what I should test.  :)
[21:03] <denny> Trying to play http://radio.bassjunkees.com:8442/listen.pls (as an example, although no 'net radio station works.  Local files do still play.)
[21:06] <diddledan> reactos is still going? https://www.indiegogo.com/projects/reactos-community-edition
[21:07] <daftykins> denny: try running rhythmbox from a terminal to see if it's erroring
[21:07] <diddledan> daftykins: he already did that
[21:08] <diddledan> last sentence :-p
[21:08] <daftykins> oh yeah
[21:08] <daftykins> sorry i went out and came back
[21:08] <daftykins> XD
[21:08] <diddledan> lol
[21:08] <diddledan> damn you all for not being ircrack-addicts like me!
[21:08] <daftykins> i went to buy snacks so i could be, damn it man!
[21:09] <diddledan> mm, tasty treats!
[21:09] <denny> yeah, it just throws those errors Gtk applications always throw  :-p
[21:09]  * daftykins extracts a tube from a 100% extra free jaffa cakes box
[21:09] <diddledan> gtk really is verbose
[21:09] <denny> I swear Gtk is made out of matchsticks
[21:09] <denny> not glued together, just balanced end on end
[21:09] <diddledan> I don't get why they moan when every app moans in the same way
[21:10] <diddledan> daftykins: 100% extra free!?!!
[21:10] <diddledan> now that's bargain!
[21:10] <daftykins> >:D
[23:34] <Alue> hi,I am Alue. I have some Ubuntu 12.04 boot error. Please help.
[23:35] <daftykins> it's quite late here. you'd be better off with asking in #ubuntu
[23:35] <Alue> ???
[23:35] <daftykins> ask in #ubuntu
[23:36] <Alue> well thanks.
[23:59] <diddledan> denny: I've just tried that radio station on a 12.04.4 freshly installed - it worked fine for me
[23:59] <diddledan> that's 64bittyness
[23:59] <diddledan> I can try on a 32bit install if you like