/srv/irclogs.ubuntu.com/2014/07/20/#ubuntu-uk.txt

mapps	yo	06:06
SuperMatt	I'm getting a 500 error while going to iplayer	07:34
SuperMatt	ah, it's gone now	07:34
SuperMatt	phew	07:34
SuperMatt	I thought the world was ending	07:34
SuperMatt	oh no, it really is struggling this morning	07:35
foobarry	anyone know of cheap powerline adapters that don't die after one year?	07:45
=== Lcawte\|Away is now known as Lcawte
directhex	iplayer's been down for 2 days here	08:59
Myrtti	http://www.bbc.co.uk/news/uk-28388585	09:05
=== Lcawte is now known as Lcawte\|Away
brobostigon	morning boys and girls.	09:29
gebbione	is test -x /usr/sbin/anacron supposed to show/echo a value?	10:55
foobarry	anyone know why i am getting too many authentication failures using password ssh in 14.04 server?	12:02
foobarry	some weird default>	12:02
foobarry	?	12:02
foobarry	oh, told my client not to do pubkey	12:07
foobarry	weird	12:07
MartijnVdS	but.. pubkey > password security	12:08
MartijnVdS	as long as you're not insane and keep a passphrase on the key	12:08
foobarry	this is first time connection	12:09
foobarry	so keys will come later	12:09
awilkins	Maybe someone cracked the account already, or is brute forcing it	12:40
awilkins	Is this machine visible from teh Internets?	12:41
awilkins	My router fields many, many attempts to crack it on a daily basis (even though it no longer accepts password auth)	12:41
* penguin42 hopes his doesn't have to take any auth from the outside world		12:43
diddledan	morning	15:42
* penguin42 yaaawwwwnnns		15:43
* SuperEngineer smiles - found a cheap portable USB cassette player to put some prize cassettes into mp3		16:31
penguin42	it had better be cheap if it was easier than plugging in an old casette recorder to the audio in	16:32
SuperEngineer	penguin42: it was 9.99 - & old cassette player is slightly u/s [unless you can find me a new drive band for it!]	16:34
SuperEngineer	£10 will do me fine	16:35
penguin42	yeh ok for that much	16:35
SuperEngineer	I am honoured that you approve ;)	16:38
diddledan	u/s?	16:39
SuperEngineer	unserviceable	16:39
diddledan	aah, I thought it was "uniquely scrumptious"	16:39
SuperEngineer	a.k.a.. f.. [no SuperEngineer, slap your wrist... you mustn't say that on a family friendly channel]	16:41
* SuperEngineer also celebrates having found cause of several weird & wonderful system errors & x crashes!		16:45
SuperEngineer	last update... linux headers downloaded... no linux image... fired up synaptic...	16:46
SuperEngineer	voila! linux-headers-generic ticked [installed] but linux-image-generic mysteriously unchecked!	16:47
SuperEngineer	dpownload the corresponding image, install linux-image-geric package again... all fixed! :)	16:48
SuperEngineer	...& btw, I hate working weekends [although some are made easier by silly calls and finding bargain cassetrte usb cassette players	16:51
SuperEngineer	cassetrte usb cassette players? - y'all know that don't make sense!	16:52
penguin42	yeh, it really doesn't	16:52
SuperEngineer	;)	16:53
SuperEngineer	[it first converts a cassetrte into a cassette then it transfers output to pooter - clever huh]	16:54
SuperEngineer	Tech question... the only thing not working since failed restore and forced re-install [previous home partition restored]...	17:11
SuperEngineer	...is those darn web apps	17:11
SuperEngineer	where should I look? could there be dirty keys held in seahorse [keyring]?	17:12
nucc1	hi, what TTY has the GUI?	17:17
directhex	7	17:17
nucc1	hmmm, something's wrong then :)	17:17
SuperEngineer	or to rephrase that - the keys for "Ubuntu Web Account: id 1-1" [& 1-3, 3-1, 3-1]... do these need to be removed?	17:17
nucc1	I was running dist-upgrade moving from 13.10 to 14.04	17:17
nucc1	and it's showing a black screen and the last message on it is "stopping virtual printing daemon: done", not updating.	17:18
nucc1	alt+ctrl+del to the rescue. fingers crossed the box machine still works	17:20
nucc1	:'(	17:22
maps\|wrk	:(	17:23
nucc1	the box boots and is reachable on the network, but TTY7 is just a blank screen	17:25
maps\|wrk	hm	17:29
maps\|wrk	wfresh install?	17:29
nucc1	yea, just need to scp my data off.	17:29
maps\|wrk	blank screen when sshing in is this?	17:29
nucc1	no, ssh is fine. the monitor shows a blank unless i go to a tty other than 7	17:30
nucc1	i can ping google from the device too so the networking is working and i guess everything else	17:30
nucc1	i tried restarting lightdm to no avail	17:30
maps\|wrk	probably already checked but checked logfiles for anyclues	17:31
nucc1	where would lightdm log if it failed to start?	17:33
maps\|wrk	var/log/lightdm/lightdm.log:	17:35
nucc1	easier to just copy my /home	17:41
nucc1	and install 1404 directly.	17:41
nucc1	got gigabit and a NAS so it's not a big deal.	17:41
maps\|wrk	or reinstall the desktop with apt	17:41
nucc1	it said unmet dependencies, then suggested i run: apt-get -f install, which seems to be updating loads of packages, presumably it's resuming the upgrade which failed	17:43
maps\|wrk	let it run then	17:43
maps\|wrk	:D	17:43
nucc1	gah, some complaints about gnome-settings-daemon-schemas	17:45
nucc1	i'll just go clean install route	17:45
Azelphur	My dad just got a Nexus 4 and stuck a giffgaff sim into it, paid for the £12 goodybag, but whatever he does he only seems to get a "G" connection (not 2g or 3g) and can't get any internet access out of it. Any suggestions?	18:43
penguin42	and he's enabled 3g and selected the network off the list?	18:46
Azelphur	penguin42: settings > more > mobile networks > data enabled is enabled	18:48
Azelphur	what do you mean network off the list?	18:48
awilkins	Azelphur, G is 2G	18:50
awilkins	GPRS	18:50
awilkins	H is 3G	18:50
awilkins	E is 2.5	18:50
Azelphur	awilkins: usually it says 2g, on my Nexus iirc it does	18:50
Azelphur	but yea, either way he has no internet access	18:50
awilkins	Azelphur, I have an N4 and it uses the more confusing and annoying acronym names	18:50
Azelphur	fun	18:51
awilkins	The thing about GiffGaff is they sell reserve capacity of o2s network	18:51
daftykins	Azelphur: APN or being stuck on 2G	18:51
penguin42	Azelphur: on my phone I can chose the network	18:51
Azelphur	daftykins: I set all the APN details	18:51
* penguin42 boots his phone		18:51
Azelphur	actually I just had a thought, he's in wales...does that break shit?	18:51
daftykins	yep if he's down in a valley	18:52
awilkins	Wales has lots of mountains and stuff	18:52
Azelphur	nah he's got signal	18:52
penguin42	Azelphur: wth did you have to screw around with apn settings?	18:52
daftykins	likely won't get more than 2G in a valley though mate	18:52
Azelphur	and my mum on a different network has 5 bars of HSDPA, so he's in a reasonably populated area	18:52
Azelphur	penguin42: we followed a youtube video from giffgaff detailing the APN settings	18:52
awilkins	If he has signal the local router might just be borked if he has no network access	18:52
Azelphur	daftykins: he doesn't have any connection at all though, despite it saying 2g, he has no internet access	18:52
penguin42	Azelphur: weird, I've not had to do that in the last 10 years	18:52
awilkins	penguin42, have most of your phones been provider ones?	18:53
daftykins	oh i see	18:53
daftykins	factory reset?	18:53
daftykins	https://www.dropbox.com/sh/fz006ibpbygcj3y/AACw5Fqaal0DQqRW66-yis8-a	18:53
daftykins	i was in a valley today and got stuck on EDGE	18:53
Azelphur	daftykins: it's a fairly new phone already mostly default	18:53
awilkins	Azelphur, The OS has the APN settings for GiffGaff in it AFAIK	18:53
daftykins	but just look at those prawn sarnies and pint of ale 8D	18:53
penguin42	Azelphur: wireless settings-mobile network settings-network operators ?	18:53
Azelphur	awilkins: yea, by default it was set to O2	18:53
maps\|wrk	dafty!	18:53
daftykins	maps o/	18:54
penguin42	awilkins: Well I'm on Cyanogen so I don't think that's relevant	18:54
maps\|wrk	:D	18:54
maps\|wrk	10pm swan fun?	18:54
maps\|wrk	or whenever youre free	18:54
Azelphur	and O2 are behind the scenes for giffgaff	18:54
maps\|wrk	:D	18:54
daftykins	lol	18:54
awilkins	Azelphur, I don't recall having to do anything scary with it apart from configuring which network it was on... there's also a thing where you can get them to send you a text with the APN settings in that magically sets them for you	18:54
daftykins	yeah hopefully in a bit mate, just relaxing atm	18:54
maps\|wrk	cool:D	18:54
daftykins	i've asked in their channel	18:54
daftykins	someone replied at mid-day today after that situ last night XD	18:55
Azelphur	awilkins: yea I thought there was that, I wonder where that is	18:55
awilkins	Azelphur, But network access on GiffGaff has sometimes been a bit patchy for me so if you only just got it set up I might be inclined to see if there were any outages	18:55
Azelphur	perhaps the youtube video was outdated	18:55
Azelphur	awilkins: has been a couple days with issues	18:55
awilkins	Azelphur, That's not atypical. Sometimes they go through a day or so of sending the same SMS message to me 2-5 times	18:55
Azelphur	fun	18:55
awilkins	Although that was cleared with a "manual roam"	18:55
awilkins	Which does sound fun :-)	18:56
awilkins	In general I'm happy with them for a service	18:56
awilkins	I get a 1GB package with tethering for £10 a month which I can't complain about	18:56
SuperEngineer	wee-hee - busy copying cassettes to pooter with newly purchased £10 usb cassette player	18:57
awilkins	And I can only recall one occasion when the network service failed and left me in a tight spot (couldn't pay for my parking with the phone app)	18:57
awilkins	Compared to Vodafone they are the Super Happy Fun Band	18:57
Azelphur	awilkins: found the number for giffgaff, supposedly SETTINGS to 2020, so checking that out	18:58
daftykins	SuperEngineer: cassette O_O what treasures lie on those? :)	18:58
SuperEngineer	[as to "Windows conversion software supplied" well - errrmmm!	18:58
SuperEngineer	daftykins: Twin Peaks, HHGTTG et al	18:58
awilkins	(Vodafone outright lied to me and sold me a plan with no data after I spent 10 minutes explaining to them that I barely made calls or sent texts but I did need data... and then charged me £1 a day every day I used the network. Scummers)	18:58
SuperEngineer	...it is supplied with acopy of windows program - something called Audacity :D	18:59
awilkins	It was worth the £70 residual on my contract just to get the filthy stink of Vodafone's SIM card out of my phone.	18:59
daftykins	SuperEngineer: :D ooooh VHS?	18:59
SuperEngineer	daftykins: not VHS [tho I still have a few vid tapes around awaiting - these are audio	19:00
daftykins	ah right, i'd have found it easier to source elsewhere in superior quality :D	19:01
daftykins	Twin Peaks soundtrack \o/	19:01
SuperEngineer	Twin Peaks = ultimate brain warp = /me	19:01
SuperEngineer	;)	19:01
daftykins	time to try this yorkshire tea i bought	19:02
penguin42	eeeh lad	19:04
SuperEngineer	by guum - be a good brew me lad	19:05
=== jpds_ is now known as jpds
SuperEngineer	[though my slightly cooled bottle of beer is better] :D	19:05
=== jpds is now known as Guest68453
SuperEngineer	looks my cassettes are soon to heard in my ears again :D total cost £9.99	19:09
=== Guest68453 is now known as jpds_
SuperEngineer	oi jpds_ ... make ya mind upo pretty please ;)	19:11
SuperEngineer	[& hi]	19:12
jpds_	SuperEngineer: Oi, it says my nick is unavailable.	19:12
daftykins	hehe	19:12
daftykins	jpds_: do you have some time for some strongswan fun at all? me and maps were working on it last night	19:12
SuperEngineer	jpds_: idea... change your nick to nick - get your revenge	19:13
jpds_	daftykins: Yep.	19:13
daftykins	jpds_: excellent :D here's what the client log showed - http://paste.ubuntu.com/7822608/	19:13
jpds_	daftykins: You'd have to check what the server says.	19:14
daftykins	jpds_: pretty much identical, it's almost as though we need to specify key type or tell it in the client config to send the certificate?	19:15
jpds_	daftykins: Also, why are you shoving your certs and keys directly in /etc/.	19:15
daftykins	jpds_: basically i put them in /etc/ipsec.d/<folders> to start and kept seeing apparmor messages about DENIED, so wasn't sure if it was being grumpy	19:15
daftykins	i shuffled them about and it made no odds	19:16
jpds_	Well, apparmor says it's sitting in /etc/.	19:16
jpds_	daftykins: Can I see your config?	19:16
daftykins	sure 2 mins	19:17
jpds_	daftykins: The server shoudl say something else in it's logs.	19:18
daftykins	maps\|wrk: ^	19:18
daftykins	jpds_: http://paste.ubuntu.com/7826510/	19:19
maps\|wrk	jah	19:20
maps\|wrk	]do i need to show any logs or config	19:20
daftykins	maps\|wrk: yeah can you paste some of /var/log/syslog that shows up when i try to connect?	19:20
daftykins	lemme make an attempt so you get fresh logs	19:21
daftykins	in fact on boot mine probably did already	19:21
maps\|wrk	oke 2sec	19:21
daftykins	there we go, 20:21:46 attempt	19:22
maps\|wrk	gots it	19:22
maps\|wrk	:D	19:22
maps\|wrk	:)	19:22
maps\|wrk	more gifts for jpds_ http://paste.ubuntu.com/7826523/	19:22
jpds_	Erm, what does the server's config look like?	19:23
daftykins	line 8 looks like the ticket	19:23
maps\|wrk	sec	19:23
maps\|wrk	jpds_: http://paste.ubuntu.com/7826528/	19:24
maps\|wrk	followed the pdf exactly i thought	19:24
jpds_	OK, and you're using a common CA?	19:25
jpds_	I would move the certs and keys to /etc/ipsec.d/{certs,private}/	19:26
jpds_	Just to keep apparmor happy.	19:27
daftykins	will do, certainly made no odds last time	19:27
maps\|wrk	so is my end ok jpds_ ?	19:28
jpds_	maps\|wrk: Did you give daftykins a key and cert that were signed by your CA?	19:29
daftykins	yip ^	19:29
daftykins	i obtained them from maps and popped them into my folders	19:29
maps\|wrk	yep	19:29
diddledan	firewall/router	19:30
daftykins	i'm certainly behind NAT, but maps has his box DMZ'd	19:30
jpds_	daftykins: In your ipsec.conf, can you edit rightsourceip so it has a ',' instead of a ';' ?	19:30
daftykins	wilco	19:31
diddledan	oh, you're both running that same config?	19:31
daftykins	i'm the client, he's the server	19:31
daftykins	jpds_: hang on i don't have that field at all - is that for the server side?	19:31
maps\|wrk	rightsourceip should have my IP dafty thought we had that?	19:32
maps\|wrk	oh no maybe not	19:32
daftykins	maps\|wrk: it's yours that needs the semi colon changed then mate	19:32
jpds_	maps\|wrk: Ah, that's for you.	19:32
maps\|wrk	aha	19:33
maps\|wrk	:D	19:33
maps\|wrk	so what do i change	19:33
maps\|wrk	after 24?	19:33
jpds_	maps\|wrk: line 18.	19:33
jpds_	...of http://paste.ubuntu.com/7826528/	19:33
maps\|wrk	done	19:33
maps\|wrk	24,fe3	19:33
maps\|wrk	restarted strongswan	19:34
daftykins	ok check your logs, i saw a retransmit this time	19:35
maps\|wrk	ok moment	19:35
maps\|wrk	http://paste.ubuntu.com/7826569/	19:36
maps\|wrk	same :<	19:36
diddledan	maps\|wrk: change left= to your 192 address rather than the hostname which I assume is resolving to a public address	19:37
daftykins	ok and i had differences - http://paste.ubuntu.com/7826580/	19:37
maps\|wrk	so	19:38
maps\|wrk	left=192.16.0.2	19:38
diddledan	I belive you're missing an 8	19:38
maps\|wrk	ah yea	19:38
daftykins	:D	19:38
maps\|wrk	but done with the 8	19:38
maps\|wrk	:P	19:38
daftykins	reloaded and ready for retry?	19:38
maps\|wrk	and restarted again	19:38
maps\|wrk	yep	19:38
daftykins	oh hello, lots more this time	19:39
maps\|wrk	http://paste.ubuntu.com/7826598/	19:39
daftykins	http://paste.ubuntu.com/7826599/	19:39
daftykins	haha sequential! \o/	19:39
maps\|wrk	10[IKE] IKE_SA deleted	19:39
maps\|wrk	Jul 20 20:38:57 frogs charon: 10[CFG] lease 10.0.1.1 by 'C=UK, O=Example Ltd., CN=client' went offline Jul 20 20:38:59 frogs radvd[2523]: attempting to reread config file Jul 20 20:38:59 frogs radvd[2523]: resuming normal operation	19:39
maps\|wrk	client went offline hm	19:40
maps\|wrk	hahaha yea	19:40
maps\|wrk	Jul 20 20:38:57 vaiotz charon: 09[IKE] no trusted ECDSA public key found for 'C=UK, O=Example Ltd., CN=frogs.zapto.org' could that be why	19:40
jpds_	maps\|wrk: Think daftykins needs a copy of the ca cert.	19:40
maps\|wrk	ah i thought that could be what it is	19:40
daftykins	ooh a third file	19:40
maps\|wrk	ok	19:40
maps\|wrk	i wasnt sure	19:40
maps\|wrk	gwCert.der ?	19:41
maps\|wrk	no	19:41
jpds_	Yep.	19:41
maps\|wrk	caCert.der ?	19:41
diddledan	make sure the key isn't in it	19:41
maps\|wrk	which file :\|	19:41
daftykins	gw	19:41
diddledan	caCert.der	19:41
jpds_	maps\|wrk: That one.	19:42
daftykins	oh. heh	19:42
daftykins	will i want this one in /etc/ipsec.d/cacerts/ ?	19:42
daftykins	silly question i know :>	19:42
diddledan	yes	19:42
maps\|wrk	ok	19:42
maps\|wrk	its there now	19:42
maps\|wrk	got the url still daftykins ?	19:42
daftykins	errrr	19:43
maps\|wrk	https://frogs.zapto.org/~mark/swan/	19:43
maps\|wrk	:D	19:43
daftykins	yeah i can make it up from memory	19:43
daftykins	or click that \o/	19:43
maps\|wrk	heh	19:43
maps\|wrk	if i dont respond say my nick so it flashes my browser :D	19:44
maps\|wrk	have to do a bit of work now and again ya know	19:44
maps\|wrk	:)	19:44
daftykins	i am connected \o/	19:44
maps\|wrk	yay	19:44
maps\|wrk	:D	19:44
daftykins	ok let me fiddle with the networking	19:45
daftykins	see what's working	19:45
maps\|wrk	jpds_: can i use this config for a windows7 machine? i read win7 doesnt support ecdsa	19:45
maps\|wrk	ah yea check it all works fine good idea	19:45
daftykins	i'm a bit confused as to how this malarkey works now then, i don't get an interface, i don't get any network routes...	19:46
maps\|wrk	hmm	19:46
daftykins	"ipsec statusall" tells me i'm 10.0.1.1	19:46
maps\|wrk	should you have?	19:46
maps\|wrk	i know that with openvpn you get a new interface	19:46
daftykins	i don't have a clue how this setup works :)	19:46
maps\|wrk	is everything going through my vpn now or nothing lol	19:47
jpds_	No interfaces with ipsec.	19:47
maps\|wrk	jpds_: what about my windows7 question please:D	19:47
jpds_	maps\|wrk: Never used Windows with this before..	19:47
maps\|wrk	thanks	19:47
maps\|wrk	and iOS?:)	19:47
maps\|wrk	or also never	19:47
jpds_	There's: https://wiki.strongswan.org/projects/strongswan/wiki/Win7Config	19:47
maps\|wrk	but where would we put the cert/key and cacert:\|	19:47
maps\|wrk	have to make them into a .p12 ?	19:48
jpds_	daftykins: sudo ip xfrm policy	19:48
jpds_	maps\|wrk: https://wiki.strongswan.org/projects/strongswan/wiki/IOS_%28Apple%29	19:49
maps\|wrk	ive read all those lots of times :D	19:49
maps\|wrk	but where would we put the cert/key and cacert?? am i right about this p12 ..sure i read that	19:49
daftykins	looks like my traffic has definitely changed, as pinging google is dead :D	19:50
jpds_	maps\|wrk: Probably, I used this for my android phone: http://danielpocock.com/strongswan-debian-rhel-fedora-with-android-client	19:50
jpds_	daftykins: It's all going via maps\|wrk's box.	19:50
daftykins	http://paste.ubuntu.com/7826657/	19:51
jpds_	maps\|wrk: Did you put the masquerade rule in/	19:51
daftykins	should i be able to ping an IP at his end? i'm not even sure what that'd be	19:51
daftykins	looks like a no, or maybe the IP forwarding isn't up	19:52
maps\|wrk	hmm jpds_ nope didnt do any ipforward or iptables..i thought we wouldnt need to as the box is setup as the DMZ?	19:52
daftykins	as i can't ping 8.8.8.8	19:52
maps\|wrk	aha	19:52
maps\|wrk	so i need ipforwarding	19:52
daftykins	maps\|wrk: cat /proc/sys/net/ipv4/ip_forward	19:52
daftykins	0 or 1?	19:52
maps\|wrk	1	19:53
maps\|wrk	mark@frogs:/etc/ipsec.d/cacerts$ cat /proc/sys/net/ipv4/ip_forward 1 mark@frogs:/etc/ipsec.d/cacerts$	19:53
daftykins	cool, just need those iptables masquerade rules then	19:53
jpds_	maps\|wrk: you also need the nat masquerade rules in the slides.	19:53
maps\|wrk	oh	19:53
maps\|wrk	ok 2sec	19:53
maps\|wrk	i didnt realise oops	19:53
daftykins	that's a bad maps!	19:56
daftykins	i thought we got to that with the convo last night :>	19:56
maps\|wrk	wlan0 then for me not eth0 yea?	19:56
daftykins	if that's your home machines active interface ja	19:56
maps\|wrk	done!	19:57
daftykins	holy moly i can ping google now	19:57
daftykins	by IP	19:57
daftykins	and by host	19:57
maps\|wrk	:D	19:57
daftykins	plus i have pings consistent with going over via your connection	19:57
daftykins	vewy gewd	19:58
maps\|wrk	how cna you tell because the ms is longer?	19:58
daftykins	jpds_: thanks for your assistance :>	19:58
daftykins	yep	19:58
maps\|wrk	so whatismyip.com shows my ip?	19:58
daftykins	60-110 it came up with	19:58
foobarry	hmm. plugged in 2 disks in slots 3 & 4 on my microserver but they appear as sda and sdb. thought they would be sdc and sdd	19:58
jpds_	daftykins: No worries.	19:58
maps\|wrk	thanks jpds_	19:58
daftykins	jpds_: would it make more sense for security to use other forms vs ECDSA?	19:59
daftykins	as in would others be better?	19:59
maps\|wrk	daftykins: can you fireup ffox and see	19:59
daftykins	foobarry: ah the ol' pesky order switcharoo	19:59
maps\|wrk	just wondering if its all going via the vpn	19:59
maps\|wrk	i assume so as its not a split tunnel	19:59
foobarry	daftykins: bit nervous about adding disks later	20:00
daftykins	foobarry: you just mount via UUIDs instead of device names though eh	20:00
jpds_	daftykins: That's a question for a crypto expert.	20:00
daftykins	maps\|wrk: yeah i'm on the sofa with my laptop SSH'd to the laptop i'm VPN'd via though XD	20:00
maps\|wrk	:D	20:00
maps\|wrk	should everything be going via my vpn now jpds_ ?	20:01
daftykins	i tried to be lazy by installing lynx, but for some reason it gave me a 403 on whatismyip.com 0o	20:01
maps\|wrk	haha	20:01
jpds_	maps\|wrk: Yep.	20:01
maps\|wrk	next step is get it working on ios	20:01
maps\|wrk	openvpn worked fine except for the issue ive mentioned so many times	20:02
maps\|wrk	:<	20:02
jpds_	maps\|wrk: Because you have 0.0.0.0/0 as the subnet.	20:02
maps\|wrk	and i can use it to watch bbc iplayer when on holiday :DDD	20:02
daftykins	hahaha	20:02
daftykins	well i suppose i'll just have to get up and use a browser	20:03
maps\|wrk	lol	20:03
daftykins	yep IP is yours	20:04
maps\|wrk	:DDDD	20:04
daftykins	what incriminating activities can i... er i mean hi :D	20:04
maps\|wrk	lol	20:04
maps\|wrk	another question	20:05
maps\|wrk	is it possible jpds_ or anyone to make the vpn users use a specific http proxy say i run a squid proxy on the same vpn machine could i make them use tyhat	20:06
maps\|wrk	just so i coukd control what can be visited through acls	20:06
maps\|wrk	couldnt with openvpn	20:06
maps\|wrk	probably cant	20:06
jpds_	maps\|wrk: Yeah, you'd have to tweak the iptables rules so it REJECTs normal HTTP traffic.	20:06
jpds_	maps\|wrk: But it allows traffic to the proxy port.	20:06
maps\|wrk	but that would rely on the user manually setting their browser to use the proxy if im understand right?	20:07
maps\|wrk	*understanding	20:07
jpds_	maps\|wrk: Yep.	20:07
jpds_	maps\|wrk: Or.	20:07
jpds_	maps\|wrk: You set a masquerade rule so that all port 80 traffic is forced to the proxy port transparently.	20:08
maps\|wrk	ah	20:08
maps\|wrk	thanks very much jpds_	20:08
jpds_	No worries.	20:08
maps\|wrk	successful day:D	20:10
daftykins	guess i better remove that software / work out how to reconfigure it without autostart 8D	20:11
maps\|wrk	:D	20:11
maps\|wrk	isnt it a vmu made just for this]	20:12
maps\|wrk	or was it a diff machine i forget	20:12
daftykins	nah i switched to a laptop in the end	20:12
maps\|wrk	ah ya	20:12
jpds_	daftykins: Change your auto= config to add.	20:13
daftykins	"auto=add" hmm, ok that doesn't make any sense to me XD	20:13
daftykins	i'd have expected "auto=off" or something :D	20:14
maps\|wrk	=]	20:14
maps\|wrk	adds it but isnt acive	20:14
daftykins	i remember being in a job where some guy was going to spend thousands on some hardware VPN equipment, i was going to suggest just two old boxes at either end running VPN software	20:15
daftykins	other end being in Monaco	20:15
jpds_	daftykins: And now we have strongswan and two Ubuntu VMs.	20:16
maps\|wrk	:D	20:17
daftykins	>:D	20:17
daftykins	there must be some reason why some would still prefer hardware over that though	20:17
maps\|wrk	my machine (frogs) is like a 12year old dell	20:17
maps\|wrk	sounds like a plane taking off at times when you do anything (i linked the sound remember daftykins :P) but it does the job	20:17
* penguin42 did use a pair of Cisco PIX boxes for one VPN, but that was to somewhere very remote where I wasn't sure if I could ever get anyone to help deal with it and it HAD to work		20:17
maps\|wrk	only prob is sometimes have to turnit off at night because its so loud (its in my room)	20:17
daftykins	maps\|wrk: oh yeah did you ever get around to investigating that?	20:18
jpds_	daftykins: Lack of knowlegde it exists in my experience.	20:18
maps\|wrk	took it all apart and cleaned it out,.absolutely disgusting amounts of dust in it	20:18
maps\|wrk	but never managed to figure out what was making it so loud	20:18
awilkins	Bearings?	20:19
maps\|wrk	turned the fans off and it wasnt that ..could be the PSU maybe?	20:19
maps\|wrk	awilkins: bearings?	20:19
awilkins	On the fans	20:19
daftykins	in fans	20:19
awilkins	If it makes a noise with no fans on, then it might be coil hum	20:20
awilkins	I had a laptop that started off driving me insane unless I turned the CPU power saving off	20:20
awilkins	THen it started driving me insane all the time. I had the motherboard replaced and that cured it	20:21
awilkins	WAs the power regulation components for the CPU	20:21
maps\|wrk	can i check that awilkins ?	20:22
awilkins	maps\|wrk, Only checks I can think of that would show that up would be i) doing different workloads and seeing if the noise changes	20:22
daftykins	good ol' EMI	20:23
awilkins	ii) Changing the CPU freq / power saving settings in the BIOS and seeing if that changes	20:23
daftykins	i had a Dell with a heartbeat, that used to get irritating if wearing headphones	20:23
maps\|wrk	yea it does..when its compiling its noisy..idle it hardly is	20:23
awilkins	THere you go	20:23
penguin42	my desktop is starting to have workload dependent noise; very odd - I think after I changed the PSU	20:23
daftykins	penguin42: ah i have that with an Antec PSU :) it tweets under load	20:23
awilkins	If there are "spread spectrum" settings in the BIOS they may help if you enable them	20:24
awilkins	Although they tend to be on by default (turning them off is an overclockers option because it makes your system marginally more stable at the cost of more EMI)	20:24
awilkins	You could test it on another PSU	20:25
awilkins	I've even heard tales of things like blobbing hot glue on coils curing it	20:25
penguin42	daftykins: Weird isn't it	20:26
maps\|wrk	spread spectrum setings?	20:26
* penguin42 has never heard the spread spectrum stuff causing audible things		20:26
awilkins	maps\|wrk, They smooth some of the timing clock signal curves out a bit	20:26
penguin42	they're hacks to get around some RF emission regulation	20:26
awilkins	Which reduces interference emitted by your computer	20:26
awilkins	as penguin42 says, to comply with American regulations	20:27
penguin42	EU I thought	20:27
* awilkins shrugs		20:27
penguin42	awilkins: Unfortunately it doesn't actually reduce it - it spreads it out	20:27
awilkins	A suggestion I've just seen is using a little paper tube to localize the sound by listening to your motherboard with it...	20:28
penguin42	awilkins: The reg says something like that it shouldn't have any peak of more than a certain amount; so it's spread out over a few frequencies	20:28
awilkins	Anyway ; best hope for a cure is if it's a coil	20:29
awilkins	Where you can glue the loops together (or use paraffin wax, which is apparently what the manufacturers use)	20:29
awilkins	Otherwise... no idea.	20:30
maps\|wrk	so what should i do?! take a fan apart?	20:31
* penguin42 doubts it's the fan		20:31
maps\|wrk	PSU?	20:31
awilkins	I say do the paper tube trick	20:32
awilkins	Set it compiling and listen to the innards with a paper tube to see where the sound is localized	20:32
maps\|wrk	i took the whole thing apart and tried to work out where sound came from and couldnt tell	20:32
awilkins	It's hard with high pitched noises	20:33
awilkins	Hence the tube	20:33
awilkins	Roll up a sheet of A4 into something like a fat pencil and aim it at specific components	20:33
maps\|wrk	could it be the PSU?	20:34
awilkins	It could be, there are things in the PSU that can vibrate	20:34
maps\|wrk	yea it does make a noise with no fans on i disconnected the fans -0 when yoiu say coils and bearings what would i do?	20:35
awilkins	Bearings are the parts of the fan where the axle meets the mount	20:35
awilkins	So if the noise happens with the fans still, it's not the bearings	20:35
maps\|wrk	ah	20:36
maps\|wrk	and the coil?	20:36
awilkins	If it's coils, you could try the hot glue or paraffin wax tricl	20:36
maps\|wrk	coils of what tho how do i get to them	20:36
awilkins	The noise will be from the metal coil ringing like a bell	20:36
awilkins	They look like a metal coil!	20:36
awilkins	They're some of the bits that regulate voltage	20:37
awilkins	Which is why the power consumption of the CPU can make them ring / whine / buzz	20:37
awilkins	By making the magnetic field in them fluctuate	20:37
awilkins	If you dampen the vibration the noise may stop	20:37
maps\|wrk	is this in the PSU?	20:38
awilkins	I think PSUs have them inside but I've never opened one	20:38
awilkins	You see them on motherboards too	20:38
awilkins	I'd be wary of opening PSUs	20:38
awilkins	They have nasty voltages in them	20:38
maps\|wrk	yea they're mad dangerous	20:38
maps\|wrk	so what are these coils :D im confused where they are	20:39
awilkins	Not as bad as an old style CRT monitor	20:39
awilkins	But still not good	20:39
awilkins	These things : http://img.techpowerup.org/090218/Coil2.jpg	20:39
maps\|wrk	ah	20:40
maps\|wrk	i dont think itll be that i can link to the sound if you want	20:40
maps\|wrk	its pretty noisy	20:40
awilkins	Yeah, put the link in	20:40
daftykins	be warned, last time his link finishes playing then quickly starts playing music	20:45
daftykins	;D	20:45
javo	Hi there. I've got an issue with my 14.04	20:45
daftykins	ask away!	20:46
javo	It was working fine, but lately i've installed an ubuntu-base package, and then I dunno why, lost network, graphic card, and audio	20:47
javo	in the graphics, it doesn't show the intel, that I had, but another... in sound, it says configuration for torpes (?) and no trace of the network	20:49
javo	is there a way to restore it?	20:50
daftykins	what package did you install?	20:50
javo	to come back to a previous state, i-e?	20:50
maps\|wrk	torpes?	20:51
javo	Not shure. Just the recomended actualizations it said base-ubuntu	20:51
javo	yep torpes in the sound	20:52
maps\|wrk	awilkins: cant find it atm, the machine i was on about was my old dell desktop..but my old dell laptop (1501) ALSO has a sound issue - it works fine..boots up etc it has xubuntu/.centos on it..BUT has a hideous sound all the time making it unusable	20:52
maps\|wrk	https://soundcloud.com/mapito/pc	20:52
maps\|wrk	took it apart etc cant figure out what it was with this either, any ideas?	20:52
javo	now i'm accesing the net from a 13.04 system in an extraible device, but also dunno if I can acces the crashed 14.04 from here	20:53
javo	or at least reconfigure the network for doing step by step from there	20:54
javo	da	20:57
javo	daftykins: any suggestion?	20:58
maps\|wrk	gah hes gone	21:20
javo	:(	21:20
maps\|wrk	;[	21:27
maps\|wrk	could u not reinstall ubuntu base again using apt?	21:27
daftykins	javo: what's your native language?	21:30
javo	daftykins: spanish	21:32
daftykins	tried #ubuntu-es ?	21:32
javo	i'll do it	21:33
javo	thnx	21:33
maps\|wrk	:D	21:33
maps\|wrk	couldnt he just reinstall base packafge	21:33
javo	maps: but I have not network access now	21:35
maps\|wrk	ahh	21:35
maps\|wrk	what about mounting the cd as the apt repo and installing off that@	21:35
javo	explain me that please?	21:37
maps\|wrk	moment il find a link	21:37
maps\|wrk	https://help.ubuntu.com/community/AptCdrom	21:38
maps\|wrk	i think that could help?	21:38
javo	that way i could reinstall that base package?	21:39
maps\|wrk	i think so yea	21:39
maps\|wrk	using the cd as an apt source	21:40
javo	I'll try	21:40
maps\|wrk	:D	21:40
javo	Thank you!	21:41
maps\|wrk	sudo apt-get install --reinstall packagename	21:41
maps\|wrk	oh done already?	21:41
maps\|wrk	hope it worked:D	21:43
javo	not yet. I must go buy some dvd and burn the image as mine is damaged. :/	21:46
maps\|wrk	aha	21:46
maps\|wrk	sudo apt-get -f install sudo dpkg --configure -a - then sudo apt-get install --reinstall	21:47
maps\|wrk	let me know if it works after	21:47
javo	of course!	21:48
maps\|wrk	;]	21:48
javo	i am just a bit to changing to fedora for this issue!	21:49
maps\|wrk	:)	21:50
maps\|wrk	not used fedora for ages	21:50
maps\|wrk	wow, watching channel 5 black market britain..and wow never knew jin ling cigarettes are made in russia..and are only sold illegally	21:57
maps\|wrk	cigarettes made to be smuggled lol	21:57
maps\|wrk	It has been reported by customs officials as the "most seized" brand in Europe;[1] in 2007, 258 million Jin Ling cigarettes were seized by authorities in EU countries.[4]!	21:58
maps\|wrk	258 million!	21:58
daftykins	https://www.dropbox.com/s/l6cc3wo4e9bma4d/Screenshot_2014-07-20-23-39-32.png	22:42
daftykins	O_O	22:42
penguin42	looks a bit cold over there....	22:46
penguin42	http://www.bbc.co.uk/weather/2643123 :-)	22:47
daftykins	D:	22:49
daftykins	i'm not jealous one bit, i can't cope as it is	22:49
penguin42	indeed, it is a bit warm	22:50
maps\|wrk	yea	22:51
maps\|wrk	its horrible sleeping in this hot and sticky weather	22:51
maps\|wrk	wakeup a few times each night when its super sticky and humid:(	22:52
daftykins	>_<	22:53
daftykins	even my cat has stopped sleeping beside me	22:53
penguin42	falling asleep on the top of the bed seems better	22:53
maps\|wrk	yea i dont use the duvet or anything, way toooo hot for that	22:53
maps\|wrk	cant open my windows either..not on a main road but its a cut through and gets busy enough	22:53
daftykins	https://www.dropbox.com/s/rswy13k3ohu7206/IMG_20140720_122618.jpg	22:54
daftykins	speaking of, she now has her new electronic flap!	22:54
daftykins	and she's too afraid of it to use it either way =\|	22:54
maps\|wrk	electronic eh!	22:58
maps\|wrk	fancy	22:58
daftykins	yeah it's pretty cool, when she sticks her head in the tunnel at the other end it reads her microchip, checks her ID and unlocks for her only	22:59
daftykins	i saw her try... but the click of the mechanism made her run off	22:59
penguin42	perhaps a tasty morsel is needed to get her to try again	23:01
daftykins	i only know her dried food, not sure what would be more tempting	23:01
daftykins	i did get her to go out through it by holding it open	23:02
maps\|wrk	thats quite cool microchip this checking her id electric cat flaps	23:03
maps\|wrk	when we had a cat there was none of this :D	23:03
daftykins	^_^	23:04
penguin42	sorry, I've just had a vision of a high security access door where you have to hold your cat up to it to get in	23:04
daftykins	do you mean you have to paws at the door?	23:05
penguin42	ouch	23:06
daftykins	;D	23:07
maps\|wrk	heh	23:10
maps\|wrk	http://www.breedersonline.co.uk/photos/1a/2315x_1.jpg	23:12
maps\|wrk	thats what i want	23:12
daftykins	that address concerned me	23:13
daftykins	is that some kinda micro breed 0o	23:13
maps\|wrk	russian blue kittens!	23:13
maps\|wrk	https://en.wikipedia.org/wiki/Russian_Blue	23:13
directhex	https://en.wikipedia.org/wiki/Siberian_(cat)	23:14
maps\|wrk	cute	23:15
maps\|wrk	https://en.wikipedia.org/wiki/Havana_Brown	23:15
directhex	bedtime. earl;y start tomorrow	23:15
maps\|wrk	russian blues a re nice	23:16
maps\|wrk	:D	23:16
maps\|wrk	https://en.wikipedia.org/wiki/Russian_Blue#mediaviewer/File:RusoAzul4m.JPG	23:16
maps\|wrk	meow	23:16
daftykins	directhex: o/	23:17

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!