mapps | yo | 06:06 |
---|---|---|
SuperMatt | I'm getting a 500 error while going to iplayer | 07:34 |
SuperMatt | ah, it's gone now | 07:34 |
SuperMatt | phew | 07:34 |
SuperMatt | I thought the world was ending | 07:34 |
SuperMatt | oh no, it really is struggling this morning | 07:35 |
foobarry | anyone know of cheap powerline adapters that don't die after one year? | 07:45 |
=== Lcawte|Away is now known as Lcawte | ||
directhex | iplayer's been down for 2 days here | 08:59 |
Myrtti | http://www.bbc.co.uk/news/uk-28388585 | 09:05 |
=== Lcawte is now known as Lcawte|Away | ||
brobostigon | morning boys and girls. | 09:29 |
gebbione | is test -x /usr/sbin/anacron supposed to show/echo a value? | 10:55 |
foobarry | anyone know why i am getting too many authentication failures using password ssh in 14.04 server? | 12:02 |
foobarry | some weird default> | 12:02 |
foobarry | ? | 12:02 |
foobarry | oh, told my client not to do pubkey | 12:07 |
foobarry | weird | 12:07 |
MartijnVdS | but.. pubkey > password security | 12:08 |
MartijnVdS | as long as you're not insane and keep a passphrase on the key | 12:08 |
foobarry | this is first time connection | 12:09 |
foobarry | so keys will come later | 12:09 |
awilkins | Maybe someone cracked the account already, or is brute forcing it | 12:40 |
awilkins | Is this machine visible from teh Internets? | 12:41 |
awilkins | My router fields many, many attempts to crack it on a daily basis (even though it no longer accepts password auth) | 12:41 |
* penguin42 hopes his doesn't have to take any auth from the outside world | 12:43 | |
diddledan | morning | 15:42 |
* penguin42 yaaawwwwnnns | 15:43 | |
* SuperEngineer smiles - found a cheap portable USB cassette player to put some prize cassettes into mp3 | 16:31 | |
penguin42 | it had better be cheap if it was easier than plugging in an old casette recorder to the audio in | 16:32 |
SuperEngineer | penguin42: it was 9.99 - & old cassette player is slightly u/s [unless you can find me a new drive band for it!] | 16:34 |
SuperEngineer | £10 will do me fine | 16:35 |
penguin42 | yeh ok for that much | 16:35 |
SuperEngineer | I am honoured that you approve ;) | 16:38 |
diddledan | u/s? | 16:39 |
SuperEngineer | unserviceable | 16:39 |
diddledan | aah, I thought it was "uniquely scrumptious" | 16:39 |
SuperEngineer | a.k.a.. f.. [no SuperEngineer, slap your wrist... you mustn't say that on a family friendly channel] | 16:41 |
* SuperEngineer also celebrates having found cause of several weird & wonderful system errors & x crashes! | 16:45 | |
SuperEngineer | last update... linux headers downloaded... no linux image... fired up synaptic... | 16:46 |
SuperEngineer | voila! linux-headers-generic ticked [installed] but linux-image-generic mysteriously unchecked! | 16:47 |
SuperEngineer | dpownload the corresponding image, install linux-image-geric package again... all fixed! :) | 16:48 |
SuperEngineer | ...& btw, I *hate* working weekends [although some are made easier by silly calls and finding bargain cassetrte usb cassette players | 16:51 |
SuperEngineer | cassetrte usb cassette players? - y'all know that don't make sense! | 16:52 |
penguin42 | yeh, it really doesn't | 16:52 |
SuperEngineer | ;) | 16:53 |
SuperEngineer | [it first converts a cassetrte into a cassette then it transfers output to pooter - clever huh] | 16:54 |
SuperEngineer | Tech question... the only thing not working since failed restore and forced re-install [previous home partition restored]... | 17:11 |
SuperEngineer | ...is those darn web apps | 17:11 |
SuperEngineer | where should I look? could there be dirty keys held in seahorse [keyring]? | 17:12 |
nucc1 | hi, what TTY has the GUI? | 17:17 |
directhex | 7 | 17:17 |
nucc1 | hmmm, something's wrong then :) | 17:17 |
SuperEngineer | or to rephrase that - the keys for "Ubuntu Web Account: id 1-1" [& 1-3, 3-1, 3-1]... do these need to be removed? | 17:17 |
nucc1 | I was running dist-upgrade moving from 13.10 to 14.04 | 17:17 |
nucc1 | and it's showing a black screen and the last message on it is "stopping virtual printing daemon: done", not updating. | 17:18 |
nucc1 | alt+ctrl+del to the rescue. fingers crossed the box machine still works | 17:20 |
nucc1 | :'( | 17:22 |
maps|wrk | :( | 17:23 |
nucc1 | the box boots and is reachable on the network, but TTY7 is just a blank screen | 17:25 |
maps|wrk | hm | 17:29 |
maps|wrk | wfresh install? | 17:29 |
nucc1 | yea, just need to scp my data off. | 17:29 |
maps|wrk | blank screen when sshing in is this? | 17:29 |
nucc1 | no, ssh is fine. the monitor shows a blank unless i go to a tty other than 7 | 17:30 |
nucc1 | i can ping google from the device too so the networking is working and i guess everything else | 17:30 |
nucc1 | i tried restarting lightdm to no avail | 17:30 |
maps|wrk | probably already checked but checked logfiles for anyclues | 17:31 |
nucc1 | where would lightdm log if it failed to start? | 17:33 |
maps|wrk | var/log/lightdm/lightdm.log: | 17:35 |
nucc1 | easier to just copy my /home | 17:41 |
nucc1 | and install 1404 directly. | 17:41 |
nucc1 | got gigabit and a NAS so it's not a big deal. | 17:41 |
maps|wrk | or reinstall the desktop with apt | 17:41 |
nucc1 | it said unmet dependencies, then suggested i run: apt-get -f install, which seems to be updating loads of packages, presumably it's resuming the upgrade which failed | 17:43 |
maps|wrk | let it run then | 17:43 |
maps|wrk | :D | 17:43 |
nucc1 | gah, some complaints about gnome-settings-daemon-schemas | 17:45 |
nucc1 | i'll just go clean install route | 17:45 |
Azelphur | My dad just got a Nexus 4 and stuck a giffgaff sim into it, paid for the £12 goodybag, but whatever he does he only seems to get a "G" connection (not 2g or 3g) and can't get any internet access out of it. Any suggestions? | 18:43 |
penguin42 | and he's enabled 3g and selected the network off the list? | 18:46 |
Azelphur | penguin42: settings > more > mobile networks > data enabled is enabled | 18:48 |
Azelphur | what do you mean network off the list? | 18:48 |
awilkins | Azelphur, G is 2G | 18:50 |
awilkins | GPRS | 18:50 |
awilkins | H is 3G | 18:50 |
awilkins | E is 2.5 | 18:50 |
Azelphur | awilkins: usually it says 2g, on my Nexus iirc it does | 18:50 |
Azelphur | but yea, either way he has no internet access | 18:50 |
awilkins | Azelphur, I have an N4 and it uses the more confusing and annoying acronym names | 18:50 |
Azelphur | fun | 18:51 |
awilkins | The thing about GiffGaff is they sell reserve capacity of o2s network | 18:51 |
daftykins | Azelphur: APN or being stuck on 2G | 18:51 |
penguin42 | Azelphur: on my phone I can chose the network | 18:51 |
Azelphur | daftykins: I set all the APN details | 18:51 |
* penguin42 boots his phone | 18:51 | |
Azelphur | actually I just had a thought, he's in wales...does that break shit? | 18:51 |
daftykins | yep if he's down in a valley | 18:52 |
awilkins | Wales has lots of mountains and stuff | 18:52 |
Azelphur | nah he's got signal | 18:52 |
penguin42 | Azelphur: wth did you have to screw around with apn settings? | 18:52 |
daftykins | likely won't get more than 2G in a valley though mate | 18:52 |
Azelphur | and my mum on a different network has 5 bars of HSDPA, so he's in a reasonably populated area | 18:52 |
Azelphur | penguin42: we followed a youtube video from giffgaff detailing the APN settings | 18:52 |
awilkins | If he has signal the local router might just be borked if he has no network access | 18:52 |
Azelphur | daftykins: he doesn't have any connection at all though, despite it saying 2g, he has no internet access | 18:52 |
penguin42 | Azelphur: weird, I've not had to do that in the last 10 years | 18:52 |
awilkins | penguin42, have most of your phones been provider ones? | 18:53 |
daftykins | oh i see | 18:53 |
daftykins | factory reset? | 18:53 |
daftykins | https://www.dropbox.com/sh/fz006ibpbygcj3y/AACw5Fqaal0DQqRW66-yis8-a | 18:53 |
daftykins | i was in a valley today and got stuck on EDGE | 18:53 |
Azelphur | daftykins: it's a fairly new phone already mostly default | 18:53 |
awilkins | Azelphur, The OS has the APN settings for GiffGaff in it AFAIK | 18:53 |
daftykins | but just look at those prawn sarnies and pint of ale 8D | 18:53 |
penguin42 | Azelphur: wireless settings-mobile network settings-network operators ? | 18:53 |
Azelphur | awilkins: yea, by default it was set to O2 | 18:53 |
maps|wrk | dafty! | 18:53 |
daftykins | maps o/ | 18:54 |
penguin42 | awilkins: Well I'm on Cyanogen so I don't think that's relevant | 18:54 |
maps|wrk | :D | 18:54 |
maps|wrk | 10pm swan fun? | 18:54 |
maps|wrk | or whenever youre free | 18:54 |
Azelphur | and O2 are behind the scenes for giffgaff | 18:54 |
maps|wrk | :D | 18:54 |
daftykins | lol | 18:54 |
awilkins | Azelphur, I don't recall having to do anything scary with it apart from configuring which network it was on... there's also a thing where you can get them to send you a text with the APN settings in that magically sets them for you | 18:54 |
daftykins | yeah hopefully in a bit mate, just relaxing atm | 18:54 |
maps|wrk | cool:D | 18:54 |
daftykins | i've asked in their channel | 18:54 |
daftykins | someone replied at mid-day today after that situ last night XD | 18:55 |
Azelphur | awilkins: yea I thought there was that, I wonder where that is | 18:55 |
awilkins | Azelphur, But network access on GiffGaff has sometimes been a bit patchy for me so if you only just got it set up I might be inclined to see if there were any outages | 18:55 |
Azelphur | perhaps the youtube video was outdated | 18:55 |
Azelphur | awilkins: has been a couple days with issues | 18:55 |
awilkins | Azelphur, That's not atypical. Sometimes they go through a day or so of sending the same SMS message to me 2-5 times | 18:55 |
Azelphur | fun | 18:55 |
awilkins | Although that was cleared with a "manual roam" | 18:55 |
awilkins | Which does sound fun :-) | 18:56 |
awilkins | In general I'm happy with them for a service | 18:56 |
awilkins | I get a 1GB package with tethering for £10 a month which I can't complain about | 18:56 |
SuperEngineer | wee-hee - busy copying cassettes to pooter with newly purchased £10 usb cassette player | 18:57 |
awilkins | And I can only recall one occasion when the network service failed and left me in a tight spot (couldn't pay for my parking with the phone app) | 18:57 |
awilkins | Compared to Vodafone they are the Super Happy Fun Band | 18:57 |
Azelphur | awilkins: found the number for giffgaff, supposedly SETTINGS to 2020, so checking that out | 18:58 |
daftykins | SuperEngineer: cassette O_O what treasures lie on those? :) | 18:58 |
SuperEngineer | [as to "Windows conversion software supplied" well - errrmmm! | 18:58 |
SuperEngineer | daftykins: Twin Peaks, HHGTTG et al | 18:58 |
awilkins | (Vodafone outright lied to me and sold me a plan with no data after I spent 10 minutes explaining to them that I barely made calls or sent texts but I did need data... and then charged me £1 a day every day I used the network. Scummers) | 18:58 |
SuperEngineer | ...it is supplied with acopy of windows program - something called Audacity :D | 18:59 |
awilkins | It was worth the £70 residual on my contract just to get the filthy stink of Vodafone's SIM card out of my phone. | 18:59 |
daftykins | SuperEngineer: :D ooooh VHS? | 18:59 |
SuperEngineer | daftykins: not VHS [tho I still have a few vid tapes around awaiting - these are audio | 19:00 |
daftykins | ah right, i'd have found it easier to source elsewhere in superior quality :D | 19:01 |
daftykins | Twin Peaks soundtrack \o/ | 19:01 |
SuperEngineer | Twin Peaks = ultimate brain warp = /me | 19:01 |
SuperEngineer | ;) | 19:01 |
daftykins | time to try this yorkshire tea i bought | 19:02 |
penguin42 | eeeh lad | 19:04 |
SuperEngineer | by guum - be a good brew me lad | 19:05 |
=== jpds_ is now known as jpds | ||
SuperEngineer | [though my slightly cooled bottle of beer is better] :D | 19:05 |
=== jpds is now known as Guest68453 | ||
SuperEngineer | looks my cassettes are soon to heard in my ears again :D total cost £9.99 | 19:09 |
=== Guest68453 is now known as jpds_ | ||
SuperEngineer | oi jpds_ ... make ya mind upo pretty please ;) | 19:11 |
SuperEngineer | [& hi] | 19:12 |
jpds_ | SuperEngineer: Oi, it says my nick is unavailable. | 19:12 |
daftykins | hehe | 19:12 |
daftykins | jpds_: do you have some time for some strongswan fun at all? me and maps were working on it last night | 19:12 |
SuperEngineer | jpds_: idea... change your nick to nick - get your revenge | 19:13 |
jpds_ | daftykins: Yep. | 19:13 |
daftykins | jpds_: excellent :D here's what the client log showed - http://paste.ubuntu.com/7822608/ | 19:13 |
jpds_ | daftykins: You'd have to check what the server says. | 19:14 |
daftykins | jpds_: pretty much identical, it's almost as though we need to specify key type or tell it in the client config to send the certificate? | 19:15 |
jpds_ | daftykins: Also, why are you shoving your certs and keys directly in /etc/. | 19:15 |
daftykins | jpds_: basically i put them in /etc/ipsec.d/<folders> to start and kept seeing apparmor messages about DENIED, so wasn't sure if it was being grumpy | 19:15 |
daftykins | i shuffled them about and it made no odds | 19:16 |
jpds_ | Well, apparmor says it's sitting in /etc/. | 19:16 |
jpds_ | daftykins: Can I see your config? | 19:16 |
daftykins | sure 2 mins | 19:17 |
jpds_ | daftykins: The server shoudl say something else in it's logs. | 19:18 |
daftykins | maps|wrk: ^ | 19:18 |
daftykins | jpds_: http://paste.ubuntu.com/7826510/ | 19:19 |
maps|wrk | jah | 19:20 |
maps|wrk | ]do i need to show any logs or config | 19:20 |
daftykins | maps|wrk: yeah can you paste some of /var/log/syslog that shows up when i try to connect? | 19:20 |
daftykins | lemme make an attempt so you get fresh logs | 19:21 |
daftykins | in fact on boot mine probably did already | 19:21 |
maps|wrk | oke 2sec | 19:21 |
daftykins | there we go, 20:21:46 attempt | 19:22 |
maps|wrk | gots it | 19:22 |
maps|wrk | :D | 19:22 |
maps|wrk | :) | 19:22 |
maps|wrk | more gifts for jpds_ http://paste.ubuntu.com/7826523/ | 19:22 |
jpds_ | Erm, what does the server's config look like? | 19:23 |
daftykins | line 8 looks like the ticket | 19:23 |
maps|wrk | sec | 19:23 |
maps|wrk | jpds_: http://paste.ubuntu.com/7826528/ | 19:24 |
maps|wrk | followed the pdf exactly i thought | 19:24 |
jpds_ | OK, and you're using a common CA? | 19:25 |
jpds_ | I would move the certs and keys to /etc/ipsec.d/{certs,private}/ | 19:26 |
jpds_ | Just to keep apparmor happy. | 19:27 |
daftykins | will do, certainly made no odds last time | 19:27 |
maps|wrk | so is my end ok jpds_ ? | 19:28 |
jpds_ | maps|wrk: Did you give daftykins a key and cert that were signed by your CA? | 19:29 |
daftykins | yip ^ | 19:29 |
daftykins | i obtained them from maps and popped them into my folders | 19:29 |
maps|wrk | yep | 19:29 |
diddledan | firewall/router | 19:30 |
daftykins | i'm certainly behind NAT, but maps has his box DMZ'd | 19:30 |
jpds_ | daftykins: In your ipsec.conf, can you edit rightsourceip so it has a ',' instead of a ';' ? | 19:30 |
daftykins | wilco | 19:31 |
diddledan | oh, you're both running that same config? | 19:31 |
daftykins | i'm the client, he's the server | 19:31 |
daftykins | jpds_: hang on i don't have that field at all - is that for the server side? | 19:31 |
maps|wrk | rightsourceip should have my IP dafty thought we had that? | 19:32 |
maps|wrk | oh no maybe not | 19:32 |
daftykins | maps|wrk: it's yours that needs the semi colon changed then mate | 19:32 |
jpds_ | maps|wrk: Ah, that's for you. | 19:32 |
maps|wrk | aha | 19:33 |
maps|wrk | :D | 19:33 |
maps|wrk | so what do i change | 19:33 |
maps|wrk | after 24? | 19:33 |
jpds_ | maps|wrk: line 18. | 19:33 |
jpds_ | ...of http://paste.ubuntu.com/7826528/ | 19:33 |
maps|wrk | done | 19:33 |
maps|wrk | 24,fe3 | 19:33 |
maps|wrk | restarted strongswan | 19:34 |
daftykins | ok check your logs, i saw a retransmit this time | 19:35 |
maps|wrk | ok moment | 19:35 |
maps|wrk | http://paste.ubuntu.com/7826569/ | 19:36 |
maps|wrk | same :< | 19:36 |
diddledan | maps|wrk: change left= to your 192 address rather than the hostname which I assume is resolving to a public address | 19:37 |
daftykins | ok and i had differences - http://paste.ubuntu.com/7826580/ | 19:37 |
maps|wrk | so | 19:38 |
maps|wrk | left=192.16.0.2 | 19:38 |
diddledan | I belive you're missing an 8 | 19:38 |
maps|wrk | ah yea | 19:38 |
daftykins | :D | 19:38 |
maps|wrk | but done with the 8 | 19:38 |
maps|wrk | :P | 19:38 |
daftykins | reloaded and ready for retry? | 19:38 |
maps|wrk | and restarted again | 19:38 |
maps|wrk | yep | 19:38 |
daftykins | oh hello, lots more this time | 19:39 |
maps|wrk | http://paste.ubuntu.com/7826598/ | 19:39 |
daftykins | http://paste.ubuntu.com/7826599/ | 19:39 |
daftykins | haha sequential! \o/ | 19:39 |
maps|wrk | 10[IKE] IKE_SA deleted | 19:39 |
maps|wrk | Jul 20 20:38:57 frogs charon: 10[CFG] lease 10.0.1.1 by 'C=UK, O=Example Ltd., CN=client' went offline Jul 20 20:38:59 frogs radvd[2523]: attempting to reread config file Jul 20 20:38:59 frogs radvd[2523]: resuming normal operation | 19:39 |
maps|wrk | client went offline hm | 19:40 |
maps|wrk | hahaha yea | 19:40 |
maps|wrk | Jul 20 20:38:57 vaiotz charon: 09[IKE] no trusted ECDSA public key found for 'C=UK, O=Example Ltd., CN=frogs.zapto.org' could that be why | 19:40 |
jpds_ | maps|wrk: Think daftykins needs a copy of the ca cert. | 19:40 |
maps|wrk | ah i thought that could be what it is | 19:40 |
daftykins | ooh a third file | 19:40 |
maps|wrk | ok | 19:40 |
maps|wrk | i wasnt sure | 19:40 |
maps|wrk | gwCert.der ? | 19:41 |
maps|wrk | no | 19:41 |
jpds_ | Yep. | 19:41 |
maps|wrk | caCert.der ? | 19:41 |
diddledan | make sure the key isn't in it | 19:41 |
maps|wrk | which file :| | 19:41 |
daftykins | gw | 19:41 |
diddledan | caCert.der | 19:41 |
jpds_ | maps|wrk: That one. | 19:42 |
daftykins | oh. heh | 19:42 |
daftykins | will i want this one in /etc/ipsec.d/cacerts/ ? | 19:42 |
daftykins | silly question i know :> | 19:42 |
diddledan | yes | 19:42 |
maps|wrk | ok | 19:42 |
maps|wrk | its there now | 19:42 |
maps|wrk | got the url still daftykins ? | 19:42 |
daftykins | errrr | 19:43 |
maps|wrk | https://frogs.zapto.org/~mark/swan/ | 19:43 |
maps|wrk | :D | 19:43 |
daftykins | yeah i can make it up from memory | 19:43 |
daftykins | or click that \o/ | 19:43 |
maps|wrk | heh | 19:43 |
maps|wrk | if i dont respond say my nick so it flashes my browser :D | 19:44 |
maps|wrk | have to do a bit of work now and again ya know | 19:44 |
maps|wrk | :) | 19:44 |
daftykins | i am connected \o/ | 19:44 |
maps|wrk | yay | 19:44 |
maps|wrk | :D | 19:44 |
daftykins | ok let me fiddle with the networking | 19:45 |
daftykins | see what's working | 19:45 |
maps|wrk | jpds_: can i use this config for a windows7 machine? i read win7 doesnt support ecdsa | 19:45 |
maps|wrk | ah yea check it all works fine good idea | 19:45 |
daftykins | i'm a bit confused as to how this malarkey works now then, i don't get an interface, i don't get any network routes... | 19:46 |
maps|wrk | hmm | 19:46 |
daftykins | "ipsec statusall" tells me i'm 10.0.1.1 | 19:46 |
maps|wrk | should you have? | 19:46 |
maps|wrk | i know that with openvpn you get a new interface | 19:46 |
daftykins | i don't have a clue how this setup works :) | 19:46 |
maps|wrk | is everything going through my vpn now or nothing lol | 19:47 |
jpds_ | No interfaces with ipsec. | 19:47 |
maps|wrk | jpds_: what about my windows7 question please:D | 19:47 |
jpds_ | maps|wrk: Never used Windows with this before.. | 19:47 |
maps|wrk | thanks | 19:47 |
maps|wrk | and iOS?:) | 19:47 |
maps|wrk | or also never | 19:47 |
jpds_ | There's: https://wiki.strongswan.org/projects/strongswan/wiki/Win7Config | 19:47 |
maps|wrk | but where would we put the cert/key and cacert:| | 19:47 |
maps|wrk | have to make them into a .p12 ? | 19:48 |
jpds_ | daftykins: sudo ip xfrm policy | 19:48 |
jpds_ | maps|wrk: https://wiki.strongswan.org/projects/strongswan/wiki/IOS_%28Apple%29 | 19:49 |
maps|wrk | ive read all those lots of times :D | 19:49 |
maps|wrk | but where would we put the cert/key and cacert?? am i right about this p12 ..sure i read that | 19:49 |
daftykins | looks like my traffic has definitely changed, as pinging google is dead :D | 19:50 |
jpds_ | maps|wrk: Probably, I used this for my android phone: http://danielpocock.com/strongswan-debian-rhel-fedora-with-android-client | 19:50 |
jpds_ | daftykins: It's all going via maps|wrk's box. | 19:50 |
daftykins | http://paste.ubuntu.com/7826657/ | 19:51 |
jpds_ | maps|wrk: Did you put the masquerade rule in/ | 19:51 |
daftykins | should i be able to ping an IP at his end? i'm not even sure what that'd be | 19:51 |
daftykins | looks like a no, or maybe the IP forwarding isn't up | 19:52 |
maps|wrk | hmm jpds_ nope didnt do any ipforward or iptables..i thought we wouldnt need to as the box is setup as the DMZ? | 19:52 |
daftykins | as i can't ping 8.8.8.8 | 19:52 |
maps|wrk | aha | 19:52 |
maps|wrk | so i need ipforwarding | 19:52 |
daftykins | maps|wrk: cat /proc/sys/net/ipv4/ip_forward | 19:52 |
daftykins | 0 or 1? | 19:52 |
maps|wrk | 1 | 19:53 |
maps|wrk | mark@frogs:/etc/ipsec.d/cacerts$ cat /proc/sys/net/ipv4/ip_forward 1 mark@frogs:/etc/ipsec.d/cacerts$ | 19:53 |
daftykins | cool, just need those iptables masquerade rules then | 19:53 |
jpds_ | maps|wrk: you also need the nat masquerade rules in the slides. | 19:53 |
maps|wrk | oh | 19:53 |
maps|wrk | ok 2sec | 19:53 |
maps|wrk | i didnt realise oops | 19:53 |
daftykins | that's a bad maps! | 19:56 |
daftykins | i thought we got to that with the convo last night :> | 19:56 |
maps|wrk | wlan0 then for me not eth0 yea? | 19:56 |
daftykins | if that's your home machines active interface ja | 19:56 |
maps|wrk | done! | 19:57 |
daftykins | holy moly i can ping google now | 19:57 |
daftykins | by IP | 19:57 |
daftykins | and by host | 19:57 |
maps|wrk | :D | 19:57 |
daftykins | plus i have pings consistent with going over via your connection | 19:57 |
daftykins | vewy gewd | 19:58 |
maps|wrk | how cna you tell because the ms is longer? | 19:58 |
daftykins | jpds_: thanks for your assistance :> | 19:58 |
daftykins | yep | 19:58 |
maps|wrk | so whatismyip.com shows my ip? | 19:58 |
daftykins | 60-110 it came up with | 19:58 |
foobarry | hmm. plugged in 2 disks in slots 3 & 4 on my microserver but they appear as sda and sdb. thought they would be sdc and sdd | 19:58 |
jpds_ | daftykins: No worries. | 19:58 |
maps|wrk | thanks jpds_ | 19:58 |
daftykins | jpds_: would it make more sense for security to use other forms vs ECDSA? | 19:59 |
daftykins | as in would others be better? | 19:59 |
maps|wrk | daftykins: can you fireup ffox and see | 19:59 |
daftykins | foobarry: ah the ol' pesky order switcharoo | 19:59 |
maps|wrk | just wondering if its all going via the vpn | 19:59 |
maps|wrk | i assume so as its not a split tunnel | 19:59 |
foobarry | daftykins: bit nervous about adding disks later | 20:00 |
daftykins | foobarry: you just mount via UUIDs instead of device names though eh | 20:00 |
jpds_ | daftykins: That's a question for a crypto expert. | 20:00 |
daftykins | maps|wrk: yeah i'm on the sofa with my laptop SSH'd to the laptop i'm VPN'd via though XD | 20:00 |
maps|wrk | :D | 20:00 |
maps|wrk | should everything be going via my vpn now jpds_ ? | 20:01 |
daftykins | i tried to be lazy by installing lynx, but for some reason it gave me a 403 on whatismyip.com 0o | 20:01 |
maps|wrk | haha | 20:01 |
jpds_ | maps|wrk: Yep. | 20:01 |
maps|wrk | next step is get it working on ios | 20:01 |
maps|wrk | openvpn worked fine except for the issue ive mentioned so many times | 20:02 |
maps|wrk | :< | 20:02 |
jpds_ | maps|wrk: Because you have 0.0.0.0/0 as the subnet. | 20:02 |
maps|wrk | and i can use it to watch bbc iplayer when on holiday :DDD | 20:02 |
daftykins | hahaha | 20:02 |
daftykins | well i suppose i'll just have to get up and use a browser | 20:03 |
maps|wrk | lol | 20:03 |
daftykins | yep IP is yours | 20:04 |
maps|wrk | :DDDD | 20:04 |
daftykins | what incriminating activities can i... er i mean hi :D | 20:04 |
maps|wrk | lol | 20:04 |
maps|wrk | another question | 20:05 |
maps|wrk | is it possible jpds_ or anyone to make the vpn users use a specific http proxy say i run a squid proxy on the same vpn machine could i make them use tyhat | 20:06 |
maps|wrk | just so i coukd control what can be visited through acls | 20:06 |
maps|wrk | couldnt with openvpn | 20:06 |
maps|wrk | probably cant | 20:06 |
jpds_ | maps|wrk: Yeah, you'd have to tweak the iptables rules so it REJECTs normal HTTP traffic. | 20:06 |
jpds_ | maps|wrk: But it allows traffic to the proxy port. | 20:06 |
maps|wrk | but that would rely on the user manually setting their browser to use the proxy if im understand right? | 20:07 |
maps|wrk | *understanding | 20:07 |
jpds_ | maps|wrk: Yep. | 20:07 |
jpds_ | maps|wrk: Or. | 20:07 |
jpds_ | maps|wrk: You set a masquerade rule so that all port 80 traffic is forced to the proxy port transparently. | 20:08 |
maps|wrk | ah | 20:08 |
maps|wrk | thanks very much jpds_ | 20:08 |
jpds_ | No worries. | 20:08 |
maps|wrk | successful day:D | 20:10 |
daftykins | guess i better remove that software / work out how to reconfigure it without autostart 8D | 20:11 |
maps|wrk | :D | 20:11 |
maps|wrk | isnt it a vmu made just for this] | 20:12 |
maps|wrk | or was it a diff machine i forget | 20:12 |
daftykins | nah i switched to a laptop in the end | 20:12 |
maps|wrk | ah ya | 20:12 |
jpds_ | daftykins: Change your auto= config to add. | 20:13 |
daftykins | "auto=add" hmm, ok that doesn't make any sense to me XD | 20:13 |
daftykins | i'd have expected "auto=off" or something :D | 20:14 |
maps|wrk | =] | 20:14 |
maps|wrk | adds it but isnt acive | 20:14 |
daftykins | i remember being in a job where some guy was going to spend thousands on some hardware VPN equipment, i was going to suggest just two old boxes at either end running VPN software | 20:15 |
daftykins | other end being in Monaco | 20:15 |
jpds_ | daftykins: And now we have strongswan and two Ubuntu VMs. | 20:16 |
maps|wrk | :D | 20:17 |
daftykins | >:D | 20:17 |
daftykins | there must be some reason why some would still prefer hardware over that though | 20:17 |
maps|wrk | my machine (frogs) is like a 12year old dell | 20:17 |
maps|wrk | sounds like a plane taking off at times when you do anything (i linked the sound remember daftykins :P) but it does the job | 20:17 |
* penguin42 did use a pair of Cisco PIX boxes for one VPN, but that was to somewhere very remote where I wasn't sure if I could ever get anyone to help deal with it and it HAD to work | 20:17 | |
maps|wrk | only prob is sometimes have to turnit off at night because its so loud (its in my room) | 20:17 |
daftykins | maps|wrk: oh yeah did you ever get around to investigating that? | 20:18 |
jpds_ | daftykins: Lack of knowlegde it exists in my experience. | 20:18 |
maps|wrk | took it all apart and cleaned it out,.absolutely disgusting amounts of dust in it | 20:18 |
maps|wrk | but never managed to figure out what was making it so loud | 20:18 |
awilkins | Bearings? | 20:19 |
maps|wrk | turned the fans off and it wasnt that ..could be the PSU maybe? | 20:19 |
maps|wrk | awilkins: bearings? | 20:19 |
awilkins | On the fans | 20:19 |
daftykins | in fans | 20:19 |
awilkins | If it makes a noise with no fans on, then it might be coil hum | 20:20 |
awilkins | I had a laptop that started off driving me insane unless I turned the CPU power saving off | 20:20 |
awilkins | THen it started driving me insane all the time. I had the motherboard replaced and that cured it | 20:21 |
awilkins | WAs the power regulation components for the CPU | 20:21 |
maps|wrk | can i check that awilkins ? | 20:22 |
awilkins | maps|wrk, Only checks I can think of that would show that up would be i) doing different workloads and seeing if the noise changes | 20:22 |
daftykins | good ol' EMI | 20:23 |
awilkins | ii) Changing the CPU freq / power saving settings in the BIOS and seeing if that changes | 20:23 |
daftykins | i had a Dell with a heartbeat, that used to get irritating if wearing headphones | 20:23 |
maps|wrk | yea it does..when its compiling its noisy..idle it hardly is | 20:23 |
awilkins | THere you go | 20:23 |
penguin42 | my desktop is starting to have workload dependent noise; very odd - I think after I changed the PSU | 20:23 |
daftykins | penguin42: ah i have that with an Antec PSU :) it tweets under load | 20:23 |
awilkins | If there are "spread spectrum" settings in the BIOS they may help if you enable them | 20:24 |
awilkins | Although they tend to be on by default (turning them off is an overclockers option because it makes your system marginally more stable at the cost of more EMI) | 20:24 |
awilkins | You could test it on another PSU | 20:25 |
awilkins | I've even heard tales of things like blobbing hot glue on coils curing it | 20:25 |
penguin42 | daftykins: Weird isn't it | 20:26 |
maps|wrk | spread spectrum setings? | 20:26 |
* penguin42 has never heard the spread spectrum stuff causing audible things | 20:26 | |
awilkins | maps|wrk, They smooth some of the timing clock signal curves out a bit | 20:26 |
penguin42 | they're hacks to get around some RF emission regulation | 20:26 |
awilkins | Which reduces interference emitted by your computer | 20:26 |
awilkins | as penguin42 says, to comply with American regulations | 20:27 |
penguin42 | EU I thought | 20:27 |
* awilkins shrugs | 20:27 | |
penguin42 | awilkins: Unfortunately it doesn't actually reduce it - it spreads it out | 20:27 |
awilkins | A suggestion I've just seen is using a little paper tube to localize the sound by listening to your motherboard with it... | 20:28 |
penguin42 | awilkins: The reg says something like that it shouldn't have any peak of more than a certain amount; so it's spread out over a few frequencies | 20:28 |
awilkins | Anyway ; best hope for a cure is if it's a coil | 20:29 |
awilkins | Where you can glue the loops together (or use paraffin wax, which is apparently what the manufacturers use) | 20:29 |
awilkins | Otherwise... no idea. | 20:30 |
maps|wrk | so what should i do?! take a fan apart? | 20:31 |
* penguin42 doubts it's the fan | 20:31 | |
maps|wrk | PSU? | 20:31 |
awilkins | I say do the paper tube trick | 20:32 |
awilkins | Set it compiling and listen to the innards with a paper tube to see where the sound is localized | 20:32 |
maps|wrk | i took the whole thing apart and tried to work out where sound came from and couldnt tell | 20:32 |
awilkins | It's hard with high pitched noises | 20:33 |
awilkins | Hence the tube | 20:33 |
awilkins | Roll up a sheet of A4 into something like a fat pencil and aim it at specific components | 20:33 |
maps|wrk | could it be the PSU? | 20:34 |
awilkins | It could be, there are things in the PSU that can vibrate | 20:34 |
maps|wrk | yea it does make a noise with no fans on i disconnected the fans -0 when yoiu say coils and bearings what would i do? | 20:35 |
awilkins | Bearings are the parts of the fan where the axle meets the mount | 20:35 |
awilkins | So if the noise happens with the fans still, it's not the bearings | 20:35 |
maps|wrk | ah | 20:36 |
maps|wrk | and the coil? | 20:36 |
awilkins | If it's coils, you could try the hot glue or paraffin wax tricl | 20:36 |
maps|wrk | coils of what tho how do i get to them | 20:36 |
awilkins | The noise will be from the metal coil ringing like a bell | 20:36 |
awilkins | They look like a metal coil! | 20:36 |
awilkins | They're some of the bits that regulate voltage | 20:37 |
awilkins | Which is why the power consumption of the CPU can make them ring / whine / buzz | 20:37 |
awilkins | By making the magnetic field in them fluctuate | 20:37 |
awilkins | If you dampen the vibration the noise may stop | 20:37 |
maps|wrk | is this in the PSU? | 20:38 |
awilkins | I think PSUs have them inside but I've never opened one | 20:38 |
awilkins | You see them on motherboards too | 20:38 |
awilkins | I'd be wary of opening PSUs | 20:38 |
awilkins | They have nasty voltages in them | 20:38 |
maps|wrk | yea they're mad dangerous | 20:38 |
maps|wrk | so what are these coils :D im confused where they are | 20:39 |
awilkins | Not as bad as an old style CRT monitor | 20:39 |
awilkins | But still not good | 20:39 |
awilkins | These things : http://img.techpowerup.org/090218/Coil2.jpg | 20:39 |
maps|wrk | ah | 20:40 |
maps|wrk | i dont think itll be that i can link to the sound if you want | 20:40 |
maps|wrk | its pretty noisy | 20:40 |
awilkins | Yeah, put the link in | 20:40 |
daftykins | be warned, last time his link finishes playing then quickly starts playing music | 20:45 |
daftykins | ;D | 20:45 |
javo | Hi there. I've got an issue with my 14.04 | 20:45 |
daftykins | ask away! | 20:46 |
javo | It was working fine, but lately i've installed an ubuntu-base package, and then I dunno why, lost network, graphic card, and audio | 20:47 |
javo | in the graphics, it doesn't show the intel, that I had, but another... in sound, it says configuration for torpes (?) and no trace of the network | 20:49 |
javo | is there a way to restore it? | 20:50 |
daftykins | what package did you install? | 20:50 |
javo | to come back to a previous state, i-e? | 20:50 |
maps|wrk | torpes? | 20:51 |
javo | Not shure. Just the recomended actualizations it said base-ubuntu | 20:51 |
javo | yep torpes in the sound | 20:52 |
maps|wrk | awilkins: cant find it atm, the machine i was on about was my old dell desktop..but my old dell laptop (1501) ALSO has a sound issue - it works fine..boots up etc it has xubuntu/.centos on it..BUT has a hideous sound all the time making it unusable | 20:52 |
maps|wrk | https://soundcloud.com/mapito/pc | 20:52 |
maps|wrk | took it apart etc cant figure out what it was with this either, any ideas? | 20:52 |
javo | now i'm accesing the net from a 13.04 system in an extraible device, but also dunno if I can acces the crashed 14.04 from here | 20:53 |
javo | or at least reconfigure the network for doing step by step from there | 20:54 |
javo | da | 20:57 |
javo | daftykins: any suggestion? | 20:58 |
maps|wrk | gah hes gone | 21:20 |
javo | :( | 21:20 |
maps|wrk | ;[ | 21:27 |
maps|wrk | could u not reinstall ubuntu base again using apt? | 21:27 |
daftykins | javo: what's your native language? | 21:30 |
javo | daftykins: spanish | 21:32 |
daftykins | tried #ubuntu-es ? | 21:32 |
javo | i'll do it | 21:33 |
javo | thnx | 21:33 |
maps|wrk | :D | 21:33 |
maps|wrk | couldnt he just reinstall base packafge | 21:33 |
javo | maps: but I have not network access now | 21:35 |
maps|wrk | ahh | 21:35 |
maps|wrk | what about mounting the cd as the apt repo and installing off that@ | 21:35 |
javo | explain me that please? | 21:37 |
maps|wrk | moment il find a link | 21:37 |
maps|wrk | https://help.ubuntu.com/community/AptCdrom | 21:38 |
maps|wrk | i think that could help? | 21:38 |
javo | that way i could reinstall that base package? | 21:39 |
maps|wrk | i think so yea | 21:39 |
maps|wrk | using the cd as an apt source | 21:40 |
javo | I'll try | 21:40 |
maps|wrk | :D | 21:40 |
javo | Thank you! | 21:41 |
maps|wrk | sudo apt-get install --reinstall packagename | 21:41 |
maps|wrk | oh done already? | 21:41 |
maps|wrk | hope it worked:D | 21:43 |
javo | not yet. I must go buy some dvd and burn the image as mine is damaged. :/ | 21:46 |
maps|wrk | aha | 21:46 |
maps|wrk | sudo apt-get -f install sudo dpkg --configure -a - then sudo apt-get install --reinstall | 21:47 |
maps|wrk | let me know if it works after | 21:47 |
javo | of course! | 21:48 |
maps|wrk | ;] | 21:48 |
javo | i am just a bit to changing to fedora for this issue! | 21:49 |
maps|wrk | :) | 21:50 |
maps|wrk | not used fedora for ages | 21:50 |
maps|wrk | wow, watching channel 5 black market britain..and wow never knew jin ling cigarettes are made in russia..and are only sold illegally | 21:57 |
maps|wrk | cigarettes made to be smuggled lol | 21:57 |
maps|wrk | It has been reported by customs officials as the "most seized" brand in Europe;[1] in 2007, 258 million Jin Ling cigarettes were seized by authorities in EU countries.[4]! | 21:58 |
maps|wrk | 258 million! | 21:58 |
daftykins | https://www.dropbox.com/s/l6cc3wo4e9bma4d/Screenshot_2014-07-20-23-39-32.png | 22:42 |
daftykins | O_O | 22:42 |
penguin42 | looks a bit cold over there.... | 22:46 |
penguin42 | http://www.bbc.co.uk/weather/2643123 :-) | 22:47 |
daftykins | D: | 22:49 |
daftykins | i'm not jealous one bit, i can't cope as it is | 22:49 |
penguin42 | indeed, it is a bit warm | 22:50 |
maps|wrk | yea | 22:51 |
maps|wrk | its horrible sleeping in this hot and sticky weather | 22:51 |
maps|wrk | wakeup a few times each night when its super sticky and humid:( | 22:52 |
daftykins | >_< | 22:53 |
daftykins | even my cat has stopped sleeping beside me | 22:53 |
penguin42 | falling asleep on the top of the bed seems better | 22:53 |
maps|wrk | yea i dont use the duvet or anything, way toooo hot for that | 22:53 |
maps|wrk | cant open my windows either..not on a main road but its a cut through and gets busy enough | 22:53 |
daftykins | https://www.dropbox.com/s/rswy13k3ohu7206/IMG_20140720_122618.jpg | 22:54 |
daftykins | speaking of, she now has her new electronic flap! | 22:54 |
daftykins | and she's too afraid of it to use it either way =| | 22:54 |
maps|wrk | electronic eh! | 22:58 |
maps|wrk | fancy | 22:58 |
daftykins | yeah it's pretty cool, when she sticks her head in the tunnel at the other end it reads her microchip, checks her ID and unlocks for her only | 22:59 |
daftykins | i saw her try... but the click of the mechanism made her run off | 22:59 |
penguin42 | perhaps a tasty morsel is needed to get her to try again | 23:01 |
daftykins | i only know her dried food, not sure what would be more tempting | 23:01 |
daftykins | i did get her to go out through it by holding it open | 23:02 |
maps|wrk | thats quite cool microchip this checking her id electric cat flaps | 23:03 |
maps|wrk | when we had a cat there was none of this :D | 23:03 |
daftykins | ^_^ | 23:04 |
penguin42 | sorry, I've just had a vision of a high security access door where you have to hold your cat up to it to get in | 23:04 |
daftykins | do you mean you have to paws at the door? | 23:05 |
penguin42 | ouch | 23:06 |
daftykins | ;D | 23:07 |
maps|wrk | heh | 23:10 |
maps|wrk | http://www.breedersonline.co.uk/photos/1a/2315x_1.jpg | 23:12 |
maps|wrk | thats what i want | 23:12 |
daftykins | that address concerned me | 23:13 |
daftykins | is that some kinda micro breed 0o | 23:13 |
maps|wrk | russian blue kittens! | 23:13 |
maps|wrk | https://en.wikipedia.org/wiki/Russian_Blue | 23:13 |
directhex | https://en.wikipedia.org/wiki/Siberian_(cat) | 23:14 |
maps|wrk | cute | 23:15 |
maps|wrk | https://en.wikipedia.org/wiki/Havana_Brown | 23:15 |
directhex | bedtime. earl;y start tomorrow | 23:15 |
maps|wrk | russian blues a re nice | 23:16 |
maps|wrk | :D | 23:16 |
maps|wrk | https://en.wikipedia.org/wiki/Russian_Blue#mediaviewer/File:RusoAzul4m.JPG | 23:16 |
maps|wrk | meow | 23:16 |
daftykins | directhex: o/ | 23:17 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!