[01:30] <diddledan> does anyone implement finger these days?
[01:30]  * diddledan fingers himself
[01:30] <diddledan> hmm, not installed
[01:30]  * diddledan installs first
[01:30] <daftykins> sudo apt install finger
[01:31] <daftykins> sudo dpkg-reconfigure finger --cuticle-trim
[01:32] <diddledan> On since Fri Aug 28 19:53 (BST) on :0 from :0 (messages off)
[01:32] <penguin42> ????
[02:31] <zmoylan-pi> !weather alert canada
[07:38] <bujji> how can i close open ports..
[07:53] <daftykins> not him again :P
[08:11] <czajkowski> Aloha
[08:13] <daftykins> o/
[08:28] <diplo> Morning all
[08:31] <brobostigon> morning boys and girls.
[09:15] <diddledan> morningh
[09:15] <diddledan> daftykins, OMG OPEN PORTS!
[09:33] <zmoylan-pi> such a tragedy on b5... :'-(
[09:38] <diddledan> ?
[09:38] <zmoylan-pi> someone hasn't watched babylon 5...
[09:39] <diddledan> ?
[09:39] <zmoylan-pi> open ports caused a needless war
[09:39] <diddledan> oic
[09:49] <awilkins> It was the supposedly more enlightened and advanced guys too
[09:49] <awilkins> I mean, in what universe is opening your gunports on first contact with an alien race considered good form
[09:52] <zmoylan-pi> it's their custom sorta of how ships used to fire a salute before entering a harbour to show their guns were empty
[09:55] <daftykins> =]
[09:56] <daftykins> diddledan: i like the web dev earlier who works from Windows, but then copies the files onto a Linux VM to view
[09:57] <diddledan> I didn't see them
[09:57] <daftykins> nah was quite late
[09:57] <daftykins> or the second web dev who wasn't sure how to change apache's doc root
[09:57] <daftykins> :D
[10:05] <daftykins> ah yes, reading news online from my phone... linked youtube video, send to Kodi -> up it comes on the TV :>
[10:11] <diddledan> anyone tried either kdeconnect or nuntius on a stock ubuntu? (using unity-wm)
[10:11] <diddledan> nuntius is at https://github.com/holylobster/nuntius-linux
[10:12] <diddledan> and kdeconnect at https://community.kde.org/KDEConnect
[10:13] <diddledan> the text at the top of the kdeconnect page is a bit weird: This is the comunity page for KDE Connect. It should contain useful and up to date resources for both users and developers.
[10:13] <diddledan> so it "should" contain, but it doesnt?
[10:13] <diddledan> should = will?
[10:13] <diddledan> should = does?
[10:14] <diddledan> should = if you edit it don't put crud in
[10:14] <diddledan> ?
[10:14] <diddledan> wikipedia would claim weaselwords
[10:16] <zmoylan-pi> it's linux documentation, if it exists it's obsolete :-)
[10:23] <daftykins> :D
[10:23] <daftykins> zmoylan-pi: i'm glad your pessimism is platform agnostic :>
[10:24] <daftykins> hehe, i've got to ride my high end bike to the shop to get some brake pads, new seat post and maybe get a brake bled (hydraulic)
[10:24] <daftykins> it's gonna be such a ridiculous slog even along the flat from home here, since i've got my downhill tires on already
[10:38] <ujjain> Anybody here knows networking?
[10:38] <ujjain> My team of Developers moved to a different building. AWS was 10.x.x.x and their PC's also 10.x.x.x. Now their PC's have 172.18.x.x as IP range and they cannot access the AWS environment. What now? Networking suggests a firewall change has to be done.
[10:39] <diddledan> if you have a "networking" who are suggesting a fix then surely by their name being "networking" it's their remit to fix it themselves
[10:40] <daftykins> :D
[10:40] <daftykins> surely if it's AWS it's online?
[10:40] <ujjain> fair point
[10:41] <ujjain> uh, it's only using internal IP ranges AWS
[10:41] <daftykins> so you VPN to one then it lets you hit all the test VMs on there? o0
[10:42] <ujjain> uh, yeah, if you can access the management net
[10:42] <ujjain> you can access SSH network-wise on all servers
[10:43] <daftykins> i have zero experience with AWS to get how you connect to it initially :)
[10:44] <diddledan> AWS has a VPN endpoint you can pay for
[10:44] <daftykins> o rly
[10:44] <diddledan> it's part of their VPC offering
[10:44] <daftykins> ujjain: is that how it is?
[10:45] <ujjain> right, VPC internal IP's yeah
[10:45] <ujjain> you have to manually give it an external IP, not by default
[10:45] <ujjain> often you use load balancers with external IP's, servers almost never get an external IP
[10:45] <jpds> ujjain: You have a site-to-site VPN going?
[10:45] <ujjain> I don't know much about networking, that's why I asked a question. But we are in the same 10.x.x.x-range yes, servers and office network.
[10:46] <daftykins> ujjain: i suspect you now have a new gateway IP and none of them have the right route out then perhaps
[10:46] <foobarry> talk to networks
[10:46] <jpds> ujjain: I would talk to the network guy in charge instead
[10:46] <daftykins> can't say much more without knowing your setup - but as these guys say, surely you have the staff :>
[10:46] <ujjain> ah ok, yeah, I'll give them some more information, that we are now in 172.x,
[10:46] <diddledan> you really should NOT use the same IP range on your corporate network that you're using on the AWS VPC anyway
[10:47] <jpds> Whatever's going on, it sounds _broken_
[10:47] <foobarry> the problem tends to occur because people often use the whole 10.x with a 255.0.0.0 netmask
[10:48] <daftykins> yep subnets should always be different
[10:49] <diddledan> foobarry, part of the reason for that is certifications still teach "Class C" etc
[10:49] <ali1234> does anyone remember that bug where anything you type into firefox goes into the wrong window?
[10:49] <diddledan> CIDR did away with the "Class A", "Class B" and C
[11:00] <foobarry> CIDR is harder to remember
[11:00] <foobarry> 10.0.0.0/8
[11:00] <jpds> foobarry: Should be enough IPs for the office DHCP server
[11:01] <daftykins> naaaah it's in octets! :D
[11:46] <diddledan> is there any difference between snaps and clicks?
[12:01] <foobarry> fingers?
[12:04] <foobarry> sister had her facebook password hacked, wasl well over 10 characters
[12:07] <jpds> foobarry: What, no 2fa?
[12:08] <foobarry> not exactly dictionary words either
[12:08] <foobarry> how does the 2fa work? remembers the devices?
[12:08] <zmoylan-pi> all it takes is logging in from one infected computer
[12:08] <jpds> foobarry: Generates a code on your mobile that you enter after the password
[12:08] <foobarry> and then remembers the device?
[12:09] <jpds> You can do that
[12:09] <zmoylan-pi> i got email from a mate over christmas a few years back when after he logged into his email from a relatives computer to check his email. the old robbed in london email send money
[12:12] <foobarry> jpds: is that OS browser only? didn't get asked on my phone
[12:12] <foobarry> after turning it o
[12:12] <foobarry> n
[12:13] <jpds> foobarry: It's any device it doesn't recognize
[12:14] <jpds> foobarry: Clear your cookies on your laptop and try to log in again
[12:14] <foobarry> it asked me for the desktop PC
[12:15] <foobarry> didn't ask me for the fb app on my phone
[12:15] <jpds> Because it's the one managing the 2fa?
[12:16] <zmoylan-pi> or does facebook have the ability to track your phone number with your friends contacts list to identify your phone?
[12:16] <foobarry> dunno
[12:16] <foobarry> rebooting phone
[12:16] <jpds> In any case, if someone tries to get into your account and doesn't have your phone but has your password, they can't get in
[12:17] <foobarry> yeah
[12:17] <foobarry> unless the PC is pwned
[12:17] <foobarry> ah, no
[12:17] <zmoylan-pi> unless they have some other vulnerability that we don't know about yet
[12:17] <jpds> That doesn't matter
[12:17] <foobarry> yeah my bad
[12:18] <foobarry> i never login via windows PC anyway
[12:18] <jpds> foobarry: Probably better to give 2fa to your sister
[12:19] <foobarry> been getting a few surveys thru google opinion rewards
[12:19] <foobarry> racking up play credit slowly
[12:19] <foobarry> surveys take 10s to complete
[12:20] <zmoylan-pi> i got a survey from mozilla recently, it was impossible to finish the survey without lying.  they asked which services you paid for online and you had to tick at least one option
[12:28] <foobarry> what, like money?
[12:28] <foobarry> apart from mashley adison?
[12:28] <zmoylan-pi> who seem to keep adding users AFTER the hack went public
[12:32] <foobarry> weren't there only 12000 real women on the site ?
[12:32] <foobarry> the new users are journalists
[12:33] <zmoylan-pi> 100,000 journalists? http://arstechnica.com/security/2015/08/what-us-worry-ashley-madison-says-it-added-over-100k-users-last-week/
[12:35] <foobarry> i woulnd't believe a word the site says
[12:35] <foobarry> their business model is morally dubious
[12:36] <foobarry> and they force people to pay to delete their account
[12:36] <zmoylan-pi> and illegal in some usa states i think
[12:36] <popey> (and then don't delete it)
[12:36] <shauno> I wonder how many of them are pranks, given that you don't need to verify your email.  launching it into the spotlight would give an uptick there
[12:41] <bigcalm> Good morning peeps :)
[13:05] <foobarry> anyone uploaded photos to google photos from linux?
[13:05] <foobarry> using a script or app?
[13:07] <zmoylan-pi> have a script to copy them to an android device and let it's privacy ignoring apps do the uploading? :-)
[13:08] <jpds> zmoylan-pi: Remember, the tin foil hat just amplifies the brain waves
[13:09]  * zmoylan-pi switched to lead foil as tin foil offers no protection these days :-P
[13:16] <jpds> Pretty sure that'll poison you in the end
[13:17] <zmoylan-pi> that's why i have it inside a frozen mercury shell :-P
[13:19] <foobarry> discovered that firefox has a cool feature
[13:20] <foobarry> it can screenshot a scrollable web page as a full page
[13:21] <zmoylan-pi> that sounds cool
[13:22] <foobarry> open the console (Shift+F2)  and type screenshot --fullpage
[13:22] <foobarry> then come back and tell me i'm awesome
[13:23]  * zmoylan-pi is currently at windows 8 laptop so makes note for later...
[13:25] <foobarry> should be on all OS
[13:25] <foobarry> unsure if thats true
[13:25] <foobarry> *just made that bit up
[13:56] <foobarry> anyone had experience using xprivacy android app?
[13:57] <jpds> foobarry: "What's new, Removed support for Android Lollipop"
[13:57] <jpds> foobarry: Classy
[13:57] <foobarry> no
[13:58] <foobarry> it requires manual install
[13:58] <foobarry> of xposed framework
[13:58] <foobarry> http://forum.xda-developers.com/xposed/super-alpha-posted-permission-xposed-t3072979
[13:58] <jpds> I wouldn't even trust it at that point
[13:58] <foobarry> xposed is a dependency
[14:04] <foobarry> just need to read 596 pages of the xda thread
[14:05] <foobarry> brb
[14:06] <zmoylan-pi> can't you just read the last comment on the last page with the whole thread in one single post :-)
[14:59] <foobarry> if only
[15:49] <daftykins> anyone recall off hand which kernel raring used? (13.04)
[15:50] <daftykins> 3.8 maybe?
[15:50] <daftykins> yis \o/
[18:01] <diddledan> daftykins, wow, was that guess correct?
[18:25] <diddledan> fun: https://www.humankode.com/security/how-a-bug-in-visual-studio-2015-exposed-my-source-code-on-github-and-cost-me-6500-in-a-few-hours
[18:32] <zmoylan-pi> i'm sure the eula for studio allows him to sue ms to get the money back... :-)
[18:45] <MartijnVdS> diddledan: "Oh no I didn't follow best practices and put passwords in version control"
[18:54] <shauno> interesting how everyone reads it slightly differently :)
[18:54] <shauno> I mostly found it interesting that amazon doesn't have a 'big red button', even after they've told you your account is compromised, or you've called support to go staahp
[18:55]  * diddledan likes big. red. buttons.
[18:57] <directhex> there is a multitude of failures in this story
[18:57] <directhex> and the guy committing his private work to a should-be-private repo is not the worst one by far
[18:58]  * penguin42 is pretty paranoid about keeping git repos he pushes externally separate
[19:35] <diddledan> WHEEEE
[19:36] <penguin42> that's what I said when I was at GoApe earlier
[19:36] <diddledan> camlistore looks weird
[19:37] <penguin42> very nice goape actually
[19:37] <diddledan> there's a presentation about it here https://youtu.be/kBCQq5hfsug
[19:37] <penguin42> they had a zip line over the corner of a resioivoire
[19:37] <diddledan> oops
[19:37] <diddledan> where's that?
[19:38] <penguin42> rivington, near Bolton
[19:38] <diddledan> there's a zipworld line at bethesda
[19:38] <diddledan> apparently it's the longest evar
[19:38] <diddledan> or maybe the fastest. or both?
[19:38] <diddledan> I holidayed there a couple months ago
[19:39] <penguin42> yeh, unfortunately it's a real pain to get to by public transport from Manc
[19:39] <diddledan> lol
[19:39] <diddledan> get on the number 9 from manc to hell
[19:39] <penguin42> no, it's the number 8
[19:40] <penguin42> that goes through Salford and Bolton, both of which are close to hell
[19:40] <diddledan> lol
[19:40] <diddledan> I'm currently ripping "Thunderbirds remastered"£
[19:41] <penguin42> it's basically 5 hours
[19:41] <diddledan> 5 hours in hell is too long
[19:41] <penguin42> true
[19:49] <penguin42> diddledan: hmm, camlistore, so it's a storage server?
[19:50] <diddledan> yeah
[19:50] <diddledan> written in go
[19:50] <penguin42> yeh which is better than the disaster of php that is owncloud
[19:50] <diddledan> indeed, owncloud is a mess
[19:54] <diddledan> camlistore looks pretty funky
[19:55] <diddledan> and I'm only half way through their demo
[19:55] <diddledan> they've got a "proper" fuse filesystem that doesn't just use rsync in the background
[19:56] <diddledan> so you can actually have a 1PB file on a laptop with only 64GB of HDD
[19:56] <diddledan> the google drive (e.g.) equivalent doesn't do that! :-p
[20:00] <penguin42> do you understand much about object filesystem stuff - I'm gently trying to understand if you can build queues on them
[20:01]  * penguin42 has a general evil plan of building a smtp-imap-gmail-like mail system on generic object storage
[20:01] <penguin42> but it's only at the evil plan level
[20:02] <shauno> don't do it man :(
[20:04] <penguin42> you mean for my sanity?
[20:05] <shauno> life's too short to try to implement smtp
[20:06] <penguin42> well, I was thinking of gluing it at the back of an existing mta
[20:06] <penguin42> apparently there's a closed source addition to dovecot to do this
[20:08] <diddledan> postfix can probably be configured to store in random places via a local delivery agent
[20:08] <penguin42> yeh I think that's how they set it up
[20:08] <diddledan> e.g. instead of storing into a maildir/ you tell it to use `script`
[20:09] <penguin42> yeh
[20:09] <penguin42> diddledan: but does the incoming queue still live on the local disk?
[20:10] <diddledan> I believe it just dumps the content of the email into a configured LDA like that via STDIN
[20:10] <diddledan> yeah the postfix queue is unchanged in that instance
[20:10] <diddledan> it's only the storage that changes
[20:10] <diddledan> i.e. the final recipient's mailbox
[20:11] <penguin42> so that's not bad, it would certainly avoid the reimplementing SMTP
[20:11] <penguin42> but it does mean that 1) If you lose one of the front end hosts you lose the queue  2) You don't get the chance to do fun sharing of the mail contents/attachments if they're sent to a lot of people (or a list? does it expand the lists first?)
[20:21] <shauno> that's how my mail's delivered
[20:21] <shauno> it's piped into procmail
[20:28] <shauno> (you can probably have some fun with milters in postfix too)
[21:43] <maps> low and behold san andreas was boing...1hr54 of dull
[21:45] <shauno> the one with the rock?
[22:54]  * diddledan chooses paper and beats the rock
[22:57]  * penguin42 points out 'The paper' only gets an imdb score of 6.5 compared to 'The rock's score of 7.4
[22:58] <diddledan> what about scissors?
[22:59] <penguin42> diddledan: 'The scissoring' (the closest I could find) hasn't got 5 votes yet
[22:59] <diddledan> aww
[23:29] <shauno> my third bug report ever \o/.  lets see if this has any more luck than the others  heh
[23:30] <diddledan> oh?
[23:30] <diddledan> what against?
[23:31] <shauno> LDS
[23:31] <diddledan> latter-day saints?
[23:31] <diddledan> i.e. mormons?
[23:31] <shauno> landscape
[23:32] <diddledan> aah
[23:32] <shauno> I just noticed my last bug, from 2011, is still marked as new :/
[23:32] <diddledan> `o/
[23:32] <diddledan> err \o/
[23:32] <diddledan> silly keymap
[23:33] <shauno> (I can't do much with it, the hardware involved doesn't exist anymore, so I can't confirm/deny)
[23:33] <diddledan> lol
[23:33] <diddledan> so it's a bug in landscape itself you've filed?
[23:34] <shauno> yeah.  I have the dedicated server (lds) installed and it's going nuts
[23:34] <diddledan> oops
[23:34] <shauno> a choice selection of cron jobs never end, so it slowly but surely fills the box
[23:37] <shauno> I think at the very least, it shouldn't launch a new copy of a job if the prior copy is still running
[23:37] <shauno> it wouldn't solve the fact that it claims scripts have a 10-minute timeout, and my oldest has been running since the machine booted.  but it'd at least stop it eating all available ram
[23:40] <shauno> this is quite funny though;  http://i.imgur.com/x4ZJrW4.png
[23:40] <shauno> you can actually see how many copies (currently 8) didn't die from the steps in the ram
[23:54] <ali1234> this is why cron sucks and systemd is great :)
[23:54] <ali1234> or so i'm told...
[23:57] <shauno> edgy ;)