=== markthomas is now known as markthomas|away
[07:19] <skrp> i run an nfs server on freebsd. i can mount it on my other freebsd box but when i try to mount on ubuntu i get " Access denied by server
[07:51] <lordievader> Good morning.
=== Lcawte|Away is now known as Lcawte
=== Lcawte is now known as Lcawte|Away
[09:36] <jdv> oooook. What could cause APFs deny_hosts.rules to flush out rules I add?
[09:36] <jdv> there is no cron
=== lukasa is now known as lukasa_away
[18:17] <bithon> Hello
[18:18] <bithon> Is anyone here in a mood to help another fellow newbie in need of help :D
[18:18] <bithon> in mood*
[18:18] <bithon> Ill state my problem anyway so if anyone's in mood to help I'd appreciate it
[18:19] <bithon> So I'm trying to configure a web server in VirtualBox and so far I've been quite succesful
[18:19] <bithon> the only problem that I face right now is permissions and such
[18:19] <bithon> You see, I use this VM as my dev box. I ssh to it and write code directly from it in vim
[18:19] <bithon> so I setup a wordpress blog and I wish to modify some code but
[18:20] <bithon> I constantly have to switch file permissions of my virtualhost's folder
[18:20] <bithon> from www-data to my account's group
[18:20] <bithon> and it's annoying
[18:20] <bithon> does anyone know a way to bypass this
[18:20] <bithon> ?
[18:21] <bithon> so that wordpress's happy and is able to modify whatever it pleases dynamically without me interfering and at the same time allow me to modify code with my own account
[18:21] <lordievader> bithon: Acl's or a shared group.
[18:22] <bithon> Oh
[18:22] <bithon> I tried placing my account (bithon) to www-data group
[18:22] <bithon> but that doesn't work :S
[18:22] <lordievader> Does the group have rw access?
[18:22] <bithon> yeah
[18:22] <bithon>  -rwxrwxr-x
[18:23] <lordievader> Then it should work.
[18:23] <bithon> There are the permissions
[18:23] <bithon> These*
[18:24] <bithon> I don't like using chmod 775
[18:24] <bithon> Is there a way around it ?
[18:24] <bithon> oh and I'm running apache 2.4 if anyone's wondering
[18:24] <lordievader> bithon: See what I said above.
[18:24] <bithon> Okay I'll look into it and get back to you in a bit. Thanks
[18:38] <bithon> Hmm ACL seems overly complicated
[18:38] <bithon> on Arch Linux wiki it states that I have to mount my partition with ACL
[18:38] <bithon> which complicates a really simple thing that I'm trying to accomplish
[20:43] <andrewjs18> hi all, any iptables gurus in here?
[20:59] <teward> andrewjs18: depends on what you define as a 'guru' and what you want to achieve :P
[21:00] <andrewjs18> teward, I'm still a newb, so I'm sure anyone better than me will suffice.
[21:00] <andrewjs18> anyways, I'm trying to block China through iptables but I'm getting some errors, and I'm not sure why
[21:00] <andrewjs18> I'm using this guide: https://mattwilcox.net/web-development/unexpected-ddos-blocking-china-with-ipset-and-iptables
[21:00] <teward> blocking countries by iptables is incredibly difficult
[21:01] <andrewjs18> I'm using ipset to do it
[21:01] <andrewjs18> let me test something real fast though
[21:02] <andrewjs18> adding this bit of code to the file I load for my iptables rules is causing it to fail: -A INPUT -p tcp -m set --match-set china src -j DROP
[21:02] <andrewjs18> if I comment it out and then load the rules, no issues.
[21:23] <Sling> andrewjs18: what kind of requests do you want to block? remember that if you put all of this in iptables, it will need to be parsed for every incoming packet on every port/protocol
[21:23] <Sling> for a lot of subnets (think thousands or more) this might cost valuable CPU%
=== JanC_ is now known as JanC