[07:01] <diplo> Morning all
[07:01] <diplo> Anyone have any experience with kickstart files ?
[07:06] <SuperMatt> nop
[07:23] <SuperMatt> !isitoutyet
[07:23] <SuperMatt> But it is thursday!
[08:01] <foobarry> diplo: had some experience in the past
[08:03] <SuperMatt> I may be forced to using a mac for work, but I'm going to make the most of it for release day: https://imgur.com/xzVeEdr
[08:04] <foobarry> my coworker turned down a job at the last minute when he discovered he would be using a mac
[08:04] <SuperMatt> I still think it looks like an anime girl with a bow in her hair though
[08:04] <foobarry> rather than arch and clicky keyboard
[08:05] <diplo> I *think* I may have found the issue foobarry
[08:05] <SuperMatt> that's a bit foolish. You can make macs run quite closely to linux
[08:05] <SuperMatt> especially if you install homebrew
[08:05] <foobarry> i think he made the right choice
[08:05] <diplo> didn't have = on the network section ( copied from a successful install ) testing again now
[08:05] <diplo> Not the easiest of things to debug tbh
[08:05] <foobarry> he uses a tiling wm and is productive
[08:06] <foobarry> it's also the tip of the iceberg
[08:06] <SuperMatt> tbh, if he's going to spend most of his time in a terminal, he can just install iterm, set it to full screen, adn use that
[08:08] <foobarry> you have to ask why its mandated though
[08:08] <foobarry> ppl should be able to use the best tools for them within reason
[08:09] <SuperMatt> That's easy. It's not about the best tool for your job, it's about the best tool for ensuring everyone can work, while also ensuring data security
[08:10] <SuperMatt> If people were allowed to use whichever os they wanted, you couldn't also guarantee that they've taken all the necessary steps to protect data if it is stolen
[08:13] <foobarry> i suspect the macs were no more secured than any BYOD
[08:15] <SuperMatt> I wouldn't make that assumption. These days almost every business is locking down their desktops and laptops
[08:15] <SuperMatt> Mostly because it's easy now
[08:16] <foobarry> meanwhile others are providing secure ways to access data from BYOD and insecure devices
[08:17] <SuperMatt> Yeah, they are, but in the case of your friend, chances are they decided that the most sensible way forward is to provide the laptops. It much tighter security too, because you get rid of admin rights and prevent unpatched operating systems spreading virii
[08:39] <TwistedLucidity> Which logs should I look in to find out why a server lost all networking and needed a hard reset? syslog has nothing.
[08:48] <foobarry> the only way we get info like that is logging serial console output to a remove logfile
[08:48] <foobarry> remote
[08:48] <foobarry> if nothing in dmesg etc then you're outta luck probably
[08:49] <foobarry> maybe check ILOM/DRAC/IMM logs too
[09:12] <ahayzen> !isitoutyet
[09:23] <TwistedLucidity> foobarry: Urgh. OK, thanks
[09:28] <TwistedLucidity> lubotu3: Can I point out that today *is* Thursday?
[09:28] <TwistedLucidity> I know
[10:09] <SuperMatt> !isitoutyet
[10:31] <diplo> Gicen up with kickstart for a bit, now on to SSL
[10:32] <diplo> Anyone use LetsEncrypt ? Basically I have a web app that is hosted locally but with FF/Chrome we're getting insecure.. that's fine, can setup SSL with LE correctly, what I'm having issues with is renew
[10:32] <SuperMatt> You can only use LE if the endpoint can be accessed publically
[10:32] <diplo> As we're going to use company.ourdomain.tld and I want to update the dns-01 txt record, but I'll be darned if I can't work out a way to do this on cpanel
[10:33] <diplo> Nah, that's not true.. as long as it resolves internally that's fine too
[10:33] <SuperMatt> Really? Fair enough
[10:33] <SuperMatt> I had no idea
[10:33] <diplo> Yeah, lots of people use it like this
[10:33] <diplo> as no such thing as local certs anymore
[10:33] <diplo> And FF/Chrome don't like Self signed
[10:34] <diplo> To update though, I'll either have to manually update loads of sites or work out a way of updating txt record with certbot with a hook, but my google skills are failing me
[10:38] <diplo> Easiest thing is for me to buy a new domain and use Digital Ocean :)
[10:44] <foobarry> LE need to contact your server every X days though to get the cert though?
[10:45] <SuperMatt> also, cpanel is teh suck
[10:45] <diplo> foobarry: when cert is down to 29 days it can renew
[10:46] <foobarry> only if contactable by external LE servers though innit?
[10:47] <diplo> Basically.. certbot runs locally, creates a dns-01 key, the hook needs to update a txt record in the cpanel dns records under said domain, it certbot then queries letsencrypt/acme servers and hits sub.domain.tld with the new key from my local machine.. says yay and then carries on and renews certs locally
[10:48] <diplo> Only need a domain name, that's what the hooks are for
[10:48] <foobarry> so certbot proxys it?
[10:48] <foobarry> the request
[10:48] <diplo> And SuperMatt - couldn't agree more, but it is what I have to work with unfortunately
[10:48] <diplo> certbot can hook into another place yes, so certbot doesn't need to run on another machine
[10:49] <diplo> As I said, it works manually ( I just have to copy/paste the code manually ) and I want to automate it, as we have 30-40 sites currently that this'll need to happen to, with more to come
[10:50] <diplo> I just can't believe someone hasn't already written something as cPanel is so prevelant, it may come down to me having to write something
[14:23] <diddledan> when you have 90minutes free, "nothing to hide" documentary: https://vimeo.com/189016018
[14:24]  * zmoylan-samj3 waves at diddledan
[14:24] <diddledan> samj3?
[14:24] <diddledan> ello zmoylan-samj3
[14:24] <diddledan> aah, samsung j3 phone
[14:25] <zmoylan-samj3> in hospital at mo on mobile phone
[14:25] <diddledan> :-(
[14:25] <diddledan> you ok?
[14:25]  * diddledan cuddles
[14:25] <zmoylan-samj3> grand, just a nasty course of antibiotics ahead of me for a few weeks with vaccum bandage to close a wound
[14:26] <diddledan> been having accidents, or surgeries?
[14:27] <diddledan> last surgery I had was a git. I had to live off just milk for two weeks, to lose weight, because I'm a fattie
[14:27] <zmoylan-samj3> lost my middle toe due to infecton
[14:27] <diddledan> aww :-( that doesn't sound fun
[14:28]  * zmoylan-samj3 gets to walk beachea at sun rise and leave mobater tracks.... just have to decide if i include a tail... :-)
[14:28] <zmoylan-samj3> *monster
[14:29] <diddledan> lol
[14:29] <diddledan> it's BIGFOOT
[14:29] <zmoylan-samj3> or a simpson
[14:29] <diddledan> hah
[14:34] <TwistedLucidity> I don't sneeze or cough much. Guess when I had recurring coughing fits? Yup, right after surgery. Urgh. Thought I'd burst me stitches at one point...not fun.
[14:38] <zmoylan-samj3> had that after hip replacement. for first month felt like my leg was going to explode sending shrapnel everywhere
[14:39] <TwistedLucidity> "Stand back! I've got a sneeze and I'm not afraid to use it!"
[17:39] <diddledan> skary https://www.wired.com/story/track-location-with-mobile-ads-1000-dollars-study/
[18:07] <diddledan> wait, when did we go back to the middle ages?! "Det Supt Corrigan is now live on @BBCTheOneShow talking about how you can protect your family gold"
[18:10] <daftykins> stand and deliver!
[18:12] <StevenR> diddledan: with lasers?
[18:12]  * diddledan stands up and unzips
[18:13]  * daftykins extracts the gold from diddledan's suitcases
[18:13] <daftykins> wait a minute, this is a box of Terry's all gold!?
[18:13] <diddledan> :-D
[18:13] <diddledan> I like me some chocolate
[18:13] <daftykins> your money or your wife!
[18:13] <diddledan> here, have my wife
[18:14] <daftykins> thank ye
[18:14] <daftykins> has that new Red Dwarf started yet?
[18:15] <diddledan> her name is "Baldrick"
[18:15] <diddledan> I believe it has, yes
[18:15] <diddledan> if the geolock doesn't nuke your connection you should be able to get it via uktvplay
[18:16] <diddledan> or torrents
[18:16] <daftykins> i was impressed at the pace they must advertise on the underground, given it said "Thursday" when i was there last week
[18:16] <diddledan> you didn't hear that from me, though, understand?!
[18:16] <daftykins> i don't even know who you are!
[18:16]  * daftykins whistles
[18:17] <diddledan> nor do I
[18:17]  * diddledan whistles too
[18:17] <diddledan> https://www.youtube.com/watch?v=Zoiu8_K-eZg
[18:18] <diddledan> I love that clip
[18:18] <diddledan> tis my favourite
[18:18] <daftykins> is it the Futurama nonchalant one again?
[18:18] <daftykins> right the rain has eased, time to walk home \o
[18:18] <diddledan> yes. yes it is! :-p
[18:19] <daftykins> i've made a sufficient dent on this guys bank balance, £4k of toys ordered
[18:19] <diddledan> ouch
[18:19] <daftykins> £680 for a samsung note 8 :S
[18:19] <diddledan> that's a lot of toy
[18:19] <daftykins> ooh yes
[18:19] <diddledan> it's either a really big plastic phalus, or an iphone
[19:05] <diddledan> https://twitter.com/hugojmd/status/920792535131238400
[19:17] <daftykins> https://sensationssnacks.co.uk/peking-spare-rib - thee are better than i expected :O