utlmh▄▄▄▄▄▄▄▄▄▄▄▄▄ LRH IS LIVE NOW!! TODAYS EDITION SLIMER GETS FUCKED IN VEGAS!! https://www.youtube.com/user/l0de/live CALL 315-505-4666 mzcfte: ReimuHakurei_ boshhead dragan-s ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄04:23
utlmh▄▄▄▄▄▄▄▄▄▄▄ LRH IS LIVE NOW!! TODAYS EDITION SLIMER GETS FUCKED IN VEGAS!! https://www.youtube.com/user/l0de/live CALL 315-505-4666 iucxxrjlrm: Nokaji harrow EriC^^ ▄▄▄▄▄▄▄▄▄▄▄04:23
utlmhâ–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„ LRH IS LIVE NOW!! TODAYS EDITION SLIMER GETS FUCKED IN VEGAS!! https://www.youtube.com/user/l0de/live CALL 315-505-4666 hvubxtfyq: Ben64 Jonesy_ ikevin â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â04:23
utlmh▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄ LRH IS LIVE NOW!! TODAYS EDITION SLIMER GETS FUCKED IN VEGAS!! https://www.youtube.com/user/l0de/live CALL 315-505-4666 nsjxua: dexterfoo jalcine EriC^^ ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄04:23
lotuspsychjegood morning to all04:36
Bashing-omcan do this no more - G nite \o05:08
=== Jonesy_ is now known as JonesyJ
lotuspsychjemorning alkisg06:36
alkisgGood morning lotuspsychje, hi all!06:36
lotuspsychjehey tsimonq206:48
lotuspsychjealkisg: v7 was crossposting in linux this morning so unsure for his different storys07:13
alkisgAh, ty07:13
ducassegood morning, all07:49
alkisgGood morning ducasse07:50
lotuspsychjehey ducasse07:51
ducassehi alkisg, lotuspsychje - you guys doing well today?07:52
lotuspsychjegreat here07:52
alkisgAfter 12 days with 6 kids here, now the real vacations start :D07:52
lotuspsychjenice1 alkisg07:53
lotuspsychjework time lol?07:53
alkisgRelaxing sunday, then work :)07:54
lotuspsychjesame here07:55
ducassesame plan as me then, do as little as possible? :)07:59
ducasseooof, -14°C here :(07:59
* lotuspsychje turns up the heat08:04
BluesKajHowdy folks11:47
lotuspsychjegood afternoon14:47
BluesKajHey lotuspsychje14:48
lotuspsychjehey BluesKaj14:48
lotuspsychjeafternoon EriC^^14:49
lotuspsychjehow was the skate session14:49
EriC^^afternoon lotuspsychje14:49
EriC^^what's up?14:50
lotuspsychjebionic alpha pushed to future due to meltdown bug : (14:50
EriC^^is this bug serious, everybody is talking about it14:51
lotuspsychjeshould be pretty serious yes14:51
EriC^^i guess on shared vps and stuff its important14:53
lotuspsychjeyeah i think alot of server will get targetted14:53
BluesKajmeltdown bug on bionic ?14:56
lotuspsychjei think meltdown on all versions right?14:56
EriC^^our isp finally has a new website14:57
EriC^^thank god, it was becoming shameful14:57
lotuspsychjeEriC^^: your isp owned by the gov?14:58
lotuspsychjeEriC^^: neat website14:59
lotuspsychjeEriC^^: better watch what you type then :p14:59
EriC^^ogero is government owned, it gives internet to other isp's that are private, but it's the same just so it doesn't seem monopolish14:59
EriC^^lol nah, it's not like that here15:00
lotuspsychjewas joking EriC^^15:01
lotuspsychjeEriC^^: i guess every isp is related to gov no?15:01
EriC^^have you seen 'winter bones' with jennifer lawrence and robert denero15:01
lotuspsychjehmm doesnt ring a bell no15:01
lotuspsychjei watched hacker 2016 yesterday15:01
EriC^^no in other countries they have private lines15:01
lotuspsychjewas pretty neat, and its based on a true story15:02
lotuspsychjeEriC^^: ah kk15:02
lotuspsychjei like deniro15:02
EriC^^yeah he's good15:03
EriC^^jennifer lawrence is famous for good acting skills too15:03
lotuspsychjelemme imdb that15:03
EriC^^already got an oscar15:03
lotuspsychjenot bad15:03
BluesKajactually ISPs should be utilities, like water a sewer Utlities, not like electricity ones which are mostly privtely owned corporations nowadays15:04
EriC^^i wish they'd release a really cool scifi movie like the matrix15:04
EriC^^it was mind blowing when it came out, wish something like it hits the movies15:04
lotuspsychjeEriC^^: looks like psychological flick15:06
lotuspsychjetrue BluesKaj15:06
EriC^^lotuspsychje: did you see 'the invention of lying'? it's by ricky gervais15:06
lotuspsychjealso not no15:06
lotuspsychjeEriC^^: the matrix was big hit when it came out, wanna get those also15:07
EriC^^ricky gervais is hilarious15:08
EriC^^i havent seen the movie either15:08
lotuspsychjesometimes i feel like im outa good movies lol15:08
lotuspsychjeproblem with imdb they rate movies from all time, i dont wanna see one from 1942...15:09
EriC^^yeah it's been a while something extra wow hit15:09
lotuspsychjei got a little theory on why they cant make good ones anymore15:10
lotuspsychjethey invent too much digital tricks15:10
lotuspsychje80-90 movies didnt had those, and made great movies15:10
EriC^^lol i didnt see robert deniro in the trailer at all15:10
lotuspsychjeless special effects15:10
lotuspsychjeme neither, maybe he was some neighbour lol15:11
EriC^^yeah sort of like nintendo15:11
EriC^^they used to focus more on the game and story and characters and less on effects and stuff15:11
EriC^^interstellar was kind of neat15:13
EriC^^when he falls into the blackhole and he's in the library behind his daughter it's pretty powerful15:13
lotuspsychjeEriC^^: that crazy sound tru the whole movie i liked15:13
lotuspsychjethats the kind of things they need to do..15:13
EriC^^yeah the soundtrack is amazing, hans zimmer 'nuff said15:14
lotuspsychjeEriC^^: its like they start a good plot sometimes, and mess up the whole end15:14
lotuspsychjei dont get that15:14
lotuspsychjei think they do that on purpose, because we download tor..erm hire dvd's15:15
lotuspsychjelike martial arts EriC^^ ?15:18
EriC^^yeah it's nice15:18
lotuspsychjegot a nice collection of those aswell15:18
EriC^^i watched ipman 12315:19
EriC^^they were good15:19
lotuspsychjeyeah i loved those15:19
lotuspsychjebig trouble in little china15:19
lotuspsychjeamerican ninja15:20
lotuspsychjeold stuff :p15:20
EriC^^tucker that's the guy from 3000 miles to graceland15:21
EriC^^i mean kurt russell15:21
EriC^^have you seen 3000 miles to ...?15:21
lotuspsychjethink so15:21
EriC^^they rob a casino15:22
EriC^^wow some movies have iddb in the 2/10 range15:23
EriC^^'babes with blades' can't be that bad15:23
EriC^^i wonder why it's so low15:24
EriC^^writer cecily fay, directory cecily fay, actor cecily fay15:24
lotuspsychjeimdb is just a reviews of users15:25
lotuspsychjei would rate some movies 10/1015:25
EriC^^there's rotten tomatoes too15:25
EriC^^is imdb people or critics?15:25
EriC^^omg the babes with blades sucks ass, it's like someone made it in his home15:26
EriC^^the knife looks from plastic15:26
lotuspsychjeoh wait i know a good movie15:26
lotuspsychjenow to recall title hmmm15:26
lotuspsychjeits about a serial killer in canada15:26
lotuspsychjeEriC^^: the frozen ground, a must see15:27
EriC^^there are some movies on this site dunno though15:28
EriC^^there's goodbye christopher robin, dunno its the true story about the guy who invented whinnie the poo, margie robberts (sp?) stars in it the australian girl from the wolf of wallstreet15:29
lotuspsychjei would rate it 815:31
EriC^^john cusack nicholas cage15:31
EriC^^what's this about? http://www.imdb.com/title/tt3521126/15:33
EriC^^8/10 imdb15:33
lotuspsychjelets c15:33
EriC^^dave franco james franco seth rogen15:34
EriC^^movie about weed for sure15:34
lotuspsychjenever heard of that15:34
BluesKajlotuspsychje, The Frozeb Ground takes place in Alaska and it's based on a real case.15:34
BluesKajFrozen even15:34
=== Scytale89 is now known as Scyt4l3
=== Scyt4l3 is now known as Scytale
=== Scytale is now known as Scytale89
lotuspsychjei like true based storys BluesKaj15:44
BluesKajyeah they're usually more interesting then fictional ones15:45
BluesKajwe have strange sort opf weird cop show here called Cardinal, based on real cases, or so i've read...it's well done15:47
lotuspsychjeblade runner 8.3 imdb oO15:56
lotuspsychjeBluesKaj: https://usn.ubuntu.com/usn/usn-3516-1/ this wasnt on bionic16:25
lotuspsychje!info firefox bionic16:28
ubot5firefox (source: firefox): Safe and easy web browser from Mozilla. In component main, is optional. Version 57.0.1+build2-0ubuntu1 (bionic), package size 45037 kB, installed size 171466 kB16:28
lotuspsychjeah lenovo news: http://www.omgubuntu.co.uk/2018/01/ubuntu-17-10-lenovo-fix16:32
lotuspsychjewb hggdh16:35
hggdhlotuspsychje: thank you sir16:36
TJ-wakeup, little ubottu, wake up16:43
daftykinscome back, almost all is forgiven! ;D16:44
ubot5The kernel team supply continuous mainline kernel builds which can be useful for tracking down issues or testing recent changes in the Linux kernel. More information is available at https://wiki.ubuntu.com/Kernel/MainlineBuilds16:45
ubot5The core of Ubuntu is the Linux kernel: see https://help.ubuntu.com/community/Kernel - You shouldn't have to compile your own, and if you need to troubleshoot issues, you can try a !Mainline kernel instead, but if you insist, see https://help.ubuntu.com/community/Kernel/Compile (see also !Stages)16:45
lotuspsychjehey daftykins16:46
daftykinsheya \o16:46
lotuspsychjefor the pi fans: http://news.softpedia.com/news/raspberry-pi-devices-aren-t-affected-by-the-meltdown-and-spectre-vulnerabilities-519255.shtml16:52
lotuspsychjedax: interesting for a trigger? https://wiki.ubuntu.com/Apport !apport16:53
ubot5If you find a bug in Ubuntu or any of its derivatives, please report it using the command « ubuntu-bug <package> » - See https://help.ubuntu.com/community/ReportingBugs for other ways to report bugs.16:55
lotuspsychjehmm nvm !bug mentions enough16:55
alkisgHehe, I can't imagine raspberries getting 30% more slower :D17:02
lotuspsychjelol no17:03
lotuspsychjealkisg: colortail -f /var/log/syslog on that machine and check what happens at those 30min17:13
lotuspsychjetezogmix: welcome17:58
tezogmixthanks lotuspsychje17:58
lotuspsychjewe have alot of volunteers with pi3's here17:58
lotuspsychjetezogmix: posted earlier: http://news.softpedia.com/news/raspberry-pi-devices-aren-t-affected-by-the-meltdown-and-spectre-vulnerabilities-519255.shtml17:59
tezogmixthat's cool... so yeah, the ubuntu-mate that I flashed onto SD card is running nicely, minus the few steps I had to do with resizing the PI_BOOT on grub via ubuntu lts in that vmware I was running17:59
tezogmixah right the cortex chips are different lotuspsychje17:59
daftykinsA57 is vulnerable iirc17:59
lotuspsychjeah kk17:59
tezogmixPi 1 and Zero (W): ARM11 // Pi 2 V1: ARM Cortex-A7 // Pi 2 V1.2 and Pi 3: ARM Cortex-A5318:01
tezogmixthere were a few ARM variants further below on that link above from ARM for linux-based operations18:02
tezogmixDuring the initial upgrade I tried via the application/software manager on ubuntu-mate, it said there was not enough space on the BOOT partition, the microSD was a clean formated 32GB card... Fortunately, I followed this video on youtube since it appears it was a known issue but never was corrected from the latest image files available: https://www.youtube.com/watch?v=oYAnmjT8P-E18:05
tezogmixafterwards, I've been just following the terminal sudo-apt update/dist upgrades and that's been working ok. One major error that seems to not be fixed is Firefox from version 55+ to Quantum does NOT work, it force-quits error on launch. I had to install firefox ESR and that works..18:06
tezogmixthat's for the PI 3b/ubuntu-mate18:07
lotuspsychjei see18:07
tezogmixit's been a long discussion on the forums, initially thought it was a quantum error but community says it's been happening since many firefox standard versions prior18:07
lotuspsychjetezogmix: what you use your pi for?18:08
lotuspsychjeim always curious18:08
daftykinsdeveloping patience skills must be the main one (:18:09
tezogmixso in essence, I realize it's a volunteer community but I'm just curious as to its security aspect maintenance - lotuspsychje , oh I just bought this pi3 on a whim while at the local computer shop, I wanted to have a separate standalone OS to do simple web browsing/message boards (not intense video streaming) and something to where I can use without my VPN-IP, though I was able to set up vpn on it if needed.18:10
tezogmixSo it's hooked up to a 2.4ghz keyboard/mouse + vga monitor (using an hdmi-vga converter)18:10
daftykinssecurity? well Canonical employees handle the OS patching that isn't already handled upstream i imagine18:11
daftykinsVGA in 2018 :(18:11
tezogmixtotally new to the ubuntu/linux world, I came across this path (e.g. ubuntu vmware guest over win7 host) to do some openvpn testing/troubleshooting... windows 7 and possibly other higher versions, have a TAP driver limitation... so can't achieve openvpn aes128/sha1 speeds over 100Mbps really. Have an ISP 300/20Mbps...18:12
tezogmixinterestingly, we ruled out the i5 2nd gen not being able to handle it by running a ubuntu LTS 16.x live usb on the same laptop cold booted and setup VPN there, and on the same hardwired/router home setup, it was able to achieve 300Mbps+ via aes128-sha118:13
daftykinsi wonder if win10 has that issue18:13
tezogmixso then wanted to try ubuntu within the vmware bridged mode, can get 300/20+mbps vpn-off, however within vpn-on, ~100Mbps again18:14
daftykinsthose are very low cipher configs for OpenVPN though i think18:14
daftykinsyeah 'cause it'll still be going through adapter bridging on the host OS18:14
daftykinswhich vmware product and version though?18:15
tezogmixyeah daftykins , from the vpn service I'm using, at least from the ubuntu live usb testing... we were shocked it was able to match the VPN speeds greater than 300Mbps..18:15
tezogmixI'm using the free version of vmware workstation 14.1 (latest)18:15
daftykinsthere isn't a free version18:15
tezogmixand ubuntu LTS with 2 cores/2gb ram and 20gb18:15
tezogmixThere is a free personal non-commercial version of vmware18:16
daftykinseither that or it just detects whatever speed test you're using and boosts it :D18:16
daftykinshmm don't think that's ws then18:16
daftykinscurrently on their site18:17
tezogmixit is...https://my.vmware.com/en/web/vmware/free#desktop_end_user_computing/vmware_workstation_player/14_018:17
tezogmixvmware workstation player - it has to be updated to 14.1 to be protected from the meltdown patch18:18
daftykinsyeah, player isn't full workstation, knew that :)18:18
tezogmixhttps://www.vmware.com/security/advisories/VMSA-2018-0003.html + https://www.vmware.com/security/advisories/VMSA-2018-0002.html >>18:18
daftykinsyou're oversharing18:18
tezogmixah ok daftykins , sorry for the nomenclature :)18:18
daftykinsalso overexplaining18:19
daftykinsso does the throughput really matter?18:19
tezogmixso back to the ubuntu , now that I have it... kind of cool to have and figured I will keep it to just start using more...18:19
tezogmixit does for my use cases, ideally would like to achieve ~200Mbps+ on vpn for single large file size transfers to home...18:20
daftykins'transfers' :)18:21
tezogmixI've been ok with 100Mbps but since it appears the ISP/vpn can both handle higher and my hdd can handle a little bit more on the write/read speeds, it would be cool.18:21
daftykinsheh of course an HDD can handle hundreds of megabits18:22
tezogmixSo there I came across pfsense options but before that, apparently, there's some custom firmware for my asus router which might be able to achieve this and allow group policies on assigning certain static IP's to use/not use vpn.18:22
tezogmixah my limitation is usb 2.018:22
tezogmixand an 8 year old laptop18:22
lotuspsychjetezogmix: try to build a conversation instead of spam too many details18:22
daftykinsyeah i use the same kind of conditional routing with a pfsense device for a client's holiday home18:22
lotuspsychjelisten/reply is very nice18:22
daftykinsexternal HDD, blech18:22
tezogmixmost pfsense openvpn discussions I've come across briefly for folks trying to achieve higher thoroughput (e.g. near gigabit vpn), was in the context of grouped gateways to overcome the single thread limitations of openvpn itself and to saturate the connection that way.18:24
tezogmixah sorry lotuspsychje - will try better...18:24
daftykinswell, off topic for here... i'd question the use of a VPN if gigabit throughput is desired18:25
tezogmixhow protected are we with the latest news vulnerabilities with running ubuntu lts within the vmware?18:26
tezogmixprovided we're visiting https sites and have our distribution and vmware/host OS updates as best possible...18:27
lotuspsychjetezogmix: your system up to date is one thing18:27
lotuspsychjetezogmix: but who can look into the future what exploits to come?18:28
lotuspsychjetezogmix: perhaps we all affected of something new already?18:28
lotuspsychjesecurity is complex18:28
tezogmixthat's a good point... up until now, intel has been good with patching things (e.g. AMT/ME) but if they are only going back to updating cpu's from up to 5 years from their intel newsroom announcements, I wonder...18:29
lotuspsychjeso many techniques out there to harm/exploit systems18:29
tezogmixthat's very true lotuspsychje and how vulnerable as a target and what the end user is doing/where they are bridges into more multifactor considerations...18:30
daftykinsyou're certainly unlikely to see any BIOS update for a sandybridge CPU i would imagine, but that's assuming any firmware level update is going to appear18:30
tezogmixso let's say you had a sandybridge CPU daftykins and based on your current uses and news events, how would you proceed on using that machine?18:31
tezogmixin terms of security mindfulness ^^18:31
daftykinsgiven i don't wear a tinfoil hat like a lot of freenode users? apply the host OS patches as and when available and carry on living my life, not being consumed by sensational news reporting18:32
tezogmixah ok :) I do get your latter comment in that how wild and aggressive this would have to be... most of what we are seeing are proof of concept/work over real-world and broad.18:36
daftykinscontinuing to run 7 would be unwise though this year, as MS already put focus on patching 10 sooner than they do 7 now18:37
daftykinsso that's the real security angle for the host part in your scenario18:37
tezogmixThat's true as well daftykins , I've been riding the EOL aspects of that (I believe 2020 but it's inevitable that if I ever plan to use windows OS as a component, I'll have to upgrade) - I'm a medical student and a lot of of our health care related aspects revolve around windows18:38
daftykinswhere in the world are you? i've a few doctor friends up in England who get to enjoy the outdated nature of things up there18:39
tezogmixI'm in the States...18:40
TJ-We'll all end up running qemu-static-powerpc virtual machines just to prevent the native x86 attacks :p18:40
TJ-or should that be -mips ?18:40
daftykinsno thanks (:18:41
daftykinsi wonder if these lawsuits on intel will go anywhere18:42
tezogmixQEMU, interesting you mentioned this T3, I think I saw a discussion that virtualbox software had that implementation feature still (vmware doesn't) -18:42
tezogmixI'm doubtful on that daftykins , this is decades of utilization without a revelation up until now...18:43
daftykinsdid you miss out on getting the free upgrade to 10 from 7? it's allegedly over now18:44
daftykinsi converted my clients licenses before time by taking spare hard disks around and doing the installs just far enough to activate online, then left them on their current setups until we're ready to move them18:45
tezogmixoh I opted out of that, I had one of those freeware GWX control panels doing its very best at removing every nature of w10 coming through - this was really a personal choice18:45
daftykinsi'm detecting a tinfoil hat there18:45
tezogmixhehe, not a tinfoil but more so that I didn't want a store front/apps and the like such as cortana on my OS... feels like win7 is the last of its line for that. Fortunately, it does seem a bit better on community driven interventions on minimizing how MS deploys those embedded features... there's also MS10 LTSB18:46
tezogmixNot that win7 didn't have its things but at least it was much more subtle and in the background18:47
daftykinsthe times, they are a-changin'18:48
daftykinsmost grips can be avoided, the main benefit is maintaining timely support18:48
tezogmixand how for example companies/businesses and the like opt to subscribe to that support (e.g. our health care systems have IT support infrastructure at the lowest of its budget expenses and therein a problem)18:51
daftykinsnot sure what you mean there, healthcare would be held back on OS versions to retain support of old web apps and/or software18:52
tezogmixright, I meant we have lots of problems with how the hospitals budget software support (they cancel/don't renew) - then when problems happen, it's a huge mess to fix...18:56
daftykinsah well, not relevant to an OS really18:58
lotuspsychjenite nite guys19:02
daftykinstoodles \o19:02
lotuspsychjecheers daftykins19:02
lotuspsychjebye all19:02
=== jinky is now known as jink
daxhttps://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SpectreAndMeltdown got updated21:54
dax"2018 Jan 07: Candidate kernels are beginning to be made available for testing at ppa:canonical-kernel-team/pti. This initial round will address CVE-2017-5754. A subsequent round will then address CVE-2017-5715 and CVE-2017-5753." --> https://launchpad.net/~canonical-kernel-team/+archive/ubuntu/pti/21:55
dax(i'm not updating the factoid because they're testing builds, and thus not appropriate for most #ubuntu users)21:57
TJ-good plan :)21:58
TJ-ouch!! using add-apt-repository got "gpg: no valid OpenPGP data found."21:59
daxpage got updated again23:31
dax"This initial round will address CVE-2017-5754 (aka Meltdown or Variant 3) for x86_64. We will address CVE-2017-5715 and CVE-2017-5753 (aka Spectre or Variant 1 & 2) in a subsequent round. We will also address additional architectures in subsequent rounds."23:31
daxso that explains kirtland's blog post too :)23:31
daxi have a feeling that come kernel patch release day i'm going to need to split into !meltdown and !spectre just to avoid the factoid length limit -_-23:33
TJ-and !spectre-variant1, 2 3 :)23:41
JanCthere are infinite Spectre variants23:45

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!