[04:23] ▄▄▄▄▄▄▄▄▄▄▄▄▄ LRH IS LIVE NOW!! TODAYS EDITION SLIMER GETS FUCKED IN VEGAS!! https://www.youtube.com/user/l0de/live CALL 315-505-4666 mzcfte: ReimuHakurei_ boshhead dragan-s ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄ [04:23] ▄▄▄▄▄▄▄▄▄▄▄ LRH IS LIVE NOW!! TODAYS EDITION SLIMER GETS FUCKED IN VEGAS!! https://www.youtube.com/user/l0de/live CALL 315-505-4666 iucxxrjlrm: Nokaji harrow EriC^^ ▄▄▄▄▄▄▄▄▄▄▄ [04:23] â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„ LRH IS LIVE NOW!! TODAYS EDITION SLIMER GETS FUCKED IN VEGAS!! https://www.youtube.com/user/l0de/live CALL 315-505-4666 hvubxtfyq: Ben64 Jonesy_ ikevin â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â–„â [04:23] ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄ LRH IS LIVE NOW!! TODAYS EDITION SLIMER GETS FUCKED IN VEGAS!! https://www.youtube.com/user/l0de/live CALL 315-505-4666 nsjxua: dexterfoo jalcine EriC^^ ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄ [04:36] good morning to all [05:08] can do this no more - G nite \o === Jonesy_ is now known as JonesyJ [06:36] morning alkisg [06:36] Good morning lotuspsychje, hi all! [06:44] Yo! [06:48] hey tsimonq2 [07:13] alkisg: v7 was crossposting in linux this morning so unsure for his different storys [07:13] Ah, ty [07:49] good morning, all [07:50] Good morning ducasse [07:51] hey ducasse [07:52] hi alkisg, lotuspsychje - you guys doing well today? [07:52] great here [07:52] After 12 days with 6 kids here, now the real vacations start :D [07:53] nice1 alkisg [07:53] work time lol? [07:54] Relaxing sunday, then work :) [07:55] same here [07:59] same plan as me then, do as little as possible? :) [07:59] ooof, -14°C here :( [08:00] lol [08:04] * lotuspsychje turns up the heat [11:47] Howdy folks [14:47] good afternoon [14:48] Hey lotuspsychje [14:48] hey BluesKaj [14:49] afternoon EriC^^ [14:49] how was the skate session [14:49] afternoon lotuspsychje [14:49] good [14:50] what's up? [14:50] bionic alpha pushed to future due to meltdown bug : ( [14:51] ah [14:51] is this bug serious, everybody is talking about it [14:51] should be pretty serious yes [14:52] interesting [14:53] i guess on shared vps and stuff its important [14:53] yeah i think alot of server will get targetted [14:56] meltdown bug on bionic ? [14:56] i think meltdown on all versions right? [14:57] yup [14:57] our isp finally has a new website [14:57] thank god, it was becoming shameful [14:57] https://www.ogero.gov.lb/ [14:58] EriC^^: your isp owned by the gov? [14:59] yeah [14:59] EriC^^: neat website [14:59] EriC^^: better watch what you type then :p [14:59] ogero is government owned, it gives internet to other isp's that are private, but it's the same just so it doesn't seem monopolish [15:00] lol nah, it's not like that here [15:01] was joking EriC^^ [15:01] EriC^^: i guess every isp is related to gov no? [15:01] have you seen 'winter bones' with jennifer lawrence and robert denero [15:01] ? [15:01] hmm doesnt ring a bell no [15:01] i watched hacker 2016 yesterday [15:01] no in other countries they have private lines [15:02] was pretty neat, and its based on a true story [15:02] EriC^^: ah kk [15:02] aha [15:02] i like deniro [15:03] yeah he's good [15:03] jennifer lawrence is famous for good acting skills too [15:03] lemme imdb that [15:03] already got an oscar [15:03] 7.2 [15:03] not bad [15:04] actually ISPs should be utilities, like water a sewer Utlities, not like electricity ones which are mostly privtely owned corporations nowadays [15:04] i wish they'd release a really cool scifi movie like the matrix [15:04] it was mind blowing when it came out, wish something like it hits the movies [15:06] EriC^^: looks like psychological flick [15:06] true BluesKaj [15:06] lotuspsychje: did you see 'the invention of lying'? it's by ricky gervais [15:06] also not no [15:07] EriC^^: the matrix was big hit when it came out, wanna get those also [15:08] ricky gervais is hilarious [15:08] i havent seen the movie either [15:08] sometimes i feel like im outa good movies lol [15:09] problem with imdb they rate movies from all time, i dont wanna see one from 1942... [15:09] yeah it's been a while something extra wow hit [15:10] i got a little theory on why they cant make good ones anymore [15:10] they invent too much digital tricks [15:10] 80-90 movies didnt had those, and made great movies [15:10] lol i didnt see robert deniro in the trailer at all [15:10] less special effects [15:11] me neither, maybe he was some neighbour lol [15:11] yeah sort of like nintendo [15:11] they used to focus more on the game and story and characters and less on effects and stuff [15:12] true [15:13] interstellar was kind of neat [15:13] when he falls into the blackhole and he's in the library behind his daughter it's pretty powerful [15:13] EriC^^: that crazy sound tru the whole movie i liked [15:13] thats the kind of things they need to do.. [15:14] yeah the soundtrack is amazing, hans zimmer 'nuff said [15:14] suspense [15:14] EriC^^: its like they start a good plot sometimes, and mess up the whole end [15:14] i dont get that [15:15] i think they do that on purpose, because we download tor..erm hire dvd's [15:18] like martial arts EriC^^ ? [15:18] yeah it's nice [15:18] got a nice collection of those aswell [15:19] i watched ipman 123 [15:19] they were good [15:19] yeah i loved those [15:19] big trouble in little china [15:20] american ninja [15:20] wow [15:20] 1986 [15:20] old stuff :p [15:21] tucker that's the guy from 3000 miles to graceland [15:21] i mean kurt russell [15:21] yeah [15:21] have you seen 3000 miles to ...? [15:21] think so [15:22] they rob a casino [15:23] wow some movies have iddb in the 2/10 range [15:23] 'babes with blades' can't be that bad [15:24] i wonder why it's so low [15:24] writer cecily fay, directory cecily fay, actor cecily fay [15:24] haha [15:25] imdb is just a reviews of users [15:25] i would rate some movies 10/10 [15:25] there's rotten tomatoes too [15:25] is imdb people or critics? [15:26] omg the babes with blades sucks ass, it's like someone made it in his home [15:26] lol [15:26] the knife looks from plastic [15:26] oh wait i know a good movie [15:26] now to recall title hmmm [15:26] its about a serial killer in canada [15:27] EriC^^: the frozen ground, a must see [15:28] there are some movies on this site dunno though [15:28] https://123movieshub.to/123movies [15:29] there's goodbye christopher robin, dunno its the true story about the guy who invented whinnie the poo, margie robberts (sp?) stars in it the australian girl from the wolf of wallstreet [15:30] http://www.imdb.com/title/tt2005374/?ref_=fn_al_tt_1 [15:31] i would rate it 8 [15:31] john cusack nicholas cage [15:31] yeah [15:33] what's this about? http://www.imdb.com/title/tt3521126/ [15:33] 8/10 imdb [15:33] lets c [15:34] dave franco james franco seth rogen [15:34] lol [15:34] movie about weed for sure [15:34] never heard of that [15:34] lotuspsychje, The Frozeb Ground takes place in Alaska and it's based on a real case. [15:34] Frozen even [15:35] yeah === Scytale89 is now known as Scyt4l3 === Scyt4l3 is now known as Scytale === Scytale is now known as Scytale89 [15:44] i like true based storys BluesKaj [15:45] yeah they're usually more interesting then fictional ones [15:45] than [15:45] indeed [15:47] we have strange sort opf weird cop show here called Cardinal, based on real cases, or so i've read...it's well done [15:48] cool [15:56] blade runner 8.3 imdb oO [16:25] BluesKaj: https://usn.ubuntu.com/usn/usn-3516-1/ this wasnt on bionic [16:28] !info firefox bionic [16:28] firefox (source: firefox): Safe and easy web browser from Mozilla. In component main, is optional. Version 57.0.1+build2-0ubuntu1 (bionic), package size 45037 kB, installed size 171466 kB [16:32] ah lenovo news: http://www.omgubuntu.co.uk/2018/01/ubuntu-17-10-lenovo-fix [16:35] wb hggdh [16:36] lotuspsychje: thank you sir [16:42] !mainline [16:43] !kernel [16:43] wakeup, little ubottu, wake up [16:44] come back, almost all is forgiven! ;D [16:45] The kernel team supply continuous mainline kernel builds which can be useful for tracking down issues or testing recent changes in the Linux kernel. More information is available at https://wiki.ubuntu.com/Kernel/MainlineBuilds [16:45] The core of Ubuntu is the Linux kernel: see https://help.ubuntu.com/community/Kernel - You shouldn't have to compile your own, and if you need to troubleshoot issues, you can try a !Mainline kernel instead, but if you insist, see https://help.ubuntu.com/community/Kernel/Compile (see also !Stages) [16:46] lol [16:46] hey daftykins [16:46] heya \o [16:52] for the pi fans: http://news.softpedia.com/news/raspberry-pi-devices-aren-t-affected-by-the-meltdown-and-spectre-vulnerabilities-519255.shtml [16:53] dax: interesting for a trigger? https://wiki.ubuntu.com/Apport !apport [16:55] !bug [16:55] If you find a bug in Ubuntu or any of its derivatives, please report it using the command « ubuntu-bug » - See https://help.ubuntu.com/community/ReportingBugs for other ways to report bugs. [16:55] hmm nvm !bug mentions enough [17:02] Hehe, I can't imagine raspberries getting 30% more slower :D [17:03] lol no [17:13] alkisg: colortail -f /var/log/syslog on that machine and check what happens at those 30min [17:58] tezogmix: welcome [17:58] thanks lotuspsychje [17:58] we have alot of volunteers with pi3's here [17:59] tezogmix: posted earlier: http://news.softpedia.com/news/raspberry-pi-devices-aren-t-affected-by-the-meltdown-and-spectre-vulnerabilities-519255.shtml [17:59] that's cool... so yeah, the ubuntu-mate that I flashed onto SD card is running nicely, minus the few steps I had to do with resizing the PI_BOOT on grub via ubuntu lts in that vmware I was running [17:59] ah right the cortex chips are different lotuspsychje [17:59] howso? [17:59] A57 is vulnerable iirc [17:59] ah kk [18:01] https://developer.arm.com/support/security-update [18:01] Pi 1 and Zero (W): ARM11 // Pi 2 V1: ARM Cortex-A7 // Pi 2 V1.2 and Pi 3: ARM Cortex-A53 [18:02] there were a few ARM variants further below on that link above from ARM for linux-based operations [18:05] During the initial upgrade I tried via the application/software manager on ubuntu-mate, it said there was not enough space on the BOOT partition, the microSD was a clean formated 32GB card... Fortunately, I followed this video on youtube since it appears it was a known issue but never was corrected from the latest image files available: https://www.youtube.com/watch?v=oYAnmjT8P-E [18:06] afterwards, I've been just following the terminal sudo-apt update/dist upgrades and that's been working ok. One major error that seems to not be fixed is Firefox from version 55+ to Quantum does NOT work, it force-quits error on launch. I had to install firefox ESR and that works.. [18:07] that's for the PI 3b/ubuntu-mate [18:07] i see [18:07] it's been a long discussion on the forums, initially thought it was a quantum error but community says it's been happening since many firefox standard versions prior [18:08] tezogmix: what you use your pi for? [18:08] im always curious [18:09] developing patience skills must be the main one (: [18:10] so in essence, I realize it's a volunteer community but I'm just curious as to its security aspect maintenance - lotuspsychje , oh I just bought this pi3 on a whim while at the local computer shop, I wanted to have a separate standalone OS to do simple web browsing/message boards (not intense video streaming) and something to where I can use without my VPN-IP, though I was able to set up vpn on it if needed. [18:10] kk [18:10] So it's hooked up to a 2.4ghz keyboard/mouse + vga monitor (using an hdmi-vga converter) [18:11] security? well Canonical employees handle the OS patching that isn't already handled upstream i imagine [18:11] VGA in 2018 :( [18:12] totally new to the ubuntu/linux world, I came across this path (e.g. ubuntu vmware guest over win7 host) to do some openvpn testing/troubleshooting... windows 7 and possibly other higher versions, have a TAP driver limitation... so can't achieve openvpn aes128/sha1 speeds over 100Mbps really. Have an ISP 300/20Mbps... [18:13] interestingly, we ruled out the i5 2nd gen not being able to handle it by running a ubuntu LTS 16.x live usb on the same laptop cold booted and setup VPN there, and on the same hardwired/router home setup, it was able to achieve 300Mbps+ via aes128-sha1 [18:13] i wonder if win10 has that issue [18:14] so then wanted to try ubuntu within the vmware bridged mode, can get 300/20+mbps vpn-off, however within vpn-on, ~100Mbps again [18:14] those are very low cipher configs for OpenVPN though i think [18:14] yeah 'cause it'll still be going through adapter bridging on the host OS [18:15] which vmware product and version though? [18:15] yeah daftykins , from the vpn service I'm using, at least from the ubuntu live usb testing... we were shocked it was able to match the VPN speeds greater than 300Mbps.. [18:15] I'm using the free version of vmware workstation 14.1 (latest) [18:15] there isn't a free version [18:15] and ubuntu LTS with 2 cores/2gb ram and 20gb [18:16] There is a free personal non-commercial version of vmware [18:16] either that or it just detects whatever speed test you're using and boosts it :D [18:16] hmm don't think that's ws then [18:17] currently on their site [18:17] it is...https://my.vmware.com/en/web/vmware/free#desktop_end_user_computing/vmware_workstation_player/14_0 [18:18] vmware workstation player - it has to be updated to 14.1 to be protected from the meltdown patch [18:18] yeah, player isn't full workstation, knew that :) [18:18] https://www.vmware.com/security/advisories/VMSA-2018-0003.html + https://www.vmware.com/security/advisories/VMSA-2018-0002.html >> [18:18] you're oversharing [18:18] ah ok daftykins , sorry for the nomenclature :) [18:19] also overexplaining [18:19] so does the throughput really matter? [18:19] so back to the ubuntu , now that I have it... kind of cool to have and figured I will keep it to just start using more... [18:20] it does for my use cases, ideally would like to achieve ~200Mbps+ on vpn for single large file size transfers to home... [18:21] 'transfers' :) [18:21] I've been ok with 100Mbps but since it appears the ISP/vpn can both handle higher and my hdd can handle a little bit more on the write/read speeds, it would be cool. [18:22] heh of course an HDD can handle hundreds of megabits [18:22] So there I came across pfsense options but before that, apparently, there's some custom firmware for my asus router which might be able to achieve this and allow group policies on assigning certain static IP's to use/not use vpn. [18:22] ah my limitation is usb 2.0 [18:22] and an 8 year old laptop [18:22] tezogmix: try to build a conversation instead of spam too many details [18:22] yeah i use the same kind of conditional routing with a pfsense device for a client's holiday home [18:22] listen/reply is very nice [18:22] external HDD, blech [18:24] most pfsense openvpn discussions I've come across briefly for folks trying to achieve higher thoroughput (e.g. near gigabit vpn), was in the context of grouped gateways to overcome the single thread limitations of openvpn itself and to saturate the connection that way. [18:24] ah sorry lotuspsychje - will try better... [18:25] well, off topic for here... i'd question the use of a VPN if gigabit throughput is desired [18:26] how protected are we with the latest news vulnerabilities with running ubuntu lts within the vmware? [18:27] provided we're visiting https sites and have our distribution and vmware/host OS updates as best possible... [18:27] tezogmix: your system up to date is one thing [18:28] tezogmix: but who can look into the future what exploits to come? [18:28] tezogmix: perhaps we all affected of something new already? [18:28] security is complex [18:29] that's a good point... up until now, intel has been good with patching things (e.g. AMT/ME) but if they are only going back to updating cpu's from up to 5 years from their intel newsroom announcements, I wonder... [18:29] so many techniques out there to harm/exploit systems [18:30] that's very true lotuspsychje and how vulnerable as a target and what the end user is doing/where they are bridges into more multifactor considerations... [18:30] you're certainly unlikely to see any BIOS update for a sandybridge CPU i would imagine, but that's assuming any firmware level update is going to appear [18:31] so let's say you had a sandybridge CPU daftykins and based on your current uses and news events, how would you proceed on using that machine? [18:31] in terms of security mindfulness ^^ [18:32] given i don't wear a tinfoil hat like a lot of freenode users? apply the host OS patches as and when available and carry on living my life, not being consumed by sensational news reporting [18:36] ah ok :) I do get your latter comment in that how wild and aggressive this would have to be... most of what we are seeing are proof of concept/work over real-world and broad. [18:37] continuing to run 7 would be unwise though this year, as MS already put focus on patching 10 sooner than they do 7 now [18:37] so that's the real security angle for the host part in your scenario [18:38] That's true as well daftykins , I've been riding the EOL aspects of that (I believe 2020 but it's inevitable that if I ever plan to use windows OS as a component, I'll have to upgrade) - I'm a medical student and a lot of of our health care related aspects revolve around windows [18:39] where in the world are you? i've a few doctor friends up in England who get to enjoy the outdated nature of things up there [18:40] I'm in the States... [18:40] We'll all end up running qemu-static-powerpc virtual machines just to prevent the native x86 attacks :p [18:40] or should that be -mips ? [18:41] no thanks (: [18:42] i wonder if these lawsuits on intel will go anywhere [18:42] QEMU, interesting you mentioned this T3, I think I saw a discussion that virtualbox software had that implementation feature still (vmware doesn't) - [18:43] I'm doubtful on that daftykins , this is decades of utilization without a revelation up until now... [18:44] did you miss out on getting the free upgrade to 10 from 7? it's allegedly over now [18:45] i converted my clients licenses before time by taking spare hard disks around and doing the installs just far enough to activate online, then left them on their current setups until we're ready to move them [18:45] oh I opted out of that, I had one of those freeware GWX control panels doing its very best at removing every nature of w10 coming through - this was really a personal choice [18:45] i'm detecting a tinfoil hat there [18:46] hehe, not a tinfoil but more so that I didn't want a store front/apps and the like such as cortana on my OS... feels like win7 is the last of its line for that. Fortunately, it does seem a bit better on community driven interventions on minimizing how MS deploys those embedded features... there's also MS10 LTSB [18:47] Not that win7 didn't have its things but at least it was much more subtle and in the background [18:48] the times, they are a-changin' [18:48] most grips can be avoided, the main benefit is maintaining timely support [18:51] and how for example companies/businesses and the like opt to subscribe to that support (e.g. our health care systems have IT support infrastructure at the lowest of its budget expenses and therein a problem) [18:52] not sure what you mean there, healthcare would be held back on OS versions to retain support of old web apps and/or software [18:56] right, I meant we have lots of problems with how the hospitals budget software support (they cancel/don't renew) - then when problems happen, it's a huge mess to fix... [18:58] ah well, not relevant to an OS really [19:02] nite nite guys [19:02] toodles \o [19:02] cheers daftykins [19:02] bye all === jinky is now known as jink [21:54] https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SpectreAndMeltdown got updated [21:55] "2018 Jan 07: Candidate kernels are beginning to be made available for testing at ppa:canonical-kernel-team/pti. This initial round will address CVE-2017-5754. A subsequent round will then address CVE-2017-5715 and CVE-2017-5753." --> https://launchpad.net/~canonical-kernel-team/+archive/ubuntu/pti/ [21:57] (i'm not updating the factoid because they're testing builds, and thus not appropriate for most #ubuntu users) [21:58] good plan :) [21:59] ouch!! using add-apt-repository got "gpg: no valid OpenPGP data found." [23:31] page got updated again [23:31] "This initial round will address CVE-2017-5754 (aka Meltdown or Variant 3) for x86_64. We will address CVE-2017-5715 and CVE-2017-5753 (aka Spectre or Variant 1 & 2) in a subsequent round. We will also address additional architectures in subsequent rounds." [23:31] so that explains kirtland's blog post too :) [23:32] kirkland* [23:33] i have a feeling that come kernel patch release day i'm going to need to split into !meltdown and !spectre just to avoid the factoid length limit -_- [23:41] and !spectre-variant1, 2 3 :) [23:45] there are infinite Spectre variants