[08:12] <SuperMatt> morning all
[09:07] <Nafallo> morning SuperMatt
[09:14] <zleap> hi
[09:53] <brobostigon> morning boys and girls.
[10:13] <SuperMatt> I'm so done with being ill
[10:13] <SuperMatt> can someone just extract teh luirgy from me?
[10:13] <brobostigon> same here, feeling very ill.
[10:26] <foobarry> what sort of ill?
[10:31] <SuperMatt> all of the ill
[10:36] <brobostigon> exactly, every kind of ill.
[13:46] <foobarry> right, i've asked a few times but a bit unsure
[13:47] <foobarry> how do i use LetsEncrypt certificates on a machine on internal network?
[13:49] <diddledan> foobarry: I think you need to use DNS record-based verification of the domain, rather than http-based verification (which would require direct access). I'm not sure how that's achieved, though.
[13:50] <m6lpi> you mean internal to internal?
[13:50] <foobarry> usually LE need to see your server on the web every X days to revalidate
[13:50] <foobarry> but i don't wanna put the server on the web
[13:51] <foobarry> i thought SuperMatt or someone mentioned a way to do it with certbot
[13:53] <diddledan> "do we need a new internet" (tomorrow's world podcast): http://www.bbc.co.uk/programmes/p05y10x8
[13:54] <zmoylan-pi> but only for the blackjack and hookers? :-P
[14:17] <SuperMatt> I've never done it before, so I don't know how it works
[14:17] <SuperMatt> I only use LE for my public domains
[14:18] <foobarry> https://ins.jku.at/news/how-use-certbot-setting-letsencrypt-certificates-behind-reverse-proxy
[14:18] <foobarry> although reading this on friday is hurting my brain
[15:04]  * zmoylan-pi breaks the glass and passes out the emergency crunchies...
[15:05] <SuperMatt> can I have a curly wurly instead?
[15:05] <Nafallo> SuperMatt: {
[15:05]  * zmoylan-pi looks through the leftover selection boxes and looks for a lurking curlywurly...
[15:06] <Nafallo> hrm. I seem to have eaten all my chocolate.
[15:06] <Nafallo> that's unfortunate.
[15:07] <SuperMatt> zmoylan-pi: if not that, I'll go for a creme egg
[15:08] <zmoylan-pi> i haven't bought a creme egg since kraft bought the company and changed the recipie
[15:08] <SuperMatt> I've not noticed any difference in taste
[15:09] <diddledan> damn, google is failing me - I wanted the clip of Janet in Two Pints of Lager and a Packet of Crisps where she is walking funny because she misses Jonny
[15:10] <diddledan> specifically because she tried replicating him with a Curly Wurly and it went very wrong
[15:10] <SuperMatt> eeewwwww
[15:11] <diddledan> love that show
[15:28] <diplo> Great show diddledan
[15:28] <diplo> And famous boy, he's in print now :)
[15:34] <diddledan> I'm internet famous
[15:36]  * zmoylan-pi dials 0118 999 881 999 119 7253 and reports diddledan to the cyber police...
[15:37] <SuperMatt> I own http://01189998819991197253.org
[15:37] <Laney> 0181 811 81 81
[15:38] <SuperMatt> I can't remember which satuday morning tv show that was, but I do remember it was a saturday morning tv show
[15:39] <zmoylan-pi> not the multicoloured swap shop but close... https://en.wikipedia.org/wiki/Multi-Coloured_Swap_Shop#Telephone_number
[15:40] <Laney> too old for me
[15:40]  * Laney nicks zmoylan-pi's walking stick
[15:40]  * zmoylan-pi reaches over and picks up folded up spare walking stick and clicks it into position...
[15:41] <Laney> the click sounded very satisfying in my head
[15:41] <Laney> carry on
[15:42] <zmoylan-pi> a proper cool metalic *snick* that is quite satisfying
[15:42] <SuperMatt> ah, it was live and kicking
[15:45] <diddledan> live and kicking
[15:46] <diplo> See if any of you guys have an idea
[15:46] <diddledan> I have many ideas
[15:46] <diplo> We use an application call SecureCRT which is a terminal emulater
[15:46] <diplo> We use ssh tunnels to port forward to connect to some internal web apps on customer istes
[15:46] <diplo> sites*
[15:46] <diplo> fine on windows to do 443 -> 443 to IP
[15:47] <diplo> Linux I have to set a higher range
[15:47] <diplo> So using 1001 to 443 is fine
[15:47] <diddledan> <1024 is restricted to root-only
[15:47] <diplo> I thought that too
[15:47] <diplo> Can we get around that ?
[15:47] <diddledan> there might be a sysctl
[15:48] <diddledan> https://stackoverflow.com/questions/413807/is-there-a-way-for-non-root-processes-to-bind-to-privileged-ports-on-linux
[15:49] <diplo> Top man, my google fu has been failing me for the last 10 mins
[15:49] <diplo> thought I'd poke you lot
[15:49] <diddledan> :-)
[15:54] <ensuring> https://imgur.com/a/gUkZ5 sweating to send a cheque for this.
[15:55] <diplo> Can't work out if it is persitent though
[15:56] <diddledan> I believe it is
[15:56] <diddledan> it's a metadata adjustment like suid
[15:56] <diplo> Yeah just found a page explaining that :P thanks again
[16:18] <diplo> May do my first snap this weekend
[16:21]  * daftykins unveils a stack of twigs
[16:21] <daftykins> have at it!
[16:26] <diddledan> snap all the things!
[16:44] <diddledan> oh gawd. this is going to be interesting: http://www.eweek.com/security/u.s.-formally-accuses-russia-of-launching-notpetya-ransomware-attack
[17:37] <curiousBean> congrats on president zamaposa.SA (I sent him an Alexa)   https://i.imgur.com/AENWREi.jpg
[17:38] <daftykins> i don't think that's particularly on topic for here
[20:33] <zmoylan-pi> meanwhile in reality the editor wars continue... vim forever :-)
[20:36] <diddledan> vim ftw
[20:37] <foobarry> vim
[20:37] <foobarry> the war is over
[20:38] <foobarry> although somebody incorrectly answered notepad++ in an interview the other day
[20:38] <diddledan> what a moron
[20:38] <zmoylan-pi> hopefully your cattle prod was nearby and fully charged...
[20:38] <diddledan> I hope you pointed out their error
[20:40] <diddledan> lol @ title: Lobbing cats into the walled garden: https://www.youtube.com/watch?v=6AB76vlfVqY
[22:10] <zmoylan-pi> ahahahaha... https://www.bloomberg.com/news/articles/2018-02-16/apple-s-new-spaceship-campus-has-one-flaw-and-it-hurts