[00:01] <daftykins> diddledan: haha google's page lets you download a CSV of where the malware is! check out this list
[00:01] <daftykins> Security issue type,URL,Date,Sample snippet
[00:01] <daftykins> that's it!
[00:01] <diddledan> nice
[06:59] <brobostigon> morning boys and girls.
[07:32] <zmoylan-pi> o/
[07:33] <brobostigon> o/
[12:54] <daftykins> diddledan: ugh fasthosts support are all "yeah we don't support special characters in the hosts field" what rubbish
[12:54] <diddledan> _ is defined in RFC. therefore it is not a special character
[12:54] <daftykins> :D
[12:55] <daftykins> i have subtly hinted that their decision gives the air that they are trying to ensure customers pay them for certs, therefore i may have to take my (friends) business elsewhere
[12:55] <diddledan> :-)
[12:56] <daftykins> *maybe* if i did stick cloudflare in front they let you enter such a host though
[12:58] <daftykins> wonder which RFC it is, i could blind 'em with documented science
[13:00] <daftykins> https://tools.ietf.org/html/rfc1464 look like that one
[13:00] <mgdm> RFC1912 perhaps
[13:00] <mgdm> "Allowable characters in a label for a host name are only ASCII letters, digits, and the `-' character."
[13:01] <mgdm> Oh, hmm, I misread - as _ >_<
[13:03] <diddledan> possibly: https://www.ietf.org/rfc/rfc2782.txt
[13:04] <diddledan> that details srv records
[13:05] <daftykins> hrmm it definitely pertains to a TXT creation though, annoyingly
[13:07] <daftykins> the manual method from the utility 'certbot' the EFF provide for LetsEncrypt certs definitely speaks only of creating _acme-challenge.example.com
[13:07] <daftykins> all is not lost as i could just give up on obtaining a wildcard cert - but it'd be nice
[13:08] <daftykins> thanks for the input btw guys, as always :)
[13:10] <daftykins> yep their support has just come back and said NOPE not doing it
[13:16] <diddledan> https://www.ietf.org/rfc/rfc1033.txt
[13:16] <diddledan> see "NAMES" in that document
[13:18] <daftykins> ooh beauty :D an explicit mention!
[13:19] <daftykins> diddledan does indeed deserve many doshes
[13:20] <diddledan> and that paragraph is about "restricting" beyond what the protocol allows: "The domain system allows a label to contain any 8-bit character." <-- ANY character
[13:22] <daftykins> just replied with that in the ticket, told them they're breaking spec :)
[13:23]  * zmoylan-pi suspects they'll respond with something that can't be printed in unicode... :-P
[13:24] <daftykins> yeah, most likely :) and then they will see their business disappear
[14:30] <daftykins> i wonder if i really need the full 'sendmail' package on this VPS just to allow contact forms etc to send from apache
[14:31] <mgdm> daftykins: you might want to look into something like nullmailer
[14:31] <daftykins> oh ja?
[14:31] <mgdm> assuming you have access to mail servers you can relay through https://untroubled.org/nullmailer/
[14:31] <mgdm> it pretends to be sendmail/qmail/postfix but isn't a full MTA
[14:32] <daftykins> well they're small sites of a friends i've taken off hosting company's services that were charging an arm and a leg - and am moving them to their own digitalocean VPS instead
[14:33] <mgdm> Ah, I'm not sure if DO will provide a mail relay
[14:33] <lopta> brb, fancy coffee
[14:33] <daftykins> mgdm: nah just letting the sites email straight out tends to do the job
[14:34] <daftykins> lopta: :o i would enjoy details of this fancy coffee :D
[14:35] <mgdm> daftykins: ah, in that case nullmailer won't be what you want
[14:35] <daftykins> it's that sender rewriting thing y'know so that they get contact form stuffs from their sites
[14:37] <mgdm> Ahhh yes
[14:37] <mgdm> I found that tends not to work well in these days of SPF and DKIM
[14:37] <daftykins> mmm more info online that folk just install either sendmail (metapackage) or sendmail-bin alone
[14:38] <daftykins> yeah, makes sense - these sites will get a redesign soon though so i'll just flag up the idea something smarter need be employed :)
[14:38] <mgdm> :thumbs-up:
[14:38] <mgdm> Oh this isn't slack :P
[14:38] <daftykins> i'd dump the whole forms myself and just put the phone # and a 'sendto:' email addy so folk can do it themselves :D
[14:39] <daftykins> ones a personal blog for a mates wife - and the other is a holiday cottages website
[14:40] <daftykins> as it is the latter employs just a mail forwarder right now, however i will move her to google G Suite for all of the £40/yr to make life simpler
[14:41] <daftykins> lol @ a yahoo as it is now xD
[15:15] <diddledan> daftykins: postfix ootb works great on an ubuntu system - they provide simple default config choice when you install it
[15:39] <daftykins> diddledan: ah i don't fancy a full on-box mail solution though, as they won't be after full services
[17:25] <daftykins> diddledan: you win the prize! that forced them to look into it - and they created it manually :D
[17:25] <diddledan> nice
[17:26] <daftykins> although they messed up the paste and put in a quote at the end
[19:02] <marshmn> is there a way to tell whether my laptop is using 2.4Ghz or 5Ghz WiFi?
[19:04] <marshmn> I'm pretty much assuming that it's not even capable of 5Ghz TBH - but it would be useful to be certain which it's using
[19:04] <marshmn> (trying to debug something)
[19:14] <z0mbiebreakfast> -ex
[20:43] <daftykins> marshmn: looking up the chipset in use should show, if 'iwconfig' still exists it would often show network info iirc
[21:00] <marshmn> daftykins: ah, yes - you're right; in fact it does seem that I'm on 5GHz after all
[21:00] <marshmn> thanks
[21:26] <daftykins> pretty sure fasthosts fixed the ability to add a TXT record with _ in, but their support is lying saying it worked fine for them xD
[21:26] <daftykins> despite my screenshot of the error