gnarface | yea that too, n4dir | 00:00 |
---|---|---|
n4dir | even earlier, if i surely want to simply try apt, i have to use the del key to remove the - again. Well. Old dogs and all. | 00:00 |
clort | i haven't seen a situation where apt-get install doesn't do the job | 00:02 |
n4dir | i had seriously shitty situtations where aptitude helped. But perhaps 3 times in 15 years. + or minus. apt has a nice output though. | 00:03 |
clort | 'mv'ing multi-gigabytes of files in linux still bogs things down in 2020 | 00:03 |
clort | might be related to ext4 | 00:04 |
clort | maybe rsync is gentler | 00:05 |
clort | this is new to me - after big copies: swapoff failed: Cannot allocate memory | 00:13 |
clort | https://leizhilong.github.io/post/case-study-swapoff-cannot-allocate-memory/ | 00:14 |
clort | interesting | 00:14 |
clort | swapoff caused OOM and got killed | 00:28 |
clort | trying with a 2nd swap file | 00:28 |
systemdlete | is it normal to see zombie scans coming from oftc.net port 6667 on my local system? | 01:05 |
systemdlete | actually, I should probably ask THEM (OFTC) | 01:07 |
DHE | the irc network? pretty common for them to scan incoming clients to ensure they're not open proxies | 01:07 |
DHE | even freenode does this, or so they claim | 01:08 |
systemdlete | OK. | 01:08 |
systemdlete | Just checking. Having some network issues here, so I thought I would inquire. | 01:08 |
fling | Can I convert from ubuntu focal? | 02:10 |
gnarface | dunno, but it might work | 02:15 |
gnarface | people have reported ubuntu conversions working in the past | 02:15 |
fling | Should be similar to conversion from buster? | 02:20 |
gnarface | might be a little trickier because of differing package naming/versioning conventions | 02:21 |
gnarface | but for the most part "uninstall then reinstall" such packages usually works with some massaging, if you know what you are doing | 02:22 |
gnarface | no guarantees | 02:22 |
fling | gnarface: I tried ubuntu to workaround this: | 02:34 |
fling | [FAILED] Failed to start LXD - agent - virtio-fs mount. | 02:34 |
fling | [FAILED] Failed to start LXD - agent. | 02:34 |
cynicfm | a1 | 16:53 |
ShorTie | b4 | 17:38 |
debdog | BINGO! | 17:42 |
sixwheeledbeast | b5 | 17:46 |
sixwheeledbeast | did I sink a ship? | 17:46 |
mason | The last, best hope for peace? | 17:46 |
onefang | This is definitely #devuan-offtopic (hope I got that right). | 17:49 |
mason | onefang: It followed in the footsteps of #debianfork, being infused with right wing science-denialism. | 17:51 |
mason | Sadly. | 17:51 |
onefang | Ah, that'll be #reality-offtopic then. | 17:55 |
mason | heh | 17:56 |
fsmithred | mason, I think I got knockd working right. I had to use a config I got from a random website since the example in the man page didn't work. | 18:40 |
mason | fsmithred: Ah, good. I find it immeasurably useful for log cleaning, which will allow real threats to be highlighted. | 18:41 |
DivanSantana | have this rather complicated disk setup on ascii. https://divansantana.com/using-ssds-as-a-cache-on-devuan/ Going to try upgrade to beowulf now and hope it boots :) | 18:52 |
clort | i have a confuse. why not just use a swapfule DivanSantana | 18:53 |
DivanSantana | clort: instead of ssds as a cache? How could a swapfile replace the ssds as a cache? | 18:54 |
clort | what is it caching | 18:55 |
DivanSantana | clort: any writes to the disk. backups, cloud storage etc | 19:56 |
clort | ah ty | 19:56 |
fsmithred | ping mason - If there's a firewall in front of the remote host I want to knock, will that be a problem? | 21:50 |
fsmithred | Port forwarding is set up for ssh on that router/firewall. | 21:51 |
mason | fsmithred: Yeah, do the knockd on the firewall | 21:54 |
fsmithred | no idea if I can do that. It's a cisco router, and I'm not the one who normally admins it. | 21:55 |
fsmithred | brb | 21:55 |
mason | fsmithred: Or you can have ports passed back for the knocking. | 21:59 |
mason | brb also, chicken emergency | 21:59 |
fsmithred | that doesn't sound good | 22:00 |
fsmithred | 'ports passed back' means forwarding the ports I want to knock? Or is the router likely to support port knocking? | 22:08 |
n4dir | without knowing what the problem is nmap comes to mind | 22:31 |
luser977 | fsmithred: ask the cisco admin to fwd all relevant ports, target port and the knock ones. | 22:40 |
luser977 | the latter as udp only probably, to prevent discovery | 22:41 |
fsmithred | they won't find udp ports on a port scan? | 22:42 |
fsmithred | I'm assuming it has been scanned because whoever is trying knows to try ssh on a non-standard port | 22:42 |
n4dir | -sU -> udp scan | 22:42 |
fsmithred | yeah, that's kinda what I thought | 22:43 |
n4dir | not that i'd be in it, but nmap is pretty powerful | 22:43 |
fsmithred | I might just move it to another port and see how long it takes them to find it | 22:43 |
n4dir | iirc going for a full scan, whatever that might be, instead of default, first thousand?, will take *really* long | 22:44 |
mason | fsmithred: TCP or UDP, doesn't matter. Your server won't be answering on TCP ports, so they're going to look like closed ports. I use only TCP. | 22:44 |
mason | fsmithred: They shouldn't see the ports, as they'll be closed. But knockd will see the attempt and register it. | 22:44 |
fsmithred | yeah, if I can get to the server | 22:45 |
mason | fsmithred: So, whatever's easiest to set up on the firewall. | 22:45 |
fsmithred | I was only inside the admin panel once. I don't know if it has port knocking. | 22:45 |
mason | fsmithred: Another option, albeit a tricky one, is to know somewhere else, and then transmit that in. | 22:45 |
mason | fsmithred: It won't, almost certainly. | 22:45 |
mason | knock somewhere else* | 22:46 |
fsmithred | that's not a feature on pro routers? | 22:46 |
fsmithred | oh | 22:46 |
mason | fsmithred: So, knock sequence on some other server, have it trusted, have it pass in a note saying "unlock for this IP" | 22:46 |
luser977 | should not afaik | 22:46 |
luser977 | find | 22:46 |
luser977 | port knocking can sometimes be arranged on ios | 22:47 |
mason | If the router does it, that'd be the best place. | 22:49 |
luser977 | https://community.cisco.com/t5/networking-blogs/you-can-t-try-it-if-you-don-t-knock-it/ba-p/3102806 | 22:51 |
luser977 | not for ios beginners and not in the web ui | 22:51 |
mason | luser977: Nice, thank you. I'd looked and found nothing. | 22:52 |
mason | Been years since I've had to touch ios. | 22:52 |
mason | ...and I've never set up port knocking on it. | 22:52 |
luser977 | ios is ok but too much variance sometimes | 22:52 |
mason | fsmithred: You could really even have a password-protected web page up somewhere where someone can hit that and have that trigger a rule on the target host. | 22:53 |
mason | fsmithred: The only thing you really need is a relatively obscure/mildly protected way to capture an IP address that can be turned into a rule. | 22:54 |
luser977 | re: udp scan: udp scan only finds properly open udp server ports. knock udp ports are not such ports. | 23:10 |
luser977 | so a closed udp port can be faked, using icmp, I think knockd uses this. not sure. | 23:17 |
luser977 | i don't know why i keep dropping out. someone is playing deauth games with me. wifi drops. | 23:19 |
fsmithred | luser977, 'knock udp ports' means a port on the server that I'm knocking? | 23:19 |
luser977 | yes | 23:20 |
fsmithred | but I have to get past a firewall | 23:20 |
luser977 | the router simply forwards those. | 23:20 |
fsmithred | can't someone clever figure out that the ports open on the router might be used for knocking? | 23:21 |
luser977 | fwding does not add detectability | 23:21 |
fsmithred | ok | 23:21 |
luser977 | n8 zzzz | 23:29 |
mason | luser977: knockd doesn't actually open any ports, it looks at traffic that is destined for ports, whether the ports are open or not | 23:38 |
Generated by irclog2html.py 2.17.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!