| 15:19.54 | *** join/#utah infobot (ibot@rikers.org) |
| 15:19.54 | *** topic/#utah is Utah-related discussion including user groups | logs @ http://infobot.rikers.org/%23utah/ | See also ##lds | To combat spam, you must register with NickServ if you wish to speak. This may or may not be temporary. |
| 15:19.54 | *** mode/#utah [+o infobot] by ChanServ |
| 15:45.04 | *** join/#utah josephscott (~josephsco@74.114.153.251) |
| 15:57.15 | *** join/#utah tiwula (~lane@70.89.246.241-Busname-UT.hfc.comcastbusiness.net) |
| 17:01.35 | jfindlay | ~napoleon |
| 17:01.35 | infobot | It's a liger, bred for its skills in magic. |
| 17:29.04 | jlp_znc | ~trump jfindlay |
| 17:29.05 | infobot | ACTION makes jfindlay great again |
| 17:40.45 | *** join/#utah bairyn (~bairyn@unaffiliated/bob0) |
| 17:47.11 | jfindlay | nice |
| 18:38.40 | th3ph3d | ~trump jlp_znc |
| 18:38.40 | infobot | ACTION deports jlp_znc |
| 18:38.59 | spangborn | ~youtah youtah |
| 18:38.59 | infobot | ACTION calls youtah on the radio |
| 18:44.38 | asoc | wonders what infobot's call sign is. |
| 19:58.03 | jlp_znc | infobot operates illegally |
| 19:58.15 | th3ph3d | ~trump infobot |
| 19:58.15 | infobot | ACTION makes infobot great again |
| 20:31.56 | jfindlay | ~hillary jlp_znc |
| 20:31.56 | infobot | ACTION sets up a private email server for jlp_znc |
| 20:35.15 | keldwud | what am I missing with firewalld? is there a better way to add services than the following? https://pastebin.com/rigUGShJ |
| 20:35.23 | keldwud | that's all just for nfs and its supporting services |
| 20:39.29 | jfindlay | keldwud: I always find I have to look at the files in /etc/firewalld several times to make sure they get setup correctly |
| 20:39.53 | jfindlay | for example if you made multiple attempts at something, often stale files or lines in files will be left |
| 20:40.04 | jfindlay | and then I manually edit those out |
| 20:41.25 | jfindlay | then: grind some salt; whisper the name of Lennart's favorite stuffed animal 3 times; close your eyes; and systemctl restart firewalld 7 times |
| 20:42.16 | keldwud | lol |
| 20:42.22 | keldwud | why not firewall-cmd --reload? |
| 20:42.25 | jfindlay | but be careful if you get the procedure wrong because you might get attacked by a centaur |
| 20:42.25 | keldwud | :-p |
| 20:43.42 | jfindlay | I've found ufw to be easier to work with: just like selinux vs apparmor |
| 20:44.12 | keldwud | except |
| 20:44.17 | keldwud | I'm running centos |
| 20:44.20 | keldwud | not ubuntu |
| 20:49.20 | jfindlay | everyone makes mistakes |
| 20:51.32 | keldwud | lol |
| 21:19.57 | shalkie | I tend to just use iptables directly. |
| 21:20.25 | jfindlay | me too |
| 21:23.33 | shalkie | keldwud: I thought you could specify port parameters multiple times for each service. |
| 21:24.18 | keldwud | shalkie yeah you can do it multiple times for each service |
| 21:24.33 | keldwud | was just wanting to be lazy and tell it to open a port for both tcp *and* udp in a single statement |
| 21:25.01 | keldwud | but it turns out that if I'm communicating with NFSv4, I don't need to open all those extra ports |
| 21:25.12 | keldwud | and I can just enable the predefined nfs service in firewalld |
| 21:28.08 | shalkie | Yeah, predefined is probaby best. :) |
| 21:28.32 | shalkie | But for the record I was able to use firewall-offline-cmd --new-service statd --add-port=662/tcp --add-port=662/udp |
| 21:29.50 | keldwud | ooooh |
| 21:29.51 | keldwud | I see |
| 21:29.55 | keldwud | perfect |
| 21:29.57 | keldwud | thanks for that! |
| 21:30.08 | keldwud | I hadn't realized I could just string all the ports into one statement |
| 21:30.13 | keldwud | that's exactly what I was looking for and thank you |
| 21:30.45 | keldwud | so not only can I add a new service but i can add the ports at the same time. that's lovely |
| 21:46.00 | joshh | what is firewalld, is systemd taking over the firewall as well now? |
| 21:54.48 | shalkie | no. Firewalld is a daemon that manages the firewall rules through iptables or nftables. |
| 21:56.04 | joshh | so it's like another frontend to those? |
| 21:56.11 | shalkie | Yep. |
| 21:56.11 | youtah | writes a lovely letter to pashdown |
| 21:56.20 | joshh | ok not quite as bad then |
| 21:56.24 | youtah | Dear Pete, please buy Veracity |
| 21:56.29 | youtah | Sincerely, youtah |
| 21:56.37 | youtah | https://twitter.com/VeracityNet/status/1134213217960390656 |
| 21:57.16 | youtah | goes into the backroom and cries |
| 21:58.19 | joshh | wow they patched the ddos |
| 21:59.20 | youtah | puts a happy patch on joshh to make it all better |
| 21:59.20 | shalkie | From Poettering: "Long story short: nftables/iptables integration is not going to happen, and that's not really within systemd to do anything about, it's a technical necessity of the Linux kernel really. Sorry." - https://github.com/systemd/systemd/issues/7327 |
| 22:00.25 | shalkie | Though it would be nice to be able to create a systemd unit file and specify the ports it is going to bind to and allow systemd to open the ports in the firewall as part of the start and close the as part of the shutdown. |
| 22:01.32 | youtah | ~patch joshh |
| 22:03.25 | shalkie | Was anyone else affected by Winder stopping services in "thier area" this week? Asking for a friend of course. :) |
| 22:04.14 | *** join/#utah magmu (~Magical_M@66-7-124-45.static.ip.veracitynetworks.com) |
| 22:25.43 | youtah | ~patch joshh |
| 22:25.43 | infobot | ACTION puts a happy patch on joshh to make it all better |
| 22:26.49 | jfindlay | literal cmd: patch (.*?) |
| 22:26.51 | jfindlay | ~literal cmd: patch (.*?) |
| 22:26.51 | infobot | "cmd: patch (.*?)" is "($var): <action> puts a happy patch on $var to make it all better" |
| 22:27.02 | jfindlay | ~rails youtah |
| 22:27.02 | infobot | youtah refactors to 0.159797035943004 picolines of code with the latest rails magic |
| 22:27.08 | youtah | lol |
| 22:31.50 | jfindlay | ~onjoin youtah free cheetos! |
| 22:31.51 | infobot | jfindlay: ok |
| 22:32.09 | jfindlay | ~onjoin jfindlay |
| 22:32.12 | jfindlay | nothing |
| 22:52.55 | *** part/#utah youtah (~youtah@67.139.187.132) |
| 22:52.59 | *** join/#utah youtah (~youtah@67.139.187.132) |
| 22:52.59 | *** mode/#utah [+v youtah] by ChanServ |
| 22:53.11 | jlp_znc | uh oh |
| 22:53.14 | youtah | lol |
| 22:53.37 | youtah | ~onjoin youtah FREE the Cheetos! |
| 22:53.37 | infobot | ok, youtah |
| 22:53.51 | jfindlay | ha |
| 22:53.55 | youtah | Cheetos are people too? |
| 22:54.20 | jfindlay | now I want some cheetos |
| 22:54.38 | youtah | I have been listening to Piano pieces on Youtube the last hour |
| 22:54.41 | youtah | I need to do this more often |
| 22:54.52 | youtah | Apparently it makes me super productive |
| 22:54.57 | jfindlay | you should also have a forte hour |
| 22:55.12 | youtah | https://www.youtube.com/watch?v=0FbQZCsYXVg |
| 22:55.56 | youtah | It's referred to as the 36 finger piece apparently |
| 22:56.07 | youtah | because you need 36 fingers to play it |
| 22:58.18 | spangborn | Thatâs what she said |
| 22:58.25 | youtah | LOL |
| 22:58.33 | youtah | it starts off a little slow |
| 22:58.38 | spangborn | Iâm in this video https://youtu.be/FpeBlIHi_YI |
| 22:58.41 | spangborn | Pretty much famous now |
| 22:58.42 | youtah | but once you get about 3/4's of the way in |
| 22:58.52 | youtah | it really starts to speed up |
| 22:58.56 | spangborn | Just the tip? |
| 22:59.11 | youtah | 2:45 is where it really gets fun |
| 22:59.15 | youtah | if you're impatient |
| 22:59.37 | jfindlay | https://www.youtube.com/watch?v=Ah392lnFHxM |
| 23:00.08 | youtah | you can see drops of sweat flipping off the guys forehead |
| 23:06.10 | *** join/#utah braxtron (~braxtron@166.70.128.149) |
| 23:40.23 | klys | ~slashdot |