Lisanna has quit [Remote host closed the connection]
sir_guy_carleton has joined #nixos-chat
d1rewolf__ has joined #nixos-chat
lassulus_ has joined #nixos-chat
tertle||eltret has joined #nixos-chat
lassulus has quit [Ping timeout: 256 seconds]
lassulus_ is now known as lassulus
mudri[m] has quit [Ping timeout: 256 seconds]
mudri[m] has joined #nixos-chat
Lisanna has joined #nixos-chat
d1rewolf__ has quit [Ping timeout: 244 seconds]
d1rewolf__ has joined #nixos-chat
d1rewolf__ has quit [Ping timeout: 240 seconds]
pie__ has quit [Ping timeout: 244 seconds]
sir_guy_carleton has quit [Quit: WeeChat 2.0]
Jason_Grossman has quit [Ping timeout: 240 seconds]
Jason_Grossman has joined #nixos-chat
<andi->
infinisil: I tried with the version from unstable.. There is one newer version.. Will try to gather some motivation tonight.
jD91mZM2 has joined #nixos-chat
Sonarpulse has quit [Ping timeout: 256 seconds]
Jason_Grossman has quit [Ping timeout: 240 seconds]
Jason_Grossman has joined #nixos-chat
Jason_Grossman has quit [Remote host closed the connection]
Jason_Grossman has joined #nixos-chat
d1rewolf__ has joined #nixos-chat
d1rewolf__ has quit [Ping timeout: 268 seconds]
obadz has quit [Ping timeout: 276 seconds]
__Sander__ has joined #nixos-chat
obadz has joined #nixos-chat
tertle||eltret has quit [Quit: Connection closed for inactivity]
pie__ has joined #nixos-chat
pie__ has quit [Ping timeout: 244 seconds]
pie_ has joined #nixos-chat
__Sander__ has quit [Quit: Konversation terminated!]
pie_ has quit [Ping timeout: 248 seconds]
pie_ has joined #nixos-chat
Sonarpulse has joined #nixos-chat
<samueldr>
ugh, those spam bots are annoying
<samueldr>
they started yesterday on my private~ish irc server
gchris`wednesday is now known as gchrist`recovery
<Jason_Grossman>
samueldr: That reminds me: I'd like to run an IRC server. What do you recommend that works well with NixOS? (Sorry to off-topic your off-topic!)
<samueldr>
ah, shame time, the IRC server is on my last "pet" server that isn't nixos
<samueldr>
so I haven't yet looked into it
<Jason_Grossman>
Oh well! Is it a program you particularly like though?
<samueldr>
but, AFAICT, the least annoying server when I set it up in the past was inspircd
<Jason_Grossman>
:-) Thanks.
__monty__ has joined #nixos-chat
<pie_>
how likely am i to destroy my data while trying to set up raid 1 >_>
<samueldr>
all data that isn't backed up on another device is as good as lost, pie_
<samueldr>
:) though I understand how more practical it is to do stuff in place and not have to copy over huge amount of things
<pie_>
i know raid isnt quite the same but thats one of the reasons i want to set up raid right now...
<pie_>
srk, haha i was about to say only real irc server is haskell irc server
<srk>
!
<pie_>
go hard or go home
<samueldr>
2011, my server experience is from before then :)
<samueldr>
though, not to knock on *that* project
<samueldr>
but irc servers are more complex than the RFC, since many clients deviate a bunch :/
<samueldr>
sometimes toy~ish and "research" projects aren't fit to be "real" IRC servers
<samueldr>
BUT, it all depends of the use ca se
sir_guy_carleton has joined #nixos-chat
<samueldr>
+r and +S are a bit problematic on #nixos :/
<gchrist`recovery>
indeed
<samueldr>
I would tend to agree all other nix-related channels could be fine with any of those two
<samueldr>
people seeking help will find themselves in front of a wall, without much explanation
<andi->
well then the only thing youcan probably do is Sigyn,... on hackint we started enforcing all connections from AWS to be made using SSL since they started connecting with a few thousand IPs/s
nix-build has joined #nixos-chat
nix-build has joined #nixos-chat
nix-build has quit [Changing host]
nix-build has quit [Remote host closed the connection]
<samueldr>
yeah lol
<samueldr>
I blacklisted GCP and AWS yesterday when they started testing their attacks
<samueldr>
(they generally start one day before on random irc servers it seems)
<samueldr>
(not the first time I spotted the pattern)
pie_ has quit [Ping timeout: 256 seconds]
<samueldr>
(and it's a highly unsophisticated one)
<andi->
well we are now feeding dnsbl with those IPs.. I guess thats the plus side of things? :)
<samueldr>
I mean, it started with a "Powered by GoIRC" quit message :/
<andi->
hrhr
<andi->
Can you run that as AWS lambda thingy somehow? You will only need a few seconds anyway...
<samueldr>
probably
<samueldr>
though they switched (back?) to random IPs from probably grey/black market proxies
<andi->
I was tempted for a second to resort to iptables plaintext matching (--algo bm --string ....) for all plaintext IRC connections...
<andi->
that would ensure they'd not even reach the IRCd
<maurer>
pls no ban gce from #nixos, my weechat server is on gce
<maurer>
(I am SSL'd though)
<samueldr>
maurer: don't think there's talk of that
<maurer>
Oh, guess I misread earlier
<samueldr>
and if you identify, it wouldn'T matter (hosts matching using a vanity host from freenode would cover this up AFAIUI)
<samueldr>
eh, my server is close friends, I'm about to close all non-SSL away
<maurer>
I'm identified, but it doesn't cloak me by default
<maurer>
I guess I could find a cloak
<maurer>
Oh, I didn't realize this was just for your server
<samueldr>
yeah, IIRC there's the unaffiliated one which is freely given
<maurer>
Yeah, there is, I just don't have it active
<samueldr>
maurer: not a bad idea to cover up the GCE use
<maurer>
Maybe
<andi->
typically host bans also affect cloaks..
<andi->
unless applied using ilines.
<samueldr>
andi-: depends on impl :)
<andi->
they are using charybdis/irc7 here so that should be true ;)
<samueldr>
good to know
<samueldr>
(channel based +b too?)
<andi->
yes, those are what I meant
<samueldr>
aw, confirmed
<samueldr>
Bans set on IP addresses will apply even if the affected user joins with a resolved or cloaked hostname
<samueldr>
annoying :/
<samueldr>
no extban that does the match only for unregistered it seems
<andi->
you can do +I $a:* IIRC
<samueldr>
ah, invite exceptions
<samueldr>
exemption*
<andi->
there is a bunch of those and it is always terrifying reading through the amounts of code an IRCd has these days.
<samueldr>
though, it's back to +r, since AFAIUI, it needs +i enabled
<andi->
no, you can just do +r without any +i
<samueldr>
and it's all implementation dependent when you go to extbans /me sighs
<samueldr>
I meant, if you +i and +I *some extban*, it's almost back to square one where you trap genuine people
<andi->
hrhr
<samueldr>
it would be +e for ban exemptions it seems
<samueldr>
so +b for gce, then +e $a:*
<andi->
I sometimes have a beer with an IRCNet guy thats lives close to me place.. It is built for another century.. They opted for +s per default years ago.. They barely have issues with spam...
<samueldr>
yeah, +s is ho I do it on my server
<samueldr>
all actually in use channels are +s
<samueldr>
I just find it weird how a huge server like freenode doesn't have pre-flight spam control
<andi->
it is hard..
<samueldr>
yeah
<samueldr>
I was about to comment
<andi->
well not actually
<samueldr>
but the way IRC is built makes it hard
<samueldr>
commonly-built*
<andi->
You have to run all lines against a collection of regexp..
<andi->
and keep track of every spoken line for a while
<samueldr>
s/regexp/any text matching algorithm you want/
<samueldr>
I mean, they could even relax it somewhat on easy criterias for unsophisticated attacks like those
<samueldr>
check for CTCP VERSION and maybe TIME on connect, mark those connections not replying as suspicious
<samueldr>
(like a karma system)
<samueldr>
you add positive karma to idents, to SSL, many criterias
<samueldr>
BUT, the way current implementations are built simply cannoy allow this :/
gchrist`recovery is now known as gchristensen
the has joined #nixos-chat
* samueldr
would be interested to *work* on a new modern IRC server implementation
<samueldr>
but yeah, doing it on spare/free time not as much :(
<gchristensen>
`the` is banning on some criteria. don't behave like a spammer and you'll be ok :P
<maurer>
Hrm, does anyone know what recruiterese is for "are there any other teams where I'd be less likely to end up writing user-freedom-restricting code?"
<maurer>
I'm pretty sure that phrasing is going to sound adversarial
<andi->
A job that feels good and does good? :)
<maurer>
Well, the team I'm being offered right now appears to be 95% that, and they probably don't recognize things like a device being locked to particular software as not doing good
<maurer>
in fact, they probably think it _is_ doing good :p
<andi->
Yeah, I have seen that.... :/
<maurer>
I'm allowed to talk to other managers, they just want to know selection criteria to pick another one, and I'm trying to figure out a way to express this without being combative before even being officially hired :P
<andi->
I have recently (yesterday?) talked about/with some manufacturer of kids toys that are cloud connected... I wouldn't work there. They do DRM for audio books for kids... They tech seems to get done the right way thought. Ethically that is beyond what I am willing to do.
<clever>
2018-07-24 23:54:24 [irchighway] -Global(services@service.irchighway.net)- users loking to stem the tide of the flood can set channelmodes +dD 30 (/mode #yourchan +dD 30), which will block messages from users for 30s after they join, +D means people don't show up in the userlist until they speak
<clever>
2018-07-24 23:55:48 [irchighway] -Global(services@service.irchighway.net)- Alternatively, you can set +DM, which will prevent the users from showing up in the userlist until they speak, and prevent them from speaking without a registered/logged in nick.
<clever>
Day changed to 25 Jul 2018
<clever>
samueldr: this was a announcement i got on another network, but i dont think freenode supports those modes
<clever>
samueldr: more painfully, one of the channels i idle elsewhere has no @'s and no chanserv, so the spam is just totally out of control and nobody can stop it
<samueldr>
yeah :S wild west irc servers are the best and the worst
<samueldr>
(wild west as in no built-in systems to control channels like here)
<samueldr>
(and I mean, when a channel is unregistered)
RetardedOnion has joined #nixos-chat
mikky has joined #nixos-chat
drakonis has joined #nixos-chat
sir_guy_carleton has quit [Quit: WeeChat 2.0]
the has quit [Ping timeout: 244 seconds]
Myrl-saki has quit [Ping timeout: 256 seconds]
tertle||eltret has joined #nixos-chat
<tertle||eltret>
ello
__monty__ has quit [Quit: leaving]
Sonarpulse has quit [Ping timeout: 265 seconds]
<andi->
Any of you here using `st`? I have a character that crashes it.. Would like confirmation from someone with a different configuration then mine (same on all boxes..)
Jason_Gr` has joined #nixos-chat
Jason_Grossman has quit [Ping timeout: 264 seconds]