00:03:21 *** x has quit (Input/output error) 00:17:05 *** joepie91 has quit (Ping timeout) 01:19:14 *** x (foobar@91513BE6.1FF3EB83.C789C8B2.IP) has joined #crytocc 01:23:32 x 01:23:45 xmpp for a sec? 01:29:56 *** lblissett has quit (Broken pipe) 01:30:20 *** lblissett (lblissett@cryto-1EEC6C73.host.de.colt.net) has joined #crytocc 01:32:25 botpie91, ask joepie91 to get on xmpp when he is around 01:32:26 Zoned: I'll pass that on when joepie91 is around. 01:44:34 *** ddgsf (ddgsf@cryto-FAB2E590.dsl.bell.ca) has joined #crytocc 01:45:01 *** ddgsf has quit (User quit: Page closed) 01:49:14 botpie91, tell joepie91 that he seem to be missing pygtksourceview bindings on http://owely.com/21h8cLW or have syntax-hl disabled in gtksourceview/meld 01:49:15 MK_FG: I'll pass that on when joepie91 is around. 01:49:21 *** Fshell (Fshell@cryto-FAB2E590.dsl.bell.ca) has joined #crytocc 01:49:31 *** Fshell has quit (User quit: Fshell) 02:08:43 *** GHOSTnew has quit (Input/output error) 02:11:25 *** GHOSTnew (GHOSTnew@GHOSTnew.users.cryto) has joined #crytocc 02:22:27 no, no xmpp I'm at school doof 03:43:53 and uh, yeah I saw that tls shit 03:44:01 salsa as streaming cipher 03:44:23 and is poly1305 the one djb did? MK_FG 03:44:39 yes it is 03:47:08 *** mama has quit (Ping timeout) 03:49:04 chacha20, not salsa20 iirc 03:49:23 yeah, sounds like 03:49:32 pretty sure salsa's a derivitive of chacha 03:49:36 zZzZZzZ 03:49:55 oh, salsa's stream cipher to chacha's blocks maybe 03:50:17 *** tintin has quit (Ping timeout) 03:50:19 wrong way 03:50:26 chacha is a variant of salsa 03:50:27 got it 03:50:28 cool 03:50:34 The ChaCha family of stream ciphers, also known as Snuffle 2008, is a variant of the Salsa20 family of stream ciphers. The following paper introduces ChaCha and compares it to Salsa20: 04:06:32 *** HiveResearch (HiveResear@developers.developers.developers) has joined #crytocc 04:17:02 *** GHOSTnew has quit (Ping timeout) 04:22:17 *** Ari (Ari@Ari.users.cryto) has joined #crytocc 05:44:41 *** HiveResearch has quit (Ping timeout) 06:42:16 *** Zoned has quit (Ping timeout) 06:44:54 *** Topiary (Topiary@EE1F0A76.63DE6E0A.404FEFB4.IP) has joined #crytocc 06:49:35 *** x has quit (Input/output error) 06:50:54 *** x (foobar@47DC6ED3.BD906BBE.7A718692.IP) has joined #crytocc 06:54:31 *** Topiary has quit (Client exited) 06:55:02 *** Zoned (sexybitch@cryto-BBA12B32.tor.primus.ca) has joined #crytocc 07:02:19 *** x has quit (Ping timeout) 07:21:48 *** Topiary (Topiary@EE1F0A76.63DE6E0A.404FEFB4.IP) has joined #crytocc 07:24:04 *** Topiary has quit (Client exited) 07:31:49 Morning 07:32:04 If someone might have missed: http://www.forbes.com/sites/michaelvenables/2013/10/10/how-they-popped-the-penguin-the-linux-bash-attack-its-impact-on-user-data-security/ - aaaand the reactions follow 07:32:18 *** LapAnon (Adrian@LapAnon.users.cryto) has joined #crytocc 07:32:36 http://securityreactions.tumblr.com/post/64082757708/everyone-else-reading-the-forbes-article-of-failure aaand http://securityreactions.tumblr.com/post/64082520909/once-you-read-the-bash-attack-and-what-it-means-for 07:33:04 *** stanone has quit (Ping timeout) 07:33:06 I was first clueless, then I read the article and after that I wished I didn't have done it 07:38:12 Reading diagonally, I don't quite get what's so scary in there 07:38:41 forbes article seem to be describing trivial way to connect from pwned host to outside 07:39:15 Sure, you can do it from bash, as well as some custom random /usr/bin/system-thing binary... 07:39:21 What's the big deal? 07:43:03 exactly :) 07:43:28 You get the point and why this article seems so stupid 07:49:39 Heh 07:51:14 "Look, a shell can open up connections... It's eeeeevil!" 07:55:08 It seem weird that it gets some reactions at all 07:55:22 Mostly facepalms 07:55:24 :) 07:55:39 Counts too ;) 07:56:08 Well, you can't just ignore such a high level of stupidity 07:56:12 Opposite of endorsement is total lack of attention, not bunch of facepalms all around the net, I think ;) 07:56:30 it's like not reacting to a sporty nice boobed girl who walks without a top 07:56:42 it just won't work... 07:56:46 You MUST react 07:57:35 Meh, why would you, surely there're tons of similar non-news all around 07:58:04 Look at it, BS detectors go "alarm", close tab, forget in 3 2 1... ;) 07:58:21 because it came from the forbes... Not 'JimmiesExcitingUberCoolRainbowNews' which i would probably ignore 07:58:31 hehhe 07:58:35 Yeah, true point 07:58:56 I always thought Forbes was a cesspit of really crappy rumors and idiotic opinions ;) 07:59:07 Like, "bitcoin is eeeeeviiiil, whooo!!!" ;) 07:59:17 "we all gonna diiiieeee!!!" 07:59:35 "we don't know what the shit is happening with the kids these days, whooo!!!!" 07:59:41 Sure, but if it harms the name of IT Security by releasing so many stupid articles some must say : "Stop" ... I am not concerned about the IT Sec. guys, I am concerned about their bosses 07:59:45 Really, really crappy ;) 08:00:03 You know how much pain in the ass is explaining to your boss why you will not fix this "vulnerability"? 08:00:05 :) 08:00:13 Oh god 08:00:27 If one has to do that, and it's also hard 08:00:35 I'd think you should RUN! ;) 08:00:44 But yeah, not always that easy 08:00:47 Imagine the pain and then you can understand why you cannot just walk by this article without saying a word 08:03:22 *** n0b0dycar3z (chatzilla@n0b0dycar3z.users.cryto) has joined #crytocc 08:03:38 Actually I was surprised on similar note about how much attention that "rc4 in android" article got 08:03:59 Well, it has some importance... 08:04:13 What? No! 08:04:18 Explain... :) 08:04:19 It's really cheap sensationalism 08:04:46 Risk of BEAST attack was known since link 2002 papers 08:05:06 md5 is fine with unorthodox mac-then-encrypt 08:05:12 sure, which only makes the choice rather being weird 08:05:18 rc4 was freaking great in 2010 08:05:45 tls1.1/1.2 was nowhere in sight with beast mitigations 08:05:55 So they fixed "decrypt shit in 30s" thing and what, it's bad? 08:06:34 And "they" probably being AGL, who probably knows TLS better than anyone else 08:06:55 So it doesn't seem that unexpected at all, yet whooo conspiracy! 08:07:37 Like 50% rc4 usage now is much bigger conspiracy, if anything 09:47:34 *** MK_FG has quit (Ping timeout) 09:49:56 *** MK_FG (MK_FG@MKFG-91968.users.cryto) has joined #crytocc 10:40:29 *** crytoweb879 (crytoweb87@cryto-3B89AA77.cust.bredbandsbolaget.se) has joined #crytocc 10:40:48 *** crytoweb879 has quit (User quit: Page closed) 10:43:01 *** joepie91 (joepie91@E0EF0B4E.8949E6E0.92880880.IP) has joined #crytocc 10:45:21 *** iceTwy (iceTwy@cryto-610769D0.fbx.proxad.net) has joined #crytocc 10:46:21 hola 10:46:31 I'm wondering whether I should register iceb.in or not... 10:46:42 such a cool name for a pastebin, and it's free! 10:46:48 available, rather 10:58:56 .whois iceb.in 10:58:57 joepie91: 01:32Z ask joepie91 to get on xmpp when he is around 10:58:59 joepie91: 01:49Z tell joepie91 that he seem to be missing pygtksourceview bindings on http://owely.com/21h8cLW or have syntax-hl disabled in gtksourceview/meld 10:59:00 The domain 04iceb.in does not seem to exist. 10:59:05 notbad.avi 11:02:31 MK_FG: I did actually have them installed, syntax highlighting was just turned off in my Meld prefs 11:02:38 and I was unaware of the existence of that functionality 11:02:38 :P 11:03:12 http://owely.com/47Cyhr 11:03:13 there we go 11:04:03 interesting: 11:04:05 .title https://rows.io/ 11:04:06 joepie91: rows.io Jabber/XMPP Server 11:04:11 unhelpful title is unhelpful 11:04:19 "A public Jabber/XMPP server running on hyperboria and the internet." 11:04:25 "rows.io will federate with any hyperboria or internet jabber server. You can chat with anyone!" 11:05:42 ah well joepie91 11:05:45 I've registered it. 11:05:51 I can't miss such a greate occasion ;) 11:06:04 Wat, u on hype too? 11:06:07 .whois iceb.in 11:06:08 The domain 04iceb.in does not seem to exist. 11:06:11 heh 11:06:11 Hypesters 11:06:15 MK_FG: I am not 11:06:22 but someone @rows.io added me on XMPP 11:06:30 and I wondered what it was, never seen the FQDN before 11:06:30 :) 11:06:31 Probably cayce ;) 11:06:55 He did install cjdns seeing how I can't shut up about it a few days ago ;) 11:06:58 great* 11:07:25 04FichteFoll made 2 commit(s) to 03package_control_channel on branch 10master: '02Added bootstrap3-jade-sublime-plugin', '02Merge pull request #2143 from rs459/patch-1Added bootstrap3-jade-sublime-plugin' (https://github.com/wbond/package_control_channel/compare/9017774fc7...37733dab14) 11:10:14 .whois iceb.in 11:10:15 The domain 04iceb.in does not seem to exist. 11:10:35 joepie91, Also I decided to try meld and did unthinkable evil rewriting nice py scripts you had into one ugly bash thing - behold - https://github.com/mk-fg/fgtk/blob/master/dev/git-meld :P 11:10:41 I can't add it on CloudFlare yet unfortunately 11:10:51 (to have it as separate "git meld" command, too) 11:12:11 not quite sure what you're doing there 11:12:12 :P 11:12:16 also 11:12:17 exec 1>/dev/null 2>/dev/null # meld is very noisy ;( 11:12:18 lol 11:12:23 it's GTK, of course it's noisy! 11:12:54 "not quite sure what you're doing there" - that's trademark of a bash script :P 11:13:00 lol 11:13:01 true 11:13:07 so as far as I can tell 11:13:19 you're somehow trying to replace the normal git pager (less) with itself 11:13:26 to catch the multiple diff calls 11:13:31 and group them together 11:13:32 https://github.com/mk-fg/fgtk/#git-meld might explain moar 11:13:32 correct? 11:13:54 No no, just disabling pager so it won't run with empty input on "git diff" 11:14:04 then I'm confused. 11:14:12 Basically, "git meld", as implemented by that script is a proxy to "git diff" 11:14:17 Or rather wrapper around it 11:14:43 Which sets itself as GIT_EXTERNAL_DIFF and runs git-diff 11:14:47 right 11:15:01 but bash :( 11:15:02 Which produces bunch of files in $tmpdir with list in lock.$pid 11:15:13 And then runs meld on that list just as you do 11:15:17 ahh 11:15:28 your lock timeout is 30 though? 11:15:33 is that 30 secs? 11:15:48 Yeah, but it shouldn't really be necessary 11:15:58 Only to lock out concurrent "git meld" runs 11:16:02 how does your script detect that git is done feeding it diff calls? 11:16:10 "git diff" finishes 11:16:17 * joepie91 more confused now 11:16:19 It's easier with wrapper 11:16:22 OH 11:16:29 I think I understand 11:16:33 heh 11:16:42 Yeah, it actually runs "git diff", when that finishes - all files are collected 11:17:08 (and it does some cleanup for older diffs after that, as I use memory-backed tmpfs there...) 11:17:31 See, bash \o/ 11:17:47 You have to explain it in more lines than script is :P 11:17:55 Very perl-like 11:18:02 hehe 11:18:09 (rather *old-perl*-like) 11:21:17 *** Ari has quit (Connection reset by peer) 11:24:25 *** iceTwy has quit (Ping timeout) 11:32:12 04FichteFoll made 3 commit(s) to 03package_control_channel on branch 10master: '02Adding ST3 Compatible HowDoI Code Search plugin', '02correcting alphabetical order', '02Merge pull request #2152 from jlangston/masterAdding ST3 Compatible HowDoI Code Search plugin' (https://github.com/wbond/package_control_channel/compare/37733dab14...23ed37c713) 11:34:43 04FichteFoll made 2 commit(s) to 03package_control_channel on branch 10master: '02added ST3 version of Open URL', '02Merge pull request #2154 from noahcoad/patch-2added ST3 version of Open URL' (https://github.com/wbond/package_control_channel/compare/23ed37c713...f59be4b0db) 11:35:14 04FichteFoll made 2 commit(s) to 03package_control_channel on branch 10master: '02added Google Spell Check ST3 version', '02Merge pull request #2155 from noahcoad/patch-3added Google Spell Check ST3 version' (https://github.com/wbond/package_control_channel/compare/f59be4b0db...ddc6802b4e) 11:35:44 04FichteFoll made 2 commit(s) to 03package_control_channel on branch 10master: '02Adding powershell help repo', '02Merge pull request #2156 from sponte/masterAdding powershell help repo' (https://github.com/wbond/package_control_channel/compare/ddc6802b4e...fce83673c2) 11:43:23 *** Half_of_a_zero (Half_of_a_@75D2BE42.54F88E0E.32FDE28D.IP) has joined #crytocc 12:03:51 *** Topiary (Topiary@EE1F0A76.63DE6E0A.404FEFB4.IP) has joined #crytocc 12:17:16 *** Topiary has quit (Ping timeout) 12:18:00 *** Topiary (Topiary@EE1F0A76.63DE6E0A.404FEFB4.IP) has joined #crytocc 12:19:07 *** Topiary has quit (Client exited) 12:19:39 *** Topiary (Topiary@EE1F0A76.63DE6E0A.404FEFB4.IP) has joined #crytocc 12:29:55 *** mama (me@cryto-1EEC6C73.host.de.colt.net) has joined #crytocc 12:32:56 *** complex (litehode@complex.users.cryto) has joined #crytocc 12:38:03 https://bitcointalk.org/index.php?topic=310962.0 12:38:04 "Announcement in Chinese: http://jiasule.baidu.com/news/525cd5aabf9efd699f800e7e/ 12:38:04 Baidu Jiasule, a CloudFlare-like anti-DDOS service by Baidu (NASDAQ:BIDU), today announce that they accept bitcoin for payment. This is the first service of this kind accepts bitcoin (in the whole world, not just China). 12:38:04 If you don't know what is Baidu: it is the Google of China." 12:39:09 *** Topiary has quit (Client exited) 12:39:21 yay 12:44:25 out of curiosity... 12:44:29 .bt 12:44:34 .bitcoin 12:44:35 1 BTC = $135.92, 1 BTC = €109.50 13:05:05 *** ttmbRAT (ttmbRAT@cryto-CA3A869B.us-west-1.compute.amazonaws.com) has joined #crytocc 13:06:27 *** ttmbRAT has quit (User quit: Connection closed) 13:23:50 *** Topiary (Topiary@EE1F0A76.63DE6E0A.404FEFB4.IP) has joined #crytocc 13:39:40 *** Topiary has quit (Client exited) 13:41:46 *** HiveResearch (HiveResear@developers.developers.developers) has joined #crytocc 14:00:11 *** Topiary (Topiary@EE1F0A76.63DE6E0A.404FEFB4.IP) has joined #crytocc 14:00:51 brains brains brains brains brains brains brains brains brains brains brains brains brains brains brains brains 14:01:02 mushroom mushroom! 14:01:03 lol 14:05:45 Lopado­temacho­selacho­galeo­kranio­leipsano­drim­hypo­trimmato­silphio­parao­melito­katakechy­meno­kichl­epi­kossypho­phatto­perister­alektryon­opte­kephallio­kigklo­peleio­lagoio­siraio­baphe­tragano­pterygon 14:06:28 qwertyuiopasdfghjklzxcvbnm 14:07:02 lysobit: What kind of curse spell was that? 14:08:17 It's a dish compounded of all kinds of dainties, fish, flesh, fowl, and sauces 14:08:25 It can turn your computer to a bomb 14:09:40 again? 14:10:26 .wik Lopado­temacho­selacho­galeo­kranio­leipsano­drim­hypo­trimmato­silphio­parao­melito­katakechy­meno­kichl­epi­kossypho­phatto­perister­alektryon­opte­kephallio­kigklo­peleio­lagoio­siraio­baphe­tragano­pterygon 14:10:27 " [...]" - http://en.wikipedia.org/wiki/Lopado­temacho­selacho­galeo­kranio­leipsano­drim­hypo­trimmato­silphio­parao­melito­katakechy­meno­kichl­epi­kossypho­phatto­perister­alektryon­opte­kephallio­kigklo­peleio­lagoio­siraio­baphe­tragano­pterygon 14:10:45 no way 14:10:56 ? 14:11:23 I KNEW IT... "All sorts of good cheer; 14:11:24 Limpets, oysters, salt fish, 14:11:24 And a skate too a dish, 14:11:31 We had to learn that 14:11:39 now it seems familiar 14:13:05 .g 卐 14:13:06 lysobit: http://www.youtube.com/watch?v=EVaOM1a9dkU 14:13:44 .g 卐卐卐 14:13:45 lysobit: http://www.youtube.com/watch?v=EVaOM1a9dkU 14:13:46 .g weebl 14:13:47 norbert79: http://www.weebls-stuff.com/ 14:13:52 nice 14:14:00 .wik 卐 14:14:01 "The swastika (卐) (Sanskrit: स्वस्तिक) is an equilateral cross with four arms bent at 90 degrees." - http://en.wikipedia.org/wiki/卐 14:14:25 .g स्वस्ति 14:14:26 lysobit: http://hindi.webdunia.com/%E0%A4%B6%E0%A5%8D%E0%A4%B0%E0%A5%80-%E0%A4%B8%E0%A4%A4%E0%A5%8D%E0%A4%AF%E0%A4%A8%E0%A4%BE%E0%A4%B0%E0%A4%BE%E0%A4%AF%E0%A4%A3-%E0%A4%AA%E0%A5%89%E0%A4%AA/%E0%A4%B6%E0%A5%8D%E0%A4%B0%E0%A5%80-%E0%A4%B8%E0%A4%A4%E0%A5%8D%E0%A4%AF%E0%A4%A8%E0%A4%BE%E0%A4%B0%E0%A4%BE%E0%A4%AF%E0%A4%A3-%E0%A4%95%E0%A4%BE-%E0%A4%AA%E0%A5%82%E0%A4%9C%E0%A4%A8-%E0%A4%B8%E0%A5%8D%E0%A4%B5%E0%A4%AF%E0%A4%82-%E0%A4%95%E0%A4%B0%E0% 14:14:34 .wik स्वस्ति 14:14:35 "In Indian religions mantra (Devanagari मन्त्र) is a Sanskrit term for a sound, syllable, word, or group of words (usually starting with word ॐ (Aum, Om), which is itself the most famous mantra) that is considered capable of 'creating transformation' (cf. [...]" - http://en.wikipedia.org/wiki/Mantra 14:14:48 .wik मन्त्र 14:14:49 "In Indian religions mantra (Devanagari मन्त्र) is a Sanskrit term for a sound, syllable, word, or group of words (usually starting with word ॐ (Aum, Om), which is itself the most famous mantra) that is considered capable of 'creating transformation' (cf. [...]" - http://en.wikipedia.org/wiki/Mantra 14:17:40 *** Topiary has quit (Client exited) 14:18:53 *** Topiary (Topiary@EE1F0A76.63DE6E0A.404FEFB4.IP) has joined #crytocc 14:25:38 *** Topiary has quit (Client exited) 14:42:05 *** Topiary (Topiary@EE1F0A76.63DE6E0A.404FEFB4.IP) has joined #crytocc 15:08:04 *** ElectRo` (x@cryto-7FDC2D28.snydernet.net) has joined #crytocc 15:08:47 *** ElectRo` has quit (Broken pipe) 15:12:35 *** ElectRo` (x@cryto-7FDC2D28.snydernet.net) has joined #crytocc 15:25:11 joepie91: http://www.cringely.com/2013/09/30/doubts-bitcoin/ - I like the guy, I like his style, you might be interested in the article. I was reading his articles on IBM in the past... 15:26:09 Hope you will find it interesting 15:41:34 *** Topiary has quit (Ping timeout) 15:43:13 norbert79: I've read it before, he's more clueful than most but still goes wrong on quite a few aspects 15:43:21 "Because it consistently costs more than a dollar to mine a dollar's worth of Bitcoins" for example 15:43:23 is incorrect 15:43:49 "but what??s to keep me from owning 90+ Bitcoin mining accounts and gaming the system? " 15:43:55 there's no such thing as a "Bitcoin mining account" 15:44:08 "Admittedly it??s not that easy: In practical terms I??d need a majority of the world??s mining nodes to make that scam stick" 15:44:17 is also incorrect; it's about calculation power, not amount of nodes 15:44:36 (that misperception is repeated throughout the paragraph) 15:45:20 his doom scenario of a large amount of mining power from one single entity ignores the overall growth of mining power on the network, as well as the fact that such an increase will be immediately obvious 15:45:24 and easily detectable 15:45:28 (and, thus, mitigatable) 15:45:46 "Bitcoin, as the first crypto-currency, is the one that will be tested in court." 15:46:33 this has actually been proven incorrect already; in basically all court cases and government statements, it was 'cryptocurrencies' that it focused around, even if the original intention was for it to be about Bitcoin 15:46:43 "I??d assign the tactical advantage to Litecoins, which are cheaper than Bitcoins" 15:47:09 this is also nonsense; Litecoins are not inherently 'cheaper than Bitcoins', they just happen to have a lower exchange rate now because there's less demand for it 15:47:19 and they do not provide any long-term benefits over Bitcoins 15:48:08 as for entire point 4), that's just ridiculous reasoning altogether 15:48:27 it has been proven time and time again that these "government meddling decisions" do not actually benefit anyone outside a select group of people 15:48:39 so it's basically already determined that absence of government meddling is a good thing 15:48:58 (reminder: effectively all problems with traditional banking were initially *caused* by government in some capacity) 15:49:26 their half-assed attempts at "solving" the problems they caused themselves, does not magically make government meddling a good thing 15:49:36 at best, it shows some degree of attempting self-correction 15:49:43 at worst, it's a thin cover to make people not get too mad about it 15:49:50 EOF, cc norbert79 15:51:16 *** iceTwy (iceTwy@cryto-610769D0.fbx.proxad.net) has joined #crytocc 15:51:40 iceTwy: 15:51:42 loggy, pointer? 15:51:42 http://wire.cryto.net/logs/crytocc/2013-10-15#T15-51-42 15:51:47 also hai 15:54:32 .title http://rats-nosnitch.com/ 15:54:33 joepie91: RATS! Your guide to protecting yourself against snitches, informers, informants, agents provocateurs, narcs, finks, and similar vermin 16:14:07 hola 16:14:17 joepie91: so I've bought iceb.in 16:14:36 :) 16:14:37 can I route the traffic to the AAAA record through CloudFlare? 16:14:46 iceb.in is running on a VPS, still 16:14:58 I'm... not entirely sure what you mean with "route the traffic to the AAAA record" 16:15:04 I mean 16:15:05 it's quite ambiguous :P 16:15:27 on the AAAA record, there's an option to enable traffic acceleration with CloudFlare. 16:15:58 now iceb.in is hosted on a VPS - will it resolve with CloudFlare? 16:16:15 on what AAAA record? resolve how? 16:16:26 how does it being on a VPS matter or change anything? 16:16:29 what was the previous situation? 16:16:30 etc. 16:16:35 be as verbose as you can be 16:18:09 well, iirc, when I enabled CloudFlare acceleration on vps.icetwy.re 16:18:20 vps.icetwy.re didn't resolve to the correct address 16:18:22 so 16:18:28 eventually, I couldn't even SSH into vps.icetwy.re 16:18:39 however when I disabled CloudFlare acceleration, it worked 16:18:45 so this is rather odd 16:19:06 now I don't have a spare IPv4 IP for my VPS 16:19:23 so I'll add an AAAA record with an IPv6 address instead of an A record with an IPv4 address 16:19:55 iceTwy: that clarifies what you mean 16:19:58 it's not "odd" 16:20:03 Cloudflare is a HTTP proxy 16:20:20 when you enable the acceleration stuff, all HTTP(S) traffic gets routed through their servers 16:20:23 other protocols do not 16:20:34 that is why you normally have a direct-connect entry 16:20:39 that has acceleration turned off 16:20:45 and points directly to the actual server 16:21:06 so just add some kind of entry pointing directly at your VPS, and enable acceleration for the main DNS entry and you should be fine 16:21:19 oh okay 16:21:29 so I can effectively speed up the VPS 16:21:48 and then add a "direct" subdomain that won't go through CloudFlare 16:22:01 and through the direct subdomain I should be able to log into SSH? 16:22:07 log into my VPS with SSH* 16:43:03 iceTwy: yes 16:43:41 cool 16:44:04 joepie91: I'm hesitating between SHA-1 and SHA-2 hashes for SSL/TLS on iceb.in 16:46:10 fuck it, I'll go with SHA2 for the fun of it 16:54:28 SHA2 17:03:42 *** complex has quit (Input/output error) 17:16:35 *** mama has quit (Client exited) 17:18:20 *** mama_ (me@cryto-C630644E.is.a.tor.exit.server.torland.is) has joined #crytocc 17:20:24 *** mama_ is now known as mama 17:46:35 *** complex (litehode@complex.users.cryto) has joined #crytocc 17:56:12 joepie91: https://iceb.in/ 17:56:16 .title 17:56:20 iceTwy: icebin - encrypted pastebin 17:56:33 :D:D 17:59:45 yay 18:00:35 how does that work? they are published but they are encrypted? 18:00:57 nice domain ^_^ 18:03:42 complex: clientside encryption 18:03:55 key is in the URL as the fragment (part after the #) so it's never sent to the server 18:05:04 oh, cool 18:05:16 IR601: yeah haha 18:05:22 I couldn't believe that domain was free 18:07:04 win! 18:08:37 loggy, pointer? 18:08:37 http://wire.cryto.net/logs/crytocc/2013-10-15#T18-08-37 18:10:15 *** x (foobar@8A2E482F.4403C8C0.E124FE5.IP) has joined #crytocc 18:25:51 *** tintin (tintin@82BCA0EC.5145288.A27E456C.IP) has joined #crytocc 18:46:50 loggy, bj? 18:48:29 loggy, just a quick handy plz? 18:49:10 loggy, come on 18:50:30 logggggyyyyyyyy 18:50:40 *** complex has quit (Ping timeout) 18:56:25 loggy so selfish 18:59:25 *** x has quit (Input/output error) 19:05:03 this is so weird 19:05:11 ip6tables-restore fails every time 19:05:16 no matter the configuration 19:05:24 (used 2 supposedly valid example configurations, none worked) 19:18:41 *** pzuraq (pzuraq@cryto-BAE76FBA.hsd1.ca.comcast.net) has joined #crytocc 19:18:55 heyo 19:21:54 lol 19:22:02 trying to send a ticket on RootNerds' support website: http://i.imgur.com/dio9O2J.png 19:22:39 cc joepie91 ^ 19:22:44 *** norbert79_xchat (Norbi@cryto-7B830C31.pool.digikabel.hu) has joined #crytocc 19:23:24 ha 19:23:28 that's not supposed to happen :P 19:23:29 moment 19:23:42 also what desktop environment is that 19:24:16 i3 19:24:22 wat 19:24:22 it's not a DE 19:24:25 it's a WM 19:25:26 joepie91: http://i3wm.org/ 19:26:16 *** complex (litehode@1FB20456.69AC617A.F6E1C77B.IP) has joined #crytocc 19:27:56 *** complex has quit (User quit: ) 19:28:04 *** complex (litehode@complex.users.cryto) has joined #crytocc 19:29:25 joepie91: Read you, reviewed all, thanks for comments! 19:30:21 yw 19:30:27 :) 19:30:29 also hai pzuraq! 19:30:39 hai joepie91 :3 19:31:48 *** norbert79_xchat has quit (User quit: Leaving for now. Bye everyone!) 19:32:03 that's closed for now... Had too many IM's running 19:32:03 btw joepie91 19:32:18 I can't connect to vps.icetwy.re with CloudFlare acceleration enabled 19:32:25 which is extremely weird. 19:32:40 .whois vps.icetwy.re 19:32:42 The domain 04vps.icetwy.re does not seem to exist. 19:32:47 .whois icetwy.re 19:32:48 Domain 04icetwy.re, registered on 042013-06-19T00:00:00 via 04INTERNET.BS CORP, expires on 04unknown, nameservers are 04josh.ns.cloudflare.com, rita.ns.cloudflare.com, contact e-mails are 04info@internet.bs, AfnicRoleObject@internet.bs, anonymous@nowhere.xx.fr 19:33:00 .whois iceb.in 19:33:01 The domain 04iceb.in does not seem to exist. 19:34:34 it's cached 19:34:40 iceb.in 19:34:42 also 19:34:46 .lookup vps.icetwy.re 19:34:47 DNS records for vps.icetwy.re: 19:34:48 A: 108.162.199.77, 108.162.198.77 19:34:54 took this a couple of day ago when it was heavy fog: http://i.imgur.com/qvVlc1j.jpg 19:35:13 iceTwy: not really sure what you mean with "connect to" 19:35:14 what protocol? 19:35:16 though the mobilecamera is very shitty, it still looks awesome 19:35:32 joepie91: I simply can't access vps.icetwy.re anymore 19:35:39 complex: that's a pretty nice picture 19:35:42 iceTwy: that doesn't answer my question 19:35:47 what protocol are you trying to use? 19:35:50 HTTP 19:36:12 and you are certain that the records in the cloudflare panel are set correctly? 19:36:16 yup 19:36:34 vps.icetwy.re is set as an A record 19:36:43 to what? 19:36:48 to my VPS' IP 19:37:29 icetwy, xmpp? 19:38:07 Zoned: yeah 19:38:11 iceTwy: have you set up a HTTPS-only setup on your VPS? 19:39:02 nope. it's HTTP + HTTPS 19:39:10 all HTTP requests are directed to HTTPS thanks to Nginx 19:39:21 iceTwy: then there's your problem 19:39:36 why/how would that be a problem? 19:39:43 because cloudflare only offers SSL on their paid plan 19:39:51 aaaaaaaaaaaaaaaaaaaaaaaaaah. 19:40:07 [of] have you tried resubmitting the ticket yet? 19:41:27 iceTwy, get on xmpp? I can't see you. 19:42:01 Zoned: yeah, give DNS some time to update 19:42:06 xD k 19:43:48 joepie91: then damn. I need a good CDN/DNS 19:55:53 cayce: https://xnyhps.nl/~thijs/xmppoke-frontend/list.php 20:41:17 *** Zoned has quit (Ping timeout) 20:44:29 *** Zoned (sexybitch@cryto-16BD27AB.tor.primus.ca) has joined #crytocc 21:01:57 *** pzuraq has quit (Input/output error) 21:05:03 *** fanat1ck (fanat1ck@cryto-35ADD2FB.us-west-1.compute.amazonaws.com) has joined #crytocc 21:06:20 04joepie91 made 7 commit(s) to 03Envoy on branch 10feature/room-management: '02Add room creation API call and fix some bugs', '02Update the participants list in the room cache during purging', '02Update RoomCache participant lists on MUC events (untested, awaiting forwarding module config changes)', '02Resolve a TODO', '02Resolve another TODO', '02Remove a useless logging call', '02Split up presence purging function in 21:06:24 *** fanat1ck has quit (User quit: Connection closed) 21:08:52 04joepie91 made 1 commit(s) to 03Envoy on branch 10feature/room-management: '02Resolve another TODO' (https://github.com/KnightSwarm/Envoy/compare/df88c26540...dbbcf7ffc5) 21:13:54 04joepie91 made 2 commit(s) to 03Envoy on branch 10feature/room-management: '02Resolve two more TODOs', '02Before assigning ownership of a room, verify that the user belongs to the correct FQDN' (https://github.com/KnightSwarm/Envoy/compare/dbbcf7ffc5...0bf9815224) 21:28:58 *** Ari (Ari@Ari.users.cryto) has joined #crytocc 21:35:28 *** LapAnon has quit (Input/output error) 21:44:38 *** stanone (Adrian@stanone.users.cryto) has joined #crytocc 21:56:15 grr 21:56:28 why don't python libraries work when i want them to 22:06:55 zxcvbnm: what libs? 22:09:57 *** iceTwy has quit (User quit: Disconnecting from server) 22:19:28 joepie91: dpkt 22:19:46 i think its user error. surprise surprise. but it doesn't specify how it reads pcap files 22:20:01 and its trying to pull in binary data and parse out IP addresses out of that, which it obviously isn't going to be successful in doing 22:20:15 I think it must be expecting some generic tcpdump pcap file 22:22:57 example output: http://i.imgur.com/xTGVM6N.jpg 22:24:27 whereas this is what it *should* look like: http://i.imgur.com/2zJL6lm.jpg 22:25:32 * joepie91 is not familiar with dpkt 22:25:59 ya -- I went into the library code to see if I could figure out whats going on 22:26:09 zxcvbnm: format mismatch perhaps? 22:26:14 yes, thats what I think 22:26:21 format version mismatch, specifically 22:26:26 might be a missing flag somewhere 22:26:31 oh 22:26:44 I think it is the way the file is written 22:26:55 since i'm using wireshark, and I think dpkt is expecting something more simple like tcpdump 22:27:11 I don't think wireshark outputs standard pcap? 22:27:13 but I might be wrong 22:27:21 I don't think it does either ( based on my output ) 22:27:33 fortunately i have network miner, so I can try that 22:28:52 zxcvbnm: could just do a quick tcpdump? 22:28:54 to see if that works 22:29:24 * zxcvbnm doesn't think Windows comes w/ tcpdump, natively 22:34:48 o shit 22:34:49 got it 22:34:55 *** complex has quit (Input/output error) 22:35:12 I don't know what the settings are in Wireshark 22:35:16 but on Network Miner 22:35:26 you can either set it to "WinPcap" followed by your interface name 22:35:31 or "Socket" followed by your interface 22:35:37 I was using socket, and that was no bueno. 22:35:54 So, for Windows, dpkt expects it in the format of "WinPcap" apparently 22:37:45 Ok and in Wireshark, you need to go to capture options and uncheck "pcap-ng" 22:37:55 this is just sort of self-documentation. 22:40:17 and i'm out. peace 22:55:12 zxcvbnm: ttyl :) 23:09:27 *** Macbeth (Macbeth@Macbeth.users.cryto) has joined #crytocc 23:09:29 Hai 23:09:38 ohai 23:12:11 What's up 23:12:12 ? 23:12:15 nothing 23:12:17 u? 23:12:24 Banning some ppl in #opnewblood 23:12:26 That's about it 23:12:41 "I don't think wireshark outputs standard pcap" - it uses libpcap to dump stuff in pcap format (and I think that's default), so should be "standard" by all means 23:13:07 Banning is an ordeal. I don't like typing out ".users.cryto" everytime. 23:13:37 And usually I ban ppl for having so much leet in their names, because it's hard to type if they are doing something annoying and need to be kicked or banned, so there's another thing. 23:14:19 Then I have to /kick them, because /ban doesn't get them out, so I don't know if they can some back. 23:21:36 Learning advanced CSS 23:30:16 yeah, wireshark's pcap implementation is I think literally the defacto standard 23:33:04 * cayce sighs 23:33:08 I wanna punch something 23:33:20 I had only two pads for my glasses, and one fell off today 23:33:39 I ordered new sets already, but I'm going to be continually pissed until they arrive 23:33:56 I think libpcap is tcpdump spin-off though 23:33:59 good thing I have no other tests this week so I can't sit down and just write "FUCK YOU FUCK YOU FUCK YOU FUCK YOU" for 4 pages 23:34:18 (or nmap?...) 23:34:21 yeah, well iirc wireshark was ethercap was tcpdump or something 23:34:30 No, tcpdump 23:34:37 (not nmap) 23:34:42 yes yes 23:34:47 nothing to do with nmap 23:34:52 etherel, btw 23:34:58 *ethereal 23:35:01 oh that was the name 23:35:05 fuck yeah ethsomething 23:35:06 lol 23:35:12 There's separate thing "ettercap" 23:35:21 " good thing I have no other tests this week so I can't sit down and just write "FUCK YOU FUCK YOU FUCK YOU FUCK YOU" for 4 pages" lulz 23:35:21 oh o.o :P 23:35:56 Macbeth:) yeah dude I hate this shit. the glasses are balanced on ONE PAD 23:35:58 ONE FUCKING PAD 23:36:01 WHY 23:36:05 Also, was it really associated with tcpdump though... 23:36:15 * cayce doesn't think so >_> 23:36:22 in spirit? :D 23:36:26 cayce: You should just get contacts 23:36:31 Macbeth:) no 23:36:51 You like how you look in glasses, or you don't like the idea of having something in your eye? 23:37:06 both 23:37:11 also they dry out 23:37:12 I would be too scared to put something in my eye, honestly 23:37:15 and I ride miles every day 23:37:32 they take maintenance too, and I'm not willing to maintain them 23:37:37 Ever think of leser eye surgery? 23:37:44 when I'm rich yes 23:37:50 Ha!! 23:37:59 (Ha is my obnixous laugh) 23:38:10 or have 3grand to drop on "fixing" a body part that if they fuck up even the littlest bit I'm blind 23:38:10 (Normal laugh is probably lol, or ha ha ha) 23:38:24 I agree... 23:38:24 which is to say no 23:38:29 I will not get laser eye surgery 23:38:36 I got what you mean 23:38:39 I will wear glasses, and it will be wonderful 23:38:46 someday, I will get new glasses 23:38:50 My aunt got it, her eyes are 20/15 23:38:55 That's better then 20/20 23:39:01 * cayce shrugs 23:39:11 I havn't been to a checkup in like, 5 years 23:39:12 I have enough problems processing information now, I don't need MORE 23:39:15 I probably should go 23:39:22 lulz 23:39:35 it's what tires me in social situations 23:39:36 :/ 23:41:07 If anyone knows of a way to view the source of a website remotely, that would be awesome 23:42:51 wget? 23:43:10 and uh 23:43:11 cat 23:44:06 curl! 23:44:29 I'm trying to get into a webpage that has a username and password req before it will load 23:44:38 I can't view the source, because it won't load for me 23:44:41 I don't understand 23:44:58 There's separate thing "ettercap" 23:45:00 ethercap? 23:45:02 is it a browser prompt or in-page 23:45:11 I want to view a webpage that gives a popup that asks for a username and password before loading 23:45:15 if it's a browser prompt that's an http header and there's no source to view 23:45:18 cayce, did you catch my xmppoke link? 23:45:20 I know 23:45:28 joepie91:) yes haven't looked yet 23:45:57 joepie91, http://ettercap.github.io/ettercap/ 23:45:57 Macbeth:) again, no source to view if it's a browser thing. It will not give you the page until you auth. 23:46:06 ...or https://en.wikipedia.org/wiki/Ettercap_%28computing%29 23:46:13 MK_FG: ah 23:46:17 I think it's clearly D&D reference ;) 23:46:18 NEW CHROME YES 23:46:31 * cayce installs and turns on simplecache 23:46:47 http://www.chromium.org/developers/design-documents/network-stack/disk-cache/very-simple-backend 23:46:52 SO HOT (also simple lulz) 23:47:05 FUCK CHROME NO 23:47:10 Proposed is a new backend for the disk cache, conforming to the interface in Disk Cache. The new backend is purposefully very simple, using one file per cache entry, plus an index file. This backend will be useful as a testing baseline, as well as dealing with IO bottlenecks impairing mobile browsing performance on some platforms. 23:47:18 pft 23:47:24 so excite 23:47:26 pft 23:47:34 Don't use Google Products 23:47:41 First, their customer service is shit 23:47:41 I do, I use them all 23:47:43 First, their customer service is shit 23:47:51 I don't want their customer service, it's free 23:47:54 Second, I don't like their tracking 23:47:56 I am the product 23:47:58 bite me 23:48:04 I don't like the tracking 23:48:09 I do 23:48:10 * joepie91 sighs 23:48:29 It makes me all warm and fuzzy inside knowing that at the end of the day, at least an algorithm gives a shit about me 23:48:41 It doesn't 23:48:45 Mozilla 23:48:49 (and 4.7bn other people) 23:48:53 makes a shitty browser, yes! 23:49:02 Macbeth: it's silly to loudly complain about that one company named Google and have a trigger reflex of "EW NO GOOGLE" when most likely 99% of the companies involved in your daily browsing try to do the exact same thing - tracking you 23:49:15 tell them to implement >tls1.0 and they will be a markedly less shitty browser! 23:49:31 Macbeth: you're running win7 23:49:46 have you considered that Microsoft is also trying to collect as much data as possible on you? 23:49:48 more like microspy spyos 23:50:04 * cayce giggles at how absolutely trashy that was 23:50:40 NP: [Alexandra Stan - Mr. Saxobeat] [Saxobeats] [1141kbps] DeaDBeeF 0.5.6-3jane 23:51:45 Kinect is teh new Big Brutha 23:51:53 dude have you seen the xbox1? 23:52:01 OBEY THE EYE OF KINECT 23:52:02 it has a high def mic and real hd camera 23:52:15 it's like combination of ultra creepy and AMAZING IN-HOME A/V GEAR 23:52:38 Nah, you can just put a cardboard over it if that creeps you out 23:52:47 well yeah 23:52:53 but the mic always listens for XBOX ON 23:52:55 :> 23:53:01 or whatever the trigger is 23:53:04 Gum then 23:53:05 which is both awesome and creepy 23:53:06 lol 23:53:24 I'm waiting for the old hacking tools to come back around again 23:53:42 so I say "HOUSE ON" and my house says "welcome to your virtual command interface" 23:53:58 SKYNET, ARISE!!! 23:54:17 I don't want a properly interactive one yet, I want a good week of my house greeting me when I walk in the door 23:54:19 until I tire of it 23:55:01 wait skynet 23:55:02 sec 23:55:17 yeah there it is 23:55:18 MK_FG:) https://mirror.explodie.org/skynet.png 23:55:51 Heh 23:56:06 Kinda acronym for "Skype Network" too 23:58:27 :>