●● IRC: #boycottnovell @ FreeNode: Friday, January 01, 2021 ●● ● Jan 01 [00:08] *gry has quit (Ping timeout: 272 seconds) [00:43] *rianne_ (~rianne@host81-154-173-106.range81-154.btcentralplus.com) has joined #boycottnovell [00:43] *liberty_box (~liberty@host81-154-173-106.range81-154.btcentralplus.com) has joined #boycottnovell ● Jan 01 [04:33] *gry (~test@unaffiliated/gryllida) has joined #boycottnovell ● Jan 01 [05:27] Techrights-sec happy new year 2021 [05:28] schestowitz Let's hope it starts as well as the DC move :-) [05:32] schestowitz note to self: this was not just a move but an upgrade (space, ram, cpu, containers) [05:32] Techrights-sec That's great news. [05:32] Techrights-sec Congrats to you and kaniini [05:32] Techrights-sec there are a lot of peices to keep track of during such a move [05:32] Techrights-sec M$ was cracked enough that they had to admit it, in the SolarWinds attack. [05:32] Techrights-sec Expect a lot of spin and diatribes implying that source code is inerently [05:33] Techrights-sec dangerous. I am not surprised that they held off to New Year's Eve to [05:33] Techrights-sec try to quietly release the news. [05:33] schestowitz I was just about to post security leftovers. Hang on. You'll like some picks in there, re SolarGate [05:35] schestowitz re two links at the bottom, worth doing video about (there's one more link in last News Picks) http://www.tuxmachines.org/node/146030 [05:35] -TechrightsBN/#boycottnovell-www.tuxmachines.org | Security Leftovers | Tux Machines [05:36] Techrights-sec SolarALago? ;) [05:46] Techrights-sec Those two links look like more FUD (as noted in the post). M$ always does [05:46] Techrights-sec that to make things into "Linux" malware in the mass media. [05:46] Techrights-sec Same with the default passwords left on devices. [05:47] schestowitz worth doing a video on? 3 stories on this... easy to respond to without preparing. [05:55] schestowitz we need to repair/update the cron job for backup TM->TR:~/archives [05:56] schestowitz I've done a bunch of stuff on TM, checked status, stopped puppet, checked local backup sanity etc. Also found spare apachetop rpm lying about [05:57] Techrights-sec Sure. However, the videos are much slower for the recipients to process than [05:57] Techrights-sec reading. So when you start, have some way of concentrating the essence [05:57] Techrights-sec of the talk. 10 min x 6 people = 1 mh etc. [05:57] Techrights-sec Also as mentioned the text goes into the search engines. So writeups are [05:57] Techrights-sec always very beneficial. [05:57] Techrights-sec 10 min x 600 people = 100 mh [05:57] schestowitz mh is now "personhour" :-) ● Jan 01 [06:00] schestowitz I've just reset apachetop now that none of the traffic can (or does) go to the old server, which kaniini wiped CLEAN in case that hardware gets sold [06:00] Techrights-sec There will be lots of SolarWinds articles in today's Links. [06:02] Techrights-sec Encrypted disks help with the wiping but might load the processors a little [06:17] Techrights-sec Nice. [06:17] Techrights-sec BTW danielmiessler feed has been broken for most of a week now. [06:18] schestowitz His stories are usually not that good or relevant anyway [06:18] schestowitz Looks like the mail services need fixing/work on techrights (aside from TM remote backup). I'll look into mail now. [06:27] Techrights-sec The mail from TM is still being sent by cron. I see from the headers, that [06:27] Techrights-sec it is from the new address. [06:27] schestowitz afaik, tm does not have working mail, do you mean tr? I got nothing since before that old server was shut down [06:28] schestowitz they flooded the www and net with zombies, now they raise entry point for people sending mail from non-oligopols [sic] [06:35] schestowitz OK, now I can see it sends out mail, but I never received any, so I assume it's thwarted by my mail provider/host. I cannot see it. What about TR? It sends out things like login details and our daily 4 alerts from the system (TR). see tmux. [06:36] schestowitz BTW, TR mail was already bad enough in the sense that many who sign up to comment in wordpress never receive/see the mail sent to them from the system [06:38] Techrights-sec I've sent the headers via e-mail. It is coming from .115 [06:38] Techrights-sec every morning at 06:00 UTC [06:38] Techrights-sec gmail and others sort TM mail into spam [06:38] Techrights-sec The side effect of the ill-though-out approach of treating spam [06:38] Techrights-sec as a technical problem rather than a legal and ethical problem [06:38] Techrights-sec is that all the world's e-mail has become increasingly centralized [06:38] Techrights-sec over time. Now it is to the point that ony pre-established big players [06:38] Techrights-sec can have a seat at the table. Even medium-sized new companies can't get [06:38] Techrights-sec in on providing e-mail. Zoom is now big enough to try but they [06:38] Techrights-sec would only do it to add to their surveillance and analysis capabilities. [06:38] Techrights-sec The are not doing it to provide a service to the people who would [06:38] Techrights-sec actually use the mail but to the companies and agencies that [06:38] Techrights-sec would mine said group. [06:38] Techrights-sec The Assange decision might be due from the UK courts on Monday. [06:40] schestowitz With Tier 4 = no protests. With NYE= no press. [06:40] schestowitz we really need to try to fix email on TR not just for alerts but for people wishing to comment who do not already have an account [06:41] schestowitz It was partly broken even before the move (in tessier days and prior DC).... very few people would receive mail from that server successfully. Maybe it's all those verification hoops we need to jump through? Maybe misconfig? [06:42] schestowitz If we can sort this out, more blog comment will start to appear (not that I'm a fan of blog comments, many tend to be annoying and irrelevant) [06:43] schestowitz *comments [06:43] schestowitz *blog comments [06:44] Techrights-sec Mail is not my area at all. However, if I were to guess, I would guess [06:44] Techrights-sec that it is as you suggest all the verification hoops to hop through. [06:44] Techrights-sec However, most of the IPv4 address space is dead for mail. Once [06:44] Techrights-sec an IPv4 address gets onto a blacklist, AFAIK it is never removed. [06:44] Techrights-sec Maybe outsource blog comments, but then that would bring with it [06:44] Techrights-sec all the disadvantages of outsourcing. [06:44] schestowitz few thoughts: [06:45] schestowitz 1. in tuxmachines we got only spam by opening up, literal spam mostly. Same in the wiki. [06:45] schestowitz 2. in techrights we require people register, but in recent years (maybe 5) mail was not sent out to enable this or was increasingly flagged "spam" [06:46] schestowitz 3. we do not need the alerts as much now that we have more disk space, but checking disk space was nice [06:46] schestowitz 4. we could use something other than email to craft daily report, e.g. fed into a URL (private/public) in some nice form [06:46] schestowitz 5. anything else we really need mail for? on tuxmachines I don't see mail at all, for years... [06:47] schestowitz +bonus 6. ALL SITES HAVE OUTSOURCED COMMENTS AGAINST THEIR WILL. :-) It is called Reddit, social control media etc. [06:49] Techrights-sec Mail would be important to have working but not necessarily to use it [06:49] Techrights-sec for alerts. There can be other methods instead. Yet, it would [06:49] Techrights-sec be very good to maintain it against the occasion it really is needed. [06:49] Techrights-sec It would be a shame to cede the protocol over to Google. [06:49] schestowitz This is a very big fight we lost ages ago, not one that's worth FOCUSING on TBH [06:50] schestowitz From work I know what a pain verification can be, esp. when we have headless servers and stuff [06:50] schestowitz And then you need to police things on your machine e.g. bots trying to create dummy accounts in wordpress, drupal etc. I already STOPPED that in Drupal and Wiki due to LOADS of spam it caused [06:52] schestowitz do you receive the daily mails from TR? I got nothing since last night and it was the old TR server. [06:53] Techrights-sec Oh I agree about the comments. They might not be worth the effort. [06:53] Techrights-sec There is too much supervision involved. [06:53] Techrights-sec However, separate from that is the matter of e-mail. [06:53] Techrights-sec As muh as I prefer the ability to comment, I would not object to [06:53] Techrights-sec phasing out that function. It's already a lost cause on nearly all [06:53] Techrights-sec sites these days. I am hard pressed to think of any sites [06:53] Techrights-sec which still allow comments. [06:53] schestowitz imagine what would happen to articles about gates estate had comments by random trolls been allowed... [06:54] Techrights-sec I have not gotten TR mails for a Very Long Time. As far as I know, Google bouncees [06:54] Techrights-sec those. [06:55] schestowitz Oh! So gmail has blocked all those updates from the server after a while? Shows what a lost cause it may be trying to fix it, only to be put again in the bin [06:55] Techrights-sec -bash: mail: command not found [06:55] Techrights-sec not present on TR [06:56] schestowitz run mailq, check /var/log/maillog etc. [06:56] schestowitz it's also in the active pane in tmux atm [06:56] Techrights-sec Mail != comments [06:56] Techrights-sec It would probably be appropriate to disable comments. [06:56] Techrights-sec I think it is too early to cede SMTP [06:59] schestowitz oh, did gmx let you receive the TR emails until last night? [06:59] schestowitz i want to know if the issue is technical at server level, something at network level, or external like IP blacklist (I know nothing about who had this IP before us!) ● Jan 01 [07:01] Techrights-sec mailq is the server, the client is missing [07:01] Techrights-sec GMX does not receive mails from TR. [07:01] Techrights-sec Neither the old machine or the new. I can't recall if that [07:01] Techrights-sec is by choice or not. [07:01] Techrights-sec Like I mentioned, I know little about mail, at least nothing recent. [07:01] Techrights-sec I mostly left it alone when hosting. [07:02] schestowitz it's not by choice, unless you reconfigured things to now send out those TR alerts to you. I assume they too eventually blacklisted it and IIRC you had a support ticket with gmx asking them to whitelist. [07:03] schestowitz quick thought: let's say we fixed it, costing us hours of tail. How to keep that from breaking again, seeing it silently broke for you (GMX) even on the old machine that still sent me mails successfully until shutdown [07:03] Techrights-sec Yes, that was a long time ago, I had forgotten. I am not sure where [07:03] Techrights-sec the support ticket number is. [07:03] Techrights-sec Not sure. [07:04] Techrights-sec The only argument I have for it is about not letting [07:04] Techrights-sec Google capture the protocols and take written communication over. [07:04] schestowitz PRISM [07:05] schestowitz ECHELON [07:05] Techrights-sec PRISM was one of the milder ones. I forget the names of the serious [07:05] Techrights-sec programmes. [07:05] Techrights-sec \ [07:06] Techrights-sec Maybe MYSTIC? [07:06] schestowitz maybe. STELLER WIND, many exist, with overlaps [07:07] Techrights-sec Yes, stellar wind: https://en.wikipedia.org/wiki/STELLARWIND [07:07] Techrights-sec though wikipedia might not be reliable on those topics [07:07] -TechrightsBN/#boycottnovell-en.wikipedia.org | Stellar Wind - Wikipedia [07:09] schestowitz you might argue that broadcasting server status to spies was all along a bad idea anyway; there's stuff in there which with interpolation can help intruders and saboteurs, e.g. draining disk space [07:09] schestowitz let's use ssh [07:10] schestowitz how about... [07:10] schestowitz tmux pane with server status, either on a pi or the server? [07:11] Techrights-sec TEMPORA and BULLRUN? [07:11] Techrights-sec Oh, I agree that it should not be used for status. [07:11] Techrights-sec I just think it is important to have mail available as an option [07:11] Techrights-sec SSH works much more reliably and easily in regards to automation [07:11] Techrights-sec MQTT would be good too. [07:12] schestowitz re " I just think it is important to have mail available as an option" > I agree, BUT... two issues; 1) even if rectified, it'll break later (blacklists) 2) another server move would entail (1) again. Giving up on SMTP of our own is shit, I agree, it's admitting defeat to monopolies, but the gain are rather few TBH [07:13] schestowitz I don't often have the luxury of holidays and no-news times... to start bothering with hours of begging on my knees to quit blacklist (they did this to schestowitz.com last year) and all this for maybe a few shitty blog comments I barely think improve the articles [07:14] Techrights-sec MQTT would be good too. [07:14] Techrights-sec especially for short status updates [07:15] schestowitz let me see what I can come up with in tmux. [07:15] schestowitz hang on... we both watch it or have it on screen all the time, unlike email, right? [07:16] Techrights-sec Kind of. I don't have a lot of screen realestate to have things in the [07:16] Techrights-sec foreground all the time. [07:16] schestowitz I can cut and condense the status, I have ideas now... [07:18] schestowitz from HV: sudo lxc-attach -n techrights-old [07:18] schestowitz same for tuxmachines, if you wish to pick up the session from the HV and enter the container of the site rather than ssh directly to them [07:19] schestowitz there is also one for the DB and viera the bot. I still wait for pleroma.site to come back online and viera can actually bootstrap and pick updates [07:28] schestowitz OK, cron jobs will show server-related status messages at the top right corner of tmux@TR [07:28] schestowitz first will come from cron job in 2 mins [07:32] Techrights-sec tmux is rather ok as a dashboard of sorts [07:32] Techrights-sec ]] [07:32] schestowitz I will reformat messages and think of new ones that are of use, over time... [07:56] schestowitz some will cycle on an hourly basis from now on, one will be twice a day, I will think of other things I typically need to remind me to monitor ● Jan 01 [08:06] *gry has quit (Ping timeout: 256 seconds) [08:18] *gry (~test@unaffiliated/gryllida) has joined #boycottnovell ● Jan 01 [17:42] schestowitz https://twitter.com/MarkKen20510303/status/1345016443990138880 [17:42] -TechrightsBN/#boycottnovell-@MarkKen20510303: @schestowitz Mobility is at least partly about being free of wires, as much as it is about distance and seamless handovers. [17:43] schestowitz https://twitter.com/Flavia0847/status/1345054508150362113 [17:43] -TechrightsBN/#boycottnovell-@Flavia0847: Great test-pattern! https://t.co/kKoKGudm7R [17:43] -TechrightsBN/#boycottnovell-@schestowitz: "I no longer have as much time for personal projects as before, and most of the technology-related stuff I am curre https://t.co/b1ipKeiTgi [17:43] schestowitz https://twitter.com/CarolainaGi/status/1345053177599717376 [17:43] -TechrightsBN/#boycottnovell-@CarolainaGi: @fcassia @luisgraziano @MikeMagee111 @mmasnick @schestowitz @theovalich @sbassi @fernandezpablo @jubema https://t.co/1RuWxM5g4r [17:43] -TechrightsBN/#boycottnovell-@CarolainaGi: @fcassia @luisgraziano @MikeMagee111 @mmasnick @schestowitz @theovalich @sbassi @fernandezpablo @jubema https://t.co/1RuWxM5g4r [17:43] schestowitz "Feliz ao!!!' [17:43] schestowitz https://twitter.com/glynmoody/status/1345026794303459330 [17:43] -TechrightsBN/#boycottnovell-@glynmoody: @schestowitz yup [17:43] schestowitz https://twitter.com/fernandezpablo/status/1345006097350979589 [17:43] -TechrightsBN/#boycottnovell-@fernandezpablo: @fcassia @luisgraziano @MikeMagee111 @CarolainaGi @mmasnick @schestowitz @theovalich @sbassi @jubema @KamradLegasov https://t.co/lF6uZUmgBo [17:43] -TechrightsBN/#boycottnovell-@fernandezpablo: @fcassia @luisgraziano @MikeMagee111 @CarolainaGi @mmasnick @schestowitz @theovalich @sbassi @jubema @KamradLegasov https://t.co/lF6uZUmgBo [17:43] schestowitz " [17:43] schestowitz felicidades papito! [17:43] schestowitz Party popper [17:43] schestowitz " [17:43] schestowitz https://twitter.com/gnarlin2/status/1345005409497731072 [17:43] -TechrightsBN/#boycottnovell-@gnarlin2: @schestowitz These so called trials are nothing less than a forgone execution. [17:44] schestowitz https://twitter.com/BHathaway11/status/1344965636041003008 [17:44] -TechrightsBN/#boycottnovell-@BHathaway11: Thank you for an unvarnished account of the apparent truth about the alt-right. https://t.co/UZYnYpPzwd [17:44] -TechrightsBN/#boycottnovell-@schestowitz: NEWS #TruthOut #altreich #goldenDawnald #fascism 2020 Was a Record Year for #FarRight Violence in the US https://t.co/rAqn4bz8tV [17:44] schestowitz https://twitter.com/BHathaway11/status/1344960644181762048 [17:44] -TechrightsBN/#boycottnovell-@BHathaway11: The Trump "mob" is going to make a mockery of our democracy on Jan 6, 2021. https://t.co/OUxd6SMRSW [17:44] -TechrightsBN/#boycottnovell-@schestowitz: NEWS #Counterpunch #goldenDawnald #fascism Repairing Trumps Carnage: Fixing Our Democracy https://t.co/sB9ISZhZx1 [17:45] schestowitz https://twitter.com/theovalich/status/1344896812335955969 [17:45] -TechrightsBN/#boycottnovell-@theovalich: @fcassia @luisgraziano @MikeMagee111 @CarolainaGi @mmasnick @schestowitz @sbassi @fernandezpablo @jubema https://t.co/shIPhD8f5t [17:45] -TechrightsBN/#boycottnovell-@theovalich: @fcassia @luisgraziano @MikeMagee111 @CarolainaGi @mmasnick @schestowitz @sbassi @fernandezpablo @jubema https://t.co/shIPhD8f5t [17:45] schestowitz "Happy New Year Fernando" [17:45] schestowitz https://twitter.com/fcassia/status/1344870807743430656 [17:45] -TechrightsBN/#boycottnovell-@fcassia: May 2021 find us all vaccinated. And by May I mean the month. Happy New Year. // Feliz 2021 para todos/as. https://t.co/tSk1hU37JS [17:45] -TechrightsBN/#boycottnovell-@fcassia: May 2021 find us all vaccinated. And by May I mean the month. Happy New Year. // Feliz 2021 para todos/as. https://t.co/tSk1hU37JS [17:45] schestowitz " [17:45] schestowitz May 2021 find us all vaccinated. [17:45] schestowitz And by May I mean the month. [17:45] schestowitz Winking face with tongue [17:45] schestowitz Smirking face [17:45] schestowitz Happy New Year. [17:45] schestowitz // [17:45] schestowitz Feliz 2021 para todos/as. [17:45] schestowitz " [17:45] schestowitz https://twitter.com/eric_heffernan/status/1344723829986263040 [17:45] -TechrightsBN/#boycottnovell-@eric_heffernan: @schestowitz You should give Jovan Pulitzer's testimony yesterday at the GA hearing a watch. To sum up, they'd jus https://t.co/n5epTM4Rhb [17:45] -TechrightsBN/#boycottnovell-@eric_heffernan: @schestowitz You should give Jovan Pulitzer's testimony yesterday at the GA hearing a watch. To sum up, they'd jus https://t.co/n5epTM4Rhb [17:45] schestowitz " [17:45] schestowitz You should give Jovan Pulitzer's testimony yesterday at the GA hearing a watch. [17:45] schestowitz To sum up, they'd just finish talking about how secure and not connected to net it was, and he, at the hearing, hacked into the machines of the runoffs. Far from over. [17:45] schestowitz " [17:46] schestowitz https://twitter.com/eric_heffernan/status/1344722932988186626 [17:46] -TechrightsBN/#boycottnovell-@eric_heffernan: @schestowitz It actually didn't. [17:46] schestowitz https://twitter.com/Flavia0847/status/1344689700494307328 [17:46] -TechrightsBN/#boycottnovell-@Flavia0847: @schestowitz The toss-up between food coupons, McDonalds cards and opening accounts in the PayDay loan industry. https://t.co/IUK7P6caLu [17:46] -TechrightsBN/#boycottnovell-@Flavia0847: @schestowitz The toss-up between food coupons, McDonalds cards and opening accounts in the PayDay loan industry. https://t.co/IUK7P6caLu [17:46] schestowitz "The toss-up between food coupons, McDonalds cards and opening accounts in the PayDay loan industry. How best to 'stimulate' the USA?" [17:46] schestowitz https://twitter.com/jeremy_hume/status/1344674464043331587 [17:46] -TechrightsBN/#boycottnovell-@jeremy_hume: @schestowitz Even MPs within the Conservative party are speaking out against Boris Johnson's tyrannical restriction https://t.co/6RLN2wyEby [17:46] -TechrightsBN/#boycottnovell-@jeremy_hume: @schestowitz Even MPs within the Conservative party are speaking out against Boris Johnson's tyrannical restriction https://t.co/6RLN2wyEby [17:46] schestowitz "Even MPs within the Conservative party are speaking out against Boris Johnson's tyrannical restrictions. MP Charles Walker on the English coronavirus restrictions: "we drift further into an authoritarian, coercive state". Boris is a tyrant and pathological liar." [17:46] schestowitz https://twitter.com/Gonzalo_VC23/status/1344664560968609794 [17:46] -TechrightsBN/#boycottnovell-@Gonzalo_VC23: @schestowitz FRICKING SAD [17:46] schestowitz https://twitter.com/audiores/status/1344527886875815936 [17:46] -TechrightsBN/#boycottnovell-@audiores: @schestowitz I can recommend sicuit, a "minimal plaintext password store" https://t.co/Zrwwr0Wj68 [17:46] -TechrightsBN/#boycottnovell--> fdpl.io | sicuit [17:57] schestowitz https://joindiaspora.com/posts/19777162#2e9c22602e1b0139f6f07197b9ac40f7 [17:57] -TechrightsBN/#boycottnovell-@linux@joindiaspora.com: New Linux Drivers Bring PlayStation 5's DualSense Compatibility http://www.tuxmachines.org/node/145824#comment-27658 [17:57] -TechrightsBN/#boycottnovell--> www.tuxmachines.org | Games: Sony, Godot, Deals and FreeType | Tux Machines [17:57] schestowitz "Haven't you said it already just the other day?| ● Jan 01 [18:36] *liberty_box has quit (Ping timeout: 246 seconds) [18:36] *rianne_ has quit (Ping timeout: 246 seconds) ● Jan 01 [19:12] *rianne_ (~rianne@host81-154-173-106.range81-154.btcentralplus.com) has joined #boycottnovell [19:12] *liberty_box (~liberty@host81-154-173-106.range81-154.btcentralplus.com) has joined #boycottnovell