●● IRC: #boycottnovell @ Techrights IRC Network: Tuesday, January 18, 2022 ●● ● Jan 18 [00:49] *u-amarsh04 has quit (Quit: Konversation terminated!) [00:49] *u-amarsh04 has quit (Quit: Konversation terminated!) [00:56] *u-amarsh04 (~amarsh04@joseon-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell [00:56] *u-amarsh04 (~amarsh04@t3phqsdfxhjau.irc) has joined #boycottnovell ● Jan 18 [01:14] *u-amarsh04 has quit (Quit: Konversation terminated!) [01:14] *u-amarsh04 has quit (Quit: Konversation terminated!) [01:24] *u-amarsh04 (~amarsh04@t3phqsdfxhjau.irc) has joined #boycottnovell [01:24] *u-amarsh04 (~amarsh04@joseon-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell [01:26] Techrights-sec If you are using new keys instead of hte old ones, can you confirm the [01:26] Techrights-sec fingerprint of the ECDSA key which the SSH daemon is now using? [01:26] Techrights-sec $ ssh-keygen -lf /etc/ssh/ssh_host_ecdsa_key.pub [01:27] schestowitz-TR gm [01:27] Techrights-sec gm thanks [01:27] schestowitz-TR I think some perl modules are needed to get the gemini capsule updating, but have [01:27] schestowitz-TR choked for time due to rss feeds etc [01:28] Techrights-sec yes, I'll make a list [01:28] schestowitz-TR waiting for irc+ipfs+bulletin time to catch bugs and correct them on the spot, yt [01:28] schestowitz-TR then much needed sleep [01:29] Techrights-sec can you add tmux? [01:30] schestowitz-TR adding [01:30] schestowitz-TR added [01:33] Techrights-sec thanks [01:33] schestowitz-TR at the moment agate runs sort of interactively from the CLI, I cannot quite recall how it was configured, but at least people get served (got some emails asking about gemini down) [01:33] Techrights-sec liburi-perl - module to manipulate and access URI strings [01:35] Techrights-sec libtime-parsedate-perl - collection of Perl modules for time/date manipulation [01:35] Techrights-sec libpath-iterator-rule-perl - iterative, recursive file finder [01:35] Techrights-sec libhtml-treebuilder-xpath-perl - Perl module to add XPath support to HTML::TreeBu [01:35] Techrights-sec ilder [01:35] Techrights-sec I think those are the only ones ^ [01:36] schestowitz The following NEW packages will be installed: [01:36] schestowitz libauthen-sasl-perl libclone-perl libdata-dump-perl libencode-locale-perl libfile-listing-perl libfont-afm-perl libhtml-form-perl libhtml-format-perl libhtml-parser-perl libhtml-tagset-perl libhtml-tree-perl libhtml-treebuilder-xpath-perl libhttp-cookies-perl libhttp-daemon-perl libhttp-date-perl libhttp-message-perl [01:36] schestowitz libhttp-negotiate-perl libio-html-perl libio-socket-ssl-perl liblwp-mediatypes-perl liblwp-protocol-https-perl libmailtools-perl libnet-http-perl libnet-smtp-ssl-perl libnet-ssleay-perl libnumber-compare-perl libpath-iterator-rule-perl libtext-glob-perl libtime-parsedate-perl libtimedate-perl libtry-tiny-perl liburi-perl libwww-perl [01:36] schestowitz libwww-robotrules-perl libxml-xpathengine-perl perl-openssl-defaults [01:37] Techrights-sec agate was run from a systemd unit file so whatevery CLI options need to be [01:37] Techrights-sec included in that, it should go in /etc/systemd/system/agate.service [01:37] Techrights-sec then systemctl enable agate.service ; systemctl start agate.service [01:37] schestowitz-TR I tried to find that file, but after a while gave up [01:38] schestowitz-TR perl stuff installed [01:43] Techrights-sec thanks [01:43] Techrights-sec there is also [01:43] Techrights-sec libxml-feed-perl [01:43] Techrights-sec libdate-calc-perl [01:43] Techrights-sec libhttp-response-encoding-perl [01:46] *u-amarsh04 has quit (Quit: Konversation terminated!) [01:46] *u-amarsh04 has quit (Quit: Konversation terminated!) [01:47] schestowitz-TR s [01:48] Techrights-sec and that might be all of them [01:48] Techrights-sec ok, I can make a new unit file, but what would you like on the CLI? Can you [01:48] Techrights-sec paste the manual options? [01:49] schestowitz-TR perl install at 95% [01:49] schestowitz-TR regarding agate, I can give you the command I ran [01:49] schestowitz-TR I realised they changed the syntax [01:50] schestowitz also needs deploying (not rotating things yet) sudo service gemini-tcpdump-logger start [01:53] schestowitz-TR perl done now [01:53] schestowitz-TR apt-get actually timed out a bit towards the end, I had to rerun it [01:53] Techrights-sec ok [01:53] Techrights-sec ok [01:54] schestowitz the command I ran:: /home/gemini/bin/agate.armv7-unknown-linux-gnueabihf --content /home/gemini/gemini/ --certs /home/gemini/certs/ --hostname gemini.techrights.org --lang en-GB [01:56] Techrights-sec thanks [01:57] Techrights-sec ok, ~/bin/ has agate.service it goes in /etc/systemd/system/ [01:57] Techrights-sec then stop the manually launched agate and try the enable, start, and status ● Jan 18 [02:02] Techrights-sec cp ~gemini/bin/agate.service /etc/systemd/system/ [02:02] Techrights-sec systemctl enable agate.service; systemctl start agate.service; [02:02] Techrights-sec systemctl status agate.service; [02:03] schestowitz Jan 18 02:03:21 raspberrypi systemd[1]: Starting The Agate Gemini Server... [02:03] schestowitz Jan 18 02:03:21 raspberrypi systemd[15908]: agate.service: Failed to locate executable /home/gemini/agate.armv7-unknown-linux-gnueabihf: No such file > [02:04] schestowitz Jan 18 02:03:21 raspberrypi systemd[15908]: agate.service: Failed at step EXEC spawning /home/gemini/agate.armv7-unknown-linux-gnueabihf: No such file> [02:04] schestowitz Jan 18 02:03:21 raspberrypi systemd[1]: agate.service: Main process exited, code=exited, status=203/EXEC [02:06] Techrights-sec ok added, recopy and then precede the above with sytemctl daemon-reload [02:10] schestowitz 0 0 * * * /bin/systemctl restart gemini-tcpdump-logger.service [02:10] schestowitz from root cron [02:10] Techrights-sec which is used: [02:10] Techrights-sec ./log_gemini_new.sh [02:10] Techrights-sec ./tcpdump-logger.sh [02:13] Techrights-sec cron is not necessary, afaik, systemd recovers if agate were to crash [02:13] Techrights-sec or is that just for the logs? [02:13] Techrights-sec gemini is now available! [02:13] schestowitz-TR I saw it having an issue and gave it a kick [02:14] schestowitz-TR there was a job running as root as a process, writing connections with addresses [02:14] schestowitz-TR to a daily file under log and I think that's a missing piece [02:16] Techrights-sec oops I see the status as failed now [02:16] Techrights-sec chown? [02:17] schestowitz-TR it went into a weird state [02:19] Techrights-sec running in the window manually too see the possible errors [02:19] *DaemonFC (~daemonfc@r3zgarhjgt6ha.irc) has joined #boycottnovell [02:21] Techrights-sec there is some problem with at least one type of client in regards to TLS [02:21] Techrights-sec in principle we should require TLS 1.3 or later, however 1.2 might have a long [02:21] Techrights-sec tail. [02:21] Techrights-sec 00 "TLS error" error:peer is incompatible: Server requires TLS1.3, but client omi [02:21] Techrights-sec tted versions ext [02:22] schestowitz-TR I noticed that when I first started the process i/o sort of hanged in there, unti [02:22] schestowitz-TR l I press crtl+c [02:23] schestowitz-TR I noticed that when I first started the process i/o sort of hanged in there, unti [02:23] schestowitz-TR l I press crtl+c [02:23] Techrights-sec Probably the wrong settings in the Unit file, it's esoteric and not clearly [02:23] Techrights-sec documented so I had to guess. [02:23] schestowitz-TR g --lang en-GB [02:23] schestowitz-TR was what I ran [02:24] Techrights-sec yes, that part is ok AFIAK the Unit file [02:24] Techrights-sec has all kinds of weird options and they have to combine just right [02:24] Techrights-sec try recopying now and the daemon-reload etc [02:26] schestowitz-TR ok [02:26] schestowitz-TR i think you aced it this time [02:26] Techrights-sec systemctl daemon-reload [02:26] Techrights-sec systemctl restart agate.service [02:26] Techrights-sec I hope so, it's hard to do much more than cargo cult based on other unit files [02:27] schestowitz-TR ibm did TWO articles about buying suppor rt this monday [02:27] schestowitz-TR in redhat.com [02:27] Techrights-sec yes the decommoditization of Linux [02:28] schestowitz-TR let me focus for the next few mins on irc bulletin etc. ipfs follows at 3am [02:30] schestowitz sudo /bin/systemctl restart gemini-tcpdump-logger.service [02:30] schestowitz Failed to restart gemini-tcpdump-logger.service: Unit gemini-tcpdump-logger.service not found. [02:32] Techrights-sec ok [02:32] Techrights-sec yes the logging does not have a service file yet, but I see in [02:32] Techrights-sec journalctl that there is already logging, it is "just" a matter of processing [02:32] Techrights-sec and extracting [02:40] Techrights-sec journalctl -u agate [02:40] schestowitz-TR this one is different because it uses another source for the data [02:48] schestowitz-TR so far the workflow has gone as expected, but let's see ipfs at 3am [02:48] schestowitz-TR gemini is alomost perfect now [02:48] schestowitz-TR just need the refresh cycles and stats, I think, and that's all done [02:48] Techrights-sec ok logs on the way [02:50] *liberty_box has quit (Ping timeout: 2m30s) [02:50] *rianne_ has quit (Ping timeout: 2m30s) [02:51] *rianne has quit (Ping timeout: 120 seconds) [02:57] Techrights-sec journalctl -q -u agate --since "$(date -d yesterday +'%F 00:00')" --until "$(date [02:57] Techrights-sec +'%F 00:00')" [02:57] schestowitz journalctl -q -u agate --since "$(date -d yesterday +'%F 00:00')" --until "$(date [02:57] schestowitz [02:57] +'%F 00:00')" ● Jan 18 [03:02] schestowitz-TR i see now [03:02] schestowitz-TR tyhe logger we have uses tcpdump [03:02] schestowitz-TR i think it is the latest version [03:02] schestowitz-TR and that accomodates the file we need ro run the script that also updates the sta [03:02] schestowitz-TR ts page, irc scrollback page etc [03:02] schestowitz-TR it also ues the format that lets me see who hoards traffic [03:03] Techrights-sec yes, checking [03:08] *SomeH4x0r has quit (Ping timeout: 2m30s) [03:09] schestowitz pi@raspberrypi:~ $ sudo cp /home/gemini/gemini/git/tr-git/IPFS/copy-tr-to-gemini.sh /usr/local/sbin/ [03:09] schestowitz pi@raspberrypi:~ $ ls -la /usr/local/sbin/ [03:09] schestowitz total 12 [03:09] schestowitz drwxr-xr-x 2 root root 4096 Jan 18 03:08 . [03:09] schestowitz drwxr-xr-x 10 root root 4096 Oct 30 12:09 .. [03:09] schestowitz -rwxr-xr-x 1 root root 272 Jan 18 03:08 copy-tr-to-gemini.sh [03:09] schestowitz pi@raspberrypi:~ $ cat copy-tr-to-gemini.sh [03:09] schestowitz cat: copy-tr-to-gemini.sh: No such file or directory [03:09] schestowitz pi@raspberrypi:~ $ sudo cat /usr/local/sbin/copy-tr-to-gemini.sh [03:09] schestowitz #!/bin/sh [03:09] schestowitz # 2021-02-21 [03:09] schestowitz PATH=/usr/local/bin:/usr/bin:/bin [03:09] schestowitz set -e [03:09] schestowitz # linking instead of copying in this way requires root usually [03:09] schestowitz cp --update \ [03:09] schestowitz --link \ [03:09] schestowitz --preserve=mode,ownership,timestamps \ [03:09] schestowitz /home/glr/tr_text_version/* \ [03:09] schestowitz /home/gemini/gemini/tr_text_version/ [03:09] schestowitz exit 0 [03:10] Techrights-sec [03:10] Techrights-sec there are two scripts, [03:10] Techrights-sec log_gemini_new.sh [03:10] Techrights-sec tcpdump-logger.sh [03:10] Techrights-sec which one? [03:11] *liberty_box (~liberty@suig26pxj59pi.irc) has joined #boycottnovell [03:11] *rianne_ (~rianne@suig26pxj59pi.irc) has joined #boycottnovell [03:11] *rianne (~rianne@joseon-jhg.17c.k31cok.IP) has joined #boycottnovell [03:12] schestowitz-TR I think tcp* is the one we used [03:12] Techrights-sec yes that IPFS script goes in cron iirc [03:15] schestowitz-TR at 3:32am, I will check it runs ok as it's easier to fix when done early [03:18] *SomeH4x0r (~someh4xx@vbku88433t7ju.irc) has joined #boycottnovell [03:36] schestowitz-TR it looks like you got the gemini cron running agsin [03:36] schestowitz-TR the files did get copied over at 3:32, but I am not sure poermiissions are [03:36] schestowitz-TR correct or rather file ownershi [03:36] schestowitz-TR I will check tomorroe [03:36] schestowitz-TR very tired [03:36] Techrights-sec I haven't looked at cron yet, the logs are probably in root's cron. [03:36] Techrights-sec better rest for now ● Jan 18 [04:10] *Despatche has quit (Quit: Read error: Connection reset by deer) [04:10] *Despatche (~desp@u3xy9z2ifjzci.irc) has joined #boycottnovell ● Jan 18 [06:41] *DaemonFC has quit (Quit: Leaving) ● Jan 18 [08:35] *psydroid4 (~psydroid@cqggrmwgu7gji.irc) has joined #boycottnovell ● Jan 18 [09:04] Techrights-sec Could not fetch IPFS log summary [09:04] Techrights-sec we'll also need Gawk for the scripts, Mawk seems kind of broken [09:04] Techrights-sec te [09:04] Techrights-sec Failed feed for 'http://techrights.org/feed/' [09:04] Techrights-sec Could not find feed at URL: "http://techrights.org/feed/" [09:04] Techrights-sec probably networking or other connectivity [09:04] Techrights-sec The Gemini index is fixed now, so is the fetching of new pages via RSS [09:04] Techrights-sec There are some connectivity issues reaching TR from gemini.techrights.org [09:05] schestowitz-TR yes, I can see this now, will look into it sjortl [09:05] schestowitz-TR *shortly [09:15] Techrights-sec I have a loop in the scrip but it only tries to fetch the feed 5 times, [09:15] Techrights-sec I'll need to tweak it a bit more. [09:28] schestowitz-TR i am adding some more missing packages now ● Jan 18 [10:01] Techrights-sec ok [10:17] schestowitz-TR I have just installed tcpdumb and so the script, if run manually, runs OK. Is it configured as a daemon too? [10:28] Techrights-sec I can't recall how that was set up to run. Perhaps a unit file is necessary. [10:28] schestowitz-TR i have just checked wifi device name [10:28] schestowitz-TR the irc scrollback in gemini is now back [10:28] schestowitz-TR but the logger sends no output to the file except start and end [10:28] schestowitz-TR maybe debian 11 changed somethihing [10:39] schestowitz-TR regarding irc, having just solved the ipfs index (html) mystery, [10:39] schestowitz-TR did you get no file at all? [10:39] schestowitz-TR (the one with ipfs bobits) [10:42] Techrights-sec y. [10:42] Techrights-sec I'll check IPFS again (got distracted) [10:43] Techrights-sec nope: [10:43] Techrights-sec Could not fetch IPFS log summary [10:43] Techrights-sec are the files in the expected directory? [10:44] schestowitz-TR checking... [10:45] Techrights-sec THe latest on is from the 16th, yesterday's is missing. [10:48] schestowitz-TR seems like a likely permissions issues [10:48] schestowitz-TR ipfs needing write access in links [10:52] Techrights-sec chgrp ? [10:52] schestowitz-TR yes, I was just doing that ● Jan 18 [11:00] schestowitz-TR I think it is OK now [11:00] schestowitz-TR I created a group ipfslinks [11:00] Techrights-sec ok I have to check the script, the keys don't work [11:05] Techrights-sec ok I have to check the script, the keys don't work : [11:05] Techrights-sec the diectory /home/links/ must be in the group links for that to work [11:05] Techrights-sec since o=rx ipfs will be able to pass through down to the relevant subdirectory [11:05] Techrights-sec and write access is not needed (in addition to breaking keys). [11:05] Techrights-sec $ sudo chgrp links /home/links/ [11:05] Techrights-sec ok testing [11:05] Techrights-sec ack [11:06] schestowitz-TR I changed that back [11:06] schestowitz-TR short story: I was trying to overwrite an old file, which was not possible [11:06] schestowitz-TR So I was messing with directories instead [11:06] schestowitz-TR that file was the output.txt file [11:10] Techrights-sec the two latest files are in the wrong date format: [11:10] Techrights-sec should be 220117.html and 220116.html like the others [11:10] Techrights-sec (lots of loose ends in an OS migration) [11:13] schestowitz-TR aaaaaahhh [11:13] schestowitz-TR I seee [11:13] schestowitz cp $IRCDATE.html /home/links/ipfs/$ISODATE.html [11:13] schestowitz-TR don't woprry about that [11:13] schestowitz-TR it's because I did not follow the script [11:14] Techrights-sec can they be renamed so the script can get them? [11:14] Techrights-sec The input to the script is filtered so that it cannot fetch arbitrary files. [11:14] Techrights-sec only root or xxxxxx can do that [11:14] Techrights-sec or links [11:17] schestowitz-TR yes, hold on [11:17] schestowitz-TR I have renamed the two latest files [11:17] schestowitz-TR the scripts will choose the right date, starting tonight [11:17] schestowitz-TR I ran manually something which I didn';t realise is changing data formats in the [11:17] Techrights-sec thanks [11:17] schestowitz-TR cp command [11:21] Techrights-sec checking... [11:22] schestowitz-TR it's a good thing that all this happened during a slow/holiday/mlk weekend [11:22] schestowitz-TR and I ended up with a spare drive, 2 times more space, security updates, OS upgra [11:22] schestowitz-TR de [11:22] schestowitz-TR not the ideal way to do all this, but it gave the push [11:22] schestowitz-TR i think we are nearly done, I need to check on git around midday and then revisit [11:22] schestowitz-TR the logging [11:22] Techrights-sec mawk strikes again. could you add gawk? mawk apparently can't handle simple [11:22] Techrights-sec posix patterns :( thanks [11:22] schestowitz-TR installing gawk [11:23] schestowitz-TR done [11:23] Techrights-sec looks good on site, now testing the script [11:24] Techrights-sec yes! it works! [11:26] Techrights-sec published [11:26] Techrights-sec I had not known that mawk was so incomplete [11:26] Techrights-sec yes, there are non-standard extensions in Gawk but basic patterns ought to work [11:26] Techrights-sec even in Mawk. [11:26] Techrights-sec But they don't [11:26] schestowitz-TR ;) [11:46] schestowitz-TR stats/logging back, resxtored [11:47] schestowitz /home/gemini/bin $ sudo ./tcpdump-logger.sh [11:47] schestowitz used to be: sudo service gemini-tcpdump-logger start [11:47] schestowitz which i suppose means you made a unit file as such, which I had in my notes to kick off after power cut or reboot [11:55] Techrights-sec I can try making another unit file [11:55] Techrights-sec BTW: https://www.engadget.com/the-uk-government-is-reportedly-planning-ad-campaign-attacking-end-to-end-encryption-101610703.html [11:55] -TechrightsBN/#boycottnovell-www.engadget.com | The UK Government is reportedly preparing a PR blitz against end-to-end encryption | Engadget [11:55] schestowitz-TR :-) [11:55] schestowitz-TR which year is this? [11:55] schestowitz-TR they have been doing this for ages :-) [11:56] Techrights-sec yes it's a repeat, dusting of old, debunked excuses again [11:56] schestowitz-TR our original ipfs dude wrote a number of articles about this in TR last year or i [11:56] schestowitz-TR n 2020 [11:58] schestowitz-TR (was thinking: given the new size of the card, we have ample spare space for making an image of the system or part of it -- for a restore of same state on a recently-patched debian 11) [11:59] schestowitz-TR rianna sometimes uses it as a second desktop for monitoring things, so I restored a number of more thinks last night. not much except firefox and nottes. [11:59] Techrights-sec Ok, try: agate-tcpdumper.service into /etc/systemd/system/ and then [11:59] Techrights-sec ./tcpdump-logger.sh into /usr/local/sbin/ [11:59] Techrights-sec then enable, start, status, etc ● Jan 18 [12:00] schestowitz-TR trying [12:00] schestowitz-TR (sorry for typos, it has been a hectic monday, skipped some sleep) [12:01] schestowitz-TR there is a very good 4-part series coming from andy [12:01] schestowitz-TR also of note: [12:01] schestowitz-TR before doing all this advocacy and daily links thing around 2005 [12:02] schestowitz-TR I was able to focus on one task all day long [12:02] schestowitz-TR like my phd [12:15] Techrights-sec yes it has been a hectic 2 weeks here too [12:15] Techrights-sec sleep and exercise are not to be skimped on however [12:15] Techrights-sec Excellent! His writings have been reallly great to read, very well written and [12:15] Techrights-sec on very relevant and interesting topics. [12:15] schestowitz-TR i think this service file has a name collision [12:15] schestowitz-TR alias for instance [12:16] schestowitz-TR (I started monitoring disks and syslogs on machines better than before; we got warnings aboiut the pi issues 2 days in advance, I did not notice until fs became R-O) [12:18] Techrights-sec [12:18] Techrights-sec checking [12:18] Techrights-sec thanks try the changed file; and one more typo fixed [12:18] Techrights-sec Good catch, spotting it early probably saved a lot of trouble even if the [12:18] Techrights-sec process still was a lot of work [12:21] schestowitz Jan 18 12:20:36 raspberrypi systemd[1]: /etc/systemd/system/agate-tcpdumper.service:5: Invalid URL, ignoring: Ha! [12:21] schestowitz Jan 18 12:20:36 raspberrypi systemd[1]: /etc/systemd/system/agate-tcpdumper.service:17: Failed to parse service restart specifier, ignoring: 5s [12:28] schestowitz-TR re exercise, yes, covid has taken itsm toll as there are many things I cannot do [12:28] schestowitz-TR outdoors or at home [12:28] schestowitz-TR but looking at the "health" umbrella of exercise, catching covid-19 and falling [12:28] schestowitz-TR into that cycle I see in my work colleagues is an unacceptable risk [12:28] schestowitz-TR I really loathed what I saw yesterday in Town [12:28] schestowitz-TR I am very strict about food and meds as only reason to go out [12:28] schestowitz-TR unless I run with rianne, which makes it eay to [12:28] schestowitz-TR distance [12:30] *tech_exorcist (~tech_exorcist@m6nw7kksfxxss.irc) has joined #boycottnovell [12:32] Techrights-sec ack [12:32] schestowitz-TR i sometimes try to contain my anger with gullible people [12:32] schestowitz-TR who get their newws from "mates" )((who get info [12:32] schestowitz-TR from their "facebook" walls and "friends" [12:32] schestowitz-TR downplay the issue [12:32] schestowitz-TR now our GOVERNMENTN DOES THE SAME! [12:32] schestowitz-TR To protect "the boris" [12:32] schestowitz-TR my colleagues are unable to funmction mentally and bodily [12:32] schestowitz-TR some fedora "bloggers" recently mentioned this too [12:32] schestowitz-TR he started forgetting names [12:33] Techrights-sec yes, facebook is a disinformation service [12:33] Techrights-sec ack [12:34] schestowitz-TR this whole "sihing covid away" thing is 2 years old [12:34] schestowitz-TR "eat out, help out" (2020) [12:34] schestowitz-TR boris: normality by xmas (he meant 2020!) [12:34] schestowitz-TR noiw they tell us 20,000 patients is nothing and no nhs numbers since jan 11th [12:34] schestowitz-TR *wishing covid away [12:35] Techrights-sec ack [12:35] Techrights-sec bojo the clown has blood on his hands, then again so does tony bliar [12:35] schestowitz-TR tony has blood of "arabs" [12:35] schestowitz-TR so the "Conservatives" and "Labour" people mind less [12:35] schestowitz-TR soon 200,000 UK death certs with covid on them. We are about 180k now [12:51] Techrights-sec ack [12:51] Techrights-sec at the very beginning I guessed that the US would unfortunately exceed 1M deaths [12:51] Techrights-sec from SARS-CoV-2, but that was before Facebook got involved to worsen the situatio [12:51] Techrights-sec n [12:51] schestowitz-TR in my mind what always stayed was the 2M estimate, from around April 2020. People would ridicule those of us who mentioned it. [12:52] schestowitz Jan 18 12:52:29 raspberrypi systemd[1]: Failed to start Logger for the Agate Gemini Server. [12:52] schestowitz pi@raspberrypi:/etc/systemd/system $ sudo diff /home/gemini/bin/agate-tcpdumper.service /etc/systemd/system/agate-tcpdumper.service [12:53] Techrights-sec 1M is rather conservative with a 35% infection rate and of those 1% mortality [12:53] Techrights-sec patents and facebook threw the whole pandemic management process for a loop [12:53] schestowitz-TR yes, there's worse than death, but you don't count if you suffer, only if you cease to exist. Tent cities= ALL FINE! [12:54] Techrights-sec Is the tcpdump script in /usr/local/sbin? [12:55] schestowitz Jan 18 12:55:12 raspberrypi systemd[1]: /etc/systemd/system/agate-tcpdumper.service:5: Invalid URL, ignoring: Ha! [12:55] schestowitz Jan 18 12:55:12 raspberrypi systemd[1]: /etc/systemd/system/agate-tcpdumper.service:17: Failed to parse service restart specifier, ignoring: 5s [12:55] Techrights-sec The poverty in the US is off the charts, literally, sine they've more or less [12:55] Techrights-sec stopped measuring unemployment. [12:55] Techrights-sec checking [12:55] schestowitz-TR my sister gets back to work march 1st [12:56] schestowitz-TR she left her ge job after almost 2 decades [12:56] schestowitz-TR but hunsband provoviding for 5 people is tough ● Jan 18 [13:00] Techrights-sec People in the US are already inured to poverty, what they are now reacting to [13:00] Techrights-sec is obscene levels beyond what was already sick. [13:01] schestowitz-TR the stories I hear from my sister about poverty are interesting [13:01] schestowitz-TR she was here befoire [13:01] schestowitz-TR she saw poverty [13:01] schestowitz-TR but not at this scale [13:01] schestowitz-TR this ALWASY reminds me or Ryan, ot a dumb person, zipping himself ip [13:01] schestowitz-TR in a sleeping bag in his own home [13:01] schestowitz-TR to cut energy bills [13:01] *u-amarsh04 (~amarsh04@zd9ersed554wu.irc) has joined #boycottnovell [13:01] *u-amarsh04 (~amarsh04@joseon-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell [13:02] Techrights-sec try copying the unit file again, daemon-reload, restart, status etc [13:04] schestowitz Jan 18 13:03:43 raspberrypi systemd[1]: /etc/systemd/system/agate-tcpdumper.service:17: Failed to parse service restart specifier, ignoring: 5s [13:05] Techrights-sec A lot of people have to decide between food, rent, or medicine, and are [13:05] Techrights-sec constantly juggling missed payments [13:05] Techrights-sec Unfortunately other contries have started to implement the US' replacement for [13:05] Techrights-sec health care. Here they've already privatized and are now eliminating the [13:05] Techrights-sec last of the health care completley unless things are turned around, but regardles [13:05] Techrights-sec s the damage is done and will last for at least a generation, assuming [13:05] Techrights-sec society holds out that long before collapsing. [13:05] Techrights-sec -- [13:05] Techrights-sec ok I'll try a mockup here [13:06] schestowitz-TR upside is, our code is becoming more compatible with more recent systems. rianne wants to buy another rapi as her vpn backup [13:06] schestowitz-TR if she does, I can use that as a "hot spare" for things, I think [13:08] schestowitz-TR --- [13:08] schestowitz-TR re 'health' 'core' [13:08] schestowitz-TR there is a saying here [13:08] schestowitz-TR albeit maybe not limited to here anymore [13:08] schestowitz-TR eating or heating [13:08] schestowitz-TR if you throw repeat meds into the mix, shit hits the fan [13:09] Techrights-sec yes, the whole system is on removable media so it is only a matter of swapping [13:09] Techrights-sec ack [13:10] schestowitz-TR I am assuming I can make a replicata of this sd card by removing it, plugging it in unmounted, dd'ing off it, then again in reverse for another similar carrd [13:10] Techrights-sec Something similar, I'm not sure dd is reliable unless the card is underprovisione [13:10] Techrights-sec d. The sizes are not always equal. [13:12] schestowitz https://twitter.com/NEVERCOMPLY187/status/1482960257148203008 [13:12] -TechrightsBN/#boycottnovell-@NEVERCOMPLY187: Interesting!! #nsa #billgates https://t.co/WCA2Mrsx0n https://t.co/EsoyBJT7Wk [13:12] -TechrightsBN/#boycottnovell--> techrights.org | Microsoft and the NSA - Techrights [13:12] -TechrightsBN/#boycottnovell--> techrights.org | Welcome to Techrights [13:12] schestowitz https://twitter.com/lyght01/status/1482919197839880203 [13:12] -TechrightsBN/#boycottnovell-@lyght01: #BillGates ruined @DuckDuckGo https://t.co/Ol7ZXgdEuA [13:12] -TechrightsBN/#boycottnovell--> techrights.org | Why You Should Avoid DuckDuckGo (DDG) 2021 Edition, Now Microsoft-Hosted and With Extra Privacy Risks | Techrights [13:12] schestowitz https://twitter.com/lyght01/status/1482919004943822849 [13:12] -TechrightsBN/#boycottnovell-@lyght01: @DuckDuckGo is #censoring results now that microsoft owns them https://t.co/Ol7ZXgdEuA [13:13] schestowitz https://twitter.com/mark14907/status/1482788522528546823 [13:13] -TechrightsBN/#boycottnovell-@mark14907: Microsoft Thinks It Owns Mesa (and Computer Games) https://t.co/0qXKhpBuN5 [13:13] -TechrightsBN/#boycottnovell--> techrights.org | Microsoft Thinks It Owns Mesa (and Computer Games) | Techrights [13:13] schestowitz https://nitter.eu/robertcaruso/status/148278495140 [13:13] -TechrightsBN/#boycottnovell- ( status 404 @ https://nitter.eu/robertcaruso/status/148278495140 ) [13:14] schestowitz https://nitter.eu/robertcaruso/status/148278495140?2 [13:14] -TechrightsBN/#boycottnovell- ( status 404 @ https://nitter.eu/robertcaruso/status/148278495140?2 ) [13:14] schestowitz Nitter rate-limited https://nitter.eu/robertcaruso/status/148278495140 [13:14] schestowitz https://nitter.eu/robertcaruso/status/148278495140?22 [13:14] -TechrightsBN/#boycottnovell- ( status 404 @ https://nitter.eu/robertcaruso/status/148278495140?22 ) [13:20] schestowitz https://nitter.eu/Rac912/status/1483379715343851522?ss [13:20] -TechrightsBN/#boycottnovell- ( status 404 @ https://nitter.eu/Rac912/status/1483379715343851522?ss ) [13:20] schestowitz "Funny how you qouote the opposition's "independent" new site. These people formed a coalition with the neo-nazis just to try to oust Orban. Orban who supported jews ever since he came into power. Try to be jewish in other major cities in western europe..." [13:20] schestowitz https://twitter.com/glynmoody/status/1483377088677752832 [13:20] -TechrightsBN/#boycottnovell-@glynmoody: A blast from the past... https://t.co/VTVOjvXvnG [13:20] -TechrightsBN/#boycottnovell-@schestowitz: Without Free Software, Open Source Would Lose its Meaning | Linux Journal https://t.co/F19NQhtUVR @glynmoody [13:21] schestowitz https://nitter.eu/GyroWaveGen_TM/status/1483152415063003144 [13:21] -TechrightsBN/#boycottnovell-nitter.eu | GyroGen(TM) (@GyroWaveGen_TM): "Getting software patents is stupid anyway, since they're so easy to get around! Almost trivial! Trade secrets are far better for software, including AI!" | nitter [13:22] schestowitz https://twitter.com/AnSchi22494301/status/1482933118961135618 [13:22] -TechrightsBN/#boycottnovell-@AnSchi22494301: @schestowitz No. The answer is no. [13:22] schestowitz https://twitter.com/GyroWaveGen_TM/status/1482766629536772099 [13:22] -TechrightsBN/#boycottnovell-@GyroWaveGen_TM: @schestowitz So, in the end, who's STILL making ALL the (real) money (with no risks)? LOL! [13:22] schestowitz GyroGen(TM) (@GyroWaveGen_TM): "Since you're hyping this so much, you must get a cut, right? And, $22K (if you're REALLY lucky) is a 'living' to you?! Where is THAT? Is that what YOU make?" | nitter https://nitter.eu/GyroWaveGen_TM/status/1482764866255560716 [13:22] -TechrightsBN/#boycottnovell-nitter.eu | GyroGen(TM) (@GyroWaveGen_TM): "Since you're hyping this so much, you must get a cut, right? And, $22K (if you're REALLY lucky) is a 'living' to you?! Where is THAT? Is that what YOU make?" | nitter [13:22] schestowitz https://twitter.com/GyroWaveGen_TM/status/1482763364707225601 [13:22] -TechrightsBN/#boycottnovell-@GyroWaveGen_TM: @schestowitz Kinda like they could in the 1920's too! "Isn't THAT the American way?!" https://t.co/J6EP3EMxom [13:22] -TechrightsBN/#boycottnovell--> www.youtube.com | They Shoot Horses, Don't They? Official Trailer #1 - Bruce Dern Movie (1969) HD - YouTube [13:22] schestowitz https://twitter.com/gnarlin2/status/1482744963947499520 [13:22] -TechrightsBN/#boycottnovell-@gnarlin2: @schestowitz Note: Only subscribers can read the article so I couldn't read it. [13:23] schestowitz https://twitter.com/nlitenmebabe/status/1482653785977667586 [13:23] -TechrightsBN/#boycottnovell-@nlitenmebabe: https://t.co/NHLXdvSUEC [13:23] -TechrightsBN/#boycottnovell-@schestowitz: Solve #Wordle using the Linux command line | https://t.co/OhzDJEShzh #FreeSW [13:26] *leah has quit (Quit: WeeChat 3.3) [13:27] *SomeH4x0r has quit (Ping timeout: 2m30s) [13:30] *SomeH4x0r (~someh4xx@6e45g5qtaw8zu.irc) has joined #boycottnovell [13:38] *SomeH4x0r has quit (Ping timeout: 2m30s) [13:47] *SomeH4x0r (~someh4xx@sctsjmg96zkru.irc) has joined #boycottnovell ● Jan 18 [14:01] Techrights-sec ack [14:01] Techrights-sec still looking for what's different with the environment / script... [14:01] Techrights-sec something about the pipe from tcpdump is unavailable [14:01] Techrights-sec gemini-log-journalctl.sh may be what we have to sink to [14:01] schestowitz-TR is that something to try to deploy? [14:04] *SomeH4x0r has quit (Ping timeout: 2m30s) [14:08] *SomeH4x0r (~someh4xx@gbgr2jcp6yrt2.irc) has joined #boycottnovell [14:08] Techrights-sec perhaps but if it replaces sometning else, what info do we really need?' [14:10] *Despatche has quit (Quit: Read error: Connection reset by deer) [14:19] schestowitz sudo systemctl reset-failed gemini-logger.service [14:27] Techrights-sec yes still looking at the logger, tcpdump seems not to be a viable choice [14:27] Techrights-sec for now, not sure why but have tried about 8 combinations of buffering or [14:27] Techrights-sec not buffering, nothing is getting through the pipe to awk or anthing else [14:28] schestowitz-TR that same code worked before, with another unit file but also another OS and another stack (buster) [14:41] Techrights-sec different OS [14:41] Techrights-sec it doesn't like bullseye either [14:41] Techrights-sec the journlctl approach can preserve ip numbers but not resolved names [14:41] Techrights-sec Is it ok to scale back the logging to what is easy to get from journalctl? [14:41] Techrights-sec There is probably a regression in tcpdump in regards to output buffering in [14:41] Techrights-sec Debian 11 and related derivatives. [14:42] schestowitz-TR ip addressed is fine, that gets purged regardless at the end of each month. if needed, I can run this interactively from the CLI, in the background [14:42] schestowitz-TR I suppose that sooner or later we'd have had to deal with all those "upgrades" [14:45] Techrights-sec tcpdump -q -p -l -tttt -i wlan0 'tcp[tcpflags] & (tcp-syn) != 0 and port 1965' | [14:45] Techrights-sec awk '{print; fflush();}' [14:45] Techrights-sec does not produce output [14:45] Techrights-sec ok then add --log-ip to the agate.service file [14:46] schestowitz-TR is it Ok to remove the sementically probolematic Restart=5s ? [14:46] Techrights-sec I guess [14:47] schestowitz sudo /usr/local/sbin/tcpdump-logger.sh [14:47] schestowitz tcpdump: verbose output suppressed, use -v[v]... for full protocol decode [14:47] schestowitz listening on wlan0, link-type EN10MB (Ethernet), snapshot length 262144 bytes [14:47] schestowitz it works OK [14:47] schestowitz where in the service unit file would the parameter go? in the file in sbin instead? [14:48] Techrights-sec the problem is with Awk again. I think I see a work-around now [14:48] Techrights-sec on the Exec line that launches agate: [14:51] schestowitz Jan 18 14:50:07 raspberrypi agate.armv7-unknown-linux-gnueabihf[23184]: [2022-01-18T14:50:07Z INFO agate] [::ffff:192.168.1.82]:1965 - "gemini://gemi> [14:51] schestowitz Jan 18 14:50:11 raspberrypi agate.armv7-unknown-linux-gnueabihf[23184]: [2022-01-18T14:50:11Z INFO agate] [::ffff:192.168.1.82]:1965 - "gemini://gemi> [14:51] schestowitz Jan 18 14:50:16 raspberrypi agate.armv7-unknown-linux-gnueabihf[23184]: [2022-01-18T14:50:16Z INFO agate] [::ffff:192.168.1.82]:1965 - "gemini://gemi> [14:51] schestowitz Jan 18 14:50:16 raspberrypi systemd[1]: /etc/systemd/system/agate.service:16: Failed to parse service restart specifier, ignoring: 5s [14:51] schestowitz Jan 18 14:50:16 raspberrypi systemd[1]: agate.service: Current command vanished from the unit file, execution of the command list won't be resumed. [14:51] schestowitz but it carries on after that [14:51] Techrights-sec ExecStart=/home/gemini/bin/agate.armv7-unknown-linux-gnueabihf --content /home/ge [14:51] Techrights-sec mini/gemini/ --certs /home/gemini/certs/ --hostname gemini.techrights.org --lang [14:51] Techrights-sec en-GB --only-tls13 [14:51] Techrights-sec --lop-ip [14:51] Techrights-sec ^--log-ip on the same line [14:58] Techrights-sec does ~gemini/bin/tcpdump-logger.sh produce the right output (not yet to log fuifi [14:58] Techrights-sec le) [14:58] schestowitz-TR it did when I last ran it [14:59] Techrights-sec today? ● Jan 18 [15:00] schestowitz Can't modify single ref constructor in substitution (s///) at -e line 2, near "s/\.\d+$//;" [15:00] schestowitz Execution of -e aborted due to compilation errors. [15:00] schestowitz-TR i will try again [15:03] *u-amarsh04 has quit (Quit: Konversation terminated!) [15:03] *u-amarsh04 has quit (Quit: Konversation terminated!) [15:03] Techrights-sec :( [15:03] Techrights-sec ok it was a quoting / escape problem. getting fatigued with all the details [15:09] *u-amarsh04 (~amarsh04@joseon-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell [15:09] *u-amarsh04 (~amarsh04@zd9ersed554wu.irc) has joined #boycottnovell [15:58] *blitzed (~blitzed@6vjnihvu3smkn.irc) has joined #boycottnovell ● Jan 18 [16:27] *Despatche (~desp@u3xy9z2ifjzci.irc) has joined #boycottnovell ● Jan 18 [18:26] *DaemonFC (~daemonfc@iirggctgfpx8e.irc) has joined #boycottnovell ● Jan 18 [19:50] *DaemonFC has quit (Quit: Leaving) ● Jan 18 [22:19] *tech_exorcist has quit (Quit: Disconnecting)