-- Leo's gemini proxy
-- Connecting to gemini.techrights.org:1965...
-- Connected
-- Sending request
-- Meta line: 20 text/gemini;lang=en-GB
00:49 *u-amarsh04 has quit (Quit: Konversation terminated!)
00:49 *u-amarsh04 has quit (Quit: Konversation terminated!)
00:56 *u-amarsh04 (~amarsh04@joseon-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell
00:56 *u-amarsh04 (~amarsh04@t3phqsdfxhjau.irc) has joined #boycottnovell
01:14 *u-amarsh04 has quit (Quit: Konversation terminated!)
01:14 *u-amarsh04 has quit (Quit: Konversation terminated!)
01:24 *u-amarsh04 (~amarsh04@t3phqsdfxhjau.irc) has joined #boycottnovell
01:24 *u-amarsh04 (~amarsh04@joseon-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell
01:26 Techrights-sec; If you are using new keys instead of hte old ones, can you confirm the
01:26 Techrights-sec; fingerprint of the ECDSA key which the SSH daemon is now using?
01:26 Techrights-sec; $ ssh-keygen -lf /etc/ssh/ssh_host_ecdsa_key.pub
01:27 schestowitz-TR; gm
01:27 Techrights-sec; gm thanks
01:27 schestowitz-TR; I think some perl modules are needed to get the gemini capsule updating, but have
01:27 schestowitz-TR; choked for time due to rss feeds etc
01:28 Techrights-sec; yes, I'll make a list
01:28 schestowitz-TR; waiting for irc+ipfs+bulletin time to catch bugs and correct them on the spot, yt
01:28 schestowitz-TR; then much needed sleep
01:29 Techrights-sec; can you add tmux?
01:30 schestowitz-TR; adding
01:30 schestowitz-TR; added
01:33 Techrights-sec; thanks
01:33 schestowitz-TR; at the moment agate runs sort of interactively from the CLI, I cannot quite recall how it was configured, but at least people get served (got some emails asking about gemini down)
01:33 Techrights-sec; liburi-perl - module to manipulate and access URI strings
01:35 Techrights-sec; libtime-parsedate-perl - collection of Perl modules for time/date manipulation
01:35 Techrights-sec; libpath-iterator-rule-perl - iterative, recursive file finder
01:35 Techrights-sec; libhtml-treebuilder-xpath-perl - Perl module to add XPath support to HTML::TreeBu
01:35 Techrights-sec; ilder
01:35 Techrights-sec; I think those are the only ones ^
01:36 schestowitz; The following NEW packages will be installed:
01:36 schestowitz; libauthen-sasl-perl libclone-perl libdata-dump-perl libencode-locale-perl libfile-listing-perl libfont-afm-perl libhtml-form-perl libhtml-format-perl libhtml-parser-perl libhtml-tagset-perl libhtml-tree-perl libhtml-treebuilder-xpath-perl libhttp-cookies-perl libhttp-daemon-perl libhttp-date-perl libhttp-message-perl
01:36 schestowitz; libhttp-negotiate-perl libio-html-perl libio-socket-ssl-perl liblwp-mediatypes-perl liblwp-protocol-https-perl libmailtools-perl libnet-http-perl libnet-smtp-ssl-perl libnet-ssleay-perl libnumber-compare-perl libpath-iterator-rule-perl libtext-glob-perl libtime-parsedate-perl libtimedate-perl libtry-tiny-perl liburi-perl libwww-perl
01:36 schestowitz; libwww-robotrules-perl libxml-xpathengine-perl perl-openssl-defaults
01:37 Techrights-sec; agate was run from a systemd unit file so whatevery CLI options need to be
01:37 Techrights-sec; included in that, it should go in /etc/systemd/system/agate.service
01:37 Techrights-sec; then systemctl enable agate.service ; systemctl start agate.service
01:37 schestowitz-TR; I tried to find that file, but after a while gave up
01:38 schestowitz-TR; perl stuff installed
01:43 Techrights-sec; thanks
01:43 Techrights-sec; there is also
01:43 Techrights-sec; libxml-feed-perl
01:43 Techrights-sec; libdate-calc-perl
01:43 Techrights-sec; libhttp-response-encoding-perl
01:46 *u-amarsh04 has quit (Quit: Konversation terminated!)
01:46 *u-amarsh04 has quit (Quit: Konversation terminated!)
01:47 schestowitz-TR; s
01:48 Techrights-sec; and that might be all of them
01:48 Techrights-sec; ok, I can make a new unit file, but what would you like on the CLI? Can you
01:48 Techrights-sec; paste the manual options?
01:49 schestowitz-TR; perl install at 95%
01:49 schestowitz-TR; regarding agate, I can give you the command I ran
01:49 schestowitz-TR; I realised they changed the syntax
01:50 schestowitz; also needs deploying (not rotating things yet) sudo service gemini-tcpdump-logger start
01:53 schestowitz-TR; perl done now
01:53 schestowitz-TR; apt-get actually timed out a bit towards the end, I had to rerun it
01:53 Techrights-sec; ok
01:53 Techrights-sec; ok
01:54 schestowitz; the command I ran:: /home/gemini/bin/agate.armv7-unknown-linux-gnueabihf --content /home/gemini/gemini/ --certs /home/gemini/certs/ --hostname gemini.techrights.org --lang en-GB
01:56 Techrights-sec; thanks
01:57 Techrights-sec; ok, ~/bin/ has agate.service it goes in /etc/systemd/system/
01:57 Techrights-sec; then stop the manually launched agate and try the enable, start, and status
02:02 Techrights-sec; cp ~gemini/bin/agate.service /etc/systemd/system/
02:02 Techrights-sec; systemctl enable agate.service; systemctl start agate.service;
02:02 Techrights-sec; systemctl status agate.service;
02:03 schestowitz; Jan 18 02:03:21 raspberrypi systemd[1]: Starting The Agate Gemini Server...
02:03 schestowitz; Jan 18 02:03:21 raspberrypi systemd[15908]: agate.service: Failed to locate executable /home/gemini/agate.armv7-unknown-linux-gnueabihf: No such file >
02:04 schestowitz; Jan 18 02:03:21 raspberrypi systemd[15908]: agate.service: Failed at step EXEC spawning /home/gemini/agate.armv7-unknown-linux-gnueabihf: No such file>
02:04 schestowitz; Jan 18 02:03:21 raspberrypi systemd[1]: agate.service: Main process exited, code=exited, status=203/EXEC
02:06 Techrights-sec; ok added, recopy and then precede the above with sytemctl daemon-reload
02:10 schestowitz; 0 0 * * * /bin/systemctl restart gemini-tcpdump-logger.service
02:10 schestowitz; from root cron
02:10 Techrights-sec; which is used:
02:10 Techrights-sec; ./log_gemini_new.sh
02:10 Techrights-sec; ./tcpdump-logger.sh
02:13 Techrights-sec; cron is not necessary, afaik, systemd recovers if agate were to crash
02:13 Techrights-sec; or is that just for the logs?
02:13 Techrights-sec; gemini is now available!
02:13 schestowitz-TR; I saw it having an issue and gave it a kick
02:14 schestowitz-TR; there was a job running as root as a process, writing connections with addresses
02:14 schestowitz-TR; to a daily file under log and I think that's a missing piece
02:16 Techrights-sec; oops I see the status as failed now
02:16 Techrights-sec; chown?
02:17 schestowitz-TR; it went into a weird state
02:19 Techrights-sec; running in the window manually too see the possible errors
02:19 *DaemonFC (~daemonfc@r3zgarhjgt6ha.irc) has joined #boycottnovell
02:21 Techrights-sec; there is some problem with at least one type of client in regards to TLS
02:21 Techrights-sec; in principle we should require TLS 1.3 or later, however 1.2 might have a long
02:21 Techrights-sec; tail.
02:21 Techrights-sec; 00 "TLS error" error:peer is incompatible: Server requires TLS1.3, but client omi
02:21 Techrights-sec; tted versions ext
02:22 schestowitz-TR; I noticed that when I first started the process i/o sort of hanged in there, unti
02:22 schestowitz-TR; l I press crtl+c
02:23 schestowitz-TR; I noticed that when I first started the process i/o sort of hanged in there, unti
02:23 schestowitz-TR; l I press crtl+c
02:23 Techrights-sec; Probably the wrong settings in the Unit file, it's esoteric and not clearly
02:23 Techrights-sec; documented so I had to guess.
02:23 schestowitz-TR; g --lang en-GB
02:23 schestowitz-TR; was what I ran
02:24 Techrights-sec; yes, that part is ok AFIAK the Unit file
02:24 Techrights-sec; has all kinds of weird options and they have to combine just right
02:24 Techrights-sec; try recopying now and the daemon-reload etc
02:26 schestowitz-TR; ok
02:26 schestowitz-TR; i think you aced it this time
02:26 Techrights-sec; systemctl daemon-reload
02:26 Techrights-sec; systemctl restart agate.service
02:26 Techrights-sec; I hope so, it's hard to do much more than cargo cult based on other unit files
02:27 schestowitz-TR; ibm did TWO articles about buying suppor rt this monday
02:27 schestowitz-TR; in redhat.com
02:27 Techrights-sec; yes the decommoditization of Linux
02:28 schestowitz-TR; let me focus for the next few mins on irc bulletin etc. ipfs follows at 3am
02:30 schestowitz; sudo /bin/systemctl restart gemini-tcpdump-logger.service
02:30 schestowitz; Failed to restart gemini-tcpdump-logger.service: Unit gemini-tcpdump-logger.service not found.
02:32 Techrights-sec; ok
02:32 Techrights-sec; yes the logging does not have a service file yet, but I see in
02:32 Techrights-sec; journalctl that there is already logging, it is "just" a matter of processing
02:32 Techrights-sec; and extracting
02:40 Techrights-sec; journalctl -u agate
02:40 schestowitz-TR; this one is different because it uses another source for the data
02:48 schestowitz-TR; so far the workflow has gone as expected, but let's see ipfs at 3am
02:48 schestowitz-TR; gemini is alomost perfect now
02:48 schestowitz-TR; just need the refresh cycles and stats, I think, and that's all done
02:48 Techrights-sec; ok logs on the way
02:50 *liberty_box has quit (Ping timeout: 2m30s)
02:50 *rianne_ has quit (Ping timeout: 2m30s)
02:51 *rianne has quit (Ping timeout: 120 seconds)
02:57 Techrights-sec; journalctl -q -u agate --since "$(date -d yesterday +'%F 00:00')" --until "$(date
02:57 Techrights-sec; +'%F 00:00')"
02:57 schestowitz; journalctl -q -u agate --since "$(date -d yesterday +'%F 00:00')" --until "$(date
02:57 schestowitz; [02:57] <Techrights-sec> +'%F 00:00')"
03:02 schestowitz-TR; i see now
03:02 schestowitz-TR; tyhe logger we have uses tcpdump
03:02 schestowitz-TR; i think it is the latest version
03:02 schestowitz-TR; and that accomodates the file we need ro run the script that also updates the sta
03:02 schestowitz-TR; ts page, irc scrollback page etc
03:02 schestowitz-TR; it also ues the format that lets me see who hoards traffic
03:03 Techrights-sec; yes, checking
03:08 *SomeH4x0r has quit (Ping timeout: 2m30s)
03:09 schestowitz; pi@raspberrypi:~ $ sudo cp /home/gemini/gemini/git/tr-git/IPFS/copy-tr-to-gemini.sh /usr/local/sbin/
03:09 schestowitz; pi@raspberrypi:~ $ ls -la /usr/local/sbin/
03:09 schestowitz; total 12
03:09 schestowitz; drwxr-xr-x 2 root root 4096 Jan 18 03:08 .
03:09 schestowitz; drwxr-xr-x 10 root root 4096 Oct 30 12:09 ..
03:09 schestowitz; -rwxr-xr-x 1 root root 272 Jan 18 03:08 copy-tr-to-gemini.sh
03:09 schestowitz; pi@raspberrypi:~ $ cat copy-tr-to-gemini.sh
03:09 schestowitz; cat: copy-tr-to-gemini.sh: No such file or directory
03:09 schestowitz; pi@raspberrypi:~ $ sudo cat /usr/local/sbin/copy-tr-to-gemini.sh
03:09 schestowitz; #!/bin/sh
03:09 schestowitz; # 2021-02-21
03:09 schestowitz; PATH=/usr/local/bin:/usr/bin:/bin
03:09 schestowitz; set -e
03:09 schestowitz; # linking instead of copying in this way requires root usually
03:09 schestowitz; cp --update \
03:09 schestowitz; --link \
03:09 schestowitz; --preserve=mode,ownership,timestamps \
03:09 schestowitz; /home/glr/tr_text_version/* \
03:09 schestowitz; /home/gemini/gemini/tr_text_version/
03:09 schestowitz; exit 0
03:10 Techrights-sec;
03:10 Techrights-sec; there are two scripts,
03:10 Techrights-sec; log_gemini_new.sh
03:10 Techrights-sec; tcpdump-logger.sh
03:10 Techrights-sec; which one?
03:11 *liberty_box (~liberty@suig26pxj59pi.irc) has joined #boycottnovell
03:11 *rianne_ (~rianne@suig26pxj59pi.irc) has joined #boycottnovell
03:11 *rianne (~rianne@joseon-jhg.17c.k31cok.IP) has joined #boycottnovell
03:12 schestowitz-TR; I think tcp* is the one we used
03:12 Techrights-sec; yes that IPFS script goes in cron iirc
03:15 schestowitz-TR; at 3:32am, I will check it runs ok as it's easier to fix when done early
03:18 *SomeH4x0r (~someh4xx@vbku88433t7ju.irc) has joined #boycottnovell
03:36 schestowitz-TR; it looks like you got the gemini cron running agsin
03:36 schestowitz-TR; the files did get copied over at 3:32, but I am not sure poermiissions are
03:36 schestowitz-TR; correct or rather file ownershi
03:36 schestowitz-TR; I will check tomorroe
03:36 schestowitz-TR; very tired
03:36 Techrights-sec; I haven't looked at cron yet, the logs are probably in root's cron.
03:36 Techrights-sec; better rest for now
04:10 *Despatche has quit (Quit: Read error: Connection reset by deer)
04:10 *Despatche (~desp@u3xy9z2ifjzci.irc) has joined #boycottnovell
06:41 *DaemonFC has quit (Quit: Leaving)
08:35 *psydroid4 (~psydroid@cqggrmwgu7gji.irc) has joined #boycottnovell
09:04 Techrights-sec; Could not fetch IPFS log summary
09:04 Techrights-sec; we'll also need Gawk for the scripts, Mawk seems kind of broken
09:04 Techrights-sec; te
09:04 Techrights-sec; Failed feed for 'http://techrights.org/feed/'
09:04 Techrights-sec; Could not find feed at URL: "http://techrights.org/feed/"
09:04 Techrights-sec; probably networking or other connectivity
09:04 Techrights-sec; The Gemini index is fixed now, so is the fetching of new pages via RSS
09:04 Techrights-sec; There are some connectivity issues reaching TR from gemini.techrights.org
09:05 schestowitz-TR; yes, I can see this now, will look into it sjortl
09:05 schestowitz-TR; *shortly
09:15 Techrights-sec; I have a loop in the scrip but it only tries to fetch the feed 5 times,
09:15 Techrights-sec; I'll need to tweak it a bit more.
09:28 schestowitz-TR; i am adding some more missing packages now
10:01 Techrights-sec; ok
10:17 schestowitz-TR; I have just installed tcpdumb and so the script, if run manually, runs OK. Is it configured as a daemon too?
10:28 Techrights-sec; I can't recall how that was set up to run. Perhaps a unit file is necessary.
10:28 schestowitz-TR; i have just checked wifi device name
10:28 schestowitz-TR; the irc scrollback in gemini is now back
10:28 schestowitz-TR; but the logger sends no output to the file except start and end
10:28 schestowitz-TR; maybe debian 11 changed somethihing
10:39 schestowitz-TR; regarding irc, having just solved the ipfs index (html) mystery,
10:39 schestowitz-TR; did you get no file at all?
10:39 schestowitz-TR; (the one with ipfs bobits)
10:42 Techrights-sec; y.
10:42 Techrights-sec; I'll check IPFS again (got distracted)
10:43 Techrights-sec; nope:
10:43 Techrights-sec; Could not fetch IPFS log summary
10:43 Techrights-sec; are the files in the expected directory?
10:44 schestowitz-TR; checking...
10:45 Techrights-sec; THe latest on is from the 16th, yesterday's is missing.
10:48 schestowitz-TR; seems like a likely permissions issues
10:48 schestowitz-TR; ipfs needing write access in links
10:52 Techrights-sec; chgrp ?
10:52 schestowitz-TR; yes, I was just doing that
11:00 schestowitz-TR; I think it is OK now
11:00 schestowitz-TR; I created a group ipfslinks
11:00 Techrights-sec; ok I have to check the script, the keys don't work
11:05 Techrights-sec; ok I have to check the script, the keys don't work :
11:05 Techrights-sec; the diectory /home/links/ must be in the group links for that to work
11:05 Techrights-sec; since o=rx ipfs will be able to pass through down to the relevant subdirectory
11:05 Techrights-sec; and write access is not needed (in addition to breaking keys).
11:05 Techrights-sec; $ sudo chgrp links /home/links/
11:05 Techrights-sec; ok testing
11:05 Techrights-sec; ack
11:06 schestowitz-TR; I changed that back
11:06 schestowitz-TR; short story: I was trying to overwrite an old file, which was not possible
11:06 schestowitz-TR; So I was messing with directories instead
11:06 schestowitz-TR; that file was the output.txt file
11:10 Techrights-sec; the two latest files are in the wrong date format:
11:10 Techrights-sec; should be 220117.html and 220116.html like the others
11:10 Techrights-sec; (lots of loose ends in an OS migration)
11:13 schestowitz-TR; aaaaaahhh
11:13 schestowitz-TR; I seee
11:13 schestowitz; cp $IRCDATE.html /home/links/ipfs/$ISODATE.html
11:13 schestowitz-TR; don't woprry about that
11:13 schestowitz-TR; it's because I did not follow the script
11:14 Techrights-sec; can they be renamed so the script can get them?
11:14 Techrights-sec; The input to the script is filtered so that it cannot fetch arbitrary files.
11:14 Techrights-sec; only root or xxxxxx can do that
11:14 Techrights-sec; or links
11:17 schestowitz-TR; yes, hold on
11:17 schestowitz-TR; I have renamed the two latest files
11:17 schestowitz-TR; the scripts will choose the right date, starting tonight
11:17 schestowitz-TR; I ran manually something which I didn';t realise is changing data formats in the
11:17 Techrights-sec; thanks
11:17 schestowitz-TR; cp command
11:21 Techrights-sec; checking...
11:22 schestowitz-TR; it's a good thing that all this happened during a slow/holiday/mlk weekend
11:22 schestowitz-TR; and I ended up with a spare drive, 2 times more space, security updates, OS upgra
11:22 schestowitz-TR; de
11:22 schestowitz-TR; not the ideal way to do all this, but it gave the push
11:22 schestowitz-TR; i think we are nearly done, I need to check on git around midday and then revisit
11:22 schestowitz-TR; the logging
11:22 Techrights-sec; mawk strikes again. could you add gawk? mawk apparently can't handle simple
11:22 Techrights-sec; posix patterns :( thanks
11:22 schestowitz-TR; installing gawk
11:23 schestowitz-TR; done
11:23 Techrights-sec; looks good on site, now testing the script
11:24 Techrights-sec; yes! it works!
11:26 Techrights-sec; published
11:26 Techrights-sec; I had not known that mawk was so incomplete
11:26 Techrights-sec; yes, there are non-standard extensions in Gawk but basic patterns ought to work
11:26 Techrights-sec; even in Mawk.
11:26 Techrights-sec; But they don't
11:26 schestowitz-TR; ;)
11:46 schestowitz-TR; stats/logging back, resxtored
11:47 schestowitz; /home/gemini/bin $ sudo ./tcpdump-logger.sh
11:47 schestowitz; used to be: sudo service gemini-tcpdump-logger start
11:47 schestowitz; which i suppose means you made a unit file as such, which I had in my notes to kick off after power cut or reboot
11:55 Techrights-sec; I can try making another unit file
11:55 Techrights-sec; BTW: https://www.engadget.com/the-uk-government-is-reportedly-planning-ad-campaign-attacking-end-to-end-encryption-101610703.html
11:55 -TechrightsBN/#boycottnovell-www.engadget.com | The UK Government is reportedly preparing a PR blitz against end-to-end encryption | Engadget
11:55 schestowitz-TR; :-)
11:55 schestowitz-TR; which year is this?
11:55 schestowitz-TR; they have been doing this for ages :-)
11:56 Techrights-sec; yes it's a repeat, dusting of old, debunked excuses again
11:56 schestowitz-TR; our original ipfs dude wrote a number of articles about this in TR last year or i
11:56 schestowitz-TR; n 2020
11:58 schestowitz-TR; (was thinking: given the new size of the card, we have ample spare space for making an image of the system or part of it -- for a restore of same state on a recently-patched debian 11)
11:59 schestowitz-TR; rianna sometimes uses it as a second desktop for monitoring things, so I restored a number of more thinks last night. not much except firefox and nottes.
11:59 Techrights-sec; Ok, try: agate-tcpdumper.service into /etc/systemd/system/ and then
11:59 Techrights-sec; ./tcpdump-logger.sh into /usr/local/sbin/
11:59 Techrights-sec; then enable, start, status, etc
12:00 schestowitz-TR; trying
12:00 schestowitz-TR; (sorry for typos, it has been a hectic monday, skipped some sleep)
12:01 schestowitz-TR; there is a very good 4-part series coming from andy
12:01 schestowitz-TR; also of note:
12:01 schestowitz-TR; before doing all this advocacy and daily links thing around 2005
12:02 schestowitz-TR; I was able to focus on one task all day long
12:02 schestowitz-TR; like my phd
12:15 Techrights-sec; yes it has been a hectic 2 weeks here too
12:15 Techrights-sec; sleep and exercise are not to be skimped on however
12:15 Techrights-sec; Excellent! His writings have been reallly great to read, very well written and
12:15 Techrights-sec; on very relevant and interesting topics.
12:15 schestowitz-TR; i think this service file has a name collision
12:15 schestowitz-TR; alias for instance
12:16 schestowitz-TR; (I started monitoring disks and syslogs on machines better than before; we got warnings aboiut the pi issues 2 days in advance, I did not notice until fs became R-O)
12:18 Techrights-sec;
12:18 Techrights-sec; checking
12:18 Techrights-sec; thanks try the changed file; and one more typo fixed
12:18 Techrights-sec; Good catch, spotting it early probably saved a lot of trouble even if the
12:18 Techrights-sec; process still was a lot of work
12:21 schestowitz; Jan 18 12:20:36 raspberrypi systemd[1]: /etc/systemd/system/agate-tcpdumper.service:5: Invalid URL, ignoring: Ha!
12:21 schestowitz; Jan 18 12:20:36 raspberrypi systemd[1]: /etc/systemd/system/agate-tcpdumper.service:17: Failed to parse service restart specifier, ignoring: 5s
12:28 schestowitz-TR; re exercise, yes, covid has taken itsm toll as there are many things I cannot do
12:28 schestowitz-TR; outdoors or at home
12:28 schestowitz-TR; but looking at the "health" umbrella of exercise, catching covid-19 and falling
12:28 schestowitz-TR; into that cycle I see in my work colleagues is an unacceptable risk
12:28 schestowitz-TR; I really loathed what I saw yesterday in Town
12:28 schestowitz-TR; I am very strict about food and meds as only reason to go out
12:28 schestowitz-TR; unless I run with rianne, which makes it eay to
12:28 schestowitz-TR; distance
12:30 *tech_exorcist (~tech_exorcist@m6nw7kksfxxss.irc) has joined #boycottnovell
12:32 Techrights-sec; ack
12:32 schestowitz-TR; i sometimes try to contain my anger with gullible people
12:32 schestowitz-TR; who get their newws from "mates" )((who get info
12:32 schestowitz-TR; from their "facebook" walls and "friends"
12:32 schestowitz-TR; downplay the issue
12:32 schestowitz-TR; now our GOVERNMENTN DOES THE SAME!
12:32 schestowitz-TR; To protect "the boris"
12:32 schestowitz-TR; my colleagues are unable to funmction mentally and bodily
12:32 schestowitz-TR; some fedora "bloggers" recently mentioned this too
12:32 schestowitz-TR; he started forgetting names
12:33 Techrights-sec; yes, facebook is a disinformation service
12:33 Techrights-sec; ack
12:34 schestowitz-TR; this whole "sihing covid away" thing is 2 years old
12:34 schestowitz-TR; "eat out, help out" (2020)
12:34 schestowitz-TR; boris: normality by xmas (he meant 2020!)
12:34 schestowitz-TR; noiw they tell us 20,000 patients is nothing and no nhs numbers since jan 11th
12:34 schestowitz-TR; *wishing covid away
12:35 Techrights-sec; ack
12:35 Techrights-sec; bojo the clown has blood on his hands, then again so does tony bliar
12:35 schestowitz-TR; tony has blood of "arabs"
12:35 schestowitz-TR; so the "Conservatives" and "Labour" people mind less
12:35 schestowitz-TR; soon 200,000 UK death certs with covid on them. We are about 180k now
12:51 Techrights-sec; ack
12:51 Techrights-sec; at the very beginning I guessed that the US would unfortunately exceed 1M deaths
12:51 Techrights-sec; from SARS-CoV-2, but that was before Facebook got involved to worsen the situatio
12:51 Techrights-sec; n
12:51 schestowitz-TR; in my mind what always stayed was the 2M estimate, from around April 2020. People would ridicule those of us who mentioned it.
12:52 schestowitz; Jan 18 12:52:29 raspberrypi systemd[1]: Failed to start Logger for the Agate Gemini Server.
12:52 schestowitz; pi@raspberrypi:/etc/systemd/system $ sudo diff /home/gemini/bin/agate-tcpdumper.service /etc/systemd/system/agate-tcpdumper.service
12:53 Techrights-sec; 1M is rather conservative with a 35% infection rate and of those 1% mortality
12:53 Techrights-sec; patents and facebook threw the whole pandemic management process for a loop
12:53 schestowitz-TR; yes, there's worse than death, but you don't count if you suffer, only if you cease to exist. Tent cities= ALL FINE!
12:54 Techrights-sec; Is the tcpdump script in /usr/local/sbin?
12:55 schestowitz; Jan 18 12:55:12 raspberrypi systemd[1]: /etc/systemd/system/agate-tcpdumper.service:5: Invalid URL, ignoring: Ha!
12:55 schestowitz; Jan 18 12:55:12 raspberrypi systemd[1]: /etc/systemd/system/agate-tcpdumper.service:17: Failed to parse service restart specifier, ignoring: 5s
12:55 Techrights-sec; The poverty in the US is off the charts, literally, sine they've more or less
12:55 Techrights-sec; stopped measuring unemployment.
12:55 Techrights-sec; checking
12:55 schestowitz-TR; my sister gets back to work march 1st
12:56 schestowitz-TR; she left her ge job after almost 2 decades
12:56 schestowitz-TR; but hunsband provoviding for 5 people is tough
13:00 Techrights-sec; People in the US are already inured to poverty, what they are now reacting to
13:00 Techrights-sec; is obscene levels beyond what was already sick.
13:01 schestowitz-TR; the stories I hear from my sister about poverty are interesting
13:01 schestowitz-TR; she was here befoire
13:01 schestowitz-TR; she saw poverty
13:01 schestowitz-TR; but not at this scale
13:01 schestowitz-TR; this ALWASY reminds me or Ryan, ot a dumb person, zipping himself ip
13:01 schestowitz-TR; in a sleeping bag in his own home
13:01 schestowitz-TR; to cut energy bills
13:01 *u-amarsh04 (~amarsh04@zd9ersed554wu.irc) has joined #boycottnovell
13:01 *u-amarsh04 (~amarsh04@joseon-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell
13:02 Techrights-sec; try copying the unit file again, daemon-reload, restart, status etc
13:04 schestowitz; Jan 18 13:03:43 raspberrypi systemd[1]: /etc/systemd/system/agate-tcpdumper.service:17: Failed to parse service restart specifier, ignoring: 5s
13:05 Techrights-sec; A lot of people have to decide between food, rent, or medicine, and are
13:05 Techrights-sec; constantly juggling missed payments
13:05 Techrights-sec; Unfortunately other contries have started to implement the US' replacement for
13:05 Techrights-sec; health care. Here they've already privatized and are now eliminating the
13:05 Techrights-sec; last of the health care completley unless things are turned around, but regardles
13:05 Techrights-sec; s the damage is done and will last for at least a generation, assuming
13:05 Techrights-sec; society holds out that long before collapsing.
13:05 Techrights-sec; --
13:05 Techrights-sec; ok I'll try a mockup here
13:06 schestowitz-TR; upside is, our code is becoming more compatible with more recent systems. rianne wants to buy another rapi as her vpn backup
13:06 schestowitz-TR; if she does, I can use that as a "hot spare" for things, I think
13:08 schestowitz-TR; ---
13:08 schestowitz-TR; re 'health' 'core'
13:08 schestowitz-TR; there is a saying here
13:08 schestowitz-TR; albeit maybe not limited to here anymore
13:08 schestowitz-TR; eating or heating
13:08 schestowitz-TR; if you throw repeat meds into the mix, shit hits the fan
13:09 Techrights-sec; yes, the whole system is on removable media so it is only a matter of swapping
13:09 Techrights-sec; ack
13:10 schestowitz-TR; I am assuming I can make a replicata of this sd card by removing it, plugging it in unmounted, dd'ing off it, then again in reverse for another similar carrd
13:10 Techrights-sec; Something similar, I'm not sure dd is reliable unless the card is underprovisione
13:10 Techrights-sec; d. The sizes are not always equal.
13:12 schestowitz; https://twitter.com/NEVERCOMPLY187/status/1482960257148203008
13:12 -TechrightsBN/#boycottnovell-@NEVERCOMPLY187: Interesting!! #nsa #billgates https://t.co/WCA2Mrsx0n https://t.co/EsoyBJT7Wk
13:12 -TechrightsBN/#boycottnovell--> techrights.org | Microsoft and the NSA - Techrights
13:12 -TechrightsBN/#boycottnovell--> techrights.org | Welcome to Techrights
13:12 schestowitz; https://twitter.com/lyght01/status/1482919197839880203
13:12 -TechrightsBN/#boycottnovell-@lyght01: #BillGates ruined @DuckDuckGo https://t.co/Ol7ZXgdEuA
13:12 -TechrightsBN/#boycottnovell--> techrights.org | Why You Should Avoid DuckDuckGo (DDG) 2021 Edition, Now Microsoft-Hosted and With Extra Privacy Risks | Techrights
13:12 schestowitz; https://twitter.com/lyght01/status/1482919004943822849
13:12 -TechrightsBN/#boycottnovell-@lyght01: @DuckDuckGo is #censoring results now that microsoft owns them https://t.co/Ol7ZXgdEuA
13:13 schestowitz; https://twitter.com/mark14907/status/1482788522528546823
13:13 -TechrightsBN/#boycottnovell-@mark14907: Microsoft Thinks It Owns Mesa (and Computer Games) https://t.co/0qXKhpBuN5
13:13 -TechrightsBN/#boycottnovell--> techrights.org | Microsoft Thinks It Owns Mesa (and Computer Games) | Techrights
13:13 schestowitz; https://nitter.eu/robertcaruso/status/148278495140
13:13 -TechrightsBN/#boycottnovell- ( status 404 @ https://nitter.eu/robertcaruso/status/148278495140 )
13:14 schestowitz; https://nitter.eu/robertcaruso/status/148278495140?2
13:14 -TechrightsBN/#boycottnovell- ( status 404 @ https://nitter.eu/robertcaruso/status/148278495140?2 )
13:14 schestowitz; Nitter rate-limited https://nitter.eu/robertcaruso/status/148278495140
13:14 schestowitz; https://nitter.eu/robertcaruso/status/148278495140?22
13:14 -TechrightsBN/#boycottnovell- ( status 404 @ https://nitter.eu/robertcaruso/status/148278495140?22 )
13:20 schestowitz; https://nitter.eu/Rac912/status/1483379715343851522?ss
13:20 -TechrightsBN/#boycottnovell- ( status 404 @ https://nitter.eu/Rac912/status/1483379715343851522?ss )
13:20 schestowitz; "Funny how you qouote the opposition's "independent" new site. These people formed a coalition with the neo-nazis just to try to oust Orban. Orban who supported jews ever since he came into power. Try to be jewish in other major cities in western europe..."
13:20 schestowitz; https://twitter.com/glynmoody/status/1483377088677752832
13:20 -TechrightsBN/#boycottnovell-@glynmoody: A blast from the past... https://t.co/VTVOjvXvnG
13:20 -TechrightsBN/#boycottnovell-@schestowitz: Without Free Software, Open Source Would Lose its Meaning | Linux Journal https://t.co/F19NQhtUVR @glynmoody
13:21 schestowitz; https://nitter.eu/GyroWaveGen_TM/status/1483152415063003144
13:21 -TechrightsBN/#boycottnovell-nitter.eu | GyroGen(TM) (@GyroWaveGen_TM): "Getting software patents is stupid anyway, since they're so easy to get around! Almost trivial! Trade secrets are far better for software, including AI!" | nitter
13:22 schestowitz; https://twitter.com/AnSchi22494301/status/1482933118961135618
13:22 -TechrightsBN/#boycottnovell-@AnSchi22494301: @schestowitz No. The answer is no.
13:22 schestowitz; https://twitter.com/GyroWaveGen_TM/status/1482766629536772099
13:22 -TechrightsBN/#boycottnovell-@GyroWaveGen_TM: @schestowitz So, in the end, who's STILL making ALL the (real) money (with no risks)? LOL!
13:22 schestowitz; GyroGen(TM) (@GyroWaveGen_TM): "Since you're hyping this so much, you must get a cut, right? And, $22K (if you're REALLY lucky) is a 'living' to you?! Where is THAT? Is that what YOU make?" | nitter https://nitter.eu/GyroWaveGen_TM/status/1482764866255560716
13:22 -TechrightsBN/#boycottnovell-nitter.eu | GyroGen(TM) (@GyroWaveGen_TM): "Since you're hyping this so much, you must get a cut, right? And, $22K (if you're REALLY lucky) is a 'living' to you?! Where is THAT? Is that what YOU make?" | nitter
13:22 schestowitz; https://twitter.com/GyroWaveGen_TM/status/1482763364707225601
13:22 -TechrightsBN/#boycottnovell-@GyroWaveGen_TM: @schestowitz Kinda like they could in the 1920's too! "Isn't THAT the American way?!" https://t.co/J6EP3EMxom
13:22 -TechrightsBN/#boycottnovell--> www.youtube.com | They Shoot Horses, Don't They? Official Trailer #1 - Bruce Dern Movie (1969) HD - YouTube
13:22 schestowitz; https://twitter.com/gnarlin2/status/1482744963947499520
13:22 -TechrightsBN/#boycottnovell-@gnarlin2: @schestowitz Note: Only subscribers can read the article so I couldn't read it.
13:23 schestowitz; https://twitter.com/nlitenmebabe/status/1482653785977667586
13:23 -TechrightsBN/#boycottnovell-@nlitenmebabe: https://t.co/NHLXdvSUEC
13:23 -TechrightsBN/#boycottnovell-@schestowitz: Solve #Wordle using the Linux command line | https://t.co/OhzDJEShzh #FreeSW
13:26 *leah has quit (Quit: WeeChat 3.3)
13:27 *SomeH4x0r has quit (Ping timeout: 2m30s)
13:30 *SomeH4x0r (~someh4xx@6e45g5qtaw8zu.irc) has joined #boycottnovell
13:38 *SomeH4x0r has quit (Ping timeout: 2m30s)
13:47 *SomeH4x0r (~someh4xx@sctsjmg96zkru.irc) has joined #boycottnovell
14:01 Techrights-sec; ack
14:01 Techrights-sec; still looking for what's different with the environment / script...
14:01 Techrights-sec; something about the pipe from tcpdump is unavailable
14:01 Techrights-sec; gemini-log-journalctl.sh may be what we have to sink to
14:01 schestowitz-TR; is that something to try to deploy?
14:04 *SomeH4x0r has quit (Ping timeout: 2m30s)
14:08 *SomeH4x0r (~someh4xx@gbgr2jcp6yrt2.irc) has joined #boycottnovell
14:08 Techrights-sec; perhaps but if it replaces sometning else, what info do we really need?'
14:10 *Despatche has quit (Quit: Read error: Connection reset by deer)
14:19 schestowitz; sudo systemctl reset-failed gemini-logger.service
14:27 Techrights-sec; yes still looking at the logger, tcpdump seems not to be a viable choice
14:27 Techrights-sec; for now, not sure why but have tried about 8 combinations of buffering or
14:27 Techrights-sec; not buffering, nothing is getting through the pipe to awk or anthing else
14:28 schestowitz-TR; that same code worked before, with another unit file but also another OS and another stack (buster)
14:41 Techrights-sec; different OS
14:41 Techrights-sec; it doesn't like bullseye either
14:41 Techrights-sec; the journlctl approach can preserve ip numbers but not resolved names
14:41 Techrights-sec; Is it ok to scale back the logging to what is easy to get from journalctl?
14:41 Techrights-sec; There is probably a regression in tcpdump in regards to output buffering in
14:41 Techrights-sec; Debian 11 and related derivatives.
14:42 schestowitz-TR; ip addressed is fine, that gets purged regardless at the end of each month. if needed, I can run this interactively from the CLI, in the background
14:42 schestowitz-TR; I suppose that sooner or later we'd have had to deal with all those "upgrades"
14:45 Techrights-sec; tcpdump -q -p -l -tttt -i wlan0 'tcp[tcpflags] & (tcp-syn) != 0 and port 1965' |
14:45 Techrights-sec; awk '{print; fflush();}'
14:45 Techrights-sec; does not produce output
14:45 Techrights-sec; ok then add --log-ip to the agate.service file
14:46 schestowitz-TR; is it Ok to remove the sementically probolematic Restart=5s ?
14:46 Techrights-sec; I guess
14:47 schestowitz; sudo /usr/local/sbin/tcpdump-logger.sh
14:47 schestowitz; tcpdump: verbose output suppressed, use -v[v]... for full protocol decode
14:47 schestowitz; listening on wlan0, link-type EN10MB (Ethernet), snapshot length 262144 bytes
14:47 schestowitz; it works OK
14:47 schestowitz; where in the service unit file would the parameter go? in the file in sbin instead?
14:48 Techrights-sec; the problem is with Awk again. I think I see a work-around now
14:48 Techrights-sec; on the Exec line that launches agate:
14:51 schestowitz; Jan 18 14:50:07 raspberrypi agate.armv7-unknown-linux-gnueabihf[23184]: [2022-01-18T14:50:07Z INFO agate] [::ffff:192.168.1.82]:1965 - "gemini://gemi>
14:51 schestowitz; Jan 18 14:50:11 raspberrypi agate.armv7-unknown-linux-gnueabihf[23184]: [2022-01-18T14:50:11Z INFO agate] [::ffff:192.168.1.82]:1965 - "gemini://gemi>
14:51 schestowitz; Jan 18 14:50:16 raspberrypi agate.armv7-unknown-linux-gnueabihf[23184]: [2022-01-18T14:50:16Z INFO agate] [::ffff:192.168.1.82]:1965 - "gemini://gemi>
14:51 schestowitz; Jan 18 14:50:16 raspberrypi systemd[1]: /etc/systemd/system/agate.service:16: Failed to parse service restart specifier, ignoring: 5s
14:51 schestowitz; Jan 18 14:50:16 raspberrypi systemd[1]: agate.service: Current command vanished from the unit file, execution of the command list won't be resumed.
14:51 schestowitz; but it carries on after that
14:51 Techrights-sec; ExecStart=/home/gemini/bin/agate.armv7-unknown-linux-gnueabihf --content /home/ge
14:51 Techrights-sec; mini/gemini/ --certs /home/gemini/certs/ --hostname gemini.techrights.org --lang
14:51 Techrights-sec; en-GB --only-tls13
14:51 Techrights-sec; --lop-ip
14:51 Techrights-sec; ^--log-ip on the same line
14:58 Techrights-sec; does ~gemini/bin/tcpdump-logger.sh produce the right output (not yet to log fuifi
14:58 Techrights-sec; le)
14:58 schestowitz-TR; it did when I last ran it
14:59 Techrights-sec; today?
15:00 schestowitz; Can't modify single ref constructor in substitution (s///) at -e line 2, near "s/\.\d+$//;"
15:00 schestowitz; Execution of -e aborted due to compilation errors.
15:00 schestowitz-TR; i will try again
15:03 *u-amarsh04 has quit (Quit: Konversation terminated!)
15:03 *u-amarsh04 has quit (Quit: Konversation terminated!)
15:03 Techrights-sec; :(
15:03 Techrights-sec; ok it was a quoting / escape problem. getting fatigued with all the details
15:09 *u-amarsh04 (~amarsh04@joseon-rmogvn.g0d7.dtdf.mc4289.IP) has joined #boycottnovell
15:09 *u-amarsh04 (~amarsh04@zd9ersed554wu.irc) has joined #boycottnovell
15:58 *blitzed (~blitzed@6vjnihvu3smkn.irc) has joined #boycottnovell
16:27 *Despatche (~desp@u3xy9z2ifjzci.irc) has joined #boycottnovell
18:26 *DaemonFC (~daemonfc@iirggctgfpx8e.irc) has joined #boycottnovell
19:50 *DaemonFC has quit (Quit: Leaving)
22:19 *tech_exorcist has quit (Quit: Disconnecting)
-- Response ended
-- Page fetched on Sun May 19 15:40:31 2024