home tags events about login

benjojo rss

Hope you never notice the outages I cause. Knows where the RFC2616 bodies are buried. recurse.com SP'2 18

Follow me using: @benjojo@benjojo.co.uk in your client

benjojo posted 07 Dec 2023 09:13 +0000

Oops. PalTel leaking 1.1.1.0/24 over the DE-CIX RouteServers

1.1.1.0/24           unicast [[v4/v6]: DE.FRA3 0000-00-00] * (?/-) [AS13335]
 Type: BGP
 BGP.as_path: 12676 17557 13335 
 BGP.community: (12676,1002) (12676,3001) 
 BGP.large_community: (12676, 998, 6695) (12676, 999, 0) (12676, 999, 1105) 

It's being accepted by some people too!

Two RIPE atlas traceroutes to 1.1.1.1, both are suddenly going from Germany to Pakistan

benjojo replied 06 Dec 2023 16:38 +0000
in reply to: https://benjojo.co.uk/u/benjojo/h/CQkrYDL1dpKNqs29hd

I think my favourite part of trying to send email to Live/Hotmail is that if you try and sign up as a valid sender or w/e with their post master program, it does a whois lookup on your IP address, and that has seemingly been perma rate limited by RIPE. So it is actually impossible to onboard to it.

benjojo posted 06 Dec 2023 16:36 +0000

I've seen 3 different companies (in different sectors) complaining about email delivery to @hotmail and @live email addresses in the last 7 days.

I'd like to throw it out there that bgp.tools had this problem sometime last year, and I decided that rather than spending all of my time trying (and _boy did I try_) to fix this. I just disabled those emails from being used for bgp.tools accounts.

Best thing I did. I think this has saved me at least 10-20 man hours in trying to make something that clearly does not want to work, work. Thankfully my sector does not really use such email providers.

Weirdly Office 365 does not have the same level of issues, I can only assume because if they did apply the same policy as to O365 as they have on Live/Hotmail their customers would all perish.

benjojo posted 05 Dec 2023 12:30 +0000

hmm, what are the chances that both Peering Days and RIPE 88 are going to be in the same venue, Given they are both happening within 30 days of each other, and in Krakow Poland

benjojo posted 05 Dec 2023 11:39 +0000

This message was encrypted with OMEMO and could not be decrypted.

benjojo posted 27 Nov 2023 20:22 +0000

Suggesting to a friend to look up the Amen Break, Instead watching them search "arm and break"

benjojo posted 22 Nov 2023 22:52 +0000

It's not cute when extremely huge layer 2's do this, they only do this when they're extremely stressed!

AMS IX traffic graph showing a seven terabit traffic drop

benjojo posted 21 Nov 2023 21:46 +0000

Today I learned about "arp_ignore" in Linux:

So let's say I have two devices, one device has two NICs (Machine A), the other with one (Machine B).

All NICs are on the same LAN, connected via different switches, they have different IP addresses in the same subnet, No LAG.

Machine B wants to send data to both NICs on machine A. However when it ARP's this happens:

Out ARP, Request who-has 192.168.122.49 tell 192.168.122.96, length 28
In  ARP, Reply 192.168.122.49 is-at 0c:a7:4b:c9:00:00, length 28
In  ARP, Reply 192.168.122.49 is-at 0c:a7:4b:c9:00:01, length 28
Out ARP, Request who-has 192.168.122.50 tell 192.168.122.96, length 28
In  ARP, Reply 192.168.122.50 is-at 0c:a7:4b:c9:00:01, length 28
In  ARP, Reply 192.168.122.50 is-at 0c:a7:4b:c9:00:00, length 28

Huh, When Machine B ARP's for the IPs for Machine A, both NICs respond.

Meaning that Machine B will likely end up using only one of the NICs to talk to both addresses.

This is due to net.ipv4.conf.all.arp_ignore !

arp_ignore - INTEGER Define different modes for sending replies in
response to received ARP requests that resolve local target IP addresses:
0 - (default): reply for any local target IP address, configured on any interface

Wild!

With this setting switched to 1, we see the ideal behaviour:

Out ARP, Request who-has 192.168.122.49 tell 192.168.122.96, length 28
In  ARP, Reply 192.168.122.49 is-at 0c:a7:4b:c9:00:00, length 28
Out ARP, Request who-has 192.168.122.50 tell 192.168.122.96, length 28
In  ARP, Reply 192.168.122.50 is-at 0c:a7:4b:c9:00:01, length 28

If you don't know about this, and combine it with SO_BINDTODEVICE you are going to be in for a bad time!

benjojo reposted 18 Nov 2023 19:04 +0000
original: mnordhoff@infosec.exchange

Anycast is an advanced networking method for clients in City A to access a server in City B while clients in City B access a server on the literal opposite point of the planet.

benjojo posted 16 Nov 2023 15:00 +0000

The amount of times that a Apple watch interrupts a conference talk with siri is now getting close to at least once a conference/event

benjojo posted 15 Nov 2023 12:45 +0000

Another 256G of DDR4 for the increasingly hungry bgp.tools collectors

A hand holding a black container of 8 DDR4 RAM modules

benjojo posted 13 Nov 2023 13:02 +0000

We are so close to 1.7B Unix epoch

A website converter that when given a unix epoch time of 1.7 billion, says that it will be reached "In a day"

benjojo posted 10 Nov 2023 09:38 +0000

For some reason the Ceph dashboard is like a fish tank, I literally just keep staring at it.

Especially right now as it's doing a transfer from the old storage machine to the new setup (for bgp.tools)

A screenshot of the ceph dashboard, showing 4 panes, one says 10% raw capacity used out of 76 TiB, the other says 4.3M objects, the other says 292 IOPS, and the final one says 32.1 MiB/s of writes

benjojo posted 06 Nov 2023 19:42 +0000

Ooooh, the 0th longitude laser is very visible tonight in London

A photo of two buildings at night and there is a giant green laser in the sky

benjojo posted 06 Nov 2023 19:05 +0000

Ah yes Matrix are going for the " running out of cash " gambit

TechCrunch: Decentralized communication protocol Matrix shifts to less- permissive AGPL open source license

benjojo posted 06 Nov 2023 18:39 +0000

It's too dark for 6PM, and it's only gonna get worse

benjojo posted 05 Nov 2023 14:16 +0000

Adaptec RAID BIOS V7.5-0 [Build 32084]                                  
(c) 1998-2015 PMC-Sierra, Inc. All Rights Reserved.                     
                                                                        
*** Press <Ctrl><A> for Adaptec RAID Configuration Utility! ***         
                                                                        
Booting the Controller Kernel....../                                    
                                                                        
                                                                       

here comes the pain

benjojo reposted 03 Nov 2023 15:55 +0000
original: jonty@chaos.social

Did you borrow a LIDAR sensor from someone in the EMF village next to the Milliways bar at #cccamp23?

If so: Please drop me an email. My address is stuck to them.

(boosts for reach appreciated)

benjojo replied 01 Nov 2023 12:17 +0000
in reply to: https://mastodon.social/users/cks/statuses/111332699828747197

@cks @filippo @erincandescent IMHO there is likely a good argument for a mid-way 1hr delay.

Solves the "I just setup PHPMyAdmin an- oh it's gone" problem, while not delaying the process of notifications by too much.

All of this is made quite brutual by "AutoCert" based stuff, where certs are issues far far faster than the infra behind the cert can safely take requests (then there is another argument on "why is your setup.php file unsafe by default")

benjojo replied 01 Nov 2023 12:14 +0000
in reply to: https://noc.social/users/29821632/statuses/111334170893124400

@29821632

In general yeah, you should be doing wildcard cert. But also in general, if the DNS name being unknown was the only thing that was keeping bad things from happening, you are in some seriously bad shape :)

[Full disclosure: I'm not really a neutral player in this debate, since bgp.tools uses some of this stuff to it's advantage]

benjojo posted 31 Oct 2023 19:55 +0000

Ahh yes, the feeling of issuing a TLS cert and watching all of the bots (that just learned about my hostname via Certificate Transparency PreCerts) racing and climbing over each other to be the first one to fuck up whatever application they are looking for.

Go bots! Go!

benjojo posted 31 Oct 2023 18:37 +0000

I have just upgraded to a Google Pixel 7 and I have discovered that it's possible for mobile provider to disable my ability to turn off GSM.

Wat.

A screenshot of the Android settings menu, showing the section 2G cannot be disabled because censored provider name requires it

benjojo posted 30 Oct 2023 15:58 +0000

I get that AS16509 (aka AWS) is a lot of the internet these days, but as far as I can eyeball, their AS is originating a metric fuck load of BGP prefixes.

9.1k IPv4 and 4.2k IPv6

What a mess, Most of these are /24's or /48's

I only noticed because right now that is taxing bgp.tools'es ability to fetch real time data

benjojo posted 30 Oct 2023 14:48 +0000

It's now build a linux kernel after make clean "it's free heat, why not" weather

benjojo posted 29 Oct 2023 09:56 +0000

There is a in person IETF event in less than 2 weeks, this is unfortunate for a draft that is going to expire in 1 week, since you cannot upload new drafts 2 weeks before a IETF event...