benjojo
replied 19 Apr 2024 11:15 +0000
in reply to: https://chaos.social/users/jesopo/statuses/112296827576480616
benjojo rss
Hope you never notice the outages I cause. Knows where the RFC2616 bodies are buried. recurse.com SP'2 18
Follow me using: @benjojo@benjojo.co.uk
in your client
benjojo
replied 19 Apr 2024 11:15 +0000
in reply to: https://chaos.social/users/jesopo/statuses/112296827576480616
benjojo
replied 18 Apr 2024 22:04 +0000
in reply to: https://social.treehouse.systems/users/Aissen/statuses/112294457540592580
@Aissen bgp.tools is basically always doing a /0 ICMP scan for https://map.bgp.tools . I don't think I've observed any serious blocking of that IP address, and anyone who did decide to block based on a single ping every 2 weeks likely does not make a accountable difference to numbers! In general I believe my network is pretty much as reachable as anyone elses, I do run a commercial service form it and have yet to get complaints about lack of reachability
benjojo
replied 18 Apr 2024 21:30 +0000
in reply to: https://fedi.yuka.dev/objects/a97e2900-b0cf-46ac-8de6-eec006af40a5
@yuka Yeah i sent the post and within seconds I realised that that would be mentioned, I edited the post on my end, but I assume your software does not support edits
Out of all IPv4 addresses on the internet (that are BGP routed), Around 9.57% of them respond to ICMP ping!
benjojo
replied 18 Apr 2024 17:00 +0000
in reply to: https://glauca.space/users/q/statuses/112293285972217295
benjojo
replied 18 Apr 2024 16:14 +0000
in reply to: https://101010.pl/users/nabijaczleweli/statuses/112292368300305324
benjojo
replied 18 Apr 2024 11:57 +0000
in reply to: https://s.waq.dk/users/Tenzer/statuses/112292091549568062
benjojo
replied 18 Apr 2024 11:48 +0000
in reply to: https://infosec.exchange/users/FritzAdalis/statuses/112292046665625204
benjojo
replied 18 Apr 2024 11:37 +0000
in reply to: https://social.treehouse.systems/users/grawity/statuses/112291994862903950
@grawity They will only accept (as far as I am aware) tik firmware, for the devices that mattrer in this case at least (The nice marvell chipset ones)
benjojo
replied 18 Apr 2024 11:14 +0000
in reply to: https://akko.erincandescent.net/objects/bf4e3dd4-bfb7-4ebb-bfca-5fddaa61fb50
@erincandescent RouterOS does eventually grow on you, but the software stability/inter-op is the larger problem
breaths in through gritted teeth It's amazing how much LinkedIn is trying for me to hate it
benjojo
replied 18 Apr 2024 11:01 +0000
in reply to: https://nso.group/users/qwertyoruiop/statuses/112291805306860598
benjojo
replied 18 Apr 2024 10:44 +0000
in reply to: https://mastodon.social/users/lmierzwa/statuses/112291810498977258
benjojo
replied 18 Apr 2024 10:41 +0000
in reply to: https://nso.group/users/qwertyoruiop/statuses/112291792089027445
@qwertyoruiop Yeah, Mellanox knocked it out of the park with the Spectrum switches. The only downside is that people think that they should run SONIC on them, a incredibly bad idea!
benjojo
replied 18 Apr 2024 10:39 +0000
in reply to: https://nso.group/users/qwertyoruiop/statuses/112291787985986463
@qwertyoruiop Flash for what? the SATA disk? Have you managed to blow away the actual control plane's EFI/Firmware?
benjojo
replied 18 Apr 2024 10:36 +0000
in reply to: https://helvede.net/users/holsta/statuses/112291745278170256
@holsta I'd much rather reviews of kit directly from the people who enjoy/suffer it, than some generic case study that has almost certainly been sterilized of any kind of criticism
Man, I totally see why solar power people go nuts for stats, it's almost hypnotising to watch the power move around
New post! After spending a while with the new switch/router that I use, I wrote down all of the notes I wish existed, and a general review of the Mellanox spectrum/switchdev support! Sysadmin friendly high speed ethernet switching https://blog.benjojo.co.uk/post/sn2010-linux-hacking-switchdev
I think I'm going to call EMF-IX quits for this year. I'm not really at the point where the cost to hire the marquee (etc) is viable for me, since I don't make the same level of income as I used to. (and I suspect trying to find people to split the costs is enough of a task as running EMF-IX etc) Apologies!
benjojo
replied 17 Apr 2024 15:15 +0000
in reply to: https://haz.pink/users/can/statuses/112287190794286525
I really hate this stuff, I know the site does not see the email until I click on it, but it just feels like a timebomb siting at the corner of my screen on every site. Even more so because my email addresses are clearly displayed on the screen, making it a doxxing risk if I am not careful with screenshots
Target acquired
benjojo
replied 16 Apr 2024 14:06 +0000
in reply to: https://mastodon.social/users/jamesog/statuses/112281271116562431
@jamesog yeah it's bizzare (I'm not in the UK right now FWIW), having grown up only ever seeing grey ones
benjojo
replied 16 Apr 2024 12:27 +0000
in reply to: https://cloudisland.nz/users/xssfox/statuses/112280622937039284
benjojo
replied 16 Apr 2024 11:38 +0000
in reply to: https://soc.kouett.net.eu.org/objects/6b855c9c-8181-4e17-83ba-ca0d8ea0e289
🐿️
AI bot scraper desperately pawing at the door over and over, Maybe robots.txt changed since the last... 2 seconds since it last checked
benjojo
replied 15 Apr 2024 23:11 +0000
in reply to: https://gotosocial.i.eta.st/users/eta/statuses/01HVJ02Q1G5WD5WT7EXP33QWCV
@eta Sometimes :tm:, because yubikeys compatibility along the ages is a bit of a mess, so not everyone who has yubikeys can/will have the ability to use P256, but the RSA path always works
benjojo
replied 15 Apr 2024 23:09 +0000
in reply to: https://mastodon.social/users/lambdafu/statuses/112277724023007058
@lambdafu @filippo @malwaretech @dangoodin 0.44% in my spot test ( https://benjojo.co.uk/u/benjojo/h/Cf8v9Dc539ty21y9K6 ), So not that far off
benjojo
replied 15 Apr 2024 22:50 +0000
in reply to: https://infosec.exchange/users/malwaretech/statuses/112277613039708137
@malwaretech @filippo @dangoodin so I pulled the github keys of 1.4k people who follow me on github, and: P521 is used more than P384, but it's all tiny volumes compared to the actually correct option of ed25519. I don't think P521 (or, in general ECDSA) keys are that widely used, either that or my followers are smarter or dumber than the average
$ cat keys | awk '{print $1}' | sort | uniq -c
50 ecdsa-sha2-nistp256
1 ecdsa-sha2-nistp384
8 ecdsa-sha2-nistp521
3 sk-ecdsa-sha2-nistp256@openssh.com
14 sk-ssh-ed25519@openssh.com
828 ssh-ed25519
875 ssh-rsa
benjojo
replied 15 Apr 2024 22:29 +0000
in reply to: https://abyssdomain.expert/users/filippo/statuses/112277581002122072
@filippo The 2015 survey had ECDSA keys as near nil levels, but that was also before you could even slightly reliably use them. I don't have the DB on hand (I'm abroad right now), but I don't remember seeing P521 being popular at all
benjojo
replied 15 Apr 2024 22:16 +0000
in reply to: https://abyssdomain.expert/users/filippo/statuses/112277508981660837
@filippo there is some small irony here in that the people most likely impacted here are the configuration ricers, I doubt many people have/had P-521 keys on the go, other than people blindly trying to hit the highest numbers possible
Being the first user of a syscall (at least as far as github code search can see) in your programming language comes with some nerd cred... and some extremely bizzare bugs that are now entirely my problem to resolve. Currently dealing with a weird case of hitting a weird getsockopt on a socket, and only websockets breaking down, H2 etc still works, so it's not like I broke bi-directional sockets. Extremely strange. Maybe I should just stop reading kernel code/man pages and just succumb to learning how eBPF works rather than doing mildly bizzare syscalls/sockopts to get what I want
benjojo
replied 15 Apr 2024 20:55 +0000
in reply to: https://chaos.social/users/timezone/statuses/112275954530961018
@timezone Bonus tip, when your tables get big enough, it's well worth the effort to dump each table into it's own .sql file. So you can easily recover each table individually if you blow up just one table, or restore more than one table at once
benjojo
replied 15 Apr 2024 08:34 +0000
in reply to: https://fedi.astrid.tech/objects/415037d7-bb0d-46b3-97bc-7340e6b7f630
benjojo
replied 14 Apr 2024 17:00 +0000
in reply to: https://chaos.social/users/HeNeArXn/statuses/112270455412466982
@HeNeArXn It would appear that musl does not care for the more weird stuff: https://git.musl-libc.org/cgit/musl/tree/src/network/inet_aton.c
Mildly interesting post that measures the RTT between AWS availability zones: https://www.bitsand.cloud/posts/cross-az-latencies/#top-ten-slowest-pairs At the worst end, 2.42ms can stack up very quickly if your application is in one AZ, but your DB is in another!
benjojo
replied 14 Apr 2024 15:49 +0000
in reply to: https://benjojo.co.uk/u/benjojo/h/66QHvBgf35zcy2Y2m4
Of course, inet_aton's other legacy will be all of the "trick shot" XSS / WAF bypasses that it allows, since nearly everything is a valid IP address with that damn function. During the time where I was the maintainer of a largely deployed WAF product, inet_aton was a constant pain in the ass due to all of the creative ways you could fit IP addresses in places that should not have IP addresses in them.
benjojo
replied 14 Apr 2024 15:09 +0000
in reply to: https://mastodon.social/users/cks/statuses/112265954062793153
@cks I think the DIMM trains just fine (at least looking at the BMC seems to imply so), it's just when the DIMM then "enters the ring" it triggers so many correctable errors so quickly that the CPU just CATERR's out. The whole memory system is magic, but i'm kind of surprised that the system is not smart enough to "kick out" a DIMM that is partially bad (trains fine, can't reliably remember things)
benjojo
replied 14 Apr 2024 15:07 +0000
in reply to: https://mastodon.gamedev.place/users/MissAemilia/statuses/112265705142783377
@MissAemilia Yeah the issue was two fold, one that this was a blade that had not yet had it's IPMI reset, so I needed to boot it in order to see those messages, two the serial console/VGA console could not init before the bad DIMM would take the system down The second issue was that the chassis/firmware/whatever had a limit of how many ECC correctables can happen in a short time, this DIMM seemed to have DDR4 trained just fine, but instantly blew past this limit to the point where the CPU CATERR'd
benjojo
replied 13 Apr 2024 19:39 +0000
in reply to: https://mastodon.social/users/lmierzwa/statuses/112265559326098530
Who would win? 15 working DDR4 DIMMs or 1 single DDR4 DIMM that ECC errored so hard the system decided it was not worth getting to the point of even telling me what DIMM had gone bad at startup
Once again proving that every checkbox has a story...
benjojo
replied 12 Apr 2024 13:51 +0000
in reply to: https://unstable.systems/users/demize/statuses/112258552929439563
@demize That being said, I still prefer email to getting random telegram/discord/IRC/etc from my customers/prospects. So much that I redirect them on purpose into email. It's just so much easier to manage a lot of email than it is instant messaging, since lots of email is not a uncommon problem for someone to have. The other issue is that I've now developed email client opinions, even though I use web gmail still, I yearn for the old school office outlook... I totally understand some of the features that exist in that program now
benjojo
replied 12 Apr 2024 13:45 +0000
in reply to: https://unstable.systems/users/demize/statuses/112258547843967049
@demize It's safe to say I've gotten over any reservations I had around sending email/messages to people. I barely even think before hitting Ctrl+Enter now
benjojo
replied 12 Apr 2024 13:42 +0000
in reply to: https://benjojo.co.uk/u/benjojo/h/69gmX1d91L1YV4vd2S
Update to the "how is Ben's life doing" as measured by email. I'm not entirely at what point this nose dives into flames.
benjojo
replied 12 Apr 2024 10:07 +0000
in reply to: https://uwu.social/users/alice/statuses/112257453869060348
@alice https://www.crowdsupply.com/1bitsquared/glasgow , basically a very useful hardware signals debugging / prototyping tool
!!! My Glasgow I ordered in 2020 has arrived!
benjojo
replied 11 Apr 2024 21:10 +0000
in reply to: https://kind.social/users/PurpleJillybeans/statuses/112254481258843208
@PurpleJillybeans are you sure you have the right device? What does lsusb say? If possible could we redirect this to email? Ben+vga@benjojo.co.uk