home tags events about login

benjojo rss

Hope you never notice the outages I cause. Knows where the RFC2616 bodies are buried. recurse.com SP'2 18

Follow me using: @benjojo@benjojo.co.uk in your client

benjojo posted 22 Jun 2024 20:07 +0000

.

OH: I mean yeah, I have been taking notes.. well I mean every single time this thing's comes up I update my CV

benjojo replied 22 Jun 2024 20:06 +0000
in reply to: https://glauca.space/users/q/statuses/112662045219890468

OH: I mean yeah, I have been taking notes.. well I mean every single time this thing's comes up I update my CV

OH: I mean yeah, I have been taking notes.. well I mean every single time this thing's comes up I update my CV

@q oh. Fucking honk. I forgot about that feature, one moment removing and reposting

benjojo posted 22 Jun 2024 12:55 +0000

Having this as my default www root page to scare all security auditors to stone

A Windows XP IE6 window on http://localhost and the page contents is a big windows XP logo saying "Your web service is now running" "Welcome to IIS 5.1" and "to add documents to your default website, save files in C:\inetpub\wwwroot"

benjojo replied 21 Jun 2024 15:15 +0000
in reply to: https://benjojo.co.uk/u/benjojo/h/6v3m4x8V26367dv4Cr

DZ: Trump Media Org + Weird BGP Policy Stuff

DZ: Trump Media Org + Weird BGP Policy Stuff

You may be wondering how a personal network got such a low AS Number in the first place to then sell afterwards,

It turns out a few years ago one of the old Canadian (GONET) state/research networks gave back a whole bunch of ASNs they were not using, and ARIN allocated those very low ASNs to basically whoever applied first! AS954 being a former GONET ASN.

benjojo posted 21 Jun 2024 15:13 +0000

DZ: Trump Media Org + Weird BGP Policy Stuff

DZ: Trump Media Org + Weird BGP Policy Stuff

Interesting, it appears that AS954 (formally owned by a personal/hobby network operator) has (very likely) sold it to the Trump Media Organisation.

It's kind of interesting that they were interested in that in the first place, a low asn number has some sort of prestige in some circles despite it basically just being an integer, but it has no technical upside.

I assume AS954 will be hosting truth social eventually, I presume the thinking is that running stuff on your own AS will be more resilient against IaaS providers taking them down due to content policy.

(I've censored some of this screenshots primarily because I don't think anybody should be harassing any of the parties involved, so don't go and do that)

A screenshot comparing the whois output to AS954 from before the assumed sale to after, the current screenshot says the AS is owned by TMTG in Florida

benjojo posted 20 Jun 2024 19:55 +0000

Longest day of the year and a pretty sunset to boot, got this nicely timed and aligned photo as well

A photo of two lamp posts during sun insert with a plane which is low altitude flying in between them

benjojo posted 19 Jun 2024 12:39 +0000

Rust is actually a giant state-backed project by the Serbian government to raise more money from their domain name operation by encouraging more people to buy .rs domains

benjojo posted 18 Jun 2024 19:47 +0000

Cannot get over the freeagent cat (they are called Winston!!), why do I want to pet the accounting software cat so much

7xNtW8nZJsp4glCH9D.png

benjojo posted 18 Jun 2024 13:44 +0000

mmm software supply chain, I do love it when the JS console of my energy suppliers website has a advert for a opensource companion browser extension just hanging around in there.

A chrome dev tools screenshot for ovoenergy.com, the JS console has "Download the apollo devtools for a better development experience (URL)" in it

benjojo replied 18 Jun 2024 11:42 +0000
in reply to: https://benjojo.co.uk/u/benjojo/h/63ZrYwmWNJ7bS4srW9

In the end, it appears that Sparkle accepted the /3 from Airtel, and then Orange, Cogent, GTT and NTT also accepted it from Sparkle.

At least one of those carriers has now fixed their filters, that were faulty due to (in JunOS land)

route-filter 0.0.0.0/0 prefix-length-range /7-/0

not being:

route-filter 0.0.0.0/0 prefix-length-range /0-/7

Airtel fixed their stuff around 04:40 UTC today

benjojo posted 17 Jun 2024 22:37 +0000

aaaaaaaaaaaaaaaaaaa

public@route-server.as3257.net-re1> show route 96.0.0.0/3 

inet.0: 943745 destinations, 9398090 routes (943743 active, 1 holddown, 1 hidden)
+ = Active Route, - = Last Active, * = Both

96.0.0.0/3         *[BGP/170] 01:45:04, MED 0, localpref 100, from 213.200.87.89
                      AS path: 3257 6762 9498 I, validation-state: unverified

Looks like AS9498 (Bharti Airtel) typo'd a /32, /31 or /30. And turned it into a /3 (aka, 12.5% of the IPv4 internet) and other carriers accepted it!

benjojo posted 17 Jun 2024 15:40 +0000

it may not look like it, but this is what peak performance looks like

(this is also what just took out bgp.tools if anyone noticed)

A console showing a lot of syslog messages with "watchdog: BUG: soft lockup"

benjojo replied 17 Jun 2024 08:28 +0000
in reply to: https://mastodon.nz/users/phil_stevens/statuses/112628829932223933

@phil_stevens they do actually serve some kind of purpose in the market, all be it marginal.

Because they act as instantaneous market makers they effectively allow you to buy and sell shares with low volume basically instantly, and some markets that's actually extremely useful.

The rest of their core business strategy is a little bit murky, but I take some pleasure in knowing that they are mostly just plundering other HFT firms

benjojo posted 16 Jun 2024 11:27 +0000

DZ: ukpol

DZ: ukpol

Mmm my likely new MP has never been a MP before, meaning I have no voting record to judge him on. However does lead the Labour NEC so I assume they are just shoving someone in a very safe seat

benjojo posted 12 Jun 2024 15:19 +0000

It has been 0 days since DNSSEC took some mildly important thing down. Today, The entire TLD of Liberia (.LR)

$ dig 1xbet.com.lr. @1.1.1.1

; <<>> DiG 9.16.48-Ubuntu <<>> 1xbet.com.lr. @1.1.1.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status:SERVFAIL, id: 11217
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; EDE: 6 (DNSSEC Bogus): (for DNSKEY lr., id = 29984)
;; QUESTION SECTION:
;1xbet.com.lr.            IN    A

https://dnsviz.net/d/1xbet.com.lr/Zmm78A/dnssec/

DNSSEC is more successful than DDoS at taking out large sites it seems

A DNSVIZ graph showing DNSSEC errors at dot LR

benjojo replied 11 Jun 2024 21:13 +0000
in reply to: https://mastodon.social/users/cks/statuses/112599993273935822

@cks Hah, the issue I was having was mostly with the "ISO from my browser" function of the newer MegaRAC.

The way they all work is that they start a websocket, and the websocket carries USB frames from your browser to the actual computer (aka a websocket gets plugged directly into one of your CPU's (AMD) or PCH's (Intel) USB pins)

This ofc does mean that MegaRAC's HTML5 thing contains a full USB Mass Storage device device implementation. If you didnt know this already, I apologise for the mental harm that it might have caused

benjojo posted 11 Jun 2024 16:45 +0000

I get the impression that whoever is writing the "Remote KVM" parts of modern IPMI does not have to suffer with what they have created

benjojo posted 11 Jun 2024 13:22 +0000

Seagull 1: AAAAAAAAAAA

Seagull 2: Also AAAAAAAA

Two seagulls walking next to each other on a sandy beach, they both have their beaks open as if they are screaming at the ground

benjojo posted 09 Jun 2024 18:44 +0000

Toilets With Threatening Auras

A photo of a bathroom with a toilet in it, surrounded by telephones and large grandfather clocks

benjojo replied 06 Jun 2024 10:18 +0000
in reply to: https://furry.engineer/users/uvok/statuses/112568027570439767

@uvok RDNS "SLA"'s are on https://bgp.tools/features

Forward DNS is done every ~14 days or so.

Both data sources are resolved "in rack" on AS206924. There used to be a button to force a RDNS update, but it's a little messy and I'd just direct people to wait a few days for it to update instead.

v4 RDNS updates work by checking everyones DNS SOA's regularly, and if they have changed then it rescans, assuming it has not already done so for since last week.

benjojo posted 05 Jun 2024 19:14 +0000

As part of the new normal, whenever a friend visits we do a TFL Hidden London tour, this time, Piccadilly!

I love the post apocalyptic underground vibe these tours always have

Various photos of underground tunnels

Various photos of underground tunnels

Various photos of underground tunnels

Various photos of underground tunnels

benjojo replied 04 Jun 2024 11:47 +0000
in reply to: https://altelectron.org.uk/objects/5fe978de-ca8e-463d-ae6d-9e4c5315a4c4

@tj I'm not doing any high speed forwarding, I'm basically just looking for a modern 10/25G SFP NIC that has stable drivers. Most of my workload is TCP flows (aka, this is the future box that bgp.tools runs on). No VM's, so fancy SR-IOV is not needed etc

I plan to add ~50k PPS of UDP to it at some point, but that could easily be moved do another box with a X520 that I universally trust to not go wrong

benjojo posted 04 Jun 2024 11:01 +0000

Fielding Opinions on modern NICs: Intel E800 series or CX6 (or above?)

Not really a user of fancy features, I just need a NIC with drivers that don't want to kill me


I do not wish to see or be seen by Broadcom or Intel XL710