[00:22:34] *** Quits: vishwin_ (~alliek@wikimedia/O) (Ping timeout: 250 seconds)
[00:24:03] *** Joins: vishwin_ (~alliek@wikimedia/O)
[00:44:16] *** Joins: zuron7 (~zuron7@122.166.180.255)
[00:54:43] *** Quits: yossarian-bot (~yossarian@104.131.177.124) (Remote host closed the connection)
[00:54:55] *** Joins: yossarian-bot (~yossarian@104.131.177.124)
[00:54:58] *** ChanServ sets mode: +v yossarian-bot
[00:56:42] *** Quits: yossarian-bot (~yossarian@104.131.177.124) (Remote host closed the connection)
[00:56:53] *** Joins: yossarian-bot (~yossarian@104.131.177.124)
[00:56:56] *** ChanServ sets mode: +v yossarian-bot
[00:57:24] *** Quits: yossarian-bot (~yossarian@104.131.177.124) (Remote host closed the connection)
[00:57:37] *** Joins: yossarian-bot (~yossarian@104.131.177.124)
[00:57:39] *** ChanServ sets mode: +v yossarian-bot
[00:58:37] *** Quits: yossarian-bot (~yossarian@104.131.177.124) (Remote host closed the connection)
[00:59:49] *** Joins: yossarian-bot (~yossarian@104.131.177.124)
[00:59:52] *** ChanServ sets mode: +v yossarian-bot
[01:01:27] *** Quits: yossarian-bot (~yossarian@104.131.177.124) (Remote host closed the connection)
[01:01:39] *** Joins: yossarian-bot (~yossarian@104.131.177.124)
[01:01:56] *** ChanServ sets mode: +v yossarian-bot
[01:03:41] *** Quits: yossarian-bot (~yossarian@104.131.177.124) (Remote host closed the connection)
[01:03:52] *** Joins: yossarian-bot (~yossarian@104.131.177.124)
[01:03:55] *** ChanServ sets mode: +v yossarian-bot
[01:14:21] <gsingh93> looks like w00tburger isn't here anymore
[01:15:03] <gsingh93> but as far as i know, the only way to dump a router's firmware is to open it up, find the firmware chip, buy or build some tools, and dump it
[01:15:31] <gsingh93> i've been meaning to do it, i got everything i need except a soldering iron
[01:20:22] <gsingh93> in other news, this ergonomic keyboard i got from work has been life changing
[01:20:32] <gsingh93> i can actually type without experiencing excruciating pain
[02:10:23] <sivoais> hmm, I haven't touched hardware in a while. I know that the Cisco routers store stuff in nvram
[02:20:05] <gsingh93> yea, that's where you flash ddwrt
[02:23:04] <m0shbear> speakin of ergonomics, i need to raise the table at work due to neck extensor fatigue from neck hunched over
[02:23:52] <m0shbear> gsingh93: define excrutiating in terms of /where/ it hurts
[02:24:02] <m0shbear> prolly carpal tunnel RSI
[02:29:08] <gsingh93> m0shbear: i've felt the strange tingling/numbness from carpal once
[02:29:12] <gsingh93> it was pretty terrifying
[02:29:21] <gsingh93> but i'm pretty sure i just have tendonitis
[02:30:07] <m0shbear> it's not /that/ strange
[02:30:38] <m0shbear> you're just unaware of radial nerve entrapment symptoms
[02:31:03] <gsingh93> lol, i'd like to stay unaware for as long as possible
[02:31:21] <gsingh93> i didn't actually know that's how carpal tunnel felt
[02:31:24] <gsingh93> then i googled it
[02:31:32] <gsingh93> and freaked out
[02:35:01] <gsingh93> does anyone know if MAP_PRIVATE/MAP_SHARED make any difference when using MAP_ANONYMOUS with mmap?
[02:35:11] <gsingh93> i thought they only applied to MAP_FILE
[02:35:20] <gsingh93> but they're still required with MAP_ANON
[02:54:48] <sivoais> Yeah, I used to have the problem. Shooting pain down one arm. I started taking my posture more seriously after that.
[02:55:17] <sivoais> <http://www.slideshare.net/dreamwidth/be-kind-to-your-hands>
[02:55:17] <yossarian-bot> Title: Unknown
[02:55:33] <sivoais> "Be Kind To Your Wrists (you’ll miss them when they’re gone) "
[02:55:47] <sivoais> I bought wrists braces after going to a conference with that ^ talk
[02:57:26] <sivoais> Used those to help force me to type with raised hands. I don't need them anymore for most typing. They also helped because I noticed that slept with my wrists in a very odd position.
[02:58:42] <sivoais> m0shbear: stick some phone books under the desk? Do you need it to be quickly adjustable?
[02:59:29] <sivoais> At home, I use a kitchen table for my desk. Plenty of workspace and room for my legs to move around as I lean back.
[02:59:51] <sivoais> Everything else felt too small.
[03:01:04] <sivoais> hmm, it's been a while since I had to look at mmap
[03:01:40] <sivoais> according to mmap(2) on my Linux box: The use of MAP_ANONYMOUS in conjunction with MAP_SHARED is supported on Linux only since kernel 2.4.
[03:02:43] <gsingh93> the man page for mmap is a beast
[03:02:55] <m0shbear> sivoais: it's somehow adjusted by the cubicle wall thing
[03:03:06] <sivoais> ah, one of those
[03:03:28] <m0shbear> >shooting arm pain
[03:03:40] <m0shbear> how'd you entrap the radial nerve that well?
[03:04:01] <sivoais> I think it was mostly sleeping wrong.
[03:04:18] <sivoais> wasn't helped that I was typing on a laptop keyboard most days
[03:05:14] <sivoais> but it's gone now... was pretty scary to have that in my early 20s
[03:05:33] <sivoais> I installed xwrits to alert me take a break from typing every now and then
[03:07:58] <m0shbear> i had radial nerve numbnesses from not taking breaks during guitar practice and/or half-assing warmups >_>
[03:09:38] <sivoais> yeah, I've got one of those hand grippers near my desk to grab for when I'm thinking/reading rather than typing
[03:09:50] <sivoais> it's in a box...gonna go grab it
[03:10:12] <m0shbear> hand grippers are more conditioning so wrists don't get used to underloading thus lowering work capacity without breaks
[03:12:53] <woodruffw> !ping
[03:12:53] <yossarian-bot> woodruffw: pong 1453623173
[03:13:02] <sivoais> !theo
[03:13:02] <yossarian-bot> Totally false.
[03:13:05] <sivoais> lol
[03:13:13] <woodruffw> heh
[03:18:03] <sivoais> Frequent stretching is the one thing that helps me the most. Feels good too. Overhead and behind my head with my hand on my elbow.
[03:20:24] <sivoais> lol, I'm also the kind of person that spins pens between my fingers like that Bond villain
[03:22:08] <sivoais> YES, I AM INVINCIBLE! *freezes*
[03:23:15] *** Quits: zuron7 (~zuron7@122.166.180.255) (Ping timeout: 240 seconds)
[03:24:20] <m0shbear> >frequent stretching
[03:24:37] <m0shbear> warmups are better
[03:25:00] <m0shbear> plus, stretching makes lifting worse since there goes good stiffness
[03:25:33] * sivoais imagines doing jumping jacks before coding
[03:25:46] <m0shbear> i was referring to wrist warmups
[03:26:07] <m0shbear> tho fuck if i know what the scales equivalent is for typing
[03:26:16] <sivoais> haha
[03:30:21] *** Joins: zuron7 (~zuron7@122.166.180.255)
[03:34:32] *** Quits: zuron7 (~zuron7@122.166.180.255) (Ping timeout: 250 seconds)
[04:39:09] *** Joins: zuron7 (~zuron7@122.167.44.46)
[05:09:26] *** Quits: zuron7 (~zuron7@122.167.44.46) (Ping timeout: 250 seconds)
[09:30:34] *** Joins: majora (~majora@guest-pool2-19-003.guest.nat.upenn.edu)
[09:41:24] *** Quits: majora (~majora@guest-pool2-19-003.guest.nat.upenn.edu) (Ping timeout: 272 seconds)
[14:47:55] *** Quits: wilfriedE (~wilfriedE@bryn.justinwflory.com) (Quit: It's probably about that time.)
[14:49:46] *** Joins: wilfriedE (~wilfriedE@bryn.justinwflory.com)
[16:25:46] <gsingh93> yay, solve my first kernel exploit problem
[16:26:36] <gsingh93> s/solve/solved/
[16:26:36] <yossarian-bot> gsingh93 probably meant: yay, solved my first kernel exploit problem
[16:29:32] <gsingh93> also, remember when i mentioned calling a syscall from kernel mode?
[16:29:37] <gsingh93> it seems to segfault when that happens
[16:29:48] <gsingh93> woodruffw: ^
[16:31:41] <woodruffw> gsingh93: yeah, that doesn't surprise me
[16:31:45] <woodruffw> this is linux, right?
[16:31:49] <gsingh93> yup
[16:32:13] <woodruffw> hmm
[17:41:47] <sivoais> what about sys_open ?
[17:42:01] <gsingh93> sivoais: i haven't tested it, but that should work
[17:42:17] <gsingh93> if i wanted to do what i was doing, i could directly have called the `sys_*` functions
[17:42:27] <gsingh93> although i'd have needed to get their addresses from /proc/kallsyms
[17:42:39] <gsingh93> i couldn't output to stdout though
[17:42:55] <gsingh93> actually maybe i could
[17:43:05] <gsingh93> not completely sure
[17:43:37] <gsingh93> iangcarroll: i just tested out loggly and splunk, i think splunk is superior
[17:43:50] <iangcarroll> probably
[17:43:51] <iangcarroll> loggly is free :p
[17:44:01] <iangcarroll> s/loggly is free/loggly is free, though
[17:44:01] <yossarian-bot> iangcarroll probably meant: loggly is free, though :p
[17:44:15] <gsingh93> splunk is free
[17:44:31] <iangcarroll> not hosted though
[17:44:46] <gsingh93> i think they have a free hosted plan
[17:44:51] <gsingh93> but it's not that great
[17:44:57] <gsingh93> but hosting isn't a problem
[17:45:14] <iangcarroll> how is it?
[17:45:24] <iangcarroll> and jesus their 1GB/day plan is $108/month
[17:45:32] <gsingh93> lol
[17:45:44] <iangcarroll> $810/mo for 5GB/day on the non-light splunk
[17:45:58] <gsingh93> lol, it's meant for enterprise use i guess
[17:46:00] <gsingh93> fb uses it
[17:46:06] <gsingh93> but hosting it yourself is fine
[17:48:00] <iangcarroll> so how is it?
[17:48:31] <gsingh93> i find filtering data much easier in this
[17:48:48] <gsingh93> actually, you should just set it up yourself
[17:48:51] <gsingh93> it's super simple
[17:49:01] <iangcarroll> activating my trial rn
[17:49:25] <gsingh93> grab some large apache log file and upload it
[17:49:49] <gsingh93> i find the "interesting fields" section on the left column useful too
[17:50:38] <iangcarroll> i'll import certly's CT log's log
[17:53:21] <iangcarroll> lol this is gonna take a while
[17:56:13] <iangcarroll> lol nvm zipped to 4% of its original size
[17:57:23] <iangcarroll> does it process nginx logs?
[17:57:31] <iangcarroll> this fancy modal only shows apache/IIS under web servers
[17:57:48] <gsingh93> does nginx use a different logging format?
[17:57:56] <gsingh93> i thought access logs formats would be the same
[17:58:13] <iangcarroll> dunno, never really used apache
[17:58:32] <iangcarroll> xx.xx.xx.xx - - [24/Jan/2016:06:44:42 -0600] "GET /ct/v1/get-sth HTTP/1.1" 200 696 "-" "Go 1.1 package http"
[17:59:35] <gsingh93> that'll work
[17:59:41] <gsingh93> same format
[18:00:23] <iangcarroll> how do I upload >500MB files?
[18:00:43] <gsingh93> split them
[18:00:49] <gsingh93> tail -c 500M
[18:02:33] <iangcarroll> 👍
[18:04:26] <iangcarroll> Unspecified upload error. Refresh and try again.
[18:04:28] <iangcarroll> lol
[18:04:46] <iangcarroll> alright, uploading a 5MB chunk
[18:05:31] <gsingh93> :(
[18:05:41] <gsingh93> my server doesn't have enough memory for some of these searches
[18:05:42] <gsingh93> lol
[18:06:09] <iangcarroll> add 20GB of swap
[18:06:09] <gsingh93> i probably should have expected that with 512M of RAM
[18:07:26] <gsingh93> so you can generate tables straight out of the searches apparently
[18:07:51] <gsingh93> i was trying to do so `<search here> | stats values(referer)
[18:07:52] <iangcarroll> this is p neat
[18:08:07] <gsingh93> yea
[18:08:21] <gsingh93> it's really easy to filter by something just by hovering over it in the logs
[18:09:17] <iangcarroll> lol, one person is 59.22% of all requests to log.certly.io
[18:10:24] <gsingh93> lolol
[18:12:58] <iangcarroll> Error in 'delete' command: You have insufficient privileges to delete events.
[18:12:58] <iangcarroll> tfw
[18:13:38] <iangcarroll> i'm gonna deploy this though, it's really neat
[18:13:48] <gsingh93> (y)
[18:14:04] <gsingh93> make sure you have more than 512M of ram
[18:14:06] <gsingh93> lol
[18:14:37] <iangcarroll> time to use all the cloud credit
[18:15:02] <gsingh93> how long will that last?
[18:15:10] <iangcarroll> 1yr
[18:15:21] <gsingh93> that's pretty good
[18:15:25] <gsingh93> how much can you upload?
[18:15:38] <iangcarroll> what do you mean?
[18:16:08] <gsingh93> you're using splunk cloud right?
[18:16:22] <iangcarroll> not anymore
[18:16:25] <iangcarroll> that shit's expensive
[18:16:33] <gsingh93> oh, i thought you were talking about that trial
[18:16:33] <iangcarroll> i was using a trial
[18:16:42] <iangcarroll> oh, no, i'm deploying it to rackspace now
[18:16:45] <gsingh93> where are you getting all these cloud credits from?
[18:16:55] <iangcarroll> generous companies :p
[18:17:07] <iangcarroll> softlayer and rackspace all give $1-$2k/mo to startups
[18:17:20] <gsingh93> ah, i see
[18:30:04] <iangcarroll> alright, 167.2% CPU indexing 2.6 GB of logs
[18:31:03] <gsingh93> oh, btw ian, i found the third and hopefully final backdoor in my wordpress site
[18:31:08] <gsingh93> the reason i didn't catch it before
[18:31:17] <gsingh93> is because it was in the index.php one directory above my wordpress folder
[18:31:23] <gsingh93> lol
[18:31:30] <gsingh93> it was including some php code in /tmp
[18:31:39] <gsingh93> they called it "mail.log.9.bak"
[18:31:40] <gsingh93> lol
[18:33:21] <iangcarroll> ah, lol
[18:33:25] <gsingh93> err, technically it wasn't a backdoor
[18:33:34] <gsingh93> let me upload the php file in case someone wants to take a look
[18:33:43] <iangcarroll> why would it be put in /tmp?
[18:33:49] <iangcarroll> that gets wiped every reboot
[18:34:03] <gsingh93> it's a shared host, i bet it almost never reboots
[18:34:28] <iangcarroll> "Daily indexing volume limit exceeded today. See License Manager for details."
[18:34:30] <iangcarroll> q.q
[18:34:37] <gsingh93> lol really?
[18:34:40] <m0shbear> lol
[18:34:46] <gsingh93> also, pastie.org is down?
[18:35:01] <iangcarroll> uh oh
[18:35:04] <iangcarroll> that's a cloudflare error
[18:36:03] <m0shbear> google says splunk
[18:36:19] <gsingh93> http://pastebin.com/aHwEjiwS
[18:36:36] <gsingh93> the way i found it was by removing parts of the site until i had simplfied it down to only a few things
[18:36:37] <gsingh93> lol
[18:36:39] <gsingh93> so high tech
[18:38:43] <iangcarroll> i guess the license cap only blocks uploading new files
[18:38:46] <iangcarroll> cuz it processed it all
[18:40:00] <gsingh93> iangcarroll: take care of some fb spam right now
[18:40:17] <iangcarroll> ugh
[18:40:21] <gsingh93> i'm getting that fake account closed
[18:40:31] <gsingh93> also, before deleting any spam, send me the link to the account
[18:40:35] <gsingh93> i'll get them all closed
[18:40:51] <iangcarroll> oh, did you mean taking?
[18:40:54] <iangcarroll> i thought someone posted spam
[18:41:19] <iangcarroll> and will do
[18:41:24] <gsingh93> someone did post spam
[18:41:37] <gsingh93> lol, i wonder if frank or ari took care of it
[18:41:41] <iangcarroll> ah
[18:41:48] <gsingh93> see how a report log would be useful :P
[18:41:52] <iangcarroll> lol
[18:42:11] <iangcarroll> i flagged the spam URLs from earlier in TX as well
[18:42:16] <gsingh93> cool
[18:42:24] <gsingh93> these spammers are pretty impressive though
[18:42:32] <gsingh93> these accounts are like 4 years old
[18:42:40] <gsingh93> planning ahead
[18:43:39] <iangcarroll> lol
[18:43:44] <iangcarroll> not hacked?
[18:45:16] <gsingh93> no, they have no posts
[18:45:22] <gsingh93> they're clearly just for spamming
[18:45:49] <iangcarroll> ah
[18:56:08] <iangcarroll> splunk might be fun when I start getting the URL feed from VT
[18:56:26] <gsingh93> that would be cool
[19:42:49] <iangcarroll> i wonder what happens when your GHE license expires
[19:43:00] <iangcarroll> gonna find out in 9 days if GitHub doesn't reply to me :p
[19:54:54] <iangcarroll> splunk is still annoyed about license violations but the forwarder is running now
[22:26:42] <sivoais> !theo
[22:26:43] <yossarian-bot> It is pretty clear you are a troll.
[22:26:50] * sivoais hides
[23:24:33] <gsingh93> lolol
[23:24:37] <gsingh93> capital one emailed me
[23:24:48] <gsingh93> and said that they're increasing the password security requirements
[23:25:02] <gsingh93> and then they said
[23:25:04] <gsingh93> "If February 5 rolls around and your password still doesn't meet these updated requirements, you'll automatically be prompted to change your password when you try to sign in to your account. "
[23:25:08] <gsingh93> you know what that means...
[23:26:04] <gsingh93> (plaintext passwords)
[23:58:26] *** Joins: majora (~majora@205.204.23.189)