-
tom
If I made a XMPP server with an OpenNIC domain, how many of you would I not be able to communicate with, and of that how many/which of you would refuse to implement/resolve OpenNIC domains?
-
Martin
I don't know for my server. I didn't knowingly block something related.
-
christian
tom: try it.
-
christian
I never heard before of OpenNIC. But it sounds like a funny idea :)) i will take a look.
-
tom
christian: thanks
-
menel
The question is, what does Debian and prosody do by default? --> thats what determinates it..
-
menel
Is it depended on my default DNS server?
-
jonasβ
yes
-
tom
menel: it's nothing to do with debian or prosody
-
tom
it's a matter of your recursive resolver configuration and perhaps system trust
-
Martin
Can you give us an example domain?
-
moparisthebest
you'd have to configure your server to resolve opennic domains, also that's not as easy as it used to be because some formerly opennic TLDs are now gTLDs too right ?
-
Martin
Sounds like a huge hassle for little gain.
-
Martin
Are this domains widely used?✎ -
Martin
Are these domains widely used? ✏
-
moparisthebest
https://en.wikipedia.org/wiki/OpenNIC#OpenNIC_namespaces
-
Martin
Where's Holger? > Server-to-server connection failed: connection refused fu-berlin.de
-
Licaon_Kter
Can't contact him because...lol
-
Martin
Maybe he does digital detox and switched off the whole university server. π
-
jonasβ
:)
-
Martin
I need to tell him about o.j.n π
-
menel
jabber.fu-berlin.de is online
-
menel
(For me)
-
Martin
π
-
Holger
Heh half my roster is asking. Don't think I've ever seen near as many complaints during a downtime :-)
-
Holger
Moved to a new file system. More room for catpics! (I don't ever expire them on that server.)
-
moparisthebest
built-in alerting, nice
-
menel
Everyone relies on you :-D
-
Holger
It's Friday afternoon, everyone is bored.
-
Licaon_Kter
Holger: aren't you breaking the _no deploys on friday_ rule?
-
menel
Then you have all the weekend time to fix everything again π
-
rob
Ya Friday is the best time
-
rob
Unless it's work, then Monday
-
menel
I always do my stuff on Saturday morning. So if it breaks I have time to fix it.. Because its not work but some teachers at school rely on it nevertheless to a point ..
-
Martin
Holger: You don't expire uploads? OMG, how much storage did you accumulate with all your students sharing catpics?
-
mjk
Catpics are sacred! Once copied, they shalt not be smitten
-
octagon
sudo duperemove -hdr /var/lib/ejabberd/upload
-
Wiktor
octagon: it'd be cool if the http upload spec indicated a way for the server to return get url *after* file upload. Thus one could deduplicate files (via hashes) at upload time :)
-
moparisthebest
Wiktor: different URLs don't imply not deduplicated
-
moparisthebest
But, fair :)
-
Wiktor
Yeah, one could symlink to the original file after upload or sth like that :)
-
Martin
Server could have a mapping and serve the very same file for different URLs I guess.
-
Martin
Symlinking sounds ugly.
-
mjk
Hardlinking!!1
-
mjk
But yes, identifying files by an SHA is more elegant
-
moparisthebest
symlink, hardlink, filesystem (btrfs/zfs/?) level de-duplication, the possibilities are endless
-
mjk
(Until sha du jour is broken in a way MD5 is)
-
Martin
Sending the hash first and don't upload the file if it already exists would also be nice but maybe overengineered.
-
octagon
Martin, that would allow users to enumerate existing files
-
Martin
Hmm, what would you gain from knowing this file is already on the server?
-
mjk
Martin: you could report it to the authorities!
-
xorman
using IPFS for storage is a mixture of all these things
-
Martin
So the authorities will know you also have 'illegal file'.
-
ben
dedup by sha hash would be super useful imo
-
mjk
Martin: right :D
-
octagon
just use btrfs, compress-force for all plaintext and executables, duperemove on cron/systemd timer for everything else
-
ben
is it possible to convert ext4 to btrfs in-place?
-
mjk
Martin: seriously though, it makes it easy for copyrats to rummage through your server in search of unauthorised copies
-
moparisthebest
ben, yes, but I haven't tried it https://wiki.archlinux.org/index.php/Btrfs#Ext3/4_to_Btrfs_conversion
-
moparisthebest
I use btrfs on everything though
-
Martin
> Martin: seriously though, it makes it easy for copyrats to rummage through your server in search of unauthorised copies I don't give them an account. π
-
ben
interesting
-
octagon
do *not* attempt ext-to-btrfs, it has been broken for years, it will immediately and irrevocable corrupt your partition
-
ben
thanks for the head's up
-
ben
i've not had issues with ext4
-
Martin
I'm not brave enough for anything else than ext4. Btrfs already annoyed me on my Jolla.
-
octagon
btrfs is well worth it
-
moparisthebest
I don't see such a warning here https://btrfs.wiki.kernel.org/index.php/Conversion_from_Ext3/4_and_ReiserFS
-
octagon
moparisthebest, that page hasn't been updated since august 2018
-
moparisthebest
I've been using btrfs since ~2011, in that time, I had 1 problem with it that caused it to go read-only, had to copy files off to another FS, and ext4 corrupted-beyond-repair for read+write twice
-
moparisthebest
pretty good ratio :D
-
moparisthebest
also both those were caused by a shoddy PSU
-
frog
octagon: what's the one killer btrfs feature for me with my baby server with a single 2.5" HDD?
-
moparisthebest
frog, snapshots+backups with btrfs send/receive
-
octagon
checksumming, scrubbing, compression, and dedupe
-
ben
i do daily vm-level backups with proxmox-backup-server
-
ben
incremental backups via qemu qcow2
-
octagon
snapshots aren't backups imo
-
menel
> do *not* attempt ext-to-btrfs, it has been broken for years, it will immediately and irrevocable corrupt your partition That's wrong. Its just works, I used it years ago. Its very save and stable. Because you it will not even modify your ext4 and the old ext4 will remain a snapshot that you can even revert to
-
mjk
Martin: > I don't give them an account. π But the http upload servers are publicly and anonimously accessible, so if there was no randomization or salting in the path, anyone could ask the server "do you have the file with this hash?". And salring is another can if worms✎ -
octagon
menel "years ago" I spent an hours stress testing it in a vm on 5.8, it is broken
-
mjk
Martin: > I don't give them an account. π But the http upload servers are publicly and anonimously accessible, so if there was no randomization or salting in the path, anyone could ask the server "do you have the file with this hash?". And salting is another can if worms ✏
-
menel
I suppose you did something wrong. And snapshot you send somewhere of course are backups
-
octagon
btrfs snapshot you send someone is a backup, bot ben mentioned qcow2 snapshots, which I don't think you can send
-
frog
What do you guys use snapshots for? I haven't found a great use for them. My laptop has btrfs, and I make a snap before sysupgrade. I currently use snapraid with a second HDD, which does checksumming and scrubbing. Now compression may be interesting, but what about overhead? Like I said, small servers, dual or quad core armv7 1GHz
-
ben
you can send them to other proxmox servers and restore them
-
menel
https://btrfs.wiki.kernel.org/index.php/Conversion_from_Ext3
-
rob
My favorite is using btrfs raid and adding new drives, even mismatched sizes. It's great for slow upgrading storage
-
Martin
mjk: > Martin: > But the http upload servers are publicly and anonimously accessible, so if there was no randomization or salting in the path, anyone could ask the server "do you have the file with this hash?". And salting is another can if worms No one said the server should tell everybody. While uploading you say 'I'll upload file with hash xyz' and then the server tells you to upload or just gives you the get url if it already exists. No account on that server http-upload says 'forbidden, get lost'.
-
octagon
menel I won't argue, my experience is that conversion is broken and it is far safer to simply do it manually, and rsync the data to a new partition I strongly recommend anyone have a backup if the want to try the inplace conversion
-
menel
Ok, of course I don't know what went on with your test. But its just that this feature is not considered experimental and the web is not full with that it breaks all the time... I would strongly advise that too for important data. So far for me everything worked all the time and I had no issues with btrfs ever. (14TB raid 1) and some single ..
-
mjk
Martin: I mean, GETting is anonimous by design, so that any chat participant can see the catpic
-
rob
> So far for me everything worked all the time and I had no issues with btrfs ever. (14TB raid 1) and some single .. Ya it's been solid
-
Martin
> Martin: I mean, GETting is anonimous by design, so that any chat participant can see the catpic Yes, but the hash is not part of the get url so it won't work
-
mjk
Yep, I was only pointing out a potential problem _if_ the hash was the whole path
-
Wiktor
> do *not* attempt ext-to-btrfs, it has been broken for years, it will immediately and irrevocable corrupt your partition I did that on a laptop 2 years ago and it worked without any issues. π€·ββοΈ
-
Licaon_Kter
octagon: > I strongly recommend anyone have a backup if the want to try the inplace conversion That should be a given...