Centroid.EU Blog
(this blog is mostly encrypted - adults only)||
|
Previous Page
September 30th, 2014
I have pre-ordered this from OpenBSDStore.COM, which is the old
openbsdeurope.com
website. Had some problems manouvering through their site at first but after
an email and assurances that everything was alright from them, I managed to
do my pre-order. Looking forward to having the three disks of freedom in my
hands!
0 comments
September 30th, 2014
I have written two programs that do a tcp traceroute to a remote IP. I plan
on finding the culprit at DTAG that gives me packet loss to my openbsd laptop
from the host io.solarscale.de. I wrote on it most of yesterday and got it
working somehow. Here is the source code for the
server traceroute and here is the source code for the
client traceroute.
The server gets connected upon with telnet and it will spit back some data
while tracing on its side (it doesn't fork), the client will connect to the
echo port or discard port which ever one it finds first and will do a
traceroute. Here a small demonstration of how the server tcp traceroute works:
root@galileo:/home/pjp/mytcptraced # ./mytcptraced 0.0.0.0
now sending from port 88 to port 55233, sending a few lines of test
sending testline 0 length 4
now starting the trace...
1 188.40.5.65 1292 1304
2 213.239.236.81 442 514
3 213.239.245.101 527 610
4 213.239.245.14 5129 5136
5 213.239.245.1 5223 5230
6 80.81.193.7 6095 6103
7 188.174.202.201 12422 13179
8 188.174.202.201 11944 12671
9 188.174.202.201 14382 14854
10
What's so cool about this is that it unearths routers behind NAT, as seen with
188.174.202.201 the last hop. This is my home address at m-net. Unfortunately
it can't unearth the RFC 1918 addresses due to some pretty good NAT on ICMP
timex messages, but knowing that this network goes deep is interesting too.
Anyhow enjoy the code, and play if you wish.
0 comments
September 28th, 2014
I have made wildcarddnsd's linux port rely on LibreSSL. This was not easy
because libressl does not exist in ubuntu or raspbian (the flavours I use).
So what I did was make it rely on libressl 2.0.5, and it extracts .o files
from the .a archive with ar, for functions that it needs. This seems to go
well. Just costs a bit of compile time. Roughly one hour on raspberry pi to
compile libressl 2.0.5.
I also checked all architectures except NetBSD whether they compile so that
I can release wildcarddnsd 0.9.0 in mid-November, as I don't know if I'll
have much time in October to work on it.
0 comments
September 24th, 2014
I was feeling a bit down and wanted to spend money. But not too much money
either. Five dollars isn't gonna kill me. So I donated it to the FreeBSD
foundation. Go Open Source!
0 comments
September 22th, 2014
When I spend my weekends at my parents I usually do all network things as
usual on my netbook. Just that my parents have a different provider (DTAG or
aka Deutsche Telekom). Here is a traceroute from my parents house to my
VPS io.solarscale.de:
Packets Pings
Host Loss% Snt Last Avg Best Wrst StDev
1. fritz.box 0.0% 28 7.5 7.5 6.1 8.5 0.3
2. 217.0.116.43 3.7% 27 60.0 56.3 53.1 70.1 3.3
3. 217.0.67.10 0.0% 27 57.5 58.2 51.7 73.2 3.9
4. f-ed4-i.F.DE.NET.DTAG.DE 0.0% 27 60.9 63.2 58.2 77.5 5.1
5. 62.157.251.34 3.7% 27 61.0 60.1 57.3 62.1 1.0
6. core4.hetzner.de 7.4% 27 61.0 60.6 58.0 64.3 1.2
7. core21.hetzner.de 3.8% 27 64.6 65.6 61.6 79.8 3.3
8. juniper3.rz10.hetzner.de 0.0% 27 67.9 66.1 61.1 76.7 3.2
9. hos-tr1.ms-ex3k1.rz13.hetzner.de 7.4% 27 66.4 66.3 63.2 73.1 1.7
10. io.solarscale.de 0.0% 27 64.9 64.7 61.9 67.6 1.1
The return route looks like this:
traceroute to 84.170.172.239 (84.170.172.239), 64 hops max, 52 byte packets
1 static.65.5.40.188.clients.your-server.de (188.40.5.65) 0.914 ms 1.288 ms 0.909 ms
2 hos-tr2.juniper3.rz10.hetzner.de (213.239.236.81) 0.319 ms 0.372 ms 0.291 ms
3 core22.hetzner.de (213.239.245.141) 0.337 ms 0.334 ms
core21.hetzner.de (213.239.245.101) 0.333 ms
4 core4.hetzner.de (213.239.245.18) 4.976 ms 4.952 ms 4.961 ms
5 juniper4.ffm.hetzner.de (213.239.245.1) 5.054 ms 5.036 ms 5.034 ms
6 62.157.251.33 (62.157.251.33) 5.098 ms
80.157.128.233 (80.157.128.233) 5.102 ms 5.059 ms
7 f-sb1-i.F.DE.NET.DTAG.DE (62.154.14.137) 11.048 ms 13.225 ms 11.980 ms
8 wue-ea1-i.WUE.DE.NET.DTAG.DE (62.154.68.73) 12.899 ms 12.667 ms 13.767 ms
9 wue-sc2-i.WUE.DE.NET.DTAG.DE (62.154.4.114) 11.224 ms
217.0.67.5 (217.0.67.5) 11.609 ms 11.867 ms
10 p54AAACEF.dip0.t-ipconnect.de (84.170.172.239) 56.456 ms !X 56.265 ms
Now then I connected an SSH and ran tmux. Switching windows causes larger
SSH packets and I noticed that they get re-transmitted, when dumping on the
outgoing interface on io.solarscale.de (re0). Here is what they look like:
Notice on packets #378 through #388 there is three retransmissions of a 966
byte length packet. This was captured on io.solarscale.de. On #390 which
was captured on fritz!box's 192.168.178.1 interface it's sent out to the
netbook in question. The fritz!box does not receive the three retransmissions
on it's PPPoE interface as the next screenshot shows of it's PPPoE packet
dump:
Notice on packet #175 the 984 byte length packet arrives. Why is it 8 bytes
larger? Because of the nature of PPPoE. Notice in the #175 vicinity no
retransmissions make it to the PPPoE interface. From this I can deduct that
it is not the Fritz!Box router.
Now then. It gets worse. A Linux box on my parents' LAN has absolutely no
problems with SSH on io.solarscale.de. It only affects my OpenBSD netbook.
Could there be something such as a TCP OS Fingerprinting firewall that uses
discrimination against OpenBSD TCP stacks? It would need to be done on a
flow basis if such a thing exists.
This is really annoying me as I'm inviting laughs and denial that anything is
wrong.
0 comments
September 20th, 2014
Equinox is in three days!
At equinox the earth is exactly perpendicular if you were to draw a cross,
with lines between the north and the south pole, and the equator and the sun.
After
equinox as this is the southward equinox favouring the direction of the tropic
of capricorn, the northern hemisphere will fall into autumn, and countries
north of the equator will have longer nights than days. The sun at high noon
will continue to dip everyday as it has been since the June solstice, until
the December solstice at which point it will start to rise again. Isn't
the earth wonderful? I love this!
0 comments
September 17th, 2014
I have purchased the downtown riddim from itunes. A long favourite of mine
on youtube, I finally have it on my ipod now.
0 comments
September 12th, 2014
Some government body in Bavaria is writing warnings and threats to
Internet companies that don't use STARTTLS in their mail servers. I don't
think it's right to threaten Internet operators with fines when they don't
encrypt. Instead they should give Incentives to Internet companies to
start encrypting. Pretend you run your own mail server that doesn't have
crypto built in... I think this is the wrong methods the state is using just
to "protect" its citizens.
0 comments
September 10th, 2014
The VPS in Hong Kong is gone. Here is the last message I saw from it.
You have new mail in /var/mail/pjp
[pjp@76er ~]$ Write failed: Broken pipe
that was from 76er.virgostar.net one of its jails.
I'd like to thank the people of Hong Kong, the city of Hong Kong, NTT and
Host Virtual (vr.org) for making this VPS possible
for me for 20 dollars a month. Hong Kong has good infrastructure IMO,
especially near the HKIX internet exchange, although I can only guess about
it really. It was my pleasure staying there for 2 years. As they would say
in france, a bientot!
I'll now remove the mentions of moon.virgostar.net from my DNS.
0 comments
September 7th, 2014
This morning my dad and I transplanted my Soekris 6501 (aka venus) from its
small case to a 19" rackmount case and added a lan1841 to it. It now has
8 gigabit interfaces. When I return home I'll have some time to configure
the new ports and add my rpi to it. Giving me 3 open ports in the hallway
and 2 open ports in my office (by taking the rpi out). I'm very happy.
0 comments
Next Page
|
Search
RSS Feed
 Click here for RSS
On this day in
Other links
Have feedback?
By clicking on the header of an article you will be
served a cookie. If you do not agree to this do not
click on the header. Thanks!
Using a text-based webbrowser?
... such as lynx? Welcome back it's working again for the time being.
Older Blog Entries
November, 2023
October, 2023
September, 2023
August, 2023
July, 2023
June, 2023
May, 2023
April, 2023
March, 2023
February, 2023
January, 2023
December, 2022
November, 2022
October, 2022
September, 2022
August, 2022
July, 2022
June, 2022
May, 2022
April, 2022
March, 2022
February, 2022
January, 2022
December, 2021
November, 2021
October, 2021
September, 2021
March, 2021
February, 2021
January, 2021
December, 2020
November, 2020
October, 2020
September, 2020
August, 2020
July, 2020
June, 2020
May, 2020
April, 2020
March, 2020
February, 2020
January, 2020
December, 2019
November, 2019
October, 2019
September, 2019
August, 2019
July, 2019
June, 2019
May, 2019
April, 2019
March, 2019
February, 2019
January, 2019
December, 2018
November, 2018
October, 2018
September, 2018
August, 2018
July, 2018
June, 2018
May, 2018
April, 2018
March, 2018
February, 2018
January, 2018
December, 2017
November, 2017
October, 2017
September, 2017
August, 2017
July, 2017
June, 2017
May, 2017
April, 2017
March, 2017
February, 2017
January, 2017
December, 2016
November, 2016
October, 2016
September, 2016
August, 2016
July, 2016
June, 2016
May, 2016
April, 2016
March, 2016
February, 2016
January, 2016
December, 2015
November, 2015
October, 2015
September, 2015
August, 2015
July, 2015
June, 2015
May, 2015
April, 2015
March, 2015
February, 2015
January, 2015
December, 2014
November, 2014
October, 2014
September, 2014
August, 2014
July, 2014
June, 2014
May, 2014
April, 2014
March, 2014
February, 2014
January, 2014
December, 2013
November, 2013
October, 2013
September, 2013
August, 2013
July, 2013
June, 2013
May, 2013
April, 2013
March, 2013
February, 2013
January, 2013
December, 2012
November, 2012
October, 2012
September, 2012
August, 2012
July, 2012
June, 2012
May, 2012
April, 2012
March, 2012
February, 2012
January, 2012
December, 2011
November, 2011
October, 2011
September, 2011
August, 2011
July, 2011
June, 2011
May, 2011
April, 2011
March, 2011
February, 2011
January, 2011
December, 2010
November, 2010
October, 2010
September, 2010
August, 2010
July, 2010
June, 2010
May, 2010
April, 2010
March, 2010
February, 2010
January, 2010
December, 2009
November, 2009
October, 2009
September, 2009
August, 2009
July, 2009
June, 2009
May, 2009
Powered by BCHS
|