Centroid.EU Blog

(this blog is mostly encrypted - adults only)

Previous Page

Introducing Fire Curses client

February 17th, 2013

The fire curses client (firec) is what I did while I was at my parents after the apartment fire. It allows me to IRC in a semi-windowed environment. Browse and download the source here:


Wildcarddnsd BETA 7 released

February 17th, 2013

I got all the patches that I had and put them in tweaked it a little yesterday and tagged the source tree. I made a mistake with the branch tag but that was easy to fix here is how I did it:

cvs tag -b -r OLDTAG NEWTAG     # puts a new tag on the old position
cvs tag -d OLDTAG		# removes the old tag
So here are the new things from previous wildcarddnsd release:
Changes in BETA_7 from BETA_6
 	- remote (sys)-logging feature with HMAC message verification
 	- change to Berkeley DB 4.6+ on BSD hosts (Linux had it already)
 	- allow numerous copies of wildcardnsd to pre-fork (-n flag)
 	- AXFR master code (this allows a bind9 slave to work with wildcarddnsd)
	- fix an integer overrun in parse.c which prevented big endian hosts to
	 make use of ANY replies and AXFR
 	- SRV RR support
 	- left sourceforge.net around August 14, 2012
 	- Mac OS X compiles now, but has not been tested with queries
Yes I'm not hosting at sourceforge.net anymore. I managed to leave them just before my old apartment building's fire and just before SF was sold. I do my own hosting of the sources and cvsweb and so on. Because of that decision I follow EU export laws not US export laws.

The next BETA release will likely happen around Nov 29, 2013 right on W's birthday (BETA_8 and 8 years old). I'm aiming for yearly releases and at BETA_10 I hope to have enough stuff in there that I can call it RELEASE_1 but we'll see. Enjoy these changes you can download the new snapshot (called 0.7.0) from here.


Reinstated CVSWEB for my programs

February 15th, 2013

I have ported the viewvc to lighttpd configuration and now my programs code history is viewable again. I will be committing new stuff shortly, which hopefully will reflect in these.

Feel free to check these out. I'll be rolling a new BETA release for wildcarddnsd soon.


My new IPv6 setup

February 14th, 2013

Happy Valentines day. I'm spending it alone with IPv6 :-). But I want to show you what I did and perhaps you have a few hints for me on how to improve it.

I have a Fritz!Box router (a home consumer router) which costs around 100 euros. I got mine for free with the new plan with M-Net my provider. M-net provides IPv6 on a test basis and since I can't get a static IP anymore with them I'm using it insteads of the IPv6 tunnel I used to have. This is what my network looks like now:

                Simplified IPv6 Network at Centroid.EU

                      | Gaia      |
                      | Luna (vm) |
                      | Mac OS X  |
                      |           |
  +-----------+       +-----+-----+                             +----------+
  |           |       |           |                             | Fritz.box|
  | Jupiter   |_______|  Uranus   |____________| 3270     |
  | OpenBSD   |       |  OpenBSD  |         Fritz.repeater      |          |
  |           |       |           |                             |          |
  +-----------+       +-----+-----+                             +-----+----+
                            |                                         |
                      +-----+-----+                                   |
                      |           |                                Internet
                      |  Mars     |
                      |  OpenBSD  |
                      |           |
The fritzbox announces IPv6 through route advertisements and delegates a /62 from the /56 prefix that M-Net provides me with. This /62 is given through DHCPv6 so I had to install isc-dhcpd from the ports on openbsd to make it work. However I faced a dillemma how does Uranus on the fritzbox facing interface know it's IPv6? I wrote a small script to enable it with rtsol and also the script adds rtadvd for automatic discovery on Jupiter, Mars, Gaia and Luna. I'm going to show one of these as an example. First to Uranus though, it's /etc/hostname.em5 interface looks like this:
# more /etc/hostname.em5
And I've written the /root/update-rtadv.sh script quickly so it may be buggy, but it works across reboots:

export PATH

/usr/local/sbin/dhclient -6 -P -D LLT  em5

PREFIX=`grep iaprefix /var/db/dhclient6.leases  | tail -1 | awk '{print $2}' | awk -F/ '{print $1}'`

EM0=`echo $PREFIX `
EM1=`echo $PREFIX | sed -e 's/:8fc:/:8fd:/g'`
EM2=`echo $PREFIX | sed -e 's/:8fc:/:8fe:/g'`
EM3=`echo $PREFIX | sed -e 's/:8fc:/:8ff:/g'`

(cat < /etc/rtadvd.conf

/etc/rc.d/rtadvd restart

route delete -inet6 default

while :: ; do
        ifconfig em5 | grep "inet6 2001:" 
        if [ $? -eq 1 ]; then

        sleep 10

backprefix=`rtsol -d em5 2>&1 |\
grep "received RA from" |\
awk '{print $4}' |\
awk -F:: '{print $2}'`

frontprefix=`ifconfig em5 | grep "inet6 2001:" | awk '{print $2}' | \
awk -F: '{print $1 ":" $2 ":" $3 ":" $4 ":" ; }'`

/sbin/route add -inet6 default $frontprefix$backprefix

exit 0
So when I'm on jupiter and I run a continuous ping6 on io.solarscale.de, it looks like this:
16 bytes from 2a01:4f8:d13:1980::22, icmp_seq=11 hlim=56 time=14.069 ms
16 bytes from 2a01:4f8:d13:1980::22, icmp_seq=12 hlim=56 time=17.013 ms
16 bytes from 2a01:4f8:d13:1980::22, icmp_seq=13 hlim=56 time=15.712 ms
16 bytes from 2a01:4f8:d13:1980::22, icmp_seq=14 hlim=56 time=14.167 ms

16 bytes from 2a01:4f8:d13:1980::22, icmp_seq=95 hlim=56 time=35.225 ms
16 bytes from 2a01:4f8:d13:1980::22, icmp_seq=96 hlim=56 time=14.689 ms
16 bytes from 2a01:4f8:d13:1980::22, icmp_seq=97 hlim=56 time=15.765 ms
16 bytes from 2a01:4f8:d13:1980::22, icmp_seq=98 hlim=56 time=14.213 ms
--- io.solarscale.de ping6 statistics ---
99 packets transmitted, 19 packets received, 80.8% packet loss
round-trip min/avg/max/std-dev = 13.973/16.219/35.225/4.611 ms
As you can see it ping'ed across a reboot and that means that all IP's and routes were configured correctly. On Mars I have an rtsol setup to get its IPv6 and it's /etc/hostname.gem0 looks like this:
mars$ more /etc/hostname.gem0
I had to also enable rtsold in /etc/rc.conf.local and enable route advertisements per sysctl.conf. The configured interface gem0 on mars looks like this then:
mars$ ifconfig gem0
gem0: flags=8863 mtu 1500
        lladdr 00:30:65:a1:ec:a6
        priority: 0
        groups: egress
        media: Ethernet autoselect (100baseTX full-duplex)
        status: active
        inet6 fe80::230:65ff:fea1:eca6%gem0 prefixlen 64 scopeid 0x1
        inet6 2001:a60:18e5:8fd:230:65ff:fea1:eca6 prefixlen 64 autoconf pltime 604697 vltime 2591897
        inet netmask 0xffffff00 broadcast
I still have to set up some sort of dynamic DNS for the IPv6 so that I can easily reach these hosts from each other since I can't remember their IPv6 address and on Gaia (the mac os x) the IPv6 keeps changing due to privacy extensions. However for outgoing IPv6 this setup works. Incoming is blocked at the fritzbox router anyhow and I haven't figured out how to set the IPv6 firewall rules right yet. I've sent AVM the maker a support email after consulting with M-Net.

I hope this helps the next person and if you have improvements let me know in the comments or mail me directly. Thanks.


I've moved

February 13th, 2013

Last night was the first night in my new apartment. Everything went well during the move and I got Internet yesterday at around noon. Here is a picture of my workbench and new stand-up table. I alternate between the two due to my lower back problems.

It looks a bit messy because I just dumped all my stuff on the table but I hope to rearrange things so that I can see the wood on the table.


Slowly getting ready for move

February 09th, 2013

On the 12th my provider M-Net will activate the DSL link. I've taken the 12th and 13th off work so that I can hook everything up at home. I'm worried of not getting back my static IP, which I had for 4 years. I let M-Net know this but haven't had a reply from them yet. Not getting the static IP will not be the end of the world, but the end of e-mail, www, shell server and other stuff at home. I truely hope I get my static IP back though, and will fight for it.


This is actually cool!

February 2nd, 2013

Let's start with my computer for cooling. :-) The fact that this was developed in China is cool too because most computer parts come from there...


If I do upgrade Jupiter(computer)...

February 1st, 2013

Then here is a series of chips to consider. Jupiter is currently an i7-930, but an i7-980 would be nice but is still pricy, with 3 years warranty however it would give 6 year lifespan of the 3 year old machine perhaps. I'm watching for the price for the 970/980 to come down.

I'm also considering what tasks I want running on Jupiter. Right now there isn't too much CPU intensive stuff. Also Jupiter never ran over nights. I turn it off at night and plan on continuing to do so.


Wire-tapping of the Cloud...

January 31st, 2013

My blog and other data stored on my VPS's can be examined by the NSA through the american hoster I use. This is cautioned by the BBC. Particularily falls the VPS in Hong Kong then under jurisdiction of the NSA because I use an American provider based in Los Angeles. The VPS in Panama is operated by a canadian company and they probably have similar laws. So my data is wide open to the american contintent. I do not know what sort of information they would like to gather though other than web and dns logs. In terms of juicyness my blog doesn't have very much worth spying over. But I thought the article in the BBC was intriguing nontheless. I'm not going to pull back my blog over this though.


NAP of the Americas in Miami

January 31st, 2013

The BBC has an article about the NAP of the Americas in Miami, USA. Here it is. The NAP is what most routes from Germany go through when I traceroute my Panamanian VPS. Interesting building, it reminds me a little of 151 Front albeit much larger.


Next Page


RSS Feed

Click here for RSS

On this day in

Other links

Have feedback?

By clicking on the header of an article you will be served a cookie. If you do not agree to this do not click on the header. Thanks!

Using a text-based webbrowser?

... such as lynx? Welcome back it's working again for the time being.

Older Blog Entries

Powered by BCHS