Well I finally got around to wildcarddnsd again and trashed all stuff I wrote for it. That was yesterday. I was able to hack up some new stuff that uses a sort of firewall ruleset to determine where a nameserver comes from and then serve based on that information to which server the request should go. I got it running in beta (centroid.eu) watch closely.
The following is a ping from proteus (germany) to centroid.eu, the IP it
gives is proteus itself (also germany).
The next is a ping from dione (panama) to centroid.eu. The IP it gives is
dione itself, similar to the above ping:
Now there has been a few ethical debates whether DNS should "lie" or not and I think in favour of loadbalancing it should lie and tell an IP that's closest to the client. This is still in beta and I'm watching it closely and then I'll merge it into HEAD.
PS: I've balanced it in such a way that IP's comeing from RIPE and APNIC go to the server in Germany, and ARIN and LACNIC go to the server in Panama. I haven't dealt with the other regions yet, they may get defaulted to LACNIC.0 comments
Yesterday I was able to see the starsky again. I took these pictures of Sirius and Orion through the trees.0 comments
Privacy just got a lot better when you visit this website. According to an article in the german magazine "C't magazin fĂr Computer technik" (2010 Edition 5, page 154), the storage of IP data is illegal. Specifically the correlation between IP and access time. So what I've done is patch my webserver (lighttpd) accordingly to throw out the last last 2 octets from the dotted quad. I can now roughly see which region you're from in my logs but not who exactly you were, I'm not interested in that anyhow but if someone wants my logs it won't give them much.
Here is the patch:
A typical log looks like this then:
The other VPS I have in Panama I'm not going to do this patch because I'm unsure of what the legalities there are there. This should only affect the centroid.eu domain though and if you wish to read only from the german server use solarscale.de. Cheers!0 comments
Yesterday I watched a Google Tech Talk on IPv6 and specifically what transition technologies exist today. The speaker basically thinks we'll have a meltdown near the end of 2011 but seemed very calm about it. I yahoo'ed for it and found this article as well. Over here I've got IPv6 connectivity but I'm wishing that my VPS would have it as well and I've asked about it repeatedly. Maybe by next year, I'm hoping, as being available in both IPv4 and IPv6 land is a must after we run out of addresses.0 comments
Yesterday I found this bug with Mouring on IRC. Basically if you have a very long string for an email address the smtpd will quit with a truncation error in lowercase(). Gilles Chehade put in this fix, revision 1.99 of lka.c, this morning (it should be noted it's Gilles fix, we only identified the bug and wrote to him). Everyone should update to this version or their smtpd will cease working when the DoS comes around that came around to Mouring.0 comments
Bruce Schneier has written a new book. I've already ordered this and it should be delivered by march 30th, it'll be released march 15th.0 comments
Yesterday for the first time this year the cloudy sky went away and I was able to use my dads camera to make photos of the star sky.
Check out more processed photos here.0 comments
On this day in
By clicking on the header of an article you will be served a cookie. If you do not agree to this do not click on the header. Thanks!
Using a text-based webbrowser?
... such as lynx? Welcome back it's working again for the time being.
Older Blog Entries