● mosquitto.service - LSB: mosquitto MQTT v3.1 message broker
Loaded: loaded (/etc/init.d/mosquitto; bad; vendor preset: enabled)
Active: active (exited) since Tue 2018-08-28 14:20:37 CEST; 31min ago
Process: 16712 ExecStop=/etc/init.d/mosquitto stop (code=exited, status=0/SUCCESS)
Process: 16735 ExecStart=/etc/init.d/mosquitto start (code=exited, status=0/SUCCESS)
Thank you for nothing #systemD
Sysadmin reminder: 11 october is the #DNS root key rollover. Brace yourself and check *today* that the DNS resolver you manage knows both keys, 19036 (the old) and 20326 (the new) https://www.icann.org/en/system/files/files/ksk-rollover-expect-22aug18-en.pdf #DNSSEC
"""DISABLE HYPERTHREADING ON ALL YOUR INTEL MACHINES IN THE BIOS"""
"""I'm going to spend my money at a more trustworthy vendor in the future."""
If you see two or more #Amaroq apps on the store, the one that has the most release history is the real one. 👍 Look for the doggo 🐺
If you accidentally downloaded a scam version, I cannot guarantee what it’s doing under the hood. I suggest revoking access to the app *immediately*.
Finally current Mastodon version up and running. 😃
But I‘m not yet finished to catch up to the current version.
DE-CIX lost. They have to allow BND to continue to grab literally all traffic directly from their cables:
> Der Betreiber könne verpflichtet werden, bei der strategischen Fernmeldeüberwachung durch den BND mitzuwirken, betonte der 6. Senat in seiner Urteilsbegründung. Der Geheimdienst sei berechtigt, auf Anordnung des Bundesinnenministeriums internationale Telekommunikation zu überwachen und aufzuzeichnen. Das Bundesverwaltungsgericht ließ keine Rechtsmittel gegen die Entscheidung zu.
My main mistake on this setup: I expected to have this cluster replaced by another one three years after the initial setup.
Well, it was not necessary and I had to renew the certificates for another three years.
At least the certificate renew for the cluster is a process I described in the cluster documentation.
And the CA box still existed.
PowerDNS driven with MySQL replication backend is rock solid.
My MySQL replication broke a few week ago due to expired TLS certificates.
I don’t updates zones often. All zones continued to resolve and had valid DNSSEC all the time.
Two replication slaves could just continue with the new certificate. One replication slave needed a few SQL dump, because of missing binlogs.
Have you ever tried to setup a Kubernetes test environment in LXD containers?
Perhaps I never should have tried this at home. #fail
NIC.cz wrote a blog post describing it https://en.blog.nic.cz/2018/03/14/together-for-better-stability-speed-and-further-extensibility-of-the-dns-ecosystem/
You can also check your domain(s) at https://ednscomp.isc.org/ednscomp/
#RIPE has assigned the last block from the 185/8 space.
This means there are no more pristine IPv4 addresses available in Europe, Middle East, or CIS.
RIPE still has a /9 of issuable space, but that is returned/revoked addresses from LIRs, and from the IANA returned pool.
Starting to scrape the bottom of the barrel for #IPv4.
As announced I've done some research in the distribution of our mastodon instances regarding the network (AS) they use.
The top five countries with mastodon instances:
- 36 GB
- 356 DE
- 786 FR
- 810 JP
- 1284 US
(full data: https://drop.leah.is/dEepjMnN )
Top 7 networks:
- 149 HETZNER-AS
- 173 INTERQ GMO Internet
- 187 SAKURA-B SAKURA Internet Inc.
- 195 AMAZON-02 - Amazon.com
- 232 DIGITALOCEAN-ASN - DigitalOcean
- 244 ONLINE S.A.S.
- 400 OVH
(full data: https://drop.leah.is/kYXmJJmy)
ActivityPub support for GNU Social is in the works! I'll be working with @up201705417 on a plugin this summer.
Software developer, father, domains, DNS, monitoring, virtualization
Mastodon ist ein soziales Netzwerk. Es basiert auf offenen Web-Protokollen und freier, quelloffener Software. Es ist dezentral (so wie E-Mail!).