Conversation with #inferno at Sun Nov 28 15:44:41 2010 on powerman-asdf@irc.freenode.net (irc)
(20:01:20) bvalek2 left the room (quit: Quit: Page closed).
(20:26:50) bvalek2 [5985141d@gateway/web/freenode/ip.89.133.20.29] entered the room.
(20:31:23) anth_x: hey, neat. native and hosted?
(20:41:23) mjl-: hosted
(20:41:35) mjl-: native already has some ipv6, don't know how good that is though
(20:42:28) anth_x: neat. my work network setup is changing around the end of the year (things are moving from my colo into my basement), and i want to get a persistent ipv6 tunnel up once that happens.
(21:58:37) bvalek2 left the room (quit: Quit: losing consciousness in 5, 4, 3, 2, ...).
(01:41:17) KBme: hosted had ipv6 too, no?
(01:41:23) KBme: just the dns part wasn't happening?
(01:43:22) KBme: i guess not..
(08:57:16) Gegemon [~ynv@mx1.airis.ru] entered the room.
(09:03:38) bvalek2 [c3e41484@gateway/web/freenode/ip.195.228.20.132] entered the room.
(09:30:07) mjl-: KBme: there was a patch.  i think it was in inferno-npe only.
(11:04:19) Gegemon left the room (quit: Ping timeout: 245 seconds).
(11:07:49) Gegemon [~ynv@mx1.airis.ru] entered the room.
(14:20:47) powerman: mjl-: ipv6 is cool…
(14:21:07) powerman: but, thing is, I've no ipv6 on my server
(14:21:27) powerman: and adding ipv6 somehow break ipv4 :-/
(14:23:21) powerman: $ emu-g
(14:23:21) powerman: ; svc/registry
(14:23:21) powerman: listen: failed to announce on 'tcp!*!registry': Address family not supported by protocol
(14:23:44) mjl-: powerman-asdf: ipv6 can be had for free through sixxs.net
(14:23:52) mjl-: how does it break ipv4?  that's not supposed to happen...
(14:23:56) mjl-: hmm
(14:24:02) mjl-: is that on linux?
(14:24:04) powerman: yep
(14:24:23) mjl-: perhaps the kernel doesn't have ipv6 support?
(14:24:40) powerman: yep
(14:24:51) mjl-: so, couldn't you just load the module?
(14:24:54) powerman: kernel log full of this:
(14:24:54) powerman: kern.alert: grsec: denied kernel module auto-load of net-pf-10 by /usr/inferno/Linux/386/bin/emu-g[emu-g:10150] uid/euid:1000/1000 gid/egid:100/100, parent /usr/inferno/Linux/386/bin/emu-g[emu-g:10149] uid/euid:1000/1000 gid/egid:100/100
(14:24:57) mjl-: no need to actually have ipv6 configured
(14:25:27) mjl-: powerman-asdf: you could also modify emu-g, to use ipif-posix instead of ipif6-posix
(14:26:05) powerman: I just didn't like to compile/load kernel modules which isn't used. Everything else works just fine without IPv6 support in kernel.
(14:26:33) powerman: Yeah, I noted change from ipif to ipif6 when looking at diffs before updating inferno
(14:28:08) powerman: but, thing is, this should be at least configurable option without editing emu-g, I think. IPv6 is still not mainstream, most systems doesn't support it (but usually load these kernel modules, just like a lot of other unused crap).
(14:32:08) mjl-: i think most system have an ipv6 stack nowadays
(14:32:13) mjl-: my linux had it by default
(14:32:19) mjl-: did you do anything to disable it?
(14:32:25) powerman: my linux is gentoo, so no defaults at all :)
(14:32:29) mjl-: ah :)
(14:32:30) mjl-: well!
(14:32:33) mjl-: then you know what you're doing!
(14:32:36) vpm left the room (quit: Ping timeout: 250 seconds).
(14:32:42) mjl-: but i mean:  linux, *bsd, windows have it.  i bet mac os x too
(14:32:43) mjl-: by default.
(14:32:52) powerman: yep. Right now I'm enabling IPv6…
(14:33:01) powerman: :)
(14:33:18) powerman: that's easier than patching emu/emu-g each time
(14:34:39) vpm [~vpm@reverse-94.fdn.fr] entered the room.
(14:36:04) powerman: as for enabled, but unconfigured ipv6 stack, some time ago I read nice article in russian 'hackers' magazine - how to hack into system using ipv6, even if this system doesn't have ipv6 address
(14:36:30) mjl-: through a link-local address i suppose?
(14:36:45) mjl-: anyway, having ipv6 access is a different setup from what most people have.
(14:37:12) mjl-: either they forget to apply similar firewall rules as they have for ipv4.  or their ipv4 is behing a NAT box and they don't even know they have to filter anything
(14:38:44) powerman: yep. I don't know too is I've to update my firewall rules. most people don't know. and most now have enabled but unconfigured ipv6 support
(15:24:38) The account has disconnected and you are no longer in this chat. You will be automatically rejoined in the chat when the account reconnects.