#dev | Logs for 2019-06-11
« return
[01:26:21] <Bytram> TheMightyBuzzard: lol! FYI, should I run into trouble I *might* be able to send you a quick txt without losing my tethered connection. Also realized I have my putty logs to refer to.
[01:29:36] <TheMightyBuzzard> you've been through it once already and it's very straightforward, i ain't askeert.
[01:41:17] <Bytram> I appreciate your confidence in me. My basic take on things is that once I've done things, successfully, 3 times in a row, I'm a lot more at ease. Until then, it's more of that: Once is happenstance, twice is coincidence, the third time is enemy action^W ^W for real.
[01:42:33] <TheMightyBuzzard> oh, well in that case chromas gets to back-seat-drive next time =P
[01:43:42] <TheMightyBuzzard> he's pretty smart about linux stuff and code but he's also evil, so it should be a really good test.
[01:44:07] <Bytram> ROFL!! thanks for the (much-needed) laugh
[01:44:26] <Bytram> he is rather quick of a wit, I will certainly grant him that!!
[07:30:07] <SemperOSS> Bytram, TheMightyBuzzard: Late to the party again (seems to be my lot in life), but if chromas back-seat-drive, maybe I could watch-from-the-trunk?
[07:32:18] <SemperOSS> Watch from the trunk to get under the hood? ... Maybe the British English version is better: Watch from the boot to get under the bonnet — Yup, that's the one! Will have to consider that upskirting has been outlawed in the UK, though.
[11:29:49] <Bytram> SemperOSS: would love to have you join in and keep an eye on things
[12:20:04] <SemperOSS> So, when is the feast ^W feat happening?
[12:27:43] <Bytram> SemperOSS: how about... now?
[12:28:09] <Bytram> -ish
[12:28:15] <Bytram> loading up instructions
[12:30:08] <SemperOSS> Ooh, which machine do I intrude on? And, gasp!, did I copy my certificate to this machine?
[12:30:14] <Bytram> Before I do anything else, checking current cert status with these two URLs:
[12:30:17] <Bytram> (1) https://crt.sh
[12:30:24] <Bytram> (2) https://crt.sh
[12:32:56] * Bytram closes a bunch of old tabs in his browser
[12:33:27] <Bytram> Hrm... where *is* the howto page?
[12:37:23] <SemperOSS> Can't help, just trying to catch up
[12:38:13] <Bytram> nod nod
[12:38:20] <Bytram> still looking
[12:39:02] <Bytram> Found It!
[12:39:09] <Bytram> https://tech.soylentnews.org
[12:44:32] <Bytram> Updating certs on SoylentNews servers... starting at 20190611_124355 UTC
[12:44:54] <Bytram> NOTE: Prior update's logs can be found at: https://logs.sylnt.us
[12:45:15] <Bytram> TWIKI instructions are at: https://tech.soylentnews.org
[12:46:13] <Bytram> opening 3 putty terminals on SN (default entry point is on boron) then will kinit on all three; may take a few minutes
[12:47:24] <Bytram> 1st is done
[12:48:25] <Bytram> 2nd is done
[12:49:18] <Bytram> 3rd is done
[12:49:29] <Bytram> loading screen on all 3 TTYs
[12:50:26] <Bytram> for future reference: just enter "screen" as a command in each TTY
[12:54:39] <Bytram> reorienting TTYs
[12:57:10] <Bytram> atm, all 3 TTYs are on boron logged in as me
[12:59:34] <Bytram> layout: LTR: TTY1, TTY2, TTY3 // new row with just palemoon of https://tech.soylentnews.org // new row with just this HexChat window on #dev
[13:00:04] <Bytram> TTY1: sudo -i
[13:00:11] <Bytram> TTY2: sudo -i
[13:00:48] <Bytram> TTY1: emacs /etc/bind/db.soylentnews.org
[13:02:57] <Bytram> TTY2: emacs /etc/bind/db.sylnt.us
[13:04:18] <Bytram> following this instruction atm:
[13:04:21] <Bytram> >>> as root on boron: open both /etc/bind/db.soylentnews.org and /etc/bind/db.sylnt.us in your text editor of choice. update the serial on both files to YYYYMMDD and two digits for revision number. keep them open.
[13:04:54] <Bytram> ahh, *there* is the serial
[13:06:20] <Bytram> setting serial on soylent to: 2019061001
[13:06:42] <Bytram> saves file
[13:06:47] <SemperOSS> Shouldn't that be 2019031101?
[13:06:59] <SemperOSS> 2019061101, sorry
[13:07:12] <Bytram> urrm, umm, yess.
[13:08:22] <SemperOSS> It's not important for the execution but more for documentation
[13:08:29] <Bytram> welll, *that* was intersting... emacs / screen got mixed up and am now seeing a request for password by screen on TTY1
[13:09:13] <SemperOSS> You have run into the Ctrl-A problem, I guess. You need to press it twice to get one Ctrl-A
[13:09:38] <Bytram> TTY seems to be locked up and not responsive to kbd
[13:09:46] <Bytram> TTY1 that is
[13:09:58] <SemperOSS> Does Ctrl-Q help?
[13:10:07] <Bytram> bingo!
[13:10:34] <SemperOSS> You have pressed Ctrl-S, then, which stops the display
[13:10:38] <Bytram> db.soylentnews.org saved on TTY1
[13:10:53] <Bytram> ahh, man is that ever old-skool flow control!!!
[13:11:05] <SemperOSS> Yup
[13:11:14] <Bytram> me goes over to TTY2 to handle sylnt
[13:12:15] <TheMightyBuzzard> you don't need to save the serial changes until you make changes to the data in the file. it doesn't hurt anything but it doesn't do anything useful either.
[13:12:25] <Bytram> k
[13:12:39] <Bytram> serial updated on sylnt, too. 2019061101
[13:12:56] <TheMightyBuzzard> the rndc command is when the file changes are read
[13:13:02] <Bytram> k
[13:13:06] <Bytram> now on to TTY3
[13:13:28] <Bytram> >>> as root on magnesium: /root/bin/newcert.sh yes, let it log our ip it will give you two long values each for _acme-challenge.soylentnews.org and _acme-challenge.sylnt.us that you need to replace the old values in db.sylnt.us and db.soylentnews.org on boron with.
[13:13:58] <Bytram> ssh magnesium
[13:14:21] <Bytram> sudo -i
[13:15:05] <Bytram> Yes, I *am* okay with my IP being logged.
[13:16:08] <Bytram> for future reference... am copying what was displayed... long paste, sorry!
[13:16:12] <Bytram> BEGIN PASTE
[13:16:13] <Bytram> Saving debug log to /var/log/letsencrypt/letsencrypt.log
[13:16:14] <Bytram> Plugins selected: Authenticator manual, Installer None
[13:16:14] <Bytram> Cert is due for renewal, auto-renewing...
[13:16:14] <Bytram> Renewing an existing certificate
[13:16:14] <Bytram> Performing the following challenges:
[13:16:14] <Bytram> dns-01 challenge for soylentnews.org
[13:16:16] <Bytram> dns-01 challenge for sylnt.us
[13:16:20] <Bytram> dns-01 challenge for soylentnews.org
[13:16:22] <Bytram> dns-01 challenge for sylnt.us
[13:16:24] <Bytram> -------------------------------------------------------------------------------
[13:16:26] <Bytram> NOTE: The IP of this machine will be publicly logged as having requested this
[13:16:28] <Bytram> certificate. If you're running certbot in manual mode on a machine that is not
[13:16:31] <Bytram> your server, please ensure you're okay with that.
[13:16:33] <Bytram> Are you OK with your IP being logged?
[13:16:35] <Bytram> -------------------------------------------------------------------------------
[13:16:36] <Bytram> (Y)es/(N)o: y
[13:16:38] <Bytram> -------------------------------------------------------------------------------
[13:16:40] <Bytram> Please deploy a DNS TXT record under the name
[13:16:42] <Bytram> _acme-challenge.soylentnews.org with the following value:
[13:16:44] <Bytram> MWiqxfapPx3W9yGjI8M1F_lekwn6rOOq47HKlPaipBk
[13:16:46] <Bytram> Before continuing, verify the record is deployed.
[13:16:51] <Bytram> -------------------------------------------------------------------------------
[13:16:53] <Bytram> Press Enter to Continue
[13:16:54] <Bytram> END PASTE
[13:17:33] <Bytram> ok, so this is on *soylent* entry
[13:17:39] <Bytram> TTY1
[13:19:45] <Bytram> now have:
[13:19:46] <Bytram> _acme-challenge.soylentnews.org. 1 IN TXT "MWiqxfapPx3W9yGjI8M1F_lekwn6rOOq47HKlPaipBk"
[13:20:12] <Bytram> Hits save
[13:20:24] <Bytram> TTY3
[13:20:31] <Bytram> presses "Enter"
[13:20:50] <Bytram> BEGIN PASTE
[13:20:53] <Bytram> -------------------------------------------------------------------------------
[13:20:53] <Bytram> Please deploy a DNS TXT record under the name
[13:20:53] <Bytram> _acme-challenge.sylnt.us with the following value:
[13:20:53] <Bytram> 8_ArYlYLGly_tWOyIc0Nw6EBGYbCzDzH3YJgP7LseJM
[13:20:53] <Bytram> Before continuing, verify the record is deployed.
[13:20:53] <Bytram> -------------------------------------------------------------------------------
[13:20:55] <Bytram> Press Enter to Continue
[13:20:57] <Bytram> END PASTE
[13:21:17] <Bytram> that is on sylnt so going to TTY2
[13:22:25] <Bytram> now have an entry that reads:
[13:22:27] <Bytram> _acme-challenge.sylnt.us. 1 IN TXT "8_ArYlYLGly_tWOyIc0Nw6EBGYbCzDzH3YJgP7LseJM"
[13:22:34] <Bytram> saved
[13:22:40] <Bytram> back to TTY3
[13:22:53] <Bytram> presses Enter to continnue
[13:23:06] <Bytram> BEGIN PASTE
[13:23:07] <Bytram> -------------------------------------------------------------------------------
[13:23:07] <Bytram> Please deploy a DNS TXT record under the name
[13:23:07] <Bytram> _acme-challenge.soylentnews.org with the following value:
[13:23:07] <Bytram> 5q5y4yaMoaCS8CKGE-1028IK153UlNfn7ItkYoi1Zy0
[13:23:07] <Bytram> Before continuing, verify the record is deployed.
[13:23:08] <Bytram> -------------------------------------------------------------------------------
[13:23:10] <Bytram> Press Enter to Continue
[13:23:12] <Bytram> END PASTE
[13:23:23] <Bytram> that's on soylent, so back to TTY1
[13:23:59] <Bytram> changes the *second* TXT entry
[13:25:14] <Bytram> now have:
[13:25:33] <Bytram> _acme-challenge.soylentnews.org. 1 IN TXT "5q5y4yaMoaCS8CKGE-1028IK153UlNfn7ItkYoi1Zy0"
[13:25:41] * Bytram goes back to TTY3
[13:26:16] <Bytram> am I still here>
[13:27:41] <SemperOSS> Yes yes, do continue, it is riveting ...
[13:27:59] <Bytram> lol
[13:28:46] <Bytram> sorry about that... I tether my phone to get online and all of a sudden in started ringing to tell me I had an incoming call... feared I might have lost my connection; seems like I was quick enough.
[13:29:40] <Bytram> okay, where was I?
[13:29:52] <Bytram> I've made 3 changes so far... Right?
[13:30:03] <SemperOSS> Yes
[13:30:20] <Bytram> >>> ***IMPORTANT:*** do not hit ENTER after the fourth one is displayed. you will have to start over.
[13:30:36] <Bytram> *after* the fourth one is displayed, so I still have one more sylnt rec to get.
[13:30:43] <Bytram> back to TTY3
[13:31:03] <Bytram> presses Enter to continue
[13:31:19] <Bytram> BEGIN PASTE
[13:31:21] <Bytram> -------------------------------------------------------------------------------
[13:31:21] <Bytram> Please deploy a DNS TXT record under the name
[13:31:22] <Bytram> _acme-challenge.sylnt.us with the following value:
[13:31:24] <Bytram> njSCW96fcpaDTPKaJXQ75YEZOLP4Fxldc1tKxOdLFAs
[13:31:26] <Bytram> Before continuing, verify the record is deployed.
[13:31:28] <Bytram> -------------------------------------------------------------------------------
[13:31:30] <Bytram> Press Enter to Continue
[13:31:33] <Bytram> END PASTE
[13:31:40] <Bytram> that is on sylnt, so back to TTY2
[13:32:32] <Bytram> edited the 2nd txt record to now contain:
[13:32:34] <Bytram> _acme-challenge.sylnt.us. 1 IN TXT "njSCW96fcpaDTPKaJXQ75YEZOLP4Fxldc1tKxOdLFAs"
[13:32:45] * Bytram saves file
[13:34:09] <Bytram> so, ISTM that both files (soylent and sylnt) are updated; saves and closes both files
[13:34:37] <Bytram> -
[13:34:38] <Bytram> Wrote /etc/bind/db.soylentnews.org
[13:35:00] <Bytram> TTY2: Wrote /etc/bind/db.sylnt.us
[13:35:15] <Bytram> back to the instructions
[13:36:19] <Bytram> >>> as root on boron run: rndc reload
[13:36:40] * Bytram uses TTY1
[13:37:18] <Bytram> root@boron:~# rndc reload
[13:37:20] <Bytram> server reload successful
[13:37:22] <Bytram> root@boron:~#
[13:37:51] * Bytram goes back to the instructions:
[13:37:54] <Bytram> >>> now wait until ns1-ns5 all show the new values when you run the following:
[13:37:54] <Bytram> dig _acme-challenge.soylentnews.org TXT @ns1.linode.com
[13:37:54] <Bytram> and
[13:37:54] <Bytram> dig _acme-challenge.sylnt.us TXT @ns1.linode.com
[13:37:54] <Bytram> replacing ns1 with ns1 through ns5. **it is important that all five of them show the new values or you could end up having to start all over.**
[13:39:57] <Bytram> Oh, so I should have been keeping track of each of the 4 challenge strings? Grrr
[13:40:13] <Bytram> *now* you tell me!
[13:40:24] <Bytram> No worries... /me refers back to his logs
[13:40:43] <TheMightyBuzzard> they're pasted here in the channel and also showing in tty3. no need to keep track.
[13:41:14] <Bytram> yeah, just a bit surprised is all.
[13:42:55] <TheMightyBuzzard> unless you have a very limited terminal window buffer, they're always going to be showing in whatever tty you have the update script running from.
[13:43:17] <Bytram> nod nod
[13:43:38] <SemperOSS> for i in ns{1..5}; do dig _acme-challenge.soylentnews.org TXT @$i.linode.com; done | grep _acme
[13:43:57] <SemperOSS> for i in ns{1..5}; do dig _acme-challenge.sylnt.us TXT @$i.linode.com; done | grep _acme
[13:45:00] <TheMightyBuzzard> SemperOSS, s'what i generally do, yeah. cept i only use one for loop.
[13:45:29] <Bytram> looks like soylent is all consistent
[13:45:37] <SemperOSS> TheMightyBuzzard: Smartalec, you
[13:45:53] <TheMightyBuzzard> up arrow and changing the values works too though. i don't care how folks do it.
[13:46:12] <Bytram> and... it looks like sylnt is current, too.
[13:46:28] <Bytram> any disagreement?
[13:46:42] <SemperOSS> No, I concur
[13:46:52] <Bytram> on to the next step...
[13:47:24] <Bytram> >>> when they have, as root on magnesium:
[13:47:25] <Bytram> hit enter on the fourth value.
[13:47:25] <Bytram> if you don't get any errors, and you shouldn't if you followed directions, the new certs are now sitting on magneisum in the /etc/letsencrypt directory.
[13:47:33] <Bytram> that's back on TTY3
[13:47:47] <Bytram> Waiting for verification
[13:48:16] <Bytram> BEGIN PASTE
[13:48:17] <Bytram> Press Enter to Continue
[13:48:18] <Bytram> Waiting for verification...
[13:48:18] <Bytram> Cleaning up challenges
[13:48:18] <Bytram> IMPORTANT NOTES:
[13:48:18] <Bytram> - Congratulations! Your certificate and chain have been saved at:
[13:48:20] <Bytram> /etc/letsencrypt/live/soylentnews.org/fullchain.pem
[13:48:22] <Bytram> Your key file has been saved at:
[13:48:24] <Bytram> /etc/letsencrypt/live/soylentnews.org/privkey.pem
[13:48:26] <Bytram> Your cert will expire on 2019-09-09. To obtain a new or tweaked
[13:48:28] <Bytram> version of this certificate in the future, simply run certbot
[13:48:30] <Bytram> again. To non-interactively renew *all* of your certificates, run
[13:48:32] <Bytram> "certbot renew"
[13:48:34] <Bytram> - If you like Certbot, please consider supporting our work by:
[13:48:36] <Bytram> Donating to ISRG / Let's Encrypt: https://letsencrypt.org
[13:48:38] <Bytram> Donating to EFF: https://eff.org
[13:48:40] <Bytram> root@magnesium ~ #
[13:48:42] <Bytram> END PASTE
[13:48:44] <Bytram> YAY!
[13:49:16] <Bytram> .
[13:49:19] <Bytram> next step:
[13:49:22] <Bytram> >>> as root on magnesium:
[13:49:25] <Bytram> rc-service nginx restart
[13:49:28] <Bytram> the cert is now live for the main site. and copied to beryllium and lithium.
[13:49:29] <Bytram> there will be error messages. don't worry about them for now. i'll try and get rid of them later.
[13:49:33] <SemperOSS> Well done so far
[13:49:46] <Bytram> that's TTY3 for those following at home
[13:50:24] <Bytram> No errors!
[13:50:30] <Bytram> BEGIN PASTE
[13:50:33] <Bytram> root@magnesium ~ # rc-service nginx restart
[13:50:33] <Bytram> * Checking nginx' configuration ... [ ok ]
[13:50:33] <Bytram> * Stopping nginx ... [ ok ]
[13:50:33] <Bytram> * Starting nginx ... [ ok ]
[13:50:35] <Bytram> root@magnesium ~ #
[13:50:37] <Bytram> END PASTE
[13:51:17] <Bytram> whoops! Missed a step!!!!!!!
[13:51:38] <Bytram> failed to deploy them before the restart. Doh!
[13:51:42] <Bytram> TTY3: /root/bin/fixcertperms.sh
[13:52:28] <Bytram> NOW I do nginx restart...
[13:52:40] <Bytram> TTY3: rc-service nginx restart
[13:53:17] <Bytram> ok, good. no errors, same text as before.
[13:53:51] <SemperOSS> And we are UP!
[13:53:57] <Bytram> back to instructions (seems something is missing there) https://tech.soylentnews.org
[13:54:27] <Bytram> I see in the instructions:
[13:54:28] <Bytram> now follow the instructions spit out at the end of the fixcertperms.sh which should look something like this:
[13:54:28] <Bytram> #########################
[13:54:43] <Bytram> but, on TTY3, I saw:
[13:55:12] <Bytram> BEGIN PASTE
[13:55:24] <Bytram> #########################
[13:55:24] <Bytram> now you need to log out as root and run: kinit martyb
[13:55:24] <Bytram> then ssh to lithium and run: sudo /root/bin/newcert.sh
[13:55:24] <Bytram> then ssh to beryllium and run: sudo /root/bin/newcert.sh
[13:55:24] <Bytram> #########################
[13:55:28] <Bytram> END PASTE
[13:55:49] <Bytram> I'm assuming that is still on TTY3
[13:56:14] <Bytram> issues command: exit
[13:56:25] <Bytram> now sees prompt: martyb@magnesium
[13:57:08] <Bytram> oh, doh. My bad; instructions are okay.
[13:57:39] <Bytram> I thought I had already done a kinit, on all 3 TTYs, but an extra one won't hurt.
[13:58:22] <Bytram> TTY3: ssh lithium
[13:59:00] <SemperOSS> The new cert is up on the server hit
[13:59:02] <Bytram> made noise upon connection, but I just messed with the certs so is to be expected, right?
[13:59:06] <Bytram> BEGIN PASTE
[13:59:07] <Bytram> The authenticity of host 'lithium (2600:3c00::f03c:91ff:fe6e:d0a3)' can't be established.
[13:59:08] <Bytram> ECDSA key fingerprint is SHA256:ax9fcP0Hwv4K1qcAXMPf8ekBYyu0LxeYTCGDMGRYAVQ.
[13:59:08] <Bytram> Are you sure you want to continue connecting (yes/no)?
[13:59:10] <Bytram> END PASTE
[14:00:25] * Bytram types yes and presses enter
[14:00:29] <Bytram> BEGIN PASTE
[14:00:32] <Bytram> Warning: Permanently added 'lithium,2600:3c00::f03c:91ff:fe6e:d0a3' (ECDSA) to the list of known hosts.
[14:00:32] <Bytram> Now running GENTOO!
[14:00:32] <Bytram> You might want to chuck .bashrc, its Ubuntu centric.
[14:00:32] <Bytram> Breakage expected, but sudo and friends working.
[14:00:32] <Bytram> Need to sleep - NC
[14:00:32] <Bytram> Last login: Tue Jun 11 13:59:26 2019 from 2600:3c00::f03c:91ff:fe98:90b
[14:00:34] <Bytram> -bash: eval: line 28: syntax error near unexpected token `newline'
[14:00:37] <Bytram> -bash: eval: line 28: `Usage: lesspipe <file>'
[14:00:38] <Bytram> martyb@lithium:~$
[14:00:40] <Bytram> martyb@lithium:~$
[14:00:42] <Bytram> END PASTE
[14:00:44] <Bytram> back to the instructionsw
[14:01:07] <Bytram> >>> (continuing with) then ssh to lithium and run: sudo /root/bin/newcert.sh
[14:01:52] <Bytram> looks good!
[14:01:55] <Bytram> BEGIN PASTE
[14:01:56] <Bytram> martyb@lithium:~$ sudo /root/bin/newcert.sh
[14:01:56] <Bytram> * Stopping varnishd ... [ ok ]
[14:01:56] <Bytram> * Starting varnishd ...
[14:01:56] <Bytram> Debug: Version: varnish-6.1.1 revision efc2f6c1536cf2272e471f5cff5f145239b19460
[14:01:57] <Bytram> Debug: Platform: Linux,5.0.8-x86_64-linode123,x86_64,-junix,-smalloc,-sdefault,-hcritbit
[14:02:00] <Bytram> Debug: Child (17276) Started [ ok ]
[14:02:02] <Bytram> * Checking nginx' configuration ... [ ok ]
[14:02:05] <Bytram> * Stopping nginx ... [ ok ]
[14:02:08] <Bytram> * Starting nginx ... [ ok ]
[14:02:11] <Bytram> Rehash of Charybdis at PID 2311 was attempted
[14:02:13] <Bytram> martyb@lithium:~$
[14:02:15] <Bytram> END PASTE
[14:02:36] <Bytram> TTY3: exit (to get back from lithium to boron)
[14:02:52] <Bytram> >>> then ssh to beryllium and run: sudo /root/bin/newcert.sh
[14:03:16] <Bytram> TTY3: ssh beryllium
[14:03:24] <Bytram> same noise as before...
[14:03:28] <Bytram> BEGIN PASTE
[14:03:38] <Bytram> martyb@magnesium:~$ ssh beryllium
[14:03:38] <Bytram> The authenticity of host 'beryllium (2600:3c00::f03c:91ff:fe6e:311b)' can't be established.
[14:03:38] <Bytram> RSA key fingerprint is SHA256:98i6esnfzCla5+Xg08MLcPb3LTr36rAB73H+5Gil7Io.
[14:03:38] <Bytram> Are you sure you want to continue connecting (yes/no)?
[14:03:41] <Bytram> END PASTE
[14:03:51] <Bytram> TTY3: type yes and press Enter
[14:04:12] <Bytram> so far so good, now see:
[14:04:17] <Bytram> BEGIN PASTE
[14:04:18] <Bytram> Warning: Permanently added 'beryllium,2600:3c00::f03c:91ff:fe6e:311b' (RSA) to the list of known hosts.
[14:04:18] <Bytram> Last login: Fri Jun 7 22:32:20 2019 from boron.li694-22
[14:04:18] <Bytram> IMPORTANT SAFETY NOTE:
[14:04:19] <Bytram> Beryllium is using a custom compiled Apache 2.4, but CentOS's HTTPD 2.2
[14:04:21] <Bytram> can't easily be removed without breaking things. This POS keeps getting
[14:04:23] <Bytram> enabled so I moved /usr/sbin/httpd out of the way. Before installing yum
[14:04:26] <Bytram> updates, and after, make sure Apache is 2.4 and running the right one. I
[14:04:28] <Bytram> can't wait until we torch this box to the ground - NC
[14:04:29] <Bytram> Make sure you edit configs in /var/www/apache, and not in /etc/http!
[14:04:31] <Bytram> [martyb@beryllium ~]$
[14:04:33] <Bytram> END PASTE
[14:05:00] <Bytram> now that I am on beryllium, the next command is:
[14:05:03] <Bytram> >>> sudo /root/bin/newcert.sh
[14:06:20] <Bytram> Looks good...
[14:06:23] <Bytram> BEGIN PASTE
[14:06:25] <Bytram> [martyb@beryllium ~]$ sudo /root/bin/newcert.sh
[14:06:26] <Bytram> Stopping Dovecot Imap: [ OK ]
[14:06:28] <Bytram> Starting Dovecot Imap: [ OK ]
[14:06:30] <Bytram> Shutting down postfix: [ OK ]
[14:06:32] <Bytram> Starting postfix: [ OK ]
[14:06:34] <Bytram> Stopping httpd: [ OK ]
[14:06:36] <Bytram> Starting httpd: [ OK ]
[14:06:38] <Bytram> [martyb@beryllium ~]$
[14:06:40] <Bytram> END PASTE
[14:06:42] <Bytram> .
[14:06:46] <Bytram> back to instructions....
[14:06:48] <Bytram> >>> that's it. you're done.
[14:06:53] <Bytram> YAY!
[14:06:57] <Bytram> 'cept, not reallyu
[14:07:11] <Bytram> now time to check that everything still works...
[14:07:18] <TheMightyBuzzard> SemperOSS, the actual process here should take 15m tops (3-5m usually depending on how fast you can copy and paste). Bytram is just exceedingly deliberate until he's done it a few times. it is a quality we generally value in him.
[14:07:19] <Bytram> well, I'm still here, so that's good
[14:09:08] <SemperOSS> TheMightyBuzzard: I appreciate that and that he is one of the few people that actually follows instructions instead of guessing the next step
[14:09:32] <SemperOSS> Bytram: Great work and it works on Soylentnew.org as well as Sylnt.us!
[14:09:34] <Bytram> yeah, (1) I'm finally got the big picture that we are setting up challenge values in DNS records for let's encrypt to verify that we really are *us* and not somebody trying to take us over, and (2) I don't have much experience looking at DNS records so it looks like a wall-of-text until I've been through it a few times
[14:10:53] <TheMightyBuzzard> yeah, most of it don't need understanding for this though. like you don't need to know how to gap spark plugs to change the oil.
[14:11:16] <Bytram> TheMightyBuzzard: Yes, I appreciate your patience and understanding. Because I have been *exceedingly* verbose, here, I have hopes that I should be able to mostly just refer to this log of this attempt, as well as having the one from 2019-03-14 to refer back to, as well.
[14:11:39] <Bytram> well, you *say* that...
[14:11:41] <SemperOSS> I don't know about TMB, but I've had much too many
[14:12:01] <SemperOSS> sessions with DNS records in a tangle
[14:12:34] <TheMightyBuzzard> one is too many. dns is a pain in the entire ass because of the unpredictable delays.
[14:13:01] <Bytram> I had an acquaintance come to me one day... said she was changing her oil and noticed something strange... the oil she drained out was kind of red-colored...
[14:13:05] <Bytram> yep, she drained her transmission fluid and now had double the amount of oil in her engine.
[14:13:25] <SemperOSS> yrerLOL
[14:13:34] <SemperOSS> Oops, leaned on the keyboard
[14:13:52] <TheMightyBuzzard> long as she didn't drive it like that too long, it's serendipity. tranny fluid needs changed too and most folks don't.
[14:13:59] <Bytram> so, I want to make absolutely sure that what you think you are referring to, and what *I* think you are referring to are exactly one-and-the-same
[14:14:16] <SemperOSS> I always ask them to change my indicator fluid and make sure the brakes are well lubed
[14:14:22] <Bytram> lol
[14:14:37] <Bytram> well, having 10 quarts of oil in the engine is a not-good-thing
[14:14:58] <SemperOSS> Could go sloshing around places it should rather not
[14:15:05] <TheMightyBuzzard> not if you drive it like that, no. blow the seals. if you just dump it back out it's fine though.
[14:15:27] <Bytram> can't remember what happened next... I think we drained the extra oil, put in some new tranny fluid, and then sent her to a shop to make sure all was okay.
[14:15:53] <Bytram> 'zactly
[14:16:38] <SemperOSS> Well, when I got my first diesel car, my then partner went to fill it up with petrol
[14:17:01] <Bytram> so, you can see why I am a might bit hesitant at first to make sure I have a handle... not only on the *expected* path, but on some of the side streets and way points so as to make sure I am still on track.
[14:17:08] <Bytram> no!
[14:17:36] <Bytram> hopefully the gas hose nozzle did not fit the filler hole?
[14:17:51] <Bytram> s/gas/petreol/
[14:17:52] <SemperOSS> Luckily she saw the warning on the cap and did not drive anywhere before we had it drained out and refilled with the proper fuel
[14:18:01] <Bytram> Whew!
[14:18:12] <TheMightyBuzzard> SemperOSS, at least she didn't try changing the spark plugs.
[14:18:16] <Bytram> that was prolly an expensive fillup.
[14:18:21] <Bytram> Oh, I did that, too.
[14:19:12] <TheMightyBuzzard> actually, i'd be kinda impressed at a chick going to change the spark plugs. s'why i taught TR's girl child to do it.
[14:19:33] <SemperOSS> TMB: No, that would forever be in my domain. I've got twelve thumbs and was always the one who got assigned jobs that could get you dirty
[14:19:42] <Bytram> did each one in turn so I did not change the firing order by accident. Had 3 done and was on the last one and wondered why this plug was not snugging up like the other 3 had... My dad had shown me how to change the plugs on an old V8... with a cast iron block and head; this one was aluminum
[14:19:49] <Bytram> yep, I'd stripped the threads.
[14:20:06] <TheMightyBuzzard> Bytram, diesels don't have spark plugs =P
[14:20:16] <Bytram> By the time I got it to the dealer and they cleaned things up and put in a helicoil, that repair cost me ~$500
[14:20:19] <SemperOSS> Bytram: Arggggghhhh
[14:20:24] <Bytram> yup
[14:20:51] <SemperOSS> Just get some bigger plugs and make new threads, yes?
[14:21:01] <Bytram> No, not quite.
[14:21:28] <SemperOSS> What could go wrong, though? (Angelic smile)
[14:21:48] <SemperOSS> O:-)
[14:22:29] <TheMightyBuzzard> almost certainly had to take the heads off to avoid pushing metal flotsam into the cylinders.
[14:22:43] <Bytram> had a rag in the messed up cylinder to keep filings from falling into cylinder, then worked in a "helicoil" to grab into the head and provide a threaded space that was spark-plug-sized, and then replaced the plug, and finally, hope that when I started it up there weren't too many things in there scoring the cylinder walls.
[14:23:20] <Bytram> then after about 25? miles or so, did an oil/filter change to make sure.
[14:23:38] <Bytram> is as best as I can remember; that was like 30 years ago.
[14:23:40] <SemperOSS> Aluminium is a fickle material, though shavings do no good in steel cylinders either
[14:23:52] <Bytram> nod nod
[14:24:28] <Bytram> I really appreciate you guys running shotgun today...
[14:24:31] <TheMightyBuzzard> aluminum shavings shouldn't bother a steel cylinder but that "shouldn't" is no the same as "won't"
[14:24:36] <TheMightyBuzzard> yar
[14:24:47] <TheMightyBuzzard> and with that, i'm off to catch a foosh.
[14:24:50] <Bytram> SemperOSS: your helping me out of the "frozen" screen was... timely
[14:25:11] <Bytram> TheMightyBuzzard: best of luck to ya and again, thanks for keepin an eye (or two) on me!
[14:25:12] <SemperOSS> Well, we're here to help, innit?
[14:25:29] <Bytram> a friend in need is a friend, indeed
[14:26:02] <SemperOSS> TheMightyBuzzard: Off you go then, and have a nice time
[14:26:11] <Bytram> is one of the main attractions of programming to me was the nearly unconditional willingness to help each other
[14:26:29] <SemperOSS> Bytram: Indeed! O:-)
[14:26:31] <Bytram> Hey, wow! How'd you do *that*?
[14:26:47] <SemperOSS> Which, what, where?
[14:27:04] <Bytram> Or... (*&P^&! How the ... can I get out of this? Oh, just grease the brakes and you'll be on your way!
[14:27:10] <Bytram> =)
[14:27:20] <Bytram> anyway, time for me to get going about my day, too.
[14:27:31] <Bytram> should prolly look at the story queue, too.
[14:27:34] <Bytram> thanks again!
[14:27:50] <SemperOSS> You're, as always, welcome
[14:27:53] <Bytram> and, for completeness sake..
[14:28:04] * Bytram logs out and closes his 3 TTYs
[14:28:41] * SemperOSS goes looking for coffee to keep awake this late afternoon
[14:28:55] <Bytram> yeah, is PM for you now, right?
[14:29:04] <SemperOSS> 15:29
[14:29:21] <Bytram> gnawed gnawed
[14:29:33] <Bytram> hope you've made time to have a bite to eat, too!
[14:29:33] <SemperOSS> (Or 3:15 PM for those pesky English-speaking hordes)
[14:29:41] <Bytram> lol
[14:29:49] <SemperOSS> 3:29PM, that is!
[14:29:49] <Bytram> laters!
[14:30:00] <SemperOSS> Later 'gator
[14:30:06] <Bytram> ciao for now
[14:30:19] <SemperOSS> B-y-e
[20:02:00] -!- fyngyrz_ [fyngyrz_!~fyngyrz@66.171.jo.vll] has joined #dev
[20:02:00] -!- fungus has quit [Read error: Connection reset by peer]
[20:02:00] -!- fyngyrz has quit [Read error: Connection reset by peer]
[20:02:43] -!- fungus [fungus!~ben@66.171.jo.vll] has joined #dev