Back to Home / #openttd / 2009 / 08 / Prev Day | Next Day
#openttd IRC Logs for 2009-08-25

---Logopened Tue Aug 25 00:00:26 2009
00:01-!-KingJ [] has quit [Quit: ZNC -]
00:04-!-KingJ [] has joined #openttd
00:09-!-KingJ [] has quit []
00:10-!-KingJ [] has joined #openttd
00:13-!-Azrael- [] has quit [Read error: Connection reset by peer]
00:48-!-HerzogDeXtEr [~Flex@] has quit [Quit: Leaving.]
01:01-!-FRQuadrat [] has quit [Quit: Der Worte sind genug gewechselt, lasst mich auch endlich Taten sehn!]
01:56-!-nicfer1 [~Usuario@] has quit [Quit: Leaving.]
02:01-!-andythenorth [] has joined #openttd
02:15-!-reldred [~reldred@] has joined #openttd
02:18-!-em179 [] has joined #openttd
02:25-!-em179 [] has left #openttd []
02:39-!-Cybertinus [] has joined #openttd
02:48-!-Terkhen [] has joined #openttd
02:48<Terkhen>good morning
02:49-!-HerzogDeXtEr [~Flex@] has joined #openttd
03:01-!-HerzogDeXtEr [~Flex@] has quit [Quit: Leaving.]
03:15-!-HerzogDeXtEr [~Flex@] has joined #openttd
03:15-!-MizardX [] has quit [Read error: No route to host]
03:15-!-MizardX [] has joined #openttd
03:18-!-Gekz [] has joined #openttd
03:19-!-Gekz [] has left #openttd []
03:28-!-andythenorth [] has quit [Quit: andythenorth]
03:34-!-andythenorth [] has joined #openttd
03:35-!-[com]buster [] has joined #openttd
03:45-!-HerzogDeXtEr [~Flex@] has quit [Quit: Leaving.]
03:53-!-Zephyris [] has joined #openttd
04:00-!-Zephyris [] has quit [Quit: ChatZilla 0.9.85 [Firefox 3.5.2/20090729225027]]
04:01<TrueBrain>morning all :)
04:01<@Rubidium>what? is it still morning? it's a miracle!
04:02<TrueBrain>shut up
04:02<@Rubidium>hello Weirdo :)
04:04-!-Lisby [] has joined #openttd
04:04-!-Lisby is now known as green-devil
04:06-!-Grelouk [] has joined #openttd
04:18-!-keoz [] has joined #openttd
04:21-!-Terkhen [] has quit [Quit: ...]
04:24-!-Terkhen [] has joined #openttd
04:30-!-andythenorth [] has quit [Quit: andythenorth]
04:36-!-fonsinchen [] has joined #openttd
04:47-!-Exl [] has joined #openttd
04:58-!-[com]buster is now known as Combuster
05:09<CIA-1>OpenTTD: rubidium * r17276 /extra/masterserver_updater/src/shared/mysql.cpp: [MSU] -Change: make the download count incrementer a bit more lenient to (DB) table changes
05:11<CIA-1>OpenTTD: truebrain * r17277 /extra/website/bananas/ (base.sql [Website] -Change: no longer let Django manage the download table
05:18-!-Chris_Booth [] has joined #openttd
05:18-!-Terkhen [] has quit [Read error: Connection reset by peer]
05:22<CIA-1>OpenTTD: rubidium * r17278 /extra/masterserver_updater/ (39 files in 7 dirs): [MSU] -Fix: some missing header stuff like $Id$ and missing svn keywords (both eol-style and Id)
05:22<CIA-1>OpenTTD: rubidium * r17279 /trunk/src/core/math_func.cpp: -Fix: svn:eol-style missing
05:24<CIA-1>OpenTTD: rubidium * r17280 /extra/masterserver_updater/src/contentserver/tcp.cpp: [MSU] -Fix: more descriptive error message for when loading a file fails
05:32-!-Terkhen [] has joined #openttd
05:35-!-fonsinchen [] has quit [Remote host closed the connection]
05:40-!-reldred1 [~reldred@] has joined #openttd
05:45-!-keoz [] has quit [Quit: Leaving]
05:46-!-reldred [~reldred@] has quit [Ping timeout: 480 seconds]
05:51-!-Biolunar [] has joined #openttd
05:53-!-HerzogDeXtEr [~Flex@] has joined #openttd
06:05-!-em179 [] has joined #openttd
06:05-!-em179 [] has left #openttd []
06:07-!-em179 [] has joined #openttd
06:09-!-tux_mark_5 [] has joined #openttd
06:09-!-em179 [] has left #openttd []
06:10-!-em179 [] has joined #openttd
06:11-!-em179 [] has left #openttd []
06:11-!-em179 [] has joined #openttd
06:13<em179>window show
06:13-!-em179 [] has left #openttd []
06:18-!-keoz [] has joined #openttd
06:35-!-Nickman_87 [] has joined #openttd
06:44<CIA-1>OpenTTD: smatz * r17281 /trunk/src/ (callback_table.cpp group_gui.cpp): -Feature(tte): open the 'Rename group' dialog after creating new group
06:47-!-Mks [] has quit []
06:48<Nickman_87>hi all
06:48<SmatZ>hello Nickman_87
06:48<TrueBrain>SmatZ: I will migrate your SSH account to LDAP now :)
06:49<SmatZ>TrueBrain: and svn?
06:49<TrueBrain>you don't have a svn account :p Only SSH :)
06:49<SmatZ>ok :)
06:49<TrueBrain>either way, would you mind logging out of SSH for a minute or 3? :)
06:49<SmatZ>done ;)
06:51<TrueBrain>SmatZ: all done
06:53<SmatZ>TrueBrain: thanks :)
06:53<SmatZ>it works!
06:53<TrueBrain>of course it does :p
06:53<TrueBrain>haha :)
06:53<SmatZ>hmm now I have to get used to different password :)
06:54<TrueBrain>install a ssh key :)
06:54<TrueBrain>soon it won't work via password ;)
06:54<SmatZ>this saved me at least twice from commiting wrong stuff :-D
06:54<blathijs>TrueBrain: Where does one install the ssh key? Was there a django app for that?
06:54<TrueBrain>blathijs: it will be in the Profile
06:54<TrueBrain>when that is done :p
06:54<SmatZ>ah :-/
06:55<TrueBrain>SmatZ: I can make you a pre-commit script which requires you to validate your commit ;)
06:55<blathijs>Type "yes, I am really sure that this commit is ok." to continue
06:55<SmatZ>TrueBrain: would be nice ;)
06:55<TrueBrain>but why you don't use the EDITOR to type the commit to validate? :P
06:56-!-Nickman_87 [] has quit [Ping timeout: 480 seconds]
06:56<blathijs>SmatZ: I'd recommend using the svn vim plugin
06:56<blathijs>SmatZ: That shows the svn diff in a split window below the commit message
06:56<SmatZ>the WHAT? hehe... yeah, I heard something about that... like when I miss that "comment" part, editor is executed...
06:56<blathijs>(when you use vim to type the commit message, of course)
06:56<SmatZ>blathijs: I have EDITOR=nano now :-x
06:56<TrueBrain>here it only shows which file I will be committing :)
06:57<SmatZ>I don't know vim :(
06:57<TrueBrain>which mostly is enough ;)
06:57<SmatZ>all those shortcuts and commands... ;)
06:57<blathijs>TrueBrain: I really like having the diff at hand when typing the commit message, it prevents me from missing changes
06:57<blathijs>SmatZ: It really is worth it to invest some time learning vim, IMHO
06:57<TrueBrain>it indeed is useful :)
06:57<blathijs>SmatZ: But perhaps nano has something similar, though I doubt it
06:58<SmatZ>blathijs: I guess so :) I wanted to learn it several times, never managed to
06:58-!-ecke [~ecke@] has joined #openttd
06:58-!-Nickman_87 [] has joined #openttd
06:58<blathijs>SmatZ: So you'll just have to remember to type svn diff | less and look closely every time before committing
06:58<blathijs>SmatZ: The best way is not to try to learn it, but just start using it
06:58<blathijs>(But not just before an important deadline ;-p)
06:59-!-HerzogDeXtEr [~Flex@] has quit [Ping timeout: 480 seconds]
06:59<SmatZ>it rather happened that I was searching in bash history for "svn diff"
06:59<SmatZ>and I chose "svn ci something" instead
06:59<TrueBrain>never add a commit message via svn commit ;)
06:59<blathijs>Yeah, just always use the editor to type it
07:00<SmatZ>ok, I will switch to no-commit-in-svn-ci
07:00<TrueBrain>that saved me so many times :p
07:00-!-Coco-Banana-Man [] has joined #openttd
07:00<blathijs>That will also prevent you from typing short single line messages where multiple lines would have been more appropriate :-p
07:00<blathijs>This kind of stuff is exactly why I like git so much
07:01<blathijs>--amend is briljant :-)
07:01<blathijs>Half of the time I start committing changes before I've completely tested them
07:01<blathijs>Writing a commit message is perfect to do while your code is compiling
07:01<blathijs>any errors can be --amended afterwards anyway
07:02<TrueBrain>haha, nice ;)
07:02-!-Yexo_ [] has joined #openttd
07:02<TrueBrain>SmatZ: either way, ssh keys can have passwords too ;)
07:03<TrueBrain>is even more safe ;)
07:03<blathijs>Actually, they should really, really always have a passphrase (unless they're supposed to be used automated)
07:03<Noldo>then you can use ssh-agent and keychain <3
07:04<TrueBrain>I never use ssh-agent
07:04-!-Azrael- [] has joined #openttd
07:04<blathijs>If you don't want to type the passphrase, you should use ssh-agent, never just remove the passphrase...
07:04<TrueBrain>but I also not always use passphrases :) Depends on the key and the access level :p
07:04<SmatZ>TrueBrain: ah, good :)
07:05<TrueBrain>but yes, all root@ should _always_ have passphrases :)
07:05-!-Yexo [] has quit [Ping timeout: 480 seconds]
07:05<SmatZ>I will have to move my ssh key from this account to all other accounts, right?
07:05<TrueBrain>SmatZ: how do you mean?
07:05<SmatZ>so I can connect to SSH from, say, my school account
07:05<TrueBrain>I suggest creating a passphrases key just for OpenTTD :p
07:05<TrueBrain>yeah, you can use it for what ever you like
07:06<TrueBrain>as long as you keep your private key private :)
07:06-!-OwenS [] has joined #openttd
07:06<SmatZ>but it has to be available in all accounts I am using :(
07:06<SmatZ>but okay
07:06<TrueBrain>oh, like that
07:06<TrueBrain>USB keys are useful ;)
07:06<TrueBrain>just use a passphrases if you put your key on a USB :)
07:06<SmatZ>I will upload it somewhere to web and download it if needed (haha)
07:07<TrueBrain>I am happy my sarcasm detector is active :p
07:07<blathijs>Ah, that's convenient if I ever need to use SmatZ' account
07:07<blathijs>SmatZ: Alternatively, you can make a different key for each place you will be connecting from, and set them all as authorized keys with openttd
07:07<SmatZ>something like
07:08<SmatZ>blathijs: ah, good idea
07:08<blathijs>that way, if your account at school is compromised, you don't need to switch private keys everywhere
07:08<SmatZ>I didn't want to bug TrueBrain more times though
07:08<TrueBrain>blathijs: which means I need to allow that via the Profile page ... ;)
07:08<SmatZ>good idea
07:08<blathijs>TrueBrain: Yup, but you weren't going to limit peoples security options anyway, right?
07:08<TrueBrain>well, limiting to ssh keys is a limitation, not? :)
07:09<blathijs>TrueBrain: That profile page, do you have a preview version yet? And will you be releasing code?
07:09<TrueBrain>SmatZ: I have a key on USB I use to login to my home, which can login to for example openttd :p So I bounce my connection
07:09<TrueBrain>blathijs: I have not a single words written down for it :p Why?
07:09<Noldo>bouncing is fun!
07:09-!-Yexo [] has joined #openttd
07:09<blathijs>TrueBrain: Posing an upper limit on their security options, then :-p
07:09<Noldo>and even more so with ssh-key forwarding
07:10<Noldo>or agent forwarding but anyway
07:10<blathijs>TrueBrain: Hmm, I thought you were already started a bit. I have an LDAP server as well, which might want something like a profile page as well, for people to set their own LDAP attributes
07:11<blathijs>I don't have SSH keys in LDAP yet, but I might add that if people could set them through a profile page
07:11<TrueBrain>blathijs: oh, this page will be simple: displayname, password, and ssh keys
07:11<TrueBrain>ssh keys won't go in LDAP btw
07:11<blathijs>TrueBrain: Yeah, which is exactly what I'd need
07:11<TrueBrain>they will be written to a seperate fs
07:12<blathijs>Ah, I thought through LDAP. But the effect is the same of course (probably even better, since there is no need to periodically write out SSH keys)
07:12<TrueBrain>exactly :)
07:12<blathijs>TrueBrain: Btw, do you realize that limiting ssh logins to ssh keys is rather pointless if you can upload new ssh keys through a password-authenticated website? It might prevent ssh bruteforce attacks, but not add real security.
07:12<TrueBrain>and I couldn't find a good enough container in LDAP :p
07:13<blathijs>Debian does it, perhaps they have their LDAP schema available somewhere :-)
07:13<TrueBrain>blathijs: the problem is brute-force attacks and the fact I want to allow access to lower-security groups (e.g.: normal users)
07:13-!-KenjiE20 [~KenjiE20@] has joined #openttd
07:13-!-R0b0t1 [] has quit [Remote host closed the connection]
07:14<blathijs>TrueBrain: normal users which chose stupid, bruteforceable passwords, you mean? :-)
07:14<TrueBrain>exactly :
07:14<blathijs>Fair point
07:15<blathijs>Though you could still be bruteforced on the web interface, but that doesn't happen that often
07:15<TrueBrain>and it would be fairly simple to protect
07:16<blathijs>OTOH, ssh is even simpler to protect, just install fail2ban
07:16-!-Yexo_ [] has quit [Ping timeout: 480 seconds]
07:17<TrueBrain>but okay, that was the idea behind it, to avoid unneeded stuff and centralize access
07:17<Noldo>simple syn based limiter goes a long way
07:18<TrueBrain>blathijs: btw, adding/removing sshkeys will require validations via email
07:18<TrueBrain>avoiding most of the attacks possible
07:18<blathijs>TrueBrain: Ah, that seems like a decent approach
07:19<TrueBrain>I guess only displayname will be changable without validation :p
07:19<TrueBrain>hehehehe :)
07:21<TrueBrain>but if you have a better idea for a security model, I would love to hear it :)
07:21-!-green-devil [] has quit []
07:21<TrueBrain>in more detail: I want to allow svn+ssh commit access for NoAI projects, as over WebDAV is simply SUCKS ASS
07:22<TrueBrain>is = it :p
07:22*OwenS rewrites his LLVM backend because it's become a *mess*
07:22<Ammler>shouldn't at least the login/account be forced to ssl?
07:22-!-HerzogDeXtEr [~Flex@] has joined #openttd
07:22<Noldo>TrueBrain: how do you solve the problem with the file permissions?
07:23<TrueBrain>Ammler: if you can get us a certificate signed by a root CA which most OSes accept, I would
07:23<TrueBrain>Noldo: a single VPS will handle all VCS systems, and all SSH access is piped through a wrapper
07:23<TrueBrain>(or at least, that is what I am planning to do)
07:23<Ammler>oh well, if you are that far and like to register, you would also install the ssl certifcate.
07:24<TrueBrain>well ... not all browsers ALLOW you to do that
07:24<Ammler> would do that, but doesn't allow wildcard certs for free.
07:25<TrueBrain>we only have 1 SSL domain:
07:25<TrueBrain>the rest are .. 'friendly' helpers redirecting you to
07:25<Ammler>you can test the cert here:
07:26<OwenS>Ammler: Well Ubuntu doesn't have it
07:26<Ammler>but ubuntu does allow to install it.
07:26<OwenS>Yes. But you have to install it. It's no better than a self signed cert in that case...
07:26<Ammler>oh, I see, you are expert ;-)
07:26-!-keoz [] has quit [Quit: Leaving]
07:27<TrueBrain>either way Ammler, does it matter, http or https? They can snoop http, sure, but that has to be a local issue .. in that case they can also have a keystroker installed :p
07:28<blathijs>Is it me, or is 256bit SSL really not that much?
07:28<blathijs>TrueBrain: Technically, traffic can be sniffed en-route as well, though it's not so likely
07:28<OwenS>256-bit AES?
07:28<TrueBrain>blathijs: means a compromised ISP .. so yes, unlikely ;)
07:29<OwenS>Namecheap will sell you a RapidSSL cert for $9.95. Or for free with a $9.96 domain :P
07:29<@Rubidium>... but not a wildcard certificate
07:30<blathijs>TrueBrain: Though things like using public WLAN might be more likely
07:30<TrueBrain>maybe we should just get a paid one at some big root CA thingy ..
07:30<TrueBrain>blathijs: true
07:30<OwenS>TrueBrain: RapidSSL's root cert is in IE 5+/AOL 5+/Netscape 4.7+/Opera 7+/Safari/Mozilla/Firefox... seems common enough :p
07:31<Ammler>anyway, startssl doesn't work on my winbox either :-(
07:31<TrueBrain>euh .. your OS carries root certs ..
07:31<TrueBrain>ca-certificates package, mostly
07:32<OwenS>On Windows most browsers seem to ship their own certs
07:32<OwenS>I presume they just install them into the system library though
07:33<blathijs>OwenS: Typicial that RapidSSL says "Single Root Certificate - Easy to Install" though, that suggests that their root CA isn't installed in browsers yet...
07:33<OwenS>On Linux yes it tends to come from a standard package
07:33<OwenS>blathijs: By that they mean you don't need to configure your webserver to chain certificates. I have a multiple root certificate, which means I actually need to feed my webserver two certs to get back to the browser root CA
07:34<blathijs>Ah, like that
07:34<OwenS>As in my cert is from CA A, who got a cert from CA B, who's cert your browser has
07:34<blathijs>So they mean their root CA signs all certificates directly
07:37<@Rubidium>oh... that implies 'bad' security
07:37<TrueBrain>the ones from godaddy are payable
07:37<TrueBrain>but I can't find which root CA it is :p
07:38<TrueBrain>they claim 99% browser acceptance .. but that they all do :p
07:38<@Rubidium>means that to-be-signed-certificates go to the root CA to be signed, which means lots of traffic with data from unknown sources
07:38<Ammler>which os or browser doesn't allow installing certs?
07:38<@Rubidium>and if something goes wrong you have to scratch your root CA and ALL certificates that depend on it (i.e. all certificates you ever signed)
07:38<OwenS>Ammler: Installing certs means people don't trust you :p
07:39<OwenS>And it's too complex for users :p
07:39<TrueBrain>Ammler: FF3.5 from time to time says: invalid cert
07:39<OwenS>Rubidium: vs going to an intermediate CA where you have to scratch the intermediate CA and the VERY sizable quantity of certificates signed by it. Same either way
07:39<TrueBrain>and doesnt' allow any way to bypass that
07:39<TrueBrain>simply because it doens't know the root CA
07:40<OwenS>TrueBrain: RapidSSL Wildcard is cheaper than GoDaddy's wildcard...
07:40<TrueBrain>OwenS: I don't care about wildcards
07:40<OwenS>Their standard is cheaper also :p
07:40<@Rubidium>OwenS: a part of your customers vs all customers
07:41<@Rubidium>in the latter you can better close your company
07:41<TrueBrain>OwenS: 20 euro for godaddy vs 80 dollar for RapidSSL
07:41<TrueBrain>dunno ..
07:41<OwenS>Rubidium: Multiple root means that the company you're getting your cert from just got a signing cert from someone else rather than owning their own. In other words... works same either way :p
07:41<OwenS>TrueBrain: $9.95 :p
07:42<TrueBrain>a subseller ...
07:42<OwenS>TrueBrain: GoDaddy are too..
07:42<@Rubidium>OwenS: IIRC Verisign makes it's own signing certs
07:43<TrueBrain>OwenS: I can't find any record of that (also not if they are a Root CA)
07:43<CIA-1>OpenTTD: yexo * r17282 /trunk/src/3rdparty/squirrel/doc/ (sqstdlib2.chm sqstdlib2.pdf squirrel2.chm squirrel2.pdf): -Fix (r17195): the squirrel documentation files were not updated
07:43<Ammler>I guess, firefox is the only browser which has the root cert installed from startssl
07:43<OwenS>Rubidium: They sign theirs directly from their many year old root CA
07:43<OwenS>Ammler: Ubuntu Firefox doesn't have it - it gets it's CAs from the system CA hive
07:44<@Rubidium>guess they undid some of the security they once had ;)
07:44<OwenS>TrueBrain: RapidSSL comes fromEquifax Secure eBusiness CA-1
07:44<Ammler>OwenS: you can safely ignore linux user in that case.
07:44<OwenS>Ammler: But AFAIK it doesn't ship it on Windows either
07:45<Ammler>yes, ie didn't allow, but ff did.
07:46<Ammler>so it seems no free cert for all :-(
07:46<OwenS>StartSSL is only useful if you're setting up a Jabber server
07:48<TrueBrain> <- sounds decent
07:48<TrueBrain>they are root CA, and accepted by most browers
07:49<Ammler>imo, not worth to pay for it.
07:50<TrueBrain>well, the problems with the current certificate is not worth the trouble either :p
07:50<TrueBrain>cacert is not as accepted as they want us to believe
07:50<Ammler>indeed, better keep it like now then. :-)
07:50<TrueBrain>huh? You rather keep the trouble?
07:50<Ammler>you don't have, if oyu don't use ssl, like I asked for.
07:51<@Rubidium>maybe ask them for sponsoring
07:51<TrueBrain>Rubidium: somehow I doubt they will do that, but yeah, that is an option :)
07:51<@Rubidium>like: we don't need to $10,000 warranty, we just need a wildcard SSL certificate for our open source project
07:52-!-glx [glx@2a01:e35:2f59:c7c0:505d:fe1:345d:1a8f] has joined #openttd
07:52-!-mode/#openttd [+v glx] by ChanServ
07:52<TrueBrain>I always wonder what those warranties are for :p
07:52<@Rubidium>for when their root key get stolen and people hijack your site
07:53<TrueBrain>how would they hijack our site? :p
07:53<@Rubidium>rerouting IP traffic etc.
07:53<OwenS>How? :P
07:53<OwenS>I mean.. they don't even have your private key :p
07:53<Ammler>mäh, isn't that the whole reason for ssl certs?
07:54<@Rubidium>OwenS: but the SSL provider has (had?) it
07:55<OwenS>Rubidium: No they don't. You send them your CSR, which is your unsigned public key, they sign it and send you it back
07:56<@Rubidium>so then the whole warranty if pointless?
07:56<TrueBrain>signing certs is pointless
07:56<@Rubidium>signing certs via the internet at least is
07:57<TrueBrain>cacert for sure is pointless, as every maniac can make another cert which looks the same as ours
07:57<OwenS>The warranty is about mis-issued certificates. Whatever that is
07:57<blathijs>If a root CA is leaked, an attacker can generate certificates for any domain, and thus perform valid-looking man-in-the-middle attacks
07:58<blathijs>But they can attack any client with the root CA installed, not just domains that have a certificate from that root CA
08:00<blathijs>TrueBrain: Uh, it seems that cacert actually does some level of identity control, so that looks ok
08:00<TrueBrain>blathijs: they 'identified' me
08:00<TrueBrain>makes you wonder :p
08:00<blathijs>better than most SSL certificates, which aren't ID-verified
08:00<blathijs>According to, you need to identify yourself with a valid national ID
08:01<TrueBrain>try ;)
08:01<blathijs>(Though that only helps if they also verify that against whois info in the domain...)
08:01<blathijs>dunno, I didn't think was really clear. No "what is cacert anyway?" page anywhere
08:01<@Rubidium>oh, that they didn't
08:01<OwenS>The standard for non-EV SSL certs is 1) A phonecall 2) An e-mail to one of the domain's administration addresses
08:02<TrueBrain> is automated
08:02<TrueBrain>I believe there was some validation over a email
08:02<TrueBrain>can't remember really
08:02<Ammler>startssl verifies with fix email to the whois db or [web|post]master@domain
08:02<OwenS>I got an e-mail and an automated phonecall
08:02<TrueBrain>for sure no real identification, only simple web-queries
08:02<OwenS>(From Commodo)
08:03-!-valhallasw [] has joined #openttd
08:08<blathijs>TrueBrain: Yeah, it seems that you need to verify using a postmaster@domain email
08:08<Ammler>he, you could use FreeSSL from RapidSSL, you just need to rename monthly ;-)
08:08<blathijs>TrueBrain: Which is sortof secure for the domain
08:09<blathijs>TrueBrain: And you can only put the domain in the certificate, no realname, location, tec
08:10<blathijs>But it seems you can't do that ever...
08:10<blathijs>The only advantage of ID'ing, is that you get a 24 month validity instead of 6 month
08:10<blathijs>(and there is some stuff like using your real name in client certificates)
08:28<Eddi|zuHause>grr... this revolutions mod is difficult... i can't keep these bastards under control...
08:41-!-lewymati [] has joined #openttd
08:48<CIA-1>OpenTTD: yexo * r17283 /trunk/src/3rdparty/squirrel/ (3 files in 3 dirs): -Cleanup [Squirrel]: remove a few unneeded changes to squirrel code
08:48-!-Singaporekid [] has joined #openttd
08:54<+glx>TrueBrain: I had a working 10.4.8 install :)
08:54<TrueBrain>_had_ :p
08:54<+glx>but I stupidely tried to update it to 10.4.11
08:54<TrueBrain>either way, it is progress ;)
08:54<TrueBrain>maybe you can try the 10.5 boot-132 method :)
08:55<+glx>trying to dl leo4all 10.5.2
08:55<TrueBrain>good thing about boot-132 method, is that you can upgrade
08:56<+glx>I have an AMD cpu :)
08:58<+glx>kernel updates are problematic
08:58<TrueBrain>not with the vodoo-mach_kernel
08:58<TrueBrain>(which you want anyway)
08:59<TrueBrain>bah, I somehow need to convert a dmg to iso again
09:01<+glx>try 7-zip to navigate through dmg
09:01<TrueBrain>I need the bootloader
09:02<TrueBrain>hmm ... via ESXi it seems I can't get AMD-V to work :(
09:02<TrueBrain>I guess that shouldn't really suprise me
09:03-!-green-devil [] has joined #openttd
09:03<+glx>grr without tpb it's quite hard to download
09:04<TrueBrain>hmm .. and demonoid closed his invite-system
09:05<+glx>I found many torrents but they all have tpb as tracker
09:06-!-reldred1 [~reldred@] has quit [Read error: Connection reset by peer]
09:08-!-fonsinchen [] has joined #openttd
09:09-!-Yexo [] has quit [Quit: bye]
09:14-!-Yexo [] has joined #openttd
09:22<TrueBrain>I really dislike about OSX that you need OSX to handle any of their files or thingies
09:24<@Rubidium>Neelie! Neelie! Neelie!
09:29-!-Dred_furst [] has joined #openttd
09:32-!-Progman [] has joined #openttd
09:33-!-green-devil [] has quit []
09:33-!-Grelouk_ [] has joined #openttd
09:34-!-Fuco [] has joined #openttd
09:39-!-Grelouk [] has quit [Ping timeout: 480 seconds]
09:40-!-frosch123 [] has joined #openttd
09:51<OwenS>One tracker has announced it's traffix has multiplied 8 times since TPB went down, lol
09:58<@Belugas>TPB? The Pirate Bay? Down?
09:58<@Belugas>OMG OMG OMG!
09:58<OwenS>Their ISP's ISP got forced to disconnect them yesterday
09:58<OwenS>The site is back up but the trackers are down
10:00<+glx>trackers are not really needed with DHT ;)
10:00<+glx>but they help
10:00<OwenS>DHT still really needs trackers to bootstrap
10:01<+glx>I downloaded 10.4.8 using DHT only
10:02<KenjiE20>just add opentbittorrent to everything :P
10:02<TrueBrain>the end of the torrent network this is ;)
10:03<OwenS>OpenBittorrent, publicBT and TheHiddenTracker :p
10:04<OwenS>The last will be a bitch for anyone to go after :p
10:05<@Rubidium>what they just did is make the more or less "monopolist" die, which mean that the others will take over making it harder to get control over the whole thing
10:06<OwenS>I wouldn't be surprised if the indexing sites start adding those 3 trackers to all the torrents added to them
10:06<Yexo>TrueBrain: <- "The database did not find the text of a page that it should have found, named "Industries". "
10:07<TrueBrain>I guess a result of yesterdays crash?
10:08<Yexo>did something crash yesterday?
10:08<TrueBrain>the whole server, yes
10:10<TrueBrain>where does wiki store its pages ... :p
10:10<Yexo>TrueBrain: all old versions are accessable, so I can probably fix this page by just saving the last version again
10:11<TrueBrain>yes, but give me a sec
10:11<TrueBrain>I want to see where the corruption happened
10:11<@Rubidium>TrueBrain: in the DB ofcourse!
10:11<@Rubidium>as binary blob
10:11<TrueBrain>Rubidium: I can't find which :p
10:15<TrueBrain>nope, that record is indeed not in the table :p
10:16<TrueBrain>and it refuses any save action
10:17<TrueBrain>I wonder if any other page can be changed :p
10:20-!-Phoenix_the_II [] has joined #openttd
10:22<TrueBrain>Yexo: k, I managed to recover the page
10:23<TrueBrain>what does amaze me, it is the only missing record in the wiki
10:23<TrueBrain>and you somehow found it :p
10:23<Yexo>it's the top item in recent changes ;)
10:23-!-Exl [] has quit [Read error: Connection reset by peer]
10:23<Yexo>nice work on recovering it :)
10:23<TrueBrain>I still have NO idea where wiki stores its pages
10:23<TrueBrain>but it seems somehow the Page was cached, as the Edit thingy was easy to recover :p
10:24-!-Exl [] has joined #openttd
10:25<TrueBrain>Yexo: just that top entry is not in the database :p
10:25<TrueBrain>so the last edit is no more
10:30<TrueBrain>there, removed the last traces of it :)
10:31<TrueBrain>who has an idea on this: Password Recovery. You will in your usename and email address, your new password. You get an email with validation code, after which your password is set to the one you gave earlier. Sounds good?
10:31<Yexo>most sites that have such a system ask you to enter your new password after you enter the validation code
10:32<TrueBrain>yeah, but I wonder if that is more a habbit or any real reason
10:32<+glx>so like new account without creating a new account
10:32<TrueBrain>my method makes the validation mail only validate stuff .. while most methods don't validate, they open a door for you :p
10:32<TrueBrain>glx: exactly
10:32<Yexo>in your proposed scheme: what happens if someone else enters my username and email and a random new password? If I ignore the email, can I still login with the old password?
10:32<TrueBrain>Yexo: of course
10:33<Yexo>then it's fine :)
10:33<TrueBrain>I guess there is the only pitfall, when you click the link while you didn't requested a new password :p
10:33<Yexo>I was about to point that out :)
10:33<Yexo>but then you can use the same system again, and request a nwe password :)
10:33<TrueBrain>very true :)
10:34<Yexo>but at that point your password is (temporarily) known by someone else
10:34<TrueBrain>see, my method is one less page for me to make :p
10:34<Yexo>yes, but it's also less secure
10:35<Yexo>1. I enter truebrain /
10:35<TrueBrain>it does require a stupid action from my side, but yes
10:35<Yexo>2. I wait for you to click the link in the email while trying every minute to log in with the new password
10:35<Yexo>3. As soon as you click the link, I change the email so effectively taking over your account
10:35<Yexo>it does require a stupid action from my side, but yes <- users are stupid
10:35<+glx>any sane user won't click on the link ;)
10:36<+glx>only Ammler can do that ;)
10:36<TrueBrain>fair enough Yexo, I will make the password after the validation
10:37<TrueBrain>I wonder in what time you can brute force the validation code :p
10:39<Yexo>just make the validation code long enough and it'll be easier to brute-force the passwords
10:39<TrueBrain>hehe :)
10:40<Yexo>or after 3 tries reset the validation code, so the users has to go through the request validation code process again
10:40<TrueBrain>then I can make it impossible for you to ever use the password recovery :p
10:41<Yexo>you can only do that by doing a lot of requests to the server, and I hope you'll ban users doing that :)
10:41<OwenS>I didn't know the Pirate Party had officially registered in the UK
10:42<TrueBrain>Yexo: if I hacked your account, and I want to keep you from recovering, I can do that :p
10:42<TrueBrain>even completely invisible in the logs
10:42<Yexo>TrueBrain: if you hacked my account you can also change the email so I can't use recovery anymore
10:42<TrueBrain>but that any sysop can spot immediatly ;)
10:43<Yexo><TrueBrain> even completely invisible in the logs <- you'll have to do N requests to the server for every time I try validation, how is that "invisible in the logs"? (where N is the max number of tries before resetting the validation code)
10:44<TrueBrain>Yexo: remember: 6 hits per second ;)
10:44<TrueBrain>but okay, I guess the chances of that happening for are all VERY slim :)
10:44<Yexo>TrueBrain: so set the max number of tries to 10.000
10:44<TrueBrain>yeah :)
10:44<Yexo>the chance that a random validation code is guessed in that many tries is very small, while you can notice that amount of requests
10:45<TrueBrain>true :)
10:49<TrueBrain>I wonder if I can unify the validation stuff to work for all cases
10:49<TrueBrain>as I don't feel copy/pasting so much :P
10:57<Eddi|zuHause>"there was a javascript error. please use another browser"
10:58<Eddi|zuHause>fuck you.
10:58-!-Combuster is now known as [com]buster
11:03<@Rubidium>that's exactly what IE6 users think when Windows Update talks about security issues with IE6
11:03-!-Gekz_ [] has joined #openttd
11:04-!-Gekz_ [] has left #openttd []
11:05<TrueBrain>Gekz_ wanted us all to know he was going to take a dump
11:05<TrueBrain>how nice of him
11:09<CIA-1>OpenTTD: rubidium * r17284 /trunk/src/3rdparty/squirrel/squirrel/sqvm.cpp: -Fix [Squirrel]: stack was not always cleared properly with tail recursion
11:10-!-Gekz [] has joined #openttd
11:18-!-Gekz [] has quit [Quit: Lost terminal]
11:42-!-Wolle [] has joined #openttd
11:48-!-Cybertinus [] has quit [Ping timeout: 480 seconds]
11:51-!-PeterT [] has joined #openttd
11:57<CIA-1>OpenTTD: truebrain * r17285 /extra/website/ (12 files in 4 dirs): [Website] -Add: a way to recover (read: reset) your password. For those special people ;)
11:57<TrueBrain>Ammler: I would like to dedicate this commit to you
11:58<Ammler>he, nice, do you need both?
11:58<Ammler>something I don't like on redmine, you need the email address to recover
11:59<TrueBrain>here too :)
11:59<TrueBrain>if you can't remember that, you are .. wlel .. not smart :p
12:00<Ammler>well, mostly it works with guessing.
12:00<Ammler>but on websites you lost the pw, you do the same with the emailaddress.
12:01<TrueBrain>if you lose both, you are not smart :)
12:01<TrueBrain>but okay, I guess that means I dedicated this commit to the wrong person
12:01<TrueBrain>maybe a: recover email address :p
12:01<TrueBrain>and recover username
12:01<TrueBrain>which blindly picks a username from the database
12:01<TrueBrain>in case you lost that too
12:02<Ammler>wiki and blog just need username.
12:02<Ammler>is that kind of spam protection?
12:03<Ammler>well, anyway, nice to have recover possibilty.
12:04<Ammler>hmm, glx?
12:04<TrueBrain>Ammler: yes, it is spam protection
12:04<TrueBrain>I know too many sites you only need to fill in your username
12:04<+glx>what ?
12:05<TrueBrain>which I sadly enough have seen abused more then I would like to admit .. just to annoy me :(
12:05<Ammler>glx: didn't get your highlight :-)
12:05<TrueBrain>so, only a profile page is left ..
12:06<+glx>Ammler: read a few lines above the highlight :)
12:06<Ammler>so you don't use your address for?
12:07<Ammler>glx: yeah, me is trying to hack your account :-P
12:08<Ammler>TrueBrain: I hope, you don't ban people, which try to many times ;-)
12:09<TrueBrain>depends what they try too many times
12:09<TrueBrain>I tend to ban people who annoy me too many times :p :p :p
12:09*TrueBrain hugs Ammler
12:09<Ammler>in my case: guessing the address
12:10<TrueBrain>don't forget your password in the first place, is my advise
12:11<TrueBrain>(or 'sharing' how you called it :p)
12:12<TrueBrain>I should stop being so mean to people ...
12:12<@Belugas>mmmh.. good advice, but too late for me...
12:12*TrueBrain goes sit in a corner :)
12:12*TrueBrain hugs Belugas
12:12<TrueBrain>which password you forgot?
12:12<Ammler>a validation email is sent to this address to validate your request
12:12<Ammler>this message appears before I hit the submit button
12:12<TrueBrain>yup, as it says: "is sent"
12:12<TrueBrain>not: will be
12:13<@Belugas>my mian openttd one. So i rely only on my ssh key (or whatever it is called)
12:13<TrueBrain>hehe :)
12:13<TrueBrain>Belugas: you already signed up for your LDAP account?
12:13<Ammler>TrueBrain: "before"
12:13<TrueBrain>Belugas: btw, soon SSH key will be the only way to access your SSH account .. passwords will stop to work ;)
12:13<@Belugas>since i have no idea what it means, the answer must be "no"
12:13<Ammler>and it also is there, if I use thw wrong address
12:14<TrueBrain>Belugas: hehe :) You haven't tried to login on any webservices lately ;)
12:14<@Belugas>nope, a bit too busy either with resuming work, music playing or family "fun"
12:15<Yexo> <- me likes :)
12:15<+glx>Belugas: merge your accounts and you'll get a new password ;)
12:15<Yexo>too bad it doesn't compile :(
12:15<@Belugas>oooch... rejected me... right...
12:17<+glx>just merge your accounts :)
12:19<@Belugas>trying it now
12:20<@Belugas>ouch... 2 out of 3 passwords forgotten
12:20<TrueBrain>Belugas: so no worries in that case ;)
12:20<TrueBrain>Yexo: I said to a few days ago too :)
12:20<TrueBrain>follow the white rabbit :)
12:20<TrueBrain>Ammler: so without you requesting it you magicly got a recovery in your mailbox?
12:20<Yexo><TrueBrain> Yexo: I said to a few days ago too :) <- what?
12:22<Ammler>TrueBrain: I did request it.
12:22<@Belugas>okok... i'll do that at home, maybe some passwords are still present somewhere...
12:23<CIA-1>OpenTTD: truebrain * r17286 /extra/website/account/ [Website] -Fix (r17285): if there already was an error, stop checking for any others (which triggers internal errors)
12:24-!-Netsplit <-> quits: Tefad, TheMask96, PeterT, Phoenix_the_II, ddfreyne, ccfreak2k, Singaporekid, ecke, Exl, stuffcorpse, (+3 more, use /NETSPLIT to show all of them)
12:25-!-Netsplit over, joins: Phoenix_the_II, Exl, Singaporekid, ecke, Westie, Tefad, Rexxars, TheMask96, ccfreak2k, stuffcorpse (+2 more)
12:26-!-KingJ [] has quit [Quit: ZNC -]
12:26-!-Netsplit <-> quits: thingwath, +michi_cc, Nickman_87, Strid__, lewymati, FooBar, Markk, Rexxars, stuffcorpse, +glx, (+91 more, use /NETSPLIT to show all of them)
12:26-!-Netsplit over, joins: SpComb, goodger, elmex, snorre, nfc, Phoenix_the_II, dfox, Ammler, @Rubidium, Spoons (+91 more)
12:27-!-KingJ [] has joined #openttd
12:27-!-stuffcorpse [~stuffcorp@] has quit [Remote host closed the connection]
12:29-!-stuffcorpse [~stuffcorp@] has joined #openttd
12:32-!-Cybertinus [] has joined #openttd
12:33-!-mode/#openttd [+v DorpsGek] by ChanServ
12:33-!-mode/#openttd [+v orudge] by ChanServ
12:33-!-mode/#openttd [+v Rubidium] by ChanServ
12:35-!-Nickman_87 [] has quit [Ping timeout: 480 seconds]
12:37-!-Grelouk_ [] has quit [Read error: Connection reset by peer]
12:39<TrueBrain>[18:24] <Yexo> <TrueBrain> Yexo: I said to a few days ago too :) <- what? <- that geogen is nice :)
12:40<TrueBrain>Belugas: I can help you out if you like
12:40<Yexo>ah :)
12:40<Yexo>I wasn't online this weekend, so that's why I probably missed that
12:40<TrueBrain>oh, even if you were here, you most likely missed it :)
12:40<TrueBrain>but I just wanted to tell you I liked it too :)
12:42-!-Azrael [] has joined #openttd
12:45-!-Progman [] has quit [Remote host closed the connection]
12:46-!-|Jeroen| [] has joined #openttd
12:46-!-Azrael- [] has quit [Ping timeout: 480 seconds]
12:48-!-Lakie [~Lakie@] has joined #openttd
12:51<@Belugas>TrueBrain, it would be usefull, i guess
12:51<@Belugas>although i would not be able to read the mail up until i'd be home...
12:58-!-Spoons is now known as FauxFaux
13:07<blathijs>TrueBrain: Ah, you do have signup and merge pages already, so that's what you were writing
13:09<TrueBrain>Belugas: hehe :) Well, signup for an account (via merge) and fill in as many accounts as you can remember. Let me know when you did. Do not activate anything just yet ;)
13:09<TrueBrain>blathijs: we have that for a few days now :p
13:09<blathijs>Didn't see it yet
13:10<TrueBrain>blathijs: then you don't login to the services that often ;) :p
13:10<blathijs>Hmm, it seems my username doesn't exist on anymore (as in, the merge tool says it doesn't)
13:10<blathijs>TrueBrain: Nope, hardly ever :-p
13:10<TrueBrain>what do you think your username is? :p
13:11<TrueBrain>really? :)
13:11<blathijs>Or did get an auth overhaul before?
13:11<blathijs>My firefox lists blathijs, and I remember using blathijs
13:11<TrueBrain>nope, it hasn't changed in over a year
13:11<TrueBrain>I haven't that on list anywhere :p
13:11<@Rubidium>blathijs: what username did you use for svn?
13:11<blathijs>matthijs, probably
13:11<TrueBrain>tha tI haved listed in bugs, wiki and www
13:12<@Belugas>TrueBrain, 1/3 performed
13:12<blathijs>matthijs gives an incorrect password, so I'll have another look
13:12<TrueBrain>no user-system knows blathijs, sorry :)
13:12<blathijs>TrueBrain: I think that that the did get an overhaul then, but probably quite some time ago
13:12<blathijs>Before and the ssh svn stuff
13:12<TrueBrain>Belugas: you can now continue with step 2/3 and 3/3 ;) When activating, all 3 accounts will be linked :)
13:13<TrueBrain>the new website went live 18 months ago or so :p
13:13<TrueBrain>but yes, the website before that, had blathijs :p
13:13<TrueBrain>long long long terribly long ago :p
13:13<@Rubidium>TrueBrain: more like 12 months (with the new server IIRC)
13:14<TrueBrain>blathijs: I guess you are not Matthijs which is listed on www. :p
13:14<blathijs>TrueBrain: Ah, that was my question
13:14<blathijs>TrueBrain: Oh, that might also be the case
13:14<blathijs>I probably never registered on the new website
13:14<TrueBrain>I don't think your lastname starts with a H :p
13:14<blathijs>Bah, so now I don't have the matthijs username? :-)
13:15<TrueBrain>I can fix that for you :p
13:15<TrueBrain>but it might not be so nice :p
13:16<blathijs>Actually, it is fixed right now
13:16<blathijs>since the other matthijs hasn't registered for an LDAP account yet
13:17<blathijs>so now "matthijs" is mine again, also on www. :-)
13:17<TrueBrain>no, but you will fail to activate your account :)
13:17<TrueBrain>or so I hope, else I did something terrible wrong :p
13:17<blathijs>I just activated my account and logged in to www.
13:17<TrueBrain>auch :p
13:18<blathijs>I didn't link in any www. account
13:18<TrueBrain>euhm .. let me explain to you in private :p
13:18-!-LadyHawk [] has quit [Quit: [24/8][22:50:18] <@DaZeD> when they invent that device to bitchslap peeps over TCP/IP... I'm SO pre-ordering]
13:18<frosch123>he, which matthijs just got commit access? :p
13:19<TrueBrain>all of them! OH NO! :)
13:19<frosch123>i should register as orudge just in case you want to merge with the forums :p
13:20<TrueBrain>ghehe :)
13:20<@orudge>frosch123: tsk
13:21<TrueBrain>which brings us to the question: orudge: do you think it would be somehow possible to link our LDAP to the forums?
13:21<@orudge>TrueBrain: well, possibly
13:21<@orudge>something I've been vaguely planning for years is a "single sign-on" system for the forums and associated sites
13:22<@orudge>currently a couple of sites use the forum database, but that is basically by directly linking to it, which obviously isn't ideal
13:22<@orudge>so, hmm
13:22<TrueBrain>I hope is that by the end of next month ;)
13:22<@orudge>if you/we can come up with a system, then sure ;)
13:22<TrueBrain>well, we could link the LDAP of directly to tt-forums
13:22<TrueBrain>meaning when you create an account there, you also hav eone for all services
13:23<SpComb> user registrations go into LDAP?
13:23<@orudge>woo, my accounts are, it seems, merged
13:23<TrueBrain>SpComb: as of a few days, yes
13:23<SpComb>not bad
13:24<SpComb>we also did an LDAP migration this weekend
13:24-!-bb10 [] has joined #openttd
13:24<SpComb>from NIS :/
13:24<SpComb>with custom and buggy user management scripts
13:24<SpComb>and ten years of legacy users
13:25<@orudge>hmm, well, phpBB does support LDAP
13:26<TrueBrain>problem only is that tt-forums is off-site for
13:26<@orudge>well, yes
13:26<@orudge>it might be a plan to set up some sort of LDAP server for tt-forums (of course, that'd also mean importing thousands of users and the like, not a small undertaking)
13:26<@orudge>of course, security with non-local links and the like may be issues
13:27<@orudge>anyway, thoughts are welcome. I must get on with some other work just now
13:27<blathijs>Running LDAP over SSL might be sufficient
13:27<TrueBrain>and only allow certain IPs
13:28<blathijs>though you might want to have some syncing / master slave setup instead, so tt-forums won't die when the openttd server is unreachable :-)
13:28<TrueBrain>and tt-forums is a superset of .. dunno if LDAP has anything for that
13:29<@orudge>perhaps just have the one forum database
13:29<blathijs>Well, if you merge the domains, you would import everything from the forum into openttd ldap I guess
13:29<@orudge>which we could import the openttd things into (and watch out for rogue users trying to fake me ;))
13:29<@orudge>or something along those lines
13:29<TrueBrain>orudge: the openttd ldap is very custom; merging that with the forums might be a bit too much
13:29<TrueBrain>(we use groups for authentication)
13:30<@orudge>we'd have to look into it more
13:30<@orudge>anyway, I must really get on with work now, heh :)
13:30<SpComb>TrueBrain: out of curiosity, do you have your structure documented somewhere?
13:30<@orudge>the joys of extended MAPI
13:30<TrueBrain>SpComb: no; why?
13:34<SpComb>dunno, wondering how people use LDAP
13:35<TrueBrain>ah; well, I can document it
13:36-!-Yexo [] has quit [Ping timeout: 480 seconds]
13:39<Chris_Booth>what is the openttd bug report website?
13:39<TrueBrain>who would have guessed
13:42<TrueBrain>orudge: I will now merge your SSH account with LDAP (no need for any action from your side)
13:42<@orudge>TrueBrain: OK
13:42-!-Chris_Booth [] has quit [Quit: ChatZilla 0.9.85 [Firefox 3.5.2/20090729225027]]
13:43-!-LadyHawk [] has joined #openttd
13:43<TrueBrain>orudge: all done
13:44-!-FR^2 [] has joined #openttd
13:45<CIA-1>OpenTTD: translators * r17287 /trunk/src/lang/ (latvian.txt polish.txt):
13:45<CIA-1>OpenTTD: -Update from WebTranslator v3.0:
13:45<CIA-1>OpenTTD: latvian - 32 changes by dzhins
13:45<CIA-1>OpenTTD: polish - 1 changes by Kogut
13:50-!-Nickman_87 [] has joined #openttd
13:51<@orudge>TrueBrain: well, I can login, so that seems to have worked at least :)
13:51<TrueBrain>of course :) :p
13:52<@orudge>out of curiosity, why is the shell and what is special about that? I've not logged into the server in a while, don't remember that ;)
13:54<TrueBrain>it is new, with LDAP :)
13:54<TrueBrain>in this case the shell is a symlink to /bin/sh
13:54<TrueBrain>because you are a developer :p
13:54<TrueBrain>and have access to the so called PAM-Web
13:54<TrueBrain>if I setup any other VPS (and another PAM), like for NoAI, they will have very restricted access
13:54<TrueBrain>that wrapper-script will ensure me I can restrict the access
13:55<TrueBrain>(as I can only give 1 user 1 shell, this allows me to have different systems behave differently on login)
13:55<TrueBrain>there are other solutions, within LDAP even, but this is the most clear I think :)
13:56<OwenS>TrueBrain: So, in other words, you go "is this user a member of this group?" :P
13:56<SpComb>OpenSSH takes an AllowGroups conf option
13:57<SpComb>if OpenSSH is your only login
13:57<TrueBrain>well, OpenSSH doesn't, but the nss-ldapd does
13:57<TrueBrain>(restriction at PAM level is MUCH easier :p)
13:57<TrueBrain>but that doesn't give the ability to give some people other shells then others
13:58<TrueBrain>like: I want a /bin/sh. But if OwenS would to have a NoAI project, he should only be able to use the svn binary
13:58<TrueBrain>this is not possible via AllowGroups ;)
13:58<TrueBrain>so I guess what OwenS suggests is not true: you cannot login in our PAM-Web. Not because of the script, but because sshd denies you (because of you not listed via NSS :p)
14:00<blathijs>19:57:38 < TrueBrain> but that doesn't give the ability to give some people other shells then others <-- That's easy, but you want to give some systems other shells than others
14:00<TrueBrain>blathijs: yeah, indeed :)
14:02<TrueBrain>10% of our users logged in the past few days .. that is much more than I expected :)
14:02-!-fonsinchen [] has quit [Remote host closed the connection]
14:03<blathijs>Yeah, indeed
14:04<TrueBrain>stupid Redmine doesn't support LDAP group filtering :(
14:04-!-Progman [] has joined #openttd
14:05-!-LadyHawk [] has quit [Quit: [24/8][22:50:18] <@DaZeD> when they invent that device to bitchslap peeps over TCP/IP... I'm SO pre-ordering]
14:07-!-LadyHawk [] has joined #openttd
14:11-!-Wolle [] has quit [Quit: - das Wiki rund um's Thema Lager und Logistik]
14:31-!-sdafsdf [] has joined #openttd
14:31-!-LadyHawk [] has quit [Read error: Connection reset by peer]
14:31-!-sdafsdf is now known as LadyHawk
14:33-!-Wolle [] has joined #openttd
14:37-!-Wolle [] has quit []
14:37-!-|Jeroen| [] has quit [Quit: oO]
14:46<CIA-1>OpenTTD: translator * r17288 /trunk/src/lang/ (22 files in 2 dirs): -Update from WebTranslator v3.0: fix newlines (had to test a new commit system)
14:47<TrueBrain>oaky .. that clearly fails :p
14:57-!-Yexo [] has joined #openttd
14:57<TrueBrain>wb Yexo :)
14:57<TrueBrain>when will you be integrating geocon? :p
14:57<TrueBrain>geogen even
14:58<Yexo>As soon as I have a reactino from the author ;)
14:58<TrueBrain>I wonder why he made it for Squirrel :p
14:59<Yexo>I think (but not sure) that the author is CommanderZ, who has done openttd map gen patches before (so the intention might always have been eventually integrating it)
14:59<TrueBrain>ah :) Well, it seems a welcome addition, if you ask me :)
14:59<TrueBrain>TGP is a big step forward, but far from perfect :)
15:00-!-Wolle [] has joined #openttd
15:00<@Belugas>what??? Richk failed to do some proper coding???
15:00<Yexo>I've already implemented something like it were the map generation was compeltely done in squirrel, but that was way too slow
15:00<Yexo>the nice thing about geogen is that all expensive operations are in C++
15:00<TrueBrain>Belugas: don't forget we finished it, so we are partly to blame :P
15:03<@Belugas>arrr arrrr arrrr
15:04<TrueBrain>you are a pirate!
15:04<TrueBrain>and we are all very very very scared
15:05*valhallasw forces Belugas to watch on repeat
15:05<@Belugas>at work? of course NOT!
15:06<@Belugas>evilish youtube... NEVE TO BE TRUSTED!
15:06*TrueBrain slaps valhallasw
15:06*valhallasw runs ~/o/
15:07-!-Singaporekid [] has quit [Quit: Leaving]
15:08*TrueBrain gets revenge on valhallasw:
15:09<TrueBrain>worst translation ever
15:13<valhallasw>IM NOT CLICKING >(^_^)<
15:14<valhallasw>and then I switched windows, saw a link and clicked. IRC reflexes suck.
15:14<Terkhen>maybe the second link helps me taking the first song out of my mind...
15:21<Terkhen>great, now I can't take out of my mind the spanish version of the smurf theme
15:22<+glx>the french one came into my mind
15:28<TrueBrain>enjoy it ;) The rest of the day!
15:31<@Rubidium>oh, it's post insane youtube songs?
15:32<TrueBrain>a song with true potential .. just .. the singers fucked that up
15:33<@Rubidium>well, what do you want when an American is singing Japanese ;)
15:37<TrueBrain>I love youtube .. you click a song, you see the right clip, and a COMPELTELY different song :p
15:37-!-ddfreyne [] has left #openttd []
15:38<TrueBrain>and youtube should normalize all sound
15:39<@Rubidium> <- also something of superb quality
15:40<+glx>yeah minimoni :)
15:41<@Rubidium>oh, an expert! :)
15:41<TrueBrain> <- this ALWAYS amazes me ...
15:42<@Rubidium>hmm, I think is related to what valhallasw posted
15:43<TrueBrain>"I decided to donate the sum of $3,500,000 (three million five hundred thousand dollars) to you for the good work of the lord, and also to help the motherless and less privilege and also for the assistance of the widows and unfortunate mothers. At the moment I cannot take any telephone calls right now due to the fact that my husband's relatives are always around me and trying to see if they can overhear my conversations and my health status as well.
15:43<TrueBrain>" <- WHOHO!!!!!!!!
15:43<TrueBrain>"NB: I will appreciate your utmost confidentiality in this matter until the task is accomplished as I don't want anything that will jeopardize my wish." <- DOH!
15:43<TrueBrain>sorry ...
15:44<@Rubidium>"Sorry, but I got no use for Zambabwian dollars"
15:47<TrueBrain>I always love spam .. really .. I do
15:47-!-andythenorth [] has joined #openttd
15:50<TrueBrain>Rubidium: no need to start sending my spam I already received
15:50<TrueBrain>I do like unique entries :)
15:51<TrueBrain> <- do give slightly different youtube links (while we are at that)
15:51<@Rubidium>but... but... this one has another unique ID!
15:51<TrueBrain>if you would have 2 the same unique IDs, they don't be unique IDs :p
15:51<TrueBrain>but they are called MessageIDs :p
15:52-!-ecke [~ecke@] has quit [Read error: Connection reset by peer]
16:02<OwenS>TrueBrain: OK, regarding that animusic link, I can only say... W.T.F.
16:03-!-Brianetta [] has joined #openttd
16:05-!-Chris_Booth [] has joined #openttd
16:08-!-andythenorth [] has quit [Read error: Connection reset by peer]
16:11-!-andythenorth [] has joined #openttd
16:13<_ln>no linux for the new PS3 then
16:18<_ln>equals no openttd for the new PS3
16:21-!-tokai [] has quit [Ping timeout: 480 seconds]
16:23-!-tokai [] has joined #openttd
16:23-!-mode/#openttd [+v tokai] by ChanServ
16:25<OwenS>_ln: Have they said they're removing the OtherOS feature or just that it will be unsupported?
16:26<+glx>they remove it
16:26<_ln>""The new PS3 system will focus on delivering games and other entertainment content, and users will not be able to install other Operating Systems to the new PS3 system," Sony stated in the press materials.", arstechnica quotes.
16:28<SmatZ>_ln: there is running linux on several devices that weren't supposed to be hacked
16:28<+glx>SmatZ: PS3 was not hacked to run linux, it was a native option
16:29<SmatZ>glx: it doesn't mean it won't be hacked though
16:29<SmatZ>but I don't understand the decision
16:29<SmatZ>ah of course
16:30<SmatZ>PS3 is sold under manufacturing cost
16:30<+glx>btw they also removed PS1 and PS2 game support too
16:30<SmatZ>and the sold software, as games, provides the revenue
16:30<_ln>not all PS3s had PS1/2 support for a long time anyway.
16:31<OwenS>PS1 game support is still there
16:31<OwenS>PS1 games have always been fully emulated
16:32<_ln>hmm. didn't know that. well, i've only had a PS3 for a month.
16:32<OwenS>I wonder how long it will be before someone cracks the PS3Slim's copy protection to run Linux and the flood gates open for pirated games...
16:33*_ln has run OpenTTD on PS3 and 40" tv.
16:33<valhallasw>wrong button >_<
16:33<valhallasw>right-click-paste kinda sucks :')
16:34<OwenS>I've not bothered installing Linux on my PS3 as it would only be useful if I could use it as a HTPC. Which you can't
16:36<@Belugas>bye bye
16:37-!-Muddy [] has quit [Quit: changing servers]
16:38-!-Muddy [] has joined #openttd
16:41<Eddi|zuHause>hm... is weeds already over?
16:41-!-tdev [] has joined #openttd
16:42<Eddi|zuHause>11 episodes is a very strange number for a whole season
16:44<Eddi|zuHause>hm, said there was an episode yesterday
16:44<OwenS>Eddi|zuHause: Wouldn't be too unusual for a british one
16:44<OwenS>Or one which got cancelled :p
16:45<Eddi|zuHause>no... weeds already had a 2 season order last year
16:45<Eddi|zuHause> says the season has 13 episodes
16:45<Chris_Booth>i have found a bug in openttd
16:46-!-Nickman_87 is now known as Nickman87
16:46<Chris_Booth>i have roported it
16:46<Eddi|zuHause>if you reported it, then the right people will get noticed
16:46<Chris_Booth>you can add any wagon you like to a pax only multiple unit train such as a TGV in the 2cc set
16:47<Yexo>Chris_Booth: please report bugs to the correct people next time
16:47<Eddi|zuHause>and you confirmed first that it is a bug of openttd and not of the 2cc set?
16:48<Yexo>Eddi|zuHause: that's exactly the reason I closed the report :)
16:50-!-FR^2 [] has quit [Quit: Der Worte sind genug gewechselt, lasst mich auch endlich Taten sehn!]
16:51<Chris_Booth>yeah it works in UKRS and DBXL
16:51-!-bb10 [] has quit [Remote host closed the connection]
16:51<Chris_Booth>Yexo dont close the report me and ammler tested it
16:52<Yexo><Chris_Booth> yeah it works in UKRS and DBXL <- Now it's even more likely it's a bug of the 2cc set
16:52<Chris_Booth>no the same issue happens in UKRS and DBXL
16:52<Yexo>Bugs in NewGRFs should NOT be reported on, but instead in the topic of that newgrf (or whatever website
16:52<Chris_Booth>and jap set
16:52<Chris_Booth>and nars 2
16:52<Chris_Booth>it happens in all new grfs
16:52<Chris_Booth>and doesnt happen in ttdpatch
16:53<Ammler>what is the FS# ?
16:53<Chris_Booth>i could even create screen shots
16:53<Chris_Booth>ask ammler
16:53<Yexo>Chris_Booth / Ammler: reopened the bug report, please add a comment with more information
16:54<Ammler>well, it is obvious, you can't attach a waggon to some engines.
16:54<Ammler>but you can attach the engine to the waggons.
16:54<Chris_Booth>let me make some screen shots
16:54<Ammler>(wasn't able to the same with patch)
16:55<Yexo>Ammler: now that ^^ is a clear description
16:55<Yexo>but I probably won't be able to help you any further, ask frosch123
16:55<frosch123>and I probably won'T be able to help you any further today :p
16:56-!-frosch123 [] has quit [Remote host closed the connection]
16:57<planetmaker>lol :-)
16:58-!-Mks [] has joined #openttd
17:08-!-tdev [] has quit [Quit: Leaving]
17:09-!-Lakie` [~Lakie@] has joined #openttd
17:11-!-Lakie` [~Lakie@] has quit []
17:15-!-fonsinchen [] has joined #openttd
17:16-!-Lakie [~Lakie@] has quit [Ping timeout: 480 seconds]
17:23<Chris_Booth>i added screen shot to my bug report
17:27-!-Nite_Owl [] has joined #openttd
17:28<Nite_Owl>Hello all
17:41-!-tux_mark_5 [] has quit [Read error: Connection reset by peer]
17:42-!-tux_mark_5 [] has joined #openttd
17:52-!-andythenorth [] has quit [Read error: Connection reset by peer]
17:57-!-Nickman87 [] has quit [Ping timeout: 480 seconds]
18:00<Terkhen>good night
18:00-!-Terkhen [] has quit [Quit: ...]
18:03-!-Lakie [~Lakie@] has joined #openttd
18:03-!-Lakie [~Lakie@] has quit []
18:10-!-Lakie [~Lakie@] has joined #openttd
18:13<Eddi|zuHause>hm... in germany are so many elections, you could spend days with calculating possible outcomes and coalitions...
18:19-!-Fuco [] has quit [Quit: Quit]
18:22-!-Fuco [] has joined #openttd
18:23-!-Cybertinus [] has quit [Remote host closed the connection]
18:27-!-Exl [] has quit []
18:29-!-Progman [] has quit [Remote host closed the connection]
18:36-!-TheMask96 [] has quit [Ping timeout: 480 seconds]
18:38-!-Nite_Owl [] has quit [Quit: Read You Soon]
18:44-!-TheMask96 [] has joined #openttd
18:44-!-Phoenix_the_II [] has quit [Read error: Connection reset by peer]
18:44-!-Phoenix_the_II [] has joined #openttd
18:45-!-lewymati [] has quit []
18:46-!-R0b0t1 [] has joined #openttd
18:53-!-[com]buster [] has quit [Remote host closed the connection]
18:53-!-Dred_furst [] has quit [Read error: Connection reset by peer]
18:54-!-keoz [] has joined #openttd
18:54-!-Dred_furst [] has joined #openttd
18:58-!-tosse [] has quit [Ping timeout: 480 seconds]
19:01-!-Yexo [] has quit [Ping timeout: 480 seconds]
19:05-!-PeterT [] has joined #openttd
19:06<PeterT>does it count as updating a patch when it works for a newer version anyway?
19:16-!-PeterT [] has left #openttd [Leaving]
19:17-!-Chris_Booth [] has quit [Remote host closed the connection]
19:18-!-PeterT [] has joined #openttd
19:22-!-keoz [] has quit [Quit: Leaving]
19:26-!-dkyle [] has joined #openttd
19:26<dkyle>guys how do i change al players company names?
19:27<dkyle>ok :S
19:27<SmatZ>who is al players?
19:27<SmatZ>hello z-MaTRiX
19:27<Tefad>requires level 3 wizardy skill
19:28<dkyle>the computer player how do i change thier company names...
19:28<SmatZ>dkyle: there is noai tutorial somewhere on the wiki...
19:29<Tefad>no way to change name from the console interface?
19:29<SmatZ>dkyle: are you writing a noai?
19:29<Tefad>oh so it really is magical.
19:29<dkyle>wtf is a noai??
19:30<Tefad>it's the ai system
19:30<Tefad>it runs through noai
19:30-!-fonsinchen1 [] has joined #openttd
19:30<dkyle>how do i get that lol
19:30<Tefad>AIs run through it rather
19:30<Tefad>it's built-in
19:30<Tefad>you can't change the name of other players.
19:30<Tefad>however you can edit AIs to choose a different name when they initalize.
19:31<dkyle>what about getting the original computer players?? for openttd?
19:31<SmatZ>what about no?
19:31<Tefad>hahahahahahaha the old AI is so screwed
19:31<SmatZ>they're gone
19:31<SmatZ>for good
19:31<dkyle>tefad how do i get them to choose a diff name?
19:32<Tefad>edit their script
19:32<dkyle>how do i do that?
19:32<Tefad>notepad.exe vi .. your text editor of choice
19:32<Tefad>depending on the encoding, notepad.exe may be a bad one.. might use wordpad instead.
19:32-!-Eddi|zuHause [] has quit []
19:33-!-dkyle [] has quit [Quit: Bye for now!]
19:33-!-Eddi|zuHause [] has joined #openttd
19:33-!-fonsinchen [] has quit [Ping timeout: 480 seconds]
19:33<SmatZ>hmm is dkyle a troll?
19:34<PeterT>he seems like a pre 0.5 user
19:34<Tefad>my openttd urges come and go
19:34<SmatZ>"I love the old AI because it had so great company names!"
19:34<Tefad>so i get out of date from time to time..
19:35<Tefad>opengfx = awesome btw.
19:35<Tefad>is the game standalone yet?
19:35<PeterT>opensfx is ok
19:35<PeterT>some sounds, like the bomb
19:35<PeterT>are really cool
19:35<Tefad>i use nosound
19:35<SmatZ>Tefad: good question, actually it may be
19:36<OwenS>It should be with NewGFX and Nosound
19:38<SmatZ>it works
19:38<SmatZ>opengfx + opensfx :)
19:39-!-KenjiE20|LT [] has joined #openttd
19:39<SmatZ>when original data files are removed
19:39<PeterT>why wouldnt it?
19:41<SmatZ>hmm but it segfaults
19:41<SmatZ>95% working
19:41<SmatZ>now WHY
19:42-!-dkyle [] has joined #openttd
19:42-!-KenjiE20 [~KenjiE20@] has quit [Quit: WeeChat 0.3.0-rc3]
19:42<dkyle>im back soz got cut off
19:43<dkyle>how do i change the script of al's lol
19:44<SmatZ>and unreproducible
19:45<SmatZ>dkyle: :)
19:45-!-dkyle [] has quit [Read error: Connection reset by peer]
19:45<SmatZ>I have to be faster!
19:46<+glx>you were fast enough I think
19:46<SmatZ>ok, reproduced
19:49-!-Brianetta [] has quit [Quit: Tschüß]
19:59-!-PeterT [] has quit [Quit: Goodbye]
20:13-!-fonsinchen1 [] has quit [Remote host closed the connection]
20:20<Markk>Uh, that could be misinterpreted; "I have to be faster!" "ok, reproduced"
20:22-!-tux_mark_5 [] has quit [Quit: KVIrc Insomnia 4.0.0, revision: , sources date: 20090115, built on: 2009/03/07 00:45:02 UTC]
20:26-!-z-MaTRiX [] has quit [Ping timeout: 480 seconds]
20:50-!-Mks [] has quit []
20:57-!-Coco-Banana-Man [] has quit [Quit: Joyful it seems - but then suddenly - by one false move it's blown away]
21:15-!-Dred_furst [] has quit [Read error: Connection reset by peer]
21:18-!-OwenS [] has quit [Remote host closed the connection]
21:40-!-Biolunar_ [mahdi@] has joined #openttd
21:47-!-Biolunar [] has quit [Ping timeout: 480 seconds]
22:15-!-Fuco [] has quit [Ping timeout: 480 seconds]
22:44-!-Phoenix_the_II [] has quit [Read error: Connection reset by peer]
22:45-!-Phoenix_the_II [ralph@] has joined #openttd
23:08-!-TinoDidriksen [] has quit [Ping timeout: 480 seconds]
23:13-!-TinoDidriksen [] has joined #openttd
23:20-!-Lakie [~Lakie@] has quit [Quit: Sleep. ]
23:34-!-KenjiE20|LT [] has quit [Quit: Leaving]
23:37-!-glx [glx@2a01:e35:2f59:c7c0:505d:fe1:345d:1a8f] has quit [Quit: bye]
23:39-!-TinoDidriksen [] has quit [Ping timeout: 480 seconds]
23:43-!-TinoDidriksen [] has joined #openttd
---Logclosed Wed Aug 26 00:00:28 2009