#sandstorm on 2018-10-30 — irc logs at freenode.irclog.whitequark.org

2017-06-04 23:24 kentonv changed the topic of #sandstorm to: Welcome to #sandstorm: home of all things sandstorm.io. Say hi! | Have a question but no one is here? Try asking in the discussion group: https://groups.google.com/group/sandstorm-dev | Public logs at https://botbot.me/freenode/sandstorm/

00:32 isd has quit [Remote host closed the connection]

01:21 pie_ has quit [Ping timeout: 264 seconds]

06:18 digitalcircuit has quit [Ping timeout: 264 seconds]

06:18 digitalcircuit has joined #sandstorm

06:24 XgF has quit [Remote host closed the connection]

06:24 XgF has joined #sandstorm

06:25 Mitar has quit [Ping timeout: 272 seconds]

06:32 Mitar has joined #sandstorm

07:13 nicoo has quit [Ping timeout: 256 seconds]

07:17 nicoo has joined #sandstorm

08:39 pie_ has joined #sandstorm

09:00 larjona has quit [Ping timeout: 245 seconds]

10:20 larjona has joined #sandstorm

10:20 pie__ has joined #sandstorm

10:21 pie_ has quit [Ping timeout: 250 seconds]

13:20 larjona has quit [Ping timeout: 240 seconds]

14:13 larjona has joined #sandstorm

14:56 <TimMc> My employer is probably a couple orders of magnitude below Facebook in scale (depending on how you measure that) and I know just the access logs from one service accumulate at 45 GB per day.

14:57 <TimMc> We serve video, and the parts of our service that handle video directly get up into the petabyte range, easily.

15:08 <simpson> Matador Cloud (my side business) throws away almost all logs. Mostly for customer privacy, but also because that's a lot of trash to pay to keep around.

15:45 <Zarutian> simpson: you dont feed the logs first into an entropy pool before throwing them away?

15:46 <simpson> Zarutian: What's the point? My cloud vendor can log all the interesting bits already, and they also have the storage for the logs.

15:47 <simpson> The logs I have are recent snippets from various k8s Pods. I don't aggregate them, I just have them enabled for debugging purposes.

15:47 <Zarutian> meant, instead of pointing them to be written to /dev/null or equiv, stuff them through whatever one of the input of /dev/urandom uses.

15:48 <Zarutian> but only if you have something that eats entropy like it is paid for it running on these systems.

15:49 <simpson> Oh ew. That's dangerous. Logs can contain attacker-controlled input.

15:50 <simpson> They don't go to /dev/null either. Just plain stdout, which k8s collects. For debugging only, y'know? But debugging is really important.

16:12 <TimMc> I'm pretty sure attacker-controlled input is fine to stuff into /dev/random as long as it isn't correlated with the PRNG's state.

16:13 <TimMc> Although I'm not really sure it has much benefit in this case; it's not something you can *rely* on, so you need good entropy seeding anyway....

16:14 <TimMc> In my home datacenter, new VMs are seeded with entropy from the controller and use /dev/urandom for their LUKS setup, which I figure is Good Enough.

16:14 <TimMc> s/VMs/hosts/

18:45 isd has joined #sandstorm

21:27 isd has quit [Quit: Leaving.]

22:10 isd has joined #sandstorm

22:17 isd has quit [Quit: Leaving.]

22:18 larjona has quit [Ping timeout: 244 seconds]

22:21 larjona has joined #sandstorm

22:37 isd has joined #sandstorm

23:21 isd has quit [Quit: Leaving.]

23:27 demonimin has joined #sandstorm