Follow Slashdot stories on Twitter


Forgot your password?
Take advantage of Black Friday with 15% off sitewide with coupon code "BLACKFRIDAY" on Slashdot Deals (some exclusions apply)". ×

Comment Re:have your origin accessible to only your provid (Score 2) 40

Levels of increasing protection:
  1. 1. Use a CDN and hope no one finds the origin domain or ips the CDN uses.
    Which as we can see from the article doesn't work due to the many ways they can be leaked.
    E.g., for, try, or IPs used in the past for
  2. 2. Have the origin servers only respond to white-listed IPs. That white-list needs to include those of the CDN.
    Still suspectible to a volumetric bandwidth attack. I.e., attacks with enough packets to overwhelm the origin server(s) or the ISP link to those servers.
  3. 3. Change your origin IPs periodically.
    Useless against a volumetric attack if they are just different IPs connected to the same uplink/router. Difficult to keep switching to use different ISP and each new provider brings its own problems.
  4. 4. Have origin(s) capable of withstanding a volumetric attack.
    Not cheap. The XOR DDoS botnet has recently produced DDoS attacks up to 150+ Gbps.
  5. 5. Use a BGP redirection service that routes all public internet packets whose destination IP address is the origin's through geo-graphically distributed scrubbing centers.
    Attackers sending traffic through the public internet to your origin are sending them to one of many scrubbing centers. The combined capacity on all these scrubbing centers can cope with volumetric attacks. The scrubbing centers will only forward desireable packets to the real origin using GRE tunneling.

Akamai's BGP redirection service has some restrictions typical of other services. E.g.,

  • * A /24 prefix (Class C subnet) at a minimum. It needs to be is registered and belong to customer, as some ISP given not allow re-advertise.
  • * A BGP (Border Gateway Protocol) and GRE (Generic Routing Encapsulation) capable router.
  • * IP address space to terminate GRE tunnels located outside the prefixes you need to defend.

Submission + - Microsoft Edge Performance Evaluated (

An anonymous reader writes: Now that Windows 10 is close to launch, Anandtech has put Microsoft's new browser, Edge, through a series of tests to see how it stacks up against other browsers. Edge has shown significant improvements since January. It handily beats Chrome and Firefox in Google's Octane 2.0 benchmark, and it managed the best score on the Sunspider benchmark as well. But Chrome and Firefox both still beat Edge in other tests, by small margins in the Kraken 1.1 and HTML5Test benchmarks, and larger ones in WebXPRT and Oort Online. The article says, "It is great to see Microsoft focusing on browser performance again, and especially not sitting idle since January, since the competition in this space has not been idle either."

Comment Links to the actual study (Score 5, Informative) 181

Yes, the article referenced doesn't point to the actual study directly, a but with a bit of goggling I found:

  • Some results here:
  • You can add to the measurements by clicking this link:, which says:

    The battleground — where this degradation takes place — is at ISP interconnection points. These are the places where traffic requested by ISP customers crosses between the ISP’s network and another network on which content and application providers host their services.
    This test measures whether interconnection points are experiencing problems. It runs speed measurements from your (the test user’s) ISP, across multiple interconnection points, thus detecting degraded performance.

What I don't understand is why people assume congestion is intentional throttling by ISPs for them to profit later with imagined fast lanes. Isn't the simpler assumption that it costs ISPs money to add interconnection capacity. And since their customers don't/can't choose ISPs based on the quality of their connection all the way to the popular content providers, the ISPs don't spend money on those upgrades? Usually the only thing customers have to go on and promised is the maximum download/upload speeds quoted by the ISP for the last mile.

Comment Equivalent soundcard oscilloscope for Windows. (Score 1) 172

If you are a windows user, Christian Zeitnitz offers a PC based Soundcard Oscilloscope free for non-commercial use. It also has a frequency spectrum waterfall diagram, x-y plots. Easy to install and run. Fun to speak into your microphone to test it out.

Only suitable audio speed signals like XOScope. I.e., 20-20000Hz from 44.1kHz sampling and 16-bit resolution. And without external hardware voltage dividers/protection the usual warnings about blowing up your soundcard if you feed in voltage outside of ±0.7V into it.

If bankers can count, how come they have eight windows and only four tellers?