Comcast Admits Delaying, Not Blocking, P2P Traffic

haibijon writes "The executive declined to talk in detail about the technology, citing spammers or other miscreants who might exploit that knowledge. But he insisted the company was not stopping file transfers from happening, only postponing them in certain cases. He compared it to making a phone call and getting a busy signal, then trying again and getting through."

Sure, Comcast.

[EveryNickIsTaken]

On that note, I'm not "cancelling" my service with you. I'm merely "delaying" signing back up with your company (indefinitely).

Re:

[Mille Mots]

I think a more apt analogy would be something like, "I'm not refusing to pay my bill. Think of it as having the check returned for NSF and then having to resubmit it and it goes through." I'm sure that they wouldn't have a problem with that, considering all the Nigerian scammers out there trying to get your routing information.

Re:

[speaker of the truth]

You could always write a future date on the cheque so the teller refuses to cash it until then. It'll be like trying to call someone and the operator telling you the line is busy and trying again later and getting through.

Re:

[Rude Turnip]

I worked for a bank in college...you can't post-date a check. Specifically, it won't matter if you post-date it; it's cashed or deposited when presented.

Re:Laughable concept, post-dating

[Hellkitten]

Back in the olden days, when people used to write checks, a friend of mine used to make his phone bills payable to "Adolf Hitler" and "Ayatollah Khomenei" and they all went through, every one of them.

That's because they both work for the phone companies

Re:

[elrous0]

I wonder if they would accept their customers delaying their payments. "Don't worry Comcast. We're not STOPPING our payments. We're just DELAYING them."

Re:

[mindmaster064]

The major problem is this is a classic man in the middle attack right out of the textbook. If I did this to a bank I would be going to jail. Who cares if it's traffic shaping or whatever? There are legitmate ways to shape traffic without manipulating the data path. This is a recipe for disaster when one of these transparent mediators decides to fail and inject garbage into the streams. Comcast is playing with fire here and they're gonna get burnt up with it. First it will be this, then it will be your World

Re:

[Merk]

Speaking of canceling your service, it sounds like a good time to talk alternatives. I, like many people here I'm sure, want a service that gives me the following:

• A static IP (or multiple static IPs)
• Honest usage caps, if it's unlimited, it's unlimited and maybe I pay a bit more. If it's limited, I want to know the limits
• High bandwidth, low latency
• No packet filtering or port blocking
• The option to run servers (web, mail, game, etc.)
• Something not too expensive (i.e. I don't want to pay for "business

"Postponing..."

[InvisblePinkUnicorn]

So they're not actually stopping the transfers, they're postponing them indefinitely.

*Sigh of relief*

Re:"Postponing..."

[dunkelfalke]

it's not dead, it's resting ;-)

Re:"Postponing..."

[Adambomb]

It is an Ex-Packet!

I'm not delinquent in paying my bill

[mandark1967]

I'm just delaying it...I tried to put my payment in the mailbox and there were other letters there so I waited until it was less congested....

Cool

[Rik Sweeney]

That'll please everyone trying to download the latest version of Ubuntu. Just to make sure this doesn't happen in the future I'll hammer the server directly.

But enough of my whining, Prison Break was on last night...

Re:

[speaker of the truth]

But enough of my whining, Prison Break was on last night...

And apparently now its on your computer. I guess someone isn't with Comcast.

He compares it to a phone call....

[OctoberSky]

I compare it to paying a gym membership, heading towards the treadmill only to be stopped by a trainer and told there is someone on it already. You look, see no one is on it, ask again and are allowed to use it. Sometimes the trainer comes over and tells you that you have to get off for someone else. Everytime you get off, no one else gets on. So you have to restart your workout whenever the trainer asks.

Re:He compares it to a phone call....

[Anonymous Coward]

what is this "gym" you speak of?

Re:

[Dunbal]

I hear you have to go OUTSIDE to get there. Don't do it, it's too risky!

Oh, and tell mom to buy another case of Mountain Dew, I'm running out.

Re:He compares it to a phone call....

[rtb61]

I see it more like a courier. You call a courier, put you package in the van and away it goes travelling down a Comcast owned toll way. Along they way a bunch of Comcast hijackers jump out from behind a bush, pull the van over, grab your package and throw it into a ditch. The van driver informs you your package has been dumped, doesn't tell you exactly why, and you have to call another courier a hope this time the package makes it.

By the way, you get charged each and every time the courier drives on the Comcast toll way, even when the additional traffic is as a result of their, fraudulent actions. The actions are fraudulent because, it is costing you in additional computer time, in additional energy usage, in your lost time and of course additional traffic charges (all traffic counts especially when unlimited, ain't really unlimited).

Re:

[Otter]

Yeah, that wasn't the world's greatest analogy but it's the best I could think of. If you have a better example of illegal activity enabled by a treadmill, feel free to provide it.

Re:

[Mike89]

Looks to me like Comcast oversells capacity (like basically every other utility does), and it trying to get around this problem by hitting back at the folks who are clogging up The Tubes with stuff they agreed they wouldn't do in the first place. I'm not exactly sympathetic to the whining from the folks trying to get a movie without paying for it.

Hardly. How often does your power go out because there simply isn't enough to go around? I know we have blackouts occasionally caused by this, but it'd be like yo

Makes me wonder

[The-Ixian]

if they are simply port blocking or doing deep packet inspection. If it is the former I would think it would be pretty easy to circumnavigate...if it is the latter....then I suppose SSL would be the solution.

Re:

[Anonymous Coward]

SSL isn't going to protect against a man-in-the-middle attack unless you're verifying certificates. That means web pages are likely safe from manipulation by some intelligent equipment in the middle, but it seems unlikely that bittorrent nodes have certificates signed by a CA (otherwise, the device in the middle can just make its own self-signed cert as needed and you'll never know).

I'm pretty sure that equipment already exists which can do that for encrypted bittorrent traffic.

Re:Makes me wonder

[norton_I]

Technically that is certainly true. You could make the legal argument that presenting a certificate as belonging to another organization if fraud.

Not that it matters for the moment. Comcast can't currently afford to intercept all SSL connections, inspect the certificate to see if they can forge it, and proxy the connection just to do packet inspection.

Furthermore, I think you can prevent that. Essentially, create a new "CA" key whenever you create a .torrent file, and include the public key in the .torrent. Then, on-the-fly build a chain of authority stemming from that key. Then, whenever you get directed to a new peer, the message includes a public key for that peer, signed by your current peer, and so forth. Even if comcast tries to join the network to disrupt it, they can't disrupt communication between nodes when the chain-of-authority does not use their keys, and if tampering is detected, their keys can be revoked, un-authenticating any bogus keys they have generated and signed.

Sounds like a fun project, actually, assuming it doesn't already exist.

Re:

[ari_j]

That sounds like a lot of work. I think I'll just use another ISP. :P

Re:

[norton_I]

Actually, the more I think about it, the more I think it would also potentially stop a lot of other attacks. For instance, if I can propogate a signed message declaring that client X gave me Y chunks, you might be able to do a better job allocating bandwidth to clients that upload a lot. A node could keep a "relative trust index" used to prioritize who gets data. Basically, anyone who gives me data (that passed checksum!) gets their trust index increased, and anyone they vouch for, and so on. Bogus clie

Re:

[shark72]

"That sounds like a lot of work. I think I'll just use another ISP. :P"

I believe that is what Comcast wants. With fewer folks like you on their network, their average bandwidth consumption per customer goes down, and they have to process fewer DMCA letters.

I know, I know -- we all only use it for Linux distros -- but you see my point.

Re:

[Jay L]

You could make the legal argument that presenting a certificate as belonging to another organization if fraud

I think you could make the legal argument that presenting a message as coming from a certain IP address is fraud, but I've been shouted down on that one before. Not by lawyers, mind you, just by a fellow IANAL.

Re:

[evilviper]

Comcast can't currently afford to intercept all SSL connections, inspect the certificate to see if they can forge it, and proxy the connection just to do packet inspection.

No need for that:

Require all users to add and authorize Comcast's cert.
Proxy all SSL/TLS connections.
Block all other encrypted traffic.

Even if comcast tries to join the network to disrupt it, they can't disrupt communication between nodes when the chain-of-authority does not use their keys,

What? Why would they need to "join" bittorrent i

Re:

[Bender Unit 22]

No they just (start) to throttle all encrypted communication. Didn't we hear about an ISP who did/does this?
And/or they buy a device like the netenforcer http://www.allot.com/ [allot.com] which the manufacturer claims can throttle torrent traffic.

Re:

[speaker of the truth]

If it was owned by the government they wouldn't be able to do that. Infringement on privacy and all that.

Re:

[muffen]

They are probably just using some type of QoS that throttles P2P traffic so it doesn't exceed X% bandwidth usage.

Re:

[justthinkit]

I think this would be preferable to what they are doing. Comcast is telling each side "The other side hung up". Limiting P2P to a certain % would still allow some P2P to happen. Then, night time would be a productive time to download a Ubuntu 7.1 DVD iso, for example -- no one is awake, no other internet traffic is happening, go for it.

If all ISPs did this, and advertised the percent cap...ok, my pie in the sky just fell on my head.

Re:Makes me wonder

[walt-sjc]

From what I understand, they are forging packets that make your BT client think that peers have hung up on you. Since they (comcast) are the man-in-the-middle, they can easily perform these types of attacks.

And that's what this is. An attack. QOS would just slow things down, this kills. I don't mind QOS. I do mind active damage.

It's time to take p2p to the next level - implementing some of the concepts of the old freenet (the encryption part) and make the traffic unidentifiable. Maybe move it to UDP and make it look like DNS. Or Skype.

Re:

[rucs_hack]

what if they then just start denying any encrypted traffic outside of certain types? Oh sorry, 'dalaying' it? From what I understand its easy to tell if ssh is in use, what with the standard port 22 thing, just not easy to read it.

I doubt people could easily use ssh for bittorrent, since lots of people are on networks that don't do what comcast does, so if your seed isn't using it, you're screwed. Needing to use ssh would probably kill bittorrent.

I'm not an expert on encryption, but it seems to me they mig

Re:

[mr_mischief]

p2p _is_ legit traffic. Some of the contents may not be legal, but Xandros, Ubuntu, and a hell of a lot of other stuff gets distributed p2p.

Re:

[Actually, I do RTFA]

I don't mind QOS.

Why wouldn't you mind QOS? My traffic gets my speed damnit.

Re:

[Abcd1234]

1. Look up the definitions of throughput and latency.
2. Develop a basic comprehension of the goals of QoS.
3. Re-evaluate your position.

Re:

[Actually, I do RTFA]

Instead of a snide remark, if you want to explain why I am wrong, I will listen. However, my point is that I do not understand why my connection should suffer in any way. It seems to me that if you are prioritizing someone else's packets, than they are sent instead of mine which makes my connection slower, at least at those times.

Re:

[Andy Dodd]

I agree.

What the Comcast rep is describing in the article sounds like QoS - Any time there's a queue in a router somewhere, BT traffic goes to the back of the line. The end result is that if the network is being heavily used for other more latency/bandwidth critical uses, BT slows down, but if you use BT at 4 AM when no one else is using the network it'll be nice and fast.

What Comcast is actually doing is forcing connections to close if they have certain traffic patterns, regardless of whether or not the n

Re:

[Husgaard]

From what I understand, they are forging packets that make your BT client think that peers have hung up on you.

Technically this means they are lying to the customers using BT. And the purpose of their lying is financial gain.

But isn't this the definition of fraud? Why is nobody going to jail for this?

Re:

[BosstonesOwn]

To make a point in spite of killing my ability to mod, what happens when they just start wiping out encrypted packets next ? One cable started throttling encrypted traffic as well and basically killed vpn for every one.

The idea f this being a cat and mouse game should be absurd , they should stop mangling any data and design capacity to handle this issue. Move on to docsis 3.0 and then keep the uploads where they are , maybe see if bonding upstream channels are possible to loosen the network up a little.

The

Re:

[Hatta]

That's when you walk into your ISPs office with a hammer [suntimes.com]. Seriously though, if an ISP thinks they can get away with ruining interactive SSH, necessary VPNs, SSL for secure web transactions, etc., etc., they're not going to have many customers left.

Re:

[AxemRed]

I have been told that they are using Sandvine.

http://www.sandvine.com/products/p2p_element.asp [sandvine.com]

Re:

[rriven]

it also had a policy to outright block all encrypted traffic that wasn't coming over port 80

I feel sorry for your friend. Https is done over port 443 not 80. (http://en.wikipedia.org/wiki/HTTPS [wikipedia.org])

Every https webisite I have tried to view over port 80 has given me an error. https://www.bankofamerica.com:80/ [bankofamerica.com]

Merely delaying the packets - beyond the TTL

[GuyverDH]

Sorry about that - oh, did your precious cargo expire?

What, you were transporting critical medical records via Torrent? and someone died? Too bad - we were preventing you from pirating movies / music / software.

See, the problem here is that they cannot know what is being transported. The protocol by itself is not bad. If that were the case, they'd have to block TCP/IP - as all bad things over the net come through via TCP/IP - of course - all good things come that way too....

Re:

[BlowHole666]

TCP/IP - of course - all good things come that way too....

Yes like my porn, and that order for my new wife.

Re:

[stephanruby]

What, you were transporting critical medical records via Torrent? and someone died?

If an hospital wants mission-critical business-grade broadband, then I doubt it would get a consumer broadband subscription to Comcast. In any case we don't need to make examples up, Comcast disrupts Lotus Notes traffic, encrypted VPNs, and Skype phone calls. So if you're an employee whose workplace heavily depends on those technologies, you should probably switch out of Comcast and get DSL if you want to be able to work fr

Re:

[GuyverDH]

And what about other customers of other ISPs who's data happens to be carried over a segment owned by Comcast? (I don't know if there are any, however, if any carrier is allowed to fuck with the data flow, who knows what data will be impacted).
If a carrier doesn't have enough bandwidth to give each of their customers what they've paid for, they need to increase their capacity, not short their customers.

Don't spew contractual garbage either. If they sell someone 7Mbit down, 1Mbit up, they'd best have the c

Re:

[dwlovell]

Comcast does not guarantee any up or down as a sustained rate, it is merely a "burst" speed. This has been the way DSL and Cable connections have worked from the beginning. Remember all the people who told you that T1 was "dedicated" bandwidth, while DSL was shared and burst speed? This is why a T1 is $1000/month and your 1.5mbit DSL or cable connection is $50/month.

If a business needs sustained bandwidth, they get a T1 or a bundle of T1's, they dont get residential grade broadband that is a shared pipe wit

Re:

[GuyverDH]

Exactly what I meant about contractual garbage.

Burst spped? how often? once every 72 hours? the rest of the time at 1Kb/sec? what does that mean?

Cable is shared all the way to the house. DSL is shared to the switch, then dedicated to the house.

Re:

[GuyverDH]

Yet, if they have 100 subscribers at 1.5Mbit, that's a total of 150Mbit bandwidth, so let's say that the average usage is 50%, so 75Mbit. Now, if we actually had that, then a handfull of people using 1.5Mbit, will not saturate that pipe.

If one or two people using their full bandwidth capacity are saturating the pipe, then the provider is probably overselling their bandwidth quite a bit over that 100% mark. Probably closer to 200 or 300% oversell. Again, there's the profit maximization, while they say "fu

Re:

[GuyverDH]

Yes - the medical data was intended as a joke. Although it's intent was to say that there are definitely more payloads than just pirated content that traverse torrent-like transports.

Many games that people pay hard cash for high-bandwidth connections use these for updates. Restricting this flow for a particular transport means that there will be something new for the *gasp* piraters to use that is better, faster, harder to isolate than torrent streams, while the legal uses of these streams are choked out

Re:

[budgenator]

Probably but how about things like software updates for medical equipment?

Delaying, not blocking my check?

[FlopEJoe]

So I should be able to delay, but not block, my payment check to them?

Re:

[apt142]

Should you make one at all?

First Class or Coach?

[hyades1]

This sounds a lot like getting the camel's nose into the tent. Once it's established that there are two or more "classes" of information, and those classes can be treated differently, there's endless opportunities to make some customers "a little more equal" than others. And charge them a premium, of course.

I'm thinking of an airline that's planning to ensure that if you fly coach, your bags will be the last ones off the plane.

Re:

[account_deleted]

Comment removed based on user account deletion

I've noticed this behavior

[Maestro485]

I like to leave my Slackware downloads seeding just for the hell of it, and I've noticed that Comcast doesn't exactly block the traffic but does something similar to what this article describes. During certain hours (typically mid-morning and evening, roughly), all torrent activity will cease for a minute or two and then resume normally. This only happens at certain "peak" times and usually rather infrequently. Torrent speeds are generally quite good later on at night and on the weekends.

Not that I agree

False advertising?

[DoofusOfDeath]

Does Comcast advertise very high transfer speeds? Because if they advertise that, knowing that they intentionally force lower speeds for some kinds of traffic, that sounds like fraud.

Re:

[westlake]

Because if they advertise that, knowing that they intentionally force lower speeds for some kinds of traffic, that sounds like fraud.

You share the service with others. If BT degrades the experience for others it will be throttled back. If you want max speed schedule your gigabyte downloads for off-peak hours. This is not rocket science.

Re:

[Zenaku]

If you want max speed schedule your gigabyte downloads for off-peak hours. This is not rocket science.

I don't get what you're driving at. What's the point of getting maximum speed for your download if you have to schedule that download to happen several hours later? If I start a download now and it takes an hour to complete, am I worse off than if I start it 4 hours from now and it takes a few minutes?

To use our much abused and beloved car analogies: I could drive to work in 10 minutes instead of 30 if I

Re:

[budgenator]

So how do you measure 3 Mbits per seconds, it it 180 Mb for a minute, 3Mb for one second or it it 30 Kb for a tenth of a second? It's not fraud it's marketingdroid speak, it's Snidely Whiplash telling Nell, "But Darling you should have read the contract, there is no level of service in it, you got what was advertised once".

Comcast is still lying -- and not just about this

[Arrogant-Bastard]

As has been noted in numerous places, Comcast isn't just forging RST packets to disrupt P2P traffic -- they're also doing it to disrupt Lotus Notes traffic...which makes the "we're doing it to stop the bad guys" excuse a transparent lie.

Moreover, disrupting P2P traffic will have no effect on "spammers and other miscreants", as they have far more sophisticated, self-organizing C&C methods already deployed. (No doubt having anticipated that use of traditional P2P would leave them vulnerable to such countermeaures.)

But the truly galling part is that Comcast continues to repeat the same big lie they trotted out years ago: "We take the spam problem seriously". This is utter nonsense, of course; spam emission levels from their network continue to steadily increase, as they have for half a decade, to the point where their only serious rival for the #1 spot on the world's list of top spam-sending network is Verizon.

So what this episode tells us is that Comcast has the capability to monitor and modify traffic, but only chooses to do so when it might affect their profits -- not when it might could the unceasing flow of abuse outbound from their network.

Re:Comcast is still lying -- and not just about th

[Lumpy]

Last friday they had a large layoff in their Ad sales division. I know of several people that lost their job there and many said they did this country wide, gutting lots of jobs.

Funny though, they did not trim the fat. Lots of middle management still there that really are not needed.

Me thinks Comcast is circling the toilet bowl. still on the outer edge but we all know the spiral is a logarithmic one.

I'm waiting for the next round on the CableTV side (oh yea it's coming!). I have a bunch of friends there

Re:

[Red Flayer]

Me thinks Comcast is circling the toilet bowl. still on the outer edge but we all know the spiral is a logarithmic one.

Nice pun, bad imagery. Very, very bad imagery.

Excuse me while I go find a goatse link to get that image un-etched from my brain.

Lets be realistic

[packetmon]

You don't like it leave. Its that simple. Maybe if Comcast customers started leaving in drones, Comcast would re-think their insane policy. Anything else is akin to whining like a child because you can't have the toy you wanted. If your phone company DID decide to pretend they were you and pick up and hang up your call what would you do. 1) Sue 2) Find new phone company. For those in a place where you're trapped in with solely one provider, I feel your pain. Maybe people need to start calling their local po

Re:

[justthinkit]

I've had high speed cable since it came into be. Across half a dozen physical locations, two countries and three states. I've tolerated the high price and stomached the constant price increases. But this may be it for me. If I can't use one of the finest protocols ever invented to download a large file in a completely legal and incredibly fair fashion then I think I need a new ISP.

Re:

[westlake]

You don't like it leave. Its that simple. Maybe if Comcast customers started leaving in drones, Comcast would re-think their insane policy.

Do let us be realistic.

The cable companies have tens of millions of customers who would be out there cheering if the Geek's gigabyte traffic in ISOs were put on the back burner, the graveyard shift.

Just shy of the bullseye...

[glindsey]

He compared it to making a phone call and getting a busy signal, then trying again and getting through

Hey, good phone analogy, but you're not quite right, Mr. Comcast Executive. Let me try to lend you a hand: it's like already being on a phone call and having it dropped in the middle of your conversation. Over and over and over. And it makes you so angry you vow you're going to cancel your service and switch to a competitor, except you can't, because they're the Phone Company, the only game in town.

At least, that's the way it works for a huge portion of Comcast's service area, including large swaths of Chicagoland.

Re:

[The Angry Mick]

And it makes you so angry you vow you're going to cancel your service and switch to a competitor, except you can't, because they're the Phone Company, the only game in town.

Or, whenever you try to use your phone to find a competitor, they disconnect the call. Over and over and over.

Is this the future of of ISP competition? Active interception and disruption of competitive traffic? No effort policing your own traffic?

Technically they are blocking

[JoeCommodore]

If they terminate a connection from happening they are blocking it. It may be OK to them to call it 'delaying' but technically the connection is blocked initially.

Should have used tubes...

[MosesJones]

Comparing with a phone service is correct, if they did this to a commercial customer and deliberately stopped a certain percentage of calls that had to then be re-dialled they would be accused of blocking calls.

He should have said "its like a set of tubes its just that P2P traffic is heavier so it sinks to the bottom, and as everyone knows with rivers they flow slower at the bottom so we aren't delaying them its just that P2P traffic is like a Pike, its a heavier fish that swims at the bottom while the normal internet stuff is like a salmon at the surface. Pike also eat cute little ducklings so P2P is evil"

nothing new for canadians

[whydotheydothat]

Rogers does that in Canada on a regular basis. When I called them up, they admitted they block bit torrent. I asked them why don't they do this AFTER i use all my "unlimited" 60GB/month ($50)? No answer. Go figure.

Re:

[compro01]

Shaw does similar capping (stated as 100GB/month), though they're pretty variable about it. in some areas, they jump on you for money as soon as you go even a single bit above that, other places, you can pull 500GB of traffic for months on end and never hear a peep from them and without a single extra charge on the bill.

and if you don't like them, you can easily switch to someone else (Access, Sasktel, and i believe a couple other small guys in Regina and Saskatoon) for DSL without caps, though possibly a

A Low Tech Load Balancer?

[tgatliff]

Sounds like a low tech form of load balancing... Dont these guys have the money to buy a good traffic shaping device? :-)

I do understand that many people might have bad experiences with the Comcast broadban, but I really like Comcast where I am. I have several VPN tunnels setup across multiple offices which is very nice and stable. Also, most of the time there speed is outstanding as long as my traffic shaping is good on the outbound side.

Problems also with OpenVPN related to this?

[dpilot]

I have an OpenVPN endpoint on my home system, so I can get access to my IMAP server wherever I am.

From my desk at work, it continues to work flawlessly.

From my mother's house it has worked flawlessly in the past, but on the last visit it didn't. It seemed to have MTU problems, in that I could do simple DNS lookups, and I could SSH into one of my home systems over the VPN. But the moment I go to move any quantity of data, it freezes up. I tried the suggested OpenVPN MTU fixes and they didn't work, though

Re:

[account_deleted]

Comment removed based on user account deletion

As a Comcast customer...

[Benanov]

Was trying to grab the Gobuntu alternate--and the sad thing that the straight download was going faster than the torrent, at least for a while (mirror servers are hit hard.)

Either way I've never had this much trouble with the service. Comcast is really putting the squeeze on.

Bad analogy..

[bleh-of-the-huns]

I disagree with comcasts analogy. Its not like getting a busy signal, its like an operator coming on the line mid conversation and tell both partys please try again later and disconnecting them. The busy signal occurs when you initiate the call and the receiving end is busy an unable to answer. What they are doing is at a certain threshold (that no one knows of course), getting into the middle of the connection, pretending to be each other, and disconnecting the connection.

A better analogy for comcast to use would be something along the lines of we are promoting identify theft by pretending to be the recipient and closing your connection so we can redirect the traffic and steal whatever you are downloading :) (okay the last paragraph is sorta absurd.. but still it amused me when I read that back to myself so it stays)

Re:

[account_deleted]

Comment removed based on user account deletion

why is the limitation such a secret??

[Cutting_Crew]

what possibly could anything do to harm that they tell each people what the bandwidth is? how can they not be held liable for people exceeding the limit but have no idea what the limit is because for some reason, it's a government secret.

Dear Sirs

[zappepcs]

In line with your new network policies, I'm going to send all future payments in packets of $5 USD. You are hereby notified that some of these packets may be delayed. Since you control the network they are transmitted on, perhaps you can ensure that they arrive. I'm sending the authorization for payment of each of these packets via a p2p protocol. You may be familiar with it: bittorrent.

If you would, please help ensure the prompt delivery of these packets to ensure prompt payment.

Thank you

J.Q. Public
member:

The obvious solution

[Danathar]

Well obviously if this is affecting you should drop Comcast and chose from the 3 or 4 other major broadband providers that can provide megabit service to your home.

Oh..that's right...there aren't any other major providers in your area....

Forged RST Packet Traffic Shaping

[Agripa]

I am not blocking forged RST packets from Comcast IP addresses. I am just placing them into a very long delay queue in my traffic shaper.

Re:

[mikeee]

That's clever. What you really want is a router/NAT in front of your home net that held incoming RST packets for, say, 250ms, and then dropped rather than forwarding them if they were followed by data packets. (Any of the current traffic-shaping modules easily capable of this?)

Comcast could still *block* the connection, but then they'd have to be using some kind of statefull firewall, which is much more expensive and doubtful to be worth the bother.

Re:

[Agripa]

My post was inspired by my recent investigations (last night while suffering from a sugar and caffeine high while attempting to diagnose a balky router at 3am) into Comcast's interference with TCP connections.

Both the m0n0wall and pfsense FreeBSD based routing projects support enough packet classification in their traffic shaping rules to do exactly what I described. The firewall rules themselves however do not so one of the first things I tried was creating a very long delay queue in dummynet (m0n0wall fo

Legal action?

[Thaelon]

Could Comcast be found guilty of fraud law or violating some computer usage law because of this?

On one hand, they're deliberately pretending to be the person you're communicating with (fraud?). On the other they're deliberately degrading performance of a person's internet connection (vaguely DOS-ish) - a person one who isn't necessarily their customer and isn't necessarily doing anything illegal. (WoW patches, Linux distros etc)

The President didn't veto the bill...

[r_jensen11]

...He just let it sit in a drawer in his desk for 10 days.

This is just utter bullshit. If you postpone traffic for a long enough time, it's going to time out. Just like not signing a bill within 10 days kills the bill, but without the official veto. A pocket veto is a pocket veto, regardless of who is doing it.

I have a better idea for Comcast

[Medievalist]

Hey, Comcast. If you take a few simple steps to prevent the propagation of worms and viruses on your network, you will reduce your total traffic volume by at least 50%. Do something clever (like hire a COMPETENT STAFF) and reduce traffic volume by 80% through elimination of all but the zero-day worms.

Then you will be able to provide your customers with enough bandwidth to satisfy the market demand, including bandwidth optimizing file sharing technologies like Bitorrent.

What's that you say? You can't comp

More Bandwidth Used

[duncan]

So for each failed attempt it's more traffic that you generate that goes against the mystery cap before getting your service cut off for the month for over usage of failed attempts due to their software.

Bad Analogy

[SeaFox]

He compared it to making a phone call and getting a busy signal, then trying again and getting through.

In the case of getting a busy signal, the party you are trying to reach is already on the phone, thereby denying you the ability to reach them.* This is more like you try to call someone and get the "all circuits are busy" message, then try again and get through. The point is in the example he used, the reason you can't connect is because of the answering party, not your phone company. Which closer to what is happening. And getting the "all circuits is busy" message is a sign of too little capacity, and considered poor service. Which is really what's going on at Comcast, too.

------
* We'll ignore CallWaiting, and the fact most phone companies let you have two calls running at the same time, alternating between them. Heck on some can combine them into a conference call on the fly.

Re:

[Dunbal]

Ok, I'm sufficiently braced for the "You're a bloody pirate!" comments.

      No, most slashdotters realize that you are doing all you can to fight global warming...

Re:

[Technician]

AT&T rolls out their FIOS and suddenly all these anti-Comcast articles start showing up.

Actualy, ATT roll out is not important for most of the US as it hasn't hit our state, city, neighborhood, street, house yet. It's about as important to this as the rain in New Orleans or the fires in LA. It just happened to be near the same time frame.

The real issue is the new version of Ubuntu came out. The server mirror overloaded. My download died at 80%. I used the mirror because Bit-torrent would have take

Re:Interesting (...speaking of FIOS)

[Arrogant-Bastard]

It's possible to track FIOS rollouts merely by noting spam sources whose rDNS matches it, e.g., "*.fios.verizon.net". To date, this has been a 100.00% indicator of spam. For example, in the last few minutes, one of my mail servers has observed the following:

pool-70-104-193-136.nrflva.fios.verizon.net
pool-71-170-157-58.dllstx.fios.verizon.net
pool-71-178-175-162.washdc.fios.verizon.net
pool-71-180-67-156.tampfl.fios.verizon.net
pool-71-187-176-23.nwrknj.fios.verizon.net
pool-71-245-227-130.bstnma.fios.verizon.net
pool-71-245-247-31.nycmny.fios.verizon.net
pool-71-245-74-238.prvdri.fios.verizon.net
pool-71-251-69-183.tampfl.fios.verizon.net
pool-72-64-87-227.dllstx.fios.verizon.net
pool-72-66-1-223.washdc.fios.verizon.net
pool-72-75-227-248.bflony.fios.verizon.net
pool-72-90-121-2.ptldor.fios.verizon.net
pool-72-94-19-223.phlapa.fios.verizon.net
pool-72-95-136-185.pitbpa.fios.verizon.net
pool-96-229-80-50.lsanca.fios.verizon.net

That's a mail server with one user. Production mail servers with tens of thousands of users typically note 5000-10000 such systems every day.

So from here, it appears that new FIOS rollouts are being 0wned nearly as quickly as they're connected, and that they're staying 0wned. I'm sure the spammers are quite pleased with the quality service provided by Verizon et.al.

Re:

[budgenator]

If I was Comcast I'd be mirroring everything under the sun, proxying almost as much, and have my own servers dishing out the most popular torrents, well I would if there really was anything to all the whining about bandwidth being expensive. If the operating methods were the proxy and mirror servers gets the fast-expensive backbone, and the non-proxy gets the slower-cheaper, they'd save tons on bandwidth expenses and users would be better served.

MS investes in cable TV. Ubuntu Gutsy is due out. They recomme

Re:

[Technician]

Intriguing. A friend of mine wanted to upgrade to Gutsy, and downloaded the iso in 2 hours using Bittorrent. Mainly due to all the people using BT to download it, it was coming down at breakneck speed.

My Bit-Torrent test was clocking at 0.3k. Dial-up is faster on a modem. Using a mirror was 2 orders of magnitude faster.

Re:

[Dunbal]

Get this, they updated our cable box and gave us $20 off for a year!

      The natives were happy when they got beads and trinkets, too.

Re:

[hal2814]

"they recently sent us a flier telling us about channel changes and that we would be not receiving a couple of channels that we currently get"

"Then next year the bill only goes up $1 over our current plan."

Wow. Less channels for only $1 more per year. Where do I sign up?

Re:

[BitZtream]

Whats your definition of a server? Pretty much everything sends data in both directions, even HTTP so is that a server when it connects to /. to download a page and it has to get the get request?

What about games, Comcast advertises how great gaming is on their network ... many people playing games have to run a server to play. Thier TOS is in direct conflict with their advertising. Unless you think the Comcast TOS doesn't allow for XBox live games, in which case they should be filtering them as well.

Alth

Re:

[Agripa]

Comcast's TOS explicitly disallow running any form of public server or P2P services, so I really don't see why people are complaining about it.

I completely agree to the terms of service. Now let them enforce it and try to stop my complaints. They can kick me off anytime they like and apparently from the ToS, for any reason.