Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Comment Re:What's the Solution? (Score 1) 57

Not how the Internet works. Yes that's true on the edges but once you enter into the public Internet, packets could be routed from anywhere to anywhere. The only solution here is to shut down ISPs that are participants but you're talking about getting participation from people that often are themselves involved in the criminal enterprise (that's true for US, Europese, Chinese etc providers) and are profiting from these attacks through overage fees etc.

You wouldn't imagine but even providers like Verizon won't shut off mobile connections because they are often charging their customers per GB consumer. A lot of sleazy hosting provider (the cheap $5/mo.VPS) simply delays intentionally or unintentionally because they don't have the staff to keep up and they are often paid for by the criminals.

Comment Re:DNS Replication Service Suggestions? (Score 1) 57

I think EasyDNS has a product but it's as simple as maintaining two sets of DNS records and pointing your domain to two different providers (e.g. powerDns and easydns).

This "attack" could've been easily prevented if they had a single SysAdmin with 15-20y experience in Internet hosting. Having multiple DNS providers used to be standard practice for any medium to large organization.

Imagine dyndns CEO or disgruntled employees simply pulling the plug out. Same result and a reason to avoid SPOF even if you're "in the cloud"

Comment Re:There is something to that... (Score 1) 340

The problem is the 'premium' has been largely debunked in enterprise settings. If you ever get to price out a Dell or HP machine with the same features as a Mac, you're ending up paying more than a Mac. Sure you can get a 5 year old CPU in a brand new Dell and pay $500 but if you care about 3 year hardware support and somewhat modern hardware, you're paying a good chunk more to Dell than to Apple.

Comment Re:Were the users randomized? (Score 1) 340

The user base (IBM) seems to have been people that switched over from Windows to Mac by company policy, after the switch, the company sees less support calls. The people haven't necessarily changed much, they just switched their computers around and decreased their tech support.

I see the same thing, My time ratio on desktops is roughly 40/50/10 between Windows, Mac and Linux although we have a ratio of 15/80/5 of actually deployed machines. The problem is that Windows is just very time consuming and requires much more intensive support. This isn't due to viruses or security problems (anymore) but due to the requirement of heavy virus scanners for Windows (vs. built-in security to Mac and Linux), the higher prevalence of requiring admin rights on Windows machines and primarily because Windows drivers and functions just randomly fail to work. The other day, devices with Realtek drivers on Windows 7 and 10 switched from analog to digital because of a Windows update, just randomly, do an update, defaults output mode to digital.

Comment Re:Dns (Score 5, Insightful) 228

Yes, but the problem here is all these services are using a singular DNS service which is under attack.

A good decade and a half ago, when I was part of a hosting company, we had the DNS for our customers across 3 or 4 different providers. That way, if for whatever reason one provider went out of business, the domains would continue to operate.

The problem is this:
      Name Server: NS1.P16.DYNECT.NET
      Name Server: NS2.P16.DYNECT.NET
      Name Server: NS3.P16.DYNECT.NET
      Name Server: NS4.P16.DYNECT.NET

      Name Server: NS1.P34.DYNECT.NET
      Name Server: NS2.P34.DYNECT.NET
      Name Server: NS3.P34.DYNECT.NET
      Name Server: NS4.P34.DYNECT.NET

Name Server: ns3.p05.dynect.net
Name Server: ns1.p05.dynect.net
Name Server: ns2.p05.dynect.net
Name Server: ns4.p05.dynect.net

If for whatever reason DynDNS pulls the plug (which they have a history of for reasons of profit and incompetence), all these sites are down. It doesn't matter whether or not you're using Unicast or Anycast, if your provider 'dies' (or it's host providers like Amazon which also has a history of major outages) then your domain dies. And before you get all your glue records fixed, you're out at least 48-72 hours.

Comment Re:Dns (Score 1) 228

If it were truly distributed this wouldn't happen as DNS has inherent failovers. This is just an example of using "the cloud" box.net and other enterprise cloud software is also down. They're all using the same providers which is not as distributed as it promises.

Comment Re:Russian Government? Why use a contractor? (Score 2) 108

I would say they're both as are most people in computer security these days. You cannot identify a state-level attacker, only guess. The Stuxnet is a great example, it's "probably" the US or Israel but you can't say for certain because it leaves no trace.

I must assume given the transparency of the attack this is just a corporate-level hacking group that happened to stumble upon the motherload and probably didn't even realize for months what they had.

Slashdot Top Deals

I've looked at the listing, and it's right! -- Joel Halpern