Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Comment Re:Chinese speakers only (Score 1) 414

fluency in [ mandarin | Chinese ] is a plus

Of course it's a plus. I'm likely to be hiring a group of Mechanical Engineers in the next six months, and I certainly want at least one of them to be fluent in Mandarin to make it easier to work with Chinese suppliers. It would be pretty handy if they speak Korean, Japanese or Hindi, too.

-jcr

Comment an infection is as an infection does (Score 1) 152

Despite the brass ring TOS of whatever version you were previously running, an infection is as an infection does.

Also, read your antibiotic prescription carefully.
* may include systemd[**]

[**] First we keep Berlin, then we take Warsaw, someday soon we annex Prague, and eventually perhaps we'll incite the Arabs to cut Manhattan down to size.

All hail PC-BSD: the systemd-free libertarian antibiotic of last resort.

Comment public routing table vs connection tuple (Score 1) 123

Even a 64-bit address would have been seen as doubling memory requirements of routing hardware for no good reason.

There could have been an optional 32-bit client sub-address ignored by the public routing backbone.

Then, for most purposes, non-backbone routers need two routing tables: a routing table for the public network (if more complex than a few simple gateways), and an organization-local internal routing table (with 32-bit addresses, just like the public table).

The actual problem is that each TCP/IP connection would require for the connection tuple (src_IP, src_port, dst_IP, dst_port) not 12 bytes, but 20 bytes.

Probably something could have been done to mitigate that, too, as things stood long ago, but I don't feel like speculating further just now.

Even without mitigation, let's suppose you have an FTP server and you want to guarantee at least 16 kb/s for each active FTP connection (circa 14.4/28.8 modem technology). You need to provide nearly a kbit/s network bandwidth per byte of connection tuple held in system memory (we'll ignore the messy nature of FTP, much of whose ugliness could have been averted by a better original IP design).

At the same time, NAT isn't all bad. It does help to conceal the internal structure of your network from the evil public network (and makes exposing your non-firewall hosts more of a sin of commission rather than a simple sin of omission).

NAT also erects a barrier to ultimate host fingerprinting and traffic analysis, at least until HTTP came along to ruin things with user agent strings and cookies.

Some people are quick to point out that a low barrier is no barrier at all, but I like to force my adversaries to at least put on their ballet shoes before attacking my network, and then to stay alert for people with trunks full of tools good at hopping low barriers.

My proposal doesn't much complicate the backbone routing table, except for Sandvine, who would have—once we got there—been pissed in a big way (counterfactually), to much rejoicing.

Slashdot Top Deals

A freelance is one who gets paid by the word -- per piece or perhaps. -- Robert Benchley

Working...