Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Comment Re:Set up correct secondary DNS servers (Score 2) 341

That's not how DNS works, most machines do not directly resolve against a domain's DNS server. They resolve against an ISP's DNS server. An ISP's DNS could easily stream thousands of requests per second to a provider like DynDNS. And usually that's not a problem since in a well-architected DNS system, you have a TTL of 3600-86400 and so your ISP caches requests from all their clients for a specific server.

The problem with the way Twitter 'fixes' issues is to set TTL on the order of seconds and continuously update their DNS with 'working servers'. That means for every request an ISP's DNS gets, it has to immediately request a new DNS entry, because in the cloud, instead of fixing an issue or properly setting up failure models or scaling a service, you just throw more single-sourced hardware at it and let an actual working protocol route around your issues.

Comment The incompetent sysadmin (Score 1) 182

The main problem was the incompetence of those sites' sysadmins. A TTL under 3600 and all your authoritative nameservers not just with the same provider but on the same platform with the lowest of low, cheap, scum of DNS providers (DynDNS)

Someone tripping over a cable or typing in the wrong command could've caused this. And it's not like Dyn hasn't just unplugged their customers before.

Comment Re:how big was it? (Score 2) 75

Dyn seems very quiet about a lot. They and their customers got their ass handed to them. This was pure incompetence on the hands of Dyn and many sites and services.

DNS TTL 3600s or even 86400 (the gold standard back in the day) - because the cloud prides itself on individual machine uptime of 80% or less
Single DNS provider - because the cloud prides itself on a single vendor being world-scale just by spreading out

Twitter and co (still) has a TTL of 130s, way lower than RFC 6781 suggests and still has all their name servers at Dyn meaning they haven't learned anything yet.

Comment Re:Snowden also did something illegal (Score 1, Insightful) 356

Motives can only be determined when someone has the full story and is not the only part of legal process either.

Either way, we are talking about things that are part of public record. Just because someone (HRC) doesn't/didn't want them to be part of public record and used a personal account to hide them doesn't mean they shouldn't be.

If HRC wouldn't have cheated; these records could've been obtained by FOIA request and would've happened in a real election or the stonewalling of the FOIA by the administration would've been a big talking point.

Comment Re:Legal? (Score 2) 279

From what it reads, it only works when someone cuts the lock with an angle grinder, meaning it may be something that is ignited by heat in order to work, plenty of circumstances where such ignition could be severely delayed (eg. in cold climates). If it's just compressed gas, any sort of metal issues (fatigue, bad welds or rust) or impact could release it (eg. if the biker gets hit by a car).

Terrorism charge is the first thing that springs to mind what you'd get charged with if this gas either intentionally or accidentally gets released in a public area (such as a bike stand).

Comment Re:Solution? (Score 2) 135

No, just DNS the way it was intended. DNS and all early Internet services were designed to withstand nuclear war and attacks by state-sized actors, actually specifically designed to withstand an attack from Russia.

The problem is the cloud has aggregated all that diversity of everyone running their own services into a handful of really big corporations. Today's just a reminder that any one of those corporations has a significant amount of control if it were a truly bad actor. Imagine Dyn intentionally pointing all the Twitter etc DNS records elsewhere, they did it for their "free" accounts a decade ago just to make them pay.

It seems no one at those big corporations remembers the true history of DynDNS, and how they screwed their customers over. I was surprised they were still in business at all.

Slashdot Top Deals

... when fits of creativity run strong, more than one programmer or writer has been known to abandon the desktop for the more spacious floor. -- Fred Brooks