Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Comment Re:Developer machine (Score 1) 373

The ironic thing is Macs are pushed as productivity machines for professionals. That is one of the reasons they are supposed to fetch a premium price is because they aren't just "home" machines for the masses.

Macs are for professionals ... just not your sort of profession!

My local Apple afficionado tells me that Apple users have better things to do with their time than play games, watch movies or, apparently, pretty much anything that normal people do.

Comment Re:In our vision of the "new" connected world: (Score 1) 373

You never turn off your devices. You will be constantly be consuming monetized content.

Including the surf noise it plays while you're sleeping.

Someone who wants to turn it off must, obviously, be deviant and need intervention.

Some time in the future, watching old episodes of "The IT Crowd" with my kid.

"Have you tried turning it off and on again? You do know how to work a button?"

and my kid asks
"What does he mean 'turn it off and on again?'"
"Well in the old days people used to be allowed to turn their computers off."
"What do you mean? Why would you do that?"
"Because sometimes computers would go wrong and it might fix them."
"Sssshhh daddy, we don't want anyone to hear you say anything bad about computers."

shades of 'Paranoia!'

Comment Re:Set up correct secondary DNS servers (Score 1) 340

> If the primaries were at Dyn, and the secondaries were not at Dyn, none of the sites would have experienced any downtime.

Until Dyn's secondaries are hit 5 minutes later... it's true that 2 is better than 1, but how about potentially tens of thousands?

You are still not getting this...

Dyn's secondaries were hit. If the secondaries were at Google, Yahoo, Hover, and other companies, they would need to DDOS every DNS server on the entire freaking Internet at the same time.

Say you have 12 domains, and you have a primary DNS (P) and a secondary DNS (S), and then you have 4 hosting primary companies A, B, C, and D, and the four of them get together and form a DNS pool, so that one of the other hosting companies acts as secondary for each of the domains for which they themselves are primary:

domains P....S
--------------- A -> B A -> C A -> D B -> A B -> C B -> D C -> A C -> B C -> D D -> A D -> B D -> C

Now expand that to 10,000 hosting companies. Get it now? It's called a multiply connected network.

Comment Its unlikely they are a sinking ship. (Score 1) 104

Its unlikely they are a sinking ship.

They have 258 positions currently open in sales, concurrent with laying off 300 people.

Intuitively, that means that the people being ejected are mostly underperforming sales account managers.

Other jobs are in machine learning, data analytics, and data scientists, which likely means that they are also having content control problems with troll and sock-puppet accounts, and they have little understanding of network effects, despite being a "social network".

Or... it means they have a tender offer, and want to reduce the PPE numbers to inflate (temporarily) the asking price for the company, in the same way that Word Perfect laid off all their people working on future product releases, prior to selling themselves to Novell.

Comment Re:Set up correct secondary DNS servers (Score 1) 340

Secondary DNS would not have helped here. The issue with DNS is that it's a centralizing service.

I understand that you have a particular drum to beat in this regard, but the problem is actually that Dyn hosted both the primaries and the secondaries, and they took Dyn offline.

If the primaries were at Dyn, and the secondaries were not at Dyn, none of the sites would have experienced any downtime.

Comment Re:Set up correct secondary DNS servers (Score 1) 340

So my IoT thing sends out a http request on port 80 of your web server, is that a DDOS attack or is that a valid request?

In my personal opinion?

It's always an attack, since IoT devices should connect to an Intranet server under your control, and not be vended routable addresses under any circumstances.

Comment Re: Set up correct secondary DNS servers (Score 1) 340

If your TTL is high enough, attacking a DNS service wouldn't deny service. The RFC says at least 1800s. Most of these sites have such poor uptime/architecture that their TTL is set to 120 or less.

Most caching servers at ISPs are set up in violation of the RFCs anyway:

* If they do not have an IPv6 upstream, they fail to filter IPv6 addresses out of their responses to downstream DNS requests.

* If they get some TTL value with less than their idea of a "minimum", they modify the TTL to be 300 or more seconds.

The first makes it hard to be "IPv6 by default", i.e. listing the IPv6 responses first in preference order over the IPv4, since it makes it not work for some people on the downstream side (the IPv6 addresses have to each time out before an IPv4 address, if there is one, is attempted).

The second makes it a real time consuming thing to do to have to wait 5 minutes between testing DNS reconfigurations to see if they work (and then you get 5 minutes of downtime when they don't, before you can fix them).

Comment Incorrect. 10,000 DNS servers in the pool... (Score 1) 340

But I will. If you spit it up into two sections, then the attacker will simply attack both servers. How many secondary servers would you need before the attack is spread too thin to deny service? Who knows.

That's easy. You put ALL of them in the peering pool. If you don't put your servers in the peering pool, then an attack can take you down... but no one else. Good luck getting customers in the future.

It's very easy: 10,000 DNS servers means a 1:10,000 chance of them hitting both your primary and secondary servers for your domain. Unless it's YOU the bad guys are attacking, instead of the DNS infrastructure (and if it's YOU, you have other problems), then it's unlikely that both your primary and secondary will get hit.

But don't forget that the companies are paying for all this bandwidth.

Yes. And to make it fair, you scale your presence in the pool by the number of domains you are personally hosting. If you host 1,000 domains, then at most you will also be secondary for 1,000 domains. If you host 1,000,000 domains, then you will host at most 1,000,000 secondaries.

This is why it's a peering pool.

Even if their services stay online they're spending $$$ to keep them online while the attacker isn't spending any money.

One company is an acceptable casualty. It's likely, however, that the Bad Guys(tm) were either targeting a number of specific domains, or they were targeting Dyn itself.

Either way, you'd set up collective defense resources for all pool members (that way, even if they were just going after Dyn, you could still afford to go after the culprit).

Comment Re:Who needs them anyway (Score 1) 319

I stopped wearing a wristwatch 10+ years ago. It was annoying to wear while using a laptop.

There's clock on my phone, computer, car, radio, egg timer.. I don't see the point in carrying extra one on my wrist.

Smartwatches seem even more pointless to me, redundant and limited functionality and horrible battery life.

This is what kills the wristwatch for me.

Even when I had a wristwatch, half the time I kept it in my pocket because having something strapped to my wrist is just too bloody annoying.

Comment Re:Was Obvious from the Start (Score 5, Insightful) 319

Yup. When the Apple watch came out, I took my Rolex purchased in the 70s to a jeweler for cleaning and refurbishment which cost 2x what an Apple watch would have cost. I gave it to my son as a graduation gift. The current value on that watch was 5x what I paid for it. Might be a wash with changes to the value of a dollar, but that item will still have value in 2-3 years when the Apple watch would have been dropped into a bin as junk. The HP-01 watch from the 70's was a better product than the Apple watch, by the way I also had an HP-01 back then. Kind of sorry I didn't keep it. I wonder if an Apple watch buyer will every feel the same way after 40 years?

Also, when Apple decide they don't care about the Apple watch any more and shut down the servers that enable it to work, it could well stop functioning altogether; many pieces of modern tech are like this. If their servers are offline they just don't work any more. This isn't going to happen with your Rolex.

Comment Also preference for 1's over 0's (Score 1) 314

Also preference for 1's over 0's due to the 1's taking up less space is causing problems for database administrators and designers.

Larry Ellison is reported to be pushing a new industry standard in which entire Oracle databases will be compressed into nothing but 1's thus saving billions globally in storage costs.

Comment Re:"if nothing is done to encourage more of them t (Score 1) 519

And the only conclusion you can reach is that women are incompetent and "not interested". Have you ever pondered that people with attitudes like yours might be part of the problem?

I'm a guy. I can program competently. But I hate doing it so I don't have a programming job. In my life experience men and women tend to enjoy different things and in different ways, the two genders are equal but obviously different. What if the majority of women who could be competent programmers just don't want to do that job because (like this guy) they find programming uncomfortable and unpleasant? How do we find the truth of the matter (especially with so much political correctness muddying things up)?

Slashdot Top Deals

Someday somebody has got to decide whether the typewriter is the machine, or the person who operates it.