|
11/23 |
2009/5/7-14 [Computer/Networking, Computer/SW/Unix] UID:52962 Activity:nil |
5/7 What's a good reverse port forwarding for a PC(inside firewall) -> Unix, so that I can VNC into the Unix that gets forwarded to PC's VNC server? \_ http://micrux.net/?p=26 Syntax, to be executed from the PC behind firewall: % ssh -R 5900:127.0.0.1:5901 <destination_server> You can also use Putty, by going to Connections->SSH->Tunnels, and enter: Source port:5900 Destination:127.0.0.1:5901 Remote (not Local) and finally click on Add So the connectivity looks like this: PC --ssh--> FIREWALL --ssh--> destination_server And the resulting "virtual" connectivity: PC:5900 <--- destination_server:5901 With the "-R" argument the destination_server binds to port 5901 which will connect back to PC's port 5900. Hence, it's a "reverse" tunnel. Note that this can potentially open up a lot of problems for companies and is generally frowned upon by network administrators. Please use with care. \_ Thanks, this is super useful info in general. \_ I do this with inetd and netcat. Just put a line like this in /etc/inetd.conf, and reload inetd: 5900 stream tcp nowait nobody /bin/nc nc YOUR-PC 5900 You can also do it with ssh port forwarding (e.g. using PuTTY), but then you have to remember to keep your ssh connection open all the time. |
2009/4/26-29 [Computer/Networking] UID:52910 Activity:nil |
4/25 I have an Airport Express. is there some way to let computer 1 ping computer 2? both computers are connected to wireless network successfully. I can get to internet on both of them. I just can't ping each other. weird. maybe they think that's a feature? \_ Sounds like your router is enforcing client isolation. If you can't change the setting on the router you're probably SOL. |
2009/4/17-23 [Computer/Networking, Transportation/PublicTransit] UID:52862 Activity:nil |
4/17 "WiFi Rail Inc. to provide wifi access on BART system" http://www.bart.gov/news/articles/2009/news20090202.aspx (not exactlly new news) |
2009/4/2-5 [Computer/Networking] UID:52786 Activity:nil |
4/2 I need to replace a plug on a cable that looks like this: http://en.wikipedia.org/wiki/File:Mini-DIN_male_4-pin_power_connector.jpg Any recommendations on where I can find this connector? \_ Al Lasher's? \_ I'm not in Berkeley. \_ What about Fry's or Radio Shack? Just guesses. \_ http://www.jameco.com : shipping is going to be a bitch \_ http://www.jameco.com/webapp/wcs/stores/servlet/ProductDisplay?productId=142280 |
11/23 |
2009/3/12-19 [Computer/Networking] UID:52705 Activity:low |
3/12 I spent a whole day on this to no avail. Using the Nortel Contivity client, logging into work suddenly stopped working (gets stuck on "banner text"). Rebooted laptop, checked with the VPN administrator, checked with the cable company, check the belkin router -- no changes anywhere, just stops working. Laptop works fine from a different network, and a different machine on the same network can't get in either, so it's the home network. Tried rebooting router, checking all the settings in the router, outgoing connections (VPN uses UDP port 500) not blocked. Tried putting the machine in the DMZ, didn't work either. Just will not work. Did I miss anything? -eric \_ What happens if you try using the cable connection directly (i.e., without the router)? If that works, maybe your router is dying. \_ Forgot to mention that EVERYTHING works except using the VPN. \_ Well clearly, something somewhere has changed. The admins aren't always aware of changes either; you'd probably be giving them too much credit if you assumed they were authoritative. Also, Nortel VPN (among others) uses non-TCP/UDP packets, so likely these are getting blocked or mishandled somewhere. It would not be immediately obvious since the majority of traffic is either TCP or UDP. |
2009/2/27-3/5 [Computer/Networking] UID:52658 Activity:nil |
2/27 I need to buy a wireless router, can u guys help me out? I need the following features: wireless, G or better, PPTP dial up, PPoE dialup, VoIP/SIP register, DDNS, uPnP. I am having a such hard time to find a review site which allow me to select these features. Any ideas? There are a couple model from this small company Draytek has these features, I am having the hardest time picking out Linksys/Netgear model that has similiar features. I want to by-pass China's great Firewall as well as using SIP VoIP servies. thanks in advance. \_ uPnP is the first thing I disable on a router. Why do you want it? \_ Would you consider having some of those features off the router? For the SIP bit, I'd consider Asterix on ALIX (http://pcengines.ch and otherwise, WRT-54G with dd-wrt is pretty good. Don't know if it has everything you want. -John |
2008/12/15-29 [Computer/Networking] UID:52254 Activity:kinda low |
12/15 ausman, maybe this can help form your views on net neutrality: http://lessig.org/blog/2008/12/the_madeup_dramas_of_the_wall.html if you're bored, skip down to the iFilm example. \_ jim: consider the case of a private electrical utility: do you believe in "current neurality"? i agree if say GOOG were to put in a giant server complex creating a sudden local demand shock the utility could not have planned on, perhaps they should talk and work something out ... it's unfair to make the rest of the area pay the consequences of the shortfall or to obligate the utility to give google whatever they demand. but that's a different case than saying we're going to turn the power on and off a couple of times a day to google's data center unless they sign up for out "premium current delivery service". i personally think this is a case of alllowing price discrimination and a shakedown and not a case of an unfair damand shock which comes and a shakedown and not a case of an unfair demand shock which comes out of nowhere. as i said before in the motd [that comment may have been deleted], classical supply side price discrimination allows the producer to suck up consumer surplus and convert it into revenue. \_ Yeah, like I have said, I haven't entirely worked out all the issues, which are actually pretty complicated. I wonder if most NN supporters are mostly just ignorant about how the Internet NN supporters are just ignorant about how the Internet works and have therefore decided to take a simplistic "every packet is sacred" approach. There is already quite a bit of pricing discrimination going on in the Net, try connecting from an Internet cafe in Cairo if you don't believe me. Why is it okay to drop packets because of a congested router (often a deliberately congested router, so as to reduce bandwidth costs) deliberately congested router, so as to limit bandwidth costs) but not okay to do traffic shaping? And do they really think that it is immoral to blackhole known spammers and botnets? Maybe we just need to switch from a 95% of peak load model of charging for net bandwidth, to a total bits delivered charge. If you want to talk about "unfair" is it fair to make the majority of Internet users have to pay to build out the infrastructure for the small minority that runs bittorrent? \- if bittorrent were the problem they were trying to solve, te solution wouldnt be shakedown the people with deep pockets. \_ This is true, the "right" solution from my perspective, is to charge people for the bits they use, instead of trying to strongarm the service providers. \_ http://online.wsj.com/article/SB122929270127905065.html Even Google wants its own pipes now. \_ That article is shit. Google wants caching servers like Akamai. -tom \_ That article is being strongly disputed by most of the people it talks about. \_ So it is okay for GOOG to build out a private, proprietary network from their content distribution location to a Tier One NAP and then sign an agreement for them to get dedicated network connectivity there, which speeds up their content delivery to end users, but it is *not* okay for them to pay for a Tier One ISP to just carry the bits faster from end to end? Is that what you are suggesting? \_ You're begging the question. -tom \_ What do you think that "caching servers like Akamai" entails? How would you describe their CDN network? \_ I certainly wouldn't describe it as having its own pipes. -tom \_ Certainly some of the CDNs do. Limelight does. Maybe Akamai does not. \_ How about if GOOG then expanded that network all the way to your house and offered you 100% free GOOGnet connectivity, but only with their content on it? Should that be legal? \_ What if you could use Monopoly money to pay for it, wouldn't that be cool? -tom \_ And then if after you started using your GOOGnet connection, paid for by monopoly money, what if GOOG started carrying other traffic on it, for free, but not as fast as the GOOG stuff. Would it still be cool? Just questions... \_ If anyone who wanted to could install last mile cable that would be fine, however in the real world that's just not feasable, and that's why like net neutrality is so important. \_ Perhaps you didn't know about GOOG's offer to provide municipal free wireless to the entire City of San Francisco. \_ "Anyone who wanted" is key. Wireless bandwidth is very limited. \_ And the offer wasn't fulfilled --oj http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2007/08/31/BUT6RSDTU.DTL \_ Yes, I am aware of this, but it shows that the idea is more than just a hypothetical. It is possible that this will happen sooner or later. \_ Not all hypotheticals are worth considering. \_ Yes, but what if they were? |
2008/12/7-10 [Computer/HW/Laptop, Computer/Networking] UID:52191 Activity:kinda low |
12/6 I got my g1 phone to provide my laptop with internet access. It wasn't too painful. \_ throw enough money at a problem and it gets solved \_ was it real protocol-independent internet access, or were you just using the phone as a web proxy? \_ Tetherbot on the g1 creates a socks proxy \_ meaning if you want to run non-proxy-aware apps on your laptop its useless. Still waiting... \_ It's trivial to run network aware programs through a proxy in linux and macos \_ what are these non proxy aware apps ? give me an example |
2008/11/29-12/4 [Computer/Networking] UID:52128 Activity:moderate |
11/28 So you know, I am going to see if the collective motd.wisdom has anything to add to my own research. I would think that given my political leanings in most areas, I would be a big fan of "net neutrality" but I am not, at least not so far. What is wrong with someone like AT&T charging more for premium internet service? Don't they do that already? Is there something I am missing here? -ausman \_ My understanding of net neutrality is to not prefer one packet type over another. Paying more for higher service seems reasonable, but (say) dropping VOIP packets so Skype doesn't compete with AT&T phone service seems a bit sub-optimal. \_ Right, premium services are fine. The worry is abuse of monopoly power -- that's why net neutrality is focused on last-mile providers (which often have significant monopoly power), rather than backbone providers (which have less). A backbone provider could never get away with blocking VOIP, because their customers would just switch to a different provider; but your local phone company might be able to, if they control the only point of access to your house. Given sufficient monopoly power, ISPs might even be able to engage in more blatant extortion, by (say) threatening to block their customers' access to your website unless you pay them. \_ Actually that was how net neutrality got to be such a big deal. One of the backbone ceos, I forget which, basically started hinting that he'd like to make it so unless google started paying protection money they were going to get lower priority packets. \_ Any source for this? I know Google has waived a red flag, claiming to be worried about this, but I have not seen anything from a backbone provider. The current powers on the Internet like things just fine the way they are, and have an obvious interest in stifling innovation. -ausman \_ I thought it was from the Comcast CEO, but it seems the original quote was from AT&T CEO Ed Whitacre circa Nov 05 "Why should [Yahoo, Google] be allowed to use my pipes?" http://preview.tinyurl.com/9svdw http://preview.tinyurl.com/6ooh2u \_ Thanks for the pointers. I was not aware of this. \_ Thanks for the pointers. I was not aware of this. -a \- transmission to ausman: i havent thought about this deeply but my inclination is NET NEUTRALITY is a form of PRICE DISCRIMINATION which leads to CONSUMER SURPLUS being shifted to the firm. for background, a very, very good book is JTIROLE: IO. I dont have the inclination to type on this more, but you can google around ... it looks like there are some others who buy this approach. --psb \- i thought about a little more in the background, and other issue is these narrow arguments in terms of efficiency may ignore some distributional consequences ... same as say congestion pricing, efficient pricing for publicly owned parking etc. --psb \_ There's more to it than you are seeing. It's not just about your ISP charging you for different tiers of service. They already do that now. It's about the ISP then turning aruond and trying to charge various services for delivering content to you. If they don't pay up you get crappy performance to those sites/services. It is all about the ISP trying to double-dip on the income stream. It also very much kills the 'openness' of the internet. Would you still want service from an ISP that only granted you access to the sites that ponied up their non-neutrality fees? What if you had no choice in ISP any more? \_ Why would you get any crappier service to those sites than you already do now? If I didn't like my ISPs traffic shaping policies, I would just switch ISPs, right, just like I can do now? This could potentially be a problem where there is a monopoly on last mile service, but that is getting rarer and rarer, with cable and satellite available. I might want to pay extra for things like HD quality streaming video, which I can't do now. Why is that a problem? I just don't see this as killing anything, other than perhaps some big Internet companies profit margins, hence their scare tactic lobbying campaign. -ausman already do now? If I didn't like my ISPs traffic shaping policies, I would just switch ISPs, right, just like I can do now? This could potentially be a problem where there is a monopoly on last mile service, but that is getting rarer and rarer, with cable and satellite available. I might want to pay extra for things like HD quality streaming video, which I can't do now. Why is that a problem? I just don't see this as killing anything, other than perhaps some big Internet companies profit margins, hence their scare tactic lobbying campaign. -ausman \_ again, you're looking at it frmo the standpoint that a) you have choice in ISP's, many don't. b) you have a pipe to an unfettered internet, which is what we have now with neutrality. With non-neutrality, you'll see degraded (or nonexistant) services to places on the internet who don't pay up. And the only way to find out your ISP's qos to a given site would be to go there. Good luck shopping around other ISP's to see who's got the best performance to your favorite sites. c) its not going to hurt the big internet companies much, they take some minor hit to their bottom line and pass on the costs. Its the small and up-and-coming companies that will get hurt, as this 'pay to play no the ISP's nets' tax will just add to their barrier to entry. Taking away neutrality would be a step in a return to the balkanized network days of compu$erve. network days of compu$erve and prodigy. \_ Except you have it exactly backwards, in that currently network owners can do as they like and the only pressure on them is their customers. Proponents of "Net Neutrality" want to pass laws that freeze the status quo in legislature. If blocking small up and coming sites were a problem, wouldn't ISPs be doing that all ready? Do you really want Congress determining which packets and protocols should be used on the Internet, instead of the IETF? \_ Um no they can't. Right now they do 'best effort' to everywhere, with no discrimination against sites who haven't ponied up good-performance extortion fees. No we dont want congress determining which packets/protocols should be used -- they dont do that now. That is the status quo we want preserved. When comcast tried to disrupt bittorrent traffic, and the FCC started investigating, they backed down. \_ Why can't they? People set up spam filters, firewalls, etc all the time, why couldn't an ISP do the same? There is no law against it, though the NN folks seem to want there to be one. Am I right about this? Link to the FCC/ Comcast situation please? Using the FCC to stop technological change doesn't exactly strengthen your case, btw. one. Am I right about this? The FCC/Comcast case is currently pending on appeal, btw. |
2008/11/23-29 [Politics/Domestic/Election, Computer/Networking] UID:52083 Activity:nil |
11/22 What's the best way to dispose old pagers, old cell phones, etc? \_ http://www.wirelessfoundation.org/CallToProtect \_ http://greencitizen.com is good if you're in SF/bay area. |
2008/11/16-17 [Computer/Networking, Computer/SW/Security, Computer/SW/Unix] UID:51999 Activity:low |
11/16 Can I use my SBC Yahoo! DSL login name "xxx@sbcglobal.net" and password for the DSL at someone else's home? \_ Why don't you try it... \_ Don't check your email at your mistress' house. |
2008/11/11-26 [Computer/Networking] UID:51916 Activity:nil |
11/11 Dumb question. My apartment has a bunch of inter-computer file exchange going on. Should I get a switch instead of a router to minimize traffic? Does it really make a difference? Let's say two computers exchanging info with each other are on the switch and the switch is connected to the router. The router will never know about the transfer between the two computers right? \_ It depends on whether they are on the same VLAN or not, but you are generally correct. Are you worried about overloading the router, or is this for <ahem> security concerns. \_ if your "router" is one of those Netgear/Linksys wireless gateway things, a switch won't help that much, and it should already be keeping local nw traffic apt-side only and w/a switch capability |
2008/11/7-13 [Computer/Networking] UID:51876 Activity:low |
11/7 Need help on http proxy. After I VPN to work, I'd like to tunnel all the traffic to my machine. How do I setup my machine (Linux) as a proxy server so that my home computers can route through it? I'm asking because the site we're testing on requires that we come from the same IP. If I use VPN, the server will reject me based on the fact that it's a different IP than my work Linux. Thanks for any help! -unix noob \_ I'm not entirely sure what you're asking, but an ssh tunnel on port 80 might be the easiest thing. -tom \_ If I understand you correctly, you want to install tinyproxy on your linux box. And point your home machine to use it as your proxy. -crebbs \_ Cool i'll google for tinyproxy and try it out tomorrow THANK YOU motd proxy god. |
2008/10/16-17 [Computer/Networking, Computer/HW] UID:51550 Activity:nil |
10/15 Has anyone else used dnsmasq for DHCP and PXE booting? Have you found a way to specify the 'next-server' option with dnsmasq? conventional DHCP daemons let me specify 'next-server', I can't figure out how to do it with dnsmasq. Thanks - danh |
2008/9/29-10/1 [Computer/Networking] UID:51325 Activity:nil |
9/29 I'm looking for a new wireless router / firewall, preferably something that supports 802.11n. Any recommendations? \_ Which 802.11n? \_ Draft 2.0 or whatever version is supported by the the MacBook and iMac. |
2008/9/4-8 [Computer/Networking] UID:51053 Activity:nil |
9/3 Does anyone here have experience with Cisco AON? Success or horror stories? |
2008/8/5-10 [Computer/Networking] UID:50788 Activity:nil |
8/5 It looks like my company has started blocking HTTPS tunneling. I used to do this by tunneling SSH through the HTTP/HTTPS proxy server, but this seems to have stopped working. Does anyone know how the implementation of tunneling detection works, and whether there are widely available implementations? We run a bunch of MS stuff, so I imagine we're running an MS proxy server or something. It seems to me that the most straightforward tunnel detection method would be to first check if the requested site actually talks HTTPS, and perhaps check whether the SSL cert is valid and all that, optionally rejecting self-signed certs. Has anyone encountered the same block at work and found a way to circumvent it? Thanks. \_ Take a look at stunnel. Thought about using it a while back but then the block got removed. \_ Thanks, that might conceivably work. Will look into it... \_ You can SSH tunnel through any open port so just find one. \_ Amen. Try port 25. \_ There are no open ports. I'm behind a firewall. The only way out that I'm aware of is through the HTTP/HTTPS proxy. Telnet used to be open, but not anymore. \_ Use nmap or ethereal to look for open ports. \- if dns is allowed, there is kind of a crufty way to run ssh over dns, but really if there is a business case for this, you should lobby for what you need. i've circumvented cafes, hotels, WAPs etc and what you need to do depends on doing a bunch of diagnosis to reverse engineer what is going on so you know what your options are. and in some cases, you have to pre-arrange to have some infomation on hand [like ip addresses] or pre-arrage some listening servers of some kind on the outside. those last two things shouldnt be an issue if you commute to and from work everyday and have admin access to an external networked box. BTW, you can do some kind of dynamic porotocol detection to quash this kind of thing. see e.g. http://www.icir.org/robin/papers/usenix06.pdf \_ Yes, I've used IP over DNS before, but it's not really something I'd want to use on a regular basis, for performance and reliability reasons. Thanks for the suggestion, though. \_ Maybe work at a company that doesn't block ports? Do you think subverting your company's IT policy is a good idea? \_ Maybe later. No, but I'm skeptical that any somewhat nerdy person who works at a large company can get by without breaking some IT policy or other. |
2008/8/5-10 [Academia/Berkeley/Classes, Computer/Companies/Apple, Computer/Networking] UID:50780 Activity:nil |
8/4 http://iCrowdSurf.com - app available on Iphone app store.. if the library has a wifi you can use it to create instant chat rooms/groups and name the group by topic (ie: CS 152 midterm)..etc check it out.. \_ It's not free. \_ So this essentially turns your phone into an open server? I wonder what the security risks are? \_no..it's just a service that runs on the iPhone.. using a different protocol other than http or even tcp \_ iPhone does have a pretty good app sandbox. (More to keep people from jailbreaking the phones, but still...) \_ no..it's just a service that runs on the iPhone.. using a different protocol other than http or even tcp \_ Um, yes. An open server with a proprietary protocol. That *never* goes wrong. \_ apple tested it out and okayed it.. \_ Bwahahaha! |
2008/7/9-13 [Computer/Networking, Computer/SW/Languages/Misc] UID:50512 Activity:nil |
7/8 is there a RBL proxy or something I can run that will magically automatically know the addresses of all tor exit nodes, and that I can run my application behind? I need to block tor traffic. thanks! \_ http://www.torproject.org/tordnsel -ERic \_ that doesn't do exactly what I want. maybe nothing does. I used this script: http://blog.vorant.com/2008/06/tor-server-lists-revisited.html to generate a list of tor nodes that other tor nodes know about, 8600 in all, and blocked all of them with iptables. maybe it'll work. |
2008/7/9-11 [Computer/Networking] UID:50505 Activity:nil |
7/9 djb vindicated. bind 8 sucks. the Secret Cabal That Runs The Internet fixed bind 9. I will now run qmail and daemontools and djbdns exclusively. \- i installed djbdns on a machine years ago, and the machine was never quite the same after that. \_ Preach on, brother! |
2008/6/16-20 [Computer/Networking] UID:50272 Activity:nil |
6/16 What the minimum you can get away with paying for cable modem, in the South Bay? Slowest available speed should be ok. Everythings seems to go to +$40/mo after teaser rates end. I need something faster than 56k modem but nothing really fast. Wondering if possible to keep under $20, since I'm out of town maybe 25% of the time. \_ Why not dsl? If you don't have a phone line it's 5 bucks more a month, but the 1.5Meg down is still only 20/mo. \_ Can you use DSL? The rates for these things are what they are, there is only one service provider for each type of high speed net. You can move to Mountain View and use Google WiFi for free. \_ I called dslextreme and they said "DSL not available on your line." Maybe I'll call AT&T an some others. \_ Satellite? High ping times but sounds like you're not gaming. Works ok for surfing and email. \_ What about ISDN? Does such a thing still exist? I've never used it. \_ ISDN is a *bad* idea if you want to keep things below $20/mo. When I had ISDN, while there was a flat rate for usage, there was a charge for each time your ISDN router called up the telco. And each channel counted as a separate call. So if the telco's router started having some issues and your router kept calling back, the cost of having ISDN became very expensive, very quickly. \_ Steal your neighbor's wifi (or pay him $5/mo for low usage). Aside: I just got DSL after having cable for a long time. My cable was ~10x faster than this stupid DSL. (but the price sucked). \_ What dsl do you have? I can get dsl that is almost the same throughput than cable for 1/2 the price. However it does have noticable higher latancy, so online gaming kinda sucks. \_ AT&T. I am only getting like 1.6 Mb. My Comcast cable was much faster than it was nominally supposed to be... maybe few others in my neighborhood used it. I forgot exactly what it was but it might have been like 18 Mb and that wasn't any special plan. And yeah, ping times were great. However, I didn't want cable TV anymore and without that the standalone internet is a ripoff. \_ 1.6? What level of DSL service are you paying for? \_ "up to 3.0" (needless to say I'll most likely drop it down to a level) it down a level) |
2008/6/6-10 [Computer/Networking] UID:50171 Activity:nil |
6/6 Now that 3g wireless speeds are getting useable and phones are coming out that have built in wifi are there any phones that can be used as wireless wifi access point? -aspo \_ Yes. My coworker does this with his Blackberry. |
2008/5/15-16 [Computer/Networking, Computer/SW] UID:49952 Activity:nil |
5/15 Texan super ants hate your computer. http://news.yahoo.com/s/ap/20080514/ap_on_re_us/texas_ants |
2008/5/14-16 [Computer/Networking] UID:49945 Activity:nil |
5/14 Lately I've been hearing about VIP. How is VIP different from say, VPN? \_ What is 'VIP'? Do you mean virtual ip, as in one ip address shared by several machines, for redundancy or load balancing? That's something different than a virtual private network. balancing? That's not the same thing as a virtual private network. |
2008/4/30-5/4 [Computer/Networking] UID:49856 Activity:nil |
4/30 Dear flash experts. Is it possible to decompose a flash player to find out what IP/URL it is hitting? Is it possible to modify that and repoint to another URL? \_ You aren't willing to mess with your ip stack instead? |
2008/4/17-23 [Computer/Networking, Consumer/TV] UID:49774 Activity:low |
4/16 When we move to HD signals, will cable tv descramblers no longer work? Or are they backward compatible? \_ If you're talking about the switching in 2009, it only applies to radio broadcast. You can still use your analog TV to receive cable channels. radio signals. You can still use your analog TV to receive cable signals. \_ Do you mean forward compatible? \_ Or are the signals backwards compatible ... Ah depends on POV \_ Cable won't switch completely to digital yet. In fact, they're *required* to keep analog signals for few more years. It's the over the air antennae signals that are required to switch to digital next year. But your descrambler will only be good for analog signals. If you plan on getting a shiny new HDTV anytime soon, keep in mind that analog channels generally look crappier on HDTV than on standard-def TVs. \_ Cable won't switch completely to digital yet. In fact, they're *required* to keep analog signals for few more years. It's the over the air antennae signals that are required to switch to digital next year. But your descrambler will only be good for analog signals. If you plan on getting a shiny new HDTV anytime soon, keep in mind that analog channels generally look crappier on HDTV than on standard-def TVs. |
2008/3/13-17 [Computer/Networking] UID:49444 Activity:nil |
3/13 I have an actual technical question for the motd. Where can I find the generic Cisco-style symbols for Visio 2003? For some reason, M$ pulled them from the recent edition and replaced them with their own crappy non-standard ones. I don't mean the icons at: http://www.cisco.com/en/US/products/prod_visio_icon_list.html I mean the generic circle with four arrows for a router, etc. -ausman \_ Perhaps these icons will work for you: http://www.cisco.com/web/about/ac50/ac47/2.html \_ I found these, but can't figure out how to load them into Visio. File -> Shapes -> Open Stencil doesn't do it (nothing shows up, since they are in the .wmf format) and putting the path to the images in Options-> Advanced -> File Path doesn't work either. Do I cut and paste each image? \_ Hmm, I don't have a copy of visio but according the Microsoft website, you should be able to open a WMF (windows meta file) in Visio. The other option is d/l the TIFF images and then import/open those. Alternatively, there are some links in this blog post that might work: http://www.ciscoblog.com/archives/2006/03 |
2008/3/6-7 [Computer/Networking] UID:49369 Activity:nil |
3/6 Is there a USB 802.11g device that works with linux AND supports base station mode, promiscuous mode and packet injection? |
2008/3/4-7 [Computer/Networking, Computer/SW/Languages/Perl] UID:49324 Activity:moderate |
3/4 Does anybody have some code or know of a program that will take a network/mask and return the list of address in that CIDR block? e.g. "iplist 10.10.10.0/24" and return 10.10.10.0 ... 10.10.10.255 [I have a way to do this, but it involves distributing a large amount of code, which is kind of a hassle. Looking for something lightweight and either standard or easdy to rpm/port/yum install.] \_ shouldn't be hard to do, its all bitwise binary math. \_ Because I was interested in how to do it in perl, I hacked up some quick code. ~mehlhaff/netmask.pl for your enjoyment. -ERic \_ there are couple out there. The one I settled on is sipcalc \_ Thanks for the pointer. I only knew about the "builtin" ipcalc. I see sipcalc return the "usable range" in the form 10.10.10.1 - 10.10.10.254. Is there a way to get it to return each of the 254 addresses, one per line, which can be piped to another program's stdin etc. \_ doing it in perl? Net::IP http://search.cpan.org/dist/Net-IP/IP.pm \_ doing it in perl? Net::IP http://search.cpan.org/dist/Net-IP/IP.pm \_ look at nmap code \- i thought the nmap code was somewhat hard to understand [this was maybe 2yrs ago]. however, you can steal this exact function and parser from a modern version of fping which supports the "-g" flag. nevertheless, i'd be interested in a real standalone untility for this. starting with fping, this is do-able in like 30min [you can also do it in 2 lines if you want to do this in a stupid but perfectly workable way]. it would take me a lot longer to extract this from nmap. --psb ./fping-psb -n -g 10.10.10.0 10.10.10.56 | wc -l 57 ./fping-psb -n -g 10.10.10.0/30 | wc -l 4 \_ I wrote a script last year that basically produces the same output as psb's solution. My perl vs. mehlhaff's perl. Round 1: Fight! ~dbushong/bin/expand-ip-range --dbushong \_ dbushong is definitely sexier than mehlhaff. meh! \_ Hah, oops. Mine only expands the last two octets. (i.e. doesn't do anything useful for /n where n < 16) Ah well. --dbushong \_ clever code vs. simple code w/comments. Two very different styles to accomplish the similar things. It is left as a exercise to the student to decide which they like better. -ERic |
2008/3/2-6 [Computer/Networking] UID:49314 Activity:nil |
3/2 Is anyone using Sveasoft firmware with a Linksys router? How well does it work, esp. as a firewall? tia. |
2007/12/20-29 [Computer/Networking] UID:48841 Activity:nil |
12/20 Why the hell does Cisco "The Human Network" advertise on the History Channel, and why the hell are they so annoying? "... not just network, HUMAN NETWORK!" Dumb shit. |
2007/11/19-21 [Computer/Networking] UID:48658 Activity:nil |
11/17 What's a good windows firewall? just for my local machine, i'm not routing or anything silly with it. \_ Hardware firewalls cost less than $50. \_ "good windows firewall" -- theres 3 words there, and one does not belong with the other two. Guess which one. |
2007/11/13-21 [Computer/Networking] UID:48628 Activity:low |
11/13 If I have a application on machine foo sending data really fast to an application on machine bar via TCP, and the bar applications job is write that to disk as fast as possible, what happens if the network stream is faster than the disk writes? \_ Look up the differences between TCP/IP flow control and congestion control. The answer is in front of you. http://en.wikipedia.org/wiki/Flow_control http://web.mit.edu/~6.033/www/papers/Networks-5-FlowCongestion.pdf By the way I hope we're not doing your EE122 homework. \_ bar starts blocking on i/o and the requests will queue up. Eventually the disk queue will fill up and how bar handles this depends on the o/s. \_ Basically all the backlog ends up in the memory of bar, right? \_ It depends on 100's of things. Is this a single threaded "read, write, repeat" application? If so your tcp buffers on bar will eventually fill up, yes. How exactly depends on the os you are using. Once that happens it will stop acking packets and that means your buffers on foo will start to fill up. Once the buffers on foo fill up (once again how/when is going to depend on the os) your app on foo will probably start blocking or returning an error because it would block. Guess what, all that sort of behavior is also os dependant. \_ Does send() start returning errors? Thx. -- !OP \_ Depends on how you set up your socket. It will probably block instead. \_ Your socket will either block until it can send the data or the send() will return errors, usually of either EWOULDBLOCK or ENOMEM. -ERic \_ I know syslog is udp, but how does syslogd handle a scenario like this? \_ dropped logs. Such is the nature of using udp... -ERic \_ And it's intentional. When everything is going to hell you don't want your syslogs adding to that hell by forcing resends of tons of packets. Syslog needs to fail without taking down the rest of the system. \_ You really need to read Stevens. This stuff will be 100x clearer then. \_ I agree, though a word of warning about Stevens. It is (well, they are) an excellent foundation text(s), but it will steer you wrong if you're trying to write servers that can serve thousands of javascript blocks embedding images and videos to social networks like the market leader http://Slide.com, you can't use select. The most common alternative I've seen is to use non-blocking sockets, and poll them manually. And, yes, I know that CS 162 teaches you that polling is bad. The class lies. -dans wrong if you're trying to write servers that can scale to handle thousands of connections, you can't use select. The most common alternative I've seen is to use non-blocking sockets, and poll them manually. And, yes, I know that CS 162 teaches you that polling is bad. The class lies. -dans \_ Well, in the common case polling is bad. Occasionally it's the right thing to do. No undergrad class is going to be able to cover such a broad subject completely. -jrleek \_ I agree it's a broad subject, but I disagree with teaching ideas that are theoretically sound, but break down in practice. Indeed, poll vs. select is subtle and probably not something that needs be convered in CS 162, but I am, nonetheless frustrated at the range of crippled products I keep seeing because so many people just copy paste the select loop from Stevens. I find it more appalling that we encourage undergrads to use threads since a) most people can't write working threaded code and b) the performance hit for more than n threads is appalling (typically n is 8, but it depends on your hardware). -dans \- (the collective you) may want to look at the papers by Gaurav Banga and Jeffrey Mogul and various coauthors for a good low level discussion about select/poll. influential papers. --psb if you are not familar with kqueues, the kqueue paper is also good. influential papers. --psb \_ Thanks, I'll check those out. A lot of my thinking on network performance is shaped by periodic conversations with a handful of senior Cisco engineers who keep leaving Cisco to found companies and keep ending up back there because Cisco keeps buying their companies. -dans \_ Kqueues are awesome, and anyone who makes makes recomendations about how to handle 1000s of concurrent sockets but doesn't know about kqueues (or other like implmentations) proves just how usless his advice his. \_ Do you have any Senior Cisco Engineers to back you up? \_ It's consistent with past performance but still kind of amazing you could turn a journal reference into something about you and your cool world of high tech finance. \_ Please take your meds. Your delusions are getting the better of you. -dans \_ oh lay off, dans' obnoxiousness at least makes the motd slightly interesting. we need all the activity we can get, new undergrads dont even know what vi is these days. |
2007/10/25-29 [Computer/Networking] UID:48448 Activity:low |
10/25 The cable company has recently added a filter to block out channel 34-70 on my cable TV. Do they have an electronic way of knowing whether a filter is present or not for "basic cable" subscriber? Or do they do this one by one. I've been without the filter for quit many years. -curious \_ Dear Curious the Furious: No, they don't know electronically and they rarely enforce the rules. Go ahead and take it out but note that you may get fined heavily if someone reports you. \_ they periodically go and check the cable distribution boxes where these things are installed, and will notice if it is suddenly gone. Most likely they'll just put it back. \_ When I moved to my house in Fremont in 2000, the cable was already connected. So I enjoyed free cable for a year until the company somehow figured out and quietly removed a connector in my cable box. I heard that one way they figure out is that they run specific infomercials on certain channels. If you don't subscribe to those channels and you call the phone numbers in those infomercials, they send someone to check your cable box. (That wasn't the case for me because I never call any numbers from infomercials. \_ I enjoyed similar case when I moved into my apt last year. Something changed in the past few months, so now I get zero reception on channels 2-6 and mediocre receptions on 36 and up. I don't understand how things could've changed that blocks 2-6, but not 7 and up. \_ Maybe you now don't have cable signal at all, and your cable wire is acting as an antenna and is picking up the radio signals for Ch7 and up. You can try disconnecting your wire from the wall but leaving it connected to the TV and see what happens. -- PP \_ These aren't over the air broadcasts. I'm still getting comedy central and other cable channels. Disconnecting will make all the channels go away, as most channels are "snowy" as it is. I've also tried switching my tv's signal setting from "cable" to "antennae" for shits and giggles and it wouldn't pick up any channels. I'm wondering if the cable guy disconnected it from the splitter in the building junction box, but it's close enough to pick up the signal? |
2007/10/23-25 [Computer/Domains, Computer/Networking, Computer/SW/WWW/Browsers] UID:48419 Activity:nil |
10/22 "The Hippie movement was the most controversial and influential of modern times. Free love, the peace movement, drugs, Eastern religions and communes are explored. Meet the figures whose words and actions inspired it and destroyed it. See how the vibrations from that era are still resonating today in almost every aspect of American life, from the clothes we wear, to the Personal Computer and the Internet. Finally, historic footage, stills and period graphics are interwoven with expert commentary and eyewitness testimony." History Channel. Must see. -no laid guy #3 \_ If you spent your time studying hippies in the wild, at a rave or something, you might have better luck getting laid than if you stayed home watching television. \_ Actually I am watching this from work using the Slingbox. -op \_ You probably won't get laid that way either. \_ 1968. |
2007/9/11-12 [Computer/Networking] UID:48025 Activity:nil |
9/11 Has anyone ever made an random anonymous socks proxy work ever in the history of mankind ? \_ I tried Tor once and it seemed to work. Wasn't hard to use. Or is that something different? \_ ok i mean anything BUT tor. |
2007/8/21-22 [Computer/Networking] UID:47694 Activity:nil |
8/21 What's the best bang/buck wireless router acess point? I used to use WRT54Gs but their quality seems to have disappeared |
2007/8/16-18 [Computer/Networking] UID:47622 Activity:low |
8/16 I have this extra ATT 2701HG-B AT&T dsl modem thing that I think has wireless. Can I do something with it? Flash it? Install Linux on it? Turn it into a laser? help me out here. \_ doorstop |
2007/8/9-13 [Computer/Networking] UID:47570 Activity:low |
8/9 Is there an automated way to change the IP of an XP machine? I have tests that need to get run on two separate sub-nets that now require me to physically go in and change the IP address of the test box. Cygwin is also installed if that helps any. Thanks \_ There are a few sort of hackey ways to do it: 1) automate the mouse clicks and key strokes witto do it: 1) automate the mouse clicks and key strokes with a macro program 2) ipconfig /release, followed by merging in a .reg file with the network settings you want (this probably isn't worth the effort) 3) futz around with dhcp. use a short lease and have the server send a different ip. and maybe use ipconfig /release + /renew instead of the short lease for better control. If it was me and I couldn't find a more professional way to do it not being the super uber windows guru I'd go with #1 or #3. \_ netsh? |
2007/8/8-13 [Computer/Networking] UID:47565 Activity:nil |
8/8 Deal EE engineers. Can you please tell me if the following is possible? My condo offers HOA-paid basic DirecTV/Multiband (re-broadcasted into channel 2 all the way to 70) cable. It also offers TimeWarner broadband. There is only ONE cable going from the condo switch box into my unit, and I've been told that I can either get DirecTV/Multiband cable, or broadband cable, but not both since there's only ONE cable from the switch to my unit. Is there ANY way to combine them, say by using a "diplexer" to split the tv (channel 2-70) and broadband cable modem frequencies and then recombining them into one cable that goes into my unit? I talked to the tech support from DirecTV/Multiband and TimeWarner and they all said it's never been done, and I'm free to experiment but they just don't have the expertise to deal with this. Is this configuration even possible? Thanks for any advice. \_ It's probably more trouble than it is worth. The channels are probably at the same frequencies so they cannot simply both be loaded onto the same cable, they'd interfere. So you'd have to get special hardware to de-modulate all 70+ channels from their original carrier frequency and then re-modulate the signals to channels which are not being used. Now, since you propose to send ALL channels simultaneously over one cable, that would require de/re modulation of 70+ channels simultaneously--which is the domain of *really* expensive equipment. It's possible you could play some sort of trick--like modulating all 70+ channels on one cable simultaneously with a single new carrier frequency, but the bandwidth requirement would be enormous and likely be similarly expensive. Frankly, it's probably cheaper just to get them to run a second cable for you. |
2007/7/13-16 [Computer/Networking] UID:47279 Activity:nil |
7/13 I'm thinking about getting a Soekris 4501 to replace my the P2-400 that is currently acting as my home firewall. Has anyone used a Soekris system for this purpose? If so, how well does it work? Also, if there are any alternatives (similar power/form factor), I would appreciate links to those as well. tia. \_ John got me to use a WRAP box similar to Soekris. I use this one: http://www.pcengines.ch/wrap1e203.htm and run m0n0wall on it. It works very well for its purpose. You should consider what you want out of a firewall. If all you want is just a simple packet filter, you can probably get away with buying one of the Linksys WRT54 clones for under $100 and flashing the firmware with what you want. The newer models are fast enough to handle some VPN tunnels as well. You can just disable the wifi and use just the wired ports. Sure, you can do packet filtering firewall with these without flashing the firmware, but the default firmwares generally only restrict incoming packets and not outgoing. \_ Well, I've been using OpenBSD for years and I don't really want to switch to something like a WRT54 b/c I don't really trust it (or Linux). I was basically looking for something I could run OpenBSD on that didn't use a lot of power. \_ One thing to keep in mind if you are putting in your own installation on these boxes is the compact flash write count. So you should consider what type of write access you'll be making in your setup. I do not know if the CF microdrives would be any better in that respect. I must admit, that once I learned to use PF (on FreeBSD), netfilter/ipnat annoys me more than they used to. \_ Yeah, I read about how to manage CF write count by mostly using memory fs for any rw partition. That will be fine for what I'm doing. I hardly every change the system after install. |
2007/6/28-7/2 [Computer/Networking] UID:47104 Activity:nil |
6/28 what? We are deeply, deeply sorry to say that due to licensing constraints, we can no longer allow access to Pandora for most listeners located outside of the U.S. We will continue to work diligently to realize the vision of a truly global Pandora, but for the time being we are required to restrict its use. We are very sad to have to do this, but there is no other alternative. | We believe that you are in Canada (your IP address appears to be 129.97.152.65). If you believe we have made a mistake, we apologize and ask that you please contact us at pandora-support@pandora.com \_ Yes, unfortunately outside the US there is no statuatory licensing system for Internet Radio. There was hope that we could establish some deals to allow international use, but so far it hasn't happened. The whole CRB controversy ironically made people in some countries more aware of what was going on, and we had to shut off access. Sorry about that, it sucks! :( If you were inside the US when you got this message, contact support and they may be able to whitelist your IP. --lye |
2007/4/19-21 [Computer/Networking] UID:46375 Activity:nil |
4/19 After installing Logitech wireless mouse, my friend cannot connect from his PC to his wireless broadband router via a USB wireless network device. It said that it cannot obtain IP address from the router. Even uninstalling the Logitech wireless mouse doesn't help. Do you know how to fix the wireless LAN problem, so that his PC can obtain IP address again? depends on the security level of the router. Does it have the macid of the wireless card? \_ depends on the security level of the router. Does it have the macid of the wireless card? |
2007/4/10-12 [Computer/Networking] UID:46247 Activity:nil 66%like:46239 |
4/9 Free Wi-Fi on Transbay buses: http://www.actransit.org/news/articledetail.wu?articleid=ae8a49cd |
2007/4/9-10 [Computer/Networking, Computer/SW/Security] UID:46239 Activity:nil 66%like:46247 |
4/9 Free W-Fi on Transbay buses: http://www.actransit.org/news/articledetail.wu?articleid=ae8a49cd |
2007/4/4-7 [Computer/Networking] UID:46194 Activity:kinda low |
4/4 Major RIF (40%) at my company and need to update the resume. Is there a good resume friendly term to deal with tcp metrics calculation and testing? I am looking for something that would ping the search e ngines. I did alot of QA on tcp flows and dbs and want to put s omething concise and informative. Thanks --ramberg \- well one way to address it is based on what the problem domain was ... research? optimizing some implementation? protocol design? another way is to say something like "deep knowledge of TCP/IP protocol, and implementation experience". i think for a networking heavy job you could add BPF, DLPI/STREAMS, pcap, routing protocols? router management? netflow? traffic shaping? firewalls? as appropriate. at another time i'd have said "send me your resume" but unfortunately things are sort of fucked up at the moment. good luck. btw i dont know what "QA on tcp flows" means ... i assume it doesnt mean you computed fletcher checksums by hand :-) --psb -- Thanks . If you know what ethereal and pcapstats are: then you know something of what I did. Packet capture flow analysis? Packet payload? \_ How about "Real time network analysis"? Try to use words someone in HR might think they know. They don't know what a packet is. \_ A phrase like this might get you redirected to the "network administration" people, which is almost certainly not what is desired. \_ HR has no clue what a packet is and really wouldn't know the difference between the network admin people and network qa. The point of a resume is to get past HR. They have buzzwords they need to match, so match them. Don't match them and get trash canned. The rest of the resume should make clear the OP is a QA person not a network admin if that's OP's goal. I'd rather get sent to the wrong group and then get redirected again than get filtered at HR. again than get filtered by HR. \_ Network Performance Testing and Analysis? \_ Network programming and testing? |
2007/4/3-6 [Computer/HW/Laptop, Computer/Networking, Computer/HW/Display] UID:46185 Activity:nil |
4/3 Is it possible to openup a linksys notebook adapter card to get at the mini-pci wireless card insdide? The mini-pci for my laptop is no longer made. Thanks \_ They're not expensive--try one and let us know. \_ Have you tried ebay? |
2007/2/5-7 [Computer/Networking] UID:45658 Activity:nil |
2/5 Any recommendations on local (bay area) used cisco vendors? I'm looking for a top of rack gigabit switch... \_ 1 switch? Ebay. \_ Northbay Networks in Emeryville |
2007/2/2-3 [Computer/Networking, Computer/SW/Unix] UID:45642 Activity:very high |
2/2 So is there some serious problem with gigabit? I keep seeing problems with gigabit devices in 10/100 networks, or vice versa. \_ do you think gigabit is some exotic, bleeding edge technology just a few people are using? \_ All I know is that when I use it in mixed networks, I keep running into problems. running into problems. -op \- there are some cases where you can get unepxected measurements like a 10mbit thru path that might be "faster" than a 10mbit-100-10 path for reasons i wont go into, but if you are getting dramatic failures or really bad performance, it's probably pilot error or something out of control somewhere. \_ "pilot" error? What, you mean I made a mistake when plugging the wires into the switches? -op \_ you know there is a lot to configuring switches and routers. duplex negotiation, potentially how mcast signaling is handled etc. a colleague of mine found a piece of networking gear flattended because of a but in IGRP handling. from the nature of your description of the problem ["is there a *problem* with gigabit" without mention is the problem, with thruput, latency, packet loss, ethernet frame errors, high cpu load] it seems unlikely anybody will be able to talk you thru it. your brain has been probabilistically estimated as: small. \_ I've tried two different switches on my home network which was working great with 10/100 devices (including my router). I added a gigibit device which failed to simply plug in to my 10/100 router and work. It worked if I plugged it into a 10/100/1000 switch, but the throughput crashed. Everything is set to autonegotiate. I've tried this with two different switches. Then one of my coworkers got back from a customer site where the networking wasn't working--using a 10/100 card instead of a 10/100/1000 card solved the problem. -op \_ i use gb networking "everyday" for at least 3-4 years. i have some number of problems now and then but the technology obviously is solid ... which is not to say there might not be some porrly designed equipment in the space, or some particular pieces might be lemons. we're doing more 10gig work now ... this is actually kinda interesting. this may be the first time in a while when the typical fast computer cannot saturate the link [obviously hw traffic generators and special hackery can]. note: i dont know anything about 'home quality' gb networking equipment. \_ I have never seen any problems. I think it is you. \_ Oh sure, I'm the only guy with a netgear gs105 switch and two different gigabit cards. -op \_ It may be that the cables you're using aren't up to snuff. See if netstat shows a lot of packet errors. \_ If so, why do the exact same cables work great when they're transferring only gigabit traffic? -op \_ if you want any more help you need to systematically describe the symptoms and the specifics of your set up. you can leave out the details and just say "i'm having problems". come on, dont be a moron. \_ you realize negotiating duplex setting and link speed are two different things, right? if you want any more help you need to systematically descibe the symptoms and the specifics of your set up. you can leave out the details and just say "i'm having problems". come on dood, dont be a moron. |
2007/1/30-2/1 [Computer/Networking] UID:45613 Activity:nil |
1/29 I really don't get the new Cisco human network commercial where "Anyone can be famous anywhere [on the network]" Why the hell would people of different ethnicity (Indians, Chinese, etc) be interested at a boy dancing stupidily to a dumb ass music? \_ "Ya, uh huh, uh huh uh huh, Ya, uh huh, uh huh uh huh," Are you annoyed yet? Are you? Are you? "uh huh uh huh." Fuck Cisco. |
2006/12/22-26 [Computer/Networking] UID:45487 Activity:kinda low |
12/22 Does anyone know if there's a system call to test if a port is availible without actually attempting to bind to it? Such a call would be really useful for me. \_ You could try to connect to it. \_ You could also parse the output of "netstat -an" to see if there's anything listening on the port. Are you sure this is what you want, though? If you're eventually going to bind to the port, trying to check beforehand whether it's available will only create a race condition. \_ Yes, but this is a very unusual case. |
2006/12/2-8 [Computer/SW/Security, Computer/Networking] UID:45410 Activity:low |
12/2 I have only two internet choices-- Verizon and Time Warner Cable. I've tried Verizon's 3Mbps/512Kbps service with 12 month commitment. In practice I only get 2.2Mbps/225Kbps and Verizon is unable to bump up the speed saying that they're unable to guarantee speed due to distance and whatever bullshit they said. Now my 12 month commitment is up I'm trying out Time Warner. I subscribed to their 10Mbps/512Kbps service which costs slightly more than their 6Mbps/512Kbps tier. Again, in practice, I'm only getting 3.5Mbps/200Kbps which is LESS THAN HALF of what they promised. Once again, they're giving me bullshit about distance and how they don't guarantee speed. Anyone have similar problems with their providers? \_ Wah, wah. Cry me a river. The service is cheap because it's consumer grade. If you want an SLA, get a real connection. And if your Verizon service is DSL, what they're telling you about distance isn't bullshit. Distance from the local CO dictates a physical limit to the maximum speed your DSL line can run at. If you can get DSL service from Speakeasy, consider it. Speakeasy can't rewrite the laws of phsyics, and their consumer plans still won't have an SLA, but, in my experience, they are a cut above all the other DSL/Cable providers. How are you measuring your line speed, anyway? It's actually really hard to do this accurately, and I have yet to see a point and click web tool for testing speed that does so. -dans |
2006/10/20-23 [Computer/Networking] UID:44894 Activity:nil |
10/19 I installed openVPN here at work as our VPN solution for now but the Mac's have real issues with DNS. They basically don't pick up the internal DNS server after connecting. Anyone know the solution to that one or know of a better VPN solution for macs? \_ Does it have to be SSL-based? Is commercial an option? Do you need HA? Is this for roving clients or working at home? How many? What kind of traffic? Some more detail would help. If you can do ipsec, I'd look at FreeS/WAN or KAME if you need it to be free. Otherwise M0n0wall has a pretty good OpenVPN implementation and does PPTP as well as ipsec VPNs, with good docs on site-to-site VPNs for a number of manufacturers (PIX, VPN-1, Nortel and others.) -John |
2006/10/17-18 [Computer/Networking, Computer/Domains, Computer/SW/WWW/Browsers] UID:44845 Activity:moderate |
10/17 Hello Internet addicts http://www.breitbart.com/news/2006/10/17/061017180234.eiuwieod.html "the typical Internet addict was a single, college-educated, white male in his 30s, who spends approximately 30 hours a week on non-essential computer use" \_ Me to a T. Now the thing is, I spend those 30 hours building useful software for fun. Is that an addiction, or just a hobby? \_ I think they mean surfing pr0n sites, not writing software as a hobby. \_ Yep. Otherwise, people who spend their free time on hobbies like building furniture in their garage would be addicts. \_ The pr0n surfing is part of the essential computer use... \_ link:csua.org/u/h8p \_ And then there are the TV addicts. But their habits are rarely referred to as "problematic". -niloc \_ I know someone who watches at least 30 hours of TV a week and frankly it's ruining her life. |
2006/10/13-14 [Computer/Networking] UID:44818 Activity:nil |
10/13 Singapore to offer Free WiFi: http://www.msnbc.msn.com/id/15217453 \_ "The Straits Times newspaper reported that families that earn less than (S$200) a month can purchase a computer for S$285." For only 1.5x your _family's_ monthly income... |
2006/10/5-7 [Computer/Networking] UID:44685 Activity:nil |
10/5 How much does it cost to get a broadband at home with guaranteed uplink of 768K or better, with port 80 unblocked? \_ I'm paying ~ $60/mo from Cyberonic. \_ keywords: internet service provider connection downlink |
2006/10/2-4 [Computer/Networking] UID:44636 Activity:nil |
10/2 My brother who lives in the city wants to get DSL. What are some good yet inexpensive DSL providers in SF? Thanks. \_ http://Sonic.net or Cyberonic. \_ Cyberonic support has pretty much disappeared since they moved from worldcom dsl lines. I've had number of cases when I was down for several days at a time, and no personal contact can be made. I'm now a happy http://sonic.net customer. But if your brother's not a geek and don't need static IP, he can go with pretty much any SBC/AT&T reseller(and sonic's one of them.) \_ I agree re Cyberonic's customer support. It is almost non-existent. If your Cyberonic line works right the first time, then you will not have problems. If it doesn't work, then you are better off canceling the line and going w/ someone else b/c Cyberonic will not help you debug the problem. I was a long time Sonic customer and I really liked them. The ONLY reason I switched was b/c Sonic was not offering a 6Mbps line at an affordable price. I'm not sure if that has changed. If it has I would would probably switch back. |
2006/9/27-28 [Computer/Networking, Computer/SW/Security] UID:44564 Activity:low |
9/27 I'm currently using http://johncompanies.com and getting close to their 40G/month bandwidth quota. I'm already paying $47/month for 5G disk storage and 40G/month bandwidth, and while the customer service has been superb, I'm a bit budget conscious and a bit reluctant to pay $80/month to johncompanies for the next level of service. I'm also a big socialist, and I support proletarian revolution. I've been contemplating a few options. For example, maybe I can get cable modem with 768kbps uplink/upstream for $50/month, which will be adaquate to serve 50-60G of content per month and has the positive side effect of having a much bigger disk storage over what I'm getting now at johncompanies. Is hosting at home a ridiculous idea or is it feasible? \_ Do you have a real server room environment? Do you have a usage agreement that allows you to fill your pipe all month long? No. \_ If you don't need a full jailed environment, JC is overkill. Just host w/ el cheapo web provider. If you need the custom env, it's probably worth the price. JC are pretty easy to talk to, though. Mail them about what you want to do and ask for suggestions. They might even refer you to someone who could better meet your needs. ("They" probably meaning "John") --dbushong \_ Do you work at or an affiliate of johncompanies? \_ Overkill is when you need 40G bandwidth but got 1000G. The op said he's going over the 40G bandwidth quota so his hosting choice isn't exactly "overkill". |
2006/9/20-22 [Computer/Networking] UID:44466 Activity:nil |
9/20 Does anyone know how to use DebugView remotely on XP with firewall turned on? I can't connect to the fucking remote machine unless I turn off the firewall on the fucking remote machine. Googling didn't get me an answer. Sending mail to mark@sysinternals.com didn't get me a reply. Thx. |
2006/9/14-16 [Computer/Networking] UID:44372 Activity:moderate |
9/13 What the fuck happened to 101 and Shoreline today? \_ A huge portion of the 30,000 employees from the south bay were sent to Shoreline within an hour. A convergence of thousands of cars into one location caused the denial-of-service on 101. This is yet another example of Cisco's lack of planning, beauracracy and incompetence. Why they didn't provide a shuttle service for employees is beyond me, but not unexpected. They're big, slow, and stupid, just like many other super-mega corporations. -former employee, got stuck for 2 hours on 101 \_ Cisco had a big new branding announcement at the amphitheater. Pretty much every cisco employee in the bay area went. My mom got me a k3wl t-shirt w/ the logo: got me a k3wl t-shirt w/ the new logo: http://www.theinquirer.net/images/articles/Cisco_new_logo.gif \_ That logo is kinda gay \_ http://csua.berkeley.edu/~scottyg/cisco.jpg is a quick goatse version -scottyg \_ if your hardware is second rate you might as well get a new logo to improve your image. yeah.... i was at some shitty dotcom which hired a new marketing director. the first thing they did was rebrand everything which cost $500k so they could put their stamp on the co. sort of like a dog marking their territory. useless but makes them feel good. \_ I would not characterize cisco hardware as 2d rate (but then again I might be biased b/c I worked there for a long time and my mom has worked there for even longer). Anyway, I'm not sure I really like the new logo. I liked the original orange/red one. \_ Imagine the world reset over the weekend. No one has any networking gear and no previous experience with any of the products available from any company. Would Cisco be the default choice for so many? Would Cisco even make the list on Monday? \_ Why wouldn't Cisco be the default choice? I think they made decent gear and were a decent co. to work w/. (But then again I may have a strong pro-cisco bias, given my family's 10+ year association w/ cisco). \_ Because it is functional but nothing special in most product lines. They are not a best of breed manufacturer. |
2006/9/1-3 [Computer/Networking, Computer/HW] UID:44235 Activity:nil |
9/1 I want to add a quick and dirty alias for a server on my local machine. So instead of using some-really-long-host-name, I want to use srlhn: scp me@srlhn:foo But if I put that into /etc/hosts, it requires an IP address, and this server may be changing its IP address from time to time. I'm not running DNS. Any suggestions? -- tcsh user suffering from RSI \_ read the ssh config man page, just edit your personal ssh settings in ~user/.ssh/config Host srlhn HostName some-really-long-host-name \_ my fingers and I thank you. |
2006/8/25-27 [Computer/Networking, Computer/HW/Drives] UID:44148 Activity:nil |
8/25 I have a portable USB HD (2.5") that I built myself with WD HD and an enclosure. On some systems it won't power on via the USB cable, it'll try to spin up, but does not successfully spin up. Could it be those machines do not provide enough power via the usb output? On one machine that fails to power up, I tried the fire-wire cable, it powered up fine. It also powers up fine on my machine via USB. Thanks. \_ Yes, exactly. Not all USB ports are made the same. I have a 4 port USB hub that will power a mouse or other small device but nothing with a real power need "but it should". Those systems are simply not providing enough power via their USB ports. \_ this is a well-known issue with some enclosures, see any newegg reviews of lower-rated enclosures. \_ Hmm, what would you consider a 'good' enclosure? My first one, the BYTECC HD-201U2, highly rated at new-egg, was a piece of crap. Dead on arrival, and the construction was also cheap. Drive hold in place by foam padding? My current one is a Macally PHR-250CC, much better designed and made, from the IC board to the way the drive is secured to the board to the way the board secures to the case. Could also be my drive, but I specifically picked one with average RPM so it won't suck as much power.. -op \_ http://www.newegg.com/Product/Product.asp?Item=N82E16817145135 (fixed the URL) Vantec Nexstar 3 black (also in red and navy blue) I got that for my gf, and it looks really nice, but she hasn't used it much. I purposely didn't order the BYTECC you got because it looked cheap from the photos and someone posted about a screw getting stripped. Oh well. Anyways, that was my choice for "best USB 2.5 enclosure" from my research in early July. I just noticed a new review saying it corrupts data. used it much. I didn't order the BYTECC because it looked cheap from the photos and someone posted about a screw getting stripped. Oh well. Anyways, the Vantec was my choice for "best USB 2.5 enclosure" from my research in early July. I just noticed a new review saying it corrupts data. Oh well, looks like the Macally is what you want. If I could have a do-over, I'd get this: http://www.newegg.com/Product/Product.asp?Item=N82E16817145658 I have the AMS Venus DS3 3.5" enclosure, use it ALL the time and never had problems, so hopefully the 2.5" is the same. I have some AMS Venus DS3 3.5" enclosures, use them ALL the time and never had problems so hopefully the 2.5" is the same. \_ There are "powered" and "unpowered" USB ports. The former supplies more juice than the latter. \_ Even with a powered USB port, the spec only requires that it is able to deliver 500mA @5V, or 2.5W. There's no way you should expect the USB port to power a hard drive. That's while all HDD enclosures have seperate power supplies. \_ ^all^all usb -- I have yet to have problems with my Firewire HDs getting enough juice. |
2006/8/14-16 [Computer/Networking] UID:43999 Activity:nil |
8/14 Free WiFi on Transbay buses! http://www.actransit.org/news/articledetail.wu?articleid=90e7a330 |
2006/8/9-14 [Computer/Networking, Computer/SW/OS/Linux] UID:43954 Activity:nil |
8/9 Linux question. We have a simple server that recieves TCP/IP connections concurrently with a threadpool, creating new threads as necessary. It's showing a weird performance quirk where, if you increase the number of concurrent connections, the connection time increases slowly, from .1s. At 16 connections it's about .2s. However, the 17th connection takes 1.2s, a large jump. The connection times continue increasing slowly from there, although there are little jumps at 48 and similar multiples of 16. slowly. Is there some magic kernel number 16, above with establishing a TCP/IP connection takes a long time? \_ Stupid question, does your threadpool have a max number of threads? \_ Yes, but it's 1024, which is actually higher than the kernel seems to be able to generate. \_ Java threads? pthreads? \_ pthreads, it's all C or C++ code on chaos Linux, (although we were able to duplicate the problem on RedHat,) \- i dunno what the linux equiv of tcp_conn_hash_size is, but i'd personally be interested if changing bumping that up changes the behavior. is, but i'd personally be interested if bumping that up changes the behavior. \_ No. -proud American |
2006/8/3-6 [Computer/Networking, Computer/SW/OS/Linux] UID:43887 Activity:nil |
8/3 Similar to the post below, I'm planning to set up a machine outside of the firewall and I'm considering FC3/4 or RH9, and maybe others too. Since it's outside of the firewall, security is a concern. In addition, manageability is a huge issue for me as I'm not intimately familiar with RPM package resolutions. What do you guys suggest? \_ Whatever you do, I'd recommend at least looking at selinux. For management, strip it down as much as you can, jail or at least chroot any services you can, packet filter, tripwire, etc. etc. etc. and allow ipsec to the box from behind the firewall for updates. Nothing exotic there. -John \_ Don't run RH9. It's obsolete. I'd run RH4. \_ red hat enterprise linux 4? \_ No, RedHat versions are like AD&D 2nd edition armor classes. \_ banded or splint mail? \_ Agreed. I don't think Redhat even maintain version 9 anymore. If you can't afford RHEL, try CentOS. They come with SELinux stuff built-in as well. But if you're not familiar with RPM distros, why not pick something you are familiar with? \_ I totally disagree. -proud American |
2006/8/2-6 [Computer/Networking] UID:43879 Activity:nil |
8/2 So my deal with SBC is up in a few weeks and I'm thinking of switching over to Speakeasy DSL, as it costs the same as what I'm paying now, gives me twice the bandwidth, and has no landline (which I rarely use on SBC). Any previous experiences with Speakeasy to speak to their character? --michener \_ Speakeasy's great. I've had DSL with them for over 6 years and don't have any complaints. \_ No. -proud American \_ Speakeasy had been great. Over the last two years, they've grown more and more incompetent, and they can't seem to be able to swing decent service contracts with their telco pairings. The last time I tried to get an install, I ended up missing 3 days of work because they couldn't give me the right DATE for the installer. Not the wrong time, the wrong DATE! \_ I've had good service from Speakeasy itself, but I've had similar problems with their LEC pairings. When I moved, Covad forgot to turn off my old tap, so I was getting billed twice; when I complained to Speakeasy, Covad shut off my new line and left the old one in place. I was down for a couple of weeks. Speakeasy did all they could, though, including giving me a free month's service. The nice thing about them is that I can call and say "your DNS servers are broken" and have the person I'm talking to actually know what I'm saying, instead of asking me to reboot my modem a la SBC. -gm \_ Go with AOL. They are the best. -proud Midwesterner |
2006/7/17-19 [Computer/Networking] UID:43690 Activity:nil |
7/17 Anyone have a clue how to put a form field that allows only dotted quad IP address entry in a pdf? -John \_ I don't know anything about pdf creation, but this may help: http://www.planetpdf.com/forumarchive/88960.asp -niloc \_ Kewl, thanks much, helped. -John |
2006/7/14-18 [Computer/Domains, Computer/Networking, Computer/SW/WWW/Browsers] UID:43670 Activity:nil |
7/14 Has all mail been delivered? \_ In the words of Ted Stevens ("internet expert"): The internet is not something that you just dump something on. It's not a big truck. It's a series of tubes. And if you don't understand that those tubes can be filled, and if they're filled when you put your message in it, it gets in line, it's gonna be delayed by anyone who puts into that tube enormous amounts of material, enormous amounts of material. Ten movies streaming across that that, internet, and what happens to your own personal internet? I...just the other day, got internet was sent by my staff at 10 o'clock in the morning on Friday, I got it yesterday. Why? \_ So, I think your answer is, no, it's not all been delivered, never has been, never will be. Let me rephrase my question. Has mail been delivered to the extent that it normally would be, or is there still a significant percentage of the mail from when sendmail was down that hasn't been delivered yet? It seems that some of my mail is missing. Not sure if it's just 1 message, or a significant percentage. -op \_ I think the intelligent way to interpret this question, is for someone in the know to tell us if mail was queued on another machine during extended periods of downtime, and if not, approximately how long that non-queueing-of-mail went on for. |
2006/7/12-17 [Computer/Networking, Transportation/Bicycle] UID:43651 Activity:nil |
7/12 http://www.bikely.com Bicycle routes the easy way |
2006/6/11-13 [Computer/Networking, Politics/Foreign/Europe] UID:43349 Activity:nil |
6/11 I don't have cable, does anyone know how I can watch the World Cup? I pretty much just want to catch the US and Korean games. -jrleek \_ Do you chant "Dae Han Min Gook" extremely loudly? \_ If I have to. -jrleek \_ Local sports bar? Friend's house? Church gathering? \_ I watch the games on ABC, can't you? \_ No, I live in Livermore. I can't get anything but 2 Spanish stations. Watching it on the Spanish channel might not be a bad idea... I was really hoping to be able to get a stream online. -jrleek \_ I hear you can download "TVants" and watch ESPN online with it though I haven't tried it myself. I don't know if that would have all games. Also supposedly you can watch the BBC stream. It is supposed to be limited to the UK, but: http://www.ghacks.net/2006/06/06/how-to-view-the-football-worldcup-online/#more-542 \_ Try what the end of this article says: http://www.ghacks.net/2006/06/09/worldcup-preparations Or maybe try using a proxy to access BBC online streams. I think it's talking about this: http://www.tvunetworks.com/downloads/index.htm \_ Hey, thanks. At least in my test, tvuplayer works pretty well. We'll see for the World Cup. Addendum: Works GREAT. I saw most of the Aus vs Japan game this morning, but missed the last 15 minutes where Austrailia come back from 0 to 1 to win 3 to 1. !@#$ \_ What about downloads? Who can watch a game at 6am? |
2006/5/23-28 [Computer/Networking] UID:43161 Activity:nil |
5/23 Hi guys, I got a spam that says to go to http://1172721189:82/webscrr/index.php How does that URL work? It's not a .com, or IP address. \_ IPv4 addresses (the kind you always see as N.N.N.N) are 4 bytes separated by dots. Therefore, it's hierarchical representation of a 32-bit integer, which is what you see above. The spec for connecting to IP addresses says you can use either form. \_ I see, so that corresponds to 45 E6 4E 25 (hex), which is 69.230.78.37. Cool, thanks. |
2006/5/23-28 [Computer/Networking] UID:43157 Activity:nil |
5/23 I have DSL through AT&T. The service was originally established through PacBell, transitioned to SBC, and now AT&T. I still have my original plan and never converted to a SBC Yahoo! (now AT&T Yahoo!) account. I noticed the price will be a lot cheaper if I do. Are there any drawbacks? I thought someone mentioned some negatives about the Yahoo! tie-in once upon a time. \_ I'm in the same boat. It's $50/month for me. However, I depend on it for work, and in 5-6 years it has gone down only twice. Once for 5 minutes, and the second time for a day because a landslide destroyed a fiber optic cable. destroyed a fiber optic cable. -eric \_ depends on how old your service is. If you got the dsl when it first came out, when they actually came to your house and put in a real signal splitter and whatnot instead of sending you the cheap filters for the rest of the phone, you probably have static IP, which you will lose by switching. If you don't care, you'll probably get more bandwidth with dynamic IP by switching over, and you can keep your existing filter. \_ What difference does it make whether I have a splitter or not? (I do.) I do have dynamic IP already. My question has to do more with the issues of Yahoo! using my account information and whatnot (spyware?). Is there anything I should be concerned about? I can get the same bandwidth (advertised) for half the price. What's the catch? \_ You can sign up and not install any of their tools. The modem they install self-configures these days. The "catch" is that they never tell older users who've been paying higher that they could pay less for more. |
2006/5/11-12 [Computer/Networking] UID:43027 Activity:low |
5/11 MacOS question: for some reason, my Powerbook's wifi card isn't picking up any wireless networks with any sort of protection--wep, wpa, wpa2, whatever. My home network shows up in keychain, but if I want to connect, I have to do it manually. Any ideas what this could be? -John \_ How much are vacation homes in Chile, Santiago? \_ More specifics, pb type, os version, internal/external card \_ Oh, didn't think that'd make a difference. 10.4.5, 12" PB, Airport card (not sure which one.) This worked at one point, and I have no clue whwat might have changed. -John \_ Dunno. What does MacStumbler report? \_ +1-800-275-2273 \_ That's the thing, I can join encrypted/authenticated networks, I just have to do it manually every time I power up or recover from sleep. Not tragic, I just thought maybe someone here might have seen this. -John \_ +1-800-275-2273 |
2006/5/2-5 [Computer/Networking] UID:42896 Activity:nil |
5/2 What do people pay for basic cable? My comcast bill for just basic seems to be about $53/mo. That seems really high, doesnt it! \_ Perhaps you didn't pay attention to the trend in the past decade. As with everything else, cable television became highly deregulated and started to become highly monopolized. Cable companies today have so much clout in the capital as well as local districts that you see silly laws passed such as those that prohibit dish owners to have access to both the local dish and local cable channels. Why is the price so high and the cable company so profitable? Look into government deregulation and a lack of auditing. Welcome to Corporate America. \_ Yes. Why get cable at all? It's just worthless sludge anyway. I got free cable once, and it was so boring/stupid I never watched it. -jrleek \_ Cable is a lot cheaper than a babysitter. \_ you must have basic digital cable. \_ For a while we were paying $18/mo for 'analog' cable, but that was a 'please dont cancel' deal they offered when we threatened to cancel. Dropped it when they moved scifi into the 'enhanced' cable channel range. By then it was paying monthly fees for basically broadcast channelsi, which is stupid. -ERic \_ I have basic analog cable and I get sci fi, as does my Mom. Seems different basic cable lineup in different areas. But ya mostly have it just to get comedy central and sci fi channel. |
2006/4/30-5/4 [Computer/Networking] UID:42867 Activity:nil |
4/30 Who is still offering broadband internet connection for $30 or less with a year-long contract? \_ http://www.sbc.com/dsl and http://comcast.com if you ask for a promo |
2006/4/17-20 [Computer/Networking] UID:42768 Activity:nil |
4/17 http://people.freebsd.org/~phk/dlink |
2006/3/31-4/3 [Computer/Networking] UID:42587 Activity:nil |
3/31 Geek discovers partner of 17 years was cheating on him, by reconfiguring his network so everything (including wireless) would route through an 8-port switch and putting a notebook with Ethereal in the network closet on the switch http://www.lenholgate.com/archives/000638.html "Right now I still find it quite difficult to concentrate enough to get any technical work done ..." \_ "Stay away from blondes, as they drop their skirts for anything, man, woman, or german shepherd." hahahaha \_ If he had just put a little effort into planning his network topology he would have caught her months ago. \_ We care why? |
2006/3/25-27 [Computer/Networking] UID:42433 Activity:nil |
3/24 I want to write in my DSL router to allow incoming connection from certain IP range. How do I find out the IP range for SBC DSL say in Bay Area/SF? |
2006/3/15-16 [Computer/Networking, Computer/SW/OS/FreeBSD] UID:42241 Activity:nil |
3/14 I'm looking for a good tutorial/howto for setting up IPSEC on my *BSD router/firewall. Basically I want to be able to access my home network while I'm on the road (iBook w/ OSX 10.4), and I don't want to set up a bunch of SSH port forwards to talk to various services. Any pointers? 3/14 _______________ < FEEL THE LOVE > --------------- \ ^__^ \ (oo)\_______ (__)\ )\/\ ~ ||----w | . ~ smell the love! || || #=.# || || ,.#=.. \_ There are a bunch of ways to do this. Look at http://www.kame.net for one implementation (included in FBSD, I think). The FreeBSD handbook also has a pretty good section on setting it up (just search the main handbook page for 'ipsec'. Last but not least, may I humbly recommend running M0n0wall (http://www.m0n0.ch on WRAP or Soekris, as its IPSEC implementation is pretty airtight. -John 3/14 _______________ < FEEL THE LOVE > --------------- \ ^__^ \ (oo)\_______ (__)\ )\/\ ~ ||----w | . ~ smell the love! || || #=.# || || ,.#=.. |
2006/3/14-16 [Computer/Networking] UID:42225 Activity:moderate |
3/14 Can someone reccomend a restaurant or Cafe in the SF financial district (say near Montgomery BART) that has free WiFi, decent food and reasonable prices? \_ it's getting harder and harder to find free/open wifi spots. It makes me sad. \_ really? I'd thought it was going the other way... (more free spots nowadays) - do you mean in SF specifically? \_ I'm finding fewer free APs, both from "big, legit" providers (ISPs, telcos) and from misconfigurations; the big ones tend to want to sell wifi service, while people are cluing in to closing up their APs. However, I see a lot more small "independent" APs, such as from small coffee shops, these days. This is true of most of the countries I've been to recently. And running an AP off the third interface off a DMZ interface of a small firewall and allowing free Internet access to anyone (but rate-limiting non- authenticated clients to, say, 10-20% of overall bandwidth) is a nice way to give back. -John \_ free wifi is a form of Socialism; I pay a bit more to let others share, in hoping that others will do the same for me when I need it in their area. As we all learned in grade school, Socialism is BAD and Capitalism is GOOD! GO GWB OUR GREATEST HERO!!! \_ I'm pretty sure you're being sarcastic, but I'm going to point this out anyway. There's nothing socialist about most free wifi. Everywhere I've been outside of the bay area it's normal for coffee shops and restraunts to have their wifi be free, because it encourages people to hang out there. It's just good business. \_ except when people overstay their welcome and leave less room for incoming customers. \_ Yeah it's like Darfur out there. \_ Yeah, this is actually a big problem in SF. I don't know where the person who can't find free wifi is looking, because every coffee shop I know of in SF has free wifi. And they are all filled with these goddamn drones who come in, buy one cup of coffee, and then sit down for a whole day occupying precious table space with themselves and their bloody laptop. The coffeeshop around the corner from my apartment literally has no place to sit during the day, because the entire place has effectively become an office full of laptop-wielding drones. I say charge for the damn wifi and end this stupid tragedy of the commons. \_ You know what's funny? I'm guessing that you think government-sponsored free wifi is EVIL SOCIALISM. But if the coffee shops charged huge fees and the professionals who spend all day there wrote those fees of on their taxes as business expenses (which most of them probably could do) you'd think that was just fine, even though it would be a much larger subsidy by the rest of the taxpayers. Socialism for the rich, capitalism for the poor. \_ You should accidentally spill coffee on someone's laptop. Like once a week. \_ Wow. Your assessment is very scientific. As a rational observer, I'm convinced that clearly free wifi will lead to the downfall of western civilization. -dans \_ Harvest & Rowe on 2nd between Market and Mission. \_ Ooh, that looks good but I should have mentioned I'm looking for a place open around dinner. -OP |
2006/3/10-13 [Computer/Domains, Computer/Networking, Computer/SW/WWW/Browsers] UID:42176 Activity:moderate |
3/10 Tivo? Netflix? Watching Live TV? Playing Computer Games? Using the Computer/Internet? (Where do you spend more of your time?) \_ sport hunting bums in the BART tube \_ I took this in the British sense at first given the use of 'tube'. It was far more clever that way. \_ Total time (including work), #1 is using the computer. Measuring just free time, #1 is "outside." -tom \_ Including work, mostly in front of a computer. For leisure, mostly talking to friends, some reading, some outdoors, little TV. --erikred \_ #1 computer, #2 tivo, #3 cooking, #4 netflix, #5 hiking --dbushong \_ #1 computer, #2 church, #3 investing/trading, #4 basketball \_ #1 slave work for my gf, #2 church, #3 investing/trading #4 computer, #5 calling my mom, #6 basketball --christian socialist \_ Why do you put up with #1? For the sex? \_ Of course not. The Bible clearly says adultery is punishable by stoning. -!pp \_ \_ Why do you put up with #2? For the sex? \_ Why do you put up with #5? For the sex? \_ Why do you put up with #6? \_ My new daughter, playing computer games, Cal sports. -ausman \_ Girlfriend, playing Forgotten Hope online, jogging, playing with telescope, going to restaurants, travel. -John |
2006/3/2-5 [Computer/Networking] UID:42069 Activity:low |
3/2 Has anyone seen this? Should make a good firewall appliance. http://www.linuxdevices.com/news/NS3880195342.html \_ With only one nic? I suppose you could use the USB.. Wonder how M0n0wall would do on this.. \_ I could ask Manuel (the guy who put M0n0wall together) if you're interested--we have him on retainer on one of my projects. -John \_ More "curious" than "interested" \_ not bad for 30 euros... It's a decent firewall appliance, if your upstream filters rfc1918. |
2006/2/18-23 [Computer/Networking] UID:41923 Activity:low |
2/18 My DSL modem's ip address is 192.168.0.1, my internal network behind my router is 10.0.0.x. Is there a way I can configure the router so I can access the DSL modem from my 10.0.0.x network directly without re-wiring? Static routes? I tried it but no much luck. I also tried changing my internal network to 192.168.0.x, but still does not work. Thanks. \_ I assume this is the connectivity: Wall -> DSL router -> Switch(es) -> Various PCs If your DSL router is 192.168.0.1, and you configure your various PCs to be 192.168.0.x, I don't see why you can't connect to 192.168.0.1, your DSL router. Can you ping it at least? \_ Sorry, typo, it should say "DSL modem". It is Wall -> DSL modem -> DSL Router -> PC. How do I get to my DSL modem from my PC? If I connect the modem directly to my PC, I can access it's configuration URL, but if the router sits in between, I can't. \_ Huh. It ought to work either way. What happens if you run "traceroute -n http://csua.berkeley.edu" from the PC? Do you see a response from 192.168.0.1? What about "traceroute -n 192.168.0.1"? (On Windows, use "tracert -d" instead.) \_ From your description it sounds like you have the following setup: Wall <-> DSL Modem <- 192.168.x net -> DSL Router <- 10.x net -> PCs I'm assuming that eth0 on the DSL Router is connected to the 192.168.0.0 net and eth1 on the DSL Router is connected to the 10.0.0.0 net. I'm also assuming that the PCs and the DSL Modem are on separate switches (or hubs) or that you are using a cross over cable for the connection btwn the DSL Modem and the DSL Router. If so, you should probably have eth0 on the DSL Router configured to something like 192.168.0.2. Make sure that the DSL Router's default gateway is 192.168.0.1, the IP of the DSL modem. Also make sure that IP forwarding is enabled. You probably need to set up eth1 on the DSL Router to something like 10.0.0.1. Then configure your PCs to use 10.0.0.1 as their default gateway. This should let you talk to 192.168.0.1 from your PCs (assuming that your DSL router's firewall/nat is configured to allow this). \_ My router has a WAN port, which is directly connected to the DSL modem's LAN port via a regular Ethernet cable. The PC is connected to the router's LAN port. The DSL modem's ip address is 192.168.0.1. PPPoE is handled by the router but I don't think it talks to the modem using its 192.168.0.1 address. On the LAN side, the router's ip address is 10.0.0.1, and my PC is 10.0.0.100, the router's WAN side is my external ip address (which is connected to the modem that only answers on 192.168.0.1). I guess it's not possible to get to the modem from my PC directly through the router. If I connect the modem directly to my PC, and set my PC's ip address to 192.168.0.2, then I can talk to the modem fine. \_ plug everything into the "LAN" side, including the connection to the DSL modem. configure your DHCP pool to hand out IPS on the 192.168.0.x with default gateway 192.168.0.1 \_ Won't I lose the firewall capability of my router? \_ See if your router can support bridging the "WAN" side to the "LAN" side. That would eliminate the entire 10.x network \_ and eliminate the need for the router too. \_ I don't want to lose the SPI firewall in my router. If I connect the modem to the LAN side, then my entire local network becomes a DMZ. To me, the firewall capabilities of my router outweights the inconvenience of reconnecting the cables when I need to configure the modem. I am just wondering if there's a trick that would allow me to access the modem through the router. I guess it's not possible... |
2006/2/17-20 [Computer/Networking] UID:41905 Activity:nil |
2/17 I have a weird Firefox/802.11b interaction problem. When I'm connected via the wire, Firefox works perfectly. But when I'm connected via 802.11b and submit HTML forms, it hangs and doesn't go to the next page. I'm suspecting it's buffer not being flushed or something, or HTTP Keep Alive bug? This doesn't happen on IE, which works fine on both wire & 802.11b \_ are you connecting through the same routers when you go via wireless? One thing you might try is setting your MTU to something smaller than the default (1500 for ethernet)... like say try 1300. |
2006/2/15 [Computer/Networking] UID:41862 Activity:nil |
2/15 I'm trying to get someone setup on iChatAV but it appears that their ISP is blocking port 5060 (the SIP port) in order to promote their own VoIP products. Does anyone know of any clever ways to circumvent this (like port forwarding, proxy, etc.)? \_ Yeah--get a decent firewall (I'm going to keep on mentioning M0n0wall on WRAP) that does port NAT. That, or IPSEC, although if you're both on dynamic IPs that can be a problem, depending on the implementation. I didn't even realize iChhat used SIP. -John |
2006/2/13-15 [Computer/Networking] UID:41829 Activity:nil |
2/13 Do I really have to point my cisco pix at some cert. authority if I want to use keys (instead of "pre-shared secrets") ? I can't just self sign?? wtf? \_ Actually, why not just create a CA signing cert with OpenSSL (it's not that hard), sign a cert with that, and then import the CA public key into pix? Or use a static passphrase for phase I negotiation (I assume you're doing ipsec?) -John |
2006/2/7 [Computer/Networking] UID:41740 Activity:kinda low |
2/6 Here's a security question. I think my network guy is insane. We have a WiFi connection at work which is set to only allow certain MAC addresses, and on top of that it uses WEP. I have a laptop with WiFi which is on our windows domain, but does NOT have the WEP key and its MAC is NOT allowed on our WiFi. Is there a security risk to our network if I connect my laptop to a neighbor's open WAP? \_ get exploited via neighbor's r00ted box. bring that shit \_ get r00ted via neighbor's r00ted box. bring that shit back to work, connect (wireless, wireless, whatever), boom. \_ Home laptops connected to the corporate network are the most common virus vector in our company. \_ Why did you tell him anything about your neighbor's open WAP? And yes, there is always a security risk moving from one network to another. You hook up to your neighbor's dirty net, get some virus then hook up at work and infect everything there skipping most of the security in place which is normally designed with external threats in mind. I'm not sure why he lets your laptop on one internal net but not the other internal net. Have you asked him to be able to go wireless? Maybe it isn't technical. Maybe his department charges your department per host and yours hasn't coughed up the cash. Ask. \_ The neighbor is a different company. I'm not on our WiFi for different silly reasons. I want to use the neighbor's WiFi to test a server from an expeternal IP. I am fully patched, using a firewall, and not using IE. -op \_ Yes there is a risk. Cracking WEP is not as easy as some people make it out to be, but it is pretty easy to catch shit. We've seen some fun trojans around which try various approaches involving switching wireless networks. My question is: why is the laptop on your windows domain if you do not connect it to your local network? If you ever connect that laptop to a fixed newtork that is the same as your work's wifi, you are asking for trouble. Your network guy is not insane. Now if the laptop lacking the\ WEP key is properly secured (firewall, AV, patches, VPN, etc etc) then it's no different from connecting via, say, a hotel network and you should be fine. -John |
2006/1/28-31 [Computer/Networking] UID:41585 Activity:low |
1/28 Just switched to Comcast from SBC and generally happy with it. But can someone please explain to me why they are constantly pumping ARP traffic through the network? It seems harmless, but I'm curious as I didn't see it with DSL. It's a little disconcerting to see constant traffic on your router, even if ARPs are harmless from a bandwidth perspective, and it makes the WAN send/receive light basically useless. Is there a cable modem I can get that won't forward these stupid things? From reading around the net, all I see are vague references to the fact that Comcast's network configuration is such that all of their customers on a particular link will see all customers ARP traffic. \_ Further searching turns up this from 8 Dec 2005: "I'm a relatively new comcast customer, and also a network engineer. I'm not sure how they have their routers configured, but I get upwards of 10-20 arp requests per second during the day, and from 6:00 to midnight I get so many that packets start getting dropped. I recieve the arps from at least 5 different source IPs that appear to be routers (they all have ips that end in .1, but on different /24 networks. This leads me to believe that they are using multiple virtual IPS on the same interface of a single router, or that they have something bridging data between parallel networks (which should not be happening). Regardless, I'm trying to get some resolution. I can't imagine what would create a requirement for this level of arp traffic; it has to be a misconfiguration somewhere." \_ Good luck trying to explain this problem to their technical support staff! -another comcast user \_ would you recommend SBC DSL or Comcast cable? Is DSL really that much cheaper? \_ My brother is getting 2 mbps down off his Dslextreme line for $20/month on a yearly subscription. I'm getting 2 mbps (yes, I know Comcast advertises more, but that's my roughly measured) from Comcast for $50/month on month-to-month (Comcast doesn't do annual). I'd switch to DSL in a heartbeat if it were available at my house. The only thing nice about my Comcast feed is the pseudo-static IP (infinite dhcp lease, keyed off my mac address and their equipment, and neither changes all that often). \_ For what it's worth, I'm getting 6 mbps downstream from Comcast pretty consistently. Oddly, using a Belkin router/ firewall in between the cable modem and my network cuts it to about 5 mbps. The Belkin's WAN activity light was how I originally found all the frickin' ARP traffic. Is it possible the overheard of blocking the ARPs is slowing the (admittedly very cheap) Belkin down? --ARP traffic guy \_ My segment get continuous arps but not *that* kind of traffic. I get 1 or 2 per second at most. Sometimes it fades off a bit to 1 every 3-5 seconds. How many are you getting? \_ It fluctuates, but I'm seeing roughly 5 to 10 a second. From what I've read, Comcast does configure it's customers into very large LANs, and that you'll tend to see more of the ARPs when some of the people on your LAN are infected with something like Code Red. \_ I'm over 20,000 feet from the nearest DSL POP so cable is my only choice. The pseudo-static IP changes about once every 15 months which isn't too horrible and the service itself has been quite reliable overall. It is pricey but when dialup is your only other choice.... \_ Ha! I'm only 13k feet from the nearest CO. Of course, according to SBC, I have steel pairs running to my house instead of copper, and DSL will never happen till they rip up the sidewalk to swap to copper. |
2006/1/22-24 [Computer/Networking] UID:41477 Activity:nil |
1/21 I am trying to setup a small network for my girlfriend's mom's company. They just bought an accounting package which requires windows 2003 server. And they want internet access from each computer. How should the network be setuped? Would it be dumb to use static IP for each computer and a computer as internet gateway? \_ DHCP is probably better than static IP for each computer b/c you don't have to bother setting up IP on each computer and if they ever get a new computer they can plug it in and get it running w/o your help. You could probably get away with a netgear (or some such) hardware only router/firewall, but if you want a bit more security, get a sff pc and run Open/FreeBSD w/ pf. \_ I humbly recommend getting a PCEngines WRAP 1E-2 with case and 64MB CF card from http://www.pcengines.ch and running M0n0wall (http://www.m0n0.ch/wall on it. You can turn the WRAP/M0n0 into a wifi AP if you want, although I'd run that on separate hardware off the third interface. Use DHCP. -John \_ or you can be non-elite and install a D-Link DGL-4300 gaming router next to your DSL modem. Then just get some 802.11g NICs for each computer and you're all done. If you want wired, you can buy some 8-port gigabit switches and run the wire along the bottoms of the walls. http://newegg.com users say the DGL-4300 is rock- solid. servers can be static IP from with IP address w.x.y.2 to .99, and you can have your router give out .100 to .253 for the dynamic IPs. \_ I can't believe this post mentioned his girlfriend's mom and nobody took the bait. \_ have you seen his girlfriend's mom? |
2006/1/3-5 [Computer/Networking] UID:41212 Activity:nil |
1/3 I'm trying to configure a VPN across a cisco 1760 router - so far this has involved mostly confusion & cursing (their documentation and interfaces are terrible) - can anyone recommend a book that they have used to understand the process? Thanks! |
2005/12/23-28 [Computer/Networking] UID:41134 Activity:nil |
12/13 My sister's computer is a Linux box behind a router. Is there anyway for me to ssh to her box? Do I have to have the router forward the packets to her machine or something? \_ yes and yes. \_ e.g., outside port 22 to LAN port 22 and yer-sister's-static-IP. ob access to yersister's box joke. \_ I rooted your girlfriend's box and I didn't use a trojan. "best" defcon shirt ever. |
2005/12/21-23 [Computer/Networking] UID:41102 Activity:nil |
12/21 Anyone used IPv6 6to4 tunnels from consumer ISPs in northern CA? I tried to make one work from a friend's astound cable modem and the incoming protocol 41 packets seem to be lost. I am wondering if it is the ISP dropping them, the cable modem, or the D-Link router between his modem and my "co-lo" server. --karlcz |
2005/12/20-22 [Computer/Networking] UID:41085 Activity:low |
12/20 Need a pointer here. I am behind a company firewall. I would like to be able to run MSN Messenger and Real Audio from it. The firewall has a SOCK5 proxy server. Is it possible for me to set up zebedee in some way so I can get get Real Audio and MSN to work? if yes, pointers please? \_ Since no one who knows what they're talking about replied, I'll give you the generic answer: try port forwarding via ssh to your home over the proxy server. Is this even possible? Beats me. Let us know how it goes. \_ thanks I will try it. \_ I've traversed a socks proxy at corporate sites with ssh, using if I remember correctly, LD_PRELOAD of libsocks or something like that. it inserts socks negotiation into normal dynamically linked socket code, e.g. I then used standard RedHat build of ssh client. I don't know what zebedee is, but libsocks might fix it directly, or you might need to do the above ssh port forwarding combination. \_ why don't you point RA and MSN at the socks5 proxy straight? \_ GAIM's MSN module's socks5 proxy never worked. and I don't know how to set up real audio's rstp proxy... in terms of how does it relate to socks5 proxy. pointers? |
2005/12/17-19 [Computer/Networking] UID:41057 Activity:nil |
12/16 Looking for the cheapest wireless 802.11b webcam with tilt and zoom. Recommendations? |
2005/12/13-15 [Computer/Networking] UID:40997 Activity:nil |
12/13 I am visiting relatives in the NYC area (LI) and taking my wifi laptop These people have nothing better than dialup at their house. Anyone care to reccomend something better than Starbucks ($$) for internet access ? \_ The local library? \_ McDonalds? Barnes & Noble? \_ A cantenna? Maybe they have neighbors with wifi? |
2005/12/7-9 [Computer/Networking] UID:40914 Activity:nil |
12/7 Anyone know of a good reseller that sells refurbished Cisco Callcenter bundles as well as provide install and support? Any other vendors for internal company VOIP providers that I should look at? \_ Calltower, NEC BNS, SBC are all good resellers. -shac |
2005/12/7-9 [Computer/Networking] UID:40901 Activity:low |
12/7 802.11 (security) question. How do I instruct my laptop to connect to an AP with specific mac address? (they all have same SSID) I have the netgear PCMCIA wireless access card. My netgear utility shows all the access points, but because they all have the same SSID, I don't have control over which one it actually connect to. It always seem to connect to the trouble some AP, and I get connection problems. Occasionally I'll be connected to the good AP, and my connections are fine (but sometimes in the middle of doing some stuff It'll reconnect back to the bad AP). I did not find a way to set my wireless to connect to specific mac address. This seems like a security problem. Someone can just setup a bogus AP with the same name and I have no way of telling my card not to connect to it. Thanks. \_ Short answer: "yes, it's a problem." The fact that 802.11b has, very simplistically explained, 2 "channels", one for overhead type stuff like joins/parts and the other for actual data (it sort of has to, otherwise you couldn't negotiate connections with new hosts easily) is at the root of the possibility of sniffing wifi auth traffic for key cracking purposes. If there's a way to let you select an AP by MAC, I'd love to know it. This is why you should treat _any_ wireless connection as open. -JOhn you should treat _any_ wireless connection as open. -John \- to OP: this is the tip of the iceberg. you might look at Wm Arbaugh's book or some of his WEEB pages, e.g. http://www.cs.umd.edu/~waa/wireless.html \_ You can do LEAP or EAP-TLS (if you want actual security) authentication to ensure you are connected to the correct AP. -aus |
2005/11/30-12/3 [Computer/Networking, Consumer/TV] UID:40777 Activity:nil |
11/30 I'm thinking about installing a dish just to get Chinese channels. However, my home owner's association doesn't allow ANY dish because they have a contract with a big name cable company (Comcast). At any rate I don't have a backyard and I can't install stuff on the common rooftop. Is there such a thing as a mini-dish that I can put right by the window? \_ Just hide it inside one of the giant stuffed reindeer on the roof. \_ In CA, the HOA is SOL. The law says you can have a dish. I'm not sure how that applies to your situation with a common roof top, however. Try the low tech audio transmission device and see what the vendor says about it. BTW, the motd is a great place for medical and investment advice, too. \_ HOA can't disallow dishes but they can have rules you must follow if you want to install one. Just ask the associations for the requirements if you want to install the dish. Then make sure the vendor will follow those instructions. \_ There are tripod mounts. I've seen people put them on balconies. \_ http://www.fcc.gov/mb/facts/otard.html This is actually a FCC rule. Basically if you have "private" area (balcony for example) then your HOA can not really prevent you. Forget about public space such as the roof. |
2005/11/16-18 [Computer/HW/Memory, Computer/Networking, Computer/SW/Unix] UID:40627 Activity:nil |
11/16 Your friend's kid's gadget is cooler than yours http://www.nytimes.com/2005/11/17/technology/circuits/17pogue.html \_ That's awesome! \_ Wait how does it know what you clicked on? Don't you need to store the picture somewhere (in memory) and an input method (like a tablet)? \_ I got to play with one of these a couple of months ago before it came out. It is pretty cool, although the one problem it has it the only feedback it can give is audio. Thus, it wouldn't be very easy to use in a classroom w/o disturbing everybody. Also, in order to use it, you need to write on special paper that costs about $1 a sheet. Its covered by very tiny dots so the pen knows where it is located on the paper at all times. But I will say that their future plans for the Fly pen seem really cool (wireless sync and such). \_ It comes with headphones and paper is about 8 cents/sheet. \_ I think reading its manual alone will make me dizzy. |
2005/10/31-11/1 [Computer/SW/Security, Computer/Networking] UID:40347 Activity:moderate |
10/31 What's the best tool out there to crack WEP? \_ pissed that your neighbor finally enabled encryption? \_ Can't hack into the webcam in their daughter's bedroom? \_ mmm, daughter cam. \_ Auditor collection. http://www.remote-exploit.org and make a donation to Max. You owe me a coke. -John |
2005/10/30-31 [Computer/Networking, Computer/SW/Security] UID:40339 Activity:nil |
10/29 I'm using ssh X port forwarding and just got a DLINK game router. Which port should I prioritize? \_ its all over ssh -- port 22 |
2005/10/23-24 [Computer/Networking] UID:40237 Activity:nil |
10/23 Has anyone been to the PPP (Pacific Park Plaza) residential building? What are they like and what did you like/dislike about the place? \_ Yes. It gets hot in the afternoons if you're facing the bay. \_ my friend owned an apartment there. At the time I was in school, PPP was very very nice. If you are a student, I would warn you that PPP is on the *OTHER* side of railroad track. And there are times you will be stuck in the crossing for 20 minutes or more waiting for speedy (35mph) Union-Pacific freight train to cross. Many of my friend end up not going to classes as often, as he was much more comfortable in his apartment than the hassle of cross the railroad, finding parking, etc... \_ Couldn't you use the Powell St. overpass? |
2005/10/21-24 [Computer/Networking] UID:40211 Activity:nil |
10/21 Do wireless DSL routers let me turn off the wireless function when I'm only using the wired connections at the moment? Thx. \_ dunno about automatically determing whether or not you are using wired only, but then when is it *you* using the wireless and not some hacker/leecher. Most of them have a 'disable wireless' option from the admin menu though. \_ Most do, some don't. The Belkin I have at home does not. \_ Yes, get a WRT54G. |
2005/10/20-22 [Computer/Networking] UID:40202 Activity:low |
10/20 There's an SMC 54Mbps Wireless Cable/DSL Broadband Router on sale at MicroCenter for $7.99. Does anyone have and bad experience with this router? I'm looking for a wired router for my two desktops at home, but this one is even cheaper than the wired routers. TIA. \_ Dude, it's eight bucks. -John \_ Yeah, I can dump it if it's bad. But I'm new to networking, so if it causes incompatibility or other problems, I would't be able to tell whether it's the router or it's something else. \_ Look to http://newegg.com, Amazon, and http://cnet.com user reviews. http://www.newegg.com/Product/Product.asp?Item=N82E16833129017 \_ I bought one for my parents. Range seems fine, doesn't seem to crash or hang. My parents are not very demanding users, and their needs are modest (no vpn, games, don't need ports open, no particular filtering, etc.). \_ On a related question, I have the netgear WG614 and it's a piece of junk. Netgear use to make good stuff, but the WG614 has so many problems. Anyone care to recommend a good router? My experience with Linksys was from the pre-cisco era, and back then netgear's stuff is way more stable than linksys. Has their stuff improved after being part of cisco? What about d-link? \_ I bought Linksys WRT54G recently and I am extremely pleased with it even though I didn't bother with installing customized Linux-based firmware on it. It is very stable, has all the features that I need and "just works" (tm). I was specially pleased that it keeps the NAT state properly for ssh sessions and doesn't kill them after a period of inactivity (lots of routers seem to do that, at very least with their earlier firmware versions) \_ You mean it runs for weeks/month without the need to reset? If so I will seriously consider it... \_ Yes. It has been working fine for six weeks so far but YMMV specially since many such gadgets can have several hardware revisions while keeping the same model name. I am connecting with cat5 cable but my roommate are using wireless (with WPA/shared key). \_ Six weeks of uptime is not that long. I have a d-link di-624 that's been running for several months. |
2005/10/9-10 [Computer/Networking, Computer/SW/OS/Windows] UID:40027 Activity:very high |
10/9 Dear MOTD, I'm looking to give a bunch of windows users access to a filesharing solution on a unix box. They're not terribly technical, and have mainly browser access. Is there some sort of open source web based toy running over SSL that mimicks what they would see on a windows fileshare, with drag&drop/copy&paste? -John \_ WebDAV on Apache might work for you. I think that recent versions of Windows have native support. \_ Do you have some objection to SAMBA? \_ Sorry, should have specified--this is over the Internet. -John \_ SAMBA works over the internet. Just install a VPN... \_ any tips on VPNs? (anything free out there that is good?) - !op \_ Well, you can just buy VPN enabled routers like the one from Linksys. This makes VPN very easy and it offloads the service onto the router. Alternatively you can just configure Linux/*BSD to run IPSec. If you don't like kernel plumbing too much you can use Free S/WAN to do IPSec. It's not too hard once you get the hang of it. You of course need a static IP to make this happen. \_ M0n0wall (http://www.m0n0.ch/wall is great for this, especially on Soekris or PCEngines WRAP. I can't do this via VPN--has to be over a browser. -John |
2005/10/4-6 [Computer/Networking] UID:39976 Activity:nil |
10/4 WiFi a basic human right in SF: http://tinyurl.com/cfc34 (news.yahoo.com) \_ Can you tell me why the city shouldn't offer WiFi to residents? \_ This is not an area where government should be involved. Are they going to offer cell phone service and cable tv, too? Who is going to pay for this? \_ Commercial ventures who will profit through advertising. \_ The question is, why should government be involved in this? \_ Why do we have public schools and libraries? (I'm almost certain your response will be "Yes, why do we?") \_ Education is a basic right that everyone should have. Wireless Internet access across an entire city is not. I would support free WiFi in, say, libraries. \_ Your line is arbitrary. As is Newsom's. It's a proposal. How would you feel if he kept his goal of "no taxpayer money used"? Also, as a commercial venture, there is no guarantee of its status as a publicly available product. If you agree with Newsom that internet access should be available to everyone for free, then a public works project is the only way to go. \_ It is not arbitrary. Libraries currently provide Internet connections already. We can debate whether this should be revoked or not, but it is already a reality. There is a difference between that and offering free wireless to everyone in a city for whatever purpose. \_ I find your racist insinuations offensive. \_ And that difference is...? It would suck less? You argue that the government has no place offering this service. Then you say "oh, even though they do offer this service, offering it to more people in more locations at the same expenditure level is ... different." Do you have a point? \_ Have you ever heard of a compromise? If I *had* to choose one or the other I would eliminate all free Internet access. However, I can see the value in being able to use it at a library. There is quite a difference in cost and scale between offering a kiosk somewhere and offering unlimited access to everyone for free. It won't be the same expenditure level or else industry would have already provided it. Look at it this way: providing free electricity for street lights is probably a good thing for government to do. It keeps citizens safe. Providing free electricity to everyone is not. \_ So you reject Newsom's framing of it as a right. Do you live in the city? \_ I don't and I would oppose it if my city proposed it. \_ Fine. Then shut up about SF. \_ Why? I can't have an opinion? Other cities are going to want to mimic this. goal of "no taxpayer money used"? less? \_ Given the level of suckitude from wireless phone providers of late, who seem more interested in offering gadgets and adding customers than providing me with a decent signal or an outgoing connection, I think I'm willing to give socialism a shot on this one. \_ If this is the case, then why does the government need to be involved at all? Shouldn't the commercial ventures setup everything? \_ A bit misleading, that headline. The quote, from the article: "This is inevitable -- Wi-Fi. It is long overdue," Newsom told a news conference at San Francisco's City Hall. "It is to me a fundamental right to have access universally to information," he said. -geordan \_ In the context of discussing wifi citywide to say something like that it is hard to see him meaning anything other than what the OP headline reads. \_ That's why he's a politician. He can make his words mean one thing now, and make the same words mean a different thing when people dig it up years later. \_ By basic right, did he mean "No one should be disallowed to have Wi-Fi access" or "The governments in the world should provide Wi-Fi access to everyone in the world who cannot afford it"? \_ "My intent is to have the taxpayers pay little or nothing," then who's paying for it? \_ Why is Wifi a more basic human right than say, phone service? \_ It's not so much that it's a basic human right, it's that it can be provided pretty inexpensively to everyone. It's also place-tied rather than person-tied, which makes a difference in terms of being able to provide the service universally. Don't look at it in terms of moral rights, look at it in terms of increasing quality of life for a good chunk of residents for not much money. -tom \_ I actually have no problem with the city providing this service, although we'll see if the end up biting off more than they can chew. I just think casting it as a "civil rights issue" is a little over the top. -pp \_ I agree, although there is some extent to which you could argue social justice, since the poor are less likely to be able to afford internet service, and thus are disadvantaged in terms of access to governmental resources as well as things like craigslist. (Of course, they'd still need a computer, and Newsome isn't trying to address that issue). -tom \_ Just for the record, you can argue ANYTHING with "social justice." Social Justice != Civil Rights. \_ So you would cast it along the same lines as recreation in the form of parks? Something not necessary but that improves quality of life? I think the problem here is that there is little incentive for industry to provide parks, but there is a lot of incentive to provide Internet access. Many hotels and other businesses are offering it already. It seems government intervention here is not really necessary and it *will* cost money to administer, oversee, look over contracts and so on. It will probably also cost industry money. I know I'd cancel my DSL if I had it for free. What is the real driver here if it's not a basic right - especially in these uncertain economic times? \_ The driver is that people want it, and it's cheaper and more effective to do in bulk than individually. That's why Berkeley has AirBears, for example. -tom \- i think "enterprise wifi" may scale super-linearly rather than sub-linearly because you cant just use these super cheep WAPs. i think the enterprise approach is more so you have a rational system and enforse policy. rather than simple economies of scale. does berkeley disallow people from doing their own wireless? at lbl we do. \_ The WAPs are more expensive, but you save more in bandwidth; it's very inefficient to send a full DSL line to every house in a neighberhood, when the aggregate bandwidth required is, what, the equivalent of two or three DSL lines? Berkeley does not currently ban people from using their own wireless, but it requires them to be able to identify individuals using their WAPs, and reserves the right to ban it later. The campus doesn't have ubiquitous AirBears yet, though there is some initiative in that direction. -tom \_ People want a lot of things. That shouldn't matter unless people want to pay for it. As for 'doing in bulk' - cheaper for who and who loses out? \_ The idea that government should only do things if people want to pay for them is absurd. I guess we should just toss the whole road network. It is cheaper to do, as in the total expense is smaller, therefore no one has to lose out. -tom \_ People want roads and are willing to pay for them in the form of taxes. If people want WiFi then there needs to be a WiFi tax. Selling it as 'free' is dangerous. Also, if WiFi providers are put out of business by having to compete with the US Government then someone will lose out. \_ The vast majority of road funding comes from general funds, not from specific road taxes. WiFi will probably not cost enough to warrant its own tax. -tom \_ Re: roads, it doesn't matter which funds they come out of. They are coming out of taxes and people are fine with this. Gas tax, income tax, or whatever. How much will WiFi cost? Whatever it costs, something else will have to be cut or taxes will have to be raised. Won't there have to be a massive pipe for all the users? Also, what about the business this hurts? \_ I am not at all fine with the idea of taxes coming out of the general fund to pay for roads, but I don't get any choice in the matter. Government is not a business and it's ridiculous to suggest that it should operate like one. Also, government exists to serve the people, not the businesses. -tom \_ Whoa there cowboy! Are you trying to say that since roads aren't directly self funding via gas taxes/tolls/etc that we should only them to the extent that they can self fund? And would you apply that same concept to other things such as education? \_ No, I'm saying the exact opposite. Government doesn't exist to connect "buyers" (taxpayers) with "sellers" (services) based on how willing the buyers are to pay taxes for a particular service. If that were the case, the government wouldn't need to be involved, because businesses would be doing it on their own. The government exists to provide services to the public which would not be equitably, efficiently, or sufficiently provided by a business model. It is not hard to argue that WiFi can be considered such a service. -tom \_ Why is this different than e.g. cell phone service? \_ There are cities which provide cell phone service as a public utility, but it's not free because it costs a lot more to provide cell phone service than WiFi. Also, cell phone service isn't tied to a location; it wouldn't make much sense to provide cell phones which only work within the city limits. -tom \_ Wow. This last statement is controversial since people benefit from business. I'll leave that one alone for now. You might oppose roads coming out of the general fund, but the reality is that there are transportation taxes to pay for roads outside of the general fund. Take them out of the general fund and there would still be roads and people would likely vote to fund more. Will people vote to fund WiFi? Possibly, but this is TBD. It will not be free, no matter what the politicans say. Some other service will have to be cut. Fundamentally, I think WiFi is a luxury and should be one of the first things cut. \- i sure hope they do better job of it than the SF pub lib WEEB site. that WEEB site is so bad there had to be some kind of bureacratic or corrupt explanation. \- i suppose framing this as a "right" does dillute the notion of "rights" but not as much as BUSHCO has done by say torturing people and not giving them their day in court. it will be interesting to see if somebody insists the govt filter homosexuals accessing ass porn via the publicly subsidized net access. it does seem like this could potentially be a very broad semi-anon way on to the internet, which has many implications. net access. |
2005/9/27-28 [Computer/Networking] UID:39889 Activity:low |
9/27 Are there routers out there that do bandwidth limiting or protocol priority? I run a LAN in my house but my roomates seem to hog up connections making my SSH connection intolerable. \_ http://www.m0n0.ch/wall + http://www.pcengines.ch -John \_ Think the term you are looking for is traffic shaping \_ Some manufacturers sell a "gaming router" which traffic shapes on its own. Linksys WRT54G has basic traffic shaping features. You can extend the feature by putting in one of the many third-party firmwares for it out there. These would be the cheapest method. I'm currently running m0n0wall router package which also has traffic shaping, and would be free if you already have extra computer at your disposal. \_ r0x0rz! http://hardware.gamespot.com/Story-ST-15140-1368-x-x-x http://www.newegg.com/Product/Product.asp?Item=N82E16833127158 |
2005/9/26-28 [Computer/Networking] UID:39869 Activity:nil |
9/24 Is there a reason why my wireless router is stuck at channel 6? I don't have an option to go to any other channel. ok thx. \_ Because you bought a crappy router? \_ You probably have a D-Link with "Extreme G". You need to turn off whatever it calls the 154 Mbps mode ("Extreme G", I think). The way this mode works is it uses multiple channels, thus they lock it on 6. Turn it off and you can pick a different channel. --dbushong |
2005/9/16-17 [Computer/Networking, Computer/SW/WWW/Browsers, Computer/SW/OS/Windows] UID:39715 Activity:nil |
9/16 How "dangerous" is it to be connecting to the internet via an "unsecured" network? \_ depends how secure your computer is. \- i think if you can turn your computer into an "edge" node meaning it runs basically no inbound listeners and you juse use ssh and a browser outbound, probably can be reaonably secure except for mobile code. of course you can get mobile code problem even if not connected to the net. you can checksum your OS on top of that. \_ if its windows box, you can expect it to be pwnz0red in minutes. Been there, done that, reinstalled it... \_ If it's a properly patched Winbox with a decent personal firewall, no open bluetooth/wifi, and some basic stack hardening/permissions set, I wouldn't worry. If you're taking a laptop to blackhat or some other place full of k1dd13z without backups, that's different. -John |
2005/8/31-9/2 [Computer/HW/Laptop, Computer/Networking] UID:39389 Activity:nil |
8/31 Today I declare 802.11x the best thing in the world. Why? Because it gives me new freedom to do whatever I want. I'm a typical married guy with a kid. Occasionally I need privacy. I need time and space to myself, and pretty much the only time where I can be by myself is when I drive to/from work, and when I'm in the bathroom. Sometime I have an urge and it's kind of hard to relieve myself down there without help. However, it is very convenient to take my laptop to the bathroom and porn surf. It's a lot better than taking Hustler or something obvious into the bathroom. With the laptop, it looks like you're working hard, and indeed, you're working hard to get pleasure that you once had. I love 802.11x. It has given me freedom and a new life. It has increased my quality of life by 100X. I can't believe I didn't get it earlier. Get 802.11b/g/x!!! \_ Please please tell us you're not trying to surf porn and spank your monkey while driving to work. \_ Nah, he's just using the friendly neighborhood parking lot. Have you seen "Happiness?" Remember the scene with the dad, the magazine, and the parking lot? \_ moan if you want to ......moan around the world \_ Please please tell us your name so that we won't help debug stuff on your laptop. your laptop without gloves. \_ You don't need 802.11x to play adult CDs on your laptop. |
2005/8/29-30 [Computer/Networking] UID:39329 Activity:moderate 54%like:37400 |
8/29 What's the difference between a hub, a switch and a router? Thx. \_ AFAIK, probably be corrected by someone: hub: Allows communication on a LAN with bandwith shared amongs all the nodes on the hub and maxing out at the max line speed. switch: Allows communication on a LAN with bandwith greater than the max line speed (point to point) router: Allows communication between 2 different networks \_ The original difference between a hub and a switch is that a hub was multicasting whereas a "switch" (originally called a "switching hub") had enough circuitry to route signals to the appropriate port and that port only in which the destination IP was located. Obviously a multicasting hub would slow down the whole network with unnecessary chatter. A "router" used to mean devices which would route traffice between different LANs, although these days the terms have devolved so that they are somewhat interchangeable (all hubs have essentially become switches, it's actually somewhat difficult to find a hub these days, and many switches have essentially become routers). \- in practice these are used some what randomly right now. like managed switches are actually pretty smart. but sort of at a functional level: hub turns one network drop into a place you can plug in multiple devices. switch: sort of a set of point to point links making up a subnet based on arp/mac, and a router is what knows about "routing", i.e. IP addresses. \_ Hub: a multiport repeater, extends an ethernet "wire" to multiple machines. Switch: a multiport bridge, separates ethernet collision domains Router: communication interface between different IP broadcast domains Layer 3 switch: Basically a router with a built-in switch. -John \_ I see. Currently I have Yahoo DSL and one PC at home. The PC connects to the only ethernet port on the DSL modem. If I want to add a second PC, I should buy a hub, connect the hub to the DSL modem, and connect both PCs to the hub. Is that correct? Thx. -- OP \_ Not exactly. The hub is not smart enough to translate between the DSL modem and your PCs, and your modem will balk at two PCs trying to talk to it at the same time. Get a four-port router, place that between the modem your PCs, and configure your router to make the connection (i.e., get the IP address and serve DHCP to your PCs). \_ What? What DSL modem doesn't also function as a mini- router? The DSL modem port isn't magic. It is pumping out bog standard ethernet packets. --boggle! \_ Yahoo! SBC DSL is PPPoE. The router needs to make the connection. The person above is correct. Get a hub and place it between the router and the modem. I guess this guy needs a router, too. It's not the only way, but it's the best and easiest way. In fact, many DSL routers are also hubs so he only needs to buy one piece of equipment. \_ You failed to recognize DRIPPING sarcasm. Your penance is to watch George Carlin until your brain melts \_ Nice nuke. Hub = multiport repeater, extension of one ethernet collision domain to many wires/hosts. Switch = multiport bridge, separates ethernet collision domains (when you hear that ethernet is contention-based, it means you have traffic from more hosts colliding on one "wire", slowing shit down.) Router = separates \- this is getting less true *in practice* with gigE. it makes life a lot more complicated to run half-dup and is largely file a more more complicated to run half-dup and is largely req'ed because of IEEE politics. do you know anybody running 1/2 dup gigE? see e.g. wl.20050819. do you think the person asking the question know what things like "bcast domains" mean? \_ He asked for definitions. The above are correct, _and_ try to answer his question (note: "try"). I don't know anyone running gigE half duplex; I also don't know anyone running gigE off a DSL line. Hence: chill. -John \- BTW, in general there are a lot of weird performance hacks in these networking devices so often they dont operate the way you think they might. like some switches start forwarding a packet before it arrives completely ... it starts parsing the "front edge" header info ... so in some cases part of the packet is already "in flight" to the destination before the box "relizes" the checksum has failed. anyway, this makes for all kind of weird unintuitive behaviors, like why on some cases switching between 10 and 100mbit can be slower than 10-10. etc. a classic early example of this were the attacks on cheep switches to get them to go into "repeat" mode so you could sniff some extra traffic in a "switched" environment. and mcast makes things a lot more complicated. IP broadcast domains and communicates transparently between them. A layer 3 switch is basically a router with a built-in switch, and a firewall is basically a bridge/switch or router with filtering logic. In response to your question above, a hub will do fine. I have no idea what the responder was on about with your DSL router (it's a router, not a modem, dammit) getting confused. If you want higher speeds getting the PCs to talk to each other, get a switch, but you won't gain anything on your Internet connection. Just make sure your DSL router (he's correct about the PPPoE, STFW) can accept connections from more than 1 client. -John \_ The DSL modem and the DSL router are two separate devices. He said he has a modem. He never said if he has a router or not. \_ Rereading I guess you are objecting to the 'DSL modem' terminology and realize this. He can do PPPoE from two computers, but it would be easier to buy a router and have it do the PPPoE instead of mere a hub. \_ Sorry, I have no idea whether I have a DSL modem or a DSL router. I signed up for the $19.95/mo plan in 3/05. On my SBC phone bill they charged me $99 and gave me a rebate for a "DSL Modem Package". So I always thought the black DSL thing is a DSL modem. I'll check the the labels on it and see if it says anything. -- OP \_ OK, to be a bit less pedantic about it, generally, the way DSL lines are implemented is by a device which has an RJ11/45 port on one side doing "phone stuff" and RJ45 on the other side doing "ethernet stuff". A "modem" is a device which encodes digital signal in an analog sound carrier. Also, almost all DSL devices I have seen "route" information between different IP subnets, hence the term "router" (a router doesn't have to have ethernet on both sides.) This in almost no way affects your situation, just trying to be informative. I'm just a bit anal about terminology. -John \_ from a technical standpoint, most people use DSL routers and know one class of routers as modems. a true DSL modem would provide what is essentially a serial bit stream interface, or possible multiple streams with ASIC demultiplexors. |
2005/8/11-13 [Computer/Networking] UID:39093 Activity:low |
8/10 I've been getting the following message nslookup: Can't open nslookup: No such file or directory dozens of times in my .procmailrc log file since the new disk was installed. All mail seems to be delivered fine. Anyone have any ideas what this is about? \- you're not trying to run nslookup in any dotfiles that might be sourced, are you? \_ I looked more closely. I have some stuff I got from I don't even know where. It's a spambouncer script that I called from .procmailrc. There are the following lines: :0 * NSLOOKUP ?? ^^^^ { NSLOOKUP="nslookup -timeout=5 -retry=2" } To be honest, I'm not even sure what this does, but it didn't give me any problems before. But in the last 6.5 days, I've gotten 166 occurances of it in my log file. -op \- why dont you use an absolute path for nslookup \_ because, to be honest, I don't even know what it's doing or what the absolute path is. Can anyone out there educate me? -op \_ Change "nslookup to "/usr/sbin/nslookup \_ Looks like it's trying to reject mail from machines with invalid hostnames. \_ What would happen if I just removed those lines? Also, is it likely that each time I get the error that an email is not going through? -op \_ Nothing will happen if you remove them. You probably shouldn't have stuff in your .procmailrc that you don't understand. -tom |
2005/8/8 [Computer/Networking, Computer/SW/Unix] UID:39038 Activity:moderate |
8/8 any equivalent to arp on soda? what about tracert (dos)? thanks \_ Hrm, maybe, /usr/sbin/arp? and traceroute or mtr \_ sadly, typing arp didnt work, should we put /usr/sbin/ path in .cshrc? \_ No. Do some research on why things in /usr/sbin aren't in /usr/bin. People are free to add it on their own. \_ any urls for the clueless? google didn't turn up anything for me :( \_ Googling for "introduction to unix" without quotes turned up approx 7,820,000 results for me. Or you can look for the Nemeth book. -John \_ i know how to use unix fairly well. i just want to know why things in sbin aren't in bin. \_ funny thing is that arp/traceroute used to be in /usr/etc/ \_ On freebsd? \_ no. on SODA about 2 years ago \_ Seriously doubt it. Maybe on the sequent but that's like 7 years ago now. \_ tom holub, you have my permission to flame this newbie. |
2005/7/29-8/2 [Computer/Networking] UID:38873 Activity:moderate |
7/28 Anybody have actual details on the Cisco IOS vulnerability? I know they're trying to quash it but with 'information wants to be free' I figured a bunch of people must know about it. All I've heard so far is that it's a remote heap overflow and Cisco's had a patch for months but doesn't want to roll it out till their next release date. I also heard a rumor that there's a vulnerability where the attacker can damage the hardware, though I'd suspect they just mean firmware. \- i have deleted my comments. pls dont restore them. \- if i know you, you can mail me with specific questions --psb \- if i know you, you can mail me with specific questions. it is my opinion it is not an especially interesting problem, just large in magnitude. there are more serious problems in the nature of of internet routing as typically implemented today which can be exploited to "bring the net to a halt" and cant be fixed with a code patch. if the "damage the hardware" comment refers to what i think, it is pretty much a red herring. if i take over your solaris box, i can "damage the hardware" too. i guess this bring new meaning to "8 fold path". just large in magnitude and a lot of work to fix. there are more serious problems in the nature of of internet routing as typically implemented today and tcp/ip which can be exploited to "bring the net to a halt" and cant be fixed with a code patch. just like knowledge of how to "defeat" congestion control ... well known but the stack hacks are not readily available as far as i know. if the "damage the hardware" comment refers to what i think it does, it is pretty much a red herring. if i take over your solaris box, i can "damage the hardware" too. \- actally let me revise: the attack vector isnt interesting (old idea ... ios heap attacks) but where you go from there is interesting, but only so because what you are sitting on is potentially a core router. not to say lynn didnt put in a lot or work and cleverness to understand the weird MEMORY archieteure of a router. the best of mudge, or SD are a lot cooler, also you may wish to see Mr. FX's discussion of the arch of IOS ... a router is not a "regular" computer. \_ Wired News has a bit of a story about this, including links to the researcher's report with a bit more details. see http://www.wired.com \- I have put some comments at ~psb/MOTD/CiscoComment \_ There was a lot of discussion on this on the DailyDave (STFW) mailing list recently. I have the actual presentation, so mail me @zog.net if you haven't seen it already. -John mailing list recently, including, I believe, a few links to shellcode. Drop me a mail @zog.net if you want me to forward the archives to you (I don't think it's on http://immunitysec.com yet.) -John \_ There has been a lot of discussion on NANOG about this in the last two or three days. Cisco has issued a security advisory stating that it is a IPv6 Bug: http://www.cisco.com/warp/public/707/cisco-sa-20050729-ipv6.shtml http://lin.kz/?e0pw3 http://www.cisco.com/warp/public/707/cisco-sa-20050729-ipv6.shtml More information about Lynn's presentation is available at: http://www.tomsnetworking.com/Sections-article131.php http://lin.kz/?6bjoj http://www.tomsnetworking.com/Sections-article131.php The import of the presentation seems to be that IOS is an OS and is vulnerable to buffer overflow attacks like any other OS: http://www.merit.edu/mail.archives/nanog/2005-07/msg00991.html http://lin.kz/?bv693 http://www.merit.edu/mail.archives/nanog/2005-07/msg00991.html You may want to read these NANOG postings for more information: http://www.merit.edu/mail.archives/nanog/msg09799.html http://www.merit.edu/mail.archives/nanog/msg09914.html http://http://www.merit.edu/mail.archives/nanog/2005-07/msg00981.html http://lin.kz/?3nqo6 http://lin.kz/?9j2sj http://www.merit.edu/mail.archives/nanog/msg09799.html http://www.merit.edu/mail.archives/nanog/msg09914.html http://www.merit.edu/mail.archives/nanog/2005-07/msg00981.html |
2005/7/17-19 [Computer/Networking] UID:38664 Activity:nil |
7/17 Got any recommendations for the WiFi service(s) in the South Bay? My main concerns are security (I am a WiFi idiot. Just want to make sure that my WiFi transmittions are secure. Is this possible?), stable connections once I am connected, and widely available. Some of the Starbucks branches have been referring me to T-Mobile, but the T-Mobile does not seem to have a full list of the available WiFi spots it seviced in it's map http://locator.t-mobile.com/locator.aspx?searchType=hotspotLocations A simple search of hotspot "south bay" at Yahoo! reveals quite a bit of hotspot locations provided by T-Mobile and other providers and also places with free WiFi access. \_ No wifi connection is ever 100% secure. You should rely on SSL, IPSEC, SMTP+TLS, SSH, imaps/spop and a decent personal firewall or packet filter if you are concerned about security. If you're paranoid, consider a small firewall+VPN device at home that you connect through. -John |
2005/7/7 [Computer/Networking, Computer/SW/Security] UID:38458 Activity:nil 80%like:38453 |
7/6 Steal someone else's wife, go to jail: http://news.yahoo.com/s/ap/techbits_wi_fi_theft |
2005/7/7-8 [Computer/Networking] UID:38453 Activity:nil 80%like:38458 |
7/6 Steal someone else's wifi, go to jail: http://news.yahoo.com/s/ap/techbits_wi_fi_theft |
2005/6/29-30 [Computer/Networking] UID:38361 Activity:nil |
6/29 To the person that has recommended m0n0wall before: I just ordered a WRAP to play around. Have you tried out pfsense? It's based on m0n0wall, but uses FBSD 6 with pf and ALTQ among other features. Doesn't necessarily focus on imbeded platform(although they do support it to a degree.) Just want your basic opinion on it if you're exposed to it. \_ (That was me) I had a peek at pfsense, as we were evaluating m0n0 and equivalent for a project. I get the feeling that pfsense is neat, but very very immature. Most environments I know have no need for altq, and we are talking with Manuel (m0n0 "author) about implementing CARP and a few other toys on it. I also had the impression that pfsense was more meant towards bigger, buffer hardware--if you have the possibility of running a gnarly multi- function network security box, you probably want more functionality than m0n0 can deliver. We were also looking into things like snort-inline and clamav on the m0n0, but came to the conclusion that it would be pretty unstable. -John |
2005/6/29-30 [Computer/Networking, Computer/SW/Security] UID:38359 Activity:low |
6/30 I don't want to crack WEP, but I'd like to learn more about it. For example, is it a link layer encryption or is it tied to the physical layer? If it is link layer encryption (something built on top of link layer), then is it possible to "sniff" sequences of packets on a regular computer then brute force crack it? Does it take a super computer to do it or can anyone with a regular laptop do it? \_ go read http://www.tomsnetworking.com/Sections-article118.php - danh \_ Looking at how some of the crackers work is a great way of learning how WEP works. Have a look at Auditor at http://www.remote-exploit.org for good tools and docs. -John \- This may be more relevant to people with a greater interest in wireless security than the OP but i looked at draft of a book on wireless sec by william arbaugh of university of maryland [i forgot the other authors, see AMAZONG] which is going to be more indepth and theoretical than random "how to" web pages, but is more practical than a berkeley-type textbook. oh it looks like the book is out now: http://csua.org/u/ck2 anyway, if that is what you are lookig for, the book is decent (looks like it is 2yrs old an unrevised, so may be lean on some recent things and cover some things that died on the vine). ok tnx. |
2005/6/27-28 [Computer/Networking] UID:38310 Activity:nil |
6/27 A big win for cable companies: http://money.cnn.com/2005/06/27/technology/broadband_ruling |
2005/6/20-23 [Computer/Networking, Computer/HW/Drives, Computer/HW/Memory] UID:38215 Activity:nil |
6/20 I'm having problems transfering pics between my hard drive and the memory card. Soemtimes it works, sometimes it gives I/O error or other error messages. Is the problem likely due to a corrupt memory card, the cable I'm using, or something inside my computer? \_ Though the motd may often seem prescient, you might have better luck debugging this yourself by testing the components separately, and seeing if any one component causes the errors to recur. -dans |
2005/6/17-20 [Computer/Networking] UID:38176 Activity:nil |
6/17 Dumb question, in Linux, how do you find out your current IP? \_ ifconfig \_ nslookup <hostname> |
2005/6/15-17 [Computer/Networking, Computer/SW/Security] UID:38143 Activity:low |
6/15 Wanna have WiFi access on transbay buses, free for you and free for AC Transit? Voice your support by taking the survey: http://www.actransit.org/news/articledetail.wu?articleid=d5f2ff4a \_ If they combine it with GPS so I know where the buses are... \_ I put GPS and a coffee service in the suggestions box. \_ It sure will get your responses ignored. \_ Said the suicide bomber... \_ I hope this is facetious, and if not, I hope you never ever get your hands on a top secret DHS triple grade red classified bus schedule. \_ I already get this using my PDA GPRS/EDGE/UTMS cell with laptop You are wasting money. \_ Didn't I mention it'd be free? |
2005/6/13-15 [Computer/Networking] UID:38116 Activity:nil |
6/13 I'd like to add some link redundancy to my home network. Is it possible to use Comcast cable and a dsl connection to do this? How could I configure this network? Ideally I would like it to balance traffic across both when both are available. \_ you could set up a bsd or linux box with three nic's as a firewall in front of your router. not sure how complicated the load balancing would be, though. \_ Running BGP on two Soekris or PCEngines boxes might do it. Depending on how much redundancy you need, you might want to make two firewalls failover with CARP or something similar. -John \_ Don't you need BGP support from your ISP? \_ I'm not 100% sure on this--I thought you could set up interior BGP to provide some cockamamy load balancing and failover semblance, although I may be mistaken. I will check it out, though. I have heard from people who've done just what op proposed, I just don't remember how they accomplished it. -John \_ You could do this with a Linksys RV042 VPN router (just ignore the VPN functionality) \_ This is a pricey router. Can I do the same thing with a modified WRT54G? I think what I need is multipath routing. |
2005/6/13-14 [Computer/Networking] UID:38093 Activity:nil |
6/12 Would a 5.4V rated power adapter be bad for a device (actually a dlink router) rated for using 5v input? The current limit is fine and it works for the time being, but I am wondering if it might shorten the life of the router or blow it out all of a sudden. I am asking this because I am travelling to a 220v country and have a hard time finding an appropriate 5v adapter. \_ some of the guys told me the tolerance for computer electronics is +/-5%. Anything deviates from that 5% is risky, especially voltage. \_ Yep, +/- 5%. You worry about speed on the undervoltage side, heat on the overvoltage side, and bad design practices on both sides. That said, an additional 3% will probably just disappear in the margins anyway and will not have any real effect on the preformance or long-term reliability of your device. |
2005/6/3-6 [Computer/Networking] UID:37964 Activity:kinda low |
6/3 Wireless question: My Mac laptop stays connected all of the time, while my PCs (one laptop with a PCMCIA card and one desktop) constantly drop connections. If I reset the card the connection comes back up instantly. Signal strength is good. I have gone through 2 routers and multiple cards on the desktop with the same results. This happens with both 802.11b and 802.11g. Why does it do this and why does the Powerbook always work? The routers are a D-Link and a Netgear, BTW. One PC runs Win2K and other is Win XP, FWIW. I don't know what to try next, but this is annoying! \_ I know most 802.11b Prism 2.5 chipset cards out there need their firmware upgraded to behave better, but I don't know about your problems with 802.11g. For some reason, most 802.11b prism cards come with the older firmware. \_ Maybe your cards suck. I know I've never had good experiences with d-link. \_ I tried a D-Link and a Linksys card. The laptop has an Orinoco and does the same thing. \_ I'm not the D-Link hater above, but I've had nothing but trouble from D-Link access points. YMMV. \_ As I said, I have the same problem with a Netgear WAP. \_ I've never used Netgear wireless hw, so I can't comment on that part. -pp \_ So then what are you comparing D-Link to? \_ Linksys. I have never had problems with Linksys APs, with several different brands of wirless cards. \_ Try a Senao NL-2511MP Plus MiniPCI if you can get one. 200MW! W00t! -John \_ I want a seano NL-2511MP Plus, with extra trouser ferrets \_ Alas, you'd need more power; I think Seano's out of range. :( |
2005/6/2-3 [Computer/Networking] UID:37941 Activity:moderate |
6/2 I've been to many places and almost every place I go to have 802.11b/g. However, almost all of them have protected access, which I presume they use because they don't want people stealing their bandwidth. So here is one idea I think will really revolutionize 802.11X... an option in the router that allows you to specify the percentage of unprotected bandwidth you are willing to share, while allowing maximum bandwidth for yourself. For example, I may allow 1-5% of my bandwidth to be shared by any random bozo while keeping 95% to myself. By doing so I hope others would do the same so that everyone can use 802.11X anywhere. I think this Socialist model benefits a lot more people than the current selfish model. What do you guys think? \_ I've wondered about that myself, but the liability issues might be a problem? (e.g. hacker uses that 5% to launch attacks anonymously?) \_ I treat wireless as "insecure" and have completely different rules for that link. My server has three IP addresses, BTW. One can always limit the ports that wireless client can access. Limiting it to SSH port, for example, would be fairly safe. \_ It's not necessarily to stop bandwidth hosing. For a long time (and probably still) spammers would hunt for WAPs to hijack. It's a liability to run an open WAP. \_ Holy crap! Do you mean that by having an open WAP and monitoring the traffic I might actually be able to physically catch a spammer? I like this idea <reaches for nunchucks>. \_ Indeed! <reaches for M1911A1>. \_ The FREE MARKET sets the price of wireless access at zero in most of the coffee shops where I live. \_ you live in coffee shops? \_ I think it is not very hard to find open, free WAPs. \_ Actually, this is already supported by some of the enhanced WRTG54 firmware out there. If you wanted to revolutionize 802.11x, write a tool which allows people running consumer OSes (i.e. Windows and OS X) to perform the following with a single click: 1) wepcrack closed network 2) Connect to freshly opened network 3) Act as a second level gateway for others in the vicinity. -dans \_ So is there any new wireless routers with customizable firmwares other than WRTG54? I've been thinking of scrapping my Celeron firewall box and replace it with a small device. But I'd like to have some features like logging(probably to a syslog server), QoS, etc. I'm not against WRTG54, nor do I know anything about it. I just want to know if there are any newer products that I should research as well. Also, any good pointers on WRTG54 websites? websites? - !op #13 \_ Yes. I keep posting this--M0n0wall running on a WRAP board. M0n0 (http://m0n0.ch/wall is free, and the WRAPs (from http://pcengines.ch are cheap and incredibly robust and flexible. Drop a mini PCI card in there to turn the firewall into a wireless router. Quite a few people (including some very top-end security guys I know) actually do what you are suggesting--open x% of wifi bandwidth to unauthenticated clients. Generally this is done with a VPN to the wifi router, though. What most people don't realize is that it's not _that_ simple to crack WEP/WPA keys, although it can be done with time and the right tools. Have a look at the Auditor collection (http://www.remote-exploit.org for some more info on this. -John \_ So I picked up a WRT54GS last night. I haven't played with it much, but it doesn't look like sveasoft adds a whole lot. Definitely not "equivalent of products costing hundreds or thousands of dollars." Looks all the firewall stuff is still done by iptables. Since my discovery of PF, I'd actually prefer M0n0, but the WRAP board you mentioned doesn't seem to be a whole lot more advantageous hardware-wise to the WRT54G. I don't know how a 486 200MHz compares to the MIPS based 200MHz processor in the WRT54G. Thanks for the pointer though. I still have 29 days to play with other firmwares before I can return the device if I don't like it. - !op #13 \_ Like I said elsewhere, the main value I see from the sveasoft firmware is letting you boost the signal to full HW specs from 27mw. The WRAP is not that special; it's a nice, robust, cheaper, faster soekris. By virtue of it basically being a PC it's extremely flexible, though. If you like pf, wait for M0n0 to go back to 5.x FreeBSD-based--he had to go back to 4.10 due to some driver probs. -John \_ Apologies, the model number is actually WRT54G. The reason folks hack on those is because they run Linux. The most common 3rd party firmware for the WRT54G is by a company at: http://www.sveasoft.com It costs money, but I'm told it's worth it. Many wireless routers are quite similar internally to the WRT54G. Also, when you talk about newer products, its important to realize that the WRT54G has been getting frequent regular firmware updates, which you can download and flash to get the latest greatest features. If you don't mind spending a fair amount of cash and want to take the really DIY approach, check out Soekris which makes small form factor glorified 486's that are highly expandable/configurable. -dans \_ I'm not looking for an ultimate router. I just want to replace my big box with something that's smaller, less heat, and less power-consumption for my home, without the router being a complete brain-dead. Thanks for the pointer. pointer. - !op #13 \_ See above. The Sveasoft firmware for the WAP-54G is (was?) free and works a charm. -John \_ The older versions are free, but through a Clintonesque interpretation of what the word 'distribute' means, they un-GPL'd the later versions. Out of spite some people put newer versions in bittorrent occasionaly. \_ I recall a shitfest about the source not being GPL'ed, and the Sveasoft guy basically saying, "na na a boo boo, so don't use it." The only real advantage I saw for the casual user was the 84 (?) mw power boost. -John \_ You can boost it up to 284 from the default of 28. But I believe there are plenty of other firmwares that are completely free that can do this. - !op #13 \_ I think my wap-54g only does 84. Can you give me some pointers to other firmwares if you've tried any? -John \_ I haven't tried it, but many people seem to like HyperWRT, whose focus is to boost the radio: http://www.hyperwrt.org - !op #13 \_ Capitalist Wireless - sharing 0% of your wireless for free. Only those who pay can access wireless Socialist Wireless - sharing 10% of your wireless for free. EVERYONE gets something, but those who pay get 9X better access. Communist Wireless - sharing 100% of your wireless for free. Everyone gets something, but no one gets a premium access. Fascist Wireless - the government tracks down every single WAP. \_ 'Socialist Worker' Wireless - Mommy and Daddy pay for wireless. |
2005/5/29-31 [Computer/Networking] UID:37883 Activity:nil |
5/29 I'm sure there are people here using SBC DSL using linux I assume it is not too difficult to hack around their lame software and make it an "always on" connection. Correct? Is it any easier/harder if I go with their wireless setup vs. the standard?? Info appreciated. \_ Never done wireless without using a router, but there is a Linux PPPoE client. Why not just get a router? They are so cheap these days. If you want wireless you can get a wireless router. \_ I have wireless(dlink) and wired routers(surestream dsl modem) I'm just confirming that I won't have (much) of an issue if I don't have a windows box to install their software on. The people I've seen with yahoo-sbc dsl have "had" to install software on their system and have to \_ I have wireless and wired routers. I'm just confirming that I won't have (much) of an issue, if I don't have a windows box to install their software on. I don't know how their system is set up, but I know that the people I've seen with it they have installed software on their system and have to click a stupid little "login" button on their desktop in order to log in. I assume that i will be able to STFW for ways around that, but figured someone here could confirm that and let me know if it made any difference what hardware I got from them (e.g. whatever they ship with their wireless pkg. vs. whatever they ship with their standard package). \_ router keeps it alive, machines can go down \_ That software they install is just a PPOE client. You don't even need it on Windows XP since it has a built in PPOE client. Just get a router though, makes things a lot easier. \_ there's a web-url to activate your DSL login name/account so you don't need to load their software which is just there to ensure you have the right hardware specs, the PPPoE software and their yahoo-branded commercial shit. But yeah, get a frigging router, save you headaches. Don't try no "hacks" or linux crapola. Don't get fancy. Make sure you get their traditional dsl modem, not the 2wire option, unless u know what u r doing. |
2005/5/23-25 [Computer/Networking] UID:37799 Activity:nil |
5/23 Has anyone played with carp/pfsync on OpenBSD? I have a simple two firewall setup, one fw running 3.6, the other running 3.7. Right now the 3.6 system is the "master" and everything seems to work properly except that I can't ping the virtual ip from the master system. Any ideas? \_ I've seen this with a lot of virtual IP/failover/load balancers. Can you ping it from a box on the external local segment? -John \_ A box on the external segment can ping the two fw, but they can't ping each other. I can't seem to figure out why. Anyway, I figured out the original problem, apparently not being able to ping the virtual ip from the master was a bug in 3.6. thanks. |
2005/5/13-15 [Computer/Networking] UID:37669 Activity:low |
5/13 Broadband over gas lines: http://www.nethercomm.com/headline2.htm \_ Inexhaustable energy sources and unlimited bandwidth are two things that always exist in infinite quantities in the future. \_ In the infinite future. \_ Will I cause interference if I fart while surfing the web? \_ subterranean wireless broadband communication. that's a new one. |
2005/5/12-15 [Computer/HW/Laptop, Computer/Networking] UID:37661 Activity:low |
5/12 Hi, I run windows Xp home edition on my laptop. It's hooked up to my DSL router via ethernet most of the time. When I want to just use the laptop without a net connection, the laptop sometimes locks up and becomes really really slow. To the point where I can't even right-click on the network icon to disable it temporarily. I can't even do Ctrl-Alt-Delete to bring up the task manager. Is there a way to fix this? That is, just make it stop trying to reconnect to a network so aggressively. Thanks. \_ Well did you narrow down the causes? Have you tried "ipconfig /release" and see if something's up? Also, I'd suggest you "unmount" all network drives as that hangs XP a lot. Oh, and stop reading alt.binaries.pictures.erotica.orientals \_ Uhm, no. Doing an ipconfig /release isn't the correct answer to this problem. I believe the answer lies within your internet connection settings. As you did not specify how exactly you connect to the internet, there's no way for anyone to really help you. If you are connecting through a router that does the PPOE for you then a disconnection from the net should not cause a slowdown like this. Perhaps you have a bridge of some sort in your network config. It may also be hardware related... Anyway, this is a very peculiar problem. \_ that is what I have. DSL modem does the PPPoE and my net connection is just a plain ethernet link that does DHCP. No fancy stuff. I do have zone alarm running though. When this happens I can't bring up task manager to see which process is running, so it's hard to troubleshoot this. - the op \_ Then try the following, hit F8 during the bootup process, then select safe mode with networking. If safe mode with networking appears to run fine then there is something wrong with one of the programs you are running during startup. Try disabling zone alarm if that's the case and see if that solves your problem. Also, as below, make sure your machine is clean. Malware will exhibit this behavior. \_ Reboot your computer with the Ethernet plugged in. Wait. Run netstat -ano from a command prompt. Check if you have lots of outgoing sessions. Then install Ad-Aware and Spybot to check if you have adware. \_ [80 columns please.] Hope this helps. - jthoms |
2005/5/10 [Computer/Networking] UID:37612 Activity:nil |
5/10 What is the cisco command to reboot the server after X minutes (if not cancelled) if I screw something up and get disconnected and do not cancel it? (yes yes, my google fu is weak) -crebbs |
2005/5/3 [Computer/Networking, Uncategorized/Spanish] UID:37482 Activity:nil |
5/2 tengo un teclado sin hilos de Apple, uno de los jobbies de Bluetood. tends para puh'da' momentáneamente la conexión mucho - 'estrañamente t'sucede cada vez que me siento en mi escrito'io. ¿Es este no'mal? plum un protocolo del asno? \_ es su teclado que entra powersaveel uso del \_ ah' un wahtahmellunie y él del bluetood de DLINK es roca-so'lido. No notice que es sin hilos. Los módulos más viejos de DLink BT but los más nuevos roca. Sheeeiit. \_ picosegundo, dig dis: También tengo un cubo accionado del usb que el into.el \_ ah' apenas consiguió un mac mini y lo tiene conectado vÃa el USB. Nunca tengo un problema, 'septo cuando me voyel room para demasiado largo y la pantalla entra modo del o' cualquia' mac lo llama. Sheeeiit. Entonces tengo que empujar el botón back de mi computado'a y la espuh' tienen gusto de 15 segundos t'detrás encendun dido. ¿Quizás usted tiene interferencia? Es su right al lado de su LAN 802.11? ¿Cómo sobre su teléfono? |
2005/5/2-4 [Computer/Networking] UID:37455 Activity:nil |
5/2 I have an Apple Wireless keyboard, one of the Bluetooth jobbies. It tends to momentarily lose connection a lot - oddly enough, it seems to happen every time I sit at my desk. Is this normal? Is bluetooth just an ass protocol? \_ it's your keyboard going into powersave \_ I use a DLINK bluetooth thingie and it is rock-solid. I don't even notice that it's wireless. The older DLink BT modules had problems, but the newer ones rock. \_ ps: I also have a powered usb hub that the BT module is plugged into. \_ I just got a Mac Mini and have it connected via the DLINK bluetooth USB connector. I never have a problem, except when I leave the room for too long and the screen goes into hybernate mode, or whatever Mac calls it. Then I have to push the button on back of my computer and wait like 15 seconds for everything to turn back on. Perhaps you have interference? Is your bluetooth right next to your 802.11 LAN? How about your phone? |
2005/4/27-28 [Computer/Networking] UID:37391 Activity:nil |
4/27 need to get new dsl service, who provides the cheapest dedicated line? (so i don't have to get local tel. service). \_ I think that's called "naked DSL". I don't know who to recommend. \_ SBC-ASI DSL is always tied to a POTS line. So you will not be able to do this with SBC or anyone who buys DSL layer services from ASI. If your goal is ideological, I think Covad offers this, and there are probably others too. If your goal is monetary, buying service from SBC or ASI-reseller and also getting a metered POTS line from SBC is likely your lowest cost solution. Well, finding a friendly neighbor with a net connection and a wifi access point would be even cheaper. You might want to check ba.internet archives for more discussion. |
2005/4/21-22 [Computer/Networking] UID:37299 Activity:moderate |
4/21 Is VPN a protocol? Is it proprietary? I use Cisco VPN to access my company network from home, and my friend uses Nortel VPN to access his company network from his home. Are they compatible? Thx. |_ ipsec \_ http://openvpn.net/articles.html \_ VPN is a concept. There are many technologies that "do" VPN. ipsec is most prevalent among them; there are several ipsec variations. -John \_ Got it. Thanks! |
2005/4/17-18 [Computer/Networking, Computer/SW/Security] UID:37232 Activity:nil |
4/17 Anyone know if Yahoo Messenger is encrypted? I use it in internet cafes a lot with my 802.11 and I'm wondering if my password is protected or not. I don't care about the communication, just my password. -ok thx \_ Probably not. If you want to know definitively, run tcpdump. Alternatively, set up a VPN and pipe all your connections through that. \_ Your clear text password is not saved in your machine nor is it sent in the clear text through the internet. |
2005/4/1-4 [Computer/Networking, Computer/SW/OS/VM] UID:37038 Activity:moderate |
4/1 VMWare gurus, please help. I've configured my VMWare on my laptop and everything seems fine at first until I unplug my eth100 and wireless. All of a sudden, my host system (XP) and VM (Linux) can no longer reach each other. How do you configure it so that it doesn't rely on having a connection? -ok thx \_ Well, how is the virtual NIC configured for the VM? If you're using host-only or NAT, then it should work fine. If bridged, then it's not surprising if it doesn't work, especially if you're using DHCP. \_ I'm using automatic bridging, and by default it already selected VMnet2 and VMnet8. It gave me subnet 192.168.175.0 for vmnet2 and 192.168.117.0 for vmnet8. Is there something I have to do? \_ What do you mean "it automatically selected VMnet2 and VMnet8"? What is "it"? Selected them when? How did "it" select both? And how is your host configured? And BTW, VMware does have support forums on their website... \_ I didn't configure ANYTHING, it's the way it is when I installed it. What do I do? Thanks. -pp \_ Uh, I thought I made it clear already that you can try setting the VM to use host-only or NAT networking. You still haven't said whether your host OS uses DHCP or not. \_ Yes, host OS uses DHCP, what difference is that gonna make? If it's not DHCP it renders my laptop portability to "pain in the ass to reconfig" \_ Well, I don't know what Windows does when it can't obtain a DHCP address, but it doesn't surprise me that it would suddenly become unaddressable. Anyway, you always could try adding a second virtual NIC to your VM that uses host-only networking. I'm not sure if that would work; I've never been in your situation. If not, then ask on VMware's support forums. |
2005/4/1-2 [Computer/Networking] UID:37017 Activity:low |
4/1 This year's April 1 RFCs: ftp://ftp.rfc-editor.org/in-notes/rfc4041.txt ftp://ftp.rfc-editor.org/in-notes/rfc4042.txt -John \_ Okay, those are hilarous...in an embarrassingly geeky sort of way. -mice \_ OK here's one for the non-geeks: http://csua.org/u/bk3 -John |
2005/3/30-31 [Computer/Networking] UID:36973 Activity:nil |
3/30 I REALLY like my DLink-624 802.11g 108G router. It doesn't get superhot like Linksys and it's pretty compact and inconspicuous. \_ l0s3r! y don't u have the dgl-4300 G4M1NG r0ut3r?~! it does pr10r1ty qU3U3ing v14 w3ll-kn0wn P0rtz! \_ My 2nd one's ok. The one I originally got worked for a week then puked all over itself. The RMA procedure was the absolute worst I have ever dealt with, but I got a new one in the end. --dbushong |
2005/3/29-30 [Computer/Networking] UID:36953 Activity:moderate |
3/29 I have an old 10T hub, is there ANY use for it? \_ sure, they're fine for home networking. (You don't have more than 10 megabit uplink, do you?) -tom \_ you're absolutely right but it is slow when I do file transfers at home between my 3-4 computers. \_ Espeically when a 100MB switch costs $20. \_ And a GigE switch costs $40. \_ There's a cubicle at work with only one ethernet drop into it and we have 3 computers in there split off a small 10BT hub. We're out of 100BT switches and don't care enough to put in a purchase order for one. Since these machines don't need huge bandwidth, this is acceptable. |
2005/3/29-30 [Computer/Networking] UID:36942 Activity:low |
3/29 If I subscribe to the basic SBC Yahoo DSL (the $19.95 one), can I share the DSL connection among two PCs running Win2K? Some configurations I have in mind are: 1) DSL modem --- ethernet cable --- PC1 --- serial cable --- PC2 2) DSL modem --- ethernet cable --- PC1 --- parallel cable --- PC2 3) DSL modem --- ethernet cable --- PC1 --- ethernet cable --- PC2 4) DSL modem --- ethernet cable --- hub --- ethernet cable --- PC1 +----- ethernet cable --- PC2 Which of these cases will work? I'd like to know before I buy any additional hardware. I don't use PC2 that much, so I don't mind if the bottleneck is a 115kbps serial cable as in 1). TIA. \_ Just get a dsl router. They are very cheap. \_ I have #4 at home (dsl router with built-in switch), but I pay more than 19.95/mo. \_ #4 is the easiest. That's pretty much what everyone does these days. (Assuming that hub = router) #3 will work, I used to do it back when routers were expensive. It's a pain though. And PC1 has to be on whenever you use PC2. And if you want PC3, you need a hub anyway. As for #1 & #2, what the crap? What year are you living in? \_ slip/plip. why invest in another $5 ethernet card when you already have serial/parallel parts for free? \_ How do I set up the SLIP connection in 1) then? Any hint? --- OP \_ Give me your email address, I'll send you an ethernet card. We got like half a dozen sitting in the store room. Sheesh. \_ Wow, how do you mail an ethernet card though email? -- troll. \_ I already have two cards. I just need a third one if I do 3), and a hub/router to do 4). -- OP \_ Because my time is worth more than $5. \_ By "hub" I mean like the blue Netgear box I use at work, where it has one uplink wire connecting to the wall and other wires to multiple PCs. So this kind of hub won't work if I plug the uplink wire to the DSL modem instead? -- OP, networking idiot \_ It will work. That "hub" is more correctly called a router. That's what we're telling you to buy. \_ Umm, no, it's most likely a switch. \_ Switch and router are not mutually exclusive. Hub and switch are. \_ That is irrelevant to the fact that what you use in an office is most likely just a switch. \_ The whatever thing on my desk reads "NETGEAR DUAL SPEED HUB DS108". What is it then? -- OP \_ Well, obviously, it's presumably a hub. \_ NG website mentions nothing about this doing routing. It's probably just a switch, and each computer will still need a unique IP. A hub with built in router is easier. |
2005/3/29-30 [Computer/Networking] UID:36938 Activity:nil |
3/29 Anyone know if Fry's sells minipci wireless 802.11b/g? Or is minipci still a mail-order commodity? Second question. If I buy a 802.11g hub, can it communicate with old 802.11b devices? ok thx \_ second question: "When an 802.11b client was used (various 802.11b-only cards) in proximity to the access point, data rates would drop back to 802.11b levels." From http://www.nwfusion.com/reviews/2003/0512rev11g.html \_ Yes, it can communicate, and yes you will experience that effect. Basically your G devices are happily speaking the G-level protocol to each other and a B-level device shows up and says "Is anybody out there?" and your WAP starts speaking B to everyone so that the new client can connect. If you want to have B and G coexist without that problem, you'd need a seperate WAP on a different channel which is set to speak only 802.11g. \_ no it is still mostly mail order. I just went to Fry's and they don't have anything like that. By the way the different types of 802.11g is just confusing. Different companies have different variants, like 802.11g Pre-N (8X coverage), and then you have the 54g and 108g with dual band, but only if you buy their cards, etc. I don't think 802.11g will really be all that feasible because it's still slow when you have 802.11b nodes nearby, and it's unlikely that all the 802.11b folks are switching to 802.11g any time soon. \_ As an aside, if you're going to run *nix with it, some of the Atheros miniPCI card drivers are a bit goofy (even with MadWifi and the Windows driver wrappers, forget what they're called.) -John |
2005/3/24-28 [Computer/Networking] UID:36861 Activity:kinda low |
3/24 So I had another Linksys router die on me today. Are linksys routers rated for a limited lifetime? It seems like they only last a year or two of usage. However, we do keep it on 24/7 in an office full of people. \_ I've had 2/3 or 3/4 linksys wap's croak on me in way too short a time. At my work, the IT guys loathe the linksys equipment since \_ I've had 2/3 or 3/4 of my linksys wap's croak on me way too quickly. At my work, the IT guys loathe the linksys equipment since it makes too much work for them. \_ I would guess 1 year only. I haven't seen any consumer-grade router with a warranty longer than that. \_ Belkin gives a lifetime warranty. \_ Wow, I didn't know that, thanks. \_ Did you try upgrading the firmware? that seems to fix many of the problems that linksys gets over time. \_ Will try that. The thing dies every couple of minutes and needs a reboot. I also believe it's overheating. \- put it in the fridge for 10 min and see if it works. \_ My linksys router is messed up in such a way where I cannot upgrade its firmware, as they required some stupid mis-feature in an OLD version of IE I can't even get any more. \_ You know, most of them support doing a firmware upgrade over TFTP. Search tech support on Linksys' site. Also, some of them let you install it as a USB device and upload the firmware over USB. \_ Buy a Netgear next time. \_ Buy Apple. My original ABS is still going strong. \- my apple airport express has more problem than my linksys \_ My AE works great. Plugged it in, configured it w/ the admin utility, and never looked back. |
2005/3/22-23 [Politics/Foreign/Asia/China, Computer/Networking] UID:36813 Activity:nil |
3/22 Chinese Wifi: http://www.engadget.com/entry/1234000510037092 |
2005/3/17-18 [Computer/Networking] UID:36730 Activity:moderate |
3/1 I'm new to buying notebooks. If I get 802.11b/g for free, then should should I pay extra $50 for 802.11a? How about warranty, is that a rip-off or is it really useful with no hidden fees? How about BlueTooth, is that important? I don't have any PDA stuff that does BlueTooth, but maybe in the future *shrug* By the way what do you guys think about the Toshiba Satellite R10 TabletPC? It's pretty cheap: http://tinyurl.com/55jjb \_ 802.11b is essential, 802.11g (same spectrum frequency as b but g transmits data at 54mbps vs. b's 11mbps) is nice and I'd look for it in a new laptop. 802.11a is not necessary, and I'm actually surprised someone is shipping a laptop that supports it. 802.11a was something Cisco was pushing heavily for ``enterprise wireless,'' it debuted at roughly the same time as b, runs at a higher, non-overlapping frequency than that used by b/g, but it was never widely deployed because the market was flooded with inexpensive consumer-oriented 802.11b equipment. 802.11a is nice if you want to run a long distance backhaul link without worrying about all the noise generated by 802.11b/g devices, but wholly unnecessary on a laptop. Bluetooth is nice if you happen to have bluetooth enabled phone or pda, and also convenient for wireless keyboard mouth, but, IMO, more of a perk than an essential feature. YMMV. These days I run a 12 inch Apple PowerBook, though my next laptop will likely be a 15 inch PowerBook. -dans \_ your useful responses have rendered the motd-- a place known for rants, politics, & bitter remarks-- useless. But thanks:) \_ A few companies only have 802.11a networks, just be sure your employer isn't one of them. \_ there has actually been a second wave of 802.11a commericalism and deployment with higher bit rates, and a lot of folks who don't think the first happened since they didn't hear about it. my old university lab office deployed 802.11a while all the gov't labs went with 802.11b. then, they went to 802.11b and now, of course, many of the labs are starting to deploy fast 802.11a alongside. my IBM thinkpad has an IBM internal a/b/g card w/ atheros chipset that does 54 Mbps on a/g bands, and works pretty well with Linux. that said, whether a band is useful depends on where you plan to use it! \_ There are different schools of thought on warranties. One school of thought is: If it breaks, it'll break in the first year, so only buy one year. The second school of thought is: It breaks in the third year, you're spending $1-2K anyway, spend the $200 for three years. School 1 replies: You're going to buy a new notebook anyway in three years. School 2 says: But you can keep the old notebook as a low-power server running 24x7. School 1 says: It's going to crap out in year 4. School 2 says: I take really good care of my computers. Both schools say: Standard warranties don't cover accidents (dropping the notebook, spilling water, car accident, etc.), only workmanship defects (random failure while you were innocently using the computer). The accident warranty is another ~ $100-250. If you're accident-prone, BUY THE ACCIDENT PROTECTION, and buy it for THREE YEARS. If you've owned a notebook or two without incident, you don't need it. If you eBay (as seller or buyer) your notebook, find out if the warranty is transferrable (e.g., Dell's is transferrable; Fujitsu's becomes voided once you sell it, and you can't buy a new warranty). Finally, most warranties are either mail-in or bring-in-to-service- center. If you use your computer for work, you may want to buy the on-site service for $100-$200. They send someone out with a kit of replacements parts to fix it on the spot. Personally, I treat my computers well and don't have accidents: So I buy 1-year, on-site service, no accident protection. |
2005/3/16-18 [Computer/Networking] UID:36725 Activity:nil |
3/16 Is there an RFC that says that routers "must/should" respond with ICMP "time exceeded in transit" error when it receives an IP packet with a TTL of 1 or 0? \_ 1812 -op |
2005/3/13-15 [Computer/Networking] UID:36671 Activity:nil |
3/13 Can anybody suggest a proxy server that runs on windows? I'm not experienced with setting up proxies but would like to set up one using encryption. Would I have to seperately set up a VPN and then run the proxy over that connection? \_ Just out of curiosity, what's the situation? What are you planning to proxy? \_ Primarily 'questionable' http and bittorrent traffic. \_ Try squid: http://www.acmeconsulting.it/pagine/opensource/squid/squidnt25.htm \_ Probably should have been more specific. I think I want some sort of encrypted SOCKS proxy. -op \_ Perhaps openssh's -D option? |
2005/3/10 [Computer/Networking] UID:36610 Activity:high |
3/9 Home WIFI poll. WPA: .. \_ My WPA is mainly a formality. I have my AP on a DMZ interface on my firewall--if someone manages to use it, power to them. Use SSL/TLS/ipsec for all your important shit anyway, and run a packet filter on your wifi clients. -John WPA2: WiFi, no security, everyone can use my connection: ....+++ WiFi, 64/128/256-bit WEP: ..+ I don't use WiFi: .. \_ Please use a + symbol if you also restrict by MAC address. Please use a x symbol if you successfully snoop on such systems on occasion. |
2005/3/9-10 [Computer/Networking] UID:36605 Activity:high |
3/9 Home WIFI poll. WPA: WPA2: WiFi, no security, everyone can use my connection: .+ WiFi, default security (64/128/256-bit WEP): .. I don't use WiFi: . \_ Please use a + symbol if you also restrict by MAC address. Please use a x symbol if you successfully snoop on such systems on occasion. |
11/23 |