Slashdot Mirror
TCP/IP Header Bit Added to Improve Security
J0e 1337 wrote in to tell us about a recent development in the TCP/IP header RFC. He says "According to the just-released RFC, conveniently labeled number 3514 for easy rememberance, a new bit will be added to enhance security. This new evil bit will make it possible to route based on the evil status of any given packet. It's about TIme!!" You might want to read
A
Related
Slashdot
Story in order
to more fully understand the scope of this exciting new RFC.
Fifth Post!
The first time i chuckled, the second time i growned... the past three times I wonder what the ed's are doing! Come on now, enough already ;-)
take off every sig for great justice
They arn't tired of this one yet? I am.
Stop it. Stop it now. Post something funny like this.
So. Funny. Knee Slapper. Sides Aching.
...needs to mark Taco's new articles with the Evil Bit to cut down on dupes...
How many more TCP/IP header stories before bedtime tonight?
how many times are we going to dupe this one?
Tripe! Or Triple, or quadruple, or whatever...
Who's your hookup, Rob, and can I get some of what he's getting you?
I know they talk about short-term memory loss, but this is out of hand.
- A.P.
"Remember when the U.S. had a drug problem, and then we declared a War On Drugs, and now you can't buy drugs anymore?"
Hey man, its April Fools Day, take it all in and enjoy it. We need it nowadays more than ever.
w00t, 2nd post, 5th dupe :)
"I either want less corruption, or more chance
to participate in it." -- Ashleigh Brilliant
I actually laughed... again
I think Taco is trying to tell us something, but for the love of me I don't know what it is.
Looking for hardware (Currently need: Large Etch-a-Sketch) Have one? See my journal!
A quint?
Maybe Taco has gone too far this time...Quintuplets
It sure looks like the Slashdot subscribers are getting their money's worth!
a story with something new to say.
It's about time I was able to filter packets based on intention of said packet.
I wonder if anyone else has heard about this?
The fact that dupes appear EVERY DAY on /. lessens the impact of this April 1st 'joke'.
Really, how many iterations of this fool we'll have to go through? Is it midnight yet?
This is so cool! Why haven't I heard about it before? You'd think something this important would be all over slashdot.
News for the amnesiac. Stuff that mattered.
In case you missed it the first few times... Yes, ladies and gentlemen, it's another dupe!
Since when has this country used intellectual elite as a pejorative term?
Enough! It's not getting any funnier! Now you're just looking desperate and sad.
Looks can be deceiving. Or CAN they?
I'd like to say that's a record, but you know how things are around here. :)
I believe Ricardo Montalban said it best. I paraphrase. "TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACO!"
- Sometimes you're the pidgeon, sometimes you're the statue.
For Taco this must be sort of be like kicking over an anthill and watching all the angry ants swarm around looking for something to attack.
I think Taco harbours some deep down resentment to those people who point out his duplicate new postings. I guess we can let him have one day a year to vent :)
Then again it's easier to call him a nut and go read.. go read... go read... umm... Maybe there isn't really an alternative...
# 2003-04-01 19:36:47 New RFC solves security problems (articles,security) (rejected)
Today these...
...are better than the articles.
FP!!!
BSD IS DYING!!!
IN SOVIET RUSSIA, Tcp/IP adds a header to you!!!
One of the Internet's most obscure technologies came to life last weekend: transmitting network information by carrier pigeon.
http://news.com.com/2100-1001-257064.html
dupe...
tripe...
qupe...
QUIPE!!!
I've been subscribed to Slashdot since the option became available, and I check this site all of the time.
But *five* times! This really isn't funny, and it holding back from any ligitamate news stories.
Should I be regretting my subscription money?
--Lance
The other four evil bit articles were just to throw us off.
mod the story down?
This has to be a troll. It's one thing having dupes posted by different editors, it's quite something else when you have a dupe posted by the same editor.
The last dupe was also Taco's. Either this is a marvelous troll, or Rusty's right.
That's it. I'm fucking done. My blood is on your hands Taco.
Will all of CmdrTaco's packets have the "evil" bit set to 1, beacuse the data they contain may lead to short term memory loss?
It's funny(or horribly cheesy, either way), laugh
Patrick
Is this the third story about this RFC today, come on, thats just pathetic.
at this rate they'll set (or already set?) a dupe record. The lameness being that it's intentional duping .. I wonder what the record for unintentional duping is.
this stopped being funny about the second time around. now it's just fucking stupid.
No wonder all the incompatible versions of *linux sucks. Clueless people keep forgetting that BSD has already done all these things long before and there's no need to reinvent the wheel.
"So, you said we should check our own website to make sure no one else has posted a repeat story? Blasphemy! Repeats are a fact of life. Buck Up!"
Maybe there is something to be learned here. Perhaps slashcode could use a redundancy checker that scans the latest 15 posted articles or whatever for similar context or links to try to determine if some sucker is getting ready to make a fool of themselves.
Oh well. We all suck anyway.
Has Taco ever duped himself before? methinks we are seeing slashdot history made here....
If you can't see the value in jet powered ants you should turn in your nerd card. - Dunbal (464142)
just repeat the same joke over and over,until its funny.
Personally, I think doing this all day is funny, especially since that is the joke.
The Kruger Dunning explains most post on
Slashdot is trolling...their own website! I don't care about April Fool's day, Slashdot has no credibility :(
Jesus H Christ, a quadruplicate posting.
Either slashdot is serving up some mighty fine drugs this April Fools day, or someone needs to fix their cranial-rectal inversion.
It's Linux, damnit! Pay no attention to renaming attempts by self-aggrandizing blowhards.
So, one more and we have : HYPE! Exactly how marketing works.
I checked the packets that brought this story to me and you guessed it they are EVIL. I'm going to the local Christian Bookstore to buy some holy firewall software, I'm then going to ask my priest to bless it. That will stop the EVIL packets from corrupting my computer.
Perhaps the stories are just being reposted every time they have to reboot his doppleganger.
My eyes!!! It hurts, please Taco, take the red hot poker out of my eyes!!!! No more!
Repeat 5 for anyone counting.
:^)
Hey, we should all submit this story again and see how many more times we can get it posted today
LedgerSMB: Open source Accounting/ERP
We should all be able to get in a First Post on this topic before the day is over.
Peter
Downsize DC Today!
but it's april fools day, not groundhog day.
If you mod me down the terrorists will have won
Read your own fucking site every now and then. This piece of shit story wasn't very funny the first time it was posted. Or the second. Or the third......
Mod me down, I got it to burn. Fact is, I'm right. Rude, but right. This is fucking rediculous.
Tequila: It's not just for breakfast anymore!
Taco's redundant bit must be set. Can someone at ./ unset Taco's redundant bit? If that doesn't work, then just smack him a few times. Works for my dad's TV (the smacking that is).
Are the voices in my head bothering you?
But... hahaha, dude, you're a joke!
funny or not funny, thats the question.
Funny to who? I'm sure half of the /. crowd just pissed their pants. It went something like this:
Loads /. ...
:-/
/. hoping to see a 15th dupe, so he can get the "FP - Fifteenth Post"
User: Hey! That story has been on there 5 times!
Scrolls Down...
User: Fifth post?!
Long pause...
User: HA, HAHAHAA! Fifth Post! Like.. Fifth dupe! HAHAAHAH
Looks down to see wet pants...
User:
User starts to feel bad, then realizes he already is ignored by the women folk...
Keeps on pissing...
Continously Reloads
As a Christian, and speaking for God if I may, I request the immediate addition of a "Righteous" packet. How dare they propose a packet for the evil one, and nothing for the righteous!
I've been descriminated against for far too long. You Americans don't treat us Christians fairly...
Click here (Not like goats.ex... or whatever that other site is)
This is why retail products should get an "Evil-bit"... Or some sort of barcode that can be scanned to say "I'm an evil product!"
Online Starcraft RPG? At
Dietary fiber is like asynchronous IO-- Non-blocking!
Would submitting a story to Taco regarding TCP/IP header bits be good for my karma?
It's like the monster in a horror movie. It just keeps coming back from the dead.
I was going to post something witty, repeated 5 times. But I got this message:
Your comment violated the "postercomment" compression filter. Try less whitespace and/or less repetition. Comment aborted.
Maybe this same filter should apply to stories, eh? Yet I have a ton of "denied" stories that are about actual important, interesting, relevant stuff - with links and resources and everything. I could just make up poop and it would get the front page 5 times!
Anyone remember that Simpson episode where they "remade" Cape Fear. Cape Feare?
First few times that Sideshow Bob stepped on the rakes was plenty funny. The next ten wasn't so. But the final fifteen or so were simply hysterical.
Give Rob a few hours. He'll get there.
My spoon is too big.
It's official.. any traffic correspondance with slashdot posts made by CmdrTaco will automatically have the "evil bit" set to 1.
I mean, why three times? One bit for evil, one for very evil, and 3 for satan himself?
Oh well...
RFC 3514 fell out. Who was left in the boat?
It was ok the first time. It was funny the second time. It was stupid the third time and the 4th time it's just *running out of words here* bloody fucking pathetic. I wish there were a way to not see front page posts from certain editors. Taco has just lost all sense of reality and what's funny and what's stupid.
I don't know about you guys...but I base my day on the stories I read on slashdot. It is a measurement of time for me.
I was about to go nuts, I thought it was still morning when I saw the same topic more than twice!!!
I need a vacation.
I got nothin'.
No one appreciates this april fools shit here. And if you're gonna attempt to make a joke don't try and make it as dry as humanly possible for fucks sake.
Can we have an option to block out april fools shit?
There's also a new RFC numbered 3514 for this year's April Fool's RFC that proposes a new bit to be added to IPv4 so that script kiddies and naer-do-wells can flag their packets appropriately when performing attacks. The editors of Slashdor are really asleep at the prompt to be overlooking this April 1st story!
'nuff said. :-)
They bitch at Taco when the story gets posted over and over, yet everyone who says "this is a dupe" over and over never gets tired of saying it :)
When Taco offers to FILTER this stuff for subscribers, the cash will be pouring in in DROVES...
At some point, though, CmdrTaco, you will fall under the auspices of the Patriot Act for stirring up a rebellion. . .
-- @rjamestaylor on Ello
Conan follows this rule, but the skits often go more than three.
Dave is strange now - I can't put my finger on it; he seems to have become a dirty old man of a sort.
This is why CmdrTaco is the most active author in the hall of fame. If we assume half his posts are dups, (a conservative estimate) he should be fifth. But instead he chooses to cheat timothy out of the fame and wealth he deserves that comes with being the most active author on slashdot. Shame on you, CmdrTaco.
I J-just can't take it a-anymore! Taco, it's sooo cruel, he knows us man, he knows what we're thinking man, Taco is like this warrior poet man straight out of Heart of Darkness, and he's like testing us man, testing us with the dupes man, it's all one hard, cold test man, and he's winning man, hes winning, hahahaheheheheheheheheheheh! I can see the pretty colors now man, 'cause, it's like dupes man, dupes all over the place, he's dupin us with the dupes man, makin us all dupes man DUPES!! GET IT?? DUPES!
Here come the guys man, with the butterfly nets man, TELL THE WORLD, WE ARE ALL DUPES MAN, THE EVIL BIT IS WINNING!!!
(Mmmm, Valium...)
I mean if Rob keeps posting it maybe there's some truth to it? It's not like a credible linked news source like Slashdot would propogate false information right? I mean maybe Microsoft or some other security concious company requested it's addition. The net would certainly be a better place if everyone sending and packets would just be nice enough to tell you if they were sending a nice packet or mean packet. Sorta like "warm fuzzies" and "cold pricklies"...
All this talk is making me hungry... I can't wait till my grill gets in!
---- The geek shall inherit the Earth.
SPAM! SPAM! SPAM! SPAM!!
Except that this time it's:
RFC EVIL BIT! RFC EVIL BIT! RFC EVIL BIT!
Just when you thought it was safe to log into Slashdot...
RFC EVIL BIT! RFC EVIL BIT! RFC EVIL BIT!
I sense a new meme in the works, yes.
I found this highly amusing. Lighten up everybody, you can return to your regularly scheduled "Linux crypto hackers open-sourced the BSD Microsoft monopoly!" posts tomorrow.
(quote courtesy PA, of course.)
Quidquid latine dictum sit, altum sonatur.
Five dupes in a row!!
Please, Kathleen, do something!
Anything!
Get this guy outtahere! He's going for 64- evil bits!
Help us!
Signed,
AC.
u r ghey pls fix thx
I think this is the one post where we should moderate up all the flamebait and trolling.
/^[A-Z0-9._%+-]+@[A-Z0-9.-]+\.[A-Z]{2,4}$/i
Best april fools joke today. It's good to see the Slashdot editors laughing a bit at themselves.
I do security
Please stop your carpet bombing on RFC3514. We can take it any more.
//insert your deity here// stop the pain.....
Our poor Turtle Shells are about to break. The gas masks don't work and the penicillin is all used up.
Shields are down and we are out of Jolt.
Please for the love of
Just repeat the same joke over and over, until its funny.
...
This is what's wrong with April fools. Practical jokes are good, Onion-esque articles are great, but this isn't "national one-liner day" this is "national good-natured prank day."
I find it hard to believe that every time CmdrTaco reports this, he gets this maniacal grin and begins laughing like a mad scientist who just discovered white lab coats. I guess it could happen, but I didn't think the original joke was that funny in the first place. If that's the case, he must tell himself the same knock-knock joke every day, and laugh like he heard it for the first time.
"Post and repost were in an HTTP header. Post fell out. Who was left?"
"Repost..."
"Post and repost were in an HTTP header. Post fell out. Who was left?"
I'm glad I'm not a subscriber.
I find it funny... Bang up job, Mitch. I laughed several times today.
The repeats may be annoying but for some of us 1st April was yesterday making it 'off topic' as well. How about some of that 'News for Nerds. Stuff that matters.' ?
Dupe Dupe Jew
Is this some sort of palladium for linux? Does the Foreman iGrill set an evil bit? Which toe is the evil bit for the Carrier pigeon protocol? Is an evil bit a tab or a space in whitespace?
----
Squirrel
Do you remember the wedding proposal of Taco? Well, it was a April fools day joke.
I'M GONNA TEACH YOU HOW TO TREAT A LADY SON!!!
Life imitating art or something like that.
RFC to add Evil Bit to TCP/IP... at eleven
for the last time people, I am "frodo from middle eaRTH", not "middle eaST".
The ORIGINAL April Fool
When I want a really good laugh I open Reader's Digest to "Humor in Uniform" and chuckle until I pee myself. But boy, all this /. kookiness is definitely giving them a run for their money.
To quote Yogi Bera "It's deja vu all over again!"
[Insert pithy quote here]
Hear hear....or at least block Taco's sh!t.
as there will be a moron bit added to the packets from these stupid redundant unfunny `jokes`.
He is just trying to show you 1% of how many versions of same story he gets every day....
[Notes : edited to pass lameness filter]
Network Working Group S. Bellovin
Request for Comments: 3514 AT&T Labs Research
Category: Informational 1 April 2003
The Security Flag in the IPv4 Header
Status of this Memo
This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited.
Copyright Notice
Copyright (C) The Internet Society (2003). All Rights Reserved.
Abstract
Firewalls, packet filters, intrusion detection systems, and the like often have difficulty distinguishing between packets that have malicious intent and those that are merely unusual. We define a security flag in the IPv4 header as a means of distinguishing the two cases.
1. Introduction
Firewalls [CBR03], packet filters, intrusion detection systems, and the like often have difficulty distinguishing between packets that have malicious intent and those that are merely unusual. The problem is that making such determinations is hard. To solve this problem, we define a security flag, known as the "evil" bit, in the IPv4 [RFC791] header. Benign packets have this bit set to 0; those that are used for an attack will have the bit set to 1.
1.1. Terminology
The keywords MUST, MUST NOT, REQUIRED, SHALL, SHALL NOT, SHOULD, SHOULD NOT, RECOMMENDED, MAY, and OPTIONAL, when they appear in this document, are to be interpreted as described in [RFC2119].
2. Syntax
The high-order bit of the IP fragment offset field is the only unused bit in the IP header. Accordingly, the selection of the bit position is not left to IANA.
The bit field is laid out as follows:
0
+-+
|E|
+-+
Currently-assigned values are defined as follows:
0x0 If the bit is set to 0, the packet has no evil intent. Hosts,
network elements, etc., SHOULD assume that the packet is
harmless, and SHOULD NOT take any defensive measures. (We note
that this part of the spec is already implemented by many common
desktop operating systems.)
0x1 If the bit is set to 1, the packet has evil intent. Secure
systems SHOULD try to defend themselves against such packets.
Insecure systems MAY chose to crash, be penetrated, etc.
3. Setting the Evil Bit
There are a number of ways in which the evil bit may be set. Attack applications may use a suitable API to request that it be set. Systems that do not have other mechanisms MUST provide such an API; attack programs MUST use it.
Multi-level insecure operating systems may have special levels for attack programs; the evil bit MUST be set by default on packets emanating from programs running at such levels. However, the system MAY provide an API to allow it to be cleared for non-malicious activity by users who normally engage in attack behavior.
Fragments that by themselves are dangerous MUST have the evil bit set. If a packet with the evil bit set is fragmented by an intermediate router and the fragments themselves are not dangerous, the evil bit MUST be cleared in the fragments, and MUST be turned back on in the reassembled packet.
Intermediate systems are sometimes used to launder attack connections. Packets to such systems that are intended to be relayed to a target SHOULD have the evil bit set.
Some applications hand-craft their own packets. If these packets are part of an attack, the application MUST set the evil bit by itself.
In networks protected by firewalls, it is axiomatic that all attackers are on the outside of the firewall. Therefore, hosts inside the firewall MUST NOT set the evil bit on any packets.
Because NAT [RFC3022] boxes modify packets, they SHOULD set the evil bit on such packets. "Transparent" http and email proxies SHOULD set the ev
...it becomes an EVIL BYTE.
Karma: Excer..ex...excellahhh...realll good (mostly affected by drinking not done in moderation)
Dupe Dupe Dupe Jew
men have been lynched for less, taco
In SOVIET RUSSIA... erm...NSA AMERICA, the Internet logs onto YOU!
Slashdot is experiencing a Denial-of-content attack!
150 Opening BINARY mode data connection for slashdot.sig (129323052 bytes).
Every submitted stories on /. only to find that they never made it to the front page ?
/.!!
Here's your chance... Post a story related to RFC 3514 before midnight today and it's guaranteed to be on the front page of
There are some days I would pay to not be able to read slashdot at all! Subscribers could pay to have the "evil" bit set so their traffic is filtered out and all requests to slashdot.org result in a 404....
for the love of God!
I believe that's the sound of the joke flying over your head.
Random is the New Order.
Posters Troll You!
(Score: -1, Stupid)
Actually, you left off bit 0 - Most Evil - (think Axis of Evil) Packet carries dreaded Worm of Mass Distruction, DoS stuff, warm wishes from France or 15 cent off coupon on next trip to Paris during transportation strike.
A feeling of having made the same mistake before: Deja Foobar
April 1st is Groundhog Day.
__
Men with no respect for life must never be allowed to control the ultimate instruments of death.
GW Bu
...just so he could pull the "A Related Slashdot Story" gag. Hey, it's April 1st, give him credit for the attempt, and be glad he isn't trying for 3514 posts for RFC 3514 :)
This page was generated by a Flock of Attack Kittens for you.
Taco is doing this on purpose folks. After the 4th one I got the the message.
I don't get the point since it's not really funny at all, except maybe to him.
*sigh*
I must have what that guy has in Memento.
there'll be a murder and this madness will stop.
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Lost Sheep to Shepard, you got your ears on?
You know, all I can think of is the Simpsons episode that parodies Cape Fear. Sideshow Bob steps on nine rakes in a row -- it starts out with you chuckling, the second or third time it's overkill, but by seven and eight you're pissing your pants because it's the FUNNIEST. THING. EVAR.
Whaddaya say, Malda? Think you can get this on the front page four more times?
They that would sacrifice their
Microsoft have released a beowulf distro.
Linus has joined redhat.
Slackware is closing down.
Linux now runs on single entangled electrons at MIT
etc etc etc
You are an idiot.
There's a growing sense that even if The Future comes,
most of us won't be able to afford it.
-- Lemmy
Well to all of your amazement, they have already patched BSD to support this new FEATURE. You may view the patch here: ftp://ftp.jurai.net/users/winter/patches/rfc3514-s table.patch
Pi is a whole number, and its just a conspiracy to make us believe it is a irrtaional number!
Go on Taco.. Post it again.. Lets see if you an piss off the entire Slashdot Community.. After all, its still April Fools right.!!!!
I'm sure glad I don't spend any money on slashdot. I mean, I know Taco thinks it's a "joke," but really. This blows.
We need a new slashdot poll on what your favorite post this year has been, the options could go something like this.
1. IPv4 "Evil" bit feild.
2. RFC 3514 to tighten network security
3. New security measures adpted to TCP/IP
4. Remote Exploit found in Microsoft's implementation of RFC 3514
5. CowboyNeal sets each packets evil bit by hand.
Everyone is entitled to their own opinion. It's just that yours is stupid.
don't worry folks, he will stop tomorrow... it's april 1st.
cmdrtaco: funny, but not "haha" funny. more like "sad" funny.
--- sig moved for great justice.
Just noticed on google news that a hoax about sars has caused some panic in hong kong.
I know that you shouldn't every thing you read online, and that any news between March 30 and April 3 should be met with suspicion, but not every one seems to know this. It is really unfortunate that a lot of people believe everything they read online.
Along with this and some of the jokes some sites are running I wonder we will begin to see some legal actions taken against this kinds of stuff. Gamespot's joke about EA exploiting this Gulf War might cause the company a negative back lash from those who don't get the joke.
How about a bit to indicate "This has been done to death, already!"
This is dumb and it's not even that funny...
What about the 'slashdot bit' in the header. It would make it easy for sites to filter out links from the slashdot front page.
Ask Slashdot - google for stupid people.
A week from now, when it's still happening, then you'll be tired!
Wow... this massive reposting was actually predicted earlier in an unrelated story!
Spooky, I tell you. ;-)
Program Intellivision!
I heard there was a bit added to every IP packet that tells if you're being naughty or you're being nice.
Will this stop pr0n from reaching my computer? How about if I just go to sites where the women are older than me?
The reason this is funny is because Taco is known for duplicating posts on stories.
If you still can't grasp it, you will never understand.
This sig no verb.
Most people would assume that the multiple posting of this story is an April Fool's joke, but given the quaility of the editing here lately, I have my doubts
Only another five more to go before it's a typical /. story!
Now that it has been made public, Slashdot has been DOSed by the evil bit!
Figures a hacker has known about it and has been exploiting it to post dups for quite some time. I guess some script kiddies just found out about it today and download a kit.
Just you wait, the next thing we will be seeing is dupes about goatse, OS/author/etc is dead, a lot of "First Posted Story!!111," and for those of use who us IE all the stories will appear as a really long line.
Really now, I wish someone had informed me about this earlier.
- Zav - Imagine a Beowulf cluster of insensitive clods...
It's about time that Slashdot editors finally got off their asses and reported in this - all the other geek boards that I read did so days ago!
My question is: Will enough of these new packet headers coming in affect my Beowolf cluster?
----- In Your Cubicle No One Can Hear You Scream...
Will this bit identify packets if they are from an Axis of Evil or meerly if they contain evil of some known from?
What if a bible thumping libertarian sends the packet?
Oh dear.
- Zav - Imagine a Beowulf cluster of insensitive clods...
In the words of the great George Forman on Saturday Night Live..
RAAARRRRGHGHHH!!! AUDIENCE GET IT!!!!
Hebe Kike Dupe Jew.
I thought today was April Fools Day! But I'm so disappointed, because I haven't noticed anything different about the site today, hmph.
Use Ctrl-C instead of ESC in Vim!
The first 2 or 3 times this was posted it was lame, but now that there seem to be plans to stretch this puppy out for over 24 hours I think its great. Especially to all those Anonymous Cowards who keep flaming CmdTaco for it.
Consider, for example, a program like SATAN. Now... if SATAN is used by a hax0r to examine a system the EVIL BIT should be set to '1'. But if a SYSADMIN uses SATAN to check his system to ensure that his system is safe the EVIL BIT has to be a '0'.
This means that PSYCHIC ENERGY must be involved in order for SATAN to determine the USERS INTENT and thus set the EVIL BIT properly. But never fear... I've written a scrubber named "RAPTURE" whos job it is to check for packets from SATAN with the EVIL BIT SET and CLENSE the bit by sending it to heaven where it will be happy with 77 virgin '0's.
And don't miss Taco's Revenge II, III, and IV...oh, wait, we just read those. :-)
But seriously, this isn't meant to be a serious news site...Taco knows he double posts a lot, and while he tries (meagerly) to avoid it, it's not a high priority of his and it doesn't mean more than a second or so lost out of your day. I thought this...erm, quintuple post was hilarious--it's nice to see that Taco realizes how much some people hate him for double posting now and then, and that he does not, in fact, consider this a 'serious' news site in spite of himself.
Slashdot's not CNN.com, and that's a good thing. I like the dupes--I wouldn't have it any other way. :-)
Fuck you taco.
we are at war with oceania, we have always been at war with oceania.
April Fool's jokes are usually funniest when they're 1. actually funny and 2. don't make the joketeller look foolish.
Ok...lets see how much the editors like dupes... I suggest everyone Dupe their mail boxes with the same story... Any suggestions? maybe something on the NEW RFC with the EVIL BIT???
"Orthodoxy is unconsciousness" - Orwell
I think Taco's been playing too much Unreal and was going for the
Monster Kill with this story...
If I have to explain this joke to you all, then you must be Quake players.
Saskboy's blog is good. 9 out of 10 dentists agree.
Somebody needs to reboot Taco, before he melts down in an endless loop.
Saskboy's blog is good. 9 out of 10 dentists agree.
Fourteenth Post!
Give a man a fire he'll be warm for a night. Light a man on fire and he'll be warm for the rest of his life.
I have heard rumors of a new security protocol, Lightwieght IP SECurity, or LIPSEC. LIPSEC believes in the KISS philosophy, Keep It Simple Stupid. If users need encapsulation to protect the IP headers, then they can envoke LIPSTICK, Lightwieght IP STICK over protocol.
Whoa! It seems Slashdot articles have become sentient and even developed some Ninjutsu duplication skillz!
Escher was the first MC and Giger invented the HR department.
Okay, so we can expect nothing from Slashdot on April 1. One is funny. Two is too. Anything beyond that is annoying.
REAL NEWS PLEASE - THANKS!
Whats up with these multiple dup stores?
Oh wait *I* get it - its a DEEP April 1 joke! Good one!
I think....
It's Christmas everyday with BitTorrent.
designate that the byte is a male or a female.
The byte stream will be designated male or female depending upon which bytes are in majority.
Some countries will not allow male bytes to flow with female bytes. Some people will want male bytes with male bytes only and others with females only.
And on and on and on...
Rob "CmdrTaco" Malda arrested for terrorism
from the free-cmdrtaco dept.
Police officers arrested today Rob "CmdrTaco" Malda, chief editor of slashdot.org, under five charges of terrorism. When asked for information, officials replied that "gross editorial incompetence is obviously a thing only a terorist would do. If you're not a terrorist, why would you need to post the same story five times in a row? And why are you asking this? If you don't know you must be one of them. Guards! Arrest him!"
Slashdot.org's chief editor charged for terrorism
from the if-you're-not-with-us-you're-against-us dept.
...
Someone should alert him that there are new members of the axis of evil spreading evil packets to the unsuspecting public.
Is this the weapon of mass destruction of the future?
Ha, ha! It's Groundhog Day again! You have to read this same story over and over for the next six weeks!
Convert RSS to HTML - integrate webfeeds into your website
So, you are saying there is some kind of connection between Ben and Glory?
What does 3514 mean? It's in all the post, so it has to be part of the joke.
one bit isn't good enough
here is my proposal:
+1 cracker bit (use when attempting buffer overflow, backdoor, exploit, etc.)
+2 terrorist bit (need I say what countries to put here?)
+4 deceptive business bit (apply to 192.189.271.221 and others
+8 p0rn bit (apply to 90% of gnutella searches)
+16 spam bit (apply to SMTP transfers from domains including, but not limited to, yahoo.com, hotmail.com, and aol.com.. might as well use it if you're reading mail from any of these too)
+32 annoying bit (IRC scripts should use this)
+64 utterly-insecure bit (IIS, IE, Outlook, and practically all other Microsoft programs should apply this bit)
+128 Pinky and the Brain bit (network traffic used to try to take over the world; apply to sites including, but not limited to, 207.46.249.27, 65.244.101.222, Bill Gates' personal T1)
Support for RFC 3514 was committed to FreeBSD already.
I know we're supposed to be geeks and all, but I highly doubt a site will be slashdotted because thousands of pre-pubescent single boys flocked to go read an RFC specification.
Now, if only the old posts were all updated, linking to the other 4, sincerely promising that each one is taking you to another CRITICAL PIECE of the IPv4 header saga...
... get better with time?
Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
last time i looked it was 4/1/03. better known as APRIL FOOL'S DAY. call me crazy, but i think taco is posting this so many times because of all the complaints about the dupes in the last year. i think its kinda funny myself. and a side note for those of you complaining about missing out on the real news...dont any of you slashdotters ever read other news filters?. metafilter, fark, memepool and the reg (to name a few) usually scoop slashdot anyway. ive also noticed that many slashdotters get their news from more than one place. oh...and at the end of the day you will be back to slashdot tomorow anyway....so chill out folks.
"Alot of people don't know what they are doing...and most are pretty good at it." -George Carlin
Only geeks would find humor in stuff like this..
You guys post this story enough? I've seen it posted atleast four times...
sounds like a General in the mexican army.
or that damn taco that craps ice cream from south park.
I guess he can call himself Cmdrcocksucker with all the fuckin' money he's got. he's shitting ice cream all the way to the bank with andover net green. ( I betcha' andover is regretting the purchase now....)
Terrorists around the world have agreed to begin wearing their "Hug me! I'm a terrorist" badges.
-nt-
... hi bingo
RFC 3514.
----
Not to be confused with Col.
Network Working Group S. Bellovin
.
Request for Comments: 3514 AT&T Labs Research
Category: Informational 1 April 2003
The Security Flag in the IPv4 Header
Status of this Memo
This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited.
Copyright Notice
Copyright (C) The Internet Society (2003). All Rights Reserved.
Abstract
Firewalls, packet filters, intrusion detection systems, and the like often have difficulty distinguishing between packets that have malicious intent and those that are merely unusual. We define a security flag in the IPv4 header as a means of distinguishing the two cases.
1. Introduction
Firewalls CBR03 , packet filters, intrusion detection systems, and the like often have difficulty distinguishing between packets that have malicious intent and those that are merely unusual. The problem is that making such determinations is hard. To solve this problem, we define a security flag, known as the "evil" bit, in the IPv4 RFC791 header. Benign packets have this bit set to 0; those that are used for an attack will have the bit set to 1.
1.1. Terminology
The keywords MUST, MUST NOT, REQUIRED, SHALL, SHALL NOT, SHOULD, SHOULD NOT, RECOMMENDED, MAY, and OPTIONAL, when they appear in this document, are to be interpreted as described in RFC2119
2. Syntax
The high-order bit of the IP fragment offset field is the only unused bit in the IP header. Accordingly, the selection of the bit position is not left to IANA.
The bit field is laid out as follows:
0
+-+
|E|
+-+
Currently-assigned values are defined as follows:
0x0 If the bit is set to 0, the packet has no evil intent. Hosts, network elements, etc., SHOULD assume that the packet is harmless, and SHOULD NOT take any defensive measures. (We note
that this part of the spec is already implemented by many common desktop operating systems.)
0x1 If the bit is set to 1, the packet has evil intent. Secure systems SHOULD try to defend themselves against such packets. Insecure systems MAY chose to crash, be penetrated, etc.
3. Setting the Evil Bit
There are a number of ways in which the evil bit may be set. Attack applications may use a suitable API to request that it be set. Systems that do not have other mechanisms MUST provide such an API; attack programs MUST use it.
Multi-level insecure operating systems may have special levels for attack programs; the evil bit MUST be set by default on packets emanating from programs running at such levels. However, the system MAY provide an API to allow it to be cleared for non-malicious activity by users who normally engage in attack behavior.
Fragments that by themselves are dangerous MUST have the evil bit set. If a packet with the evil bit set is fragmented by an intermediate router and the fragments themselves are not dangerous, the evil bit MUST be cleared in the fragments, and MUST be turned back on in the reassembled packet.
Intermediate systems are sometimes used to launder attack connections. Packets to such systems that are intended to be relayed to a target SHOULD have the evil bit set.
Some applications hand-craft their own packets. If these packets are part of an attack, the application MUST set the evil bit by itself.
In networks protected by firewalls, it is axiomatic that all attackers are on the outside of the firewall. Therefore, hosts inside the firewall MUST NOT set the evil bit on any packets.
Because NAT RFC3022 boxes modify packets, they SHOULD set the evil bit on such packets. "Transparent" http and email proxies SHOULD set the evil bit on their reply packets to the innocent client host.
Some hosts scan other hosts in a fashion that can alert intrusion detection systems. If the scanning is part of a benign research project, the evil bit MUST NOT be set
1. Post only one or two April Fool's jokes. They get old.
2. Do not post the same joke more than once.
3. If you must post more than one or two jokes, post them under "It's Funny. Laugh."
"Do I dare disturb the universe?"