Slashdot Mirror


When RSS Traffic Looks Like a DDoS

An anonymous reader writes "Infoworld's CTO Chad Dickerson says he has a love/hate relationship with RSS. He loves the changes to his information production and consumption, but he hates the behavior of some RSS feed readers. Every hour, Infoworld "sees a massive surge of RSS newsreader activity" that "has all the characteristics of a distributed DoS attack." So many requests in such a short period of time are creating scaling issues. " We've seen similiar problems over the years. RSS (or as it should be called, "Speedfeed") is such a useful thing, it's unfortunate that it's ultimately just very stupid.

6 of 443 comments (clear)

  1. Re:Can't this be throttled? by mgoodman · · Score: 4, Insightful

    Then their RSS client would barf on the input and the user wouldn't see any of the previously downloaded news feeds, in some cases.

    Or rather, anyone that programs an RSS reader so horribly as to make it so that every client downloads information every hour on the hour would probably also barf on the input of a 500 or 404 error.

    Most RSS feeders *should* just download every hour from the time they start, making the download intervals between users more or less random and well-dispersed. And if you want it more than every hour, well then edit the source and compile it yourself :P

    --
    01100111 01100101 01110100 00100000 01101111 01110101 01110100 00100000 01101101 01101111 01110010 01100101 00101110
  2. Re:Simple HTTP Solution by skraps · · Score: 5, Insightful

    This "optimization" will not have any long-lasting benefits. There are at least three variables in this equation:

    1. Number of users
    2. Number of RSS feeds
    3. Size of each request

    This optimization only addresses #3, which is the least likely to grow as time goes on.

    --
    Karma: -2147483648 (Mostly affected by integer overflow)
  3. Re:Can't this be throttled? by ameoba · · Score: 4, Insightful

    It seems kinda stupid to have the clients basing their updates on clock time. Doing an update on client startup and then every 60min after that would be just as easy as doing it on the clock time & would basically eliminate the whole DDOSesque thing.

    --
    my sig's at the bottom of the page.
  4. Re:RSS needs better TCP stacks by Salamander · · Score: 5, Insightful

    Leaving thousands upon thousands of connections open on the server is a terrible idea no matter how well-implemented the TCP stack is. The real solution is to use some sort of distributed mirroring facility so everyone could connect to a nearby copy of the feed and spread the load. The even better solution would be to distribute asynchronous update notifications as well as data, because polling always sucks. Each client would then get a message saying "xxx has updated, please fetch a copy from your nearest mirror" only when the content changes, providing darn near optimal network efficiency.

    --
    Slashdot - News for Herds. Stuff that Splatters.
  5. Re:Can't this be throttled? by mblase · · Score: 4, Insightful

    Most RSS feeders *should* just download every hour from the time they start

    That's also a problem, though, since most people start work at their computer desks on the hour, or very close to it. The better solution would be for the client (1) to check once at startup, then (2) pick a random number between one and sixty (or thirty or whatever) and (3) start checking the feed, hourly, after that many minutes. That's the only way to ensure a decently random distribution of hits.

  6. Re:It just ain't broadcast.. by fiftyvolts · · Score: 4, Insightful

    You make some very good points. The old saying "When all you have is a hammer, everything looks like a nail" seems to ring true time and time again. These days it seems that everyone wants to use HTTP for everything and quite frankly it's not equipped to do that.

    RSS over SMTP sounds pretty cool. Heck, just sending a list of subscribers an email of RSS and let their mail clients sort it out would be pretty nice.

    Heh, my favorite posts are when some one suggested soething that sonuds totally novel and then someone else points our "Yeah! Like $lt;insert old and undeused technology>. It seems to do that damn well." The internet cannot forget its roots!