Slashdot Mirror
EFF Releases Software to Spot Net NonNeutrality
DanielBoz writes in with word of the EFF's new initiative to help consumers detect if their ISP is spoofing packets. From the press release: "In the wake of the detection and reporting of Comcast Corporation's controversial interference with Internet traffic, the Electronic Frontier Foundation has published a comprehensive account of Comcast's packet-forging activities and has released software and documentation instructing Internet users on how to test for packet forgery or other forms of interference by their own ISPs."
Candygram!
[pause]
Wireshark!
My blog
Lawrence Person (lawrencepersonh@gmailh.com (remove all "h"s to mail)
http://www.lawrenceperson.com/
Is there a website where we can post these results? Broadband Reports comes to mind, but maybe the EFF has a place set up?
If X tells something is true and then offers an application that proves that what they say is true there are only two options:
1 - You trust X: No need to check for yourself.
2 - You don't trust X: Why would you believe X's software?
First of all, the EFF may has not tested your ISP. You may trust them that in general ISPs are sending spoofed packets, but still want to know whether your ISP is using the tactic. Beyond that, however, just because you trust them doesn't mean independent verification has no value. Results mean something different if you obtained them yourself. Also, as in regular science, independent confirmation of results gives more than that: more people conducting tests will also give better data.
>> Pcapdiff 0.1 is written in Python, is run from the command line, and requires the pcapy Python library.
That point and click interface should save me a lot of time.
Network Neutrality refers to ISPs double dipping on charging/extorting fees for both users paying for their connections and web sites paying for prioritization of traffic according to origination and destination. It does not refer to protocol-based QoS. It does not mean a flat, unmanaged, unQoS-ed Internet. By repeatedly and deliberately misusing this phrase, its importance is being weakened.
Interested in open source engine management for your Subaru?
...why don't they just charge a nominal fee for heavy p2p users?
Thanks for putting that into concrete terms.
"Stop writing shit in python, dickweeds.
And what fanboy are you of? Though there are alternatives to Python that could be use here, it is one language that works well in this instance. Namely, it provides multi platform support for this tool. You did not mention what the "better" alternative *should* be. Should they have used the more "multi platform friendly" C# or VB?
And accounting costs money.
Your post demonstrates unequivocally that you did not read the article or if you did, you didn't understand it.
Take two packet traces, one from you your computer one from a friend while your two computers are talking. Then compare the TCP sessions captured by each for differences. Differences that don't matter are fragmentation and re-ordering, for example. Difference that do matter are TCP resets, ICMP unreachables, TCP FIN's that are received by one side and not sent by the other.
Sheesh, I can forgive not knowing how networking works, but to post inflammatory comments when you are obviously ignorant is, well, ignorant.
It's nice of the EFF to spend time and money developing software that can detect what we know Comcast (and maybe others) are doing but without some sort of centralized data gathering operation to put together some sort of class action lawsuit what good is it? Knowing your packets are getting pummeled by Comcast allows you to... complain? I can't even get them to give me a clean cable tv signal- does anyone think they would listen to our complaints about packet loss? (does anyone think the average Comcast support rep would know what a packet is?) While others might be able to switch to another provider I think far too many of us (myself inculded)are stuck in monopohell with broadband providers. I'd prefer to see the EFF working on forcing Verizon (et al.) to drop fiber to the premises (after all we've been paying billions in infrastruture taxes for how long now??)
Comcast posted a new cable modem wiring diagram in response.
I'm under the impression that Java is more common than Python, but no matter, this software is still pretty rudimentary.
True confidence comes not from realising you are as good as your peers, but that your peers are as bad as you are.
And are they correct?
Who says so?
I work for an ISP. We purposefully craft spoofed packets and send them to our customers. Will we be reported as offenders? Does it matter that we provide service to rural locations that are only accessible through satellite and the "spoofers" are called "accelerators" by the people that sell them, and the spoofed packets are added to correct for windowing issues to increase the speed of Internet connections? If I get a number of customers that complain about our "non-neutrality" I'll be more than happy to turn off TCP acceleration and see how they like the new neutral Internet.
It isn't only for nefarious purposes where providers spoof packets. Will this software be able to identify the good from the bad? Or will it just assume that all are bad, even in the face of legitimate uses?
Learn to love Alaska
Some people believe that Java is silly and find Python to be a more elegant way of doing the same or similar things.
*sigh* back to work...
There WAS a consensus. People said "we don't want our ISPs degrading our connection to particular sites to gain a competitive advantage."
Then folks came around and started claiming it was anti-QoS and all kinds of nonsense, trying to make it out to be "problematic" so that the telcos could argue against something that popular. See the nice anti-NN ads they started running.
I guess that confused people, but I have NEVER seen someone pro-NN arguing against QoS. NEVER. They're always anti-NN people asking if I've considered it... Yes. I have no trouble with QoS. I think it should be the customer's choice of what QoS to run, but if the ISP needs to set aside some bandwidth just for VoIP (and ALL VoIP, no hindering your competitors), I don't see the problem.
I favor core neutrality(source/destination), but not to the point of QoS neutrality(by the way QoS is NOT what this article is about; it's about the source and destination being regular users and Comcast interfering with that.)
The postal service in fact does prioritize mail, that's why media mail(boxes of paper as it were) costs less by weight; they don't want to put more effort into heavy, time-insensitive mail, but won't charge as much, for keeping it out of the air.
The phone company does prioritize as well. With limited connections, data calls(fax, modems, and, as it happens, cell phones) get "All Circuits Are Busy Now" more than plain voice calls. And that's good, assuming they're honestly charging relative to their expenses. I'd rather not pay another $10 a month for the added capacity needed to avoid the semi-annual failed cell call or delayed fax.
Given that, why wouldn't I want my ISP give more effort to my occasional, but primary-purpose, web browsing, than to my while-I-sleep-or-work torrent up/downloading. If I want to run a serious server instead of the poor hack I have now, I can pay the carrier rate($300/mo last check) for a dedicated T1 line, no restrictions allowed.
Charging Google for *MY* Youtube viewing is _baaad_. If you can't afford the bandwidth you're selling, drop the rates, raise the prices, or do a daily threshold(you slow down after 100-200MB in a day) like every(sorry, both) satellite provider does for their customers.
Each party participating in the experiment must have all of the following:
* a computer capable of running Wireshark, with appropriate privileges to install and run it;
* the ability to connect this computer directly to the Internet, with a public IP address, outside of any firewalls (for example, not via a typical home wireless router);
* the ability to determine the computer's public IP address;
* the ability to disable any firewall software running on the computer itself;
* some application to test, and the ability to configure that application to communicate directly with the other party (by IP address).
So you're going to set up a honeypot on the 'net while you're trying to figure out if Comcast is jacking with your packets. How are you going to tell the difference between your system getting hijacked and Comcast slowing your connection?
*** *** You're just jealous 'cause the voices talk to me... ***
Isn't sending spoofed reset packets essentially a denial of service attack? Seems to me that's against federal regulations, and could result in ComCast getting, not sued, but indicted...