Comcast Continues to Block Peer to Peer Traffic

narramissic writes "A report released Thursday by the Electronic Frontier Foundation (EFF) finds that Comcast continues to use hacker-like techniques to slow down customers' connections to some P-to-P (peer-to-peer) applications. The EFF said that Comcast appears to be injecting RST, or reset, packets into customers' connections, causing connections to close. 'The investigators say that their tests confirmed an earlier one conducted by the Associated Press that showed that Comcast is interfering with BitTorrent traffic. BitTorrent is a protocol used to efficiently distribute the online transmission of large files, and some entertainment companies have partnered with its creators to distribute its content online. Comcast has said that it doesn't block BitTorrent, or any kind of content.'" If you're the type that always looks for a silver lining, Comcast's skulduggery may be pushing Congress to reconsider Net Neutrality.

skul what?

[seanadams.com]

Never ascribe to skulduggery that which can be adequately explained by asshattery.

Re:skul what?

[sumdumass]

That would indicate the old school way of doing things. Invisible and moving bandwidth caps and stuff like that. You know, Because when they tell you that your buying a 3 meg/second connection that is always on and you do something to always be using it, you have somehow robbed them.

Re:skul what?

[QRDeNameland]

Never ascribe to skulduggery that which can be adequately explained by asshattery.

I believe that's known as "Shitcock's Razor".

Re:skul what?

[Copid]

Is there really such a thing as consensual skullfucking?

That's a good question, and you should know that Congress is on it.

Maybe it's their new hookup instructions?

I think the problem may be due to their new cable modem hookup diagram.

Straight from thier lawyers mouths

[bizitch]

Here is the official load of crap you get if you bitch about it to them .....

-- begin bunch of shit ---

Thank you for contacting Comcast Cable Mark.

Thank you for writing to us in response to reports about Comcast's
efforts to manage peer-to-peer traffic on our networks.

Mark, we have posted new FAQs on our Web site making clear to our
customers the steps we are taking to protect the customer experience for
all of our customers. You may access content related to this issue in
the FAQ section of http://www.comcast.net/

First, and most importantly, you should know that Comcast does not block
access to any Web site or application, including peer-to-peer services
like BitTorrent. Our customers use the Internet for downloading and
uploading files, watching movies and videos, streaming music, sharing
digital photos, accessing numerous peer-to-peer sites, VOIP applications
like Vonage, and thousands of other applications online.

Mark, we have a responsibility to provide all of our customers with a
good Internet experience and we use the latest technologies to manage
our network so that you can continue to enjoy these applications.
Peer-to-peer activity consumes a disproportionately large amount of
network resources, and therefore poses the biggest challenge to
maintaining a good broadband experience for all users, including the
overwhelming majority of our customers who don't use P2P applications.

It is important to note, however, that we never prevent P2P activity, or
block access to any P2P applications, but rather manage the network in
such a way that this activity does not degrade the broadband experience
for other users.

Mark, network management is absolutely essential to provide a good
Internet experience for our customers. All major ISPs manage their
traffic in some way and many use similar tools.

Comcast believes we have a responsibility to our customers to provide
this service. Network management helps us perform critical work that
protects our customers from things like spam, viruses, the negative
effects of network congestion, or attacks to their PCs. As threats on
the Internet continue to grow, our network management tools will
continue to evolve and keep pace so that we can maintain a good,
reliable online experience for all of our customers.

I understand you have some questions about Comcast's policies. You can
view all of the Comcast Subscriber Agreements and Policies by visiting
the Comcast Online Customer Support Center at http://www.comcast.net/terms/subscriber.jsp

On this site you will find the Subscriber Agreement, the Acceptable Use
Policy, and other policies relating to your Comcast Service. You can
also view our Privacy Policy Statement at http://www.comcast.net/privacy/index.jsp

Links to the Privacy Statement and Terms of Service are located at the
bottom of every page at www.comcast.

-- end bunch of shit --

Re:Straight from thier lawyers mouths

[X0563511]

It is important to note, however, that we never prevent P2P activity, or
block access to any P2P applications, but rather manage the network in
such a way that this activity does not degrade the broadband experience
for other users.

So, they are not even coming close to telling you the truth!

How exactly sending RST packets to peers doesn't fall under "prevent P2P activity" I don't understand.

Re:Straight from thier lawyers mouths

[seanadams.com]

-- begin bunch of shit ---
bunch of shit, Mark.
Mark, bunch of shit.
bunch of shit.
Mark, bunch of shit.
bunch of shit. bunch of shit.
-- end bunch of shit ---

But you've got admit, it's pretty cool how they address you by name throughout this carefully composed, personal email response made Just For You.

Re:Straight from thier lawyers mouths

[jnana]

It looks to me like Comcast is trying to mislead people into believing that they're saying:

We don't interfere with P2P activity at all, so these accusations are completely baseless!

But if you read the words carefully, you can see that following bullshit interpretation is a possible (albeit not the most likely) interpretation:

We don't completely prevent P2P activity altogether such that you cannot ever download anything (completely) via P2P

Which is fully compatible with the observed behavior of their tampering with it enough to cause problems and greatly reduce transfer speeds and increase transfer times for whole files, but it still being possible to use P2P apps for what they're intended for (albeit with much more hassle).

Re:Straight from thier lawyers mouths

[AySz88]

It is important to note, however, that we never prevent P2P activity, or block access to any P2P applications, but rather manage the network in such a way that this activity does not degrade the broadband experience for other users. Their technical excuse (see this George Ou blog post .) is that this is true - with current modems, cable cannot handle the number of simultaneous transmits required by, for example, torrent uploads. Like Ethernet on a shared wire, they say, cable modems send out requests to transmit on a bus, which can collide repeatedly and require lots of retransmission attempts, which apparently causes runaway queuing problems.

Personally, I don't really care whether the excuse true or not - I don't have empathy for "but my network can't handle it!". If someone buys Internet access and it is being used in good faith in accordance with spec, but the network breaks, the company should have to fix their network; the customer shouldn't need to adjust their usage. To me, it just so happens that the affected application is P2P.

I'm a little fuzzy on this, but I think they'd have to upgrade modems soon anyway to continue competing with FiOS? (Something about DOCSIS 3?) Also, I am still curious - can someone with knowledge of current cable protocols verify that the excuse is plausible?

Re:Straight from thier lawyers mouths

[vixen337]

The funny thing is, I got this exact same response in reply to a question about them blocking an UPLOAD from me. Then I replied to say that wasn't really my question, could I get their form letter for uploads and I got a form letter back that said I was asking about a feature that wasn't supported. Huh?

It's obvious their tech support is not read. I called and I also got a load of bull about downloads that sounded scripted. I understand about downloads, but how is that stopping my uploads?

I'm switching providers to someone who actually listens to a question before they give you an answer.

Re:Straight from thier lawyers mouths

[BillX]

Simple, they just use disingenuous, lawyerly weasel words. They don't "block" the traffic outright (since some percentage of the packets are allowed through), they just interfere with it. It's like saying that to prevent people using my driveway to make u-turns, if I grease the road 100ft before and after it such that the cars trying to pull in just slide past, I've made it damn difficult to u-turn there but haven't technically "blocked" access to the driveway...

Re:Straight from thier lawyers mouths

[krbvroc1]

But you've got admit, it's pretty cool how they address you by name throughout this carefully composed, personal email response made Just For You. Except his name is Steve.

Re:Straight from thier lawyers mouths

[FutureDomain]

But you've got admit, it's pretty cool how they address you by name throughout this carefully composed, personal email response made Just For You. And here's the code that'll help you make your own personal email response Just For You. $pathetic_letter =~ s/Dumb Customer/Mark/;

Re:Straight from thier lawyers mouths

They don't interfere with your downloading, they interfere with your uploading. You can download to your heart's content at full speed - I've seen my 7Mbit Comcast cable connection spike as high as 20Mbit for more than 30 seconds, while downloading particular things with 500+ seeders online. This is difficult with Windows due to the built-in connection limit, but it's very easy on Linux or Mac. I can download folders larger than 6GB in less than three hours, with an avg. speed roughly being around 700 - 750KB/s.

It's when you go to make an upload connection to another peer. BitTorrent wouldn't work at all (uploading or downloading) if Comcast just shot your upload connections down from the start; instead, they kill it after 30 seconds. I've timed it hundreds of times, from the time I announced to the tracker - it's always almost exactly 30 seconds. Unless you hammer the tracker with manual announcements or have a client that's smart enough to reconnect the peer "just to see" if it "really wanted to reset", you can't upload more than for 30 seconds at a time without either hammering the tracker, or taking excessive measures (it's been discovered that reconnecting the client as if it were just announced, upon being dropped, while causing somewhat odd client behavior, will work around the problem).

This is a serious issue if you're a member of invite-only torrent sites where you don't get to download unless you've uploaded enough; it's also a serious issue if a lot of Comcast customers happen to use your BitTorrent-distributed product.

The "quality assurance" cover is completely bogus - that's not what's going on. First of all, they're not hampering my upload speeds, they're dropping the connection completely after a set amount of time. How, exactly, does my uploading stuff on BitTorrent affect other customers' experience? Increase the bandwidth bill maybe, but that's not what's going on... they could easily throttle the speed down, but that's not what they're doing.

I used to work for an ISP. Uploading doesn't hamper other customers' experience - downloading does. I think it's more plausible that they're being paid to screw up private BitTorrent trackers.

Re:Straight from thier lawyers mouths

[Beefpatrol]

I had an enlightening conversation with a Comcast CSR a couple months ago about this. I posted notes about it shortly thereafter. I'm sure they are thinking that they can get away with saying that they don't block anything because they aren't technically blocking certain types of connections or connections to certain ports. They are sending RSTs to new and existing connections inbound to the subscriber's IP after a certain number of inbound connections per unit time have been detected. (I think it is measured per unit time -- there may be some sort of weighting scheme that favors some ports or detected connection contents or something else, but for me, the relevant metric involved how many SSH connections I could make to my machine at home from school before new ones failed and all the established ones stopped responding.) There is absolutely nothing beneficial to anyone's user experience about blocking my very low bandwidth ssh sessions. Particularly since they don't just send RSTs to the new connections, but all the existing ones as well, unencrypted P2P apps are essentially worthless if you are subject to this kind of TCP meddling. I'm not a P2P expert, but every P2P network I have ever used would blow the inbound connection quota in a few seconds. You'd be lucky to be able to do anything except leach. See previous comment and pseudotranscript of conversation with Comcast guy here: http://yro.slashdot.org/comments.pl?sid=287993&cid=20477309

Re:Straight from thier lawyers mouths

[zygwin]

Sites which have such restrictions include ones which distribute unofficial (aka bootleg) musical audio and video recordings like the thetradersden or purelivegigs etc which is perfectly legal as long as it was not released officially(DVD or TV Rips) but recorded by fans.

Re:Straight from thier lawyers mouths

[Findeton]

Please. Please, I'm ever so curious - do show me an "invite-only torrent site" with ratios that distributes all this legal torrent traffic everyone's always talking about. thelinuxisobay.org, perhaps? (Yes, I know TPB is not invite-only) or perhaps linuxisonoid.com?

Forgive me, but if you're bitching about it screwing with your ability to illegally obtain things, my sympathy isn't all that high.

Let me remember that downloading copyrighted material was, once upon a time, legal, and it was the industry, with the opposition of society, who illegalized it (yes, your democracy is crappy sometimes). They are criminalizing millions of americans, they are criminalizing a behaviour that is found natural and good by society. Basically, the industry is trying to adapt society to the industry's needs, when it should be the industry who adapted itself to society's needs. It's illogial and anti-democratic to prohibit a behaviour that an enormous amount of society does regularly and most of the people accepts as something good.

You know? It freaks me out, because i'm spanish and here IT IS ABSOLUTELLY LEGAL to download or upload any copyrighted material, if you're not doing it for profit. Our particular RIAA and MPAA are pushing very hard to ban it but we won't allow it happen, not in Spain. And i can't help to think that if they finally win and downloading copyrighted material is banned, although at this moment 99.9% of our society knows it's a good thing to share culture in a non-profit basis, after some years, it would be easier to find people like you. They would have really won if that happens, because what they want is not banning downloading, what they want is to adapt society to their prehistoric economic model. I won't let them ban it in my country, because when i read you i see what we'd become, we'd start to fear sharing culture.

It's not blocking per se...it's worse!

[explosivejared]

It's far more sinister. They are spoofing packets by impersonating a p2p node. They are illegally interfering with their customers' service and don't have the guts to do it outright themselves.

Re:It's not blocking per se...it's worse!

[SuperBanana]

They are illegally interfering with their customers' service

Since you've been modded up to "5, insightful"- would you care to tell us what is illegal about it? Extra credit for references to specific federal or state laws or regulations.

And, more specifically, if it is illegal, why this is (supposedly) pushing Congress towards net neutrality laws?

Re:It's not blocking per se...it's worse!

[explosivejared]

blockquote> i>And, more specifically, if it is illegal, why this is supposedly pushing Congress towards net neutrality laws? /i> /blockquote> For an overview check the wiki

Currently it is only violating net neutrality principles and is only a tort violation. So legality tends to depend on the judge. I come down on the side that is not QoS and patently violates net neutrality. So to me it is illegal and if I were a judge I would strike their actions. The reason it is pushing Congress is enough decent Congressmen like my beloved Rick Boucher (proud constituent of the 9th VA District) have decided to make this sort of thing statutory and not up to any fickle judge.

Re:It's not blocking per se...it's worse!

[terrymr]

I believe they are stretching definitions to the limit if not beyond :

"The duty to carry does not mean that a carrier is never justified in refusing to provide service. It is well established that "if goods are not of the character that the carrier transports he may refuse carriage." Gorton, Supra at 109. Yet, the reasons for refusal are very limited and related to potential damage to other's goods, or to unreasonably high risks for the carrier in its capacity as insurer, or are beyong the reasonable capacity restraints of the carrier." http://www.cybertelecom.org/notes/common_carrier.htm

Re:It's not blocking per se...it's worse!

[sumdumass]

While it is popular to claim something is illegal when the statement should be more like It should be illegal, I would be more along the belief that something like fraud or something along those lines.

I looked but couldn't find the a law on a federal level but saw a few state laws in passing that include using the Internet to commit fraud and causing the interruption of Internet services in that act. Now suppose that their interference can be considered defrauding you of services they sold you and suppose that interfering with the data streams was the method for doing this, even though it is on their network, I imagine something could be twisted enough to apply.

I look at it this way, Suppose you purchased a printer that printed 20 pages per minute. Says so right on the box and on the printer itself. Now, when you get home, you find that you have to buy the turbo module at a cost more then the printer in order to get that advertised performance. And when you complain, they tell you that it is done this way to protect their supply network. What sort of laws apply? Suppose that you have to feed the paper manually one sheet at a time and push a button after it is started without the turbo module which could be similar to having to monitor and restart your torrent or whatever.

Now, what sort of laws would apply, would they be criminal or civil in nature, and seeing how comcast is a regulated entity, is there a state oversight organization that fields complaints already. In ohio, the public utilities commission has some oversight of time warner I think. I have used them in the past to help get complaints again Cell phone providers taken care of. I think it probably is illegal in some way under some laws. I just don't know the specific ones or if I am correct in that assumption. But the oversight necessary might already be there.

Comcast sells the Internet, not some Internet like service. Their willful failure to deliver reliably might not sit well with local regulators either. At minimum, they should be forced to be honest and up front about their tampering with P2P applications before you purchase their service. and where there are no other options because of Comcasts government granted monopoly, there should be a way around it.

Re:It's not blocking per se...it's worse!

[Kamots]

I'm thinking that you're not understanding what Comcast is doing. (Given your choice of examples)

Lets look at what happens with WoW updates.

Lets say that you're one of the first one's trying to do a WoW update, so your updater (which uses bittorrent) contacts Blizzard's servers. Comcast then sends you a packet pretending to be from Blizzard saying that Blizzard doesn't want to talk to you.

That's forgery.

Re:It's not blocking per se...it's worse!

[MobyDisk]

FCC policy statement (FCC 05-151) August 5, 2005

(1) consumers are entitled to access the lawful Internet content of their choice;(2) consumers are entitled to run applications and services of their choice, subject to the needs of law enforcement; I think inserting RST packets into the data stream would violate rule #2, and if the content is legal they are also violating rule #1.

Should be shot

[norton_I]

People who inject fake RSTs into network streams should be shot.

This will lead to non-compliant network stacks which attempt to detect "bogus" RSTs and ignore them. And that cannot be allowed to happen at any cost.

It is fine for them to drop packets. It is a dick move, of course, when they sold people the bandwidth and don't let them use it, but TCP/IP is designed to deal with packet loss, and treat it as congestion. Fragrantly violating the network standards that allow communication between different networks to interoperate is literally trying to destroy the internet, and cannot be tolerated.

Re:Should be shot

Fragrantly violating the network standards...

I think we might have had the same guy install our cable! Tell him I said 'hi', next time you see him.

Re:Should be shot

[Vellmont]

This will lead to non-compliant network stacks which attempt to detect "bogus" RSTs and ignore them. And that cannot be allowed to happen at any cost.

Why? Just ignore all RST packets for bittotent ports, and timeout any connections. Do it at the NAT level, and you don't have to modify the OS. It leads to some extra open connections, but big deal. Comcast can just plain old block the connections anyway, the only reason they're not is because it takes more router resources than they have.

Silver lining?

[Loki_1929]

How is it a silver lining that Congress may reconsider Congressionally mandated Federal control over the internet in the United States?

If there's one thing Congress and the rest of the Federal government have proven time and time again it's that the only thing they're good at is spending money. Everything else they try to do (ie. all the stuff they spend the money on), they can't help but fuck it up. Never heard the phrase, "Good enough for government work"?

If you're in favor of Ted "Series-of-Tubes" Stevens and his band of merry men handing over control of the internet to the F "OMFG A DECISECOND FLASH OF BREAST!" CC, then I have to ask, why do you hate the internet?

Re:Silver lining?

[Entropius]

If there's one thing Congress and the rest of the Federal government have proven time and time again it's that the only thing they're good at is spending money. Everything else they try to do (ie. all the stuff they spend the money on), they can't help but fuck it up. Never heard the phrase, "Good enough for government work"?

I think the interstate system, the university system, the Park Service, the management of national forests, public libraries, and a lot of other things work pretty well, and don't mind spending tax money on them at all.

Re:Silver lining?

[Jah-Wren+Ryel]

How is it a silver lining that Congress may reconsider Congressionally mandated Federal control over the internet in the United States? Because they've got a pretty good track record so far.
Net neutrality was the rule of the land until just recently.
It is not something new, it is a return to the way it was only a few years ago.
In 2005 the SCOTUS ruled that broadband internet was an "information service," and not a "telecommunications service." Thus freeing broadband ISPs from the laws that have enforced "network neutrality" for telephone service for decades.

Define Net Neutrality

[mdmkolbe]

Define "net neutrality". I don't want high-level goal oriented stuff. I want to know exactly what such a law would look like because frankly I'm skeptical that any net-neutrality law wouldn't just be full of vagueness, unintended consequences or be so limited as to be useless.

Just saying "make the networks fair" doesn't make a good law, but that is all I've heard from the NN people. I want to be behind NN, but I can't as long as it is so ambiguous.

Re:Define Net Neutrality

[Entropius]

Well, one way to do it:

1. No ISP shall give preferential handling to, modify, fail to deliver, or alter the content of traffic based on either its source, the protocol over which it is carried, or its content.

Exception: If a quality-of-service mechanism becomes widely used over the Internet, such as setting a time-critical flag on certain traffic (online gaming, VoIP, etc.), ISP's may give preferential handling to traffic so flagged, as long as:

a) the mechanism for requesting a higher QoS for certain traffic is widely known and available, such that anyone can use it;

b) the preferential treatment given to time-critical content is given equally to all traffic claiming to need a higher QoS without regard for its source, the protocol over which it is carried, or its content;

Exception: Traffic which is clearly and unambiguously malicious may be dropped. "Malicious", in this case, means either:

a) It is intended to interfere with the correct operation and control of the recipient's equipment, if the recipient of the traffic is a customer of the ISP. This includes, but is not limited to, denial-of-service traffic and exploit attempts. However, an ISP must honor a request in writing by a customer to cease filtering inbound malicious traffic to them.

b) It is generated by a program running without the consent of, and against the wishes of, the owner of the sending computer, if the sender is a customer of the ISP.

c) Such traffic consists of unsolicited commercial email, and the customer has requested that the ISP filter inbound email to remove spam.

Archaic Cable shared node topology is to blame

[toadlife]

Check out this article posted by George Ou at ZDNet a couple of weeks ago.

The reason Comcast is doing this is because the shared node topology of Cable can't handle all of the connection requests. Similar to a bunch of Windows 95 boxes running NETBUI on a large non-switched network, bittorrent causes a a ton of contention. The result are packet storms which end up taking everyone out.

Of course Comcast won't say, "The reason we do this is because our entire infrastructure is shit and needs to be replaced." The stockholders wouldn't like that.

Re:Archaic Cable shared node topology is to blame

[toadlife]

Ok,

From the article that I linked to that you obviously failed to read:

Cable modems have a crappy upstream protocol. When it wants to send, it sends a request to send packet to the controller, and waits for a reply that gives it a time slot. But the RTS packet is sent in a contention slot, such that any two stations sending RTS in the same cycle will collide, and then nobody gets to transmit. The more data you have queued at the cable modem, the more likely a collision.

The network is physically large, with a long propagation delay relative to the size of the collision window. And when collisions start to happen, they ripple as more and more stations have data queued for transmission. So the only way to make this protocol stable is to actively limit the amount of data queued at the cable modem for upstream delivery, and only way to do that for Torrent is to stifle connections at the TCP level. I've tried to scheme up a better way to do this, and there isn't one.

Plausible deniability?

[Futurepower(R)]

Comcast continues to deny they are blocking or discriminating with traffic. (See "Hot Topics" in the middle of the page.)

See this nonsense linked from that page:

Question: "Do you discriminate against particular types of online content?"

Answer: "No. There is no discrimination based on the type of content. Our customers enjoy unfettered access to all the content, services, and applications that the Internet has to offer. We respect our customers' privacy and we don't monitor specific customer activities on the Internet or track individual online behavior such as which Web sites they visit. Therefore, we do not know whether any individual user is visiting BitTorrent or any other site."

I guess that is called "plausible deniability". Comcast management apparently assigned that question to someone who is so ignorant that he thinks BitTorrent is only a web site, and clearly doesn't understand the issues. I suppose that later Comcast management can blame the denial on a confused lower level employee.

I was talking to a Comcast repair technician yesterday who came to replace a poor quality, non-functional cable modem. He was very uncaring. I suppose that is the Comcast culture. It must be miserable to work there.

You can't see it with Slashdot's HTML rendering, but whoever typed that reply for Comcast is back in the days of the typewriter. He or she used two spaces after every period. That made sense when all type was monospaced. I wonder if I visited Comcast headquarters, would I see horses tied outside?

First post!

[Harmonious+Botch]

I wonder if Comcast can deliver this on time...

Encrypt your P2P traffic!

[Carbon016]

This can be done in virtually all clients..for example, in uTorrent, set Encryption to "Forced" in your preferences. This isn't 100% foolproof but it seems to help a lot of Comcast users, among others with throttling and other P2P blocking measures forced on them from their ISP.

Comcast Censoring YouTube also??

[pfbram]

I'm a fan of YouTube (who isn't), but hadn't logged into my account for awhile and forgot the password when I tried commenting on a video. I had a reminder sent to my comcast e-mail account a day or two ago -- and it's been about 36 hours, and it never arrived! Assuming something was hosed with my YouTube account, I decided to create a new account, still no activation e-mail sent.

I then changed my YouTube preferences to my GMail account, and the confirmation e-mail arrived within like 2 minutes. No surprise, since Google owns both GMail and YouTube. But my curiosity was now aroused, so I changed the e-mail preferences on YouTube to my work account (I'm an open source programmer at a Big-10 university). Again, the YouTube confirmation came within like 2 minutes or so.

I logged into comcast.net under my main subscriber e-mail account today -- and deactivated ALL spam/filtering on that account. I then went back to YouTube and switched preferences back to my comcast account. It's been about 4 hours and, of course, there's been no e-mail from YouTube.

Anyone else notice this oddness between YouTube / Comcast? It irked me enough to create a little web site of it this afternoon, and post it on my blog as well (http://paulbramscher.blogspot.com/).

Re:Practices like these make me not want to give t

[merreborn]

I'm not sure comcast is *that* sad to see you go. Their entire business model is based on overselling their bandwidth. Their favorite customers are those that pay $50/mo for internet access, and then only check their email.

People like you and I, who actually use most of the bandwidth advertised, make Comcast little, if any profit. If all the heavy bittorrent users followed your example, comcast may well be able to cut their costs enough (with all the bandwidth savings, etc.) that they could stay just as profitable, if not more so.

Think about it. They're already *cutting off* subscriptions of the heaviest users -- they're obviously not concerned about losing that business.

IPsec and other stuff

[Skapare]

Use IPsec. Not only can they not tell what your packets mean (only where they are going and came from), but they cannot forge an RST since that also needs to be encrypted with the association key.

So they could do a man-in-the-middle attack on a simplistic key exchange done over IPsec. But that would require far more resources (they have to get in the middle of each connection) than they appear to be willing to use (RST forgery is about the cheapest form of net interference there is). So I think even minimal IPsec would bring this blocking to and end until such time as they want to invest in whatever it takes to mount an attack on IPsec. Then we just use a strong key infrastructure and end that.

If the protocol involved understood the work to be done (e.g. how many bytes to be transferred), it could also re-establish a new connection if the existing one got dropped, and resume the transfer ... until done or one end decides to not do this anymore.

how is this different than other big ISP's?

[NynexNinja]

All one has to do is look at the main competitor to Comcast, which is Verizon, and look at how they do the same type of stuff. They block outbound SMTP traffic except to their smtp servers...

iptables should be able to help

[Yossarian45793]

Can't you just write a iptables rule to drop RST packets destined for your bittorrent port? You could even get clever about it and drop RST packets that come out of the blue, but allow repeated RST packets to pass, so that connections that have really be reset on the far end can be closed.

Re:There is already a law to apply here....

[Secrity]

ISPs and cable TV providers in the US are not common carriers, Comcast doesn't have common carrier status. If ISPs were common carriers there would be no net neutrality issues.

I'm not terribly worried about this.

[Lunarsight]

I think capitalism will be Comcast's undoing, assuming that consumers start to get annoyed with the diminished results, and begin to express their discontent.

Other DSL providers will naturally begin try and use the fact they don't interfere with the internet as a selling point. Assuming this happens, the only places that may be affected are any in which Comcast has a monopoly by being the only source for DSL.

My only fear is other DSL providers will see that Comcast is getting away with tactics like this, and try to pull the same stunt. For that reason, I honestly hope Comcast gets sued bigtime over this. Comcast needs to be made an example out of.

NY Sec. 190.25

[Joe+U]

NY Sec. 190.25

S 190.25 Criminal impersonation in the second degree.
    A person is guilty of criminal impersonation in the second degree when
he:
    1. Impersonates another and does an act in such assumed character with
intent to obtain a benefit or to injure or defraud another; Not a real stretch. If they just enforced QoS, then it wouldn't be an issue, the issue is pretending to be the end user's system.

Re:Good for them

[Al+Dimond]

Although you're marked as a troll, you're stating the honest opinion of lots of people and the opinion that shapes policy of many companies. So I'll bite. I think your characterization of BitTorrent users, looked at by the numbers, is probably true. While there are people using torrents to distribute content that's both legal and non-commercial (Free Software, for example), it probably makes for a pretty small percentage of the total. But that doesn't matter. The Internet is a network of peers. That's how it was designed, and I believe that's how it ought to stay. The more rights to communicate are gated by money and elitist policies the fewer voices contribute. You need to pay big bucks to get a fat pipe, but you shouldn't need to pay big bucks to get all the protocols. That's what the Internet means on a technical level. If you're not selling me that, you're not selling me Internet access, you're selling me "Web and Email access". If you want to offer that as a product, go ahead. But it's *not* true Internet access.

Blocking SMTP or XYZ service kind of makes sense

[davidwr]

Blocking-by-default services which are abused by robots and which provide no value except to those who should know enough to ask for them makes a lot of sense.

These days, that's outbound mail, outbound SMB/Windows-networking, and all inbound ports other than DHCP-related ports. However, any customer who needs to should be able to log into their ISP account and say "I run IRC, turn on relevant ports," "I run eDonkey, turn on relevant ports," or "I run XYZ, turn on relevant ports" or even "I'm an expert and I'll take responsibility for my own security, remove all protection and feel free to suspend my account at the first sign that any of my computers sends more than ___ messages in ___ period of time or is otherwise causing harm."