Slashdot Mirror
EFF Slams Google Fiber For Banning Servers On Its Network
MojoKid writes "Anyone who has tried to host their own website from home likely knows all-too-well the hassles that ISPs can cause. Simply put, ISPs generally don't want you to do that, preferring you to move up to a business package (aka: more expensive). Not surprisingly, the EFF doesn't like these rules, which seem to exist only to upsell you a product. The problem, though, is that all ISPs are deliberately vague about what qualifies as a 'server.' Admittedly, when I hear the word 'server,' I think of a Web server, one that delivers a webpage when accessed. The issue is that servers exist in many different forms, so to target specific servers 'just because' is ridiculous (and really, it is). Torrent clients, for example, act as servers (and clients), sometimes resulting in a hundred or more connections being established between you and available peers. With a large number of connections like that being allowed, why would a Web server be classified any different? Those who torrent a lot are very likely to be using more ISP resources than those running websites from their home — yet for some reason, ISPs force you into a bigger package when that's the kind of server you want to run. We'll have to wait and see if EFF's movement will cause any ISP to change. Of all of them, you'd think it would have been Google to finally shake things up."
Who cares if it's Torrents or running your own porn site. Don't block it. Be the non-evil medium of transport, not another Comcrap.
There may be no "I" in team, but there's also no "F" in way.
"Of all of them, you'd think it would have been Google to finally shake things up"
Maybe when the do no evil line seemed to ring true, now they seem nearly as evil as the rest around.
Does Google offer a business package? If so what is the cost?
Yes, running a server from a home ISP is great for people to learn technology, sparks creativity, and is great for those of us who are IT focused. On the other hand, imagine the security nightmare a network like Google Fiber could become with 1gb uplinks and tons of rogue apps and sites infected by malware, bots, etc. There are a lot of IT admins not taking security seriously and if you couple that with inexperienced home admins the threat is real. I'm not taking a stance on this issue saying yes or no, but there would have to be tight controls on the network in order for this to work effectively - hence one of the reasons Google may be reluctant to support it.
A server is something that serves data. If it responds to a request for data, that makes it a server.
Does your IP address have ports mapped open for games or other products? It is a server!
Does your IP address respond to ping requests? It is a server!
Does your IP address respond to ANY inbound connection? It is a server!
An ourtright ban on servers does not make sense. It breaks the Internet. Bandwidth limits might make sense in some scenarios, but not in this case for fiber-to-the-home. If the data needed to travel through their servers and other equipment a cap could be potentially justified in not saturating their equipment. But for fiber to the home where the other end is connected to internet backbones, the ISP doesn't bear any traffic so bandwidth limits are nonsense and profiteering.
//TODO: Think of witty sig statement
I can live with not running a business off my consumer internet connection but I am mad as hell that I can't run my own mail server.
At this point one wonders if the NSA is involved....
It's very simple. If it's a 'server' that can generate revenue then they want their share.
You can't charge bittorrent clients you are seeding to but you can take credit card numbers, paypal donations, and bitcoins through a web page.
Remember to always follow the godforsaken $$$ whenever you want an answer to anything even remotely related to business.
It's not hard, really.
If you're using the service more, you should expect to pay more. Otherwise, the little guys end up subsidizing your bandwidth hogging ways... rather than the other way around, where the big data guys pay more, and the little data using guys pay less. You expect that with almost every known business transaction.... get off your wallet and pay the extra cash for a business account... (I have Comcast business level internet for an extra $50/mo and I have 30Mbps upload... a terrific deal that I don't expect the little lady down the street to subsidize.)
Your choice. Other people have other reasons to make other choices. The question here is not, "why run a WWW server at home?" but, "why prohibit people from running servers at home?"
Mike O'Donnell http://people.cs.uchicago.edu/~odonnell/
Because.
I wanna run a server at home.
I don't wanna pay $4/month more.
I want to run some non-standard OS.
I want to test my custom hardware.
I want to connect my server to my lights.
What do you care why?
Fuckheads addicted to high volume piracy, plains and simple.. multiple order of magnitude more bandwidth than anything..
also, the brainwashed people who believe corporate announcements...
First of all, if they didn't want anyone using "orders of magnitude" more bandwidth, then the solution is simple: do not sell unlimited plans! Advertise it as X-GB plans and charge people extra for going over. But they prefer to advertise it as "unlimited" because the commercials have a better jingle to them (vs "200-GB a month plan").
Second, today anyone with active Netflix/Hulu/streaming accounts can easily use a lot of bandwidth without any pirating whatsoever. And these people will be targeted just as much as anyone else. Your average obnoxious webpage without flashblock/adblock will start playing 3-4 decent quality videos and blaring sound! I am sure that uses a lot of bandwidth
So bottom line, let them advertise exactly what they sell and life will be fair once again. But none of this "people who use too much bandwidth will be throttled/kicked-off, but won't tell you what 'too much' is, because that will ruin the surprise"
I run a server at home because I don't just want web hosting. I want file hosting, email, remote desktop, music and video streaming, video games, and IRC to boot... And I want to access much of that from my home at the same time, and manage it the way I want and upgrade it when I want.
I did once price out what I'd be spending on Amazon to get close to my needs, and it came out to a couple hundred dollars per month. It's cheaper for me to just buy a server and rent space in a data center... and cheaper still for me to run it at home.
You do not have a moral or legal right to do absolutely anything you want.
Well, it is obvious that Google Fiber doesn't want to allow people to host their own server parks behind that really fast broadband line. (I can understand that.)
I reckon that personal servers (like a Network Attached Storage (NAS) device with files for oneself and friends) is OK for Google, but hosting a high traffic business website is not.
well what are they selling then exactly? write some goddamn rules down about it. tell the users of the service the goddamn rules!how many megabytes daily is too much? that's what it's all about in the end. if it's an income generating rule then tell that(if you're making money with the connection).
a fileserver for a few friends can take EASILY the same amount of traffic as a general web service that has let's say 300 daily users.
world was created 5 seconds before this post as it is.
"Admittedly, when I hear the word 'server,' I think of a Web server"
Sad, eh? Because the WWW is the end-all, be-all of the entire internet. Ports 80 and 443 are all you need to know!
Shutting down free speech with violence isn't fighting fascism. It IS fascism!
Here at Slashdot, we take pride in our relatively-uncensored publication practices. We rely on the public moderators to appropriately judge the value of comments, and accordingly hide spam comments from most viewers. Spam stories, however, are given free reign over the front page.
You do not have a moral or legal right to do absolutely anything you want.
Google Fiber Server Neutrality Violation Being Overblown
In short, Google isn't doing anything that the other ISPs aren't doing (it's not like there's any indication that they will actually enforce the ban), and the reason the language is there is that Google will likely roll out a business package in the future.
You seem to have missed the point entirely. Google, like every ISP, is selling something that they claim is "unlimited," but that claim is 100% bogus.
The issue isn't that the EFF wants the government to tell Google what they can and can't offer, it's that Google (and other ISPs) need to be honest about what they're selling.
There's no -1 for "I don't get it."
When they started this whole fiber deal, Google clearly stated that they had no idea what people might use this bandwidth for. They said it was an experiment to see what creative uses people might find for it. This policy clearly goes against that statement. As someone who will have Google Fiber available in the next couple months, this is frustrating. I am a "tinkerer/pseudo hacker", and that means sometimes running an internet facing server of some sort for pure nerd learning purposes. Sigh...
Brought to you by Carl's Junior.
My opinion is that it makes sense for default settings (protecting those inadvertently sharing, preventing a trojan from starting up a common service or opening VNC to the world, etc etc), but a customer should be able to call in and ask that they be exempted from those restrictions. I do understand also non-commercial stipulations and am fine with that too.. but I should never have to wonder if, as a customer, I'm violating my ToS by having SSH and a VPN service sitting on my connection.. it's one of those things where even unenforced it can be used as means for termination and whatnot.
Screw whatever karma points I'm not going to get...I have nothing too insightful to say on this matter; but i'm going to talk anyway.
I, too, feel it's a trumped up way of making customers pay for a higher tier. I too wonder why they specifically are targeting web-servers than anything else. One part of me wants to say it's a "public" vs "private" aspect. Look at a device like a Slingbox for example. When you get down to it; it's a server. It's a little device that sends data over the internet. At the same time; it's "hidden" and not publically accessible. You need two individual logins to be able to connect to it; one for the slingbox website; another for the slingbox itself. It's not like *anyone* can drive by my IP and go "I think i'll stream some video". I don't know of a single ISP that's had issue with this. I'm sure there's a few people with google fiber running one. Verizon has never taken an attempt to block mine. or tell me I needed to stop running it. Hell, having this insane amount of bandwidth is what made me invest in one in the first place. Same goes for my remote SSH access. Yeah; that's a server alright; but again, it's not a "public" thing...and mine isn't even on a standard port. So, maybe there's a distinction between a "public" server; like an httpd; and "private" servers like SSH, games, torrents; etc. I run a VPN on my network...and that's not even raised any eyebrows by my ISP...and within that VPN I've got access to any server running on my LAN. Again, this is what leads me to believe they make a distinction between public servers pumping out data to everyone; and private servers that "just happen to use your residential" account.
But, let me focus on Verizon for just another minute; since it's the only ISP I've used for the last 11 years (12 if you count the year my DSL was technically GTEi). My original DSL TOS was on like...a 4"x4" leaflet...and said *nothing* about servers. I read that tiny piece of paper three or four times.....GTE (this was before they completely merged the networks sometime in '02) didn't care if you ran a server on your DSL. Therefore; I did. In fact, I ran a server a large majority of the time I was on a DSL connection. Verizon never blocked port 80....and I don't think they even scanned. Oddly enough; the only port they blocked was 25. It was for trying to reduce the amount of spam people's PCs were sending out; and they gave a TON of notice about it. I didn't have a business account...they probably didn't have to tell me; but they did. They even called me to make sure I knew about the upcoming block on incoming port 25. I ran web-servers; ftp; ssh; shoutcast, even an ircd; never had Verizon "get after me" or block any ports.
Ok, granted FiOS isn't offering a 1gpbs plan yet; and I don't know what ever happened to XG-PON...but even now, they don't forcibly prevent you from running a server by blocking ports. A buddy of mine up in MA has a residential FiOS account and has been running an httpd for who knows how long. I've tried running services that are public on standard ports and never had an issue.
There's...a lot I don' t know about how they handle; or even if they check. If google's blocking port 80 incomming (which is what I gathered from some of the comments); then how is it Verizon...whose been called extremely evil...not?
Maybe part of it is the "old" way of thinking it seems tech companies don't want to shake. Maybe they're lumping *anyone* who runs a server as a business; completely shunning the fact a home user might want to run a server as a hobby.
Isp's care about uploads since it costs them money to send data to another network operator
If transit cost is the problem, then why not just offer users something like "250 GB download and 25 GB upload allowance per month"? That'd solve the bandwidth problem while still allowing low-bandwidth hobby servers.
Agreed and I'd like to expand on the "test my custom" to "everything."
At work I run and admin web servers, mostly Apache. I choose Apache because I have the most experience with it and have developed a feeling for how much I can trust various configurations. I don't have that level of experience with Nginx. However, I like Nginx better and feel like it would be better suited to meeting our business needs. So I need to spend a couple years getting better aquainted with Nginx, what can go wrong, how they find and handle security issues, how quickly patches come out, how easy it is to handle stop-gap measures, etc.
I can only do that somewhat freely at work because there are different restrictions on what I can do with machines at work and what I'm willing to have fail at work. If I can run Nginx at home for a couple years, I don't have those restrictions. It's hardly reasonable to consider my hobby tinkering a business and unreasonable for me to have to upgrade to a business class service just to give me the ability to ensure I understand how to configure the hardware, software and services I am trying to learn.
I tried FreeBSD for a while at home. I absoutely love some aspects of it. After a couple years, I decided I didn't like the upgrade cycle, but I didn't learn that at work and shouldn't have to. I tried OpenBSD too and discovered some drivers didn't like some of the hardware I was using and that would have been a misuse of my time to discover at work since they don't pay me to play around learning new stuff. I'm a better admin professionally because of my hobby experience at home.
I too had to ask and answer "what is a server?" I have an old Cisco router a couple switches and a 1U server with no onboard hard disk. The Ciscos have built in telnet and web server interfaces. Even my wifi router has an onboard web server for configuation. Surely they wouldn't consider the Ciscos and wifi router servers? Of course not. The 1U dell needs a tftp server to function and can run various systems but none of them necessariy have to offer externally available software servers of any sort. That doesn't sound like a server to me either. In the end, I try to keep my homework limited to a couple things I'm tinkering with and not offer anything the general public might be interested in from my home connection and I believe I'm operating within the spirit of the rules. That doesn't stop me from wishing that the rules were actually more clearly established along reasonable lines. As an admin of a network myself, I believe that it is my job to ensure not only that we have clear rules about what is allowed and what isn't but also to ensure that dangerous or abusive use is curtailed by technology, not a "you find out that you broke the rules only after you've gone far enough to be punished" approach.
B) Eliminate all the stupid users. This is frowned upon by society.
I get your point that for the majority of people it's not worth your time to setup a web server when a thousand providers offer good service for the price of a specialty coffee. But, when I was 16 I wanted to learn about the WWW, Linux, and CGI, and a local web server with Perl let me host some friend's sites. Nowadays I still have a web server at home plus three racks in our DC for projects.
Controlling your hardware and OS is a good learning environment, plus complete control over things that might cost way more than $4/mo. I learned a lot about tweaking hardware and network security by having to do it early on. Today I use a home web server for some automation projects whose hardware needs physical access to the devices it manages.
So, in short, lots of reasons to host at home. Not even high-bandwidth-for-cheap ones.
--- Need web hosting?
Then they misunderstand. The reason why ISPs block port 80 incoming is not to block "servers" primarily to up-charge people. It's done to protect the internet from XP zombies which serve up ads. My ISP (cox) doesn't charge more for a business account than it does for a personal one. The need to specifically ask for a business account with no port blocking is there to ensure responsibility with viruses.
because people will go over the limit and complain and say its not their fault. the cell phone carriers had this problem when minutes were rationed out on plans long ago
Even though cellular voice and text have tended toward unlimited on contract plans, satellite and cellular carriers still cap each subscriber's data transfer, usually at single-digit GB per month.
it is cheaper to sell unlimited plans and set rules limiting what you can do with a consumer plan
The problem is the insinuation that everyone who's not a business should resign himself to "consuming" works created by others. Perhaps the solution is a "hobbyist producer" tier between "consumer" and business, much as PayPal has the "premier" tier.
In fact the Internet, as originally envisioned, hasn't existed for some years now and may never exist again. It's not just that ISPs are forbidding servers, it's that their asymmetric I/O speeds combined with network-address translation fundamentally changed the game from a peer to peer network to a producer/consumer network. The only way to serve up your own content right now is to buy server in a data center, or use an existing service. Just to route around the fundamental brokenness of our modern-day internet, I have to buy a VPS, which is run by a company that pays the big network providers big bucks for peering. Pretty depressing, really.
I wonder how a transition to IPv6 will change all this. Will all ISPs simply assign non-routeable addresses?
You just need written permission from Google.
Unless you have evidence that Google actually ever blocked a server on their Google Fiber network the "banning servers on its network" headline is bogus. I do not know that such a thing has ever happened, nor ever will. The terms of service don't even actually prohibit it. They only discourage it.
The terms do not say "will not". Nor "may not". Nor "must not". Nor "it is a network security violation to", like everybody else. They say "should not", which any kid you know will tell you is code for "you can, you might, and you may, but I'd rather you didn't."
Once upon a time EFF reps could read.
Help stamp out iliturcy.
"Should not" is only a line in a config script away from "blocked."
The point is that no ISP, least of all Google, should be taking this position. The terms "server" and "client" really just describe the instigator and direction of traffic flow. You start restricting that, the internet further degenerates into consumer and producer classes and becomes cable TV. *shudder*
See why this is a net neutrality issue here?
Not "any trouble at all"
Google is delivering more bandwidth to the KC area than the entire rest of the US Internet combined. That is potentially a problem if all the people so enabled are rude. It's not a matter of them beating down subscribers, it's about not breaking the whole Internet. Having Gigabit Internet is a dire responsibility as a home user. You can't just fire up wget on your favorite site, even /., without crashing it unless you rate limit. You "should not" do that. To most sites ONE user with a gigabit connect and an itchy click finger looks like a denial of service attack. A whole city full looks like a DDOS.
Google is bringing end users into a new era one city at a time, but they understand that most of the Internet is built on legacy tech that can't handle this.
Help stamp out iliturcy.
Google was born out of net neutrality, and now that they've grown into a position of power, they suddendly find themselves against it. What specific words they chose to use has only a secondary importance. The decision they've made is political: you can only be in favour or against net neutrality, and they chose to be against. They don't want you to choose what to do with your internet connection. They want to be in control. In geekspeak, they're evil.
Words mean things, and in this case they don't mean the things you say they do.
Thank god vocabularies exist.
You are trying to find a way to paint Google "evil".
I speak concepts, and I do not question other people's motivations. The image of Google is painted by none other but Google themselves, with the actions they choose to take. You can't have a cake and eat it too.
You are playing to your audience alone. Actually, the further out there you guys go with the tinfoil hat thing the less credible you are.
Yes, resorting to personal attacks is the best-known sign of having good points.
disclaimer: complainant here: The terms say "prohibited". Look it up.
That's an argument for them banning clients, not servers.
Watch this Heartland Institute video
Hmmm, spend $15k on a Carrier-grade NAT to save 10gb/s of bandwidth or spend $10k to get another 10gb/s of bandwidth.
Which one is the recurring fee and which one is the one-time fee?
They become more capable in what interests them.
Tell me - would you want to be "more capable" by learning to read literature? History? Arts? These make you "more capable" in being able to appreciate the world. Or perhaps accounting. Or law (since we can't eve seem to get basic IP law of trademarks, copyright and patents (design and novelty) straight). Or have we gotten to naÃve to think that we know it all? (Given the level of commentary on /.). Or hell, what about mere basic spelling? Or about such niceties as etiquette? (How much are complementary studies courses hated as a "waste of time" when pursuing a degree?).
The thing is - the world is complex. There's way more to learn than one could ever know. And rather than try to learn it all, we specialize. We know IT inside and out (and not all of it - some know how to admin servers, others know how to write an OS, others still write applications that run on top, etc., including databases, web sites, etc.). Then there's designers, blah blah blah.
Well, other people don't care about computers. Being a modern world, you can't AVOID using a computer - there will always be useful websites on your choice of interest for which you can learn, and the Internet took off because no one needed to know how networks, TCP/IP, OSes, etc., worked, and it grew into this whole place where everyone can share information from computers to guns to cars to furries and porn.
The computer is a tool. The vast majority of people see it as a convenient way to access the internet, gather information, share information, keep in touch with family, friends and relatives, etc. It is to many like the car, or telephone, or television - they don't care how it works, just that it works and it enables them to go about their day. They don't care how a car works, they just twist the key and turn the wheel to arrive at their destination. They don't care how the phone works, the basics of circuit switching (or virtual circuits) or ODFM modulation, they just punch a few numbers and in a few seconds, they're talking with someone who can be next door or around the world. Likewise, they don't care about bits or bytes, what CSMA/CD does, or what QAM is - they know they can click an icon, and start perusing information they want to know, or to make contact with someone, etc.
The vast majority of people do not care to learn how to set up a web server just to put a few photos online - they'll use facebook, flickr, picasa or other service. Or if they want to write, they'll go open a Blogger account with Google. Some may want to go into business and create a website - you can do that to without knowing how HTTP works - just purchase some web hosting service, upload a few web pages, and enjoy. None of them need to know how to write an httpd.conf file, what /etc/init.d/httpd does, firewall configuration, etc.
And to be honest, if they had to know it, they'd go "cool" and end up doing things the old way that they always had because they can concentrate on getting stuff done, and not learning unrelated crap just to get stuff done.
That's why smartphones, tablets and consoles are popular - they're good at the "get your stuff done" part and hiding away the crap people don't care about.
And hell, let's say you wanted to learn Linux, so you install Ubuntu, open port 80 on your firewall, and put up some websites. Oh wait, your Linux box suddenly got compromised by some PHP bug and is now uploading at gigabit speeds. Of course, you don't know enough Linux to fix it, your websites are still working and you don't want to take those down (or you copy your stuff off, reinstall, put it back, get infected again...).
I think there is a lot to be said for running your own email server to avoid the warrantless dragnet of stored emails at major ISP's. (assuming the ISP's will pass the port 25 traffic along)
Maybe the fiber taps at all the US based network exchange points makes running your own email server less of a defense, but at least the ISP's would not have the ability to turn over your emails all tied up with a bow.
Make the spooks work for their packets!