Although not for Comcast but another major player, they likely are putting the "public" wifi on its own SSID, service-flow, and MAC/IP. This means that your modem will have a secondary data stream that can be enforced separately. About the only thing I'd be worried about is someone overwhelming the CPU as these are still underpowered home wifi devices.
True not all long-term employees are worth a damn. I'll counter your argument however that a lot of new people seem to wash out in the first 6 months at my place of work (17k employees). That's a big problem for us because in my field I expect approximately a 1 year ramp up for even the top notch talent, so if they quit or get fired before then we got 0 out of them. I suppose my case might be an outlier, but we have a pretty good reason for paying our proven talent well.
I thought it was already proven that Europeans are the ancestors of Neanderthals through DNA sequencing? And it's this very DNA responsible for a strong immune system in people with large amounts of Neanderthal DNA.
Yes and no. Cable TV (excluding the communication back to the headend for VOD or SDV) is one way. This means the traffic flows to your home. HSI is two-way communications (your both recieving and sending). So tools that can look at the downstream certainly apply to Video & HSI however return is pretty much exclusive to the HSI side.
Forgot to mention. the goal with the collection scripts is to tie them to a cron job that runs like every 5-30 mins. This makes it all automatic and and as you add new subscribers the script then auto updates your information for you.
Depends on how big you guys really are, you say small but to me a small isp is less than 50k subscribers. If you're much smaller than this then you have more options. Anyway there aren't a lot of good drop in solutions for monitoring thousands of devices unless you're planning on spending a ton of money. Easiest way to roll a cable modem monitoring system (Note: I have personal experience doing this for ~5 million subscribers) is to build a database (MySQL/etc) and then create a collection script in perl/php/other scripting language that collects your cable modem ip addresses directly from the CMTS. Your script will log directly into the cmts execute 'show cable modem' or appropriate command for the platform your using and you will log all this information into your database. Your second script will use SNMP to collect statistics from those logged cable modem ip addresses. Things you'll want to collect would be the transmit, receive, downstream snr, upstream snr, interface statistics, etc. Once you have this information then you can put together a webpage that will present the data with nice graphs that give you a good idea of what's going on. This same script can act as a monitoring system to collect modem state changes or you can use a trap system like Nagios to just catch the alarms the CMTS can be configured to kick out. Good luck!
It needs to be done on your router, or if you don't have one in front of your web site then on your service providers. ARP really doesn't apply here. (windows also supports the route command btw).
Right like I said, assuming you have more than 1 ip address. If your network is semi-distributed disabling the ip being attacked will reduce the DoS, usually enough to the point that other services function. If all you got is a single web host, then your web-presence probably isn't all that critical, and if it IS then your doing it wrong.
Null route the ip being attacked, not the ip attacking. Of course this assumes you have a network consisting of more than a single ip.
Anyway this is basically the best way to handle a DoS. Otherwise you basically need to have the bandwidth/resources to endure the attack. Many providers will allow either a remote-triggered black hole session to their BGP router or allow a burst rate above your committed bandwidth if the interface allows for it.
So a different opinion than yours is an advertisement for Apple? Lightning (in my opinion, no spin added) is a nicer connector as far as plugging things in are concerned vs micro usb. Ever fumble around trying to plug a android phone in the dark? I have because I have both an HTC Desire (loaded with cyangenmod) and a iPhone 5. So is that worth skipping usb for? Jury's out. As far as which phone I happen to prefer, well I find myself using my iPhone more but then I'm not a real geek since I've only been using linux since Slackware 3.
In short, acting like your defending your girlfriend's honor over any critcism of a product is pretty fucking lame. Appreciate tech for what it is, not a religious experience.
I have been thinking this entire thing smells like Elops entire goal was to drive stock so low that Microsoft can buyout Nokia on the cheap and have their own cell phone manufacturing division, ala Apple and now Google.
The only true finite resource in the world is time. Just because you can afford to pay 2 million programmers doesn't mean that a project that would normally take 5 years can be done in like a week.
While voice narration/navigation has been available for years I'd describe the results as lukewarm. SIRI appears to be a leap forward in terms of both recognition and the tasks it can actually perform. It is really pretty cool.
Temporary workers always make more money per hour than those doing it full time, its the trade off for the convience of having an on demand workforce.
It's also very misleading to go strictly off per hour wage when your not including the total compansation package into the mix. Full-time employees will get PTO, insurance, 401k/pensions, etc. That isn't a small chunk of change.
Slashdot Mirror
Although not for Comcast but another major player, they likely are putting the "public" wifi on its own SSID, service-flow, and MAC/IP. This means that your modem will have a secondary data stream that can be enforced separately. About the only thing I'd be worried about is someone overwhelming the CPU as these are still underpowered home wifi devices.
The road to Hell is lined with good intentions.
http://slashdot.org/comments.pl?sid=2915925&cid=40323987
This is completely wrong, the App store has scripting interpreter's available.
I don't think GC would appreciate being associated with this unless it was to make fun of the people that are using it.
Google Delete
True not all long-term employees are worth a damn. I'll counter your argument however that a lot of new people seem to wash out in the first 6 months at my place of work (17k employees). That's a big problem for us because in my field I expect approximately a 1 year ramp up for even the top notch talent, so if they quit or get fired before then we got 0 out of them. I suppose my case might be an outlier, but we have a pretty good reason for paying our proven talent well.
I thought it was already proven that Europeans are the ancestors of Neanderthals through DNA sequencing? And it's this very DNA responsible for a strong immune system in people with large amounts of Neanderthal DNA.
http://www.pbs.org/wgbh/nova/ancient/secrets-viking-sword.html
Yes and no. Cable TV (excluding the communication back to the headend for VOD or SDV) is one way. This means the traffic flows to your home. HSI is two-way communications (your both recieving and sending). So tools that can look at the downstream certainly apply to Video & HSI however return is pretty much exclusive to the HSI side.
Forgot to mention. the goal with the collection scripts is to tie them to a cron job that runs like every 5-30 mins. This makes it all automatic and and as you add new subscribers the script then auto updates your information for you.
Depends on how big you guys really are, you say small but to me a small isp is less than 50k subscribers. If you're much smaller than this then you have more options. Anyway there aren't a lot of good drop in solutions for monitoring thousands of devices unless you're planning on spending a ton of money. Easiest way to roll a cable modem monitoring system (Note: I have personal experience doing this for ~5 million subscribers) is to build a database (MySQL/etc) and then create a collection script in perl/php/other scripting language that collects your cable modem ip addresses directly from the CMTS. Your script will log directly into the cmts execute 'show cable modem' or appropriate command for the platform your using and you will log all this information into your database. Your second script will use SNMP to collect statistics from those logged cable modem ip addresses. Things you'll want to collect would be the transmit, receive, downstream snr, upstream snr, interface statistics, etc. Once you have this information then you can put together a webpage that will present the data with nice graphs that give you a good idea of what's going on. This same script can act as a monitoring system to collect modem state changes or you can use a trap system like Nagios to just catch the alarms the CMTS can be configured to kick out. Good luck!
It needs to be done on your router, or if you don't have one in front of your web site then on your service providers. ARP really doesn't apply here. (windows also supports the route command btw).
Right like I said, assuming you have more than 1 ip address. If your network is semi-distributed disabling the ip being attacked will reduce the DoS, usually enough to the point that other services function. If all you got is a single web host, then your web-presence probably isn't all that critical, and if it IS then your doing it wrong.
Null route the ip being attacked, not the ip attacking. Of course this assumes you have a network consisting of more than a single ip. Anyway this is basically the best way to handle a DoS. Otherwise you basically need to have the bandwidth/resources to endure the attack. Many providers will allow either a remote-triggered black hole session to their BGP router or allow a burst rate above your committed bandwidth if the interface allows for it.
Amen.
So a different opinion than yours is an advertisement for Apple? Lightning (in my opinion, no spin added) is a nicer connector as far as plugging things in are concerned vs micro usb. Ever fumble around trying to plug a android phone in the dark? I have because I have both an HTC Desire (loaded with cyangenmod) and a iPhone 5. So is that worth skipping usb for? Jury's out. As far as which phone I happen to prefer, well I find myself using my iPhone more but then I'm not a real geek since I've only been using linux since Slackware 3. In short, acting like your defending your girlfriend's honor over any critcism of a product is pretty fucking lame. Appreciate tech for what it is, not a religious experience.
I took a dump today.. Seriously this is just attention seeking, link bait. If I didn't know better I'd think it was a paid /. add.
Then it would of been in warranty and they would of serviced it for free, unless of course you bought it used and it wasn't really only 7 months old.
I have been thinking this entire thing smells like Elops entire goal was to drive stock so low that Microsoft can buyout Nokia on the cheap and have their own cell phone manufacturing division, ala Apple and now Google.
having your machines infected with the virus or having spent money on a HP layer 3 switch.
Well 4gs was announced more than 2 weeks ago were's the competition?
The only true finite resource in the world is time. Just because you can afford to pay 2 million programmers doesn't mean that a project that would normally take 5 years can be done in like a week. While voice narration/navigation has been available for years I'd describe the results as lukewarm. SIRI appears to be a leap forward in terms of both recognition and the tasks it can actually perform. It is really pretty cool.
I got my popcorn ready to read the comments in this thread. Let the Apple bashing commence!
Temporary workers always make more money per hour than those doing it full time, its the trade off for the convience of having an on demand workforce. It's also very misleading to go strictly off per hour wage when your not including the total compansation package into the mix. Full-time employees will get PTO, insurance, 401k/pensions, etc. That isn't a small chunk of change.