For some time I've pondered the ways to stop DDoS.
Couldn't you write a program that scans each incoming packet and keeps statistics. Won't DDoS packets come far more frequently from a given source?
Is there a way to avoid spoofed packets by making sure you can reply to the source first? Shouldn't current protocols be designed to avoid spoofing? Or is it more fundamental (e.g. spoofing must be solved at a lower layer in the networking model)?
Where are the machines these attacks originate from located? Can't we get their ISPs to get rid of them, or ban ISPs that are known to be bad?
This might be down-modded by Google-fanboys, but it needs to be said: Google has had something like this coming.
As a customer both of Google AdSense and Google AdWords, I have been victim of many of Google's own anti-competitive and censorship policies.
First, if your webpage contains keywords like "war" or "suicide" (as any news page will sometimes) Google will not serve your site paying ads but will serve you Public Service Announcements (PSAs) about saving Gorillas and stuff like that. By Google's own criterion, they wouldn't sponsor news.google.com or the NY Times, except, well, they do. If your money is big enough then it's kay; only smaller sights are oppressed. They have revoked supporting non-PSAs at the recently slashdotted News for Christians site Good Fig:
They stopped mainly because Good Fig covers things like the Isreali-Palestinian situation (war), the COPA (the keyword "pornography"), a sex-abuse victim reconciliation study (the keyword "sex"), etc. There also is a story reported here that Google wouldn't allow Valley Firearms LLC or any other firearms retailer to advertise their firearms, while Google will advertise porn links that are only 2 clicks away from ultra-explicit material.
Google wouldn't support paying ads for Slashdot unless Slashdot had big enough money (which they might), because Slashdot covers stories involving the keywords "sex", "pornography", etc., etc.
Next, using Google AdWords I had a click-through-rate (CTR) of 0.6% with an average position of 4-5 while Google requires 0.5% for the top spot so I was doing fine---until Google ran my ad on "content focused" sites and got me a "content focused" CTR of 0.1% and are now trying to charge me a $5 "full-restore" fee for my "underperforming keywords/ads." One of the "content-focused" sites was Amazon.com and they ran my ad on a few book pages where you have to scroll way down and read the "You might also be interested in.." section. Like anyone will ever read that.
So, Google's search page rules and they have some of the best and brightest technical minds working for them; however, when it comes to the money-people Google has hired to direct policy and manage how AdWords and AdSense work, they have some clear issues....
I presume this post will be down-modded, but the question needs asking.
This is an interesting story, but I don't see why it is "News for Nerds." It's interesting news for Americans; it's news of such great interest to Christians that I've even submitted it to the new Good Fig site which is a News for Christians site that follows the Slashdot format:
The article didn't say exactly how great the reduction was. If they didn't explicitly mention the magnitude of the reduction then it couldn't have been that spectacular. Looks like they want publicity that they've had some (small) initial success so they can get more funding.
Anyways, jet engines with the thrust to get these craft supersonic have supersonic exhaust and are extremely loud anyways. A jet engine is a standard measurement when discussing/teaching what sound decibels are. A jet engine is way louder than the loudest rock concert. It's usually the loudest thing on such comparitive decibel scales. Even if the aircraft could be made silent, the engine couldn't.
I'm developing a high volume, high availability site where SELECT speed and scalability are very important. I originally investigated Postgres because it supposedly uses less locking than MySQL does (when using the InnoDB transactional tables) but I decided against Postgres because of lack of a free replication solution. It would be easier to do a huge, multi-server site like Hotmail, Ebay, finance.yahoo.com, etc. if you have replication.
I'm now wondering if I should make the switch to Postgres. Where are some of the most recent, reliable benchmarks for MySQL vs. Postgres SELECT performance using transactional tables for typical web applications?
Also, I'm using some MySQL specific features like AUTOINCREMENT. Is the Postgres trick to doing AUTOINCREMENT just as fast as MySQL (or fast enough, anyways)?
Does Postgres have something like MySQL's convenience variables?
I think I might be much happier with Postgres's feature richness if I can learn more about it . . ..
So all the generations from Abraham to David are fourteen generations; and from David until the carrying away into Babylon are fourteen generations; and from the carrying away into Babylon unto Christ are fourteen generations.
Mathew 1:17
Alright, there's a Linux version, so is there a Mac OS X version?
I have some experience doing OpenGL both with Linux and with Mac OS X, and if they could get it working on Linux then they should definitely have an easy time getting it to work on OS X. Under Linux it's tricky to switch to fullscreen under X11 in a robust fashion: in a fashion that doesn't leave your WindowMaker dock or GNOME panel still showing. The last time I tried to do it with SDL the sample didn't work. Also, under Linux you of course can't programmatically change the display adapter's mode unless the end-user explicitly puts the mode in their/etc/X11/XF86Config-4 or whatever.
Let's not even get started with the state of programming decent sound on Linux....
Under OS X there are easy, supported ways to get fullscreen OpenGL modes, switch the display mode, and program great sound. You can find samples at Apple's developer site.
Whenever I try to copy a DVD to my Mac's disk and then open the VIDEO_TS folder on the disk I just get garbled, mostly black video and broken sound unless the DVD is also in the drive. I figure it's some sort of protection....
Slashdot Mirror
For some time I've pondered the ways to stop DDoS.
Couldn't you write a program that scans each incoming packet and keeps statistics. Won't DDoS packets come far more frequently from a given source?
Is there a way to avoid spoofed packets by making sure you can reply to the source first? Shouldn't current protocols be designed to avoid spoofing? Or is it more fundamental (e.g. spoofing must be solved at a lower layer in the networking model)?
Where are the machines these attacks originate from located? Can't we get their ISPs to get rid of them, or ban ISPs that are known to be bad?
This might be down-modded by Google-fanboys, but it needs to be said: Google has had something like this coming.
As a customer both of Google AdSense and Google AdWords, I have been victim of many of Google's own anti-competitive and censorship policies.
First, if your webpage contains keywords like "war" or "suicide" (as any news page will sometimes) Google will not serve your site paying ads but will serve you Public Service Announcements (PSAs) about saving Gorillas and stuff like that. By Google's own criterion, they wouldn't sponsor news.google.com or the NY Times, except, well, they do. If your money is big enough then it's kay; only smaller sights are oppressed. They have revoked supporting non-PSAs at the recently slashdotted News for Christians site Good Fig:
http://www.goodfig.org
They stopped mainly because Good Fig covers things like the Isreali-Palestinian situation (war), the COPA (the keyword "pornography"), a sex-abuse victim reconciliation study (the keyword "sex"), etc. There also is a story reported here that Google wouldn't allow Valley Firearms LLC or any other firearms retailer to advertise their firearms, while Google will advertise porn links that are only 2 clicks away from ultra-explicit material.
Google wouldn't support paying ads for Slashdot unless Slashdot had big enough money (which they might), because Slashdot covers stories involving the keywords "sex", "pornography", etc., etc.
Next, using Google AdWords I had a click-through-rate (CTR) of 0.6% with an average position of 4-5 while Google requires 0.5% for the top spot so I was doing fine---until Google ran my ad on "content focused" sites and got me a "content focused" CTR of 0.1% and are now trying to charge me a $5 "full-restore" fee for my "underperforming keywords/ads." One of the "content-focused" sites was Amazon.com and they ran my ad on a few book pages where you have to scroll way down and read the "You might also be interested in.." section. Like anyone will ever read that.
So, Google's search page rules and they have some of the best and brightest technical minds working for them; however, when it comes to the money-people Google has hired to direct policy and manage how AdWords and AdSense work, they have some clear issues....
One wonders why it took them so long.
One wonders even more why Western European nations like Great Britain were beaten by the Chinese.
One wonders why the Russians even beat us to the punch in the first place, when we supposedly got the better German rocket-engineers from WWII.
///
Good Fig - News for Christians.
http://www.goodfig.org
I presume this post will be down-modded, but the question needs asking.
This is an interesting story, but I don't see why it is "News for Nerds." It's interesting news for Americans; it's news of such great interest to Christians that I've even submitted it to the new Good Fig site which is a News for Christians site that follows the Slashdot format:
http://www.goodfig.org
It's interesting that one of the most highly discussed Slashdot articles of all time isn't entirely topical.
The article didn't say exactly how great the reduction was. If they didn't explicitly mention the magnitude of the reduction then it couldn't have been that spectacular. Looks like they want publicity that they've had some (small) initial success so they can get more funding.
Anyways, jet engines with the thrust to get these craft supersonic have supersonic exhaust and are extremely loud anyways. A jet engine is a standard measurement when discussing/teaching what sound decibels are. A jet engine is way louder than the loudest rock concert. It's usually the loudest thing on such comparitive decibel scales. Even if the aircraft could be made silent, the engine couldn't.
I'm developing a high volume, high availability site where SELECT speed and scalability are very important. I originally investigated Postgres because it supposedly uses less locking than MySQL does (when using the InnoDB transactional tables) but I decided against Postgres because of lack of a free replication solution. It would be easier to do a huge, multi-server site like Hotmail, Ebay, finance.yahoo.com, etc. if you have replication.
I'm now wondering if I should make the switch to Postgres. Where are some of the most recent, reliable benchmarks for MySQL vs. Postgres SELECT performance using transactional tables for typical web applications?
Also, I'm using some MySQL specific features like AUTOINCREMENT. Is the Postgres trick to doing AUTOINCREMENT just as fast as MySQL (or fast enough, anyways)?
Does Postgres have something like MySQL's convenience variables?
I think I might be much happier with Postgres's feature richness if I can learn more about it . . . .
Alright, there's a Linux version, so is there a Mac OS X version?
I have some experience doing OpenGL both with Linux and with Mac OS X, and if they could get it working on Linux then they should definitely have an easy time getting it to work on OS X. Under Linux it's tricky to switch to fullscreen under X11 in a robust fashion: in a fashion that doesn't leave your WindowMaker dock or GNOME panel still showing. The last time I tried to do it with SDL the sample didn't work. Also, under Linux you of course can't programmatically change the display adapter's mode unless the end-user explicitly puts the mode in their /etc/X11/XF86Config-4 or whatever.
Let's not even get started with the state of programming decent sound on Linux....
Under OS X there are easy, supported ways to get fullscreen OpenGL modes, switch the display mode, and program great sound. You can find samples at Apple's developer site.
Whenever I try to copy a DVD to my Mac's disk and then open the VIDEO_TS folder on the disk I just get garbled, mostly black video and broken sound unless the DVD is also in the drive. I figure it's some sort of protection....