Forgot your password?
typodupeerror

Please create an account to participate in the Slashdot moderation system

Networking

Ask Slashdot: Advice On Building a Firewall With VPN Capabilities? 234

Posted by timothy
from the thick-pipes-and-sturdy-valves dept.
An anonymous reader writes "I currently connect to the internet via a standard router, but I'm looking at bulking up security. Could people provide their experiences with setting up a dedicated firewall machine with VPN capabilities? I am a novice at Linux/BSD, so would appreciate pointers at solutions that require relatively little tweaking. Hardware-wise, I have built PC's, so I'm comfortable with sourcing components and assembling into a case. The setup would reside in my living room, so a quiet solution is required. The firewall would handle home browsing and torrenting traffic. Some of the questions knocking around in my head: 1. Pros and cons of buying an off-the-shelf solution versus building a quiet PC-based solution? 2. Software- versus hardware-based encryption — pros and cons? 3. What are minimum requirements to run a VPN? 4. Which OS to go for? 5. What other security software should I include for maximum protection? I am thinking of anti-virus solutions."
Networking

Device Boots Drones, Google Glass Off Wi-Fi 184

Posted by Soulskill
from the they-don't-want-your-kind-around-here dept.
An anonymous reader writes: Amid the backlash against spy-eye drones as well as wearable cameras like Google Glass, one company is building a device to fight back. The Cyborg Unplug actively scans for drones or Google Glass on a local wireless network and blocks their traffic. They're billing it as an "anti-surveillance system" and marketing it toward businesses, restaurants, and schools. They take pains to note that it's not a jammer, instead sending copies of a de-authentication packet usually sent by a router when it disconnects a device. The device can, however, force devices to disconnect from any network, which they warn may be illegal in some places.
Privacy

Shadowy Tech Brokers Deliver Data To the NSA 35

Posted by Soulskill
from the in-30-minutes-or-it's-free dept.
An anonymous reader notes an article about a group of companies whose business is to wiretap various ISPs (with permission) to gather data in response to federal subpoenas. Many smaller ISPs don't have the resources to deal with the flood of data requests from agencies like the NSA, so they outsource compliance and collection in order to keep costs down. The article profiles one of these companies, called Neustar: Neustar can in many cases execute the warrant from anywhere within the U.S., keeping within the bounds of the country's surveillance law. But when a wiretap device is needed, they are not hard to come by. Most networking equipment makers sell devices that can be used to collect data, or used to inspect data — so-called deep-packet inspection devices, which can also be used to prevent piracy, the spread of malware, and website access, all at the Internet provider level. Once a FISA warrant is issued, so-called "tasking" orders, which contain selectors — like a phone number or an email address — are often sent electronically to the ISP. These tell the ISP or phone company, or third-parties like Neustar, exactly where to wiretap and what data to collect to hand back to the requesting authority.
Networking

UCLA, CIsco & More Launch Consortium To Replace TCP/IP 253

Posted by timothy
from the still-involves-controls-and-protocols dept.
alphadogg writes Big name academic and vendor organizations have unveiled a consortium this week that's pushing Named Data Networking (NDN), an emerging Internet architecture designed to better accommodate data and application access in an increasingly mobile world. The Named Data Networking Consortium members, which include universities such as UCLA and China's Tsinghua University as well as vendors such as Cisco and VeriSign, are meeting this week at a two-day workshop at UCLA to discuss NDN's promise for scientific research. Big data, eHealth and climate research are among the application areas on the table. The NDN effort has been backed in large part by the National Science Foundation, which has put more than $13.5 million into it since 2010.
Facebook

Facebook Blamed For Driving Up Cellphone Bills, But It's Not Alone 131

Posted by samzenpus
from the do-not-like-this dept.
colinneagle writes "Consumer site MoneySavingExpert.com reported today that it has seen "many complaints" from users who believe a recent increase in data-related charges on their cellphone bills are the result of Facebook's auto-play feature. The default setting for the auto-play feature launches and continues to play videos silently until the user either scrolls past it or clicks on it; if the user does the latter, the video then goes full-screen and activates audio. The silent auto-play occurs regardless of whether users are connected to Wi-Fi, LTE, or 3G.

However, it's likely that Facebook isn't entirely to blame for this kind of trend, but rather, with the debut of its auto-play feature, threw gas on an already growing fire of video-sharing services. Auto-play for video is a default setting on Instagram's app, although the company refers to it as "preload." Instagram only introduced video last summer, after the Vine app, a Twitter-backed app that auto-plays and loops six-second videos, started to see significant growth.
The Courts

Appeals Court Clears Yelp of Extortion Claims 63

Posted by timothy
from the 5-stars-for-marsha-berzon dept.
jfruh writes A U.S. appeals court cleared Yelp of charges of extortion related to its interaction with several small businesses who claim Yelp demanded that they pay for advertising or face negative reviews. While Yelp says it never altered a business rating for money, the court's finding was instead based on a strict reading of the U.S. extortion law, classifying Yelp's behavior as, at most, "hard bargaining." Interestingly, the EFF supported Yelp here, arguing that "Section 230 of the Communications Decency Act (CDA) protects online service providers from liability and lawsuits over user-generated content, except in very narrow circumstances where the providers created or developed content themselves. In its amicus brief, EFF argued that mere conjecture about contributing content – like there was in this case – is not enough to allow a lawsuit to go forward."
Social Networks

Study: Social Networks Have Negative Effect On Individual Welfare 76

Posted by Soulskill
from the tweeting-can-cause-polio dept.
An anonymous reader writes: A study of 50,000 people in Italy has found the impact of social networking on individual welfare to be "significantly negative." The researchers found that improvements in self-reported well-being occurred when online networking led to face-to-face interactions, but this effect was overwhelmed by the perceived losses in well-being (PDF) generated by interaction strictly through social networks. The researchers "highlight the role of discrimination and hate speech on social media which they say play a significant role in trust and well-being. Better moderation could significantly improve the well-being of the people who use social networks, they conclude."
The Internet

African States Aim To Improve Internet Interconnections 27

Posted by samzenpus
from the clearing-the-tubes dept.
jfruh writes A rapidly growing percentage of Africans have access to the Internet — and yet most of the content they access, even things aimed specifically at an African audience, is hosted on servers elsewhere. The reason is a bewildering array of laws in different nations that make cross-border cooperation a headache, a marked contrast to places like Europe with uniform Internet regulations. At the Africa Peering and Interconnection Forum in Senegal, a wide variety of Internet actors from the continent are aiming to solve the problem.
Networking

Predictive Modeling To Increase Responsivity of Streamed Games 120

Posted by Unknown Lamer
from the so-predictable dept.
jones_supa (887896) writes Streaming game services always bump up against a hard latency limit based on the total round-trip time it takes to send user input to a remote server and receive a frame of game data from that server. To alleviate the situation, Microsoft Research has been developing a system called DeLorean (whitepaper) using predictive modeling to improve the experienced responsiveness of a game. By analyzing previous inputs in a Markov chain, DeLorean tries to predict the most likely choices for the user's next input and then generates speculative frames that fit those inputs and sends them back to the user. The caveat is that sending those extra predictive frames and information does add a bandwidth overhead of anywhere from 1.5 to 4 times that of a normal streaming game client. During testing the benefits were apparent, though. Even when the actual round-trip time between input and server response was 256 ms, double-blind testers reported both the gameplay responsiveness and graphical quality of the DeLorean system were comparable to a locally played version of the game.
Communications

Securing Networks In the Internet of Things Era 106

Posted by timothy
from the glad-that-someone-finally-invented-things dept.
An anonymous reader writes "Gartner reckons that the number of connected devices will hit 26 billion by 2020, almost 30 times the number of devices connected to the IoT in 2009. This estimate doesn't even include connected PCs, tablets and smartphones. The IoT will represent the biggest change to our relationship with the Internet since its inception. Many IoT devices themselves suffer from security limitations as a result of their minimal computing capabilities. For instance, the majority don't support sufficiently robust mechanisms for authentication, leaving network admins with only weak alternatives or sometimes no alternatives at all. As a result, it can be difficult for organizations to provide secure network access for certain IoT devices."
Google

Finding an ISIS Training Camp Using Google Earth 134

Posted by Soulskill
from the bet-you-wished-you'd-stuck-to-word-of-mouth dept.
An anonymous reader writes: Terrorist organization ISIS has been in the news a lot lately for their hostile activities in Iraq and Syria. They've also been very active online, posting propaganda and photos on various social networking sites to try to recruit more members. Frequently, they'll have pictures of themselves in nondescript locations — but even carefully selected images give clues to a real location. Citizen journalists at Bellingcat analyzed a group of these photos, comparing buildings and bridges in the background to images from Google Earth. With very little to go on, they were able to pinpoint the location of a terrorist training camp.
Transportation

It's Easy To Hack Traffic Lights 144

Posted by Soulskill
from the looking-forward-to-the-mobile-app dept.
An anonymous reader notes coverage of research from the University of Michigan into the ease with which attackers can hack traffic lights. From the article: As is typical in large urban areas, the traffic lights in the subject city are networked in a tree-type topology, allowing them to pass information to and receive instruction from a central management point. The network is IP-based, with all the nodes (intersections and management computers) on a single subnet. In order to save on installation costs and increase flexibility, the traffic light system uses wireless radios rather than dedicated physical networking links for its communication infrastructure—and that’s the hole the research team exploited. ... The 5.8GHz network has no password and uses no encryption; with a proper radio in hand, joining is trivial. ... The research team quickly discovered that the debug port was open on the live controllers and could directly "read and write arbitrary memory locations, kill tasks, and even reboot the device (PDF)." Debug access to the system also let the researchers look at how the controller communicates to its attached devices—the traffic lights and intersection cameras. They quickly discovered that the control system’s communication was totally non-obfuscated and easy to understand—and easy to subvert.
Communications

Email Is Not Going Anywhere 235

Posted by Soulskill
from the give-me-smtp-or-give-me-death dept.
An anonymous reader writes: It seems the latest trend sweeping the online world is the idea that email is on its way out. Kids are eschewing email for any of the hundreds of different instant messaging services, and startups are targeting email as a system they can "disrupt." Alexis C. Madrigal argues that attempts to move past email are shortsighted and faddish, as none of the alternatives give as much power to the user. "Email is actually a tremendous, decentralized, open platform on which new, innovative things can and have been built. In that way, email represents a different model from the closed ecosystems we see proliferating across our computers and devices. Email is a refugee from the open, interoperable, less-controlled 'web we lost.' It's an exciting landscape of freedom amidst the walled gardens of social networking and messaging services." Madrigal does believe that email will gradually lose some of its current uses as new technologies spring up and mature, but the core functionality is here to stay.
Censorship

Knocking Down the Great Firewall of China 167

Posted by Soulskill
from the crumbling-from-a-million-tiny-cracks dept.
New submitter Nocturrne writes: The FOSS project Lantern is having great success in unblocking the internet for many users in oppressive regimes, like China and Iran. Much like Tor and BitTorrent, Lantern is using peer-to-peer networking to overcome firewalls, but with the additional security of a trusted network of friends. "If you download Lantern in an uncensored region, you can connect with someone in a censored region, who can then access whatever content they want through you. What makes the system so unique is that it operates on the basis of trust. ... Through a process called consistent routing, the amount of information any single Lantern user can learn about other users is limited to a small subset, making infiltration significantly more difficult." The network of peers is growing, but we need more friends in uncensored countries to join us.
Networking

Groundwork Laid For Superfast Broadband Over Copper 93

Posted by Soulskill
from the now-your-plumbing-can-double-as-ethernet-wiring dept.
itwbennett writes: Telecom equipment vendor Adtran has developed a technology that will make it easier for operators to roll out broadband speeds close to 500Mbps over copper lines. Adtran's FDV (Frequency Division Vectoring), enhances the capabilities of two technologies — VDSL2 with vectoring and G.fast — by enabling them to better coexist over a single subscriber line, the company said. VDSL2 with vectoring, which improves speeds by reducing noise and can deliver up to 150Mbps, is currently being rolled out by operators, while G.fast, which is capable of 500Mbps, is still under development, with the first deployments coming in mid-2015. FDV will make it easier for operators to roll out G.fast once it's ready and expand where it can be used, according to Adtran. Meanwhile, Ars Technica has an article about how Verizon is letting its copper network rot in order to passively encourage customers to switch to fiber.
Businesses

Cisco To Slash Up To 6,000 Jobs -- 8% of Its Workforce -- In "Reorganization" 207

Posted by timothy
from the that's-quite-a-re-org dept.
alphadogg (971356) writes Cisco Systems will cut as many as 6,000 jobs over the next 12 months, saying it needs to shift resources to growing businesses such as cloud, software and security. The move will be a reorganization rather than a net reduction, the company said. It needs to cut jobs because the product categories where it sees the strongest growth, such as security, require special skills, so it needs to make room for workers in those areas, it said. 'If we don't have the courage to change, if we don't lead the change, we will be left behind,' Chairman and CEO John Chambers said on a conference call.
Networking

T-Mobile To Throttle Customers Who Use Unlimited LTE Data For Torrents/P2P 147

Posted by Soulskill
from the who-torrents-over-mobile-anyway dept.
New submitter User0x45 writes: Here's a nicely transparent announcement: "T-mobile has identified customers who are heavy data users and are engaged in peer-to-peer file sharing, and tethering outside of T-Mobile’s Terms and Conditions (T&C). This results in a negative data network experience for T-Mobile customers. Beginning August 17, T-Mobile will begin to address customers who are conducting activities outside of T-Mobile’s T&Cs." Obviously, it's not a good announcement for people with unlimited plans, but at least it's clear. T-mobile also pulled the backwards anti-net neutrality thing by happily announcing 'Free Streaming' from select music providers... which is, in effect, making non-select usage fee-based.
Networking

The IPv4 Internet Hiccups 248

Posted by Soulskill
from the if-it-ain't-broke,-don't-negligently-let-it-break dept.
New submitter pla writes: Due to a new set of routes published yesterday, the internet has effectively undergone a schism. All routers with a TCAM allocation of 512k (or less), in particular Cisco Catalyst 6500 and 7600's, have started randomly forgetting portions of the internet. 'Cisco also warned its customers in May that this BGP problem was coming and that, in particular, a number of routers and networking products would be affected. There are workarounds, and, of course the equipment could have been replaced. But, in all too many cases this was not done. ... Unfortunately, we can expect more hiccups on the Internet as ISPs continue to deal with the BGP problem." Is it time to switch to all IPv6 yet?
Networking

Ask Slashdot: Life Beyond the WRT54G Series? 427

Posted by timothy
from the blue-pill-that-stacks-neatly dept.
First time accepted submitter jarmund (2752233) writes "I first got a WRT54GL in 2007. Now, 7 years later, it's still churning along, despite only having one of its antennae left after an encounter with a toddler. As it is simply not up to date to today's standards (802.11N for example), what is a worthy successor? I enjoyed the freedom to choose the firmware myself (I've run Tomato on it since 2008), in addition to its robustness. A replacement will be considered second-rate unless it catered for the same freedom as its predecessor." Is there a canonical best household router nowadays?

"I have more information in one place than anybody in the world." -- Jerry Pournelle, an absurd notion, apparently about the BIX BBS

Working...