mircea_popescu: anyway, the only way to solve this problem is of course ppp, ie pay per packet. and the only way to even run an internet at all is as a blockchain, which is to say mempool and all that.

mircea_popescu: right.

mircea_popescu: brandheads.

mircea_popescu: why are these things on the internet ? i do not wish anything to do with any of them.

mircea_popescu: ~WITH SOPHOS END POINT SECURITY~ dontcha know.

mircea_popescu: fucking hell.

mircea_popescu: Now, how can I verify my Windows 2008 domain server (with Sophos EndPoint Security) is configured correctly?

mircea_popescu: OK, thanks Chester for the clear explanation.

mircea_popescu: dpaste over alles!

mircea_popescu: or dpaste.

mircea_popescu: like fucking udp.

mircea_popescu: let's start with something small.

mircea_popescu: myeah.

mircea_popescu: much like i don't make kids, the women make kids. i just kill some of the kids they make.

mircea_popescu: i don't solve problems. i just throw away other people's solutions. ☟︎

mircea_popescu: no.

mircea_popescu: for they reading the logs not in the cabal.

mircea_popescu: reference.

mircea_popescu: https://nakedsecurity.sophos.com/2013/03/28/massive-ddos-attack-against-anti-spam-provider-impacts-millions-of-internet-users/

mircea_popescu: but yes, it was practically shown that a) no actual protection from ddos exists, outside of the ostrich method discussed above and b) udp is the key to this state of affairs. ☟︎

mircea_popescu: it's where all this "ban udp" talk actually started.

mircea_popescu: essentially, yes.

mircea_popescu wonders if he's the only one that remembers the major spammer-ddos wars of a few years ago.

mircea_popescu: you can send them via dpaste for all the difference it makes.

mircea_popescu: mkay. i wouldn't be too worried about her fate - it'd cost usg more than it'd cost me to ditch udp.

mircea_popescu: "onmly way to have gossipd"

mircea_popescu: i get it, you want a woman that's transparent and doesn't bleed.

mircea_popescu: sigh

mircea_popescu: ...

mircea_popescu: no, because it can't check.

mircea_popescu: routing it to where!

mircea_popescu: to where ?

mircea_popescu: so how does router know if to route ?

mircea_popescu: and how's third party gonna reads your codetext.

mircea_popescu: i never comprehended the "anonimity" securityt posture, but whatever.

mircea_popescu: decimation except he didn't like the fact yu gotta say where you're sending stuff "because usg snoops it"

mircea_popescu: dragons.

mircea_popescu: it'd bette rbe transport protocol agnostic.

mircea_popescu: asciilifeform there can trivially be gossipd-over-blockchain.

mircea_popescu: decimation for as long as no one uses it.

mircea_popescu: at which point we'll re-have this conversation.

mircea_popescu: yes, im sure the idiots "writing software" and "deploying apps" will soon write more crud and deploy more crap

mircea_popescu: leaving the entire pile of usg services in the lurch.

mircea_popescu: atm, im blaming udp. and i would very much like to see it go away, right now. ☟︎☟︎

mircea_popescu reserves the sovereign right to blame anyhone on the path to the "accident" he chooses. so no, it's not "the misconfigured routers", i'm not the pitbull you put in the doorway, slam the door and it then "blames the misconfigured door".

mircea_popescu: it can be the fault of the shitty gun you bought. buy better guns or more funerals.

mircea_popescu: decimation if you shoot my dog by accident ima bury you

mircea_popescu: let them run on tcp/ip, should be fun to watch.

mircea_popescu: yes, IT IS.

mircea_popescu: in which case you have to pay.

mircea_popescu: except if that trunk serves idiots who need or think might need udp

mircea_popescu: kakobrekla myeah.

mircea_popescu: otherwise, the chump herd is eminently handle-able. the havok they can wreak by employing udp amps, not.

mircea_popescu: and you've never answered ot the main point here. http://log.bitcoin-assets.com/?date=30-07-2015#1218091 ☝︎

mircea_popescu: it's the dumbass services currently sitting on udp.

mircea_popescu: asciilifeform it's not the "million chump botnet"

mircea_popescu: feel safe all you want, and maybe you never get to matter enough to find out better.

mircea_popescu: your isp never had the problem, is all.

mircea_popescu: asciilifeform you're basically falling fore the "shared hosting" bit

mircea_popescu: it is on its head.

mircea_popescu: decimation fuck this "misconfigured" bs. because udp.

mircea_popescu: they just take off the thing upstream. which IS six figures.

mircea_popescu: good for you.

mircea_popescu: o i see.

mircea_popescu: because, again, udp.

mircea_popescu: yes, they can. they can send you a trillion packets in fifteen minutes.

mircea_popescu: as decent as it gets = 500x line saturation three hops upstream.

mircea_popescu: you're new, seriously.

mircea_popescu: jhahahaha

mircea_popescu: asciilifeform did you ever have a decent one ?

mircea_popescu: everything that gives idiots voice is the avatar of evil.

mircea_popescu: decimation udp is widely deployed in the hands of idiots.

mircea_popescu: do tell ?

mircea_popescu: no, i am against udp.

mircea_popescu: and the general point is udp does not belong. ☟︎

mircea_popescu: kakobrekla i might. atm not really a big enough deal, whatever, some people can't read trilema for half a day or w/e. but we were discussing the general point.

mircea_popescu: decimation yes, unfortunately, yhet another advantage for shithole cloud. "hey, we drop udp at least". exactly the good cop bad cop alf was proposing. but i am not moving to fuckingf cloud, and im not using fucking cloudflare and so fucking om.

mircea_popescu: also true.

mircea_popescu: no more udp => no more dns, no more ntp. win of all fucking time, i'd pay to see this happen tomorrow.

mircea_popescu: paint my nails and call me mary what the fuck is this.

mircea_popescu: what, jam tomorrow, maybe one day ima get gossipd over udp, perhaps, who knows ? meanwhile half the remaining usg online is BASED, and requires udp to survive at all ?

mircea_popescu: i find it kinda curious that asciilifeform and decimation can at the same time hold the discussion of political time we had recently in mind, and ALSO think breaking udp, or doing away with ntp is a bad idea. ☟︎

mircea_popescu: ntp IS a fucktarded exploit. of itself.

mircea_popescu: it's a fucking wonder "locales" don't somehow udp.

mircea_popescu: i still wish udp died, and with it all the "Services" it provides. starting with dns, ntp and come to think about it

mircea_popescu: no solutions available does not make shit palatable.

mircea_popescu: nevertheless...

mircea_popescu: asciilifeform ftr, i am noit proposing orphan-block TCP is any better. shouldreally be TCP/OB

mircea_popescu: excel to excel viruses!

mircea_popescu: it being written is the problem. as always.

mircea_popescu: ima see gossipd alright. atm, the infrastructure is not the problem.

mircea_popescu: i'd count this as a plus.

mircea_popescu: in any case : if it were the rule that udp gets dropped universally, i wouldn't have to have above convo with provider.

mircea_popescu: you maybe think about the theory of datagrams once a week.

mircea_popescu: i handle about two ddos attacks a week.

mircea_popescu: seriously, this discussion is asymmetrical.

mircea_popescu: who the fuck is going to create a syn flood for you.

mircea_popescu: asciilifeform stop being theoretical on me. sure same load, not same amplification available.

mircea_popescu shrugs.

mircea_popescu: yes.,