log☇︎
567200+ entries in 0.352s
mircea_popescu: why do you want to preserve the fucking magic numbers
asciilifeform: here's a very rough description of above experiment. to start a transmission a --> b, 'a' sends a hello (udp) packet, which consists of an ephemeral rsa key, hash and length of (coming) payload, and all of the preceding signed with his wot key. this fits handily below the traditional 576 byte mtu.
mircea_popescu: totally ruined the moment for 'em. idiots.
mircea_popescu: aside of which, friday some derp was going on about what "his life is dedicated to" and in the crowd hysteria i told em my life is dedicated to excluding people.
asciilifeform: someone probably wonders 'wtf, why fountain code'. answer: getting rid of tcp.
mircea_popescu: the extreme power of this idea is evidenced by how effectual it is even when poorly implemented.
asciilifeform: but really it was because posts were attached to identities (as a matter of convention, rather than 'hard' protocol)
BingoBoingo: http://openbenchmarking.org/result/1412060-LI-KFREEBSD879 << Look the Derps still benchmark OS software but have lost the ability to benchmark with... Same hardware!
mircea_popescu: once you get the proper voice model implemented, forgeddaboutit
asciilifeform: folks typically say 'it was because electric identities were attached to people'
mircea_popescu: the glory of the usenet is exactly the glory of b-a.
asciilifeform: whole thing was based (in my head) on a hypothesis that folks misidentify the reason for the glory of old usenet
mircea_popescu: and absolutely NEVER allow any derps on it. stick to the original plan with the original internet, no fucking undergrads.
asciilifeform: rather opposite goal to 'tor.'
mircea_popescu: it'd be a better tor and everything else by default.
asciilifeform: but not ready for battlefield. and no time now.
asciilifeform: i may have spoken of this once. i've a very rough draft of precisely this, using an interesting bit of mathematics called 'fountain code'
mircea_popescu: turn off all other traffic, have servers in their own, better world.
mircea_popescu: if cardano wasn't so woefully delayed exploring this in practice'd be almost tempting.
asciilifeform: if want some other network - have to produce it.
asciilifeform: let's rephrase a little. the internet as presently exists, is, in practice, mainly a machine for 1) connecting derps to 'reddit' and 'arsebook' 2) routing ddos packets to trilema, qntra...
mircea_popescu: in short, the more i think about it the more im inclined to rather see the telcos win the internet war, adn google lose it
mircea_popescu: that is the definition of design : rules independent of events.
asciilifeform: i can think of a few events that would apply the necessary upward pressure on bandwidth cost.
mircea_popescu: they only get away with it because a flaw in the design.
mircea_popescu: it's a situation exactly identical to "pay for software" and software market in general.
mircea_popescu: because teleport bits exists, putting undue down pressure on all prices.
asciilifeform: only the lowliest sp4mz0r actually pays for bots.
mircea_popescu: that is what im saying. to get a packet there, you need more than one
asciilifeform: but suppose you could silently teleport it.
mircea_popescu: right, which goes through thermodynamic dissipation aka friction.
asciilifeform: because in real life, taking a shit in someone's kitchen requires physically entering.
asciilifeform: ddos still exists if network treats random derp in random place equally with the folks whose traffic one actually wants.
mircea_popescu: exactly for the reason you mention : who can afford or wants to give anyone free traffic ?
mircea_popescu: as long as friction is baked in, the ddos problem fundamentally doesn't exist.
asciilifeform: directly to victim
asciilifeform: remember that ddos does not necessarily require 'amplification'
asciilifeform: who wishes to pay for this? mircea_popescu ?
mircea_popescu: asciilifeform more than one.
asciilifeform: you're talking about, unless i misunderstand, 'pushing' one bit for each 'pulled' ?
mircea_popescu: you always get less than what you put in. this is the chief principle that makes the world endure
asciilifeform: the problem with 'amplification attack' isn't that i can send b bytes and get K*b back. failing this - tremendous waste! problem in actuality is spoofed packets getting routed, which at this point is always and without exception the result of idiot network designers and admins
BingoBoingo: Plenty of derps masterbate to the idea of tits without experiencing or understanding them
asciilifeform distinctly recalls that half the u.s. research establishment at one point furiously masturbated to game theorey
mircea_popescu: it was made by idiots who do not understand what trade even is.
mircea_popescu: every anything used in an amplification attack meets the criteria.
asciilifeform: who? - made what? - while unaware of game theory?
mircea_popescu: it's like a beautifully drawn mmorpg made by blizzard. you KNOW the economy will be broken to all shit.
mircea_popescu: anyway, the entire world made by derps unaware of game theory needs to be redone.
ben_vulpes: once upon a time, computers were such that children could actually reason about them.
assbot: Logged on 08-12-2014 16:32:51; asciilifeform: ddos << there will come the day when folks will remember the 'route to anybody who asks first-come-first-serve' internet - with disgust.
mircea_popescu: "lets make computers fun" ; "you know, for kids" and "anyone can do this". fuck that.
assbot: Logged on 08-12-2014 17:09:27; asciilifeform: where every packet knows who paid for it << those who imagine a wot-routing based net as a rent-seekers' paradise are mistaken. it is today's net that is a rent-seeker's paradise, where folks who cannot abide ddos must buy bandwidth in vast excess of their normal needs
mircea_popescu: meanwhile they are too stupid o tie their own shoes.
mircea_popescu: mullenweg and the core of imbeciles "working" at wordpress go around claiming they program computers
mircea_popescu: im annoyed by the principle of the thing.
asciilifeform: ^ for typical crap artist's collection
asciilifeform: (the latter tends to sit on fatter pipe, however. so i've no idea which one wins in practice.)
asciilifeform: there are considerably more misconfigured consumer routers, tv boxes, electrical dildoes, etc. than 'wordpress' installs.
mircea_popescu: you want the time ? ask twice. the server answers each request pair once, in the order of descending delta intervals.
mircea_popescu: and in connectionless environments such as ntp or dns even, it would cost nothing to require 2 tits for every tat.
mircea_popescu: meanwhile TO THIS DAY wordpress will go check 1.1.1.1 because 2.2.2.2 said so.
asciilifeform: hence x gets the reply.
asciilifeform: spoofing allows y to impersonate x.
mircea_popescu: and to not send packets to X that were asked for by Y.
mircea_popescu: the solution is to not send 500 packets in response to one
mircea_popescu: this is not the solution.
mircea_popescu: " IP addresses that were not assigned to the device which is sending them."
mircea_popescu: not trivial to know where a packet enters tho. they do have to traverse it anyway
asciilifeform: packets claiming to be from inside your net should not be able to enter it from outside.
mircea_popescu: there IS something wrong to treating packets like fucking popcorn.
asciilifeform: this in turn is fundamental braindamage baked into a good chunk of the net.
asciilifeform: all of the 'amplification' tricks rely on the ability to send (and see them routed) packets with spoofed origin ip.
mircea_popescu: the world would be so much better if all the gmaxwells of this world were never taught to read.
asciilifeform: they answer to any fool who can send some spoofed packets.
asciilifeform: the machines in question are not 'pwned' in the conventional, permanent sense
asciilifeform: same principles apply to ntp flooding as earlier ssdp - anyone who wishes can 'walk away with' the 'bots'.
cazalla: and it's that bullshit law which enables mohammed to hold down a chocolate shop for almost 24 hours.. the gov actually enabled him to do better than he could if the playing field was level
asciilifeform: from the department of nyooz yoo can yooze - kakobrekla provided data from which we learn that ddos man has switched from ssdp to ntp 'amplification' attack (see literature.) ☟︎
asciilifeform: what threadbare log.
[]bot: Bet placed: 5 BTC for No on "Billion dollar bet?" http://bitbet.us/bet/1047/ Odds: 14(Y):86(N) by coin, 17(Y):83(N) by weight. Total bet: 15.21715114 BTC. Current weight: 46,538.
cazalla: if the law permitted us to carry weapons, would've ended much sooner as well
cazalla: decimation, they saved themselves, nearly all escaped before the cops even went in
decimation: so I guess the democratic police in sydney nearly succeeded in saving all the hostages
mircea_popescu: THAT shouldbe a tld.
decimation: .зэк would be a great tld
decimation: asciilifeform: that internet-wide scanner is neat
BingoBoingo: asciilifeform: noone for values such that of people who claim to have, finding actual readers is still a hard problem. Not an actual 0.
undata: not that I dispute ubuntu being a steaming pile
undata: mircea_popescu: there's "ionice" which might help those cases
BingoBoingo: adlai: Everyone talks about Knuth, but no one reads Knuth.
assbot: Ubuntu is a worse piece of shit than MS-DOS ever was. pe Trilema - Un blog de Mircea Popescu. ... ( http://bit.ly/1wbmC1Q )
adlai: why does convert need 5G ram to build a 4M file. somebody didn't read knuth?
mircea_popescu: im bashing the kako ass ass comment.
adlai tries with convert, let's see how bad the RAMrape gets
BingoBoingo: I really think it is irresponsible the dude didn't bring some serious stimulants with him. I mean the police get to have shift changes.
mircea_popescu: "i was gonna do thinks with my gun... but then i got tired... then i got tired... and fell asleep"
adlai: can this ffmpex thing make gifs
BingoBoingo: mircea_popescu: Courtesy of Peter Todd
mircea_popescu: "The #4890 pull-req in question had no ACKs at all, and only two untested utACKS, which I find worrying for something that made significant consensus critical code changes." via BingoBoingo