Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!



Object Oriented Linux Kernel With C++ Driver Support

Phs2501 Re:Linus is right (365 comments)


The bloody MUSB driver/OMAP hardware combination caused me to have to write this horrible thing:

local kmsg ='/proc/kmsg', 'r')
for line in kmsg:lines() do
--elseif line:match('USB IS HORKED %- HELP PLEASE!') then
----local reset_usb ='/sys/devices/platform/<product>-kludges/reset_usb', 'w')
----log.log('Reset USB')

...because some (rare) USB devices would occasionally cause the harware to basically completely lock up when plugged in. I could identify this and cry for help from within the driver, but the only way I found to successfully unkludge it was to completely remove and reinstall the kernel device, thereby completely reinitializing the device and driver.

Fortunately(?) it looks like this product is unlikely to actually ship...

about three weeks ago

How Firefox Will Handle DRM In HTML

Phs2501 Re:What a fscking disaster (361 comments)

Yeah, Youtube now only encodes 360p and 720p single-file versions of videos at this point; if you don't support DASH, that's all you get. Notably 480p doesn't seem to be on this list generally. Firefox itself won't support enough MSE to run Youtube until (I think) v31, bug here.

about 5 months ago

How Firefox Will Handle DRM In HTML

Phs2501 Re:What a fscking disaster (361 comments)

Youtube uses EME for 1080p streams, no EME and you only get 720p or lower

Youtube uses Media Source Extensions for 1080p streams. That's completely different; it's a way to source data to a <video> element from Javascript. They use it to implement their dynamic HTTP streaming, where rather than just sucking down a file you suck down individual file segments allowing dynamic quality adjustments based on your available bandwidth. There's no DRM involved.

about 5 months ago

Theo De Raadt Says FreeBSD Is Just Catching Up On Security

Phs2501 Re:Framing the debate (280 comments)

And Git's hashes are not for the sake of security. Linus made that abundantly clear when he refused to allow SHA-2 to be used, even after people were able to manufacture a Git collision using SHA-1.

Citation needed. I can't find a published example of any actual SHA-1 collision, much less one from a Git repo.

about 10 months ago

Boy Scouts Bully Hacker Scouts Into Submission

Phs2501 Well... (289 comments)

They could embrace gender equality and rename themselves the Hacker Guides.

1 year,26 days

Oracle Quietly Switches BerkeleyDB To AGPL

Phs2501 Re:Yawn, another fork (219 comments)

The MongoDB core is AGPL. Its drivers are all Apache license, as explained here, therefore not polluting your web application code and forcing it under the AGPL.

BerkeleyDB, on the other hand, is linked in directly, and would force anything using it to be under the AGPL.

about a year ago

Ubuntu Lays Plans For Getting Past UEFI SecureBoot

Phs2501 Re:How much of the 'operating system' needs to sig (393 comments)

Something like a config option - 'Enable OS installation for one boot cycle.'

If the purpose of secureboot were just to secure the boot process, that's all it'd take.

That limitation isn't possible, because the UEFI/BIOS is not a hypervisor. Once something else is running in ring 0 there is no way to prevent it from doing whatever it wants. Implementing those kind of hardware locks would entail a much more serious change to many parts of the PC architecture.

The whole system of key signing is a rather obvious attempt to squeeze all the little players out of the game so the big boys can seize more power and profits.

Despite the above, this statement is probably quite accurate, though. It's certainly a convenient side-effect.

about 2 years ago

The Hobbit's Higher Frame Rate To Cost Theater Operators

Phs2501 Re:In other news (710 comments)

What are you talking about?

Home video was traditionally 24 or fewer frames per second. (Unless by "traditionally" you mean the past few years when you could record digital video at more than 30 frames per second.)

The GP poster is correct. Super 8mm film is not "video" and hence is not "home video". NTSC VHS is absolutely 60 fields per second. The only way to get 24 FPS on VHS is with 3:2 pulldown, which no consumer cameras I know of ever did. Even getting close to a "real" simultaneously-sampled 30 frames per second instead of 60 interlaced fields would require a sample-and-hold, which again consumer VHS camcorders didn't have AFAIK.

more than 2 years ago

Google's SPDY Could Be Incorporated Into Next-Gen HTTP

Phs2501 Re:Adds bufferbloat and reduces VoIP sound quality (275 comments)

You should have updated to IPv6, where is no such checksum in TCP.

I think you're misinformed. IPv6 has no IP header checksum, unlike IPv4. However, the higher-level protocol checksums are still there; in fact, UDP over IPv6 is required to include a valid checksum, unlike in IPv4 where it can optionally be 0x0000.

more than 2 years ago

Google Starts to Detail Dart

Phs2501 Re:Could be really cool in about 5 years or so. (219 comments)

No it's not. Gmail (and most of Google's other high-profile Web stuff) is written with their Closure tools, which is JavaScript-based. Wave was GWT (their Java cross-compiler), but that was about it for public services other than the AdWords admin interface.

about 3 years ago

Linux 3.0 Release Delayed

Phs2501 Re:Google Plus (187 comments)

Even with a Facebook page, you still have an asininely-short arbitrary limit to the size of status updates that, given the length of Linus's update, doesn't appear to apply to Google+.

more than 3 years ago

Ask Slashdot: Which Registrars Support DNSSEC?

Phs2501 IPv6 (70 comments)

As an additional factor, who other than GoDaddy supports both DNSSEC and easy-and-prompt-to-configure IPv6 glue records? I specifically moved from Network Solutions to GoDaddy because it took NetSol weeks to set up my IPv6 glue. (Their interface at the time was "Email us at and we'll get around to it eventually. Maybe." Maybe they've added it to their admin interface at this point...)

more than 3 years ago

Asia Runs Out of IPv4 Addresses

Phs2501 Re:what about the map? (321 comments)

At the IPv4 burn rate of the last month, Ford's space would last only another 10 days. IPv4's done; stick a fork in it and start moving on.

more than 3 years ago

A Closer Look At Immersion Cooling For the Data Center

Phs2501 Re:condensation problems... (213 comments)

I wonder how they have managed to solved the condensation problem.

They run their oil at 40C. If the dew point in your server room is that high you have other problems...

more than 3 years ago

Cisco Linksys Routers Still Don't Support IPv6

Phs2501 Re:Why do we need IPv6? (380 comments)

Couldn't the ISP's DNS return a bogus IPv4 address for and then rewrite packets sent to that address as IPv6 packets to's IPv6 address?

This is called NAT46 and is one of the myriad transition strategies available in both directions. It is much more complicated than NAT64, though, since you need a giant state table synchronized between a router and DNS server, and you need to "waste" some IPv4 space for the mapping, which is in short supply. (NAT64 only needs to keep state in the router, since you can embed the literal v4 address inside a v6 address.)

more than 3 years ago

If You Think You Can Ignore IPv6, Think Again

Phs2501 Re:Why would you want to do those broken things? (551 comments)

Or I can forward whatever protocol number to my VPN server. The fact that NAT is possible does not mean that I have to limit yourself to one external IP. If I have two VPN servers I can use two external IPs for them.

IPsec AH headers protect the integrity of the source and destination IP addresses (by design), so if those are modified in any way by NAT things will break.

Anyway, you are clearly okay with NAT's limitations. I am not; I only use it out of necessity. Different strokes...

more than 3 years ago

If You Think You Can Ignore IPv6, Think Again

Phs2501 Re:Why would you want to do those broken things? (551 comments)

Breaking trough NAT without port forwarding - sure. The only reason why the protocol might not work with NAT with port forwarding is if it for some reason does not trust the header of the packet and adds a copy of the IP address in the data section (like ftp does).

That's not the only reason. IPsec, for instance, has to be wrapped inside UDP (called IPsec NAT-T) to break through NATs since IPsec was designed to be run directly on top of IP, where there is no concept of ports to forward! Any attempt to go beyond TCP and UDP runs horribly afoul of NATs.

So, I can make a packet destined to 1::2 port 80 (hmm, with IPv4 I can write, is some other symbol used for marking the port number? 1::2:3:4:80 could be confusing?) actually go to 1::3 port 80?

(To put a literal IPv6 address in a URL you write http://[2001:db8::1]:80/. I suspect other places expecting a colon-separated port number will use a similar scheme.)

Great - it means I can still publish only one IP and do the port mappings, which makes this "almost" NAT.

So, the only thing that cannot be done is rewriting the source IP field on outgoing connections (not packets, since for port forwarding to work it has to work both ways)?

Yes, not unless you use a proxy. Simple inbound port forwarding doesn't need to be implemented as some fancy stack-level kernel feature like NAT; you just need a process listening on a port that, upon accepting, makes a connection to another IP and port and copies the data in both directions. The classic cheesy way to implement this is to throw a line in inetd.conf that calls "nc ip port", though for things like HTTP an application-specific reverse proxy will work a lot better and possibly take some of the load off of your web server(s) if it caches.

It's likely a fair amount of NAT-like behavior will be written for IPv6 to support implementing transparent proxies, which do have to happen at the stack level. I just want the amount of NATted traffic on the Internet at large to be on the opposite end of the bell curve than it is now, since with IPv6 it will be unnecessary to "share an Internet connection" in the same way as IPv4.

more than 3 years ago

If You Think You Can Ignore IPv6, Think Again

Phs2501 Re:Why would you want to do those broken things? (551 comments)

The point is, I do not want NAT to be imposed on everyone. I just want the option of doing whatever I want to the packets that enter and leave my network, including changing the address fields, for whatever reason. If something does not work for me because of NAT that I myself placed there, so be it, I'll find a workaround or, if it really bugs me, stop using NAT.


There is no reason not to have NAT as an option.

If this were the only side-effect, than sure. But a lot of protocols in use today (peer-to-peer filesharing, VOIP, VPN, etc.) have had horrible kludges built into them to ensure that they can break through NAT and still work. NAT is also a huge barrier to entry to interesting new transport layer protocols like SCTP, since it absolutely requires specialized code in the NAT router.

If you want to NAT IPv6 for no particularly good reason, and the world breaks for you, that's fine, but if anybody has to waste time abusing perfectly good future protocols to work with IPv6 NAT the damage is much more substantial than you. And if the myth that NAT provides a useful service persists, the market will demand such hacks.

As I said in reply to another post, i might want to make and connect to different physical (or virtual) servers. Without modifying DNS and doing the whole and thing.

So make your router (or other box) explicitly do port forwarding and/or load-balancing; it's effectively what you're using NAT for here and would likely be more flexible.

more than 3 years ago


Phs2501 hasn't submitted any stories.


Phs2501 has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?