Slashdot: News for Nerds


Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!



Revolutionary Scuba Mask Creates Breathable Oxygen Underwater On Its Own

fuzzel Re:Pure Oxygen? (375 comments)

Nitrox is used so that you can dive longer....

about 6 months ago

Spamhaus Calls for Fining Operators of Insecure Servers

fuzzel BCP38 (170 comments)

Can we change that at first to just start with the very simple:

Organisations transferring IP packets should be kicked off the Internet if they do not implement BCP38.

That would make al kind of spoofed attacks already impossible, that being the DNS, NTP, Quake-alike and many many others...

But, as there is no money to be earned with this, ISPs do not enforce it.

(and yes, it does cost some cash to implement as not all routers support it unfortunately..... )

about 8 months ago

Raspberry Pi As an Ad Blocking Access Point

fuzzel Use RPZ! / Why Google PDNS / is not GPDNS (82 comments)

Instead of shoving a list of addresses into a DNS server (dnsmasq) in this case, it would be better to use RPZ (

Next to that:

> Open the file with sudo nano /etc/resolv.conf and replace the contents with the following:
> nameserver
> nameserver
> nameserver = apparently the address of the fake webserver (would be great if they configured that somewhere before making test queries....) = Google Public DNS, no ads maybe but running all your DNS queries through Google is not helping much now does it. = is not a valid DNS server, likely they meant which is the secondary Google Public DNS address.

If you have a DNSmasq anyway, just let it recurse and play caching resolver, much better idea.

> iface wlan0 inet static
> address
> netmask
> post-up ip addr add dev wlan0

One just has to wonder which IP the box will be using for outgoing queries, depends a lot on the kernel....
Now if that was the .1 would always be chosen, but as a /24 magical things will happen

Etoomanypitholes and lots of people will be bitten.

about 10 months ago

Tool Reveals iPad and iPhone User Locations

fuzzel Presented at Blackhat USA July 2012, code publish (36 comments)

From the github page: "Written by @hubert3 / . Presented at Blackhat USA July 2012, code published on Github 2012-08-31"

Slashdot, News of Last year, today! ;)

But yes, it is a rather cool hack that still works....

about a year ago

NASA Fires Up Experimental Space Internet For Robot Control

fuzzel Background information on Delay Tolerant Networks (42 comments)

Related links for this article:
DTN Research Group:
lots of docs:
overview presentation:

The book:

Source code:

Oh and yes, theoretically this extends the Internet in the same way that various other protocols do, eg 6lowpan etc.
And yes, as it is store-and-forward it looks an awful lot like SMTP.

Enjoy ;)

about a year and a half ago

Third 2012 US Presidential Debate Tonight: Discuss Here

fuzzel Russia is the enemy! (529 comments)

"The 1980's are calling for their foreign policy back" -- Barack Obama :)

about 2 years ago

UK's 'Unallocated' IPv4 Block Actually In Use, Not For Sale

fuzzel Re:Because sixxs is easy to get if you just read! (203 comments)

There are actually only few out of the 30.000+ people who signed up with a proper essay, and the ones that did always earn quite a few extra credits for when they actually do write something more than just "I need IPv6".

If you where not able to get a SixXS account you likely just did not read the text on the signup page, most likely then proceeded by providing garbage details which is definitely not accepted and any such request simply gets rejected.

But if you are unable or willing to read the signup page, most likely you won't get IPv6 working either as you'll be doing all kinds of things that will break the configuration, thus reading is essential.

We (SixXS) have tried to make it as easy as possible by bringing AICCU into the world and working together with various vendors though so that they support IPv6 tunnels out of the box, but even then some problems need reading for a bit to get them resolved. Thus if you can't read at signup you likely won't pass for the rest either.

about 2 years ago

UK's 'Unallocated' IPv4 Block Actually In Use, Not For Sale

fuzzel Re:Because sixxs is a pain in the ass to get (203 comments)

sixxs dont require a linkedin account (or something changed since i created mine and several friends accounts)

Indeed SixXS never required a LinkedIn/XING/etc account.

Those links where only requested at the time so that one would get extra credits (ISK) donated to the person when they signed up, they got the credits because they proved a little bit more that they where real (as we, that is SixXS, could check the trust-graph in those websites) and more importantly as the people who did that actually read the signup page, which is something a lot of people clearly do not do even with colorful indicators.

This solved a small catch-22 with people who got flashy new IPv6 enabled routers (read: AVM Fritz!Box at the time) and thus for whom a tunnel alone was not enough. As since the beginning of 2012 the new sixxsd v4 software was deployed, this was not needed anymore as one then automatically has a routed /64 next to the tunnel space.

about 2 years ago

Apple Under Fire For Backing Off IPv6 Support

fuzzel Re:Because 32bits of addressing... (460 comments)

> Win7 requires me to kill ipv6, because there's no good way to tell the system to prefer ipv6.

If you have tunneled connectivity, thus non-native being announced on an Ethernet interface you will likely have to set in the registry:

SYSTEM\CurrentControlSet\services\Dnscache\Parameters\AddrConfigControl = 0 (DWORD)

That way AAAA lookups are always performed and also preferred. Though it still depends on the application if it actually uses getaddrinfo() at all and does not resort addresses itself, which some applications do and some others do not.

> Let me easily set priority of v4 vs. v6.

With Lion Apple has implemented a variant (quite unrelated to the IETF drafts) of Happy Eyeballs in their systems. As such, depending on previous connection history, latency and other factors you might get IPv4 or IPv6 connections at random. And nope, there is no knob at all to turn off that behavior. Right back at you.

(oh and yes, I have a Mac too, which is why it kinda annoys me, but if you just slow down IPv4 a bit on the outbound router you always get IPv6 as the Mac thinks that IPv4 is "slower" than IPv6... still a knob would be useful, yes, bug reported a long time ago)

more than 2 years ago

Apple Under Fire For Backing Off IPv6 Support

fuzzel Re:peer-to-peer = loss of control (460 comments)

Banning people from IPv6 service for forking their connectivity software seems quite abusive to me.

You mean relicensing SixXS software (AICCU) under a more restrictive license? Yes, that is indeed quite abusive, be happy that the copyright enforcers are not coming down your neck for that.

It is great to make websites with all kinds of 'facts' but without actually showing both sides of a story and including all the details, they are not facts and they are effectively just biased statements from a pissed off person.

To quote slimjim8094:

aside from people who were pissed that they got cut off for abuse.

As that is what those "true stories" are about, nothing else.

Dear anonymous poster, please move along or get an account with your real name and details instead of just posting fact-less and out of context inflammatory remarks. Kthx!

more than 2 years ago

Apple Under Fire For Backing Off IPv6 Support

fuzzel Re:peer-to-peer = loss of control (460 comments)

> And it's no coincidence that half of abusive SixXS is half-run by a Google employee.

What you mean with "abusive" here is the "half" that cuts people off when they abuse the service. That "half" would be me, not the "half" that you try to implicate.
There are actually even websites dedicated to this about it which only name me. The other "half" is a true voice of reason, so don't say bad things about him that have no backing at all.

Thus really the 'co-incidence' seems to be merely in the fact that you are an anonymous poster, who likely was abusive him/her/itself, got cut off yourself and likely that is why he/she/it cannot even post on slashdot with a real account as here you also got kicked out already.

more than 2 years ago

IPv6-only Hosting Won't Make Sense For Years

fuzzel Makes sense for several years already.... (173 comments)

It makes sense for several years already, as a lot of "firewalls" (eg, that nice Great Chinese Firewall) and various other such country-wide blockades to the Internet, do not have a single bit of understanding of IPv6, and as long as they remain that way, IPv6 will work like a charm......

Next to the other thing for home users: everything becomes accessible, instead of having to get IPv4 addresses from your home ISP (which generally they won't do, but indeed there are cases where they do), or getting a private server outside in a network, which is not home. For years already: set up an IPv6 tunnel, get a prefix, use it from anywhere.

more than 3 years ago

IBM Australia Announces New Global Research Development Lab

fuzzel FIt is not "IBM Research" Lab, it a "IBM R&D (68 comments)

There are only 9 labs which are real IBM Research Laboratories: Almaden, Austin, Brazil, China, India, Haifa, Tokyo, Watson and Zurich

linky: which does not list Sao Paolo, Brazil yet though.

This new one in Australia is just a new IBM R&D center, part of IBM, but not part of IBM Research though....

more than 3 years ago

Dutch Hackers Create Wi-Fi Sniffing Drone

fuzzel UAV's that work! (81 comments)

As that thing does not even seem to fly and people always like to see movies, check: for a huge amount of information about NG-UAVP's (Next Generation Universal Areal Video Platform) of course all open source hard and software.

Multiple videos of WORKING drones over here:

Also, don't forget to check this cool cyber-cute overload: Quadrocopter Drone Has Its Own Little Home :)

Btw, what is so special about adding a wireless card/stick to a drone and letting it sniff the airwaves? :)

more than 3 years ago

Canonical Begins Tracking Ubuntu Installations

fuzzel The solution for NOT installing certain packages (548 comments)

To make sure that no other packages like eg base-files suddenly start adding these kind of packages you might want to add to /etc/apt/preferences or prolly better a file like /etc/apt/preferences.d/dontwant something like:

Package: avahi-daemon canonical-census
Pin: release v=dontwant,a=dontwant
Pin-Priority: 1001

This will block two annoying packages that don't belong on most servers.

avahi, because you don't need to announce everywhere when your server is located somewhere in a DC (indeed it might be handy in a local network, but it stops being useful when you don't have multicast routing and/or have a routed network)

canonical-census, because Ubuntu does not need to know what your server is doing.

Of course other packages can be blocked in a similar way from being auto-added by apt. (unfortunately a dpkg 'hold' does not work).

Another way is to make a fake empty package, then the depends are satisfied, in the above case you might have packages which refuse to install because the package can't be found. Do make sure with 'apt-cache policy' to see if you don't have other apt-prefs at a prio of 1001 (or higher if that is possible) otherwise they might still get there.

I am also wondering when Ubuntu/Redhat and other such commercial "Linux" companies start being nice to all the people who actually do the hard work and start acknowledging that those people are what they are selling/supporting/consulting on and earning money with.

more than 3 years ago

Africa Leads In IPv6 Adoption

fuzzel The joy of statistics: "Journalists" being wrong (122 comments)

The numbers to add, so to NOT confuse the people who now shout that Africa is going so great:

See SixXS Ghost Route Hunter for the live data:

* 6bone (144) (phased out on 6/6/2006)
* RIPE (1119)
* APNIC (490)
* ARIN (706)
* LACNIC (115)
* AfriNIC (60)

There are thus ONLY 60 IPv6 allocations in the African region, if you then follow the link, you will find the following nice thing: "Thus 19 (33.33%) networks are currently correctly announced."
As there barely is no Internet in Africa, (especially when looking at ASNs, and remember that a lot of US ASN's are used in Africa) yes you might reach 22%.

Wow, yes that is a lot compared to the rest of the world:
AFRINIC - 19 (33.33%)
LACNIC - 37 (32.17%)
APNIC - 223 (45.70%)
ARIN - 239 (34.00%)
RIPE - 548 (49.02%)

Europe wins again! :)

Statistics again show how easily things can be misunderstood and interpreted in various ways.

more than 5 years ago



Google over IPv6 coming to you soon...

fuzzel fuzzel writes  |  more than 5 years ago

fuzzel writes "Today Google annoounced Google over IPv6 where ISPs can signup their DNS nameservers so that their users will get access to an almost fully IPv6-enabled Google thus including, images and maps etc, just like in IPv4. Without this only is available, but then you go to IPv4 for most services. So, start kicking your ISPs to support IPv6, so that you get IPv6 too and let them signup. Check this list of ISPs that already do native IPv6 to your doorstep. The question that now remains is: when will Slashdot follow?"
Link to Original Source


fuzzel has no journal entries.

Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account