Posts by Phil Koenig

@jake - re: access to hardware

Part 1:

Both BGP and MPLS messages are transmitted over the same public network backbone that internet packets are. Ergo: forge those control messages=control IP routing.

BGP is more exposed because it runs over TCP, while MPLS is reputedly a "layer 2.5" protocol. However, if you are able to tap into the fiber, you essentially have access down to the physical (layer 1) layer.

Here in Silly Valley, we were reminded a few days ago about just how exposed a carrier's infrastructure often is when someone severed 2 separate fiber rings in the San Jose area (one ATT, one Sprint), bringing down all sorts of communications for about 12 hours.

Part2:

After reading one of the referenced papers, 2 points stand out. A) They are discussing MPLS *VPNs* - which actually are running over layer 3. This implies that *physical* network access is not required, only access to the data stream. (various ways of achieving that)

B) The authors state certain background assumptions, including "Assumes attacker has access to traffic path (in core)". I note that this does not necessarily imply "access to physical hardware", only access to the "traffic path". Once again, there are ways to achieve this that do not require access to a physical router/etc.

Note that many of the vulnerabilities revolve around the use of MD5 for authentication (for BGP, over which some of these MPLS packets are traveling), which of course is now known to be crackable.

You've got that bundling trend wrong

Actually the trend is AWAY from bundling hardware and services - Verizon announced this at least a year ago.

When everyone's network is running some variant of GSM or LTE, holding customers hostage on a network that is technically perfectly compatible with everyone else's is going to be a failed strategy - customers have wised-up to that game now.

Verizon is simply being pragmatic by moving to LTE - they are the last, largest CDMA carrier and the lack of device choice (HW vendors are loathe to commit resources to a technology that has ever-decreasing marketshare) has already had a substantial negative impact on Verizon. Best to just chin up, join the opposition and then tout your new-found religion of "open networks!!"...

Martin's faux "enforcement" is one-sided anyway

Martin's FCC never seems to find any time to tap the big telcos (ie ATT, Verizon) on the wrist in any way, but keeps finding excuses to go after the cable companies.

I'm no fan of Comcast by any means, but trying to assert that this sort of nonsense actually amounts to doing broadband users any real favors is laughable. The next lovely action by the FCC will be to give their blessing to the Sirius/XM merger, which is about as "pro-competitive" as pork fat is health-food.

Lenovo's are better than I expected

I'm another old-time Thinkpad user and have recommend them to clients for years.

First of all, I doubt there's ever been a Thinkpad built outside Asia, at least for the last 10 years. Several years before Lenovo got involved, the top-of-the-range models were at least partly manufactured in Japan, but IBM was building most of them in China or Singapore long before Lenovo took over.

I'm not such a big fan of T60's either, but I think the T61 is decent. Early versions of the Windows software tools after the Lenovo transition could be a bit shaky as well, but a lot of that has been sorted out in recent versions. (ie System Update, Access Connections)

WiFi was never designed for this application

To be honest, I have never understood why people keep pushing to use WiFi for a task it was never designed for.

Re: the gentleman in the Mission District of SF who gets a flaky Meraki signal - I also live in SF, and these days in this part of the world, WiFi signals are everywhere. The last thing we need is yet another signal stomping on top of all the other AP's, that are already stomping on top of all the other AP's, that are...

There are 11 802.11b/g "channels" in the USA, of which only 3 are completely isolated from the rest, assuming no one uses any but those 3. (bad assumption)

Thus it's not uncommon to do a search and find literally 6-10 AP's all sitting on the same frequency, and upwards of 20-30 visible signals at a single location. In my apartment, I'm seriously considering switching to 802.11a, just to escape the 2.4Ghz RF ghetto..

Audiophilia

I'm actually one of those 'wackos' that feels that 44.1khz/16-bit digital is inadequate to provide the qualities I want in an audio recording. Given Britain's strong history of support for the audio industry, I would have expected more like-minded souls commenting here.

I'm a big fan of SACD, but with the rise of DVD and the iPod, the commercial prospects haven't been looking very good the last few years.

Which is why I had also been hoping that now that BD's become the new hi-def consumer video standard, Sony could do something with BluRay to revitalize the market for a next generation/hi-def audio format. It's just a pity to me that with all that storage/bandwidth available, the first independent effort squanders it by just putting a bunch of similiar copies on one disk.

Granted, there is no BD-approved way of encoding >192khz/24bit audio on BD, but why not make it part of the next revision of the BD standard? Goodness knows they've revised that standard enough times by now, and I doubt most TV-watchers will care that their £50 video player won't play 384khz/30-bit audio..

Correction and why this is not so special

@Daniel B: RemoteDesktop terminates the current user session when it connects, so that is not going to help you much if you want to monitor someone else's session without them knowing.

The technology to accomplish this in a much more effective and automatic way than the way demonstrated with the Mac is not complex, it's just not commonly installed.

This will probably change pretty soon, for example what Lenovo is bundling with a lot of their new models:

http://static.tigerdirect.com/html/veriface.html

http://www.brightcove.tv/title.jsp?title=1445017879&channel=537061027

..and the telcos get a free pass

Kevin Martin's tenure at the FCC has been notable for giving the big telcos (like SBC/ATT and Verizon) almost anything they wanted, while taking regular jabs at the cable industry.

While it's true that Comcast got caught being surreptitious about "traffic management" that targeted BitTorrent in particular, the CEOs of SBC/ATT and Verizon made all sorts of public bluster about prioritizing internet traffic some time back and the FCC did little in response.

Yes, part of the FCC's approval of the SBC/ATT/Bellsouth merger was predicated on a limp-wristed agreement that for the next couple of years, "The New ATT" would have to play nice when it came to traffic prioritization, but there was nothing legislatively binding in that agreement and it was designed with a relatively short "sunset period".

More importantly, the sheer magnitude and audacity of the merger that gave rise to that "gentleman's agreement" was such a huge dream-come-true for Ed Whitacre and SBC (largely reconstituting a corporation that at the time that Judge Harold Greene finally succeeded in breaking up for antitrust violations in 1986 was the largest corporation in the world) that that pitiably toothless agreement was a trivial annoyance compared to the enormous market power that AT&T now wields. Worse, other regulatory giveaways (like giving exclusive control of new fiber infrastructure to the telcos in perpetuity) made up for these "phony concessions" many times over.

It would be nice if Kevin Martin spent a fraction of his PR bandwidth attending to the many market abuses of AT&T and its SBC progenitor (below-cost predatory practices for years in the ADSL market, for example) rather than acting like the only "evil doers" in the marketplace are in the cable industry.

Spec comparison

I don't know what spec was read by the person who said the X300 weighs "significantly less than the Air", but according to Apple's website, the Macbook Air weighs 1.36 kg. ("Actual weight varies by configuration and manufacturing process")

Nonetheless, the X300 seems like a much more usable machine. Are we all aware that the Air has *no*ethernet*port*??? And a lot of other missing bits.

I will grant you, the Air is very pretty, but.. well, Paris H isn't too bad either if we limit ourselves to such parameters..