EFF Releases Software to Spot Net NonNeutrality - Slashdot

Follow Slashdot blog updates by subscribing to our blog RSS feed

×

EFF Releases Software to Spot Net NonNeutrality 73

Posted by kdawson on Thursday November 29, 2007 @12:10PM from the reset-this dept.

DanielBoz writes in with word of the EFF's new initiative to help consumers detect if their ISP is spoofing packets. From the press release: "In the wake of the detection and reporting of Comcast Corporation's controversial interference with Internet traffic, the Electronic Frontier Foundation has published a comprehensive account of Comcast's packet-forging activities and has released software and documentation instructing Internet users on how to test for packet forgery or other forms of interference by their own ISPs."

This discussion has been archived. No new comments can be posted.

EFF Releases Software to Spot Net NonNeutrality

Search 73 Comments Log In/Create an Account

Comments Filter:

Re:If it's Comcast... (Score:5, Informative)

by Raul654 ( 453029 ) writes: on Thursday November 29, 2007 @12:20PM (#21519101) Homepage

If packets start showing up at one end of the connection that were not send by the other, they had to have been added en-route. This can occur naturally, as a result of IP-level fragmentation in the network, or it can be done deliberately, as Comcast and the great firewall of China do. IP-level fragmentation occurs because a packet is too large and it is being cut into fragments to improve performance; as I understand it, in practice on the real internet, it's actually pretty rare. On the other hand, if those packets that mysteriously show up are TCP-resets, then it's (IMO) an entirely reasonable assumption to make that they were put there by someone wishing to interrupt the traffic stream.

Parent Share
twitter facebook
RTFA (Score:4, Informative)

by hal9000(jr) ( 316943 ) writes: on Thursday November 29, 2007 @01:16PM (#21520067)

Your post demonstrates unequivocally that you did not read the article or if you did, you didn't understand it.

Take two packet traces, one from you your computer one from a friend while your two computers are talking. Then compare the TCP sessions captured by each for differences. Differences that don't matter are fragmentation and re-ordering, for example. Difference that do matter are TCP resets, ICMP unreachables, TCP FIN's that are received by one side and not sent by the other.

Sheesh, I can forgive not knowing how networking works, but to post inflammatory comments when you are obviously ignorant is, well, ignorant.

Parent Share
twitter facebook
Re:If it's Comcast... (Score:2, Informative)

by Discordantus ( 654486 ) writes: on Thursday November 29, 2007 @01:33PM (#21520323)

Remember, though: Comcast isn't doing packet shaping. They are sending RST (reset) packets, essentially "hanging up" the connection, pretending to be the server you are talking to.

To detect this, simply scan all the RST packets that come in, and try to detect a pattern of forgery. This is easier, of course, if you can ask the server if the RST packet was real.

Parent Share
twitter facebook
Will There Be Fasle Positives? (Score:3, Informative)

by AK Marc ( 707885 ) writes: on Thursday November 29, 2007 @02:56PM (#21521853)

I work for an ISP. We purposefully craft spoofed packets and send them to our customers. Will we be reported as offenders? Does it matter that we provide service to rural locations that are only accessible through satellite and the "spoofers" are called "accelerators" by the people that sell them, and the spoofed packets are added to correct for windowing issues to increase the speed of Internet connections? If I get a number of customers that complain about our "non-neutrality" I'll be more than happy to turn off TCP acceleration and see how they like the new neutral Internet.

It isn't only for nefarious purposes where providers spoof packets. Will this software be able to identify the good from the bad? Or will it just assume that all are bad, even in the face of legitimate uses?

Share
twitter facebook
Re:If it's Comcast... (Score:3, Informative)

by Gerald ( 9696 ) writes: on Thursday November 29, 2007 @06:42PM (#21525199) Homepage

In the traces I've seen the RSTs come in pairs, with the sequence numbers differing by 12503.

Parent Share
twitter facebook
Re:Important, (Score:3, Informative)

by noidentity ( 188756 ) writes: on Thursday November 29, 2007 @07:44PM (#21526025)

Network Neutrality Squad [nnsquad.org] has a forum [nnsquad.org] and mailing list [nnsquad.org] for posting and discussing test results.

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

557 commentsFrozen Embryos Are 'Children,' According To Alabama's Supreme Court
462 commentsTeenagers Have Bought 'Ghost Guns' Online, Sometimes with Deadly Consequences
394 commentsIowa School District Is Using AI To Ban Books
365 commentsUS Supreme Court Rejects US Student Loan Relief. President Biden Responds
362 commentsShould Public Buses Be Free?

An Ada exception is when a routine gets in trouble and says 'Beam me up, Scotty'.