0

Save some bandwidth by turning off TCP Timestamps

Looking at https://tools.ietf.org/html/rfc1323 there is a nice title: 'TCP Extensions for High Performance'. It's worth to take a look at date May 1992. Timestamps option may appear in any data or ACK segment, adding 12 bytes to the 20-byte TCP header. 

Using TCP options, the sender places a timestamp in each data segment, and the receiver reflects these timestamps back in ACK segments. Then a single subtract gives the sender an accurate RTT measurement for every ACK segment.

To prove this let's dig into kernel source:

./include/net/tcp.h:#define TCPOLEN_TSTAMP_ALIGNED    12
./net/ipv4/tcp_output.c:static void tcp_connect_init(struct sock *sk)
  ...
  tp->tcp_header_len = sizeof(struct tcphdr) +
    (sysctl_tcp_timestamps ? TCPOLEN_TSTAMP_ALIGNED : 0);

Some visualizations:

0

Worth Reading: Digital Content and the Fate of Businesses

There are two key differences between buying media in a physical format versus a digital one. First, there’s the technical aspect: Maintaining long-term access to a file requires a hard copy of it—that means, for example, downloading a film, not just streaming from a third party’s server. The second distinction is a bit more complicated, and it has to do with how the law has shaped digital rights in the past 15 years. It helps to think about the experience of a person giving up CDs and using iTunes for music purchases instead. —via the atlantic

Continue reading

0

Datanauts 012: The Scintillating Storage Smorgasbord

The Datanauts and Howard Marks serve up a buffet of storage topics, including the pros and cons of all-flash and hybrid arrays, the ins and outs of cloud and object storage, and what's up with Virtual Volumes.

The post Datanauts 012: The Scintillating Storage Smorgasbord appeared first on Packet Pushers.

0

DockerCon US 2016: June 20-21 in Seattle

Can’t get enough DockerCon? Good news because we are happy to officially announce DockerCon US 2016! The conference will take place in Seattle, at the the beautiful Washington State Convention Center (WSCC) on June 20th and June 21st, 2016. The Docker … Continued

0

John McAfee: What Year One of my Presidency would look like

In the third of a series of interviews from The Irari Report, Ira Winkler and Araceli Treu Gomes learn about what initiatives John McAfee would implement during the first year of his presidency, if he's elected.

0

John McAfee: What the Cyber Party stands for

In the second of a series of interviews from The Irari Report, Ira Winkler and Araceli Treu Gomes learn about John McAfee's Cyber Party and its platform.

0

5 Reasons To Upgrade Your Network Switch

With increasing wireless requirements and other pressures in today's IT environment, you might not want to wait until the next refresh cycle for that campus network switch replacement.

0

SDN’s Northbound Interface Evolves

The northbound interface has been a point of debate in SDN development, but an intent-based interface could accelerate progress.

0

Enterprise vCPE Boasts 156% Return on Investment

Amdocs tells Tier 1s: Get with the program and deploy vCPE.

0

Intel Tempers Its Data Center Forecast for Now

A 15% growth outlook might have been a little much.

0

9 ways to celebrate “Back to the Future” Day

Another made up geeky dayWednesday, Oct. 21, 2015 marks the day in which time-traveler Marty McFly arrives from the past (from the movie “Back to the Future Part II”. The Internet is freaking out about this upcoming “holiday”, and in the tradition of fake geeky holidays like “Star Wars Day” (May 4), Pi Day (March 14) and “Talk like a Pirate Day” (September 19), we now have a day to celebrate everything related to the time-travel movie, which is celebrating its 30th anniversary this year.To read this article in full or to leave a comment, please click here

0

Carriers Share SDN/NFV Experiences & Gripes

DT, Vodafone, Orange, and Verizon tell production tales of NFV.

0

DockerCon EU 2015: More Speakers Announced

It’s been a busy few weeks as we finalize the agenda for DockerCon EU 2015! Today’s round of speakers include four sessions in the Use Case and Wild Card tracks that the Docker team is super excited to announce. Planning on joining us at DockerCon … Continued

0

Magento database tool Magmi has a zero-day vulnerability

An open-source tool for importing content into the Magento e-commerce platform, called Magmi, has a zero-day vulnerability, according to security vendor Trustwave. The directory traversal flaw is in some versions of Magmi, which is used to move large amounts of data into Magento's SQL database. Such a flaw can allow access to other files or directories in a file system. "Successful exploitation results in access to Magento site credentials and the encryption key for the database," wrote Assi Barak, lead security researcher with Trustwave's SpiderLabs.To read this article in full or to leave a comment, please click here

0

US, UK disrupt Dridex botnet, which targeted online banking

A cybercriminal network that caused at least US$10 million in losses has been disrupted by U.S. and U.K. law enforcement, with the U.S. seeking a Moldovan man's extradition, the Department of Justice said Tuesday.Andrey Ghinkul, 30, is accused of being the administrator of the Dridex botnet, also known as Cridex and Bugat.A nine-count indictment was unsealed on Tuesday in the U.S. District Court for the Western District of Pennsylvania,  DOJ said. Ghinkul was arrested on Aug. 28 in Cyprus.Dridex has been a real headache for a number of years. It collects online banking credentials from infected computers, which prosecutors said were then used to initiate large wire transfers.To read this article in full or to leave a comment, please click here

0

Phishing websites look more legit with SSL certs from major companies

The Web is full of deception, and it's sometimes still hard for people to figure out if the website they're viewing really is what it says it is.This type of cyberattack, known as phishing, is designed to elicit sensitive details from victims by creating websites that look nearly identical to services like PayPal or Bank of America.Despite improvements in quickly detecting and taking such sites offline, it's still a huge problem.A U.K.-based network monitoring company, Netcraft, says fraudsters are exploiting weaknesses in technology companies in order to make more convincing looking phishing sites.Many websites use SSL/TLS (Secure Sockets Layer/Transport Layer Security) certificates to verify their domain name and encrypt communications with users.To read this article in full or to leave a comment, please click here

0

Juniper Certifications now good for 3 years!

It is finally official, Juniper has extended their certification expiration from two years to three years. Originally Juniper certifications where active for 2 years, and then you had 1 year after that to renew.  If you did not re-certify prior to the 2–year anniversary, you went into an inactive status for a year with your […]

The post Juniper Certifications now good for 3 years! appeared first on Fryguy's Blog.

0

Get Digital Content with the SDN Workshop

Last week I ran two SDN workshops, and in both of them the participants were busy taking notes as I explained the intricacies of concepts like SDN, NFV and network automation, and tools like OpenFlow or BGP.

However, how often did you revisit notes taken at a presentation and kept wondering “what exactly was he trying to say?” … or felt like the training you attended was like drinking from a fire hose and you missed most of the good stuff?

You won’t have that problem during the Miami SDN/NFV/SDDC retreat.

Read more ...

0

Containers Make Ciena’s Blue Planet More User-Friendly

Customers get the freedom to make programming changes to their network orchestration software.

0

FBI, DoJ take out $10 Million “Bugat” banking botnet

The FBI and US Department of Justice today said they disrupted the activities and arrested the administrator of the botnet known as “Bugat,”  “Cridex” or “Dridex,” which authorities said pilfered over $10 million.More on Network World: Gartner: Risk, relentless data center demand, open source and other tech trends IT needs to knowThe FBI called Bugat a sophisticated malware package designed to steal banking and other credentials from infected computers and is generally distributed through phishing. The software typically can upload files from an infected computer and download executable files to the victim’s system. Collected information id sent to the criminal’s system. Bugat is specifically designed to defeat antivirus and other protective measures employed by victims.To read this article in full or to leave a comment, please click here