Viss3h ago

hey so here's a cool fun new thing to add to your threat model

something that polls your UPS to measure voltage, is somehow, inadvertently causing the network management card in it to puke, and when that thing reboots or crashes, it takes the UPS down with it (it reboots also) - and everything hung off that ups .. loses power. which includes your dns server.

so fucktardian windows machines and android devices that think the network is down if they cant resolve dns all disconnect from the lan

Show threadViss3h ago
if i ever meet the person responsible for the logic of "if a windows machine cant resolve dns it disconnects itself from the wireless network" its gonna be quite a spectacle
Show threadPaul_IPv63h ago

@Viss

apple had some test if the internet was "up" based on a DNS query and ping of one single FQDN and IP.

someone else to be slapped repeatedly until they find a new career field...

Show threadJ.P. Stewart3h ago
@paul_ipv6 @Viss ncsi uses anycast + cdn behind a well known fqdn. Never relies on any baked in ip (except for telemetry).
Paul_IPv62h ago
Show threadQuixoticgeek
@jpsays @paul_ipv6 @Viss android does it via a URL and expects a 203 from the server else it assumes you're in a captive portal. Which is really infuriating.
11:45pmWeb
Show threadPaul_IPv62h ago

@quixoticgeek @jpsays @Viss

don't *even* get me started on captive portals, hotel networks, etc.

Show threadQuixoticgeek2h ago
@paul_ipv6 @jpsays @Viss agreed. But also argh at os code that assumes that the only reason the connect to a network is internet access. So many alerts need to be cleared before android will stay connected to my cameras WiFi...
Show threadPaul_IPv62h ago

@quixoticgeek @jpsays @Viss

never claimed that was the reason for the test, just that they made internet reachability as a gating test for things that shouldn't need to have external connectivity to work.