Bug Forces Android Devices Off Princeton Campus Network 309
pmdubs writes "A major bug in the Android DHCP implementation has forced network administrators to (effectively) ban the use of such devices on the Princeton campus. In the last few months, Princeton has had to kick more than 400 Android devices off the campus network for using IP addresses well beyond the allotted DHCP lease (to the detriment of other users), sending invalid DHCPREQUEST messages after lease expiration, and a variety of other wacky behaviors. The link provides a clearly documented explanation of the buggy behavior, as does this largely neglected bug report. Without doubt, this buggy behavior is affecting other, less vigilant networks, and disrupting Wi-Fi traffic for Android and non-Android devices alike."
WTF? (Score:5, Insightful)
Did Google decide to implement their own IP layer entirely?
Re:WTF? (Score:4, Interesting)
If they didn't, It'd be harder to pull stunts like closing the Honeycomb source.
Android uses the Linux kernel, nothing more that is GPLed. Even their libc is developed inhouse. Tho, dhcp-client by ISC has a very permissive license. Little bit of advertising, that's all. Closing the source is allowed.
Re: (Score:2)
Even their libc is developed inhouse
I thought it was the netbsd libc.
Re: (Score:2)
Even their libc is developed inhouse
I thought it was the netbsd libc.
Nothing prevents BSD-licensed code to be closed. Ask Apple!
Sure but that doesn't mean their libc is developed inhouse.
Re: (Score:3)
Re: (Score:2)
No, they are just very unpopular and all the effort really goes into closed source versions there of. The BSDs can blame their lack of hardware support right on there license.
Re:WTF? (Score:4, Interesting)
If they didn't, It'd be harder to pull stunts like closing the Honeycomb source.
They haven't closed the source, they're delaying the source because they're worried about the user experience when it inevitably gets ported to a phone. At the moment, honeycomb is designed to work on 1280x800 screen res devices, and that's it. They''ll release the source when it's ready.
Re: (Score:3, Insightful)
They haven't closed the source, they're delaying the source because they're worried about the user experience when it inevitably gets ported to a phone.
So they've closed the source then?
When it has been released THEN it will be open. Until then it's closed.
Re: (Score:2, Informative)
Re: (Score:2)
so they're closed because they won't release honeycomb until it's ready, but they're open (almost entirely) otherwise?
Do you see how fucking backwards that is?
If you replace honeycomb with "windows 8" and reverse the terms, do you realize how wrong the statement is?
Re: (Score:3)
Re: (Score:2, Insightful)
So it's closed. Gotcha.
Re: (Score:3)
Re: (Score:3)
I know. It's not as if they built android on a heap of other people's open source work or anything, right?
Re: (Score:2)
Re: (Score:3, Informative)
False. Torvalds himself has clarified this many times. "Mere aggregation" as defined in the GPL is explicitly allowed, and your user-space closed source binary can make use of public kernel syscalls all day.
Re: (Score:2)
It's not "mere aggregation" when the component is a fundamental piece of the whole.
I don't care what Linus says, even if he said what you are claiming. He's not the only copyright holder on the kernel, and he doesn't define what the GPL means. The license text of GPLv2 is quite clear on the matter.
Re: (Score:3, Insightful)
I *know* that. Linus himself consulted with the FSF's lawyers on the matter. And no, the kernel is not a fundamental piece of the whole as long as it isn't directly linked into the resulting binary.
If what you were saying was true then linux distros such as Red Hat would not be legally possible, let alone SuSE. Otherwise how do you think they manage to legally include all those closed-source drivers?
What about running a closed-source Adobe reader on that kernel? Does the reader now need to be open?
And excus
Re: (Score:2, Interesting)
as linked below, someone needs to ask apple what the hell they're doing too. [princeton.edu]
Re: (Score:2)
as linked below, someone needs to ask apple what the hell they're doing too. [princeton.edu]
They will sue google for counterfeiting the behaviour of their DHCP client?
Re: (Score:2)
From the same:
"On July 15 2010, Apple released iOS 3.2.1 (build 7B405) for iPad (first generation). We verified that iOS 3.2.1 does not exhibit this bug."
Re:WTF? (Score:4, Informative)
Someone needs to read the links they post. Your linked article clearly states it was promptly fixed.
Re: (Score:3)
OK since you want to pretend you are reading, yet not even clicking in the link that notes it, the link you post clearly states this:
Princeton University reported the bug to Apple, and worked with Apple to resolve the issue. Apple fixed this bug as of iOS 3.2.1 on the Apple iPad® (first generation). (Note that Apple's fix introduced a new bug, described in iOS 3.2.1 - 4.0.2 Requests a DHCP Lease Too Often.) [princeton.edu]
If you bother following the link:
Princeton University has reported the bug to Apple, and is working with Apple to resolve the issue.
We have not yet tested iOS 4.3.2 for this bug.
Right now, there is no note if it's still happening in the last build, but even if it is, the writer of that post is the some one that not only did tell apple about it (as you suggested someone should) but also actively worked with Apple to get both bugs fixed. More that can be told about a forgotten bug report in Google's database that wont get addressed unless it starts getting bad press. [slashdot.org]
Re: (Score:3)
Why in the name of all that is GNU would Android re-implement a DHCP client when every Linux system since forever has had good DHCP client support already there?
It's not clear that the Linux DHCP client would play nice with the power-management shininess that Google bolted on to Android (and were never accepted into the kernel mainline). This is bolstered by the fact that the steps for reproducing the issue involved connecting to wifi, letting the device lock/sleep and observing wonkiness when it wakes up (search for 'STEPS TO REPRODUCE THE BEHAVIOR' in the OP, I don't want to copypasta too much).
My guess is that the lion's share of the issues have to do with timer
Funny link! (Score:2)
# Prevent Internet sites from requesting LAN resources. Site LOCAL Accept from LOCAL Deny
Anyone care to comment on what that is all about?
Re:Funny link! (Score:5, Interesting)
iPrism (my company's nanny of choice), blocks the site as an annonymiser. And what the hell kinda URL *is* net.princeton.edu.nyud.net anyway?
Here's the link to Princeton's web site: http://www.net.princeton.edu/android/android-stops-renewing-lease-keeps-using-IP-address-11236.html [princeton.edu]
And it appears the iPad has a similar problem: http://www.lockergnome.com/blade/2010/04/16/princeton-explains-network-issues-for-ipad-users-and-has-banned-the-devices/ [lockergnome.com]
Odd that they're both doing something so similar. Wonder if they use the same base DHCP code.
Re: (Score:3)
iPrism (my company's nanny of choice), blocks the site as an annonymiser. And what the hell kinda URL *is* net.princeton.edu.nyud.net anyway?
It's a cache. See http://en.wikipedia.org/wiki/Coral_Content_Distribution_Network [wikipedia.org]
Re: (Score:3)
that's coral cache - in case the site would get slashdotted, or just to be nice to site owners, story submitter (or editor) used cache links instead
Re: (Score:3)
Yeah I realized after I posted that the iPad thing was a year old, but once again inability to edit Slashdot posts left me with slightly incorrect information in a post. I'd be perfectly OK, with editing clearing positive moderation for the ability to make changes to reflect new information.
Re: (Score:2)
nslookup on the error IP gives me:
214.97.20.172.in-addr.arpa name = websense214.corp.<our company network>.
So there it is my companies IM filter box, webnonsense (apparently there are at least 214 of them)...
Perhaps, but did you notice that the first octet of the IP address is also 214? "websense214..." might just be a reference to the IP addy it lives on...or there might be at least 214 of them...or both :)
Does no one quality test anymore ? (Score:2)
Re: (Score:2)
Re: (Score:2)
iPods don't have EXTERNAL antennas, but nice trolling.
FTFY No radio spectrum device works without an antenna. Period.
Re: (Score:2)
Counterexample: Cable modems work fine without an antenna.
Interesting problem (Score:3)
From the description in the bug report, it sounds like certain services (dhcp client I should think) are halted or disabled. It seems to restart when web browsing activity is initiated. This seems to indicate that it was halted when the machine was initially locked -- my guess would be to save battery. After all, DHCPing all the time would burn battery.
I wonder what the best solution would be? When locking to release the DHCP lease before suspending the DHCP client? I wonder if my Vibrant has the same issue?
Re:Interesting problem (Score:4, Interesting)
No, the restart sequence should check a timer to determine if the initial lease has expired, and renegotiate a new IP from the server if necessary. Assuming that when you wake up that the lease still exists without checking would certainly cause problems. It's not a case that would normally get tested as it requires a large down time to accomplish, and yuo won't encounter that with normal sleep-to-wake test cycles.
Re:Interesting problem (Score:5, Informative)
From the description in the bug report, it sounds like certain services (dhcp client I should think) are halted or disabled. It seems to restart when web browsing activity is initiated. This seems to indicate that it was halted when the machine was initially locked -- my guess would be to save battery. After all, DHCPing all the time would burn battery.
I wonder what the best solution would be? When locking to release the DHCP lease before suspending the DHCP client? I wonder if my Vibrant has the same issue?
Actually, the report specifically states that this bug should not be classified as a problem with DHCP when sleeping. The Princeton guy did extensive testing and found that even with active use, the device fails to renew the lease and continues using the IP after the lease has expired.
Re: (Score:2)
At least its an improvement in that their previous DCHP bug renewed its lease every couple of minutes - sometimes up to a half dozen times per minutes. That bug dates back to the 1.x code base. I wonder if this bug as a result of a fix for their previous DHCP bug.
Re: (Score:2)
From the description in the bug report, it sounds like certain services (dhcp client I should think) are halted or disabled. It seems to restart when web browsing activity is initiated. This seems to indicate that it was halted when the machine was initially locked -- my guess would be to save battery. After all, DHCPing all the time would burn battery.
I wonder what the best solution would be? When locking to release the DHCP lease before suspending the DHCP client? I wonder if my Vibrant has the same issue?
Actually, the report specifically states that this bug should not be classified as a problem with DHCP when sleeping. The Princeton guy did extensive testing and found that even with active use, the device fails to renew the lease and continues using the IP after the lease has expired.
Funny, seems like the same group reported that iOS has had the same problem: http://www.net.princeton.edu/announcements/ipad-iphoneos32-stops-renewing-lease-keeps-using-IP-address.html [princeton.edu]
Wonder why only Android was mentioned for this story?
Because there's a workaround for iOS (Score:3)
And I don't consider a single mention of an "Allshare workaround" that involves waiting for a particular app to connect, then crash to be a workaround.
Re: (Score:3)
Funny, seems like the same group reported that iOS has had the same problem: http://www.net.princeton.edu/announcements/ipad-iphoneos32-stops-renewing-lease-keeps-using-IP-address.html [princeton.edu]
Wonder why only Android was mentioned for this story?
Because the iOS DHCP issue was fixed in August 2010 when iOS 4.1 came out probably. Maybe your question should be why Android fell into the same trap when iOS' problem was well publicized ?
Re: (Score:2)
I'm serious.
Re: (Score:2)
I wonder what the best solution would be?
IPv6 stateless autoconfiguration...
Re: (Score:2)
The bug details help you know how - it's to do with measurement of time - the timer used for the lease management happens to be a timer which stops when the android is sleeping.
Me too (Score:2)
I have a Samsung Captivate, and I also experience this problem. Oddly enough, I experience similar problems with an Asus EEE netbook running Ubuntu 10.10, though maybe that isn't related, and the symptoms are just similar..
I hope this fix this ASAP. Maybe if everyone 'stars' the bug?
Re: (Score:2)
Maybe if everyone 'stars' the bug?
I thought one 'plusones' in the Googleverse?
and it will never be fixed (Score:5, Interesting)
oh, google will fix it. But there will be carriers who will never roll those fixes out to their users.
Re: (Score:2)
Please mod parent up.
And there will also be manufacturers who will take their sweet time in even developing an update for their devices for the carriers to never release. Yes, I'm talking about you, Samsung.
The trouble is, handsets are being released at such a frenzied pace that, with the availability of updateable firmware, there's this rush to get products out the door that aren't entirely done, with the assumption that they'll be fixed via a software update. However, it also means that that new devices
Re: (Score:3)
Re:and it will never be fixed (Score:4, Informative)
Only if you use iTunes, which doesn't run on any libre OS.
-molo
Re:and it will never be fixed (Score:4, Funny)
That was why I went from Linux->OSX->now Windows 7. OSX is a joke. All the freedom of windows and all the off the shelf software of Linux.
Wut? (Score:2, Insightful)
The last link points to a separate bug in iPhone's WiFi implementation, rather than an Android issue. Which kind of makes the rest of the summary look either very ill informed, or a poorly disguised attempt at trolling.
Re: (Score:3)
Agreed. I wonder how many serious security bugs users of the original direct-from-Google ADP are exposed to, because Google refuses to release updates for a phone they sold retail not much more than a year ago (right up until the release of the N1 I believe, which is only a little over a year old).
People bash other vendors for not supporting android hardware but tend to favor Google since they have supported the N1 with all of their updates quickly, but they forget that the N1 is not first android phone th
Re: (Score:2)
For all of its issues at least Apple supports their hardware, and even they pale in comparison to Microsoft which still provides security updates Windows XP.
Well then, the conclusion is obvious - you should be running Windows XP on your phone.
Re: (Score:2)
"However because android has ZERO central bug authority for patching random issues like this, and ALL patches have to either be approved or hacked onto your phone It literally can take a year or more if ever for small bugs to actually get fixed."
Just like Ubuntu.
And Oracle.
And Microsoft.
Re: (Score:2)
I'm completely confused by this. All three of these vendors have their own authority for patching their platforms of choice. When they find a problem with their software, they release patches which you can immediately download and install. In fact with Ubuntu and to a lesser extent Windows, you can independently download and install your own patches if the vendor is moving to slow for you.
The difference between any of the vendors you list above and Google/Android is that while most of those systems are i
Re: (Score:2)
"All three of these vendors have their own authority for patching their platforms of choice. When they find a problem with their software, they release patches which you can immediately download and install. In fact with Ubuntu and to a lesser extent Windows, you can independently download and install your own patches if the vendor is moving to slow for you."
From experience none of them release patches for notable bugs, and from experience my android platform is as open as my PC platform.
Microsoft are perha
Re: (Score:2)
you download udpates for Ubuntu, oracle, and Microsoft from Ubuntu, Oracle, and Microsoft.
Let's put this into perspective.
you buy two computers one from Acer, and one from Dell. one runs Windows Vista(from Dell) and one runs Windows 7(from Acer).
In the android world. a bug is found and patched in the main software.
Acer gets the patch tests it and then sends out a notification for update two or three months later.
Dell gets the patch, but that model didn't sell to well(only a million units) and puts off upd
Re: (Score:2)
Looking for a non-anonymised link to the Android story (Seriously why would you put an anonymising proxy into your submission link for a public website?) I found this [lockergnome.com] which indicates iPad had the issue around a year ago too (Princeton apparently figured that one out too, those guys are on the ball). I assume Apple much have fixed pretty quick.
Re: (Score:2)
Its not an anonymizing proxy, its a free mirror to keep us from slashdotting the site. Info on Coral Cache here:
http://en.wikipedia.org/wiki/Coral_Content_Distribution_Network [wikipedia.org]
Strange that it is the newer devices (Score:2)
You usually have to try hard to get dhclient wrong. Just use the one from isc and you should be okay. I suppose most *nix distros do that. Maybe somebody did something clever in later android versions.
causing Wifi router issues at home too? (Score:2)
I've had to reboot my WBR-2310 fairly often as my Android phone loses ability to see the router to connect to it.
I moved the DHCP server to my Linux box and it seemed to help, but have since had to reboot router occasionally.
I wonder if it's related.
Also, good work Princeton, this impressed me, from TFA:
Didn't they see the warnings in the scifi movies? (Score:2)
OIT sucks (Score:3, Informative)
Princeton may well be one of the leading academic institutions in the country, but I've taken it as axiomatic that the more prestigious an institution is the more backward its technology is going to be. For instance, at Firestone Library, the chief repository for literature-related material on campus, there is no electronic gate for entry and exit -- a desk guard checks your ID when you go in and searches your bag when you go out. Many projectors on campus max out at an anemic 800x600 resolution, a fact that has caused problems for me at two different presentations. Site licensing policy is weird and inconsistent (there are no fewer than three different kinds of Windows licenses you can get from the software repository).
I don't know if it's the archaic technology they're responsible for maintaining or some other cause, but the Office of Information Technology is full of power-hungry knee-biters who have made it their life's mission to sniff out every errant packet, every mistimed request, every misconfigured network adapter, and God help the poor sap whose device is unwittingly responsible for one of these infractions. The banhammer's wrath is terrible, its retribution swift. You never see it coming because OIT bans first and sends nastygrams later, or not at all, and when you call them to inquire why your Internet connection is suddenly nonexistent they give you this explanation of their rationale that somehow always ends up sounding like the narrative of a Carmen Sandiego investigation. Oh, and you play the part of the VILE agent. You're always knowingly guilty. Yeah, my wife installed VMware Fusion on her Mac to cause trouble for the netizens of Princeton. She was totally aware that VMnet was slightly misconfigured and was occasionally sending invalid packets to her subnet. It was all part of her nefarious plan to shut down the university network for some inadequately explored reason.
I'm posting this anonymously because for all I know some overzealous git at OIT (which is Princetonese for KGB) reads Slashdot and Lord knows their admins are happy to ban you from the network for any reason they can conjure up out of thin air. Better yet, if you get banned from the network enough times for seemingly innocuous misbehavior by your gadgets they can cite you for academic misconduct. Plagiarism? Bought an Android phone? Same difference.
It is possible to describe OIT's hypomanic "kill all DHCP miscreants" approach as "vigilant." It is also possible to describe it as "total overkill." I haven't yet heard of any major university or corporate network being blown up by sleeper cells (har har) of terroristic smartphones.
In short, Princeton OIT is like the Civil Protection of information technology outfits: they protect the network from its users. Small wonder that I sometimes feel like picking up a crowbar and causing some anarchy for them...
Oh Princeton... (Score:2)
Re: (Score:2)
I'll tell you about my mother...bang!
Haven't we seen this before? (Score:2)
Didn't Princeton have a similar problem with iPhones? Sure seems to me that Princeton should look at its own rules and infrastructure to see why it has to be so strict when so many others don't have this problem...
Re: (Score:2)
Many others probably do have the problem but haven't noticed due to lax monitoring. Their users just experience poor service (which they may have come to expect).
Re: (Score:2)
Yes. Confusingly the story about iPhones having the same basic problem is linked to from the summary under "...disrupting Wi-Fi traffic for Android and non-Android devices alike."
As IPv4 addresses become a scarce commodity, expect more organizations to start controlling more tightly how they are use
Site offline? (Score:2)
They may be solutions (Score:2)
I'm experiencing none of these issues while running a non-stock setup:
Rooted HTC G2 running CyanogenMod 7 (Gingerbread 2.3.3). The DHCP server I tested against is a WRT54GS using Tomato 1.28 firmware.
With my setup the phone renews the DHCP lease when it reaches 50% of the expiration time if it is already connected. If it is not connected when the lease expires then it renews it correctly when the next connection is made.
ah yeah (Score:2)
More evidence for the lawsuit! (Score:2)
Re: (Score:3)
Yeah because we all know how good that Android OEMs are about releasing timely updates.
Re: (Score:3)
This may be the new procedure: report a bug to google and if it is not corrected quickly enough, advertise on slashdot.
Re: (Score:2)
The last time I have reported a Google bug on slashdot, it has been corrected very quickly.
I've found the quickest way to get something fixed is to grumble about it to a Google employee at the pub, preferably just after I've bought them a drink.
(This has now become a long-running joke with the couple of Google employees I know.)
Re: (Score:2)
Anyone who really thinks that way deserves the kick in the ass from time to time. However, the Android users, enthusiasts and fans I know have also rooted their phones, installed ad blocking and custom firmware.
Android phones are good because most of them are rootable and fixable. I'll just need to ask TeamWhiskey if they have a fix already.
Re: (Score:3)
Re: (Score:2)
It was idiotic to use a caching or anonymising proxy in a submission link to a site like Slashdot. Like it or not a lot of us are on corporate or government networks with our own proxies that see stuff like this a attempt to bypass filtering. However, having said that, the problem is legit. Here's the link to Princeton's actual web site:
http://www.net.princeton.edu/android/android-stops-renewing-lease-keeps-using-IP-address-11236.html [princeton.edu]
I found it when iPrism wouldn't let me read the damned article.
Re:Hoax? (Score:4, Insightful)
Re: (Score:2)
Do you really not know about the nyud.net free content aggregation service?
Educate yourself at www.nyud.net
Re: (Score:2)
Re:Nice flamebait article (Score:5, Interesting)
Apple had a similar issue:
http://www.net.princeton.edu/announcements/ipad-iphoneos32-stops-renewing-lease-keeps-using-IP-address.html [princeton.edu]
At this point, one has to wonder what Princeton is doing on their network that they keep uncovering such bugs.
Re:Nice flamebait article (Score:4, Interesting)
At this point, one has to wonder what Princeton is doing on their network that they keep uncovering such bugs.
Princeton's network was for the longest time very old. We had shared 10mb over cat3 cable to most of the campus. To keep things working, the network was heavily monitored and anything that did not belong was promptly disconnected.
Fast forward to now. We have a modern network that can handle some problems, but the motioning form the dark days still continues. Because of this heavy monitoring IT can see problems with devices that probably no one on earth sees.
Yes the iPhone and iPod both had the same issues, but Apple fix them eventually. I hope the Google will do the same.
Re: (Score:2)
At this point, one has to wonder what Princeton is doing on their network that they keep uncovering such bugs.
Or one could choose not to wonder and instead read TFA [princeton.edu], in particular point 5, which describes exactly what they are doing.
Re: (Score:2)
Re: (Score:2)
Here's a news flash for you.
Writing correct programs is hard. VERY hard... in fact, it's so hard, that it's simply not feasible to expect that computer programs that do anything interesting actually *be* correct before they ship, or, simply put, they will never ship, because the company will run out of development funding long before the product reaches a point of being bug free.
Here's another tidbit, most software companies that I know of aren't particularly tolerant of bugs in their code before the
Re: (Score:2)
Blame AT&T, Verizon, Samsung, or someone who you paid money to. You did not pay money to Google. You did not pay money to the Android open source community. You did not pay money to any of the supporting open source projects that make Android possible. Stop blaming those that do work for free and instead blame those that take that work and sell it to you without performing proper UAT to confirm that the FOR PROFIT application meets the needs of the client base and is ready for sale as a product.
Re: (Score:3)
You paid google with your eyeballs (every time you use Google search or one of their other clever resources that builds their gold mine of user data and helps them shovel ads.) You also paid your carrier to pay google (every year google makes $10 per active handset from the carrier.)
So yeah, google kind of does get paid, by ME, for the privilege of using Android.
Re: (Score:2)
No, they get paid by your carrier. Your Carrier is responsible for getting quality products from their suppliers. You wouldn't yell at the manufacturer of a drawer handle if it breaks off your Ikea dresser... you yell at Ikea for getting substandard parts or for not ensuring that the handle they bought worked well with the dresser material they chose to use to build the thing.
Re: (Score:2)
I'm intrigued, what is your profession? I mean, you seem to actually believe absolute zero defect software development is always feasible, so I'm intrigued to know what your background is because obviously it's a profession that takes years to master and can be quite complex, yet, you've apparently mastered it to such an extent that you would never ever miss a problem or do it wrong.
I mean, what is this truly masterful trade of yours? Hamburger flipping perchance?
Re: (Score:2)
Cheap, Feature-rich, Bug-free.
Choose 2. Guess what, you choose Feature-rich and Cheap. Just like 90% of the rest of the population.
Why do you think a Car is expensive? Because it's bug-free. Same for planes, medical equipment, and just about anything dealing with safety. But phones, nooooo, you want cheap cheap cheap and features features features.
Re: (Score:2)
So I did pay you, or someone like you, and you did not deliver...
You got what you paid for -- if you want a totally bug-free phone, and you're willing to foot the bill for a few hundred developers to work for a few decades on nothing but polish, you can have that too; companies just don't advertise that option because the high cost makes it a very small market
Re: (Score:2)
A DHCP lease is like a real life contract. It's not like the phones weren't told the lease expires in an hour, it's part of the package. So the lease says this address is good for 3 hours and the phones ignore that, so who's at fault? Certainly not the DHCP server.
Re: (Score:2)
Im very familiar with how DHCP is supposed to work but kicking users out of a network just to prove a point would put me on line in the unemployment office in no time unless i had a very good reason and no usable workaround existed.
The "very good reason" given at the end of the article is they don't have enough IPs to give everyone day+-long leases (they don't use NAT), and it causes problems when the Android device continues to use an IP address long after the lease has expired.
Re: (Score:2)
My point is that no matter who is to blame its wrong to put the users of the network in the hot seat. Implement a workaround, notify Google and don't punish the owners of the devices unless absolutely necessary.
Im very familiar with how DHCP is supposed to work but kicking users out of a network just to prove a point would put me on line in the unemployment office in no time unless i had a very good reason and no usable workaround existed.
Yeah, I take it you've never heard of the BOFH [theregister.co.uk]? Or at least thought it was a myth?
They exist, and they behave exactly as you describe - I've had to deal with one numerous times. The end users' experience is of no concern to to a BOFH. I'd hazard a guess they even get a perverse pleasure out of incommoding end users.
Re: (Score:2)
So my smartphone can have a globally-routable IP address! You know, for the servers I'm going to run on it.
Funny you should ask. I am currently working on a fully secure P2P communication tool for android. Should be quite handy in parts of the world where governments clamp down on centralised systems like twitter.
Re: (Score:2)
"Shorter leases allow us to recover unused IP addresses rapidly, in turn permitting us to assign globally-routable IP addresses to clients without requiring Princeton to impose a NAT between wireless clients and the Internet."
So my smartphone can have a globally-routable IP address! You know, for the servers I'm going to run on it.
It's not just phones on the WLAN. I occasionally used the public IP assigned to my laptop while at university, and I expect graduate students and staff have more need than undergraduates. However, my university had several /16 assignments, so they didn't need to worry so much.
Re: (Score:2)
Sounds about right. Encrypted PPTP VPN hasn't worked for years [google.com], yet Google keeps including it in new versions and hasn't even bothered assigning the bug.
Re: (Score:2)
If you have an intelligent enough WiFi controller or APs, you shouldn't have to ban the devices. Just test out the feature that requires all wifi devices to have a valid DHCP lease before bridging their traffic. On Cisco WLC this is called "DHCP Required"
That *should* take care of it. It will at minimum take care of the simultaneous use of more than one IP sub-issue. I'm going to scurry off to verify that the controller correctly stops bridging at lease expiry now -- never can trust these vendor feature