Is BGP Safe Yet? Cloudflare Launches Website to Check Whether your ISP Prevents Route Leaks & Hijacks

Louis Poinsignon writes on the Cloudflare blog:

BGP leaks and hijacks have been accepted as an unavoidable part of the Internet for far too long. We relied on protection at the upper layers like TLS and DNSSEC to ensure an untampered delivery of packets, but a hijacked route often results in an unreachable IP address. Which results in an Internet outage. 

The Internet is too vital to allow this known problem to continue any longer. It’s time networks prevented leaks and hijacks from having any impact. It’s time to make BGP safe. No more excuses.

In June 2019, large parts of the Internet were put offline for no fault of theirs, thanks to Verizon — just one of the many hundreds of Internet Service Providers across the world who do not have security practices and filtering in place to prevent such a thing from happening.

Tom Strickx wrote on the Cloudflare blog back then:

Today at 10:30UTC, the Internet had a small heart attack. A small company in Northern Pennsylvania became a preferred path of many Internet routes through Verizon (AS701), a major Internet transit provider. This was the equivalent of Waze routing an entire freeway down a neighborhood street — resulting in many websites on Cloudflare, and many other providers, to be unavailable from large parts of the Internet. This should never have happened because Verizon should never have forwarded those routes to the rest of the Internet. To understand why, read on.

And this sort of thing happens a lot. And it isn’t just an inconvenience, it can also cause tremendous damage. Lily Hay Newman, writing for Wired, says:

BGP disruptions happen frequently, generally by accident. But BGP can also be hijacked for large-scale spying, data interception, or as a sort of denial of service attack. Just last week, United States Executive Branch agencies moved to block China Telecom from offering services in the US, because of allegedly malicious activity that includes BGP attacks. 

To make this internet a better place for everyone, Cloudflare has today launched an effort to push ISPs to implement checks and filtering to prevent BGP leaks & hijacks. The company has launched IsBGPSafeYet.com, a website that lets you check whether your Internet Service Provider (ISP) or broadband provider has BGP filtering in place or not. You can run the test in your browser and get instant results.


Indian ISPs Fail the Test

I ran the test for my ISPs Jio & ION and both of them failed the test. I also asked a few of my friends to run the test on their respective ISPs, and so far all Indian ISPs are failing the test. Here’s a non-exhaustive list:

Indian ISPs Failing the Test:

If you’re using any of the above ISPs, let them know.

If you’re in India, please run the test on IsBGPSafeYet.com in your browser and let me know on Twitter, so I can update this list.

Sebastiaan de With & Ben Sandofsky, makers of the insanely good camera apps for iPhone — Halide & Spectre, have just published their deep-dive and Technical Readout of the LIDAR sensor and the read cameras on the new 2020 iPad Pros.

A fantastic look at the new LIDAR sensor, its capabilities, and (current) possibilities. I sure hope Apple has some big plans for it in the near future, and doesn’t just intend to use it for their AR push.

Don’t miss the QnA at the end.

PDF Expert’s New Reading Mode Makes it Easier to Read PDFs on iPhone

We, at Readdle, have just shipped a massive update to PDF Expert for iOS that introduces Reading Mode — a feature that improves the experience of reading PDFs on iPhone. Reading Mode makes it easier to read the text from PDFs on the tiny iPhone screen. I’ve been playing around with this feature for a few weeks now as part of the marketing team, and have been terribly excited about its release. With Reading Mode, reading PDFs on iPhone is a delightful experience now.

Read PDFs on iPhone

PDFs are usually hard to read on the small screens of iPhones, especially the ones that are formatted in multiple columns. You have to constantly keep zooming in & out, panning in all four directions to make sense of the content. The Reading Mode reformats and adjusts the text and images in these PDF files and displays them on the screen in a single column, presented in a beautiful way. It’s like activating the Reader view in Safari or using Read Later apps like Pocket or Instapaper. Here’s what that looks like in practice.

You can change the theme from the default ‘Day‘ theme to ‘Sepia‘, ‘Night‘ or ‘Auto‘. You can also adjust the font-size and toggle the ‘Keep iPhone Awake‘ and ‘Crop Header and Footer‘ settings.

My dad loves to read, and spends several hours in the day reading e-papers, PDF books & magazines, blogs, etc. on his iPad. For many months now, he’s been asking me, complaining in fact, why he can’t enjoy reading PDFs on his Android phone. I think it’s time to switch him to an iPhone.

There are a lot more exciting features that we’re working on at Readdle, and I can’t wait to talk about our feature-packed upcoming releases. Stay tuned to our PDF Expert, Spark Email, and Readdle blogs in the coming weeks.

Now go grab the latest update of PDF Expert for iOS from the App Store to try out the Reading Mode on your iPhone. I’m happy to hear your feedback.

Nat Friedman making the announcement on the GitHub Blog:

We’re happy to announce we’re making private repositories with unlimited collaborators available to all GitHub accounts. All of the core GitHub features are now free for everyone.

Until now, if your organization wanted to use GitHub for private development, you had to subscribe to one of our paid plans. But every developer on earth should have access to GitHub. Price shouldn’t be a barrier.

Fantastic!

He further adds…

We’re also reducing the price of our paid Team plan from $9 per user/month to $4 per user/month, effective immediately. Existing customers will have their bills automatically reduced going forward.