Why doesn’t every computer have 256 char domain name, along with a private key to prove it is the sole owner of the address?

Edits: For those technically inclined: Stuff like DHCP seems unnecessary if every device has a serial number based address that’s known not to collide. It seems way more simple and faster than leasing dynamic addresses. On top of that with VOIP I can get phone calls even without cell service, even behind a NAT. Why is the network designed in such a way where that is possible, but I can’t buy a static address that will persist across networks endpoint changes (e.g. laptop connecting to a new unconfigured wifi connection) such that I can initiate a connection to my laptop while it is behind a NAT.

  • Yes, it would be a privacy nightmare, I want to know why it didnt turn out that way
  • When I say phone number, I mean including area/country code
  • AFAIK IP addresses (even static public ones) are not equivlent to phone numbers. I don’t get a new phone number every time I connect to a new cell tower. Even if a static IP is assigned to a device, my understanding is that connecting the device to a new uncontrolled WiFi, especially a router with a NAT, will make it so that people who try to connect to the static IP will simply fail.
  • No, MAC addresses are not equivalent phone numbers. 1. Phone numbers have one unique owner, MAC addresses can have many owners because they can be changed at any time to any thing on most laptops. 2. A message can’t be sent directly to a MAC address in the same way as a phone number
  • Yes, IMEI is unique, but my laptop doesn’t have one and even if it did its not the same as an eSim or sim card. We can send a message to an activated Sim, we can’t send a message to an IMEI or serial number
  • JakenVeina@lemm.ee
    link
    fedilink
    English
    arrow-up
    77
    arrow-down
    5
    ·
    7 months ago

    They do, it’s called an IP address.

    Phones get numbers assigned to them by a cell service provider, in order to communicate on their network, which is basically the exact process for computers and IP addresses.

    If you’re asking about the equivalent of like a SIM card, in the computer/internet world, that’s handled at higher layers, by digital certificates. And again, the process is almost exactly the same, except they don’t (usually) get put on physical chips.

    • henfredemars@infosec.pub
      link
      fedilink
      English
      arrow-up
      30
      arrow-down
      2
      ·
      7 months ago

      IP address is really the best comparison here. Some computers share an IP just like entire call centers may share the same phone number. And neither IP addresses and packets nor phone numbers are properly authenticated without additional enforcement systems.

      Internal networks exist for computers and phones. It’s a nice parallel.

        • lemmyng@lemmy.ca
          link
          fedilink
          English
          arrow-up
          17
          arrow-down
          1
          ·
          7 months ago

          Sure they can. If you put a network behind a router they will share an egress/ingress IP. And there are certain high availability setups where computers share IPs in the same subnet for hot/standby failover.

          • JesterIzDead@lemm.ee
            link
            fedilink
            arrow-up
            2
            arrow-down
            20
            ·
            7 months ago

            Yes, but no. The public IP is that of the router, which NATs packets to each host, each of which must have a unique private IP. The public IP does not reference or identity hosts behind the router. And that’s not how HA works. Only one host is assigned the active IP at one time.

            • meteokr@community.adiquaints.moe
              link
              fedilink
              arrow-up
              9
              arrow-down
              2
              ·
              7 months ago

              So computers can share IP’s then right? By your example they are sharing their public IP. From the perspective of the server you are connecting to, all the machines on your LAN have the same IP. Same way multiple physical phones can be connected to a single landline, all those phones share the same number.

            • lemmyng@lemmy.ca
              link
              fedilink
              English
              arrow-up
              5
              arrow-down
              3
              ·
              7 months ago

              When you do call routing with a PBX each phone has an unique extension, equivalent to the private IP of each host.

              Oh, and there’s also anycast, which is literally multiple active devices sharing an IP.

              • JesterIzDead@lemm.ee
                link
                fedilink
                arrow-up
                2
                arrow-down
                6
                ·
                7 months ago

                You’d have to know more about BGP to know any cast doesn’t function as you think it does

          • JesterIzDead@lemm.ee
            link
            fedilink
            arrow-up
            3
            arrow-down
            11
            ·
            7 months ago

            Yes, but no. The public IP is that of the router, which NATs packets to each host, each of which must have a unique private IP. The public IP does not reference or identity hosts behind the router.

    • 800XL@lemmy.world
      link
      fedilink
      arrow-up
      6
      arrow-down
      3
      ·
      7 months ago

      Except you can spoof an IP address or get another one from the ISP just by asking. You can spoof a MAC address too.

      Intel introduced unique processor id’s back in the late 90s.

      • lemmyng@lemmy.ca
        link
        fedilink
        English
        arrow-up
        15
        ·
        7 months ago

        Phone numbers can be spoofed, and SIM cards can be cloned. The analogy stands.

    • jeffhykin@lemm.eeOP
      link
      fedilink
      arrow-up
      2
      arrow-down
      8
      ·
      edit-2
      7 months ago

      Cell phones don’t get a new phone number every time they switch cell towers, so why do laptops.

      Its not like I can write down the IP address of my friends laptop so I can send it a message once he gets to a new city. Right?

      • lemmyng@lemmy.ca
        link
        fedilink
        English
        arrow-up
        7
        ·
        7 months ago

        Laptops don’t get a new IP address every time they switch from one AP to another in the same network either. Your cell phone will get a new IP address if it switches to a different cell network.

        • jeffhykin@lemm.eeOP
          link
          fedilink
          arrow-up
          1
          ·
          7 months ago

          I can get VOIP calls behind a NAT without cell service. I’m asking how is that possible. Is the router somehow part of the same AP as cell service?

          • lemmyng@lemmy.ca
            link
            fedilink
            English
            arrow-up
            2
            ·
            7 months ago

            Whoa, that’s a sizeable edit to the post! Regardless the answer is pretty straightforward: your VOIP client (either the device if you have one or the software) is connected to a VOIP service which acts like a gateway for your client. Since the client initiated the connection to the gateway and is keeping it alive, you don’t need to make any network changes. Once the connection is established, standard SIP call flows (you can Google that for flow diagrams) are followed.

            So no, you router is not part of the cell service. The VOIP provider is part of a phone service that receives calls and routes them for you, just like the cell towers are part of a telephony provider that routes calls through the appropriate tower.

            • jeffhykin@lemm.eeOP
              link
              fedilink
              arrow-up
              1
              arrow-down
              1
              ·
              edit-2
              7 months ago

              Finally :D thank you so much!

              So basically VOIP is “cheating” because its not actually handled by the network directly, the phone company pays for always-online servers, and phone(s) reach out to those server every time they change networks, in order for servers to be able to route calls to them.

              Which also means! it is possible to do the same thing for computers, but it requires having

              1. A static IP
              2. An always online server
              3. The device needs a daemon that tries to connect to an always online server, and authenticates itself
              4. That server needs to manually reroute traffic (through a VPN or some other means) from the static IP address to the device, wherever it might be

              Which also explains why general network providers wouldn’t want to create the infrastructure. Even if universal addresses were given to each device, which simplifies DHCP and address-leasing, and shortens time it takes to handshake with the network, all of that is less of a cost than the infrastructure needed track of devices as they change networks. (And that’s on top of ISP’s being slow to change from the legacy approach of local networks and desktops).

              ^ which is more the conversation I wanted to have but didnt really get with this post.

              Thats a sizable edit!

              Yeah 😅 I didnt want it to be this complicated of a question, but I didnt see how else to explain that current addressing systems don’t meet the same need as a phone number.

              • lemmyng@lemmy.ca
                link
                fedilink
                English
                arrow-up
                2
                ·
                7 months ago
                1. A static IP is actually not necessary, but what you need is a consistent identifier. For the server, that’s typically a DNS address, but for clients and peer to peer networks there’s other ways to identify devices, usually tied to an account or some other key kept on the device.
                2. For centralised communications yes, you would need an always online server. For decentralised networks, you just need a sufficient amount of online peers, but each individual peer does not need to be always online.
                3. Pretty much, yes. Even push notifications on cell phones work this way.
                4. Route, yes. Manually. VPN is usually not necessary. In modern web-based services this is typically done with websockets, which are client-initiated (so the client address can change), and which allow two-way communication and typically only require a keepalive packet from the client every minute or so.

                There’s other reasons why universal addressing is not done - privacy, network segmentation, resiliency, security, etc. And while IPv6 proponents do like to claim that local networks wouldn’t be strictly necessary (which is technically true), local networks will still be wanted by many. Tying this back to phone numbers - phone numbers work because there’s an implicit trust in the telcos, and conversely there’s built in central control. It also helps that it’s only a very domain specific implementation - phone communication specifications don’t change very often. On computer networks, a lot of work has been done to reduce the reliance on a central trust authority. Nowadays, DNS and SSL registries are pretty much the last bastion of such an authority, with a lot of research and work having gone into being able to safely communicate through untrusted layers: GPG, TOR, IPFS, TLS, etc.

      • SchmidtGenetics@lemmy.world
        link
        fedilink
        arrow-up
        2
        ·
        7 months ago

        Its not like I can write down the IP address of my friends laptop so I can send it a message once he gets to a new city.

        With static IPs that’s possible, but you already do that when you email them already.

        • jeffhykin@lemm.eeOP
          link
          fedilink
          arrow-up
          1
          arrow-down
          3
          ·
          edit-2
          7 months ago

          I can send a message to the IP address but AFAIK the message won’t get to him because he will almost certainly have a new address when he connects to the airport WiFi in the new city.

      • JakenVeina@lemm.ee
        link
        fedilink
        English
        arrow-up
        1
        ·
        7 months ago

        Main difference there being that switching cities means probably switching ISPs. You can absolutely carry over your IP address when you move between the same provider, if that’s part of your service plan, and that may well happen with some ISPs even without it being part of your plan. There just isn’t really much of a need for people to carry a static IP, except for some businesses, and I’d say the main reason is that people don’t visit websites by memorizing and typing in an IP. They do memorize and type in phone numbers.

    • Guest_User@lemmy.world
      link
      fedilink
      arrow-up
      17
      arrow-down
      1
      ·
      7 months ago

      You will always be able to spoof your MAC address if needed. I don’t see the standard ever changing enough to prevent that.

        • Skull giver@popplesburger.hilciferous.nl
          link
          fedilink
          arrow-up
          3
          ·
          7 months ago

          You can’t spoof phone numbers on competent telco networks. It’s not that difficult to filter out faked display headers and refuse to set up the call if your outgoing phone number doesn’t match any number on your account, the same way an ISP could filter out outgoing traffic that isn’t sourced from one of their subscribers to block DDoS.

          In practice, very few telcos seem to care. This seems to be particularly problematic in the USA from what I can tell. However, this is all because of a lack of implementation of basic features for whoever is providing outbound calls, the same way DNS amplification attacks are possible because ISPs don’t bother doing basic traffic filtering.

    • pinchcramp@lemmy.dbzer0.com
      link
      fedilink
      arrow-up
      10
      arrow-down
      1
      ·
      7 months ago

      I don’t think that’s something that needs to be fixed. Your phone (and probably your computer) can randomize its MAC address every time it connects to a new WiFi to make it harder to track you.

    • jeffhykin@lemm.eeOP
      link
      fedilink
      arrow-up
      4
      arrow-down
      10
      ·
      edit-2
      7 months ago

      I’m shocked this answer has so many upvotes. No, a MAC address is not close to a phone number. No two people have the same phone number, and I can’t just edit my phone number to be someone else’s number.

      • “two network interfaces connected to two different networks can share the same MAC address”
      • “Many network interfaces, however, support changing their MAC addresses”

      https://en.m.wikipedia.org/wiki/MAC_address

      • SchmidtGenetics@lemmy.world
        link
        fedilink
        arrow-up
        13
        ·
        edit-2
        7 months ago

        You ask a “no stupid” question then try to call out an answer? Bold move cotton.

        Sure you can change your phone number, it’s called spoofing, or just call your provider and get a new one, sometimes they charge sometimes they don’t. So why are you claiming it’s not possible?

        People have the same phone numbers, that’s why area codes exist, that’s kinda the same thing as a provider and a MAC address, no…?

        Edit well then.

        • jeffhykin@lemm.eeOP
          link
          fedilink
          arrow-up
          2
          arrow-down
          2
          ·
          7 months ago

          Fair, I could have said fully qualified number, including country code.

          And also fair, instead of saying a MAC could be edited, I should’ve said each phone number has one global owner, while each MAC address could have many owners.

          Corrections have been made 👍

      • Skull giver@popplesburger.hilciferous.nl
        link
        fedilink
        arrow-up
        1
        ·
        7 months ago

        no two people have the same phone number

        You can share SIMs between multiple phones quite easily, actually. You can also have entire call centers behind one single phone number. The only unique identifier for a handset carrying a particular call would be its IMEI (though multi SIM phones have multiple IMEIs) and even that is just a number that can be faked on some modems.

        You can also trivially spoof your phone number in most countries through basic SIP configuration. Someone with basic knowledge of phone numbers can call you with your own number as the calling party and there’s very little you can do to stop them.

          • Skull giver@popplesburger.hilciferous.nl
            link
            fedilink
            arrow-up
            2
            ·
            6 months ago

            IMSIs are a bit weird since the introduction of 5G, to combat illegal IMSI catchers. The identifiers remain, but they’re not used directly anymore, like a MAC or IP address would be.

            SIMs can be swapped between devices so I don’t really see them as device identifiers. I suppose SIMs are hardware too, unless you’re using eSIM.

  • MajorHavoc@programming.dev
    link
    fedilink
    arrow-up
    39
    arrow-down
    1
    ·
    7 months ago

    Lack of demand.

    Phones having unique unalterable numbers was never an intentional feature desired by users, just a limitation of the available technology.

    Computer network cards do have such a number, their MAC address, but modern ones can scramble it to avoid being tracked, without any loss of ability to be reached by everyone you want to be reached by.

  • Em Adespoton@lemmy.ca
    link
    fedilink
    arrow-up
    30
    ·
    7 months ago

    Along with the other comments on UDID, IMEI and MAC, I’d just like to point out that phones don’t have phone numbers.

    On land lines, the number is assigned to the line that goes to your house from the local operations center; on mobile phones, the number is linked by your carrier to THEIR SIM card that you stick in your phone.

    eSIM almost gets there; instead of a physical card linked to the phone number, all the logic and secrets are stored in a secure enclave on your phone and THAT is linked to the number, which is in a directory managed by your carrier. It’s linked to the phone itself because of the phone’s IMEI.

    • jeffhykin@lemm.eeOP
      link
      fedilink
      arrow-up
      2
      arrow-down
      8
      ·
      edit-2
      7 months ago

      Sure, I’ll change the title to say “phones have unique phone number (b/c sim cards), why don’t computers have an equivalent?” I didnt mean one phone == one phone number.

      With VOIP I can get phone calls even without cell service, even behind a NAT. My question is why is the network designed in such a way where that is possible, but I can’t buy a static address that will persist across networks endpoint changes (e.g. new wifi connection) such that I can initiate a connection to my laptop while it is behind a NAT.

        • jeffhykin@lemm.eeOP
          link
          fedilink
          arrow-up
          2
          arrow-down
          5
          ·
          edit-2
          7 months ago

          AFAIK static public-facing IP addresses are limited to a physical location. It would work if my laptop never left my house but as soon as I take it to the airport its no longer accessible. People who try to connect to the static ip would just get a message saying the address timed out.

          • mbfalzar@lemmy.dbzer0.com
            link
            fedilink
            arrow-up
            1
            ·
            7 months ago

            I’ve got a VPN set up on my home server so when I leave the house, my public IP is still the same on my laptop as it is at home. If you’ve got people sending you messages directly via IP why wouldn’t you just set that up?

            • jeffhykin@lemm.eeOP
              link
              fedilink
              arrow-up
              1
              ·
              7 months ago

              Thats a valid solution, thanks for saying it!

              I think it is good to note this requires either having another system at home or in the cloud to host the VPN right?

              • mbfalzar@lemmy.dbzer0.com
                link
                fedilink
                arrow-up
                1
                ·
                7 months ago

                Not actually! I mean, yes, you’d need another device, but your router itself can be the VPN host if it’s the right model. The VPN server software is extremely lightweight, so most higher end routers just include it as an option in management, but you can get away with a cheap router and something like a cheap raspberry pi/clone, which would also give you something to put pihole on

      • Em Adespoton@lemmy.ca
        link
        fedilink
        arrow-up
        4
        ·
        7 months ago

        All you have to do is buy your own IP, and you can use it whenever you want. You don’t have to use one given to you by the upstream gateway via DHCP or BootP.

        Of course, you need to make sure the upstream router is configured to not drop addresses it didn’t assign itself.

        • jeffhykin@lemm.eeOP
          link
          fedilink
          arrow-up
          1
          arrow-down
          1
          ·
          7 months ago

          Even paying for a static IP its not like a phone number which is discoverable behind a NAT without extra router configuration.

            • jeffhykin@lemm.eeOP
              link
              fedilink
              arrow-up
              1
              arrow-down
              2
              ·
              7 months ago

              Yep, and I can verify my phone number didnt change when roaming, people could still call me.

              • Droechai@lemm.ee
                link
                fedilink
                arrow-up
                1
                ·
                7 months ago

                Usually the phone number changes though. My phone number is 070Xxxx… here in Sweden, but my folks in law need to call 004670xxxx to call me unless they are visiting in which case 070xx works again

                • jeffhykin@lemm.eeOP
                  link
                  fedilink
                  arrow-up
                  1
                  ·
                  7 months ago

                  You’re right it depends on the definition of phone number, and I edited the original post to try and be more clear that I meant the phone number including the country code and area code.

                  If you’re talking about something other than country/area code though, then that’s news to me.

              • SchmidtGenetics@lemmy.world
                link
                fedilink
                arrow-up
                1
                ·
                edit-2
                7 months ago

                Your roaming is the extra configuration you speak of, and is usually an extra fee…… that’s the “static” part

          • Em Adespoton@lemmy.ca
            link
            fedilink
            arrow-up
            1
            ·
            7 months ago

            That’s like saying “why isn’t my phone number that I set up on my own POTS network usable on the international telephone system?”

            If you’re behind NAT, you aren’t technically on the Internet; that’s why you need Network Address Translation in the first place.

            IPv6 fixes this by letting every conceivable device have its own address on the Internet, but that comes with its own security and privacy issues, so it’s rarely used.

      • Sethayy@sh.itjust.works
        link
        fedilink
        arrow-up
        3
        ·
        7 months ago

        For the laptop thing you realistically could by a WAN IP per device, itd just be expensivr and also a massive security issue DMZ’ing all your devices

  • Honytawk@lemmy.zip
    link
    fedilink
    arrow-up
    27
    ·
    7 months ago

    MAC’s used to be static, but then hackers found ways to spoof it. Now manufacturers don’t care to make them static anymore.

    Get a laptop with a SIM and you will have an IMEI and phone number, plus 5G.

  • ChaoticNeutralCzech@lemmy.one
    link
    fedilink
    arrow-up
    24
    ·
    edit-2
    7 months ago

    Because

    1. When the internet was rolling out, a decentralized, open, best-effort solution of TCP/IP thankfully won over telephone companies’ centralized system proposal
    2. IPv6 is still not universal for some damn reason
    3. Onion addresses solve these problems but good luck getting everyone aboard with Tor
    4. You always trade anonymity for reachability, and with the amount of threats, NAT and firewalls have been put up to make it harder for unsolicited requests to reach you by default
  • ArbiterXero@lemmy.world
    link
    fedilink
    arrow-up
    17
    arrow-down
    1
    ·
    7 months ago

    It’s called a MAC address.

    The problem with it is mostly routing.

    The osi model has 7 layers of connection to form a proper internet connection.

    The MAC address exists but doesn’t leave the physical network. The MAC address is used to physically connect your computer to the router, and it defines your piece of hardware.

    The IP address can change, because your computer can connect to different networks.

    If you tried to route everything with a MAC address, (which isn’t possible, but for arguments sake we will pretend it is) the problem is that when you take your phone with its MAC address off your wifi and on to your work wifi, Where would the registry be? How would the Internet know how to find your phone? Do you just log into one giant global registry so that everyone can find your phone when they are trying to communicate with it? That would be a giant fucking database and everyone would always be trying to use it.

    Routing is a big and complex problem, and these things didn’t work with ipv4

    They do work better with IPv6. IPv6 adresses don’t need to change like ipv4 for a bunch of reasons.

    From a philosophical level, the Internet was designed for people to be anonymous and make relatively anonymous connections. You wanted to be flexible enough that you can just be assigned a new number and work with that new number quickly.

    This is a really simple explanation, and I got some basic facts wrong just for ease of understanding, but the principals are correct.

    • slazer2au@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      ·
      7 months ago

      If you tried to route everything with a MAC address, (which isn’t possible, but for arguments sake we will pretend it is) the problem is that when you take your phone with its MAC address off your wifi and on to your work wifi, Where would the registry be? How would the Internet know how to find your phone? Do you just log into one giant global registry so that everyone can find your phone when they are trying to communicate with it? That would be a giant fucking database and everyone would always be trying to use it.

      This is a solved issue called EUI-64 IPv6 addressing. It is a privacy nightmare.

    • jeffhykin@lemm.eeOP
      link
      fedilink
      arrow-up
      1
      arrow-down
      7
      ·
      edit-2
      7 months ago

      Every phone number has one owner, but MAC addresses can have many owners. They’re categorically different.

      How would the internet know how to find your phone?

      The same way phone calls try to find a phone when its powered off. Attempt, and then fail under a timeout.

      Where would the registery be?

      Same place as the phone number registry. Or the domain name registry.

      That would be one giant database

      Yep the domain name registry and cell phone registry very much are AFAIK

      • ArbiterXero@lemmy.world
        link
        fedilink
        arrow-up
        2
        ·
        7 months ago

        The domain registry is NOT, and it’s categorised by various tld’s the scope of the routing is MUCH higher traffic.

        Your cell phone is run by a provider and has maybe 0.0000001% as much lookups as routing would have.

        These things are all done in various tree light structures to try and eliminate central points of failure . The Internet was designed to try and resist failure, and you are creating some central failure points.

        Even if you created several of them, synchronisation issues would be Basically impossible to fix or take up unbelievable amounts of bandwidth

        • jeffhykin@lemm.eeOP
          link
          fedilink
          arrow-up
          1
          ·
          edit-2
          7 months ago

          This I’m interested in, because its at the edge/limits of my knowledge when it comes to domains and cellular networking.

          Are you saying if cell phones had a larger address space, let’s say 32 digits base 10, and every device was given a cell phone number, it would overwhelm the existing infrastructure?

          • ArbiterXero@lemmy.world
            link
            fedilink
            arrow-up
            2
            ·
            7 months ago

            It’s not just the address space, but also the sheer number of lookups.

            DNS has authoritative name servers based on tld, and then domain, and then maybe subdomain.

            When you’re dealing with IP addresses, there is no such tree that I lookup, I just fire it into the abyss and let the routing hardware do the lookups. I know who my gateway is to the internet, but I usually don’t keep the routing information.

            My ISP’s routing hardware then says “this IP was last found somewhere in Europe so I’ll fire it at my European connection and hope they get it right.”

            Losses are expected.

            IPv6 CAN route with larger address tables, but the “fire and forget” method still exists.

            There’s also a method to scream at all my peers “do you know where 5.5.5.5 is, because I don’t know” I’ll remember their answer for a bit because that’s useful, but I’ll eventually forget it because I expect it to move. I expect this ip movement because I’m fault tolerant. I might not find the fastest way there, but I’ll find it.

            Philosophically, the internet is designed to be fault tolerant and pseudo anonymous. So if 5.5.5.5 is somewhere in Spain and my Spain peer dies, I recognise that the packets are failing and then I start blasting them at England, because my British connection knows all about the Spanish villa and can pass along my messages. I don’t really care where Spain is, I care about who can get my message there and that’s it. It’s too onerous to always keep track of where everyone is, and MOST people on the internet I don’t actually know about because they’re behind a Nat gateway and I don’t care about them. This makes it so I only have to care about edge devices and greatly simplifies my list.

            So for example, your laptop isn’t actually on the internet. Your modem/router is, but your laptop doesn’t exist to the internet. When I want to send you a packet, I just send it to your router and let the router handle it. I don’t even know that your laptop exists, and I don’t care.

            Well your router will send the data to your laptop instead of your phone because the Nat is keeping track of who requested it and your phone didn’t ask for it. This causes problems because it means that from outside your network, I can’t just connect and send data inside your network unless someone asked for it. So I can’t just call your cell phone unless it reaches out first because I don’t know that your cell phone exists, and even if I did, the router would block it. This is why port forwarding exists, it allows you to have your laptop get ALL data sent to the router on port 12345. I still don’t know about your laptop, but I know that there’s a server on your IP address on port 12345 that I can connect to and request/send data to. Keeping track of all of this just so that I always know where your laptop is requires a fair bit of coordination at many layers.

            Ideally it has a domain at a registrar that I can ask about where it currently is. The routing is still “fire and forget “ because it simplifies my list of “where every IP is” and even then, I only know about the laptop’s edge connection to the internet and let that edge take care of where to actually send the data so I don’t have to think about it.

            In IPv6, Nat works a little different, but it’s still close.

            I’m honestly not sure how many mistakes I made, I just kinda brain dumped info, so let me know which pieces don’t make sense.

            • jeffhykin@lemm.eeOP
              link
              fedilink
              arrow-up
              1
              ·
              edit-2
              7 months ago

              If I’m understanding correctly, you’re saying that right now the network doesn’t have an exhaustive table of IP addresses to physical locations. It has a cache, and a hierarchy, and the path to a location of the IP is fluid.

              But a system where every device could be directly contacted/identified like a Sim card, would effectively require a complete table of “what network is device ABC at”. A table that is updated every time the device changes network connections. It would be like trying to change domain name to point to a different IP address.

              The problem is, updating a domain to point to a new IP takes hours or days not seconds, so doing that every time a phone changes WiFi is not practical.

              Is that a good summary?

              • ArbiterXero@lemmy.world
                link
                fedilink
                arrow-up
                1
                ·
                7 months ago

                Yes, but we’re talking about “seconds” and “nanoseconds” rather than hours.

                Networks move much faster than we do.

                There’s also no hierarchy of IP addresses, and that matters for lookups.

                So the 1 second it takes to do a dns lookup is WAY too long for continuous ip lookups, and the size of the database and chains requires explaining where to find ip address X is too long and updates WAY too much to be accurate and/or kept.

                Lookups are easiest if you know “I lookup .uk addresses at this particular server in England” because that particular “ authoritative DNS server” only really handles its own little segment of lookups.

                There is no such hierarchy in ip addresses, and they can’t really be cached for long.

                You would have to continually know and update all of them. And we sorta do in the larger routers, but keeping that up to date at the edges would require a TON of bandwidth.

          • ThanksForAllTheFish@sh.itjust.works
            link
            fedilink
            arrow-up
            2
            ·
            edit-2
            7 months ago

            My understanding with phones is that you phone your own provider, who then looks up the provider of the number you’re calling based on country code, provider or area code prefixes. Providers will “peer” with each other to route calls over the most cost efficient path. So the other sides provider is responsible for getting it to the right destination phone within thier own customer network. Theres no authentication from the sending party on a protocol level, this is why scammers can spoof as any phone number.

            I believe that IP routing does something similar, the IP data is handed over to possibly multiple providers until it reaches its destination provider. The blocks of ip addresses are published as linked to an Autonomous System and each autonomous system has an owner/provider. The source is not authenticated at a protocol level which is why we need client and server certificates.

            In DNS you go to the root TLD servers and ask what IP the .com resolver is. The .com resolver has a list of mappings of authoritative name servers to domains. So example.com may have an authoritative NS of 1.2.3.4 who you can go to and ask what IP test.example.com is hosted on. The authoritative name server is the source of truth for that domain and other servers cache it to prevent overloading and increase speed. You may check with the authoritative NS if you want, but it may be slower to respond than your local NS. Again DNS is not authenticated at the protocol level so we need server certificates to prove that the device behind the IP serving you is allowed to serve you test.example.com.

  • Skull giver@popplesburger.hilciferous.nl
    link
    fedilink
    arrow-up
    15
    ·
    7 months ago

    You have some misconceptions about how phone numbers actually work. I’d say the closest thing to a phone number computers have is a domain name.

    IPv4 used to hand out uniquely addressable IP addresses to every computer. Then IPv4 ran out of address space too fast, because it was too successful and blocks of millions of IP addresses were sold off in the first few years to big companies, and IPv6 was invented. Unfortunately, early IPv6 lacked a lot of features and NAT trash become the norm instead.

    With IPv6, every household can have a couple billion IP addresses. It’s very hard to run out of IPv6 addresses. With modern IPv6 privacy enhancements, you typically have multiple addresses (a static one for receiving traffic and a bunch of random ones for outgoing traffic so you can’t get tracked as easily) with at least one derived from your network adapter’s MAC address.

    Computer connected to cell networks (embedded LTE modems and such) actually have phone numbers. Most of the time they’re just administrative numbers that don’t do anything, but they’re still there.

    You do seem to have some misconceptions about phone numbers, though. They can be spoofed easily, for one. They can also be shared between hundreds of people (your average call center) or exist but be unroutable. They’re not tied to your SIM at all, they’re actually tied to your current session (which is derived from identifiers such as IMEI and IMSI, the latter of which can be dynamic, the former of which can be spoofed). You also don’t own a phone number; your carrier does, and many offer portability, but you don’t own the number yourself.

    In theory they can even be duplicate: phone numbers in two countries can be exactly the same. You’d say “but there’s a country code prefix”, but the prefix you need to add in front of a phone number is different for every country. In most of the world, prepending a call with “00” (aka “+”, in the +12223334445 phone numbers) followed by a country code will make an international number, but in some countries, you would dial the American number “222 333 4445” by calling “810 1 222 333 4445” while in most of the world that’d be “00 1 222 333 4445”. This makes international phone numbers variable, depending on where the other party is calling from, and introduces potential conflicts. Consider a country where the IDD is 810: someone could theoretically have a local phone number “00 1 222 333 4445”, which looks like an North American international phone number, but isn’t!

    Most web developers assume the IDD is always +/00 and that’s wrong. An international phone number is not always reachable through a 00 prefix and if you write a dialer, you’ll end up calling different people depending on what country you run your dialer in.

    You also don’t need a phone number to call another phone in internet telephony. Sending a couple of SIP packets to the right IP address can set up a call to many home lines without paying a dime to any carrier, for instance. To do so, you need to know the IP address and SIP user of the remote party (typically a “land-line” modem) and the remote side needs to not have firewalled off their SIP port, but there are many cases in which you can enter steve1234@1.2.3.4 into dialer software and call someone without even having a phone number of your own.

    As for your edits:

    • the privacy nightmare still exists in IPv6 without privacy extensions

    • dynamic phone numbers are completely possible, just not common

    • MAC addresses are more akin to IMEI numbers. IP addresses are more akin to IMSI numbers

    The closest thing to a phone number for computers is probably a domain name: something someone can reserve, gets routed to the right session (IMSI), and can be shared, non-existent, and spoofed. It’s registered with a service provider for routability (whoever sets up DNS servers) just like with phone numbers (phones don’t have DNS, but SS7 access will allow you to make a phone number reachable even if you don’t own it!).

    Unlike phone networks, computers don’t need domain names to address each other. We’ve mostly skipped the “paying money to register a name” part of computer networks because we didn’t need to. For some applications, like email, XMPP/Matrix, and the Fediverse, this was very much necessary; for machine to machine interaction, it apparently wasn’t.

    • jeffhykin@lemm.eeOP
      link
      fedilink
      arrow-up
      2
      ·
      7 months ago

      Thank you for such a long and detailed post! I indeed did not know about things beyond the SIM, and I didn’t know about the extra details about the country codes either. That is extremely interesting to me.

      With the phone spoofing though, does that mean two factor with a phone number is basically useless? If I had authentication based on a MAC address, it would take seconds to break it. But I think, and sure hope, that auth based on phone numbers is more secure.

      I think your domain name answer – that for the most part computers didnt need them – is a very satisfying answer.

      • Skull giver@popplesburger.hilciferous.nl
        link
        fedilink
        English
        arrow-up
        4
        ·
        7 months ago

        With the phone spoofing though, does that mean two factor with a phone number is basically useless?

        Spoofing is mostly done outbound. Anyone with enough money to buy SS7 line access can redirect almost any phone line in the world, though. It’s not cheap to get access to a network like that, but it’s also far from impossible. SIM jacking is a lot cheaper and just as effective, though.

        Phone 2FA is better than nothing, but worse than almost all other options. Turn it on if it’s the only 2FA method, better leave it off if you can use TOTP or another 2FA mechanism.

        • jeffhykin@lemm.eeOP
          link
          fedilink
          arrow-up
          1
          ·
          7 months ago

          Wow that’s super interesting to know. So its still got some resistance, but a lot less than I thought. Thanks again for sharing!

      • pishadoot@sh.itjust.works
        link
        fedilink
        arrow-up
        1
        ·
        7 months ago

        Phone number 2FA isn’t useless, insomuch as it’s better than no 2FA at all, but it is easily the worst form of 2FA because SIM jacking (usually involves a scammer tricking a customer service agent into migrating your phone number to their device instead of yours in order to intercept the 2FA messages) is laughably simple using easily acquired info such as your DOB, address, and last 4 of your SSN.

        If phone 2FA is the only option, use it. But don’t use it if you have any other option.

  • slazer2au@lemmy.world
    link
    fedilink
    English
    arrow-up
    13
    ·
    7 months ago

    You seem to have be missing a fundamental thing about tech but I can’t pin down what it is. So I will respond to your edits.

    but I can’t buy a static address that will persist across networks endpoint changes

    You can. It’s called Provider Independent Space and it a pain to go with as an individual.

    Yes, it would be a privacy nightmare, I want to know why it didnt turn out that way

    Because people smarter than you, I, and everyone else in this post said 'Yes EUI-64 is a good idea in principe but the problems on a privacy perspective outweigh the advantages. So let’s build a system called MAC randomisation so people can get multiple address to access the internet with. ’
    The good news is you can turn off MAC randomisation.

    AFAIK IP addresses (even static public ones) are not equivlent to phone numbers. I don’t get a new phone number every time I connect to a new cell tower

    In some parts of the world or before 2000 if you changed mobile providers, say from Vodafone to Telstra you had to get a new number. Since that change number routing has become a nightmare and it makes the BGPv4 table look sane in comparison.

    Even if a static IP is assigned to a device, my understanding is that connecting the device to a new uncontrolled WiFi, especially a router with a NAT, will make it so that people who try to connect to the static IP will simply fail.

    This is a complex one due to NAT in the ipv4 space. NAT exists purely to allow devices to have the same private IPv4 address and hide behind a public v4 address.

    No, MAC addresses are not equivalent phone numbers. 1. Phone numbers have one unique owner, MAC addresses can have many owners because they can be changed at any time to any thing on most laptops. 2. A message can’t be sent directly to a MAC address in the same way as a phone number

    1. MAC do have unique owner blocks. Cisco somewhat owned the 0000.0C block.
    2. Yes you can. That is literally how it works down the TCP/IP stack.

    Yes, IMEI is unique, but my laptop doesn’t have one and even if it did its not the same as an eSim or sim card. We can send a message to an activated Sim, we can’t send a message to an IMEI or serial number

    If your laptop has a regular Sim slot it will have an IMEI. True we can’t send messages via IMEI or serial because those systems were never designed for message routing.

  • SchmidtGenetics@lemmy.world
    link
    fedilink
    arrow-up
    9
    ·
    7 months ago
    • No, MAC addresses are not equivalent phone numbers. I can’t edit my phone number for free in 30sec to whatever I want, and I can’t send a message to a MAC address.

    You sure about that?

    • jeffhykin@lemm.eeOP
      link
      fedilink
      arrow-up
      1
      arrow-down
      15
      ·
      edit-2
      7 months ago

      Yes I’m sure. Try changing the number to 911. Phone numbers only have one owner, MAC addresses may have many owners.

        • jeffhykin@lemm.eeOP
          link
          fedilink
          arrow-up
          1
          arrow-down
          6
          ·
          edit-2
          7 months ago

          The IP doesn’t persist across network hops (cell tower to cell tower) and the MAC address doesnt have one verified owner. A phone number is both verified having one owner and persists across network hops.

          • SchmidtGenetics@lemmy.world
            link
            fedilink
            arrow-up
            12
            arrow-down
            1
            ·
            7 months ago

            Static ips persist.

            MAC addresses can be banned

            Phone numbers can’t roam

            Phone numbers aren’t unique (area code)

            Wrong on all fronts.

          • Sethayy@sh.itjust.works
            link
            fedilink
            arrow-up
            1
            ·
            7 months ago

            So then drop your phone and pick up your friends.

            What number do you have now?

            Or if you really want an IP to follow you plug in your router at your friends house.

  • halcyoncmdr@lemmy.world
    link
    fedilink
    English
    arrow-up
    8
    ·
    7 months ago

    Phone numbers aren’t exactly unique. It’s really not much different than being assigned a static IP address from your ISP. They’re assigned and if a line is cancelled or you change your number, it goes to a dormant state for a while then is reassigned to someone else.

    Your phone’s IMEI on the other hand is a unique number, similar to a MAC address for network devices. Unlike a MAC though, it is illegal to spoof or clone an IMEI. Infrastructure however wasn’t designed to use the IMEI or MAC as the publicly accessible address, it was designed with a middle translation layer in mind.

    Not 100% sure, my early history is lacking a bit, but I think that was simply because the fundamental network design underlying everything we use predates unique identifiers like MAC addresses existing.

    • jeffhykin@lemm.eeOP
      link
      fedilink
      arrow-up
      1
      arrow-down
      3
      ·
      7 months ago

      Solid answer, thanks! You deserve all the upvotes that were, instead, for some reason, given to the guy that just said “I think its a MAC address”