DNS Problem Brings Great Firewall of China Global
Security experts around the globe are currently trying to unravel a mysterious networking error that saw Web traffic to sites like Facebook, Twitter and YouTube rerouted to Chinese servers.
CNet reports that on Wednesday, a Chilean DNS admin sent out an email to his counterparts in the rest of the world asking them about a strange problem a local ISP had noticed. The ISP said one of the main DNS root servers, called the I Root Server and operated in Sweden, was directing visitors endeavoring to access up to 30 different sites, including Facebook, Twitter and YouTube, to servers in China. Because people were being redirected to China, they ended up behind the Great Firewall of China.
It's no secret that China has changed DNS routing information to redirect users of censored services to government-run servers instead of sites such as Facebook and Twitter, however, ComputerWorld reports that this is the first public disclosure that those route have leaked outside of China. Citing Danny McPherson, a chief security officer with Arbor Networks, CW reports that the rerouting was probably an accident. McPherson says the ISP that used the bad routes probably misconfigured its BGP (Border Gateway Protocol) system.
"I don't think it was done intentionally," he told ComputerWorld. "This is an example of how easy it is for this information to be contaminated or corrupted or leaked out beyond the boundaries of what it was supposed to be."
- DNS ,
- China ,
- Servers ,
- Censorship ,
- Firewall
- The Road to Fermi: A Look Back on News Leaks
- Catalyst 10.3/GeForce 197.13 Now WHQL Certified
- U.S. Army Visits Apple in Search for Military Tech
- IE8, Firefox and Safari Hacked to Bits at Pwn2Own
- Pegatron, Nvidia Show Off Bamboo Mini HTPC
- iPhone Hacked in 20 Seconds at Pwn2Own
- Toshiba Introduces 750GB and 1TB Laptop HDDs
- Caption Contest: Happy Birthday, Steve Ballmer!
- VOTW: Adobe Makes Photoshopping Easy as Pie
- PAX: Nvidia Takes GTX 480 Directly to Gamers
- QOTD: Do You Think the Word Piracy is Too Sexy?
- Gamers Stung by Ubisoft DRM Offered Free Stuff
- EA Staffer Not Liking EA's New Restrictive DRM
- Blizzard Announces BlizzCon Dates for 2010
- GeForce GTX 480 and 470 Revealed, Benchmarked
- What AMD Thinks of Nvidia's GeForce GTX 480
- PAX: What Gamers Think of Nvidia's GTX 480
- Reminder: How to Edit Your Comments
And this is how Google war I began
And this is how Google war I began
what? lol
This doesn't surprise me really...
Just another display of Chinese arrogance and attacks against US companies. I hope this is a wake up call to all those who think doing business in China is a good idea. Maybe we ought to think about doing business in India,Thailand,Philippines or even again in the USA. What is funny to me is American companies are moving to China to take advantage of the reduced cost but Chinese companies are starting to build factories in the USA to promote their products. Seems like a contradiction. If Chinese companies can move here and manufacture their products in the USA why can't US companies do the same? The world needs to step up to the China threat and start taking it seriously!
If I'm not mistaken this isn't the first time for strange rerouting.
If I'm not mistaken this isn't the first time for strange rerouting.
I think your right, they were probably hacked too.
We need a virus that reroutes China's traffic to US servers.
Oh the horror when the Chinese people will be free to surf youtube and watch videos of Lolcatz! Chinese stability will be doomed!!!
Meanwhile our politicians (American, European and Down Under alike) are still addicted to kissing Chinese butt...
MMMMMM... Chinese butt. Lolllllllllll......
LOL, another Jane's best.
BTW, did you guys understand the article? Outside ISPs misrouted their traffic to China, not the other way around. When you log on to your ISP in the US, you don’t automatically end up in China. Your ISP has to route your connection to China first.
It seems that the world wide web has a life of its own, or it it really evolving into a new type of life form.
On March 26, 2010 SkyNet became self aware. It started without warning and disrupted world wide communications. This was but the first wave in a series of attacks.
pei-chen, DNS cache poisoning, think is what its called, someone submits updated DNS entries with incorrect addresses to redirect traffic. Not out of the realm of reality based on what China has already hacked, to think they could have done something like this.
Maybe we need jumpers or some type of physical switch on routers to adjust settings.
And this is how Google war I began
Has Google really been far even as decided to use even go want to do look more like?
Has Google really been far even as decided to use even go want to do look more like?
Say what?
Say what?
I'm trying, really hard to translate this.
I think he/she means.
Has google gone so far as to even want to look like they are doing more?
Has Google really been far even as decided to use even go want to do look more like?
But with then Google does even else China where if let's fighting love.
Has Google really been far even as decided to use even go want to do look more like?
This is what you get when you text too much and then try to write a real sentence.
Egads!!! There's a lot of China in the news lately...seems like they're always up to something!
So others got a little taste of the censorship that China has forced on their citizens. I wonder how they liked it?
More probably modified DNS records were leaked outside by the chinese I anycast servers (replicating the root I one for faster local access), which are for "internal" use (aka redirecting chosen domains to local servers), due to some routing misconfiguration.
hmm... by the way... an off topic news (maybe already old but this news just remind me that)..
I heard that Go Daddy and Dell are thinking to leave China, too.
hmm... Guess google is not alone.
LOL, another Jane's best.BTW, did you guys understand the article? Outside ISPs misrouted their traffic to China, not the other way around. When you log on to your ISP in the US, you don’t automatically end up in China. Your ISP has to route your connection to China first.
Exactly, simplified, but hitting the main point. The other point to be made is that BGP is a weak point of the internet. Some idiot ISP accidentally screwed up a BGP route and it propagated before it was stopped, hence the problems.
pei-chen, DNS cache poisoning, think is what its called, someone submits updated DNS entries with incorrect addresses to redirect traffic. Not out of the realm of reality based on what China has already hacked, to think they could have done something like this.
Except that's not what the experts who actually understand the issue think. I'd have to completely agree with Pei-chen here.
Yes, the Chinese have been way too brutal and honest about their censorship and control of the media. They should learn from their American enemies and create control structures that are inviable so that the people believe they live in perfect freedom, that in fact they have so much freedom that they can export it to others.
Perhaps China will become a representative democracy so that individuals can be data-mined to isolate the swing voters and bribed with tax money, while believing that they have the power to influence the government in some tiny, minute but important way. Wouldn't that be swell!
The current model where one party has to be responsible and do what benefits the most people the most, or be killed in an uprising, is way too... responsible?
They should throw open cultural floodgates and let every foreign idea wash over the unprepared population without control and marvel as so many new religions, political parties, cults, and other chaotic elements spring up and evolve in many new and exciting ways. I can just see it now!
Yes, the Chinese have been way too brutal and honest about their censorship and control of the media. Blah Blah Blah.
Thank you for that amazingly "enlightened" view of Chinese politics that has nothing to do with the article.
China is a big garbage manufacturing land.
Lego and stuff
i dont like the way people are treated in there. Neither do I like any of their native products.
All the Chinese toys I bought for my son broke soon after. Some of them in the first day.
Getting quality (even those manufactured in China) stuff should be your responsibility, as it does have warranty, low breakability, no cancer causing paints, and good quality.
Buy American, rly. Or European
What will happen if China open up the internet without filtering and banded Google's service and products.
Anyone support that?
China is a big garbage manufacturing land.
I agree only if you willing to get pay 50 cents an hour and trashing the manufacture wast on your yard.
Has Google really been far even as decided to use even go want to do look more like?
Oh man. China is invading Tom's hardware.
Oh man. China is invading Tom's hardware.
nope, minority invading Tom's hardware.