ie8 fix
madison

Threat Chaos

Richard Stiennon
Home / News & Blogs / Threat Chaos

Pakistan removed from the Internet

By | February 24, 2008, 1:40pm PST

Summary: 4:30 PM Eastern (US). The telecom company that carries most of Pakistan’s traffic, PCCW, has found it necessary to shut Pakistan off from the Internet while they filter out the malicious routes that a Pakistani ISP, PieNet, announced earlier today. Evidently PieNet took this step to enforce a decree from the Pakistani government that ISP’s [...]

4:30 PM Eastern (US).

The telecom company that carries most of Pakistan’s traffic, PCCW, has found it necessary to shut Pakistan off from the Internet while they filter out the malicious routes that a Pakistani ISP, PieNet, announced earlier today. Evidently PieNet took this step to enforce a decree from the Pakistani government that ISP’s must block access to YouTube because it was a source of blasphemous content.

I cannot let the irony pass with out commenting. A religious state, Pakistan, identifies a content provider, YouTube, as the source of blasphemous, seditious content and orders, King Canute style, that the Internet tides be stopped. A zealous ISP ignorantly decides the best way to comply with the decree is to re-route all of YouTube’s IP addresses to whatever site they thought was more appropriate. The first repercussion was that YouTube disappeared from the Internet for almost an hour. I suspect the second repercussion was that Pakistan’s Internet access crawled to a halt as all of a sudden they were handling IP requests for one of the busiest sites in the world. As of this writing YouTube has announced more granular routes so that at least in the US they supercede the routes announced by PieNet. The rest of the world is still struggling. So, while working on a fix that will filter out the spurious route announcements, PCCW has found it necessary to shut down Pakistan’s Internet access. The leadership of Pakistan just created a massive Denial of Service on their own country.

I could say: “be careful what you wish for” to those elements that object to free and open access to information and expression of ideas. But to put it in terms they might understand better: Do not anger the Internet gods or you will suffer their wrath!

Update: This blog points out that the “blasphemous content” claim may be a red herring. There may be more political motivations behind it.

Update:  Stiennon’s blog has moved to here

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Threat Chaos”

Topics

YouTube Inc., Pakistan, Internet, Internet Service Providers (ISPs), Richard Stiennon

Disclosure

Richard

http://blogs.zdnet.com/threatchaos/?page_id=455

Biography

Richard

A former ZDNet blogger, Richard Stiennon is an industry consultant. Most recently he was Chief Marketing Officer for Fortinet, Inc., the largest privately held security vendor. prior to that he was Chief Research Analyst at IT-Harvest. And before creating IT-Harvest, he was VP of threat research for Webroot Software, Inc. the leading commercial anti-spyware solution.

Previously, Richard was VP Research at Gartner, Inc. where he covered security topics including firewalls, intrusion detection, intrusion prevention, security consulting and managed security services for the Security and Privacy group. He is a holder of Gartner's Thought Leadership award for 2003 and was named "One of the 50 most powerful people in Networking" by NetworkWorld magazine. His speaking engagements have included conferences and meetings throughout North and South America, Hawaii, Tokyo, Tel Aviv, Istanbul, Milan, Munich, Hannover, Madrid, London, and Cannes.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?
Ask a Question Start a Discussion
86
Comments
Add Your Opinion

Join the conversation!

Just In

RE: Pakistan removed from the Internet
mind83frak 9th Sep 2010
anyone who knows enough about computers can find a way to access blocked sites Pakistan your so riddiculous u really think u can stop people from accesing things well think again
View in thread
0 Votes
+ -
I've had Newbie router admins take out my private routes before
georgeou 24th Feb 2008
I've had Newbie router admins take out my private routes before on a corporate WAN, but I've not seen an entire country take out an entire website like this. Their actions not only blocked themselves from accessing YouTube, but the entire world.

An action like this needs to be severely punished and it should never be tolerated by the world. I think the appropriate action is to block ALL backbones to Pakistan until the Government pays a fine, apologize for poisoning the BGP tables, and promise never to do it again. If you want to be a part of the Internet, you need to behave.
0 Votes
+ -
The bigger question
Michael Kelly 24th Feb 2008
is how the hell can one faulty ISP in a backwater country change the DNS tables of one of the biggest web sites for the entire internet so easily in the first place? Imagine the damage that could have been done had they been TRYING to do damage. And now that the idea is out there...
0 Votes
+ -
Anyone who uses BGP can theoretically poison routes for the Internet
georgeou 24th Feb 2008
Anyone who uses BGP on multiple Internet connections can theoretically poison routes for the Internet. Every Internet router carries BGP tables for the whole Internet. I've run networks with edge routers that run BGP. However, ISPs can filter bad routes from clients, but this was an ISP that flooded the Internet with bad BGP routes so it's rather unusual.

ISPs are typically professionally run but this one apparently thought it was a good idea to poison the Internet. There will be serious consequences for this. This ISP can no longer be trusted without very granular filters in place.
0 Votes
+ -
It's so easy
RStiennon 24th Feb 2008
ANYONE with access to a BGP router can seriously harm the Internet. This incident is a great lesson.

-Stiennon
0 Votes
+ -
I had access to BGP in my last job
georgeou 24th Feb 2008
I had access to BGP in my last job because we did Data center hosting. But you don't even need to be that big, anyone with redundant Internet links (think T1s and above) use BGP. Usually, the ISPs will filter the BGP advertisements from those clients to narrow down what they can advertise. But in this case, the ISP itself was the culprit and that just doesn't happen very often, especially not like this.
0 Votes
+ -
Agree with sentiment
RStiennon 24th Feb 2008
Especially when you count the cost in frustration by what must be millions who could not access YouTube for an hour today.

But the Internet can take care of itself this time around anyway. PCCW the major carrier for PK connectivity shut down Pakistan to update their routers with filters to take out the Pakistani hijacked routes.

-Stiennon
0 Votes
+ -
SPAM
DigitalFrog 26th Feb 2008
I think this would be a great way to take care of SPAM - If the ISPs won't shutdown reported offenders, then cut the ISP out of the internet until they comply.
0 Votes
+ -
Silence Is Defeat
D T Schmitz 24th Feb 2008
A cheap Shell Account can come in handy to tunnel a ssh connection to the web in a pinch.

Such shell accounts allow you to set up your browser to SOCKS5 proxy via ssh to your shell account's ip address. This tunnels all http and https AND DNS activity so urls aren't blocked!

Plenty of 'how-tos' on it--just google on ssh and socks5.

Just thought of it.
0 Votes
+ -
Nothing to do with website blocking
georgeou 24th Feb 2008
Nothing to do with website blocking. This is the whole Internet being diverted to a different IP address because of poisoned BGP routes. From now on, Packistan will need to be filtered on BGP routes.
0 Votes
+ -
I think you missed the point George
binaryspiral 25th Feb 2008
I think the OP of this reply was stating the obvious - no matter what Pakistan does to block access to specific parts of the intarweb - people can and will still get there. It's just a matter of working around the restriction... proxy, tunnels, tor, whatever... the internet heals around these kinds of wounds very quickly.
0 Votes
+ -
Yes, he did Thanks
D T Schmitz 25th Feb 2008
nt
0 Votes
+ -
This is funny!!!
OhTheHumanity 25th Feb 2008
"A cheap Shell Account can come in handy to tunnel a ssh connection to the web in a pinch.

Such shell accounts allow you to set up your browser to SOCKS5 proxy via ssh to your shell account's ip address. This tunnels all http and https AND DNS activity so urls aren't blocked!

Plenty of 'how-tos' on it--just google on ssh and socks5.

Just thought of it."


These toughts from you are off the mark big time, think OSI model and drop down a few levels. Read up some more and then come back, it does make me laugh though!!! Googling someting is not always the best thing to do.
0 Votes
+ -
Glad you got a chuckle even if you missed the point!
D T Schmitz 25th Feb 2008
Even if the Pakistani government had managed to successfully block Youtube without hosing BGP, a user following my suggestions can get to whereever they want to go!

Thanks!
0 Votes
+ -
RE: Pakistan removed from the Internet
n3td3v 24th Feb 2008
Media hyper bole.
0 Votes
+ -
Don't confuse me with the media
RStiennon 24th Feb 2008
Would you be happier if I said " Pakistan's access to the Internet shut off by major Telco"? That's what happened earlier today. How is that hyperbole.

Because I blog I am now the "Media"?
0 Votes
+ -
RE: Pakistan removed from the Internet
JelMin 24th Feb 2008
This demonstrates a net design weakness: something's also taken Amazon out. As this is tantermount to declaring nuclear e-war, Pakistan should be taken out permanently as a warning to anyyyone else who wants to play these kind of games.
0 Votes
+ -
RE: Pakistan removed from the Internet
DanaBlankenhorn 24th Feb 2008
Don't confuse the Pakistan government with the Pakistani people. How would you feel if citizens elsewhere felt we agreed 100% with our own government?

As Pakistani writer Tariq Mustafa wrote me today, "Where were they when Musharraf sacked the judges?"

There is a difference between a people and its government. Wise people retain their relations with the people of other countries regardless of what their stupid governments do. Especially if they want their own stupid governments forgiven.
0 Votes
+ -
I don't think he did
georgeou 24th Feb 2008
I don't think he did. He didn't say Pakstani people did this crime. He specifically said the Government ordered it.
0 Votes
+ -
Outsourcing
mgcarley-zdnet 26th Feb 2008
And people wonder why I don't outsource - in too many cases you get "rookie" mistakes or unclean code.

If the Admins at the ISP concerned are able to make that kind of mistake and inadvertently take themselves out, why would I want to hire anyone of that caliber?

Don't get me wrong, I've lived in the region (twice) and I like the people. My problem is just that so many of them have the bits of paper (certifications) but nothing else... no real, practical knowledge.

While the same is true in so many places (even New Zealand and Europe), its just more common there, and I'd rather not have to be cleaning up any messes.
0 Votes
+ -
Wise words Dana
RStiennon 24th Feb 2008
Thanks. Especially now that it becomes apparent that this is actually related to Musharraf's sacking of the judges and coverage on YouTube.

-Stiennon
0 Votes
+ -
agreed ...
msdead 25th Feb 2008
Pakistani people good, extremist bad. Kill extremist, save citizens, problem solved. Too bad live is a little more complicated than that. Hope the internet comes up soon, free elections, right to protest, any thing that betters a womens rights, etc. You know all the stuff we take for granted here.
0 Votes
+ -
yea right dana lol
SO.CAL Guy 25th Feb 2008
yea right dana lol
0 Votes
+ -
hrmm
JamesDoyle 26th Feb 2008
well i think the "innocent people" can suffer through a couple weeks without internet to prove a point. anything longer than that suchs as the folks suggesting a permanent ban, is over the top. especially considering it doesn't even seem like they were intentionally sabotaging it. it seems like they were just rushing to comply with the new law as quickly as possible so they dont have to deal with the legal complications.

basically just a big screw up, not a "lets break youtube for everyone". settle down, no need to get riled up over it.
0 Votes
+ -
For those who would like more info 0n BGP.
bjbrock 24th Feb 2008
http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/bgp.htm

When this protocol was dreamed up I guess they didn't expect anyone would purposely try and poison the route tables. This is sscary that one ISP could reak so much havoc.

I can understand how routes could be messed up but DNS would also have to be involved if Youtube was pointed to the wrong IP. Wouldn't it?
0 Votes
+ -
I guess they could setup a block of bugus IP's
bjbrock 24th Feb 2008
the one Youtube resolve to and then point the routes to them?
0 Votes
+ -
That was my take, but apparently I need more info on BGP
D T Schmitz 24th Feb 2008
Thanks for the link happy
0 Votes
+ -
NO, DNS has NOTHING to do with this
georgeou 24th Feb 2008
NO, DNS has NOTHING to do with this. The DNS resolves the correct IP address. The problem is that when your packets try to go to that IP address, it gets diverted to Pakistan. Google solved this by advertising more granular BGP routes which override the poisoned routes. The backbone provider for that Pakistani ISP also started filtering those poisoned BGP routes.
0 Votes
+ -
So when the DNS resolves to an IP...
bjbrock 25th Feb 2008
Then do they have a bogus block of IP's setup for it to go to?

How else does it go to another site?
0 Votes
+ -
The original blog...
bjbrock 25th Feb 2008
said there was redirection to another site but the Inquirer says that surfers simply received an error message which makes more sense if DNS wasn't involved.
0 Votes
+ -
DNS was never involved
georgeou 25th Feb 2008
DNS was never involved. You get the correct IP address returned from DNS. The problem is that the routers that route you to the correct computer got redirected because of the poisoned BGP advertisements from Pakistan.
0 Votes
+ -
Here's an analogy that might help:
DigitalFrog 26th Feb 2008
You want to phone a friend, so you look up their name in the phonebook (=DNS) to get their phone number, but when you dial the number you find out that the phone company has forwarded that number to a different one. So, even if you had your friend's phone number recorded in your PDA (think Cached), it doesn't matter because the number itself is what is being diverted.
0 Votes
+ -
RE: Pakistan removed from the Internet
rehan@... 25th Feb 2008
Internet in Pakistan is working fine, there is NO internet shut down.

The Youtube is also working fine as we speak, I am in Pakistan now.

Some say it is because of that content and some say it is because of some election rigging videos

try key word election rigging in Pakistan and you will see the votes being casted without people.

Western Media has already declared the elections were not rigged, so I wonder where this rigging video came from.
0 Votes
+ -
Totally agree
jeff1@... 25th Feb 2008
Well said, I'd hate for folks to judge me by the actions of the current Hunta in charge here in the US.
0 Votes
+ -
Pakistan "cut off from the
toddunder+zdnet@... 25th Feb 2008
"The telecom company that carries most of Pakistan???s traffic, PCCW, has found it necessary to shut Pakistan off from the Internet..."

No.

This is sadly incorrect. Pakistan has a large number of providers. Pakistan Telecom itself has a large number of providers. Only a single provider of theirs had incorrect filtering and was forced to cut off its connections. The others continued working just fine.

A more detailed (and correct) technical discussion of this event is availbable at:

http://www.renesys.com/blog/

t.
0 Votes
+ -
"In terms they might understand better"
ihtsham_junk@... 25th Feb 2008
You do know that Pakistan's as monotheistic as they come, right?
0 Votes
+ -
Message has been deleted.
MadSciGuy Updated - 25th Feb 2008
0 Votes
+ -
That is an awful large generalization.
balsover 25th Feb 2008
An ISP in Pakistan decides to do something stupid and suddenly everyone in Pakistan are a bunch of heathens? Those 'heathens' are our friends in a world where we seem to have less friends every day.
0 Votes
+ -
Duplicate MadSciGuys?
MadSciGuy 25th Feb 2008
I agree with your comment. My screen name is also MadSciGuy, and I did not write the post to which you are replying. I have reported the apparent duplicate screen names.
0 Votes
+ -
From "Aliens"
No_Ax_to_Grind 25th Feb 2008
"I say we get back to the mother ship and nukem from orbit. Its the only way to be certain."
0 Votes
+ -
Who cares
DarthRidiculous 25th Feb 2008
Aside from terrorists, Pakistan has absolutely nothing to offer the world. I doubt many will miss them.
0 Votes
+ -
They have some hot chicks
magcomment 25th Feb 2008
Really quite exotic, some of them !! happy
0 Votes
+ -
Thoroughly agree
JonWayn 2nd Mar 2008
And if anyone wants some links as proof, I can post some
0 Votes
+ -
Religion or Politics?
MadSciGuy 25th Feb 2008
I don't think freedom of political speech should be abridged, but the article and some posts make it sound like a clash of religions. If you don't like some forms of Islam but choose instead to worship The Internet or YouTube as your god, with apparent great fanaticism, you're still a fanatic. Or if you just hate Pakistan and Pakistanis, that's your business too. In the USA some people who claim to love free speech want to get rid of Rush Limbaugh from the airwaves, in the name of what? Free speech? Maybe I take these posts too seriously, maybe you're all just goofing. Sorry.
0 Votes
+ -
Isn't it the same Pakistan...
LucasKorso 25th Feb 2008
and the same President Musharaf that is a close friend of the USA and a close buddy of your president Bush? After all they're helping the war on terror hunting the dreaded Osama... the USA always had a keen eye when to choose friends (like Osama or Saddam or the Talibans)... once again they are in bed with a Islamo-Fascist state...
0 Votes
+ -
let's reverse it on them
AtlantaTerry 25th Feb 2008
Why don't we just cut off Pakistan? Maybe then the people will revolt and bring their country back from the 5th century.
0 Votes
+ -
Nobody will cut them off
LucasKorso 25th Feb 2008
Because they are a ally of the USA. you wouldn't do that to a friend, would you?
0 Votes
+ -
5th Century (O/T)
mgcarley-zdnet 26th Feb 2008
5th Century, eh? Obviously, you've never been to Pakistan.

While some areas of it certainly are, shall we say "old school", you really could compare that to some of the remote areas of those you-nighted-stayts you call home.

Hell there are some parts of Finland which I'd reckon look about the same as they did 1500 years ago (or longer - we have Iron-age markets for petes-sake), but I doubt you'd say we're living in the 5th century.

Same goes for many places in Europe, China, Japan, Malaysia, Thailand. The Pacific Islands. But you'd hardly describe any of those places as being stuck in the 5th century. Try traveling a bit and shedding some of that ignorance.
0 Votes
+ -
RE: Pakistan removed from the Internet
boxplayer 25th Feb 2008
Seems like a lot of jingoistic anger in many of the comments posted here. Sure, it was a wrong and intrusive thing to do because its impact went Pakistan, and yes, it needs to be prevented from happening again. My uninformed bet is that it was unintentionally disruptive beyond their borders, a result of a poor understanding of how the 'net works. But countries have a right to make their own decisions about these things within their own sphere. I don't think much of limiting access to content in any medium, but the independence of nations to run their own society is also an important element. Genocide, ethnic cleansing, and the like need a worldwide response. Loss of access to YouTube seems a lot less serious. They just don't have the right to choose for everyone else in the world. And, I think, neither do we, whoever "we" are.
0 Votes
+ -
minor correction
boxplayer 25th Feb 2008
Sorry -- meant to say "its impact went BEYOND Pakistan."
0 Votes
+ -
Message has been deleted.
itanalyst Updated - 25th Feb 2008
0 Votes
+ -
RE: Pakistan removed from the Internet
mind83frak 9th Sep 2010
anyone who knows enough about computers can find a way to access blocked sites Pakistan your so riddiculous u really think u can stop people from accesing things well think again

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix