Must Read: Samsung Galaxy S4 review

Topic: Browser

Pakistan removed from the Internet

Summary: 4:30 PM Eastern (US).The telecom company that carries most of Pakistan's traffic, PCCW, has found it necessary to shut Pakistan off from the Internet while they filter out the malicious routes that a Pakistani ISP, PieNet, announced earlier today.

Richard Stiennon

By Richard Stiennon for Threat Chaos |

4:30 PM Eastern (US).

The telecom company that carries most of Pakistan's traffic, PCCW, has found it necessary to shut Pakistan off from the Internet while they filter out the malicious routes that a Pakistani ISP, PieNet, announced earlier today. Evidently PieNet took this step to enforce a decree from the Pakistani government that ISP's must block access to YouTube because it was a source of blasphemous content.

I cannot let the irony pass with out commenting. A religious state, Pakistan, identifies a content provider, YouTube, as the source of blasphemous, seditious content and orders, King Canute style, that the Internet tides be stopped. A zealous ISP ignorantly decides the best way to comply with the decree is to re-route all of YouTube's IP addresses to whatever site they thought was more appropriate. The first repercussion was that YouTube disappeared from the Internet for almost an hour. I suspect the second repercussion was that Pakistan's Internet access crawled to a halt as all of a sudden they were handling IP requests for one of the busiest sites in the world. As of this writing YouTube has announced more granular routes so that at least in the US they supercede the routes announced by PieNet. The rest of the world is still struggling. So, while working on a fix that will filter out the spurious route announcements, PCCW has found it necessary to shut down Pakistan's Internet access. The leadership of Pakistan just created a massive Denial of Service on their own country.

I could say: "be careful what you wish for" to those elements that object to free and open access to information and expression of ideas. But to put it in terms they might understand better: Do not anger the Internet gods or you will suffer their wrath!

Update: This blog points out that the "blasphemous content" claim may be a red herring. There may be more political motivations behind it.

Update:  Stiennon's blog has moved to here

Topics: Browser, Telcos, Social Enterprise

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

86 comments
Log in or register to join the discussion

  • I've had Newbie router admins take out my private routes before

    I've had Newbie router admins take out my private routes before on a corporate WAN, but I've not seen an entire country take out an entire website like this. Their actions not only blocked themselves from accessing YouTube, but the entire world.

    An action like this needs to be severely punished and it should never be tolerated by the world. I think the appropriate action is to block ALL backbones to Pakistan until the Government pays a fine, apologize for poisoning the BGP tables, and promise never to do it again. If you want to be a part of the Internet, you need to behave.
    georgeou
    Reply Vote

    • The bigger question

      is how the hell can one faulty ISP in a backwater country change the DNS tables of one of the biggest web sites for the entire internet so easily in the first place? Imagine the damage that could have been done had they been TRYING to do damage. And now that the idea is out there...
      Michael Kelly
      Reply Vote

      • Anyone who uses BGP can theoretically poison routes for the Internet

        Anyone who uses BGP on multiple Internet connections can theoretically poison routes for the Internet. Every Internet router carries BGP tables for the whole Internet. I've run networks with edge routers that run BGP. However, ISPs can filter bad routes from clients, but this was an ISP that flooded the Internet with bad BGP routes so it's rather unusual.

        ISPs are typically professionally run but this one apparently thought it was a good idea to poison the Internet. There will be serious consequences for this. This ISP can no longer be trusted without very granular filters in place.
        georgeou
        Reply Vote

      • It's so easy

        ANYONE with access to a BGP router can seriously harm the Internet. This incident is a great lesson.

        -Stiennon
        RStiennon
        Reply Vote

        • I had access to BGP in my last job

          I had access to BGP in my last job because we did Data center hosting. But you don't even need to be that big, anyone with redundant Internet links (think T1s and above) use BGP. Usually, the ISPs will filter the BGP advertisements from those clients to narrow down what they can advertise. But in this case, the ISP itself was the culprit and that just doesn't happen very often, especially not like this.
          georgeou
          Reply Vote

    • Agree with sentiment

      Especially when you count the cost in frustration by what must be millions who could not access YouTube for an hour today.

      But the Internet can take care of itself this time around anyway. PCCW the major carrier for PK connectivity shut down Pakistan to update their routers with filters to take out the Pakistani hijacked routes.

      -Stiennon
      RStiennon
      Reply Vote

      • SPAM

        I think this would be a great way to take care of SPAM - If the ISPs won't shutdown reported offenders, then cut the ISP out of the internet until they comply.
        DigitalFrog
        Reply Vote

  • Silence Is Defeat

    [url=http://silenceisdefeat.org/]A cheap Shell Account[/url] can come in handy to tunnel a ssh connection to the web in a pinch.

    Such shell accounts allow you to set up your browser to SOCKS5 proxy via ssh to your shell account's ip address. This tunnels all http and https AND DNS activity so urls aren't blocked!

    Plenty of 'how-tos' on it--just google on ssh and socks5.

    Just thought of it.
    D T Schmitz
    Reply Vote

    • Nothing to do with website blocking

      Nothing to do with website blocking. This is the whole Internet being diverted to a different IP address because of poisoned BGP routes. From now on, Packistan will need to be filtered on BGP routes.
      georgeou
      Reply Vote

      • I think you missed the point George

        I think the OP of this reply was stating the obvious - no matter what Pakistan does to block access to specific parts of the intarweb - people can and will still get there. It's just a matter of working around the restriction... proxy, tunnels, tor, whatever... the internet heals around these kinds of wounds very quickly.
        binaryspiral
        Reply Vote

        • Yes, he did Thanks

          nt
          D T Schmitz
          Reply Vote

    • This is funny!!!

      "A cheap Shell Account can come in handy to tunnel a ssh connection to the web in a pinch.

      Such shell accounts allow you to set up your browser to SOCKS5 proxy via ssh to your shell account's ip address. This tunnels all http and https AND DNS activity so urls aren't blocked!

      Plenty of 'how-tos' on it--just google on ssh and socks5.

      Just thought of it."


      These toughts from you are off the mark big time, think OSI model and drop down a few levels. Read up some more and then come back, it does make me laugh though!!! Googling someting is not always the best thing to do.
      OhTheHumanity
      Reply Vote

      • Glad you got a chuckle even if you missed the point!

        Even if the Pakistani government had managed to successfully block Youtube without hosing BGP, a user following my suggestions can get to [b]whereever[/b] they want to go!

        Thanks!
        D T Schmitz
        Reply Vote

  • RE: Pakistan removed from the Internet

    Media hyper bole.
    n3td3v
    Reply Vote

    • Don't confuse me with the media

      Would you be happier if I said " Pakistan's access to the Internet shut off by major Telco"? That's what happened earlier today. How is that hyperbole.

      Because I blog I am now the "Media"?
      RStiennon
      Reply Vote

  • RE: Pakistan removed from the Internet

    This demonstrates a net design weakness: something's also taken Amazon out. As this is tantermount to declaring nuclear e-war, Pakistan should be taken out permanently as a warning to anyyyone else who wants to play these kind of games.
    JelMin
    Reply Vote

  • RE: Pakistan removed from the Internet

    Don't confuse the Pakistan government with the Pakistani people. How would you feel if citizens elsewhere felt we agreed 100% with our own government?

    As Pakistani writer Tariq Mustafa wrote me today, "Where were they when Musharraf sacked the judges?"

    There is a difference between a people and its government. Wise people retain their relations with the people of other countries regardless of what their stupid governments do. Especially if they want their own stupid governments forgiven.
    DanaBlankenhorn
    Reply Vote

    • I don't think he did

      I don't think he did. He didn't say Pakstani people did this crime. He specifically said the Government ordered it.
      georgeou
      Reply Vote

      • Outsourcing

        And people wonder why I don't outsource - in too many cases you get "rookie" mistakes or unclean code.

        If the Admins at the ISP concerned are able to make that kind of mistake and inadvertently take themselves out, why would I want to hire anyone of that caliber?

        Don't get me wrong, I've lived in the region (twice) and I like the people. My problem is just that so many of them have the bits of paper (certifications) but nothing else... no real, practical knowledge.

        While the same is true in so many places (even New Zealand and Europe), its just more common there, and I'd rather not have to be cleaning up any messes.
        mgcarley-zdnet
        Reply Vote

    • Wise words Dana

      Thanks. Especially now that it becomes apparent that this is actually related to Musharraf's sacking of the judges and coverage on YouTube.

      -Stiennon
      RStiennon
      Reply Vote
CNET Join | Log In | Privacy | Cookies Close