Pakistan Blocks YouTube, Puts Blinders On The World - InformationWeek
IoT
IoT
Infrastructure
News
2/25/2008
03:23 PM
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%
RELATED EVENTS
The Real Impact of a Data Security Breach
Aug 02, 2017
In this webcast, experts discuss the real losses associated with a breach, both in the data center ...Read More>>

Pakistan Blocks YouTube, Puts Blinders On The World

Users had a hard time accessing YouTube after Pakistan directed the country's ISPs to begin blocking the site for distributing offensive content.

Pakistan's effort to censor YouTube over the weekend ended up briefly blocking the popular online video site around the globe.

"For about two hours [on Sunday], traffic to YouTube was routed according to erroneous Internet Protocols, and many users around the world could not access our site," said a YouTube spokesperson via e-mail. "We have determined that the source of these events was a network in Pakistan. We are investigating and working with others in the Internet community to prevent this from happening again." On Friday, the Pakistan Telecommunication Authority directed the country's Internet service providers to begin blocking YouTube for distributing offensive content.

The country's ISPs carried out that order by altering Internet routing information and the changed data propagated to PCCW, an ISP based in Hong Kong, and from there across the Internet, thus preventing Internet users in other countries from reaching YouTube. Informed of the error, engineers for PCCW fixed the problem, according to the BBC.

YouTube has been blocked many times before by the likes of Morocco, Thailand, and Turkey and the company's response suggests an earnest if low-key effort to avoid similar incidents in the future.

But a number of people posting to the mailing list the North American Network Operators Group, an informal association of ISPs, worry that the incident demonstrates the insecurity of an important Internet routing protocol known as the Border Gateway Protocol (BGP).

"This is a great example of global politics getting in the way of honest corporatism," said Sargun Dhillon, a telecommunications consultant, in a message posted to the North American Network Operators Group mailing list. "This is also an example of how vulnerable the Internet is, and how lax [Internet service] providers are in their filtering policies."

In another NAOG message, Steve Bellovin, a Columbia University computer science professor, said that many in the Internet technical community have been warning about routing problems like this, which have happened before. He called for deployment of S-BGP, a more secure version of the routing protocol, despite deployment and operational issues that still need to be resolved.

"The question is this: when is the pain from routing incidents great enough that we're forced to act?" Bellovin wrote. "It would have been nice to have done something before this, since now all the world's script kiddies have seen what can be done."

It may be that the world's script kiddies, or perhaps more knowledgeable hackers, already are exploiting BGP weaknesses to hijack Web sites. The Internet Alert Registry, an online tool for scrutinizing Internet routing changes, shows dozens of suspicious changes that affect Web sites happening every day (There's also the Prefix Hijack Alert System). Even if data entry errors explain many of the routing changes listed, it's a safe bet that malicious hackers are intrigued by the possibilities raised by the weekend YouTube take down.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
IT Strategies to Conquer the Cloud
Chances are your organization is adopting cloud computing in one way or another -- or in multiple ways. Understanding the skills you need and how cloud affects IT operations and networking will help you adapt.
Video
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll