Slashdot Mirror
Canadians To Douse Chinese Firewall
FrenchyinOntario writes "Researchers at a University of Toronto lab are getting ready to release a computer program called Psiphon, which will allow Internet users in free countries to help users in more restrictive countries (like China, North Korea, Saudi Arabia, etc.) to access the Internet by getting past the firewalls and getting around "rubber hose cryptoanalysis" which is a drawback of other anti-firewall programs as it reveals a user's tracks if discovered by authorities. Operating through port 443, Psiphon will allow users in monitoring countries the ability to send an encrypted request for certain information, and for users in secure countries to send it back to them. The UofT's Citizen Lab hopes to debut Psiphon at the international congress of the free speech group PEN in May."
This has already been done: Six/Four
quidquid latine dictum sit altum videtur.
Except that the CRTC has nothing to do with what I can and can't view on the 'net.
An elegant wrinkle is that the data will enter users' machines through computer port 443. Relied on for the secure transfer of data, this port is the one through whichreams of financial data stream constantly around the world.
"Unless a country wanted to cut off all connections for any financial transactions they wouldn't be able to cut off these transmissions," said Professor Ronald Deibert, the director of Citizen Lab.
rtfa kthnx
perpetually dwelling in the -1 pits
My complaint with this scheme, and Tor, is that they are essentially open proxies. Anyone who has ever had the misfortune to pooch the acl lines on a Squid and leave it running a bit will know what happens next. One day you notice your bandwidth pegged at max and you scramble to fix it.
Democrat delenda est
Many people are asking, "How is this any better than somesite.com, a normal anonymizing proxy?"
The difference is that this is a piece of software which runs on an individual person's computer.
This is more like peer-to-peer than it is like 50,000 people using a well know proxy.
The Chinese government can easily go to google and search for well known anonymizing proxies
and block access to them. What the govt can't do, is find out every IP address on the internet
running this software and block it. The downside of this software is that Chinese users must have
a friend on the outside to run the software, but the upside is that it's vastly less likely that the
Chinese government will be capable of blocking access to it.
Rubber-hose cryptoanalysis in The Jargon Wiki
Help us build a better map!
China's internet censorship works at several levels. It includes content-based filtering (banned terms in the text of what you are sending, including "human rights", "democracy" and "Dalai Lama"), so any attempt to bypass the filtering has to be encrypted. It also includes DNS-based filtering so some DNS lookups return the wrong IP addresses, and of course it also includes IP-based filtering that prevent Chinese users from accessing the BBC or Wikipedia, for instance.
Tor can be very effective at bypassing most of these protections, and you can choose to run it on port 443 (https) to avoid port-based filtering. Also, you can limit the amount of bandwidth you want to donate to other nodes, and the default outgoing policy prevents connections to port 25 so you can't use a Tor node for sending spam.
On the client side, using SwitchProxy for FireFox is helpful to maintain a list of proxies, including a local Tor instance, that works as a SOCKS proxy, and a list of open proxies (SwitchProxy can automatically change proxy every X seconds).
You can use a Tor node as a proxy. I do it all day every day. I didn't install anything on my computer, I just set the proxy.
-I like my women like I like my tea: green-