Slashdot Mirror

← Back to Stories (view on slashdot.org)

Beyond Firewalls — Internet Militarization

Posted by timothy on from the warm-up-the-euphemism-bandier dept.

angry tapir writes "One of the discussions at the Source Boston Security Showcase has been the militarization of the Internet. Governments looking to silence critics and stymie opposition have added DDOS attacks to their censoring methods, according to Jose Nazario, senior security researcher at Arbor Networks, with international political situations spawning DDOS attacks."

12 of 83 comments (clear)

  1. How dare the military invade our internet by Flibberdy · · Score: 5, Funny

    It's not like they started it or... Oh wait... D'oh

  2. Militarization? by morgan_greywolf · · Score: 3, Insightful

    Oh, come on. This is just more hysteria manufactured by people looking for money, fame and fortune.

    A DDOS attack is hardly the same the thing as a shell and mortar attack. For one thing, a DDOS doesn't do, and by definition, can't do permanent damage, nor can it kill people.

    Can we all just lay off the hype machine a little bit?

    --
    My blog
    1. Re:Militarization? by Chrisq · · Score: 4, Insightful

      Sadly I think that many people would be more upset about a day's outage of their bank than a real shell and mortar attack in Somalia, Iraq, or the Gaza Strip.

    2. Re:Militarization? by morgan_greywolf · · Score: 5, Insightful

      Sadly I think that many people would be more upset about a day's outage of their bank than a real shell and mortar attack in Somalia, Iraq, or the Gaza Strip.

      Well I think that many people would be a lot more upset about a shell and mortar attack on any city in their own country than a day's outage at their bank. I speak from experience.

      --
      My blog
    3. Re:Militarization? by Chrisq · · Score: 3, Interesting

      Surprisingly I think not always, it could depend where it is in the city. I have spoken to people who live in cities with gang-land areas who see attacks (drive by shootings, houses burned out, etc.) as though it was talking about somewhere the other side of the world. If one gang fired a mortar at another's stronghold this probably would not worry them too much.

    4. Re:Militarization? by PopeRatzo · · Score: 3, Insightful

      Well, there's a large difference between gang-land violence and an actual military mortar attack.

      Morgan has a point.

      There is a huge difference between preventing terrorism and fighting a war.

      Unfortunately, "war" is something that people who have never been in one think is romantic or exciting. I never thought much about war until my wife and daughter were stuck in Belgrade during the NATO bombing. I'm watching the CNN, seeing US planes, pilots and ordinance doing it's very best to kill my dearest loved-ones.

      So, should we fight terrorism with police action or with a "War on Terror"? Clearly, let the cops handle it and get our people out of Iraq before someone else gets hurt.

      --
      You are welcome on my lawn.
  3. I guess I'm safe by kcbanner · · Score: 4, Funny

    I put my computer in the demilitarized zone.

    --
    Obligatory blog plug: http://www.caseybanner.ca/
  4. Well, yes. by tygerstripes · · Score: 5, Insightful

    It was inevitable, surely. Once governments came to realise that the web was becoming a legitimate medium rather than an entity, they would obviously start to employ it in the same way they have every other.

    I have to ask: is this story about governments wising-up in the ways of the intertubes and turning it to their advantage, or about the fact that this was discussed at a conference? I'd have thought the former was self-evident, and the latter was completely un-newsworthy. Maybe we can discuss specific examples of political internet jiggery-pokery, but this kind of vague allusion is just going to prompt hot-air discussions with no real content, isn't it?

    --
    Meta will eat itself
  5. Re:What makes DDOS hard to stop? by Tuoqui · · Score: 4, Informative

    It's pretty hard to stop because it is a outright brute force method.

    1) All tubes have a limited capacity.
    2) If the packet makes it to your router you've already lost. The router's memory and/or processing power is being expended to 'ignore' or 'throw away' packets coming from certain IP ranges.

    Distributed makes it harder because the IP addresses do not come from any singular location so you cant just perform an IP range ban. Also the distributed part makes it more difficult to filter out 'garbage/attack' data request from legitimate traffic.

    --
    09F911029D74E35BD84156C5635688C0
    +2 Troll is Slashdot's way of saying groupthink is confused
  6. Re:What makes DDOS hard to stop? by drinkypoo · · Score: 3, Informative

    Our TCP/IP networks were built to survive connections going down. At least if they were built cluefully, anyway.

    Well, I am not a super-network-nerd, but my impression is that the reality is very different. As has been pointed out repeatedly there are a limited number of choke points which, when interrupted, disrupt large percentages of internet traffic. In addition you have to generally spend some money to get multihoming. For the home user, no big deal; you might lose your connections-in-progress but it's not likely that you'll have any other serious repercussions. So sure, a home user could back up Cable with DSL, for example, and gain all the most important benefits of multi-homing without even doing anything very complicated. But a business user needs to spend, spend, spend to multi-home. Once you're over a certain size you're going to need multiple connections anyway, so the relative cost of doing this drops considerably.

    A lot of things were designed to work much better than they do due to implementation. I suggest that evolution needs to give way to revolution and the internet we know and occasionally love must give way to a somewhat more anarchic mesh-network. Honestly I see a place for both; When I want to communicate with "the system" I'll use "the internet". It is however long past time for the people of the world to just utilize technology to bypass our corporate masters and take control of our own lives.

    On that note, anyone have any ideas on the cheapest possible mesh networking currently available which could scale to at least one access point for every human currently on the planet? I suspect that the carrying capacity of earth has been exceeded, at least as we are practicing life, so this is a reasonable upper bound for now. Besides, you don't actually need that many APs.

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  7. poor man's slashdotting by metageek · · Score: 3, Funny

    DDOS attack is the poor man's slashdotting

    --
    metageek
  8. Re:What makes DDOS hard to stop? by fuzzyfuzzyfungus · · Score: 4, Informative

    DDOSes are easy, and hard, to stop in roughly the same way that car bombs are easy, and hard, to stop. It is pretty trivial to have a router just drop traffic from any IP range you care to specify, just as it is pretty trivial to stop an ordinary car with nothing more than light weapons. However, an even remotely competent DDOS will involve traffic from huge numbers of otherwise innocent looking systems scattered among your legitimate users, so you identifying the ones to drop is hard, just as it is hard to find the one car among thousands, and you can't just shoot all drivers.