Beyond Firewalls — Internet Militarization

← Back to Stories (view on slashdot.org)

Beyond Firewalls — Internet Militarization

Posted by timothy on Friday March 13, 2009 @12:32AM from the warm-up-the-euphemism-bandier dept.

angry tapir writes "One of the discussions at the Source Boston Security Showcase has been the militarization of the Internet. Governments looking to silence critics and stymie opposition have added DDOS attacks to their censoring methods, according to Jose Nazario, senior security researcher at Arbor Networks, with international political situations spawning DDOS attacks."

7 of 83 comments (clear)

Min score:

Reason:

Sort:

How dare the military invade our internet by Flibberdy · 2009-03-13 00:34 · Score: 5, Funny

It's not like they started it or... Oh wait... D'oh
I guess I'm safe by kcbanner · 2009-03-13 00:41 · Score: 4, Funny

I put my computer in the demilitarized zone.

--
Obligatory blog plug: http://www.caseybanner.ca/
Well, yes. by tygerstripes · 2009-03-13 00:43 · Score: 5, Insightful

It was inevitable, surely. Once governments came to realise that the web was becoming a legitimate medium rather than an entity, they would obviously start to employ it in the same way they have every other.
I have to ask: is this story about governments wising-up in the ways of the intertubes and turning it to their advantage, or about the fact that this was discussed at a conference? I'd have thought the former was self-evident, and the latter was completely un-newsworthy. Maybe we can discuss specific examples of political internet jiggery-pokery, but this kind of vague allusion is just going to prompt hot-air discussions with no real content, isn't it?

--
Meta will eat itself
Re:Militarization? by Chrisq · 2009-03-13 00:57 · Score: 4, Insightful

Sadly I think that many people would be more upset about a day's outage of their bank than a real shell and mortar attack in Somalia, Iraq, or the Gaza Strip.
Re:Militarization? by morgan_greywolf · 2009-03-13 01:01 · Score: 5, Insightful

Sadly I think that many people would be more upset about a day's outage of their bank than a real shell and mortar attack in Somalia, Iraq, or the Gaza Strip.
Well I think that many people would be a lot more upset about a shell and mortar attack on any city in their own country than a day's outage at their bank. I speak from experience.

--
My blog
Re:What makes DDOS hard to stop? by Tuoqui · 2009-03-13 01:06 · Score: 4, Informative

It's pretty hard to stop because it is a outright brute force method.
1) All tubes have a limited capacity.
2) If the packet makes it to your router you've already lost. The router's memory and/or processing power is being expended to 'ignore' or 'throw away' packets coming from certain IP ranges.
Distributed makes it harder because the IP addresses do not come from any singular location so you cant just perform an IP range ban. Also the distributed part makes it more difficult to filter out 'garbage/attack' data request from legitimate traffic.

--
09F911029D74E35BD84156C5635688C0
+2 Troll is Slashdot's way of saying groupthink is confused
Re:What makes DDOS hard to stop? by fuzzyfuzzyfungus · 2009-03-13 01:21 · Score: 4, Informative

DDOSes are easy, and hard, to stop in roughly the same way that car bombs are easy, and hard, to stop. It is pretty trivial to have a router just drop traffic from any IP range you care to specify, just as it is pretty trivial to stop an ordinary car with nothing more than light weapons. However, an even remotely competent DDOS will involve traffic from huge numbers of otherwise innocent looking systems scattered among your legitimate users, so you identifying the ones to drop is hard, just as it is hard to find the one car among thousands, and you can't just shoot all drivers.