Slashdot Mirror

← Back to Stories (view on slashdot.org)

Chinese ISP Hijacks the Internet (Again)

Posted by Soulskill on from the phase-two-test-complete dept.

CWmike writes "For the second time in two weeks, bad networking information spreading from China has disrupted the Internet. On Thursday morning, bad routing data from a small Chinese ISP called IDC China Telecommunication was re-transmitted by China's state-owned China Telecommunications, and then spread around the Internet, affecting Internet service providers such as AT&T, Level3, Deutsche Telekom, Qwest Communications, and Telefonica. 'There are a large number of ISPs who accepted these routes all over the world,' said Martin A. Brown, technical lead at Internet monitoring firm Renesys. Brown said the incident started just before 10 am Eastern and lasted about 20 minutes. During that time the Chinese ISP transmitted bad routing information for between 32,000 and 37,000 networks, redirecting them to IDC instead of their rightful owners. These networks included about 8,000 US networks, including those operated by Dell, CNN, Starbucks, and Apple. More than 8,500 Chinese networks, 1,100 in Australia, and 230 owned by France Telecom were also affected."

14 of 171 comments (clear)

  1. Accident by rmushkatblat · · Score: 5, Insightful

    It was an accident, of course.

    1. Re:Accident by Anonymous Coward · · Score: 5, Insightful

      "Once is an accident.
      Twice is a coincidence.
      Three times is enemy action."
      -- Gen. Douglas MacArthur

  2. An old saying... by marmoset · · Score: 4, Insightful

    "Once is an Accident, twice is a Coincidence, and three times is a Pattern."

    1. Re:An old saying... by timeOday · · Score: 1, Insightful
      Wow, I can't believe the level xenophobia in here. Hate to break it to you guys, but BGP misconfiguration has always been an issue with the Internet and happens all the time (that paper is from 2002 btw). (Oh noes! Pakistan is attacking us too! And Spain! And we're even attacking ourselves!

      You hawks would be funny if some of you didn't hold power.

  3. Wiskey Tango Foxtrot by Archangel+Michael · · Score: 4, Insightful

    Any sufficient level of Incompetence is indistinguishable from Malice.

    Solution however is exactly the same.

    --
    Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
  4. built to spill by Anonymous Coward · · Score: 1, Insightful

    ... faulty by design.

  5. Re:Fall guy by lukas84 · · Score: 3, Insightful

    The small ISP can't do this if the big ISP would've done it's job properly.

  6. Re:Blacklist 'em by Anonymous Coward · · Score: 2, Insightful

    Dude pull your head out of the sand. The US government doesn't trust its own citizens too - that's why they datamine and wiretap your ass.

    The sheer hypocrisy and the little fantasies Americans tell themselves to feel better about themselves - need a new 'cold war' enemy to fight against, sandal-wearing dipshit? Was 'Al-Qaeda' as the big bad 'bogeyman' not doing enough to wet your sado-masochistic 'warrior' fantasies?

    I've never seen a more clear-cut example of 'pot calls kettle black'. America has been the no #1 importer/exporter of crime, terrorism, rape, and pillage for over 50 years now - but it helps when you can point at another country and say: "Them bad, we good". Never mind that the US gave most-favoured nation status to China, and still does so. If they're so 'bad', why won't the Congress drop that? Oh, that's right, all industry is over there - your cheap-ass goods wouldn't be getting made - you would have no clothes, no computer to type this shit on and all those other little perks that Chinese 'slave' wagers are manufacturing for you.

    You are a hypocrite at heart and you know it - in fact, that slogan McDonalds has - 'I'm loving it' - that's what you live by each and every single day. America - land of the cowardly and land of the delusional.

  7. Filter BGP updates? by zenchemical · · Score: 3, Insightful

    This is sort of the nature of BGP, at least when you are in the habit of trusting BGP peers. Methinks the large carriers should probably be in the habit of filtering BGP updates from chinese carriers, at least until they can pass "peering 101"

  8. Access to Zebra, Re:Blacklist 'em by ls671 · · Score: 2, Insightful

    While at it, I offer you to query my own Zebra server, I guarantee to only return the best available routes ;-))

    http://www.gnu.org/software/zebra/

    Contact me off-line if you are interested.

    Seriously, I have some friends who do like you, they start by blocking China, then Korea, then end up blocking half of the world to enhance their security.

    In my humble opinion, this is not a valid security approach, I actually use some requests or connection attempts from these countries to test and strengthen my security. Hackers can get to your machine from US relays/proxies or US compromised machine anyway and blocking only drops the packets as they arrive to your machine, no DOS protection or bandwidth savings.

    In short, I believe blocking China gives you a false sense of security, use China to learn how to make your system secure in the first place instead but the is just my 2 cents hence my very personal opinion ;-))

    --
    Everything I write is lies, read between the lines.
  9. Re:Chinese bashing? by religious+freak · · Score: 2, Insightful

    Yeah, I'd be interested in knowing if I'm paranoid against China and this type of thing for no reason, but (and maybe it's just my paranoia talking) I think there's pretty good reason to believe this is intentional. The only time I've ever heard of large scale screwups like this are with China and once with Pakistan.

    Are you saying this is truly a selection bias, or are the Chinese screwups more global in scope? Seems like propagating a small ISP to a large ISP to the entire Internet would be something I've heard before in other countries. Are there incidences in the past where 10% of ALL Internet traffic was routed through a different country?

    (I'm not trolling, this is a genuine question. Because if it does happen more often, maybe we should splash it on the /. front page every once in a while)

    --
    If you can read this... 01110101 01110010 00100000 01100001 00100000 01100111 01100101 01100101 01101011
  10. Re:Blacklist 'em by Kenz0r · · Score: 1, Insightful

    I get thousands of SSH log in attempts coming from China every day. I also get some from South-Korea, some from Brazil, but none from the US.
    Spam is not the only factor to consider.
    It certainly DOES make sense to blacklist China in its entirety unless you're doing business with them.

    --
    +1 Funny Signature
  11. Re:Why the FUCK does china still have internet acc by Anonymous Coward · · Score: 2, Insightful

    Racist garbage spoken like a true uninformed dickhead. Meanwhile crap like this continues to get modded up on slashdot. I'm tied of seeing almost daily china threads started on /. accompanied by racist or boarderline racist rants in the threads.

  12. Re:Blacklist 'em by Anonymous Coward · · Score: 1, Insightful

    Your logic just proved that your conclusion about Chinese spam is illogical :)