public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
From: Michael Mol <mikemol@gmail.com>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Somewhat OT: Any truth to this mess?
Date: Sat, 18 Feb 2012 13:24:34 -0500	[thread overview]
Message-ID: <CA+czFiAXOJ19QfFBUZj9khpOjOKc7z-2Qp2hpaq6mri2QwC7Lg@mail.gmail.com> (raw)
In-Reply-To: <CAA2qdGWMfxrgNCBhHHNhLGsGGwT4S5dDwbOTy=a6Y0b0yNQRDQ@mail.gmail.com>

[-- Attachment #1: Type: text/plain, Size: 2526 bytes --]

And every time that's successful,  it's because some idiot admin wasn't
filtering their incoming BGP traffic properly. Ditto the network in Florida
which acted as a black hole for the entire Internet in the late 90s.

Proper training and filtering helps prevent these kinds of issues. It's
happened, sure. And it will happen again. And it will be recovered from
again. Policies will be adapted, trained and forgotten, again.

ZZ
On Feb 18, 2012 1:15 PM, "Pandu Poluan" <pandu@poluan.info> wrote:

> On Sat, Feb 18, 2012 at 21:36, Alan McKinnon <alan.mckinnon@gmail.com>
> wrote:
> > On Sat, 18 Feb 2012 06:00:00 -0600
> > Dale <rdalek1967@gmail.com> wrote:
> >
> >> > And no, the intartubes will NOT be switched off.
> >> >
> >>
> >> I don't really think they can unless they just cut power to all the
> >> computers.  After all, the internet is supposed to be redundant right?
> >> If there is a few computers still running that have a connection, it
> >> is still working.  Sort of anyway.
> >>
> >> Does make one wonder tho.  They have been talking about having a
> >> internet "off switch" but I'm not sure it would be that easy.
> >
> > To switch off the internet, you don't switch off the computers on the
> > internet. You switch off the routers that drive the internet.
> >
>
> You don't need to turn off the routers.
>
> Just inject BGP poison.
>
> I just re-found the news:
>
>
> http://www.computerworld.com/s/article/9197019/Update_Report_sounds_alarm_on_China_s_rerouting_of_U.S._Internet_traffic
>
> The article I linked above contains 2 incidents:
>
> The first incident rerouted traffic for a huge swath of Internet,
> including traffic destined to Microsoft, the Office of the USA SecDef,
> and others.
>
> The second incident blocked traffic for some sites, notably Twitter,
> Yahoo, and Facebook.
>
> BOTH incidents happened because of BGP poisoning. BOTH incidents
> affected traffic FROM the USA to destinations IN the USA even though
> the poisoning happened from OUTSIDE of the USA.
>
> The country where both incidents happened (in these cases, China) is
> not essential. ANY country with a BGP router connected to the backbone
> can easily poison other international backbone routers. Especially if
> said country has a HUGE International bandwidth.
>
> Rgds,
> --
> FdS Pandu E Poluan
> ~ IT Optimizer ~
>
>  • LOPSA Member #15248
>  • Blog : http://pepoluan.tumblr.com
>  • Linked-In : http://id.linkedin.com/in/pepoluan
>
>

[-- Attachment #2: Type: text/html, Size: 3385 bytes --]

  reply	other threads:[~2012-02-18 18:25 UTC|newest]

Thread overview: 38+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2012-02-18 10:26 [gentoo-user] Somewhat OT: Any truth to this mess? Dale
2012-02-18 10:44 ` Alan McKinnon
2012-02-18 12:00   ` Dale
2012-02-18 12:24     ` Volker Armin Hemmann
2012-02-18 12:39       ` Dale
2012-02-18 14:40         ` Alan McKinnon
2012-02-18 15:34           ` Dale
2012-02-18 16:18             ` Michael Mol
2012-02-18 17:48               ` Dale
2012-02-18 18:01               ` Pandu Poluan
2012-02-18 18:10                 ` Michael Mol
2012-02-18 19:02                   ` Pandu Poluan
2012-02-18 16:21         ` Volker Armin Hemmann
2012-02-18 16:31           ` Michael Mol
2012-02-18 12:56       ` Pandu Poluan
2012-02-18 13:18         ` Dale
2012-02-18 13:49           ` Pandu Poluan
2012-02-18 14:38           ` Alan McKinnon
2012-02-19 21:08           ` [gentoo-user] " walt
2012-02-19 21:23             ` Paul Hartman
2012-02-19 22:16               ` Dale
2012-02-20 16:12             ` Todd Goodman
2012-02-20 20:49               ` Grant Edwards
2012-02-20 21:04                 ` Michael Mol
2012-02-20 21:16                   ` Mark Knecht
2012-02-20 21:24                     ` Michael Mol
2012-02-20 21:52                   ` Grant Edwards
2012-02-21  5:30                   ` Paul Hartman
2012-02-18 14:30       ` [gentoo-user] " pk
2012-02-21  3:58         ` Walter Dnes
2012-02-18 14:36     ` Alan McKinnon
2012-02-18 18:11       ` Pandu Poluan
2012-02-18 18:24         ` Michael Mol [this message]
2012-02-18 19:10           ` Pandu Poluan
2012-02-18 16:35 ` Mike Edenfield
2012-02-19 21:14   ` [gentoo-user] " walt
2012-02-19 23:29     ` wdk@moriah
2012-02-20 16:37       ` Todd Goodman

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=CA+czFiAXOJ19QfFBUZj9khpOjOKc7z-2Qp2hpaq6mri2QwC7Lg@mail.gmail.com \
    --to=mikemol@gmail.com \
    --cc=gentoo-user@lists.gentoo.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox