[132155] in North American Network Operators' Group
Re: The i-root china reroute finally makes fox news. And congress.
daemon@ATHENA.MIT.EDU (Martin A. Brown)
Wed Nov 17 04:41:15 2010
Date: Wed, 17 Nov 2010 04:38:42 -0500
From: "Martin A. Brown" <mabrown@renesys.com>
To: nanog list <nanog@nanog.org>
In-Reply-To: <779FF57C-5462-412D-900D-CAF3585C9A72@virtualized.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Greetings,
> >> http://www.foxnews.com/politics/2010/11/16/internet-traffic-reportedly-routed-chinese-servers/
>
> Hard to decipher what the Fox report is actually talking about,
> but I suspect it relates to
> http://www.renesys.com/blog/2010/06/two-strikes-i-root.shtml
I would echo the thoughts earlier in this thread that the Fox story
is making rather non-technical or technically vague statements.
As I read the text [*], my suspicion is that this report has very
little to do with the I-root's global Beijing instance (exposure to
risk here would requires DNS tampering, visibility outside China
and, to boot, is probabilistic, rather than wholesale). The article
makes references to the terms hijacking, redirection, a 'state-owned
Chinese telecommunications firm' and 'security vulnerabilities
pertaining to Internet routing processes'.
It seems much more likely that this article is a digested summary of
the routing leak (re-origination) of tens of thousands of prefixes
by AS 27374, discussed on this list and detailed by BGPMon:
http://mailman.nanog.org/pipermail/nanog/2010-April/020789.html
http://bgpmon.net/blog/?p=282
Danny McPherson also posted a nice summary here, as well, and
identfies the problem we know and love so well (BGP) and even refers
'routing by rumour', as you did David.
http://mailman.nanog.org/pipermail/nanog/2010-April/020864.html
The Fox story twice refers to 2010-04-18, but the date was
2010-04-08.
-Martin
--
Martin A. Brown --- Renesys Corporation --- mabrown@renesys.com
