Rep : YouTube IP Hijacking

Jean-Michel Planche jmp at witbe.net
Mon Feb 25 15:28:04 UTC 2008


 >If someone comes up with the anti-mistake routing protocol ...
We could try to invent more idiot proof  protocols, but the more  
control (and centralization), the more it will be "a kind of  
Internet". Not sure the founding principles and factors that made the  
Internet successful would resist anymore.
Anyhow, you can think all you want about security, such as Apple with  
its concept of his locking iPhone, but you can’t anticipate the  
unexpected, like the ‘jailbreaker’ success ... and peoples acting on  
their routers with their feet and not with their brain and their hands.
It's the nature of Internet technology: something could always fail  
and the ability to prepare for the unexpected is one of the reason why  
it works and is so scalable. It's also why "best effort" / "real  
knowledge" / education are better approaches than searching for yet  
another killer secure protocol. But maybe I'm a dreamer :-))


Anyhow, I’m not saying that nothing can be done. I can see at least  
two possibilities:
             1/ What measures can be taken to prevent such things from  
happening and great discussion about it on the list.
             2/ How can we take a more proactive approach and be  
informed of such incidents as soon as they occur and not after the  
first customer complaint

On first issue,a lot to do ... If ‘best effort’ is something that  
always exist in the today business world, I think we’ll arrive at an  
equilibrium without waiting for geni.net (certainly good) answers.

On second issue, there are plenty of possibilities and it's not  
difficult now to be informed to the minute when "big destination / AS"  
seems to be in trouble.

FYI, just see:
             a very interesting TCP traceroute yesterday, during the  
"mistake" on Youtube (seen from our system  / AS15436 on US East  
coast, Europe (Paris and London)
                         http://www.flickr.com/photos/jmplanche/2291442426/
                         http://www.flickr.com/photos/jmplanche/2290636351/ 
  : routing changed
                         http://www.flickr.com/photos/jmplanche/2290636277/ 
  : Youtube.com unreachable
                         http://www.flickr.com/photos/jmplanche/2290636131/ 
  : very interesting, there is  an abnormally high response time, just  
before severe breakdown. Is Pakistan trying to announce more and more  
Youtube address and less and less Youtube servers available to answer ?
                         http://www.flickr.com/photos/jmplanche/2291429544/ 
  : not the same "overload" just before crash as seen from FR and UK : http://www.flickr.com/photos/jmplanche/2291429414/




-----------------------------
Jean-Michel Planche							blog: http://www.jmp.net
Chairman and co-founder Witbe				web : http://www.witbe.net
Follow me									http://www.twitter.com/jmplanche
-------------------------------------------
2.0 Monitoring : relevant End to End monitoring for critical app. and  
carrier class services
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20080225/1ef901ab/attachment.html>


More information about the NANOG mailing list