The i-root china reroute finally makes fox news. And congress.

Martin A. Brown mabrown at renesys.com
Wed Nov 17 03:38:42 CST 2010


Greetings,

 > >> http://www.foxnews.com/politics/2010/11/16/internet-traffic-reportedly-routed-chinese-servers/
 >
 > Hard to decipher what the Fox report is actually talking about, 
 > but I suspect it relates to 
 > http://www.renesys.com/blog/2010/06/two-strikes-i-root.shtml

I would echo the thoughts earlier in this thread that the Fox story 
is making rather non-technical or technically vague statements.

As I read the text [*], my suspicion is that this report has very 
little to do with the I-root's global Beijing instance (exposure to 
risk here would requires DNS tampering, visibility outside China 
and, to boot, is probabilistic, rather than wholesale).  The article 
makes references to the terms hijacking, redirection, a 'state-owned 
Chinese telecommunications firm' and 'security vulnerabilities 
pertaining to Internet routing processes'.
 
It seems much more likely that this article is a digested summary of 
the routing leak (re-origination) of tens of thousands of prefixes 
by AS 27374, discussed on this list and detailed by BGPMon:

  http://mailman.nanog.org/pipermail/nanog/2010-April/020789.html
  http://bgpmon.net/blog/?p=282

Danny McPherson also posted a nice summary here, as well, and 
identfies the problem we know and love so well (BGP) and even refers 
'routing by rumour', as you did David.

  http://mailman.nanog.org/pipermail/nanog/2010-April/020864.html

The Fox story twice refers to 2010-04-18, but the date was 
2010-04-08.

-Martin

-- 
Martin A. Brown --- Renesys Corporation --- mabrown at renesys.com




More information about the NANOG mailing list