The Proxy Fight for Iranian Democracy – CircleID

If you put 65 million people in a locked room, they’re going to find all the exits pretty quickly, and maybe make a few of their own. In the case of Iran’s crippled-but-still-connected Internet, that means finding a continuous supply of proxy servers that allow continued access to unfiltered international web content like Twitter, Gmail, and the BBC.

A proxy server is a simple bit of software that you run on your computer. It effectively lets you share your computer with anonymous strangers as a “repeater” for content that they aren’t allowed to fetch themselves. For example, an Iranian web browser might be manually configured to use your computer (identified by an IP address and a port number) as a Web proxy. When your anonymous friend reads twitter.com, or posts a tweet, the request goes via your computer, instead of to Twitter’s web server directly. Except for a little delay, and the fact that your friend gets to see what the uncensored Internet looks like from New York or London or São Paolo instead of Tabriz or Qom, surfing through a proxy is pretty much like surfing without one.

As you might imagine, open web proxies are valuable commodities in places where it’s forbidden, possibly dangerous, to surf the Internet. Iran’s opposition movement has been vigorously trading lists of open proxies over the past week. And as you might further imagine, the Iranian government censors have worked overtime to identify these proxies and add them to the daily blacklists.

As an experiment, we geolocated a list of about 2,000 web proxies (unique IP addresses and port numbers) that were shared on Twitter and other web sites over the course of the last week, to see if we could discern patterns in the places that are hosting them. Most of these are no longer reachable from inside Iran, of course, precisely because they were made public. The following map shows the distribution of those proxies worldwide.

3725a ProxyEgg The Proxy Fight for Iranian Democracy - CircleID

The USA and Western Europe were well-represented, but so were China, India, Russia, Romania, Bulgaria, Vietnam, … 87 countries in all, a pretty impressive breadth of representation, considering the relatively small size of this sample. (You can also see about a dozen Iranian IP addresses represented in the set. Not surprisingly, all but one of these belong to networks originated by DCI, the government-run service provider who operates the modern-day Internet equivalent of the Alamūt Castle.)

Here’s a geographic visualization of the proxies, drawn in Google Earth. In the first one, we’ve drawn Iran in green, with some of their domestic network sketched in white, and their major international connections drawn in red. Each of the colored arcs represents a single open web proxy; they are “fountaining” out of a cable landing or Internet traffic exchange point that makes approximate sense for their Iranian Internet routing. For example, all of the web proxies in Europe are drawn from the Marseilles termination of the Sea-Me-We-4 cable. The web proxies in Turkey are drawn in light blue, radiating from Ankara, where the Iran-Turkey gas pipeline passes through on its way from Bazargan. Those unusual Iranian proxies emerge from Tehran, and so forth.

3725b ProxyEgg The Proxy Fight for Iranian Democracy - CircleID

If we rotate the globe, you can see how the countries of Asia are doing their part to keep the bits flowing in Iran. India, China, South Korea, Taiwan, Vietnam, and Japan are all visible sources of web proxy activity.

3725c ProxyEgg The Proxy Fight for Iranian Democracy - CircleID

I’d like to be able to say that these maps are a measure of the strength of the democratic impulse and volunteer spirit in all the countries of the world. But that might be a stretch. You see, looked at another way, an open proxy is a security hole, something you might find in a machine that’s been compromised, or at the very least, badly administered. Security purists think of them as the “unlocked gun cabinet” of the Internet — a resource for anyone who wants to abuse a website, commit fraud, cover their tracks.

Some of the proxies in this dataset are undoubtedly fresh, created by people who want to keep the Internet alive for the Iranian people. But many of these proxies have probably been around for months or years, mapped out by those that map out such things.

We did see a few organizers try to explain the concept of an ACL (Access Control List) to all the new proud parents of open proxies. If you are diligent, it is possible to restrict the anonymous users of your new proxy to just the Iranians, or even just the Iranian non-government networks, if you have a good enough list of the IP address blocks (network prefixes) in question. But I expect that the complexity of configuring anything tighter than an “open access” proxy is going to prove too high a barrier to entry for most people who might volunteer to run one.

For one thing, we know how hard this is. Renesys has pretty good lists of per-country networks and their transit patterns, based on our analysis of the global routing tables, and trust me, they take some work to maintain. And even given good maps of Iran’s address space to work from, ACLs are notoriously hard to test, if you don’t have Iranian friends who can try your server from inside the protest zone and report back to you with problems. Most people aren’t going to bother, and that’s probably okay. Freedom is messy. There’ll be time for security later.

3725d ProxyEgg The Proxy Fight for Iranian Democracy - CircleID

Perhaps the strangest thing of all, given how diverse and active and vocal the proxy server farmers have been, is that by and large, it isn’t working. The rate with which new proxies are being created has slumped over the last few days. It’s getting harder and harder to propagate new proxies to the people who need them, as the government consolidates its hold on the filtering mechanisms. Any new proxy addresses that are posted to Twitter, or emailed, will be blocked very quickly.

People we talk to inside Iran say that almost no proxies are usable any more. Freegate, a Chinese anti-censorship application that makes use of networks of open proxies, has proven popular in Iran. But this week, it, too, has been experiencing problems. Many popular applications, like Yahoo! Messenger, have stopped working. The authorities are said to be using power interruptions as a cyberweapon, causing brief outages during rallies that cause computers to reboot, just as people are trying to upload images and video. The net result, as Arbor’s excellent analysis shows, has been a drastic reduction in inbound traffic on filtered ports since the election.

If there’s a lesson here for the rest of the world, perhaps it’s this: Install a few proxy instances on machines you control. Learn how to lock them down properly. Swap them with your friends overseas who live in places where the Internet is fragile. Set up your tunnels and test them. And don’t wait until the tanks are in the streets to figure this out, because by that point, you may have already lost the proxy war.

Source of this news: https://www.circleid.com/posts/20060622_proxy_fight_for_iranian_democracy/

Related posts:

Everything You Need to Know About Sneaker Bots - Complex
In a nondescript warehouse at an undisclosed location in Northern New Jersey, there sits a garage space full of neatly stacked sneakers—some on shelves, some not—a basketball hoop, an Armenian flag, ...
What is a Proxy Server? - Server Watch
Proxy servers remain the powerful middlemen for securely passing internet communications between web clients and service providers in an evolving network.Proxy servers can increase internet connectiv...
Pfizer, Moderna expand studies from COVID-19 vaccine to offspring age 5 to 22 - Baltimore Sun
Multiple citizens familiar with the trials menti one d the Food and Drug White house has indicated to Pfizer-BioNTech and Moderna that the scale and scope of their pediatric studies, as initially...
NAB 2022: EVS Unveils MediaCeption Signature 1 . 0 you should Sports Video Group
EVS, the main provider of live video footage technology, has announced your current launch of MediaCeption Signature 1 . 0, the company’s latest-generation end-to-end asset remedies solution for fas...
Fix Screen Rotation Issues on Yoga 2, 3 Pro in Windows 10 - Windows Report
by Ivan Jenic Troubleshooting Expert Passionate about all elements related to Windows and combined with his innate curiosity, Ivan has delved deep into understanding this operating syste...
The standard HTTP/2-exclusive attacks - The most important Daily Swig
When you intercept a trustworthy request in Burp Proxy server, or send it on the way to Burp Repeater, the Inspector enables you to work with HTTP/2 headers and pseudo-headers in a way that secur...
Army Combat Training Centers Return to Pre-COVID Levels - Breaking Defense
Note: 18 rotations were planned for 2020, but five were cancelled due to COVID-19. WASHINGTON: The Army has cancelled a National Guard brigade’s planned deployment to Combat Training Center wargames ...
UMass Memorial notifies 209K patients 8 months after data breach discovery - SC Magazine
When a breach attack affects one or two organizations — especially financial institutions or other businesses in highly regulated industries, which hold oodles of sensitive information — it can be ba...
Chinese miners are back in action.What implications does this have on Bitcoin mining difficulty? – C...
Bitcoin is undoubtedly an asset that offers many advantages over fiat money, such as the decentralization of its production. However, it is no secret to anyone that there are regions of the world whe...
Silence Therapeutics : Condensed consolidated income statement (unaudited) - Form 6-K/A - Marketscre...
Condensed consolidated income statement (unaudited) Six months ended June 30,2021 June 30,2020 £000s (except per share information) Revenue ...
Mandiant: SolarWinds Attackers Continue to Innovate - BankInfoSecurity.com
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Governance & Risk Management Suspected Russian Group Hitting Cloud, Managed Service Providers Prajeet Nair (@prajeetsp...
To know how to Fix 'Windows 11's map network drive missing' Component - BollyInside
This tutorial is about each of our How to Fix ‘Windows 11’s map network drive missing’ Issue. We will try our best which means you understand this guide. I hope that appeals to you this blog Ho...
What Is Web Scraping? - TechBullion
Everyone has heard of web scraping at some point or another, the process of collecting information from the internet. Scraping could be anything, from copying and pasting a piece of text t...
Very good Technologies Upgrades Network Invasion Discovery Solution To Identify 33 New Types of Susp...
Positive Technologies released version 10. 2 of its PT Network Challenge Discovery (PT NAD) visitor analysis system, which recognizes attacks on the perimeter or inside corporate networks, manufac...
There are numerous ways You can Configure VPN in your own Brand New PS5 - PhoneWorld Magazine
The PlayStation 5, which was released in The fall of 2020, has captivated blu-ray fans worldwide. Despite the decrease in a built-in web browser, the foregoing PlayStation allows you to acc...
Snag yourself a VPN subscription on sale this weekend - Mashable
Deal pricing and availability subject to change after time of publication. If you’re looking for a sign to invest in your internet security, this is it: The below VPN subscriptions of every shape ...
Expo 2020 Dubai is ready to be most digitally-connected show - Gulf Today
A mind-blowing view of the Sustainability Pavilion at the Expo 2020 site in Dubai. wam Inayat-ur-Rahman, Business EditorThe Expo 2020 Dubai set to be the most digitally-connected and immersive e...
Cloud Types: Everything You Need to Know in 2022 - Nerdbot
The Rise of Cloud Computing and Cloud StorageCloud computing is like a delivery service on the internet. When you access files, databases, networks, or other resources online, the “cloud” delivers it...

IP Rotating Proxy Onsale

SPECIAL LIMITED TIME OFFER

00
Months
00
Days
00
Hours
00
Minutes
00
Seconds
First month free with coupon code FREE30