Article written by :: (RSS)

tigtog (aka Viv) is the founder of this blog. She lives in Sydney, Australia: husband, 2 kids, cat, house, garden, just enough wine-racks and (sigh) far too few bookshelves.

This author has written 3414 posts for Hoyden About Town. Read more about tigtog »

4 responses to “A False Sense of Security”

  1. Meg Thornton

    Every single time the Australian Federal Parliament gets its collective knickers in a twist about teh intarwebs and the terrible things therein, we wind up with a piece of legislation which enshrines a group of measures approximately as useful as a chocolate teakettle. There’s all the anti-child-porn laws (which have resulted in the Australian web-hosting scene folding in on itself), the wonderful “internet blacklist” laws (report offensive websites to the ACA, and get their names added to a blacklist which is handed on to ISPs, who can choose to implement it… if they want to), our anti-spam laws (which don’t stop spammers for longer than about six microseconds, and which were out of date even before they were written) and so on. Now we have the Great Internet Firewall, designed to stop the adult citizens of Australia seeing anything naughty on the world wide web – and only the world wide web. Child porn fans won’t be able to get their fix through the web via HTTP. Oh dear. Of course, they’re still welcome to use SMTP, FTP, IRC, newsgroups, peer-to-peer, IP tunnelling, VPNs, and anything else except straight HTTP to get their fix, so it’s rather like clearing all the heroin and ecstasy out of the pharmacies to crack down on the drug addiction problem, but let’s not worry about that. Instead, let’s treat the majority of Australian adults as though they were disobedient six-year-olds, and send them to bed without supper.

    Gods above, I just wish someone, somewhere in the whole process had actually read the history behind the creation of TCP/IP, and realised that Senator Conroy’s firewall is something which is attempting to do the very thing which the internet itself was designed to get around: block the flow of information. The phrase “broken as designed” springs strongly to mind here.

  2. Lauredhel

    I’ve just been poking through the report, and all of their “solutions” had an over-blocking rate of around 3%. They say that an acceptable rate would be 2%. At my rate of internet use, this would mean at least a dozen webpages blocked every day – very likely more, since I read about ladyparts and stuff. “Acceptable”? On whose planet?

  3. tigtog

    I found Telstra’s own technical report on the blacklist trials interesting:

    1. The proxy servers that will act as the filter can only cope with 10,000 URLs in the blacklist
    2. If they try to block a popular video site such as YouTube, the proxy server will be overloaded because of the bandwidth/TCP socket demands, so the proxy server will fail and will not route any other internet requests for anybody (how will it cope with Facebook and Twitter I wonder?). Hmm, do I smell Anonymous gearing up for recreational DDoS attacks on the entire Australian internet structure through script-kiddy botnet shenanigans? I think I do.
    3. The only way they can block circumvention attempts would be to restrict all Telstra customers to accessing only Telstra DNS. I’m sure they’ve put that line in there because they know that there is absolutely no way that businesses will accept such a restricted customer base for their online presence – either only Telstra BigPond customers or only NOT Telstra Bigpond customers? The same for any other Australian ISP? No way will that ever pass the commercial smell test.

    The proposed system is so vulnerable to both circumvention and falling over with an ephemeral surge in hits on just one blacklisted site that Australia will have to cope will rolling cyber outages within days (if not hours) of it being implemented. The howls of outrage about how “this isn’t how it’s supposed to work” will toll its deathknell within a week.

  4. tigtog

The commenting period has expired for this post. If you wish to re-open the discussion, please do so in the latest Open Thread.