- Nokia's new N97 vs. the iPhone
- Talk-powered cell phones?
- FBI: Copper thieves jeopardize U.S. infrastructure
- 10 Microsoft research projects
- Smartphone smackdown: Storm vs. iPhone
Sunday's inadvertent disruption of Google's YouTube video service underscores a flaw in the Internet's design that could some day lead to a serious security problem, according to networking experts.
The issue lies in the way ISPs share Border Gateway Protocol (BGP) routing information. BGP is the standard protocol used by routers to find computers on the Internet, but there is a lot of BGP routing data available. To simplify things, ISPs share this kind of information among each other.
And that can cause problems when one ISP shares bad data with the rest of the Internet.
That's what happened with YouTube this weekend, according to sources familiar with the situation. BGP data intended to block access to YouTube within Pakistan was accidentally broadcast to other service providers, causing a widespread YouTube outage.
The chain of events that led to YouTube's partial black-out was kicked off Friday when the Pakistan Telecommunication Authority (PTA) ordered the country's ISPs to block access to YouTube because of an alleged anti-Islamic video that was hosted on the site.
According to published reports, the clip was from a film made by Geert Wilders, a Dutch politician who has been critical of Islam. Wilders is hoping to air a 15 minute anti-Islam film, called Fitna on Dutch television in March.
ISPs in Pakistan were able to block YouTube by creating BGP data that redirected routers looking for YouTube.com's servers to nonexistent network destinations. But that data was accidentally shared with Hong Kong's PCCW, who in turn shared it with other ISPs throughout the Internet.
In San Francisco, David Ulevitch first noticed the problem Saturday morning. "I was trying to watch cats falling off roofs... and I couldn't get to YouTube," he said. Ulevitch, who runs an Internet infrastructure company called OpenDNS, was soon able to connect with engineers at Google, who also experienced similar problems, he said. "They were like, 'Holy crap, we can't get to YouTube either.'"
Because Pakistan's BGP traffic was offering very precise routes to what it claimed were YouTube's Internet servers, routers took it to be more accurate than YouTube's own information about itself.
Larger service providers typically validate BGP data from their customers to make sure that the routing information is accurate, but in this case, PCCW apparently did not do that, according to Ulevitch. When the Pakistani ISP sent the bad data, PCCW ended up sharing it with other ISPs around the globe.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (9)
Product page: http://www.youtuberobot...By Anonymous on March 27, 2008, 3:59 amProduct page: http://www.youtuberobot.com Direct download link: http://www.youtuberobot.com/download/utuberobot.exe Company web-site: http://www.youtuberobot.com E-mail:...
Reply | Read entire comment
YouTubeRobot.com today announces YouTube Robot 2...By Anonymous on March 27, 2008, 3:58 amYouTubeRobot.com today announces YouTube Robot 2.0, a tool that enables you to download video from YouTube.com onto your PC, convert it to various formats to watch...
Reply | Read entire comment
dumass religious fanatics strike again!By Anonymous on March 15, 2008, 3:33 pmReligious idiots and political whackos will always be willing to destroy anything that does not fit thier idiotic views...Good luck, world!
Reply | Read entire comment
BGPBy Affan on March 8, 2008, 3:41 amThey must have tried to send the traffic to Black Hole (A terminology used to send the spam traffic or DOS traffic to blackhole so that it does not affect the service)...
Reply | Read entire comment
Targetted attack?By Packy on March 7, 2008, 11:48 amThis reeks of a targeted attack dressed up to look like a careless human mistake. Not pointing fingers here as this is my humble opinion but it would be exceedingly...
Reply | Read entire comment
View all comments