Anonymous Iran

06-27-2009

Iran's Web Spying Aided By Western Technology - WSJ.com

Apparently deep packet filtering is happening now. As of today, my Tehran friend's ssh tunneling to a server in America no longer works. ssl is blocked. https is blocked. Ideas? Changing ports doesn't work. Tor doesn't work. What do advise?

How to get anon-encryption?

Please help!

06-27-2009

(from iran) tor works, freegate works

06-27-2009

First, encrypt everything. Use strong passwords ("pass phrases") that use a mixture of letters, numbers, and variable capitalization that are unrelated to your personal details, you never write down anywhere, and never forget.

Learn how to use TOR, SSL, GPG, OTR/Pidgin.

Second, many people have raised questions about the details given in the Wall Street Journal's article "Iran's Web Spying Aided By Western Technology", e.g.

Quote:

It’s at this point that we can say that Iran is either using DPI in incredibly complex and sophisticated ways that push the technology to its limits, or the WSJ is blowing smoke. ... I truly wonder just how accurate the story from the WSJ is on the technical capabilities of the DPI devices that are deployed

See:

Iran, Traffic Analysis, and Deep Packet Inspection
Telecoms Helped Iran Spy On the Net; Same Technology Used Here
Iran Likes DPI Too
Wikipedia: Deep packet inspection in Iran

Using TOR, if you can access it, prevents DPI because the traffic between your computer and the entry TOR node is encrypted:

According to the TOR project, many Iranians are already doing this:

Even though it uses encryption to transmit packets, TOR does not provide security at either the exit node or the final website. For security, you'll need SSL (https, port 443, other), but this is [url=http://blog.torproject.org/blog/measuring-tor-and-iran]apparently blocked/url] in Iran.

There is also freegate, which has been brougt to its knees this week.

Browse using Firefox + Torbutton (+ Keyscramble, at least), never Microsoft Explorer. See this this comment:

Quote:

Now, with encryption above, and with stronger tools.

https://www.torproject.org/index.html.en

Tor + Firefox + Torbutton-plug-in + Keyscramble plug-in + encryption = a good start

Even if you are using TOR and possibly HTTPS for browsing, encryption that you control directly, like GPG, is the best. Only send personal communications encrypted using GPG. Distribute your GPG public key and tell people to only send you encrypted message. Generate cryptographically strong keys of at least length 1024 bits, preferably 2048 bits. Then using the command

Code:

% gpg -ea -r mixmaster@remailer.cyberiade.it --output message.txt.gpg message.txt

all your messages look like the following, and you can use a chain of anonymous remailers to send them securely, as detailed on this site.

Code:

----BEGIN PGP MESSAGE-----
Version: GnuPG v1.4.3 (GNU/Linux)

hIwDNeUtHbne9DkBA/9drtL/O0VOtn/dZzAw6HEdESj+sY/kwpm6941T3TzbZWKw
nJM8785ZEtXQ03qGEMx/J29MgGxFTgeQjOiKmosjJibTyboppu9Jd8dEmKAjwJVh
BCp5hdxXyqGl4k4VDpZJnNZM0OcMjg+8FyUhGhzqZ5vK8vLD8K6WucalYWl4tsl3
YICABlFCWxoaKenCODprZhazFvPUiR4FS8lrJwDEmgZ4d9epNyZvnkGJm8NIPJZv
zG0XGeM8ROXYMevETo6N03eD8eGKjcFe84Rw8KGU5tex/G7Uvl6q6YxYVN4y7qlD
WsuX2/AZS7hhxdSfo8TBDIwmLM29l0w=
=xS0h
-----END PGP MESSAGE-----

Encrypt your hard drives using tools discussed elsewhere on this forum.

Finally, some references on good practices: How To Communicate Securely in Repressive Environments. And be very careful whom you trust -- read this article at Tehran Bureau as a warning:

Quote:

As I waited for the news to load a young man named Ali offered to help me. ... Ali helped me hail a taxi to Valiasr Square to meet a friend for coffee. The taxi quickly moved through streets that were normally clogged with gridlock traffic. As we approached my destination two motorbikes pulled up on both sides of the taxi, waving for us to pull over. There were Basiji men. An unfamiliar feeling of terror came over me the moment I recognized one of the men as Ali from the net café.

06-27-2009

My TOR bridge has barely been used since I put it up almost 10 days ago. I'm concerned the method is perhaps not user friendly enough, or perhaps being blocked at least partially. I'm interested in trying Psiphon - Psi-OPS: Psiphon Open Source | Psiphon
Anyone using this? Any thoughts on usability compared to TOR?

stillstanding · 06-27-2009

HTTPS/SSL and Tor still work

06-27-2009

Without knowing the details, the best guess is that your IP is blocked. If you still want to help you've got several options:

1. Sanity check with the folks running the proxy setup that your server is actually working. I believe that there are simple tests for this, and it shouldn't be difficult to find out.

2. Depending on your internet service, it's easy to call in and request a new IP. Do this, make sure that it works, then send it in to the folks running the proxy setup stuff.

3. If you are blocked, you can still help. Volunteer your bandwidth as a TOR relay -- it's trivial to set up if you're running TOR. The folks running the proxy setup stuff, or others, ought to provide pointers to people who want to help in this way.

Also, everyone must realize that anyone running a TOR exit node can sniff the packets for usernames, passwords, and personal information, as has actually happened. Unless you've got a secure SSL (https) connection to your destination, you must assume that all information you type into a TOR network can be intercepted and read. Do you know who is operating your exit node? No. Assume that they're reading your traffic. That's the "cost" of anonymity without encryption.

Only anonymity with encryption, either from SSL or GPG, can securely protect your information.

Geraldanthro · 06-28-2009

Cyber War round II, 05.27.09

Internet Anthropologist Think Tank: Cyber War round II, 05.27.09

Gerald

.

06-27-2009	#1 (permalink)
Please unblock Guest Posts: n/a	Getting around deep packet filters? Iran's Web Spying Aided By Western Technology - WSJ.com Apparently deep packet filtering is happening now. As of today, my Tehran friend's ssh tunneling to a server in America no longer works. ssl is blocked. https is blocked. Ideas? Changing ports doesn't work. Tor doesn't work. What do advise? How to get anon-encryption? Please help!

06-27-2009	#2 (permalink)
Unregistered Guest Posts: n/a	none (from iran) tor works, freegate works

06-27-2009	#6 (permalink)
Unregistered Guest Posts: n/a	Sanity Check that IP Works / Get a New IP / Volunteer Your Bandwidth for a TOR Relay Without knowing the details, the best guess is that your IP is blocked. If you still want to help you've got several options: 1. Sanity check with the folks running the proxy setup that your server is actually working. I believe that there are simple tests for this, and it shouldn't be difficult to find out. 2. Depending on your internet service, it's easy to call in and request a new IP. Do this, make sure that it works, then send it in to the folks running the proxy setup stuff. 3. If you are blocked, you can still help. Volunteer your bandwidth as a TOR relay -- it's trivial to set up if you're running TOR. The folks running the proxy setup stuff, or others, ought to provide pointers to people who want to help in this way. Also, everyone must realize that anyone running a TOR exit node can sniff the packets for usernames, passwords, and personal information, as has actually happened. Unless you've got a secure SSL (https) connection to your destination, you must assume that all information you type into a TOR network can be intercepted and read. Do you know who is operating your exit node? No. Assume that they're reading your traffic. That's the "cost" of anonymity without encryption. Only anonymity with encryption, either from SSL or GPG, can securely protect your information.

06-28-2009	#7 (permalink)
Geraldanthro Senior Member Join Date: Jun 2009 Location: usa Posts: 211	Cyber War round II, 05.27.09 Cyber War round II, 05.27.09 Internet Anthropologist Think Tank: Cyber War round II, 05.27.09 Gerald .

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

06-27-2009	#4 (permalink)
Unregistered Guest Posts: n/a	My TOR bridge has barely been used since I put it up almost 10 days ago. I'm concerned the method is perhaps not user friendly enough, or perhaps being blocked at least partially. I'm interested in trying Psiphon - Psi-OPS: Psiphon Open Source \| Psiphon Anyone using this? Any thoughts on usability compared to TOR?

06-27-2009	#5 (permalink)
stillstanding Junior Member Join Date: Jun 2009 Posts: 14	HTTPS/SSL and Tor still work

LinkBacks (?) LinkBack to this Thread: http://iran.whyweprotest.net/keeping-your-anonymity-iran/2815-getting-around-deep-packet-filters.html
Posted By	For	Type	Date
Getting around deep packet filters? - Why We Protest - IRAN	This thread	Refback	06-27-2009 02:38 PM

Anonymous Iran

Getting around deep packet filters?

LinkBack to this Thread: http://iran.whyweprotest.net/keeping-your-anonymity-iran/2815-getting-around-deep-packet-filters.html