Bruce Schneier, whom I respect tremendously, points out that freedom and security are opposing ends of the same spectrum, people balance out freedom and security based on what they perceive. In other words, people would sacrifice their freedoms if they thought they needed more security.
A way to think about this, is the amount of Gated and Guarded communities we have sprawling through the Klang Valley (and even beyond). People are willing to sacrifice the extra money and give up some freedoms to live in a Gated and Guarded area, in some cases the premiums reach 100% just to live in a area that is guarded. Residents of these communities also experience the hassle of having to ‘tap-in’ and ‘tap-out’ of their areas in addition to the tremendous difficulty hosting visitors in these neighbourhoods.
Yet, people still live in them.
The answer is simple–security. People perceive a high rate of crime and are therefore willing to give up some personal freedoms to live in a secure neighbourhood.
Notice it isn’t the actual rate of crime that drives these behaviours, it’s the perceived rate of crime that causes people to give up their freedoms (and a whole load of cash) in order to live in them.
We see this in technology as well. The internet was meant to be free, a place for the free flow of ideas and thoughts–but this scares people, particularly governments who want to remain in power. So the Government tries to control it, but has to contend with citizens that want their freedom online.
From the governments perspectives it’s really easy problem to solve. As long as people perceive there is a ‘danger’, they’d be willing to give up freedoms to achieve security.
So the government begins campaigns like arresting bloggers, and blocking sites–all in the name of security. However, are we going to idly stand by and allow the government to censor the internet–even when it’s censoring hate speech?
Yes, I’m talking about Papagomo, who was accused of posting that the “Chinese in DAP ‘wajib ditendang’ even though if it means bloodshed”. I won’t comment on what was said here, but the fact remains we don’t (or rather shouldn’t) censor the internet.
Papagomo’s site has been pretty hard to access these past few days, now we could say it may be the extra traffic the site is getting, but Papagomo host his site on Blogspot, which means he runs on Google Servers, and those servers don’t break a sweat even under the harshest of traffic conditions. So what’s the deal here? Is Malaysia censoring the internet?
If you put yourself in the Malaysians Government shoes, your way to get people to give up their freedom is to allow them to perceive the threat of racial violence, and then bank on the predictability of human nature–that eventually people will allow the government to censor the internet in the name of security. Once again, this isn’t about the real danger of racial violence, merely the perception of it.
While I wasn’t around in 1969–I think there’s enough evidence to suggest that the probability of racial riots in Malaysia is infinitesimally small–yet as long as the perception of it is high, the government can always bank on people supporting a movement to censor it–all in the name of security. Just like those gated and guarded communities.
So in my mind, we should never censor the internet. We should make rational decisions based on the information we have, and all the information suggest that we should not give up our freedom to information just because some guy named Papagomo wants to post up some racially offensive postings. To me, that means nothing, the fact that he said it and nothing happened is proof enough we have nothing to worry about.
Well maybe not true, I am worried about the government censoring my internet, and the massive harm it can bring.
Here’s some quick tips on how to access blocked sites in Malaysia that is blocked by the ISP (Telekom, Maxis, Time..etc etc). Currently the ISPs in Malaysia are throttling and filtering specific traffic to websites like Malaysiakini, Facebook and even Youtube. Just in case, things get nasty post-election day, I thought I’d quickly put together a couple of ways you can access Malaysiakini and other online portals despite a Unifi censor. More…
In 2 days time, the South-East Asian nation of Malaysia will go through its 13th General Election since 1955. Some might look negatively on the number 13, but for the vast majority of Malaysians the coming few days will either raise our hopes or shatter them.
Malaysia has had only 1 party in power since it’s independence—that’s a long time to be in power, and for the first time since 1955 the ruling party in Malaysia is under threat, not just to lose it’s 2/3rd majority in Parliament, but the entire elections altogether, and with it control of the Federal Government. More…
Heard about the latest allegation accusing the Malaysian BN government of using Finfisher on its own Citizens?
Well that allegation is true–to me at least, and here’s a taste of what Finfisher can do in the hands of the government.
Beberapa minggu lalu, saya telah menulis tentang sekeping artikel yang ‘tidak bertanggungjawab’ oleh Malaysian Insider apabila ‘mendakwa’ kerajaan Malaysia mengintip rakyat Malaysia – tanpa sebarang bukti. Saya amat kecewa bahawa wartawan tersebut membuat kenyataan tersebut tanpa apa-apa bukti–apabila menulis blog tersebut saya kecewa dan saya marah!
Tetapi yang lebih penting–saya silap!
Mengikut laporan dari Citizenlab semalam–sekarang timbulnya bukti bahawa kerajaan Malaysia MEMANG mengitip rakyat–terutama sekali Rakyat Malaysia yang mengunakan Bahasa Melayu. More…
A couple of weeks ago, I wrote about an ‘irresponsible’ piece of journalism by the Malaysian Insider when the ‘claimed’ the Malaysian government was spying on Malaysian citizens–but they didn’t have any proof. I was very upset that a reporter would make such a bold statement and not back it up with any proof –so obviously the post was written in a caustic and emotionally charged way–I was upset, annoyed, angry even!
More importantly though–I was wrong!
On Labour day, Citizenlab released a second report detailing out more info from they’re Finspy research.
I’m not a usual fearmonger, or a person who panics easily–yet you friendly local tech evangelist has a warning for Malaysian users out there. Unifi is censoring the internet in the run up to the hotly contested GE1–and that’s what the data suggest.
You heard that right folks, some of you suspected all along, and I apologize for not believing you earlier. I was initially skeptical that Unifi and Telekom Malaysia would go to such extents to censor our right to information, and I’m deeply upset that this is happening in my own country.
Usually most Internet Service Providers (ISP) don’t censor the internet, not because they don’t want to–it’s simply because censoring the vast amount of online traffic is a monumental technical challenge. In the past we’ve seen Malaysia ISPs do this, for instance when they blocked Malaysia-Today in the run-up to the 2008 General elections, but censoring one entire website is a fairly straightforward thing to do–an bypassing that censorship is equally straightforward.
However, what Telekom Malaysia have done in this case, is not just censor one website–but rather parts of a website. Telekom Malaysia has gone leaps and bounds ahead in terms of censoring capabilities–now they’re able to censor ‘parts’ of a website including specific videos on youtube, and pages on Facebook.
Any government that blocks Facebook completely, isn’t going to get re-elected in Malaysia, the enormous public backlash we can expect would be enough to unseat even the great Barisan Nasional. Can you imagine how upset my aunty would be when she can’t play Candy crush???
It was in this premise that caused me to be skeptical that a government would be able to censor the internet, blocking only certain pages of Facebook (like the DAP Malaysia Facebook page) is far more technically challenging, than blocking and entire website like Malaysia Today.
Unfortunately, I can almost 100% confirm at this point that Telekom Malaysia now have this capability. A capability once only used by countries like China and Iran, have now reached our borders–and it is being used.
What is Deep Packet Inspection
Just to briefly explain what’s happening here.
1. The internet is this vast network running on something called the Internet Protocol or IP. This is what we mean by IP Address, it is literally your address on the internet.
2. The way the protocol works is routing data in packets. Essentially a packet is a small amount of data.
3. An analogy would be that if you used IP to send a long letter to your mother, instead of writing a 100 word letter and then sealing it in one envelope and sending it your mother. Your computer breaks that 100 word letter into 10 packets of 10 words each(for example) and sends those along in 10 different envelopes. So your mother would receive your message in increments.
4. This is why webpages don’t load instantly. Instead they take time, because your browser just displays your web page for packets you’ve already received and what you get is an incremental load.
5. It’s also why on slower internet connections you’d see a image load in stages, rather than instantly see the entire image.
6. Just like envelopes sent via mail, packets also contain addressing information, so that the Postman knows where your letter needs to go to.
7. In all cases, the postman looks at the OUTSIDE of the envelope and sends your letter to the address you’ve written on it–without OPENING the letter.
8. So if the Postman wants to block you from sending letters to your mother, he’d just discard all the envelopes going from your home to your Mothers home. He can do this easily without opening your letter.
9. That’s how TM can easily block MalaysiaToday. They can just cut-off all traffic to the MalaysiaToday IP address (although this is a bad analogy).
10. However, if the PostMan wanted to block only certain letters to your mother–let’s say all letters you sent to your mother to vote Pakatan Rakyat, but allow letters that had nothing to do with the election–he’d have to OPEN the letter and find out what information you’re sending.
11. Similarly if Telekom wanted to block only certain parts of Facebook from you, they’d have to OPEN your data packets, to see which Facebook pages you were visiting.
12. This is the technically challenging part. Opening up the Data Packets routed through Telekom is an enormous amount of work, and obviously slows down the entire process. The internet was built on speed and trust, and not for censorship at the packet level. How many postmen would you need if you wanted them to open each and every envelope sent??!
13. This process is called Deep Packet Inspection (DPI) and it is such an engineering challenge that very few countries even bother trying. The only country with the true audacity to do this is China (and possibly Iran).
14. Yet, from my analysis and my data–I can conclude that Telekom Malaysia at least have this capability. I could be wrong–but it’s unlikely.
What data do I have?
I made fun of Malaysiakini previously, when they claimed they were being blocked by Malaysian ISPs. The reason was that Malaysiakini had no data–but they did do something strange. They claimed that the encrypted website httpS://www.malaysiakini.com was fine, while the normal website had http://www.malaysiakini.com was being blocked. (the S at the end of http means the website is encrypted)
You see if all you’re doing is blocking all traffic to the portal (for instance blocking all traffic to MalaysiaToday), it would make no difference if the data was encrypted.
If you’re doing deep packet inspection–then encryption would basically bypass that censorship. The analogy here is that if you write to your mother in Cyrillic Russian and the Postman can’t read it. He can’t determine if this indeed was a letter asking your mother to vote pakatan or whether it’s just you asking for some money from mummy dearest. So in the end the postman has to make a decision to either throw the letter away or forward it onto your mother–but he doesn’t know.
In the same way, encrypting the line, means Telekom Malaysia doesn’t know which video on youtube you’re watching or which page on facebook you want to see, they still know you’re connected to Facebook or Youtube, but they don’t know if you’re watching a Pakatan ceramah or Psy-Gentlemen–it’s all encrypted to them.
And I proved this by trying to visit the DAP Facebook page on my Unifi connection, first without encryption–and it failed. And then with encryption–and it worked. (check out the video above–the DAP Facebook page on https loads instantly, but the DAP Facebook page without encryption is blocked!!)
This is no accident, I tried it plenty times–and it gave me the same result.
Is this accidental? Could be, but highly unlikely. Deep Packet Inspection is a technically sophisticated process, and a sophisticated process is usually purposeful and intentional. It’s VERY unlikely to be some sort of accident, and there is no other way for me to explain why an encrypted version of facebook page worked, but not the unencrypted version, although networking isn’t my strong suit and I’m open to opinions.
Beware ladies and Gentlemen, I’m convinced that Telekom Malaysia at least are beginning to censor the internet, Malaysiakini seems convinced as well. I can’t be 100% sure from my data (since it’s just from my connection), but I’d be looking forward to an explanation from Telekom.
Till then–happy voting from your local neighbourhood Tech Evangelist.
Just how private are your searches…turns out they aren’t private at all.
The wonderful people at Torrentfreak did an amazing piece of investigative journalism today. Upset over the passing of CISPA, they decided to do an internet check on how active the House of Representatives were–on bit torrent. It turns out with a couple of IP addresses, and some elbow grease you can pretty much find out how active a certain IP range is on bit-torrent or even on searching porn!!
So using the same techniques that Torrentfreak used, and applying them to the Malaysian e-Government official service provider “Government Integrated Telecommunication Network (GITN)“, your friendly neighbourhood Tech Evangelist manage to find some pretty interesting results!
The GITN is owned by Telekom Malaysia and is dubbed the “official network provider for the e-Government” in Malaysia–so let’s see what the official network for the e-government was being used for?
First off, someone was using the GITN network to download torrents–not exactly surprising, but judging by the variety of torrents (everything from Dark Skies to Naruto to Discovery Channel documentaries) it looks like more than one person was doing the downloading.
Also equally interesting was that someone used the GITN network to download porn. I’m no expert, but I’m thinking Gangbanged.XXX isn’t really a discovery channel documentary. More…