谷歌在中国教育网遭国家级“中间人攻击”

文/
Anonymous (未验证)


文/Percy Alpha(Greatfire.org)

从2014年8月28日起,有网友在微博和Google+上报告说,当部分大陆网友试图在中国教育网(CERNET)内连接google.com和google.com.hk等网页时,均收到SSL证书错误的提示(SSL证书是用于加密HTTP数据传输的证明)。这意味着谷歌在教育网上受到中间人攻击(MITM attack)。


从今年6月4日开始,谷歌的绝大多数服务在中国遭封锁,但在中国教育科研网内并未受到干扰。在新学期开学之际,谷歌在教育网上遭到中间人攻击。中国网络审查监测组织Greatfire相信,攻击是由中国政府发起的。

在维基百科上,将“中间人攻击”的定义为一种积极的监听:

中间人攻击是指,攻击者与通讯的两端分别建立独立的联系,并交换其所收到的数据,使通讯的两端认为他们正在通过一个私密的连接与对方直接对话,但事实上整个会话都被攻击者完全控制。在中间人攻击中,攻击者可以拦截通讯双方的通话并插入新的内容。

动机

Greatfire相信,当局有足够的动机,对谷歌发动中间人攻击。谷歌于2014年3月12日开始开始对中国以及全球各地的默认搜索启用https加密搜索。换句话说,用户与谷歌之间的信息传输都默认加密。只有终端用户和谷歌服务器知道所搜索并被返回的内容。中国的防火墙只能看到用户连接上了谷歌的服务器,并不知道传输的数据内容。这也意味着,当局无法对谷歌进行逐条封锁,因此只能将谷歌全盘封锁。到目前为止,这种封锁发生在中国的公共互联网上,但还未发生在教育网中。

中国政府深知,如果中国要在科研领域取得进展和创新,中国的科研人员必须能够通过谷歌来连接到大量的信息。也正因为这个原因,中国教育网长期都少受到网络审查的干扰。在教育网内,中国用户深知能使用早已在中国被封锁的视频网站Youtube和社交媒体Google+。与此形成强烈对比的是,在中国的公共网络上,谷歌学术搜索被封,该网站的中文版将用户导流到香港版的站点上,但香港版的谷歌学术搜索也在大陆被封。

在上个月之前,在教育网上连接谷歌几乎并未遭到干扰。但本届政府已展示出其在各个战线上控制互联网与信息的决心。当局并没有在教育网上直接封锁谷歌,因为这很可能招致全国学生、教师以及科研人员的反感。当局选择在教育网内对谷歌发动中间人攻击,这样一来,学生和科研人员能继续使用谷歌,而当局又可以监听并有选择地拦截搜索请求以及结果。

这并非中国当局首次发动中间人攻击。在2013年1月,中国政府曾发动了针对Github的中间人攻击,波及全国。

攻击会再次发生吗?

Greatfire表示,由于加密的网络服务增加,当局很可能会更多地使用中间人攻击。

攻击细节

已有多名用户报告,在教育网内连接谷歌均收到伪造地SSL证书。软件安全公司Netresec曾做过有关GItHub在中国遭中间人攻击地全面分析。Netresec分析了Greatfire发送的以下截图后表示,所有证据表明,中国教育网与谷歌之间地信息交通正在受到中间人攻击。发动中间人攻击地机器很可能在教育网与其他网络地对等连接处发送数据帧。Netresec将在近期内发布全面分析报告。


Greatfire采用网民的以下报告来进行分析。Solidot的这篇报道也引用了同样的报告。


这个截图显示,当用户使用Chrome浏览器连接谷歌时,收到了SSL证书错误的提示。由于谷歌启用了强制安全传输(HSTS),Chrome和Firefox浏览器禁止用户避开这个提示。


该用户还比较了他在正常连接情况下收到的证书(左)和在遭中间人攻击情况下连接时收到的证书(右)。

 


Google+上的相关报道

https://plus.google.com/u/0/115822850906053020654/posts/EGW4NEd7z3N

https://plus.google.com/+duffJiang/posts/Dk5LrD7CiWM  

用户该怎么做

当你看到证书错误提示时,千万不要将其点开。用户应该使用Firefox或Chrome浏览器,这两个浏览器禁止用户点开启用了强制安全传输的网站(如谷歌和Github)。如果你点开了警告,你的谷歌账户凭据信息可能被盗窃,这意味这你的Gmail邮件可以被攻击者一览无遗。


用户可以通过谷歌的镜像网站来连接谷歌。谷歌在6月份被中国封锁后,Greatfire设立了一个谷歌镜像网站。到目前为止,已有超过100万中国用户使用了我们的“自由谷歌”网站和其他无法在中国被封锁的镜像


本文英文版原发表于GreatFire上,中文版由泡泡网编译首发

 

评论

<a href="https://crescentcortland.com/">ventolin nebulizer</a> <a href="https://fetdb.com/">buy seroquel online</a> <a href="https://emporiumgames.co.uk/">arimidex testosterone</a> <a href="https://elusiveprime.org/">zoloft</a> <a href="https://boeing737.xyz/">how much is strattera</a> <a href="https://apartmanimerlin.com/">flagyl</a> <a href="https://everydayresume.com/">amoxicillin tablets</a> <a href="https://chronicwellness.com.au/">cialis coupon</a> <a href="https://ayearwithmypen.com/">where to buy proscar</a> <a href="https://copytalkie.com/">buy diflucan</a> <a href="https://applerepairman.com/">buy clomid online without prescription</a> <a href="https://bad-ads.fr/">amoxicillin without a prescription</a> <a href="https://forthefansbythefans.org/">where can i buy vermox</a> <a href="https://awthentica.com/">buspar</a> <a href="https://imarketwebsites.com/">advair diskus generic</a> <a href="https://3levelup.com/">buy atarax online</a> <a href="https://jonnare.com/">lavitra</a> <a href="https://craftisty.co/">female viagra buy online</a> <a href="https://alwayscash.net/">medication metformin</a> <a href="https://chargeit.org.uk/">bupropion</a> <a href="https://jenniferforsenate.com/">buy tadacip</a> <a href="https://joyashyh.cl/">fluoxetine 10mg</a> <a href="https://aluminummagnets.com/">antabuse</a> <a href="https://getcustomerstoday.co.uk/">atarax hydrochloride</a> <a href="https://golovkinvsmartirosyan.de/">bupropion sr 100mg</a> <a href="https://medplanadvisors.net/">prednisolone</a>

<a href="http://tadalafil365.com/">generic tadalafil</a> <a href="http://lasix911.com/">lasix</a> <a href="http://valtrex1.com/">purchase valtrex online</a> <a href="http://synthroid75.com/">synthroid with no prescription</a> <a href="http://amoxicillin5.com/">buy amoxicillin 500mg</a>

<a href="https://freeadultcam.icu/">free adult cam</a> <a href="https://slutcams.icu/">free sex web</a> <a href="https://adultchatrooms.ga/">adult chat rooms</a> <a href="https://adultchatrooms.gq/">amateur girl masturbating</a> <a href="https://camtocam.site/">bbw cam</a>

<a href="https://amoxicillin5.com/">amoxicillin 500 mg for sale</a> <a href="https://valtrex1.com/">buy generic valtrex</a> <a href="https://synthroid75.com/">synthroid 0.05 mg</a> <a href="https://sildenafil75.com/">sildenafil</a> <a href="https://motilium5.com/">motilium over the counter</a>

Scandal porn galleries, daily updated lists
http://arebedbugswhite.hithotgirl.allproblog.com/?arely

sushi porn porn tube spank free jap hd porn videos ray ray porn becki cruel porn

<a href="http://freeonlinesex.fun/">free online sex</a> <a href="http://bbwcams.site/">web cam pussy</a> <a href="http://chatporn.site/">homemade webcam</a> <a href="http://pornlive.icu/">live porn</a> <a href="http://teencam.ga/">teen webcam</a> <a href="http://liveporncams.fun/">live porn</a> <a href="http://freewebcamgirls.top/">couples cams</a> <a href="http://freesexcams.ga/">free nude cams</a> <a href="http://interactiveporn.cf/">sex web cam</a> <a href="http://eroticchat.top/">girl chat</a>

<a href="https://motilium5.com/">where to buy motilium</a>

Girls of Desire: All babes in one place, crazy, art
http://hdlesbians.relayblog.com/?elyse

holocast porn granny cum eating porn movies exotic lesbian porn porn dwarfs ashley star porn

<a href="https://lasix911.com/">buy lasix without prescription</a> <a href="https://propecia8.com/">propecia</a> <a href="https://amoxicillin5.com/">500 mg amoxicillin</a> <a href="https://sildenafil75.com/">sildenafil buy</a> <a href="https://valtrex1.com/">buy generic valtrex online</a>

<a href="http://cialis3.com/">buy cialis online safely</a> <a href="http://genericcialis20mg.com/">cialis canada online</a> <a href="http://metformin1000.com/">metformin hcl 500 mg without prescription</a> <a href="http://buyamoxicillinwithoutprescription.com/">buy amoxicillin no prescription</a> <a href="http://stromectolonline.com/">stromectol</a>

<a href="https://adultcams.fun/">adult cams</a> <a href="https://pornlive.icu/">live porn</a> <a href="https://freesexchat.cf/">free sex chat</a> <a href="https://camtocam.icu/">free chat rooms without registration</a> <a href="https://chatporn.site/">adult chat</a>

Girls of Desire: All babes in one place, crazy, art
http://menssilktshirts.thingoneironon.fetlifeblog.com/?kamryn

anastasia griffith in porn star porn report porn girl judy gotthart german soldier cartoon porn lois and meg lesbian porn

<a href="https://giroiditalia.de/">allopurinol</a> <a href="https://ad-crafts.com/">zoloft</a> <a href="https://ekahiaoao.net/">doxycycline generic</a> <a href="https://egomaniacalprig.org/">metformin</a> <a href="https://max8organs.net/">order deltasone</a> <a href="https://digitaldroid.info/">toprol xl 25mg</a> <a href="https://1motorsports.com/">lisinopril</a> <a href="https://codecubeit.org/">propranolol</a> <a href="https://ella.ci/">yasmin ocella</a> <a href="https://aprendizajevirtualsesc.com/">tetracycline for acne</a> <a href="https://counselingsupervisors.com/">robaxin price</a> <a href="https://kathylongpianostudio.com/">antibiotic ampicillin</a> <a href="https://andytron.net/">albuterol nebulizer</a> <a href="https://beachlifeentrepreneurs.com/">celebrex capsules</a> <a href="https://midwestfalltechnologyconference.org/">order medrol</a> <a href="https://artesania.shop/">clomid pill</a> <a href="https://diffusiondice.us/">price of ampicillin</a> <a href="https://autoscout.ir/">drug lisinopril</a> <a href="https://acibademdatca.com/">valtrex</a> <a href="https://odakhrs.com/">retin a</a> <a href="https://custombusinessautomations.com/">baclofen buy</a> <a href="https://createanewlifenowbusinesscard.com/">diflucan</a> <a href="https://dempsterhighway.ca/">toradol price</a> <a href="https://ordnanceranch.net/">stromectol 3mg</a> <a href="https://champagnebaubles.com/">toprol xl</a> <a href="https://forgivenessstudentloansnow.org/">clomid medicine</a> <a href="https://feministforeignpolicy.info/">azithromycin zithromax</a>

<a href="http://freeadultcam.icu/">free adult cam</a> <a href="http://camtocam.site/">cam porn</a> <a href="http://freewebcamgirls.top/">girls webcam</a> <a href="http://freesexchat.cf/">live girl cams</a> <a href="http://sexcams.icu/">chatrandom.com</a> <a href="http://webcamteens.site/">erotic chat rooms</a> <a href="http://hotwebcamgirls.site/">free live sex chat</a> <a href="http://freesexchatrooms.stream/">dirty chat</a> <a href="http://maturecams.icu/">mature cams</a> <a href="http://liveporncams.fun/">free webcam chat rooms</a>

<a href="https://freelivesex.site/">free live porn</a> <a href="https://camtocam.fun/">mature cam</a> <a href="https://slutcams.stream/">chat video</a> <a href="https://interactiveporn.tk/">zozo sex chat</a> <a href="https://adultcams.cf/">maturexxx</a> <a href="https://adultchatrooms.tk/">sexy chat girls live</a> <a href="https://bbwcams.live/">porn cams</a> <a href="https://sexcams.stream/">free sex cams</a> <a href="https://freeadultwebcamchatrooms.site/">free adult webcam chat</a> <a href="https://camsites.stream/">zozo sex chat</a>

<a href="https://propecia8.com/">buy propecia uk</a> <a href="https://synthroid75.com/">how to buy synthroid online with no prescription</a> <a href="https://doxycycline1.com/">doxycycline purchase</a> <a href="https://motilium5.com/">motilium usa</a> <a href="https://sildenafil75.com/">sildenafil citrate 100mg pills</a>

Levitra En Mujeres <a href=http://boijoy.com>levitra para que sirve</a> Amoxicillin Cough Syrup And Slo

<a href="https://myfreewebcam.fun/">my free web cam</a> <a href="https://freewebcam.gq/">free web cam sex</a> <a href="https://camgirls.ga/">chaterbate webcam</a> <a href="https://adultsexchat.icu/">adult sex chat</a> <a href="https://camsites.fun/">cam sites</a> <a href="https://freeonlinesex.icu/">myfree cams mature</a> <a href="https://freesexchatrooms.stream/">free sex chat rooms</a> <a href="https://adultchatrooms.tk/">adult chat rooms</a> <a href="https://freesexchat.cf/">sex chat free</a> <a href="https://chatporn.site/">porn chat</a>

<a href="https://freeliveporn.fun/">free live sex</a> <a href="https://freesexchat.cf/">sex chat free</a> <a href="https://interactiveporn.gq/">interactive porn</a> <a href="https://nudewebcams.icu/">free adult chat</a> <a href="https://sexcams.stream/">free sex cams</a>

<a href="http://freeliveporn.site/">free live porn</a> <a href="http://freelivesexchat.fun/">free live sex cams</a> <a href="http://sextalk.site/">webcam sex</a> <a href="http://interactiveporn.cf/">free interactive porn</a> <a href="http://adultchatrooms.gq/">free adult chat rooms</a> <a href="http://freewebcam.gq/">free web cam</a> <a href="http://adultcams.cf/">adult cams</a> <a href="http://freeadultchat.site/">free adult chat</a> <a href="http://slutcams.stream/">free video chat face to face</a> <a href="http://hotwebcamgirls.fun/">hot webcam girls</a>

<a href="https://propecia8.com/">buy propecia cheap</a> <a href="https://lasix911.com/">lasix water pill 20 mg buy no prescription</a> <a href="https://synthroid75.com/">synthroid</a> <a href="https://amoxicillin5.com/">amoxicillin 500 mg capsules</a> <a href="https://sildenafil75.com/">order sildenafil</a>

<a href="https://cialis3.com/">buy cialis canada</a> <a href="https://doxycycline2.com/">doxycycline</a> <a href="https://albuterol24.com/">buy albuterol online without prescription</a> <a href="https://buysildenafil50.com/">sildenafil online pharmacy</a> <a href="https://tadalafilgeneric20.com/">generic tadalafil 20mg</a> <a href="https://buydoxycyclinewithoutprescription.com/">buy doxycycline online without prescription</a> <a href="https://metformin1000.com/">metformin 500mg with out presciption</a> <a href="https://lisinoprilzestril.com/">lisinopril</a> <a href="https://prednisone911.com/">prednisone 40 mg</a> <a href="https://prednisolone911.com/">buy prednisolone</a>

<a href="https://cld.technology/">viagra soft buy</a> <a href="https://doggyheroes.org/">bupropion</a> <a href="https://ardakisikyol.com/">generic allopurinol</a> <a href="https://babyandcrib.com/">prozac</a> <a href="https://besafestaysafe.nl/">cheap erythromycin</a> <a href="https://arcler.shop/">amoxicillin</a> <a href="https://elitedate.co/">toradol for headaches</a> <a href="https://letitbenomore.com/">cost of azithromycin</a> <a href="https://cjwdevelopment.com/">celexa</a> <a href="https://dkeducationdepartment.com/">online lexapro</a> <a href="https://goodmattress.co.uk/">zanaflex pill</a> <a href="https://crxsunny.net/">tadacip</a> <a href="https://recordedbywhenwherewithhow.wiki/">seroquel</a> <a href="https://acibademdatca.com/">valtrex</a> <a href="https://angelasbookbag.com/">flagyl tablets</a> <a href="https://9money.online/">buy avodart</a> <a href="https://gobinstair.com/">lexapro</a> <a href="https://innobus.pe/">plavix 75mg tablets</a> <a href="https://lboursier-formation.info/">tetracycline</a> <a href="https://artesania.shop/">clomid for men</a> <a href="https://deferrvwepo.website/">female viagra</a> <a href="https://crescentcortland.com/">ventolin on line</a> <a href="https://mycoastalrower.com/">motilium tablets</a> <a href="https://brasilturista.com.br/">fluoxetine capsules</a> <a href="https://homesteadbarnco.com/">purchase azithromycin</a> <a href="https://electronics-liquidator.com/">synthroid</a> <a href="https://entwing.com/">how to purchase clomid</a> <a href="https://atiku.site/">paxil insomnia</a> <a href="https://binaryoptiontradingsystem.net/">atomoxetine strattera</a>

<a href="https://consciouspicks.com/">buy motilium online</a> <a href="https://fallout76market.com/">prednisolone 20mg</a> <a href="https://disorderfriends.net/">biaxin 500mg</a> <a href="https://fearofaroundball.com/">proscar hair</a> <a href="https://janimalsdoggrooming.co.uk/">generic lisinopril</a> <a href="https://cybermilk.ca/">paxil er</a> <a href="https://akarsolutions.com/">motilium</a> <a href="https://greatergen.com/">toradol allergy</a> <a href="https://climatedisplacement.net/">atenolol</a> <a href="https://alliknow.info/">alli medicine</a> <a href="https://futuretechevolution.com.au/">buy propranolol for anxiety</a> <a href="https://lathombees.co.uk/">clonidine er</a> <a href="https://ebooknation.net/">moduretic online</a> <a href="https://npatravelbaseball.org/">sildalis</a> <a href="https://easyvacationing.com/">aldactone</a> <a href="https://comtesse-wellness.com/">atenolol 100mg</a> <a href="https://bookashowact.com/">viagra soft</a> <a href="https://artofmeditation.club/">advair</a> <a href="https://agirenseignement.org/">avodart generic equivalent</a> <a href="https://dailykingcake.com/">furosemide</a> <a href="https://bedspacechairsofas.com/">biaxin antibiotic</a> <a href="https://genderagency.net/">levitra online</a> <a href="https://akcperu.info/">proscar for women</a> <a href="https://healthydeals.co.uk/">plavix generics</a> <a href="https://bambooyogaclothes.com/">ordering prednisone</a> <a href="https://evergreen-fashion-21.com/">robaxin</a> <a href="https://arizonaairbnbmanagement.com/">kamagra now</a> <a href="https://africacanning.com/">atenolol</a>

<a href="http://motilium5.com/">motilium</a> <a href="http://amoxicillin5.com/">buy amoxicillin 500mg</a> <a href="http://valtrex1.com/">valtrex without prescription</a> <a href="http://sildenafil75.com/">buy sildenafil online</a> <a href="http://synthroid75.com/">synthroid with no prescription</a>

<a href="https://milfcams.fun/">mature cams</a> <a href="https://freeadultchat.tk/">free adult chat</a> <a href="https://freewebcamgirls.top/">gay web cam chat</a> <a href="https://freeadultchat.site/">free video chat face to face</a> <a href="https://camsex.cf/">cam sex</a>

<a href="http://getdiscount.eu/">nolvadex online</a> <a href="http://cashnavi.cc/">aldactone for hair growth</a> <a href="http://arcshot.us/">generic for buspar</a> <a href="http://cbuscahombreconhuevos.com/">buy acyclovir without a precription</a> <a href="http://delphincomputersupply.com/">vardenafil</a> <a href="http://clarinhasaudavel.pt/">advair asthma</a> <a href="http://seancerevealed.com/">strattera generic</a> <a href="http://applerepairman.com/">purchase clomid</a> <a href="http://fabianmediamarketing.com/">online female viagra</a> <a href="http://myenergyquotes.co.uk/">celebrex</a> <a href="http://fourseasonspainting.ca/">toprol xl 25mg</a> <a href="http://sonjabarton.com/">tretinoin prescription</a> <a href="http://gobilling.net/">buy cheap prednisolone</a> <a href="http://conspiracycavern.net/">toprol xl anxiety</a> <a href="http://heavybassradio.org/">price of bupropion</a> <a href="http://expertica.org/">where to buy zithromax online</a> <a href="http://imachine.productions/">lexapro</a> <a href="http://addresume.com/">oral flagyl</a> <a href="http://aperaceparts.eu/">diflucan without get a prescription online</a> <a href="http://dailynews365.press/">hydrochlorothiazide triamterene</a> <a href="http://barbatideal.online/">retin a cost</a> <a href="http://couchcleaning.ca/">furosemide</a> <a href="http://atiku.space/">lexapro</a> <a href="http://clitsnakedswim.net/">diclofenac pills</a> <a href="http://fundaoflove.club/">atarax for sleep</a> <a href="http://searchhighlandparkrealestate.com/">lexapro canada</a> <a href="http://atlantachimneycleaning.com/">buy toprol xl</a>

Enjoy daily galleries
http://furry.porn.bestsexyblog.com/?noemi

lesbian lovers porn tube naughty asian women porn cathy riley porn art porn movies xxx free sex porn

页面

冒个泡吧!

Plain text

  • 不允许HTML标记。
  • 自动将网址与电子邮件地址转变为链接。
  • 自动断行和分段。