DDOSses (some of them) from China are indeed incredible. You trace them back, and they turn out to come from the central datacenters of China Telecom itself. Right out of the middle of their network core.
At first you think "IP spoofing". Every self-respecting DDOSer does it these days. And that's true. Then you start tracing the path of the traffic. Turns out the packets come straight from direct peering interface with China Telecom, in Hong Kong. The IPs WEREN'T spoofed (so luckily they suck at it, or at least some departments do).
Absolutely incredible. In my opinion this government maintains datacenters, at least 40-50 racks, JUST for ddosing sites they dislike on the internet.
Just imagine what the legal and PR disaster any western telco would face if they had maintained a datacenter dedicated to sabotaging others on the internet. Incredible.
It also makes it hard to decide what to do. Cut off China Telecom ? You get a choice: cut off all government (and academia) in China, or cut off everyone else (except "special economic zones"). That's pretty much it for mainland traffic.
At first you think "IP spoofing". Every self-respecting DDOSer does it these days. And that's true. Then you start tracing the path of the traffic. Turns out the packets come straight from direct peering interface with China Telecom, in Hong Kong. The IPs WEREN'T spoofed (so luckily they suck at it, or at least some departments do).
Absolutely incredible. In my opinion this government maintains datacenters, at least 40-50 racks, JUST for ddosing sites they dislike on the internet.
Just imagine what the legal and PR disaster any western telco would face if they had maintained a datacenter dedicated to sabotaging others on the internet. Incredible.
It also makes it hard to decide what to do. Cut off China Telecom ? You get a choice: cut off all government (and academia) in China, or cut off everyone else (except "special economic zones"). That's pretty much it for mainland traffic.
Incredible.