Cyber War Over Spam Slows Access for Internet Users
2013-03-27 22:45:00

RAY SUAREZ: Finally tonight: an online spat that's causing havoc around the World Wide Web.(1)
RAY SUAREZ:最后今晚: 在线口角引发万维网场浩劫。

Hari Sreenivasan has the story.(2)
哈利 Sreenivasan 有故事。

HARI SREENIVASAN: One company fights spam; the other is said to be behind sending those pesky e-mails.(3)
HARI SREENIVASAN:一家公司抵御垃圾邮件 ;另据说是背后那些烦人的电子邮件发送。

A dispute between the two has led to one of the largest reported cyber-attacks in Internet history, the result, widespread congestion that's slowing access for millions of users to sites like Netflix.(4)
这两个之间的争端导致了大报网络攻击在互联网的历史,结果,正在放缓访问数以百万计的像 Netflix 网站用户的普遍挤塞之一。

Nicole Perlroth has been covering the story for The New York Times, joins me now. Thanks for being with us.(5)
Nicole Perlroth 一直为纽约时报 》 的报道,我现在加入。谢谢你和我们在一起。

NICOLE PERLROTH, The New York Times: Thanks for having me.(6)
NICOLE PERLROTH, The New York Times:谢谢你让我。

HARI SREENIVASAN: All right, so let's kind of set the table here. What is happening in this particular cyber-attack?(7)
HARI SREENIVASAN:好吧,那么让我们种设置表在这里。在这个特定的网络攻击中发生了什么?

NICOLE PERLROTH: It's very technical, but, essentially, what happened was this group that sends out a black list of spammers to e-mail providers so that they can block the spammers blocked a group called Cyberbunker, which hosts website anonymously.(8)
NICOLE PERLROTH:它是技术性很强,但实质上,发生了什么事被这出黑色的垃圾邮件制造者以电子邮件提供商,以便他们可以阻止列表发送垃圾邮件制造者阻止一个名为 Cyberbunker,其中匿名承载的网站组的组。

They say that they will host anything with the exception of child pornography and terrorists.(9)

So, shortly after this happened, you saw Spamhaus, this volunteer anti-spam group, get hit with what are called denial of service attacks, where an attacker will just flood a site with data requests until it collapses under the load.(10)
所以,在此不久后发生了,你看见 Spamhaus,这个志愿者的反垃圾邮件组,而受到打击的所谓的拒绝服务攻击,其中攻击者将只是洪水具有数据请求的站点负载下倒塌之前。

So, Spamhaus enlisted another company here in Silicon Valley called CloudFlare that specifically mitigates against these types of attacks.(11)
所以,Spamhaus 登记另一家公司在这里在硅谷称为 CloudFlare,特别是减少对这些类型的攻击。

And what the attackers did then has since almost slowed -- not almost -- it has slowed Internet connections and brought up error messages for hundreds of millions of Internet users around the world.(12)
攻击者当时已经几乎放慢了--不几乎 — — 它已放缓的互联网连接和长大的互联网用户在世界各地数以亿计的错误消息。

The way they were able to do this was very technical, but essentially they were able to exploit some of the best and worst elements of the Internet.(13)

So, the Internet by default is set up in a way that it's open and it's loosely regulated, but it runs on servers that accept data requests from anywhere.(14)

And what the attackers did was they essentially pretended to be this group Spamhaus,(15)
攻击者所做的就是他们本质上是假装 Spamhaus,此组

and sent millions of data requests to servers all over the world that then amplified them and sent that traffic back to the victim, in this case Spamhaus, CloudFlare, the company that was trying to help it, and even some of the Internet services that help CloudFlare.(16)
和发送到服务器,然后放大他们并发送回给受害者的交通在世界各地数以百万计的数据请求,在这种情况下 Spamhaus,CloudFlare,想要帮它,,甚至是互联网的公司服务,以帮助 CloudFlare。

In the process, they consumed huge amounts of bandwidth and resources from servers all over the globe.(17)

And, as a result, you saw these Internet connections slow for hundreds of -- hundreds of millions of people around the world.(18)
,其结果是,你看到这些互联网连接缓慢的 — — 几百的数以百万计的世界各地的人们。

HARI SREENIVASAN: OK. So give us some sense of scale or perspective. We have heard a lot about these denial of service attacks, especially from one government to another. Is this bigger?(19)
HARI SREENIVASAN:还行。因此给我们某种意义上的规模或观点。我们听到了很多关于这些的拒绝服务攻击,尤其是从一个到另一个国家政府。这是更大吗?

NICOLE PERLROTH: It is bigger. So, starting last September, we have been covering attacks that government officials say are coming from Iran, although we don't know this for sure yet, aimed at American banks.(20)
NICOLE PERLROTH:这是更大。所以,从去年 9 月开始,我们已经涵盖政府官员说来自伊朗,虽然我们不知道这肯定尚未,目的是在美国银行的攻击。

And they have intermittently taken American banks offline, starting last September.(21)
间歇性地采取了美国银行脱机,从去年 9 月开始。

The amount of traffic that we have seen in the last couple of weeks that has escalated from this war between these two companies is what Internet security specialists say is five times bigger in strength than some of the attack traffic that was hitting those banks.(22)

Now, just for some added context here, the attack traffic that was hitting those banks is almost 12 times more powerful than the amount of traffic that Russia directed at a similar attack on Estonia in 2007 which almost crippled Estonia.(23)
现在,只是为了在这里一些添加的上下文,打这些银行的攻击流量是俄罗斯在 2007 年几乎瘫痪爱沙尼亚针对爱沙尼亚类似攻击的通信量比近 12 倍更强大。

So when you look at it in that context, this is a very large attack.(24)

Internet security folks are saying that this is the largest such attack of its kind that we have ever seen on the Internet.(25)

HARI SREENIVASAN: So if this is some sort of gang war between these two companies, why are we all getting caught in the crossfire?(26)
HARI SREENIVASAN:所以如果这是某种形式的帮派这两个公司之间的战争,为什么是我们所有陷入战火?

NICOLE PERLROTH: That's right.(27)

They have been able to exploit these servers around the world that are designed to accept data requests from anywhere.(28)

And partly because they have been set up in such a way to accept data requests from anywhere, you can't just easily shut them down.(29)

I mean, they're directing this traffic through million servers around the globe, and if you were going to just shut down these servers, you would effectively halt the Internet.(30)

So, one of the problems here is that those servers have been configured to accept traffic from anywhere, instead of filtering them to see if the traffic is legitimate.(31)

And that problem is called open resolvers.(32)

So, this has been a problem that has been well known in the Internet security community since at least the year 2000, when a bunch of Internet security specialists got together and put together a document of best practices on how to solve this problem.(33)
所以,这是一个问题,一直以来在互联网安全社区众所周知至少 2000 年,当互联网安全专家一堆起来,并汇集关于如何解决这一问题的最佳做法文档。

The problem is that companies, and even people at home, aren't checking their systems properly to make sure that traffic leaving their systems is actually coming from them, instead of someone else spoofing their system, which is what the attackers were doing in this case.(34)

HARI SREENIVASAN: All right. Now, very briefly, I want to ask you, is there anything we can do about this?(35)
HARI SREENIVASAN:好吧。现在,很简单,我想问你,有没有我们可以对此做任何事情吗?

NICOLE PERLROTH: There is. It's just going to take a while. Like I said, it's a problem that we have known about since 2000.(36)
NICOLE PERLROTH:有。它只是需要一段时间。我说过,这是一个问题,我们知道自 2000 年以来。


NICOLE PERLROTH: And, unfortunately, you know, it's going to take a lot of awareness for people to realize that just having their systems open like this and not configuring them properly can cause an attack of this magnitude.(38)
NICOLE PERLROTH:不幸的是,你知道,它要花很多的人们意识到,只让他们像这样打开的系统认识和不正确地配置它们可能会导致这种规模的攻击。

HARI SREENIVASAN: All right.(39)

NICOLE PERLROTH: So, hopefully, we're drawing awareness to it, but it is one of the first times we have seen how this could be exploited.(40)
NICOLE PERLROTH:因此,希望,我们正在绘制意识到它,但它是第一次我们已经看到如何这漏洞之一。

HARI SREENIVASAN: OK. Nicole Perlroth of The New York Times, thank you.(41)
HARI SREENIVASAN:还行。Nicole Perlroth 的纽约时报,谢谢你。

NICOLE PERLROTH: Thank you.(42)

All News Articles fetched from PBS RSS Feeds and copyrighted by