Comments on: One More Time: Iran Isn’t Using Deep Packet Inspection

By: shiva

shiva — Mon, 15 Feb 2010 10:33:59 +0000

im iranian and i love iran and its people!!iran is not that thing that you are thinking about it!!!
we have freedom.

By: #IranElection: Yahoo May Have Turned Over 200k Usernames to Iranian Authorities « The SiliconANGLE

Fri, 09 Oct 2009 09:18:58 +0000

[...] that Nokia had sold deep-packet-inspection tools to the current Iranian regime, when it turned out (in line with our early analysis) that Nokia doesn’t even sell deep packet inspection equipment or [...]

By: Marc Ostrick

Marc Ostrick — Sat, 27 Jun 2009 19:57:51 +0000

Amazing post, Mark. You are doing some really important work here! Keep up the great research and conversation on such a high level.

By: guruvan

guruvan — Sat, 27 Jun 2009 14:58:16 +0000

It's pretty trivial to put a sniffer on at traffic aggregation points. from there it's pretty easy to track any interesting plain text tcp conversation. most emails and chats and even web get/post routines are tranmitted in plain text.

Sniffing traffic isn't the same as making routing decisions based on the DPI.

By: Mark 'Rizzn' Hopkins

Mark 'Rizzn' Hopkins — Fri, 26 Jun 2009 21:12:11 +0000

Also, a number of other methods of government hacking occur to me:

SMS intercept, which *could* be covered by the Lawful Intercept technologies, and packet sniffing on wired and wireless networks.

As one of John's FB friends noted, encrypting connections is your best bet – even if there *were* DPI, most encryption routines will defeat them.

By: Mark 'Rizzn' Hopkins

Mark 'Rizzn' Hopkins — Fri, 26 Jun 2009 21:02:12 +0000

There are a variety of ways to tap into chat conversations, including server
side monitoring, Trojans, or keylogging.
The fact that they're using firewalling techniques to filter out connections
to Facebook, Twitter and Youtube rather than DPI techniques points to the
fact that they don't have the technology

By: snowy irani

snowy irani — Fri, 26 Jun 2009 20:56:09 +0000

this is not true. may of the people who have been arrested in the past few weeks including human rights activists, when arrested and interogated have had print out of online chat conversations or emails placed in front of them as evidence.

so if there is no DPI for net traffic how are they geting this data and if this is true then how are facebook, and twitter users being arrested and taken from their homes. please explain.

By: John Furrier

John Furrier — Fri, 26 Jun 2009 20:42:07 +0000

Comments on Friendfeed where more insight is being shed on this subject. Specifically John Craft has data to share.

By: Mark 'Rizzn' Hopkins

Mark 'Rizzn' Hopkins — Fri, 26 Jun 2009 20:39:20 +0000

We'll see.
A good rule of thumb in reporting that's prevented me from making these
sorts of faux pax's as I've matured as a writer:

1) If the story sounds too good to be true, research research research.

2) Don't always be out for blood.

By: RexDixon

RexDixon — Fri, 26 Jun 2009 20:34:39 +0000

Next thing you know – Rizzn will be heading up the tech division at WSJ/Reuters! Good job Rizzn!