[liberationtech] Man-in-the-middle attack on GitHub in China

Bert Arroyo pacificboy at gmail.com
Wed Jan 30 23:25:36 PST 2013 

ALCON:

Again my email was lost, as I mentioned on my email that was lost, if we do
not care about the 22 percent of the world's population freedom and rights
and see that they may not know, then we should care about the Chinese
government stopping other people's freedom and rights, just because they
have shown the truth or stated an opinion, they are hacked.  If you read
the New York Times news, they have been hacked by the Chinese government
for four months.  This not the first time, they will hack, blocked,
condemned and even jailed any one who writes or post anything online that
they do not agree or feels it makes them lose face, Chinese as a whole do
not like to lose face even if they are wrong.  If we are not concern about
this that they stop anyone around the world just because they do not agree,
that to me is a global threat to all Internet users around the world.  Yes
the GFW is a threat not to the Chinese but all of us.  Yes we should
destroy it at any cost, governments, universities, hackers, all who feel
that this if not destroy may actually stop Internet freedom. If they see
this forum as a threat, they may hack this forum too.  Just think about it,
when we who do not live in China, says "who cares".  And by the way I do
live in China and I am risking alot to express this.

On Wed, Jan 30, 2013 at 12:11 PM, Martin Johnson <greatfire at greatfire.org>wrote:

> At around 8pm, on January 26, reports appeared on Weibo and Twitter that
> users in China trying to access GitHub.com were getting warning messages
> about invalid SSL certificates. The evidence, listed further down in this
> post, indicates that this was caused by a man-in-the-middle attack. Full
> post at https://en.greatfire.org/blog/2013/jan/china-github-and-man-middle
>
> One interesting conclusion is that support for HTTP Strict Transport
> Security in Chrome and Firefox makes a real difference. If
> man-in-the-middle attacks become more common in China, preventing users
> from adding exceptions and making the warning messages informative is
> crucial. We need to find ways to convince users to use browsers that
> support these safety measures. Currently, around 50% of Internet users in
> China use either the 360 so-called Safety Browser (which is a very ironic
> name) or Internet Explorer 6 (yes, it lives on in China).
>
> Martin Johnson
> Founder
> https://GreatFire.org - Monitoring Online Censorship In China.
> https://FreeWeibo.com - Uncensored, Anonymous Sina Weibo Search.
> https://Unblock.cn.com - We Can Unblock Your Website In China.
>
> --
> Unsubscribe, change to digest, or change password at:
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20130131/78a6e646/attachment.html>

More information about the liberationtech mailing list