November 30, 2006

Anonymizer – penetrating the Great Firewalls of China and Iran

Lance Cottrell of Anonymizer is one of those rare guys who make me believe he started a company in no small part to do good. And so his cloaking-technology company is providing free services to help Chinese citizens sneak through their national firewall, and is doing the same thing for Iran on a paid basis, under contract to the Voice of America. I think this is wonderful, and he reports that it’s working well now. Even so, I think there are scalability concerns. Right now only 10s of 1000s of users are covered. If there were a few more zeroes on that, standard spam-blocking techniques, currently ineffective, might work. What’s more, the Chinese bureaucracy, currently not highly motivated to shut the service down, might bestir itself to be much more effective.

Anonymizer’s methods are surprisingly straightforward. They make available an anonymous proxy server and, when the Chinese government blocks access to its URL, distribute a new URL on a daily e-mail list. Apparently, the mean time to blockage used to be months, and now is down to a couple of days. Lance claims to have already worked out prepared (undisclosed) tricks prepared for when the mean time to blockage drops so low — e.g., less than a day – that current techniques stop working.

I would guess that one of these tricks is to distribute different proxy URLs to different list subscribers, making it hard for the Chinese government to block them all … especially since the subscribers whose URLs did get blocked would quickly be dropped from the list. One bonus to this hypothetical approach is that they could use all sorts of standard spammer techniques to punch the e-mails themselves through any filters. The only truly reliable way to block spam is to identify it via the call-to-action part. But if you’re sending different URLs to different people, that makes call-to-action identification and blocking hard.

Still, there’s a scaling problem. Right now they only reach 10s of 1000s of Chinese citizens. It’s hard to see how they could get through to a really large fraction of the population without leaving themselves open to standard spam-blocking techniques. What’s more, there’s no compelling technical reason China couldn’t block 100s, 1000s or even 10s of 1000s new URLs each day on a quick-response basis.

That said, Anonymizer’s heart and head both seem to be in the right respective places. What Lance told me doesn’t go nearly as far as my Operation Peking Duck proposal, but it’s in the same direction, right down to requiring the Chinese citizens to have a secure piece of client software, and hoping the authorities don’t criminalize the very act of running that software, or defeat it via a spyware blocker. More fundamentally, he seems to understand that he can’t win long-term without being, in his great phrase, a “freedom spammer.” Indeed, right now a significant fraction of the e-mail list subscribers are actually spam recipients, to provide legal cover should anybody get into trouble simply for being on the list.


4 Responses to “Anonymizer – penetrating the Great Firewalls of China and Iran”

  1. The Monash Report»Blog Archive » Anonymizer — internet privacy through anonymity on November 30th, 2006 5:12 am

    […] As for their penetration of the Great Firewall of China — that’s too important to bury this far down. I’ll write a separate post for it. • • • […]

  2. Text Technologies»Blog Archive » The Chinese censorship threat continues to ratchet up on January 30th, 2007 10:01 am

    […] Ted Samsen of Infoworld is worried that the Chinese are attempting to ratchet up internet censorship yet further. Welcome to the club, buddy. This problem is a big one, and I don’t think it’s going to be addressed without vigorous action. I particular, I suspect that what is needed may be some major efforts in white-hat spamming. Lance Cottrell of Anonymizer has clever ideas along those lines for fighting censorship in the short term, but I think a bigger effort is needed as well. […]

  3. Anonymous Web Surfing on December 12th, 2007 6:41 pm

    Although in the US, Anonymizer gets me around my corporate firewall and is very efficient. I do experience minor delays sometimes, but hey.. I know I’m anonymous.

  4. Jeff on May 29th, 2009 6:00 pm

    China firewall is lame – use to bypass it. You can bypass China Great Firewall and access youtube, facebook, blogger and all other sites which are blocked.

Leave a Reply

Feed including blog about enterprise technology strategy and public policy Subscribe to the Monash Research feed via RSS or email:


Search our blogs and white papers

Monash Research blogs

User consulting

Building a short list? Refining your strategic plan? We can help.

Vendor advisory

We tell vendors what's happening -- and, more important, what they should do about it.

Monash Research highlights

Learn about white papers, webcasts, and blog highlights, by RSS or email.