Freegate is Working in Iran!
Didn’t see this one coming.. but.. for some reason it looks like Freegate — popular amongst Chinese users seeking to get around the Great Firewall. What’s even better is that multiple ground reports from Iran tell me it’s even fast!
With Freegate’s tiny size of 400k, people can pass this around on tiny thumb drives or grab it from one of many mirrors I’m sure will be quickly setup.
I was given this Freegate setup as one that works in Iran as of *right now*, yay for good news, now lets get this out!
Best Proxy Practices (BPP!) and an update
I just want to make a quick post about best practices when running a proxy to help those on the ground in Iran get access to social networks, the outside world, and their families. It is ABSOLUTELY IMPERATIVE that this be a secure effort that is thought out and executed in the safest possible manner.
As a general rule, and I know I didn’t point this out in the original guides, all proxies should be setup with the following options in the Squid config file:
* Blocking of IRI government ipblocks [1]
* Allowing of Iran ipblocks [2]
* 10 random chosen inbound ports
* CONNECT support
* No X-Forwarded-For headers
* No client stats
* Logging to /dev/null
* Turn SSL off — it’s blocked from Iran anyway
If you’re running a proxy already, please change these settings. If you’re running a proxy on a default port (81/8080/8181/9090/3218) then change the port and shoot me off an e-mail at [email protected]
I will post a sample configuration file, as I know there have been a lot of concerns.
Also, I want to say sorry for not being able to respond to all the tweets and e-mails yet, although I’m going as fast as possible given all the other pressing demands! I’ve got thousands of emails to sort out, and the outpour of support and people helping out has been amazing. Together we’re capable of doing amazing things so thank you to everyone who is helping make a difference.
Thank you. Thank you. Thank you.
#allmylove2iran
[1] Based on ripe data found on RIPE
[2] Based on Country IP data found on CountryIPBlocks
Why?
It all started at 10:40 p.m. on an otherwise quiet Sunday night. After talking about the Iranian election on and off for several hours (if not days, if not weeks), I saw a tweet that, with a depth of irony that is hard to fully grasp, pointed out the ridiculousness of CNN. As an obviously rigged election in one of the world’s most important countries was being perpetrated, America’s oldest 24-hour news network was reporting primarily about how confusing the new fangled digital TVs were.
“Dear CNN: please report about Iran, not Twitter. #cnnfail #iranelection,” nympholepsy wrote. The dual hashtags (the pound symbol before a topic) opened the door for me, a 25-year old who had never even traveled to the Middle East, to become an activist in Iran.
It was probably #cnnfail that appealed to me at first. I had seen in 2000, the first presidential election for which I was truly cognizant, how legitimate claims of voter suppression were ignored by the mainstream media as conspiracy theory. As a native of Ohio, I saw similar legitimate claims from my home state brushed under the rug.
If the media failed, the populace was complicit. There were no protests that rocked the stability of our government. No mass movements against the subversion of our democracy.
#iranelection did not have the luxury of our delusion. In advance of the ridiculously lopsided results, opposition headquarters were sacked, dissidents arrested. The Khamenei-Ahmadinejad government wanted to minimize any leaders who could lead a revolution against it. Unfortunately for them, this revolution did not need figure heads to lead them. The Ayatollah had not read the lessons of Moldova.
Through the power of social networking, individual Iranians were able to mobilize each other. Twitter hashtags created an instantaneous collectivity that could never be created by any mainstream media. When the government realized what was happening, they tried to shut it down. Members of the tech community across the globe did what they could to support it. We started posting functioning relays through which Iranians could subvert government firewalls. The spontaneity of the tech movement was also one of its weaknesses.
With so many updates at #iranelection, what relays (or proxies) were working and what were not became almost indiscernible. I started monitoring all the proxies and created a webpage that warehoused which were functioning and which were not. I asked people I had never met and never spoken to before to post @ me on Twitter any they knew of. And they did.
But that information was public. Anyone on Twitter could find it. Anyone could access the page I created. When the Guardian Council began monitoring tweets, other members of the community reported it and reported it to me. We had to adapt instantly to maintain the ability of the Iranian opposition to mobilize. Quickly, I set up a secure page. Instead of sending relays @ me publicly, I now asked for them to be sent via Direct Message (DM) or e-mail. They came in a flood.
My website has been attacked by Iran. My servers are melting. But individuals in the opposition are still able to use technology to mobilize each other. And the tech community around the world is still able to support them.
Now less than twenty-four hours later I am receiving over 2,000 simultaneous connections per second from Iran. When I wake up, I will have received over 300 e-mails from volunteers trying to contribute and lighting the path forward for a movement — both new and old.
Americans ignored the subversion of their democracy. When a people, better than us, stand up to secure theirs, I could not, I would not, let them down. The revolution may not be televised, but it will be tweeted.
