From the article: The first repercussion was that YouTube disappeared from the Internet for almost an hour. I suspect the second repercussion was that Pakistan's Internet access crawled to a halt as all of a sudden they were handling IP requests for one of the busiest sites in the world.
Law and technology is rarely good. However, it seems that religion, law and routing tables is a particularly bad combination.
Nothing says "Epic Fail" quite like DDoSing one's whole nation into submission. At least Pakistan got what it wanted: none of its citizens are going to be seeing any blasphemous internet content . . .
i asked the same question of a network phd student. i got the simple text version, and i have no idea if it is valid or not, but the guy i know is very smart.
he says in all likelihood, a guy in charge setup a malicious route or "report" saying they could access youtube faster than they really could. which means, everyone trying to get to youtube, went through pakistan because it was the fastest way to youtube. so all youtube traffic went to pakistan, which was the ddos part.
why isn't this a huge problem? it kinda is. the system shouldn't be able to be taken down. But, it isn't a huge problem because nobody actually does this.
Apparently, isps pay a lot for their access, and this kinda thing is a good way of paying a lot more and loosing all your money and not having internet, which is the opposite of the business they are in.
i've never ever heard of something like this happening, or about these 'reports.' so... maybe nobody should listen to me. but my friend is usually right about this stuff.
Many routing protocols commonly used (BGP, OSPF, etc) don't have sufficient authentication built in. They instead rely on ISPs setting up proper filters and everyone playing nice.
BGP is a protocol used to exchange routing information. Pakistan's main provider is a company called PCCW, so they are Pakistan's "upstream" provider.
Each BGP peer announces which set of routes they are the final destination for, e.g. Level3 announces themselves as the final dest for my Class C, 206.192.23.0/24 .
In blocking YouTube, they either meant to be malicious, or, they meant to null-route YouTube inside Pakistan but instead fat-fingered it and issued commands that instead of null-routing, made them the final destination for those YouTube IPs.
Mistake that YouTube made was that this Class C was also where their DNS servers were, so they were unable to redirect people elsewhere once they were aware what was going on (since corrected).
Should Google look to litigate? After all, they could probably quantify how much they lost during the downtime, and I'd imagine it's a pretty big number.
What does Youtube actually make for Google? I thought I read somewhere that it's not that much, considering what was paid for it. For 2006 it looks like it was $12.9m. If that rate is the same for now (it's probably more), then 1 day of Youtube earns $35,000. I doubt they would go after a country for that amount, though they would probably be upset about the outage and use whatever political muscle they have to pressure Pakistan to rethink.
Law and technology is rarely good. However, it seems that religion, law and routing tables is a particularly bad combination.