How is it like to be a dev in Iran | Shahin Sorkh’s Blog

Open Link

Sat, 20 Jul 2019 21:11:35 +0430

It is going to cover cersorship and sanctions.

Censorship comes along with traces of governments ALWAYS!

In many contries allover the world, governments tend to block their citizens to access some certain domains/ips across the internet. Some say “It’s there to keep culture and moral healthy!”. They block pornographies and so. Even in US we can find certain domains which are blocked and cannot be accessed like those which contain CP or wild anti-humanism contents.

But in Iran (and most other countries) that’s not the case!

They block many things. We cannot visit medias like BBC, FoxNews, VOA, social-medias like Twitter, Facebook, messangers like Telegram, WeChat, Kik, SnapChat, services like YouTube, you may not believe, but even some subdomains of sourceforge!

Why? Because it is how the totalitarian government can live. Though they sell VPNs and proxies, they spy on their people and they eliminate unwanted elements of the society way easily. You may never find out what happened to your friend who you just visited few days ago!

The filtering/cyber censorship, is a really profitable industry! For both, the government AND non-governmental companies, as they get paid much more than a typical IT company here!

Sometimes you see they place heavy filtering on some services, e.g Telegram, to promote their own service! Sometimes they say fancy things about a service like “It is Israelian!”. I mean, so what? Haven’t you used Israelian weapons during war vs. Iraq (1980-1988)? It wasn’t a thing then, but now it is!

Sometimes they break SSL/TLS! I recently saw similar thing, Kazakhstan intercepting HTTPS Traffic[1], officially MITM their citizens!

Ok, what is affecting me, as a dev? You know, their systems are not perfect. Sometimes you come up with losing access to some must-have services, like GitHub! Why? Because the filtering program has droped the connections to GitHub because of accident/misconfigs! Sometimes you come up with totally broken SSL handshakes! Sometimes SSL handshakes can take long forever and break at the end! Sometimes CloudFlare resists to serve due to broken TCP packets!

It is pain in the ass when you are going to learn something new; no YouTube, no Reddit, no Medium, painfull surfing the web and so on.

I don’t talk about low quality internet access, like 200kB/s on home wifi!

If you follow world news, you have definitely heard about sanctions against Iran because of Iran’s nuclear programs. Though it is not just limited to physics and nuclear things, many companies have obeyed US sanctions against Iran.

No body really care about what would happen to the people. People worth nothing. That’s what they believe. Both Iran’s government AND international institutes, you say UN.

People are dying due to absence of medicines. People are starving. The economy system is falling apart and the politicians and their children are all abroad! None of them have any sense about what is going on the streets.

What happens to us, IT men? Sanctions!

What are we missing? FOSS! We are missing Free Open Source Softwares! You see?

Sanctions of Docker

Few months ago, Slack team, decided to join the sanctions. They simply deleted every single user who they found out is Iranian! With no real prior notices! Many people has lost their data on Slack and no one was going to do anything! They had some Iranian users who was living abroad for many years and hasn’t even visited Iran for a long time, but their account got deleted along with others! There were lots of peolpe complaining about it on Twitter. And even more. (I guess you got the idea[2].)

We cannot have MasterCard/VisaCard easily, thanks to economic banking sanctions. Thus, we cannot create AWS account, we cannot buy anything on amazon/ebay, we cannot have google store console, we cannot use (almost) any enterprise service.

Android dev[3] returns HTTP 403, Docker docs[4] returns HTTP 403, bintray[5] returns HTTP 403, Schema.org[6] returns HTTP 403 and so on. (There is a long list available[7])

You may have no sense of what I am talking about. Imagine you are supposed to build something with a new technology you know nothing about for your company. The first step is to find the technology documentations and try to figure out how to make it work.

After googling the name of it, you find many related links including links to the official documentations. You click on the link and suddenly an annoying ugly stupid page pops out which has a big text on it “You are sanctioned by the US and we cannot serve you”.

You get back to the google results and try to find something else. You see YouTube and medium links there but you know they are censored or unavailable for where you live and you cannot use them either.

A link to a SO question takes your attention and you click on it. The question is about something likely advanced in that technology and you have no idea what are they talking about! You have no choice to get to google results, page 2. On page 2 to page 100,000 there is no related links!

You go to your boss and tell him/her “This technology is not working here. Find something else or cancel the project”. Tomarrow you are looking for a new position somewhere else!

We have to bypass both, sanctions and cersorship.

HTTP proxies

Proxies are one of the (currently almost) working solutions.

It is not easy to find a proper proxy, it is not safe to use any proxy, and proxies don’t cover everything.

The domain list mentioned above is from a personal community funded proxy server which only accepts the domains listed in that file and denies any other domain. It is not an easy task for everyone to config their system to use that proxy for those certain domains. And they don’t cover all domains, the list is getting longer whenever someone finds some domains not covered and notices that to the server owner. Another limit is that, this proxy does NOT cover cernsored services.

DNS proxies

There is a DNS proxy[8] running by Sharif university of technology[9] which can bypass sanctions only. But since it is recommended by the government, it doesn’t sound like a safe option! In the front page, they have tutorials for users to set their DNS server on the OS to point to the proxy servers, means the proxy server is going to resolve all your DNS queries! Personally, I don’t like a third party (which is recommended by the government), to spy on all my DNS queries. I won’t change my DNS server from 1.1.1.1 to theirs!

Public VPNs

Not a safe, but a working solution.

Free and paid VPNs are mostly driven by the government. They do spy on every single request and investigate any suspicious thing they recognize. Obviously compromising safety and privacy.

Any other non-governmental VPN gets banned by the government and you need to look for new working VPN 2-3 times a week!

Private VPNs

Safe and working but an expensive solution.

There are some private VPNs out there you can use, or you can even run your own, they are completely safe and privacy friendly, but they’re also expensive! Not all people can buy/serve a private VPN.

TOR project

The most reliable but not the best solution.

TOR is the unbannable privacy promising solution out there, which bypass obviously both, sanctions AND censorship. But there is a big problem with it, not all servers like to get traffik from TOR. For instance, CloudFlare annoys when you are accessing its servers through TOR. Google makes you solve lots of reCaptchas. And some servers simply don’t serve anything due to odd TCP traffik of TOR.

Besides, Iran’s government has tried to limit connecting to TOR, though they can never block TOR completety (unless they block foreign servers entirely!), but they prevents you to connect to the TOR network directly. There comes obfs bridges! However you need to get to bridge.torproject.org somehow first.

How do I survive

I use a mix of all the above!

I have configed bind/named[10] to proxy few certain domain queries through shecan[11] and privoxy[12] to tunnel all supported domains by FOD[13] through FOD, and others through TOR.

I also use GitHub gists to save and spread TOR bridges among trusted people.

I just wanted to write about how difficult can it be to do all the things people do daily without even thinking about it! I bet you cannot imagine internet without YouTube. You never experienced losing your data all of a sudden with no prior notice! You cannot believe how is it painfull to survive heavy censorship and sanctions. You have no idea how is it like to wait for a VPN connection for more than 10 minutes, and then get rejected!

The painfull fact is “All this is happening just because we are living in Iran, where no one cares about the people. Not even the people!”

Note: Please fix my typos and grammar mistakes. Thanks for reading.

References

  1. ^ Kazakhstan intercepting HTTPS Traffic (www.reddit.com)
  2. ^ got the idea (twitter.com)
  3. ^ Android dev (developer.android.com)
  4. ^ Docker docs (doc.docker.com)
  5. ^ bintray (bintray.com)
  6. ^ Schema.org (schema.org)
  7. ^ There is a long list available (raw.githubusercontent.com)
  8. ^ DNS proxy (shecan.ir)
  9. ^ Sharif university of technology (www.en.sharif.edu)
  10. ^ bind/named (bind9.net)
  11. ^ shecan (shecan.ir)
  12. ^ privoxy (privoxy.org)
  13. ^ FOD (github.com)
  14. ^ comments powered by Disqus. (disqus.com)
keywords

No Items Found.

Add Comment
Type in a Nick Name here
 
Other Items in articles
Satellite imagery shows Northern California kelp forests have collapsed | Hacker News Satellite Imagery Shows Northern California Kelp Forests Have Collapsed | Smart News | Smithsonian Magazine I Just Hit $100k/yr On GitHub Sponsors! 🎉❤️ (How I Did It) | Caleb Porzio Daniel Sada Caraveo – How to sleep at night having a cloud service: common Architecture Do's – Software, Notes & Quantum Open Worlds — Real Life The Brains of the Voyager Spacecraft: Command, Data, and Attitude Control Computers - News Ex-CIA Officer Reveals How Eateries Are Key To Spycraft : The Salt : NPR Benefits of a daily diary and topic journals | Derek Sivers Australia's 4G network is faster than 5G: study Australia is the only country with a 4G network that is faster than the 5G network, as shown in a new report. How is it like to be a dev in Iran | Shahin Sorkh’s Blog Gamasutra - How id built Wolfenstein 3D using Commander Keen tech My beautiful Linux development environment - DEV Community 👩‍💻👨‍💻 Welcome to My New Office Prince Of Persia Code Review Part 1 Want to Make a Lie Seem True? Say It Again. And Again. And Again | WIRED How to Create Beautiful SVG Animations Easily - DEV Community 👩‍💻👨‍💻 How To Ask Questions The Smart Way Turning Frustration into a $35k/mo Product that Helps Teachers Excel - Indie Hackers People Like You More Than You Know - Scientific American Blog Network What is ActivityPub, and how will it change the internet? – Jeremy Dormitzer How a shampoo bottle is saving young lives - Health care unquantified - nomasters Pushing My Side Project Forward in the Face of Real-Life Obstacles - Indie Hackers John Carmack: My Steve Jobs Stories (facebook.com) [Journey] My Shopify Dropshipping Journey to $1000/day The murder that shook Iceland How Schopenhauer’s thought can illuminate a midlife crisis | Aeon Ideas The User Experience of Lootboxes – Prototypr 1. The Things We Carry – Kipple Field Notes Fallible Ideas – Taking Children Seriously Inside the fake Facebook profile industry | Radio-Canada.ca
Other Categories in Linx
ai apps articles cloud apps code coffee factorio games hardware health iphone lists minecraft music pi security stock images stock images tech vpn web dev web developer websites windows ai android api apps articles asp australia bio bitcoin blog books bootstrap career charts code editors codepens cooking css css animations daily linx data day trips design design elements drawing education emulators entrepreneur factorio fitness flowcharts fonts foobar2000 themes games hardware headphones health home automation html templates icons itunes javascript jquery js linux mac maps media mhx minecraft misc money motivation music network news nginx osrs pantheon parenting phone phones php pi products programming radio random reading reddit rs3 runescape seo shopping sqlite stock images storage tax tech technology text formatting tools trains video video editor videos wallpapers weather web web design web development web sites webdev windows wine wordpress workout youtube
Search Linx
Search Linx by entering your search text above.
Welcome

This is my test area for webdev. I keep a collection of code here, mostly for my reference. Also if i find a good link, i usually add it here and then forget about it. more...

Subscribe to weekly updates about things i have added to the site or thought interesting during the last week.

You could also follow me on twitter or not... does anyone even use twitter anymore?

If you found something useful or like my work, you can buy me a coffee here. Mmm Coffee. ☕

❤️👩‍💻🎮

🪦 2000 - 16 Oct 2022 - Boots
Random Quote
All of humanity's problems stem from man's inability to sit quietly in a room alone, wrote Blaise Pascal.
Unknown
Random CSS Property

@font-feature-values

The @font-feature-values CSS at-rule lets you use a common name in the font-variant-alternates property for features activated differently in OpenType. This can help simplify your CSS when using multiple fonts.
@stylistic css reference