ooni-talk

ooni-talk@lists.torproject.org

436 discussions

OONI Community Meeting_29th October, 14:00 UTC
by Elizaveta Yachmeneva 28 Oct '24

28 Oct '24

Hi everyone! This is a reminder that OONI will host an October Commuinty Meeting next Tuesday. Please join us to share your feedback for the new OONI Run v2 release <https://ooni.org/post/2024-launch-ooni-run-v2/> or to discuss the latest censorship events in different countries. => Where? OONI Slack channel: https://slack.ooni.org/ => When? Tuesday, 29th October 2024 at 14:00 UTC (for 1 hour) As always, we will be using this pad for agenda, so please add your questions or updates here: https://pad.riseup.net/p/ooni-community-meeting-keep Looking forward to seeing you all on Tuesday in #ooni channel! Warmly, ~ OONI Team

1 1

[Launch] OONI Run v2 for community-driven censorship testing
by Maria Xynou 23 Oct '24

23 Oct '24

Hi friends, We are thrilled to announce the *launch of OONI Run v2*! We published a blog post which shares detailed information, as well as a *step-by-step guide* (with screenshots) for using OONI Run v2: https://ooni.org/post/2024-launch-ooni-run-v2/ Since 2017, OONI Run has supported community-driven efforts aimed at coordinating the testing of website blocks -- particularly during political events which triggered censorship events. With the launch of OONI Run v2, we address key community feedback (identified through an extensive usability study). OONI Run v2 (https://run.ooni.org/) is a major revamp, enabling you to *dynamically coordinate censorship testing with OONI Probe users* around the world. With OONI Run v2: • Create a (short!) link for the websites you want to measure for censorship • Share that link with OONI Probe users • *Update your OONI Run link anytime* if you want to add/change URLs (your community of testers will get updates automatically!) • *Automated testing* is supported (for you and your community) • *Find your OONI Run v2 measurements on OONI Explorer* ( https://explorer.ooni.org/) as open data in real-time (based on the OONI Run link ID) OONI Run v2 is currently only supported on Android. Please *update to the latest OONI Probe Android version (4.0.0) *to start using OONI Run v2: https://play.google.com/store/apps/details?id=org.openobservatory.ooniprobe With the launch of OONI Run v2, we also introduced UI improvements to OONI Probe Android which we hope you like. We thank the OONI community for their invaluable feedback, which informed the design of OONI Run v2! Now let's coordinate and detect all the blocks! ~ OONI team.

1 0

New animation: OONI Partner Gathering 2024
by Maria Xynou 21 Oct '24

21 Oct '24

Hi friends, Earlier this year, we hosted the *OONI Partner Gathering*: a 2-day event in Malaysia to strengthen collaborations on internet censorship research. Today, we are excited to share a new animation that provides a glimpse into the event! *Watch the animation here*: https://youtube.com/watch?v=Qq-mXSyAJfs We thank Robotina (https://www.robotina.it/) for creating this animation through their beautiful artwork! <3 Learn more: https://ooni.org/post/2024-ooni-partner-gathering-animation/ https://ooni.org/post/2024-ooni-partner-gathering-report/ Cheers, Maria.

1 0

OONI Monthly Report: September 2024
by Maria Xynou 17 Oct '24

17 Oct '24

Hello, This email shares OONI's monthly report for September 2024. *# OONI Monthly Report: September 2024* Throughout September 2024, the OONI team’s work can be tracked through the various OONI GitHub repositories: https://github.com/ooni Highlights are shared in this report below. *## New partnership with Digital Rights Nepal* In September 2024, we established a new partnership with Digital Rights Nepal (https://digitalrightsnepal.org/), a leading non-profit organization dedicated to safeguarding and advancing digital rights in Nepal. As part of our partnership, we will collaborate on studying internet censorship in Nepal. We published a page featuring Digital Rights Nepal as a new OONI partner and highlighting their important work: https://ooni.org/partners/digital-rights-nepal/ *## Research report on internet censorship in Kazakhstan* On 19th September 2024, in collaboration with our partners Internet Freedom Kazakhstan (IFKZ) and Eurasian Digital Foundation, we co-published a new research report documenting TLS MITM attacks and the blocking of news media, human rights, and circumvention tool sites in Kazakhstan. We published the research report in both: * English: https://ooni.org/post/2024-kazakhstan-report/ * Russian: https://ooni.org/ru/post/2024-kazakhstan-report/ Our partner, Internet Freedom Kazakhstan (IFKZ), published the following article about our joint research report: https://ifkz.org/ru/article/internet-censorship-in-kazakhstan Our report shares censorship findings based on the analysis of OONI data collected from Kazakhstan over the past year, as well as legal analysis and interviews with a few media representatives. Our analysis of OONI data from Kazakhstan reveals: * TLS Man-In-The-Middle (MITM) attacks * Blocking of at least 17 news media websites * Blocking of petition sites and of the Russian language edition of Amnesty International's website * Blocking of at least 73 circumvention tool websites In almost all cases, the blocks appear to be implemented by means of TLS interference, as OONI data shows that the TLS handshakes result in timeout errors after the Client Hello message. This is observed uniformly on all tested networks in Kazakhstan during the analysis period. Notably, we documented the use of the latest government-mandated root certificate authority (CA) – and its use to emit 6 distinct intermediate certificates – that were used to carry out TLS MITM attacks, targeting at least 14 domains on at least 19 networks in Kazakhstan. We found that these intermediate certificates were even being used to perform MITM attacks during periods of certificate invalidity. Overall, as the timing and types of blocked URLs are consistent across networks, ISPs in Kazakhstan likely implement blocks in a coordinated manner. Coordination among ISPs is further suggested by the fact that we found the same certificate used by 19 distinct ISPs to implement TLS MITM attacks. These TLS MITM attacks raise concerns because such practices weaken the online privacy and security of internet users in Kazakhstan. Our report received press coverage from the following outlets: * FactCheck Kazakhstan: https://factcheck.kz/novosti/internet-tsenzura-v-kazahstane-rezultaty-issle… * Ulysmedia Kazakhstan: https://ulysmedia.kz/rassledovaniya/38144-ramki-rukopozhatiia-i-lichnye-dan… * SecurityLab Russia: https://www.securitylab.ru/news/552299.php * Sledstvie Info: https://sledstvie.info/news/45234-informatcionnaja_izoljatsija_kazahstana_k… *## Report on the blocking of OONI Explorer in Russia* In September 2024, Russia started blocking access to OONI Explorer. We published a report, documenting the blocking of OONI Explorer in Russia based on OONI data: https://ooni.org/post/2024-russia-blocked-ooni-explorer/ On 11th September 2024, we received an email from Roskomnadzor, informing us of their decision to block access to OONI Explorer. On the same day, OONI data shows that ISPs in Russia started implementing the block. While Roskomnadzor mentioned their intention to restrict access to the Russian translation of our circumvention tool reachability measurements, in practice, the restriction is far-reaching. The block restricts access to all OONI data hosted on OONI Explorer. On some networks in Russia, we are able to automatically confirm the blocking of OONI Explorer based on fingerprints. For example, OONI data shows that DNS resolution returns an IP that hosts a block page. As part of this report, we made use of the data analysis capabilities of our upcoming OONI pipeline v5 to produce a chart with the breakdown of failure types and errors that enable the characterization of the block. On most networks in Russia, access to OONI Explorer appears to be blocked by means of TLS interference, as many measurements resulted in timeout errors and connection reset errors right after the Client Hello message during the TLS handshake. On 18th September 2024, our Russian partner, Roskomsvoboda ( https://roskomsvoboda.org/), shared news of the blocking of OONI Explorer with Russian communities via Telegram: https://t.me/ru_tech_talk/560 *## Report on the blocking of Twitter/X in Tanzania* On 30th August 2024, Tanzania blocked access to Twitter/X. In early September 2024, we published a short report on our Censorship Findings platform, documenting the block through OONI data. Our report on the (temporary) blocking of Twitter/X in Tanzania is available here: : https://explorer.ooni.org/findings/188763810301 It’s worth noting that our community members also independently reported on the blocking of Twitter/X in Tanzania through the use of OONI tools and data: https://x.com/MelamiVictoria/status/1829502734078185879 https://x.com/ZainaFoundation/status/1829536688890085645 *## Report on the blocking of Twitter/X in Brazil* On 31st August 2024, Brazil blocked access to Twitter/X. In early September 2024, we published a short report on our Censorship Findings platform, documenting the block through OONI data. Our report on the blocking of Twitter/X in Brazil is available here: https://explorer.ooni.org/findings/174962608001 It’s worth noting that our community members also independently reported on the blocking of Twitter/X in Brazil through the use of OONI tools and data: https://x.com/vesinfiltro/status/1830262921789669543 https://x.com/vinifortuna/status/1830349458384486599 https://x.com/OliverLinow/status/1829846237203333282 *## Presenting thematic censorship findings on OONI Explorer* In September 2024, we started developing the new thematic censorship findings pages for OONI Explorer based on the user research and mockups designed in previous months. These pages will focus on OONI measurements pertaining to News Media (https://github.com/ooni/explorer/issues/940), Social Media (https://github.com/ooni/explorer/issues/939) and Circumvention Tools (https://github.com/ooni/explorer/issues/941) and will offer users a way to explore OONI data focused on these specific themes. We also added support for theme tags that will enable the display of relevant reports on each thematic page of OONI Explorer ( https://github.com/ooni/explorer/pull/965). The launch date of these new pages will be determined in the coming weeks. *## Automating censorship detection and characterization based on OONI measurements* We released the OONI Pipeline v5.0.0-alpha4: https://github.com/ooni/data/pull/83 As part of this release, we: * Added a web interface for viewing observations; * Added an API for returning aggregates of observations; * Added a web view for plotting aggregates of observations; * Added support for performing observation generation using multiple cores (instead of multiple threads since it's CPU bound); * Separated the observation activities into distinct smaller activities allowing for more narrowly scoped scheduling and retry policies; * Changed the type of PrevRange so that it's possible to serialize it in JSON allowing to pass it as a parameter to activities; * Moved the update_assets into the observation activity; * Added support for passing config file via `CONFIG_FILE` environment variable; * Made improvements to the CLI commands; * Dropped several CLI arguments that should only be read from the config file; * Made other improvements related to typing. Following this release, we made some important improvements to the schema of the observation tables. Specifically, we: * Replaced observation_id with observation_idx ( https://github.com/ooni/data/issues/87); * Used the PARTITION KEY for deduplication instead of running deletes ( https://github.com/ooni/data/issues/88). These improvements are mainly targeted towards improving the performance of update operations and making them more robust to reprocessing since deduplication is handled natively using the MergeTree table engine deduplication. *## Data analysis for upcoming research report* As part of an upcoming research report on internet censorship in Russia, we analyzed OONI measurements collected from Russia over the past year. We completed this data analysis in September 2024, and further details about the analysis are available here: https://github.com/ooni/backend/issues/847 *## Activities supported by OTF FOSS ### OONI Explorer* Notably, we launched an improved navigation menu for OONI Explorer ( https://explorer.ooni.org/). This work is available here: https://github.com/ooni/explorer/pull/950 Based on community feedback shared through our user research in previous months, we improved the navigation menu of OONI Explorer to enhance the discoverability of resources and to enable us to add upcoming new pages in the next months. *### OONI Probe Mobile* We continued to make progress on our multi-platform project that aims to refactor the OONI Probe mobile app. After making good progress on our internal MVP, we turned our attention to leveraging our initial work to start developing the iOS version of Deutsche Welle’s News Media Scan application. This includes tasks like creating the onboarding flow ( https://github.com/ooni/probe-multiplatform/issues/104), building the results summary view (https://github.com/ooni/probe-multiplatform/issues/109), and adding the ability to filter results ( https://github.com/ooni/probe-multiplatform/issues/98). Additionally, we worked on the ability to update OONI Run v2 tests for our own internal MVP ( https://github.com/ooni/probe-multiplatform/issues/53). Here is a list of all issues completed in September 2024 for our multi-platform project: https://github.com/ooni/probe-multiplatform/issues?q=is%3Aissue+is%3Aclosed… *### OONI Run* As part of our final preparation for the launch of OONI Run v2, we took steps to ensure that by releasing OONI Run v2 we would not accidentally introduce any bugs that cause a drop in measurements. We improved our ability to filter measurements by different release channels, ensuring we can filter measurements by our open testing or “beta” channel for our Android application on the Google Play store. This way, we can more accurately compare different versions of our applications as we make changes and enhancements so we can increase our confidence in not introducing issues (https://github.com/ooni/probe/issues/2803). *### OONI Backend Maintenance & DevOps* We worked on switching api.ooni.org to be served from AWS ( https://github.com/ooni/devops/issues/94), focusing first on what was necessary for the OONI Run v2 project so that both the mobile application and the web-based dashboard use the production API. As part of that work, we had to move our test helpers back to Digital Ocean as AWS was proving too costly (https://github.com/ooni/devops/issues/91). We also worked on several other items related to this overall task. ( https://github.com/ooni/devops/issues/93, https://github.com/ooni/devops/issues/95). *## Hiring process for OONI Junior Backend Developer job opening* As part of the ongoing hiring process for a new OONI Junior Backend Developer (https://ooni.org/post/2024-job-opening-ooni-backend-developer/), we continued to review incoming applications and interview shortlisted candidates. *## Test list updates* Throughout September 2024, we did multiple minor updates to the test lists for Kenya, Algeria, Iran, Armenia, Georgia, and Uganda, as well as to the Global test list. All of these updates have been merged ( https://github.com/citizenlab/test-lists/pulls?q=is%3Apr+is%3Aclosed). We also reviewed and merged a more extensive update to the Cambodian test list submitted by the iMAP project: https://github.com/citizenlab/test-lists/pull/1699/files *## Collaboration with agency to boost OONI’s social media presence* In September 2024, we started collaborating with Latte ( https://www.lattecreative.com/en/), an agency in Rome which supports organizations (including many nonprofit organizations, such as Amnesty International and Greenpeace) on improving their communication, branding, advocacy, and fundraising efforts. We are collaborating with Latte on designing an end-of-year fundraising strategy with the goal of boosting OONI’s donations, as well as on improving OONI’s communication and social media presence. *## Fellowship at the Berkman Klein Center for Internet and Society* In September 2024, OONI’s Maria started a research fellowship at the Berkman Klein Center for Internet and Society at Harvard University. As part of her year-long fellowship, Maria will explore how internet censorship changed globally over the past eight years through OONI data. She will also carry out interviews to explore the role of advocacy and circumvention tool groups in responding to emergent censorship events. More information about the 2024-2025 Berkman Klein Center fellowship cohort is available here: https://cyber.harvard.edu/story/2024-07/incoming-2024-25-bkc-fellows *## Rapid response### Blocking of Telegram in El Salvador* On 15th September 2024, El Salvador blocked access to Telegram. On the same day, we rapidly responded by sharing relevant OONI data and findings on social media: https://x.com/OpenObservatory/status/1835360393906074078 The information we shared included a chart produced by OONI data analysis that we performed to examine the reachability of Telegram IPs in El Salvador by probe ASN and target. We found that access to Telegram was blocked on at least 5 networks in El Salvador (starting from around 4am UTC on 15th September 2024), with some ISPs blocking access to Telegram IPs, while others blocked access to Telegram by means of TLS interference. This blocking event resulted in a significant OONI measurement spike in El Salvador on 15th September 2024, as well as in ongoing measurement coverage thereafter (suggesting increased OONI Probe adoption and use of automated testing following the block). This is evident through aggregated OONI measurement coverage in El Salvador: https://explorer.ooni.org/chart/mat?probe_cc=SV&since=2024-08-12&until=2024… *## Community use of OONI tools and data### Sinar Project Blocked or Not tool* Notably, our long-term Malaysian partner, Sinar Project ( https://sinarproject.org/), launched a new “Blocked or Not” tool, which makes use of our miniooni research client and submits data to OONI. Their tool is available here: https://blockedornot.sinarproject.org/ Sinar Project’s Blocked or Not tool is a web service that enables users to easily and quickly check if a website is blocked or not in Malaysia. *### Sinar Project report on the blocking of an entertainment platform* On 20th September 2024, our partner, Sinar Project ( https://sinarproject.org/), published a report documenting the blocking of ArtStation.com, a prominent platform for showcasing games, film, media, and entertainment art. As part of their report, Sinar Project made use of OONI data and encouraged further OONI Probe testing in Malaysia. Read their report here: https://imap.sinarproject.org/resources/internet-censorship-update-blocking… *### Access Now’s press statement on the blocking of Twitter/X in Tanzania* In response to the blocking of Twitter/X in Tanzania, Access Now published a press release condemning the blocking of the platform. Their press release cites OONI data as technical evidence on the block. Read their press statement here: https://www.accessnow.org/press-release/civil-society-asks-who-blocked-x-ta… *### Cloudflare blog post on a global assessment of third-party connection tampering* In September 2024, Cloudflare published a blog post providing a global assessment of third-party connection tampering: https://blog.cloudflare.com/connection-tampering/ As part of this post, they provide case studies through which they compare Cloudflare TCP connection anomalies with OONI reports of connection tampering. Specifically, they compared anomalous Cloudflare TCP connection data with relevant OONI data from our reports on connection tampering cases in Tanzania and Ethiopia, and found that relevant Cloudflare data was consistent with OONI data. This is very interesting because by publishing data on TCP connection anomalies ( https://radar.cloudflare.com/security-and-attacks#tcp-resets-and-timeouts), Cloudflare enable researchers to have stronger signals of connection tampering when compared (and corroborated) with OONI data (and other relevant datasets). Learn more about the launch of Cloudflare Radar’s new dashboard on TCP resets and timeouts here: https://blog.cloudflare.com/tcp-resets-timeouts/ *## Community activities### Workshop for human rights defenders in Nepal* On 19th September 2024, OONI’s Elizaveta facilitated an online OONI workshop for human rights defenders in Nepal. This workshop was hosted in coordination with our new partner, Digital Rights Nepal ( https://ooni.org/partners/digital-rights-nepal/). *### Quarterly OONI Partner Meeting* On 20th September 2024, we hosted the quarterly OONI Partner Meeting via an online video platform. As part of this meeting, we presented and discussed the OONI training calendar for October 2024 and November 2024, which will involve a series of online OONI workshops that we will facilitate for our partners. These workshops include: * Introduction to internet censorship (9th October 2024) * How to use OONI Probe (16th October 2024) * OONI Run v2 demo (23rd October 2024) * Maintaining/updating the Citizen Lab test lists (6th November 2024) * OONI Explorer #1 (13th November 2024) * OONI Explorer #2 (20th November 2024) As part of these upcoming workshops, we aim to share relevant skills and knowledge to enable our partners to participate in OONI censorship measurement activities in their countries and regions. As an outcome, we hope that our partners will be equipped to share such knowledge further with their communities. As part of our Quarterly Partner Meeting, we also discussed updates to our partnership MoUs, plans for censorship monitoring during the upcoming 2025 elections around the world, as well as plans for other future partner events. *### Global Gathering 2024* Between 27th-29th September 2024, OONI’s Elizaveta and Jessie traveled to Portugal to attend the Global Gathering 2024. The detailed agenda of the event is available here: https://wiki.digitalrights.community/index.php?title=Global_Gathering_Agend… As part of their participation, Elizaveta and Jessie: Hosted an OONI booth, during which they provided a live demo of our upcoming OONI Run v2 tool and shared OONI swag (27th and 29th September 2024) Facilitated a discussion on rapid response (28th September 2024) *### OONI Community Meeting* On 24th September 2024, we hosted the monthly OONI Community Meeting on our Slack channel (https://slack.ooni.org/). As part of this meeting, we provided updates from the OONI team, and we discussed the recent blocking of OONI Explorer in Russia, as well as the (global) community’s need to measure the availability of more VPN services and protocols. *## Measurement coverage* In September 2024, 56,049,250 OONI Probe measurements were collected from 3,182 networks in 176 countries around the world. This information can also be found through our measurement stats on OONI Explorer (see chart on “monthly coverage worldwide”): https://explorer.ooni.org/ —------------------------------------------------------------------------------------------------- *As a non-profit, we rely on donations and grants to defend a free and open internet for all.You can support OONI’s work through a donation (https://ooni.org/donate <https://ooni.org/donate>) or by getting OONI swag (https://shop.ooni.org/ <https://shop.ooni.org/>). We thank our supporters Jigsaw, Pantheon, Luminate, Amazon, DigitalOcean, Greenhost, Netlify, Surfshark, and VPNCompare for supporting OONI’s work and mission.If you are a company interested in supporting OONI, please refer to our Supporters page for more information: https://ooni.org/about/supporters <https://ooni.org/about/supporters>We also thank our funders for supporting our work over the years: https://ooni.org/about/supporters#funders <https://ooni.org/about/supporters#funders> *

1 0

New OONI Community Interview: Chido Musodza, Localization Lab
by Elizaveta Yachmeneva 07 Oct '24

07 Oct '24

Hi everyone! We just published an interview with Chido Musodza, Program Associate, Community Engagement at our beloved Localization Lab <https://www.localizationlab.org/>: https://ooni.org/post/2024-interview-with-chido-musodza/ Many of our community members and partners are familiar with Localization Lab <https://ooni.org/partners/localization-lab/>’s work — thanks to their volunteers, OONI Probe is available in more than 20 languages, and OONI Explorer in more than 10. Chido is one of the people, grace to whom this became possible, and many of those who worked on our translations likely have already met her. In this interview, Chido shares why localization matters both for the products and the communities, how it empowers the development of minority languages and how it changes the digital space. Please watch the interview (https://youtu.be/nyXBfI6VZyc), share your thoughts in our Slack <https://slack.ooni.org/> and join Localization Lab’s community <https://docs.google.com/forms/d/e/1FAIpQLSfgXL7UbC6eVk7YMg_gidFnBre3a6liYSn…> to support new translations! Warmly, Elizaveta

1 0

OONI at Global Gathering (Estoril)!
by Elizaveta Yachmeneva 26 Sep '24

26 Sep '24

Hi all! I (Elizaveta, Community Coordinator) and Jessie (OONI’s amazing Project Manager) are coming to the Global Gathering <https://wiki.digitalrights.community/index.php?title=Global_Gathering_2024> this year, and we will be hosting a booth, a circle and attending a couple of circles organised by our amazing partners <3 At the booth we will be hosting a demo of the upcoming OONI Run release, so please join us for this unique chance to get a peak and share feedback for the new features that we are going to share with everyone in the nearest weeks. We will also have stickers and some other presents at the booth, so please make sure to come and say hi! Here is the list of the activities we will definitely take part in at the GG: * OONI's booth on 27th September from 13pm to 15pm. We will be demoing the new version of OONI Run at 13:40. * Circle 10, 'Current blocking trends, how states in different countries do it' on 27th September organised by Roskomsvoboda <https://roskomsvoboda.org/>. We will definitely stop by to hear insights on the current state of internet censorship in different countries. The pad will be updated with the agenda topics very soon: https://pad.riseup.net/p/GG-2024-Day1-Circle10c * Circle 10, 'The How and Why of Rapid Response' on 28th September from 13:30 to 14:30 that we will co-host together with IODA <https://ioda.inetintel.cc.gatech.edu/>. More detailed agenda for our circle on rapid response: https://pad.riseup.net/p/GG-2024-Day2-Circle10a * OONI's booth on 29th September from 15.30pm to 17.30pm. We will start the demo of the updated OONI Run at 16:00. If you are hosting any other circles and/or community events and you want OONI to join, please drop me a message :) Looking forward to seeing some of you in the upcoming days! Warmly, Elizaveta

1 0

Report on Russia blocking OONI Explorer
by Maria Xynou 25 Sep '24

25 Sep '24

Hello, Russia recently blocked access to one of our platforms, OONI Explorer: a large open dataset on internet censorship worldwide ( https://explorer.ooni.org/). Today we published a *report, documenting the blocking of OONI Explorer in Russia* based on OONI data: https://ooni.org/post/2024-russia-blocked-ooni-explorer/ On 11th September 2024, we received an email from Roskomnadzor, informing us of their decision to block access to OONI Explorer. On the same day, OONI data shows that ISPs in Russia started implementing the block. While Roskomnadzor mentioned their intention to restrict access to the Russian translation of our circumvention tool reachability measurements, in practice, the restriction is far-reaching. The block restricts access to all OONI data hosted on OONI Explorer. On some networks in Russia, we are able to automatically confirm the blocking of OONI Explorer based on fingerprints. For example, OONI data shows that DNS resolution returns an IP that hosts a block page. On most networks in Russia, access to OONI Explorer appears to be blocked by means of TLS interference. Many measurements resulted in timeout errors and connection reset errors right after the Client Hello message during the TLS handshake. While ISPs in Russia blocked access to OONI Explorer, they did not block access to our main website (ooni.org), nor to our censorship measurement app (OONI Probe) – as suggested by the fact that the overall OONI measurement coverage from Russia seems quite stable. It is still possible for people in Russia to download OONI data from the OONI API (https://api.ooni.io/) or to fetch OONI data from our S3 bucket ( https://docs.ooni.org/data/). We thank OONI Probe users in Russia for contributing measurements! ~ OONI team.

1 0

OONI Community Meeting: Tomorrow, 14:00 (UTC)
by Elizaveta Yachmeneva 23 Sep '24

23 Sep '24

Hi everyone! This is a reminder that the monthly OONI Community Meeting takes place tomorrow. Please add any questions about internet censorship or OONI tools to this pad: https://pad.riseup.net/p/ooni-community-meeting-keep You are also very welcome to come and share news and updates on your projects from the past months. Looking forward to seeing you all tomorrow in #ooni channel! => Where? OONI Slack channel: https://slack.ooni.org/ => When? Tuesday, 24th September 2024 at 14:00 UTC (for 1 hour) Warmly, ~ Elizaveta

1 0

New Report on TLS MITM attacks and blocks in Kazakhstan
by Maria Xynou 19 Sep '24

19 Sep '24

Hello, Today, in collaboration with Eurasian Digital Foundation and Internet Freedom Kazakhstan (IFKZ), OONI co-published a *new research report documenting TLS MITM attacks and the blocking of news media, human rights, and circumvention tool sites in Kazakhstan*. Read our report in: * *English*: https://ooni.org/post/2024-kazakhstan-report/ * *Russian*: https://ooni.org/ru/post/2024-kazakhstan-report/ Our report shares censorship findings based on the analysis of OONI data collected from Kazakhstan over the past year, as well as legal analysis and interviews with a few media representatives. Our analysis of OONI data from Kazakhstan reveals: * *TLS Man-In-The-Middle (MITM) attacks* * *Blocking of at least 17 news media websites* * *Blocking of petition sites and of the Russian language edition of Amnesty International's website* * *Blocking of at least 73 circumvention tool websites* The blocked news media websites include: * Many Russian news media websites (such as the Russian TV Channel Tsargrad, Sputnik and Pogrom, the 360 Russian satellite TV channel, and the Ferghana Information Agency); * A few Kyrgyz news media websites (Kloop and Centralasia.media); * One international news website (Vice News). OONI data shows the targeted blocking of amnesty.org.ru, www.change.org, www.ipetitions.com, and egov.press. Meanwhile, Amnesty International’s English language website was accessible in Kazakhstan, as were many other international human rights websites (such as Human Rights Watch). OONI data also shows the blocking of numerous censorship circumvention tool websites, including those of NordVPN, ExpressVPN, ProtonVPN, OpenVPN, TunnelBear, and Surfshark VPN. However, OONI data suggests that both Tor and Psiphon VPN were reachable in Kazakhstan during the analysis period. In almost all cases, the blocks appear to be implemented by means of *TLS interference*, as OONI data shows that the TLS handshakes result in timeout errors after the Client Hello message. This is observed uniformly on all tested networks in Kazakhstan during the analysis period. Notably, we documented the *use of the latest government-mandated root certificate authority (CA) – and its use to emit 6 distinct intermediate certificates – that were used to carry out TLS MITM attacks, targeting at least 14 domains on at least 19 networks in Kazakhstan*. We found that these intermediate certificates were even being used to perform MITM attacks during periods of certificate invalidity. Overall, as the timing and types of blocked URLs are consistent across networks, ISPs in Kazakhstan likely implement blocks in a coordinated manner. Coordination among ISPs is further suggested by the fact that we found the same certificate used by 19 distinct ISPs to implement TLS MITM attacks. These TLS MITM attacks raise concerns because such practices weaken the online privacy and security of internet users in Kazakhstan. Learn more through our report: https://ooni.org/post/2024-kazakhstan-report/ We also summarize some of the findings in these social media threads: https://x.com/OpenObservatory/status/1836831876524527853, https://mastodon.social/@ooni/113166013137593960 We thank OONI Probe users in Kazakhstan for contributing measurements, supporting this study. ~ OONI team.

1 0

OONI Monthly Report: August 2024
by Maria Xynou 06 Sep '24

06 Sep '24

Hello, This email shares OONI's monthly report for August 2024. *# OONI Monthly Report: August 2024* Throughout August 2024, the OONI team’s work can be tracked through the various OONI GitHub repositories: https://github.com/ooni Highlights are shared in this report below. *## Published the OONI Outreach Kit in Arabic and Farsi* In August 2024, we published the OONI Outreach Kit in: * Arabic: https://ooni.org/ar/support/ooni-outreach-kit/ * Farsi: https://ooni.org/fa/support/ooni-outreach-kit/ Huge thanks to the translators for making the OONI Outreach Kit materials available in Arabic and Farsi, supporting OONI community engagement efforts in the Middle East! The OONI Outreach Kit is also available in English, Russian, French, Spanish, and Swahili ( https://ooni.org/support/ooni-outreach-kit/). *## Published report on the blocking of Instagram in Turkiye* On 2nd August 2024, we published a short report on the blocking of Instagram in Turkiye: https://explorer.ooni.org/findings/330022197701 This report shares relevant OONI data and an interpretation of the measurement findings. *## Research report on internet censorship in Kazakhstan* In preparation for the upcoming publication of a research report on internet censorship in Kazakhstan, we continued to review the findings and edit the text accordingly in collaboration with our partner, Internet Freedom Kazakhstan (https://ooni.org/partners/ifkz). Notably, we translated the whole research report in Russian so that we can publish it in both English and Russian, reaching more audiences. We also coordinated with designers to plan the upcoming design of the report in PDFs. We aim to publish this research report in September 2024. *## OONI Probe Mobile* In August 2024, we released OONI Probe 3.8.9 for both Android ( https://github.com/ooni/probe/issues/2791) and iOS ( https://github.com/ooni/probe/issues/2792). We also continued making progress on our multi-platform project. Specifically, we identified the initial suite of features we will focus on for our first internal build of the new application. We will use this application for testing, further development and to ensure feature parity with the old application. We worked on several different features, and some highlights include: * Implementing the dashboard: https://github.com/ooni/probe-multiplatform/issues/55 * Running tests: https://github.com/ooni/probe-multiplatform/issues/59 * Results lists: https://github.com/ooni/probe-multiplatform/issues/42 * Implementing application settings: https://github.com/ooni/probe-multiplatform/issues/50 The full list of completed issues can be found here: https://github.com/ooni/probe-multiplatform/issues?q=is%3Aissue+is%3Aclosed… *## OONI Probe CLI* In August 2024, we released OONI Probe CLI 3.23.0. The full changelog is available here: https://github.com/ooni/probe-cli/releases/tag/v3.23.0 *## OONI Probe Desktop* In August 2024, we released OONI Probe Desktop 3.9.7 ( https://github.com/ooni/probe-desktop/releases/tag/v3.9.7) and 3.9.8 ( https://github.com/ooni/probe-desktop/releases/tag/v3.9.8). The latest release integrates the OONI Probe CLI 3.23.0 into OONI Probe Desktop: https://github.com/ooni/probe/issues/2793 *## OONI Run* As part of our work on creating the next generation version of OONI Run (“OONI Run v2”), we continued our efforts with QA testing for the Android version of the new OONI Probe app that will include both an improved UI and support for new OONI Run links. We addressed several bugs and UI improvements: * We improved the layout of the test overview screen: https://github.com/ooni/run/issues/186 * We fixed some issues with the updated tag not appearing properly: https://github.com/ooni/run/issues/188 In preparation for the upcoming launch of OONI Run v2, we: * Continued to test OONI Run v2 extensively; * Finalized the copy; * Wrote a blog post for the announcement of the OONI Run v2 launch (which includes a detailed user guide); * Updated the OONI Data Policy to account for changes introduced with OONI Run v2 (https://github.com/ooni/ooni.org/pull/1601); * Updated all documentation across our website to ensure the correct OONI Run domain (https://github.com/ooni/ooni.org/pull/1602). *## OONI Explorer* In August 2024, we worked on revising the navigation bar for OONI Explorer: https://github.com/ooni/explorer/issues/938 We wanted to do this because the current navigation bar is fairly crowded and we will eventually need the ability to add more items to it in the near future. We will launch this in the coming months. *## OONI Backend* We finished setting up integration tests for a framework to allow us to A/B test our improved APIs more effectively: https://github.com/ooni/backend/issues/856 We updated the OONI Explorer Findings platform to use postgresql to store findings, since our Clickhouse database is not backed up. This helps improve the stability of this feature: https://github.com/ooni/backend/issues/855 We also finished the core refactor of our measurements service, which implements improved API principles ensuring ease-of-use and stability of the API: https://github.com/ooni/backend/pull/851 *## Automating censorship detection and characterization based on OONI measurements* In August 2024, several important improvements were landed inside of the main branch of the OONI data pipeline v5. Specifically, we worked towards releasing the OONI Pipeline v5.0.0-alpha.3 ( https://github.com/ooni/data/pull/81) which includes the following improvements: * Switched to threaded workers via co-routines; * Removed unused commands; * Removed unused and dead code; * Added support for update assets from s3 instead of archive.org; * Removed file based locking for asset updates; * Added alter queries for buffer tables in DB migration helper; * Fixed bug in database migration generation; * Addressed issues related to setting workflow and schedule IDs to facilitate re-running backfills; * Properly set the transaction_id for more modern tests that support it (eg. web_connectivity 0.5). We then worked towards making a release candidate for OONI Pipeline v5. As part of this, in order to empower our team to view the new observations, we developed a simple web interface for viewing observations and plotting them in charts: https://github.com/ooni/data/pull/83 We also started experimenting with a Bayesian network based approach to analysis which is implemented as several notebooks inside of the following pull request: https://github.com/ooni/data/pull/85 *## Hiring process for OONI Junior Backend Developer job opening* As part of the hiring process for a new OONI Junior Backend Developer ( https://ooni.org/post/2024-job-opening-ooni-backend-developer/), we continued to review incoming applications, track applications, follow-up with applicants, and interview shortlisted candidates. *## Test list updates* We reviewed and merged updates to the test list for Myanmar: https://github.com/citizenlab/test-lists/pull/1754 *## Updated Nepal report following the unblocking of TikTok* We updated our previous report on the blocking of TikTok in Nepal to include OONI data and information in relation to the unblocking of the service: https://explorer.ooni.org/findings/112092297601 *## Rapid response### Blocking of Signal in Russia, Venezuela, and Pakistan* In response to the blocking of the Signal Private Messenger app in Russia, Venezuela, and Pakistan (which was blocked in all 3 countries in August 2024), we shared relevant OONI data and information on social media channels: https://x.com/OpenObservatory/status/1828028323269611553 *### Blocking of Twitter/X in Tanzania* In response to the blocking of Twitter/X in Tanzania, we shared relevant OONI data and information on social media channels: https://x.com/OpenObservatory/status/1829600571327914094 *## Citations### USENIX paper on measuring the Great Firewall’s web censorship at scale* In August 2024, researchers from the University of British Columbia, University of Chicago, University of Toronto, Carnegie Mellon University, SRI International and Stony Brook University wrote a paper (“GFWeb: Measuring the Great Firewall’s Web Censorship at Scale”) which was published by USENIX. Their paper cites OONI quite extensively, and it’s available here: https://www.usenix.org/system/files/usenixsecurity24-hoang.pdf *### Global Voices article on Instagram block in Turkiye * Global Voices published an article on the blocking of Instagram in Turkiye, citing OONI data: https://globalvoices.org/2024/08/02/turkey-blocks-access-to-instagram/ *### Report on Internet shutdowns in Tanzania* Our partner, Zaina Foundation, published a report on internet shutdowns in Tanzania, which is available here: https://zainafoundationtz.org/wp-content/uploads/2024/09/TZReport-on-Intern… As part of their report, they cite OONI data (and include an OONI MAT chart) on the blocking of Twitter/X in Tanzania. *### RSF Resource for Journalists on OONI Probe and OONI Explorer* Reporters Without Borders (RSF) published an article about OONI Probe and OONI Explorer as part of their resources for journalists: https://safety.rsf.org/ooni-a-tool-to-check-whether-an-online-service-is-be… *## Measurement coverage* In August 2024, 60,819,022 OONI Probe measurements were collected from 3,238 networks in 170 countries around the world. This information can also be found through our measurement stats on OONI Explorer (see chart on “monthly coverage worldwide”): https://explorer.ooni.org/ —------------------------------------------------------------------------------------------------- *As a non-profit, we rely on donations and grants to defend a free and open internet for all.You can support OONI’s work through a donation (https://ooni.org/donate <https://ooni.org/donate>) or by getting OONI swag (https://shop.ooni.org/ <https://shop.ooni.org/>). We thank our supporters Jigsaw, Pantheon, Luminate, Amazon, DigitalOcean, Greenhost, Netlify, Surfshark, and VPNCompare for supporting OONI’s work and mission.If you are a company interested in supporting OONI, please refer to our Supporters page for more information: https://ooni.org/about/supporters <https://ooni.org/about/supporters>We also thank our funders for supporting our work over the years: https://ooni.org/about/supporters#funders <https://ooni.org/about/supporters#funders> *

1 0

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

ooni-talk