What is going on with GMail in China, and how to get around it

What Is Going On?

The URL of GMail is https://mail.google.com/mail. The subdomain mail.google.com points to four separate IP addresses, listed below. According to our latest tests, only one of these is fully working in China. The other three are fully blocked, or blocked depending on where in the country you are or which ISP you use. Interestingly, only HTTPS connections to these IP addresses are blocked. For example, you can visit http://74.125.128.19. Doing so will take you to Google Search; GMail is available on HTTPS only.

IP 地址我们的测试评论
74.125.128.17https://74.125.128.17Not blocked
74.125.128.18https://74.125.128.18Blocked
74.125.128.19https://74.125.128.19Blocked or not depending on location
74.125.128.83https://74.125.128.83Blocked or not depending on location

The Partial Blocking Strategy

Partially blocking GMail may give users the impression that Google is to blame for offering an unstable service. If this strategy works, Chinese users may decide to switch to domestic providers, which operate under local censorship and surveillence conditions. Another explanation for this partial blocking may be that the authorities are nervous of fully blocking GMail. It's one thing to block a social network or a foreign news website (like http://www.nytimes.com which was recently blocked). Losing access to your email is considerably worse - if you switch to a new provider, you lose all your contacts and your past emails. The government may be scared of a backlash from the urban, educated and young people who tend to use GMail, not to mention the businesses that rely on it.

It's hardly a coincidence that this partial blocking is coming only days before the start of the 18th Party Congress. A similar tactic was used in March last year, at the time of the calls for a Jasmine Revolution (as can be seen in our data). These occasions may also provide a good excuse for dealing with what is really much more of a long-term problem - getting rid of Google. Google has a unique position on the Chinese Internet. While it's a minority player, it offers millions of Chinese netizens one of few ways of uncensored web seach (at https://www.google.com.hk) as well as encrypted email communication (through GMail).

What You Can Do

The obvious solution is to use a VPN or some other form of circumvention software. However, many people are reporting problems connecting to their VPNs these days. Luckily, there's another solution. As long as GMail isn't fully blocked, all you need to do is help your computer decide which IP address it should connect to. Regardless of whether you are on a Mac, Windows or Linux computer, this is done by editing the so-called "hosts file". You need to add an entry like this:

74.125.128.17 mail.google.com

HowToGeek has a nice tutorial on how to edit the hosts file.

If it still doesn't work, you can try substituting any of the other three IP addresses in the table above. Whether any one IP works likely depends on your location, your ISP and it may also change quickly over the coming days.

Tell Google To Fix It!

Google can at any time change these IP addresses. Staying ahead of the censors is a game of cat and mouse, so tell the mouse to run faster. Report the issue to Google here.

Comments

More Blog Posts

Subscribe to our mailing list
Show content from Blog | Google+ | Twitter | All. Subscribe to our blog using RSS.

Wed, Jul 15, 2015

LinkedIn: technological and financial giants; but morally pygmies

When LinkedIn decided to create a China-hosted version of its website in February, 2014, it made a decision to compromise the company's values in the pursuit of the dollar.

It's important to note that before LinkedIn launched LingYing (the local version of the site), LinkedIn was already active in China. By their own account, they had four million registered users (with little marketing effort), a Chinese-language interface and China-based clients who were buying recruitment ads on the platform (the major source of their revenue). The site had been blocked by the authorities for one 24-hour period but otherwise was always accessible.

So why was it necessary for LinkedIn to create a local entity in China? With a local entity the company would be able to issue official receipts in RMB, making it more convenient for local companies to buy advertising on the site. A local entity also makes it easier to secure marketing deals to promote LingYing in China.

But perhaps the biggest appeal in creating a local entity for LinkedIn is that it would be among the few foreign internet companies who could cosy up with Lu Wei and the Cyberspace Administration of China (CAC). Having that kind of a relationship with CAC surely helps the business and those who are associated with the company.

Sat, Apr 04, 2015

CNNIC censors news about their own statement

On April 1, 2015 Google announced that they will no longer recognize the CNNIC Root and EV (extensive validation) certificate authorities (CAs).

On April 2, 2015 Mozilla concluded that CNNIC’s behaviour in issuing an unconstrained intermediate certificate to another company was ‘egregious practice’ and that Mozilla products would no longer trust any certificate issued by CNNIC’s roots. Mozilla also published a more detailed report about their actions.

After unauthorized digital certificates for several Google domains were exposed by Google and Mozilla on March 23, 2015, CNNIC censored any mention of these posts. CNNIC is not only a certificate authority, they are also China’s online censorship apparatus. CNNIC was, is and will continue to practice internet censorship.

 

News about the April 1 and 2 annoucements has again been censored on social media and also on traditional media in China.

Below is a screenshot of Weibo posts about these announcements.

 

Tue, Mar 31, 2015

Chinese authorities compromise millions in cyberattacks

The Great Firewall has switched from being a passive, inbound filter to being an active and aggressive outbound one. This is a frightening development and the implications of this action extend beyond control of information on the internet. In one quick movement, the authorities have shifted from enforcing strict censorship in China to enforcing Chinese censorship on internet users worldwide.

Fri, Mar 27, 2015

CNNIC censored Google and Mozilla’s posts about CNNIC CA

This week, Google found unauthorized digital certificates for several Google domains, the root CA of which is CNNIC. Google and Mozilla both publicly disclosed this security incident and published blog posts(Google, Mozilla). However, Chinese translations of Google’s and Mozilla's blog posts were censored on the Chinese Internet.

  • William Long is a prominent Chinese blogger on IT and tech. He translated Google’s security post without adding any personal opinions. The Chinese blogpost ranked #1 when searching CNNIC MITM in Chinese on Google and Baidu. He tweeted that he received a phone call from propaganda department demanding the post to be removed immediately. The post http://www.williamlong.info/archives/4183.html was deleted. Google cache is still available.

Wed, Mar 25, 2015

Evidence shows CNNIC and CAC behind MITM attacks

Since 2013, we have repeatedly called on major software vendors to revoke CNNIC-issued certificates. Most notably, we raised this issue when we reported on the Cyberspace Administration of China’s (CAC) man-in-the-middle (MITM) attacks on Google, Microsoft’s Outlook, Apple, Yahoo and Github. Mainstream media have reported about these security vulnerabilities before and on March 24, Ars Technica reported on Google’s announcement that they have definitive evidence that CNNIC (China Internet Network Information Center) was behind a new MITM attack on Google.

From our October, 2014 blog post:

Subscribe to our blog using RSS.

Comments

i cannot sign in my gmail account from Thailand today...please advise what to do,thank u.

I really like your blog.. very nice colors & theme.
Did you create this website yourself or did you hire someone to do it for
you? Plz respond as I'm looking to construct
my own blog and would like to know where u got this from.
thank you

Feel free to surf to my blog post

Having read this I thought it was rather informative.

I appreciate you taking the time and effort to put this content together.

I once again find myself spending a significant amount of time both reading and
posting comments. But so what, it was still worth it!

Feel free to visit my page :: scada

Renju

yeah really good info from this site .. Loved a lot thank you
happy rose day sms
happy Chocolate day sms
Happy Valentines Day status
happy kiss day sms

this post is awesome, great msg for us, plz update ur blog for daily basis, i am regular visitor of this site, so keep posting for us,

click the below links to create backlink
best free backlink website
click here for msg movie

Add new comment

Filtered HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
By submitting this form, you accept the Mollom privacy policy.