Totally unrelated to database security but I’ve read this interesting bit on /. while flying to the US. It got me thinking – how does China prevent people from going to restricted sites like Do Chinese ISPs use some form of IP filtering? Do they parse HTTP and prevent proxies? How about HTTPS? and SSH? I’m thinking that if SSH (or HTTPS for that matter) is allowed, one can easily do port forwarding to surf whatever site he wants as long as he has SSH access to a server outside China. It’s as east as setting local hosts file to point to and running ssh user@host.outside.china and then pointing your browser to It can’t be that simple, can it?