![nanog logo](/images/nanog-logo.png)
nanog mailing list archives
Re: TCP RST attack (the cause of all that MD5-o-rama)
From: vijay gill <vgill () vijaygill com>
Date: Tue, 20 Apr 2004 21:45:01 +0000
On Tue, Apr 20, 2004 at 02:42:07PM -0700, Rodney Joffe wrote:
vijay gill wrote:Yes it does. About 5 mbit of md5 should peg a juniper at 100% according to my friend alex. I have not verified this in the lab. I suggest you try it out. Also, this is why the GTSM (ttl hack) was written up ;)So then you're suggesting that the GTSM is the correct work-around?
No, the correct workaround is the http://www.ietf.org/internet-drafts/draft-ietf-tcpm-tcpsecure-00.txt draft. MD5 is also the correct workaround. However, neither of the two protect against what is the most vulnerable thing in the internet infrastructure today - a large amount of PPS at the _router_ (with or without md5 or tcpsecure) will blow it out of the water. A 10mbits/s of packets at the juniper without md5 will also destroy it. GTSM protects against that, the fact that it also works against this is just an unexpected side benefit. /vijay
Current thread:
- TCP RST attack (the cause of all that MD5-o-rama) Mike Tancsa (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) James (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Owen DeLong (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Stephen J. Wilcox (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) James (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Patrick W . Gilmore (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Crist Clark (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Dan Hollis (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Rodney Joffe (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Iljitsch van Beijnum (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) James (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Crist Clark (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Paul Vixie (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Valdis . Kletnieks (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Patrick W . Gilmore (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) E.B. Dreger (Apr 20)