nanog mailing list archives

Re: TCP RST attack (the cause of all that MD5-o-rama)

From: Iljitsch van Beijnum <iljitsch () muada com>
Date: Wed, 21 Apr 2004 00:37:31 +0200


On 20-apr-04, at 23:45, vijay gill wrote:

the correct workaround is the
http://www.ietf.org/internet-drafts/draft-ietf-tcpm-tcpsecure-00.txt
draft. MD5 is also the correct workaround. However, neither of the
two protect against what is the most vulnerable thing in the internet
infrastructure today - a large amount of PPS at the _router_ (with or
without md5 or tcpsecure) will blow it out of the water.

So all we have to do is apply strong crypto a bit smarter, such that weonly burn CPU cycles for good packets rather than for all packets.

Current thread:

Re: TCP RST attack (the cause of all that MD5-o-rama), (continued)
- - Re: TCP RST attack (the cause of all that MD5-o-rama) Owen DeLong (Apr 20)
  - Re: TCP RST attack (the cause of all that MD5-o-rama) Stephen J. Wilcox (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) James (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) Patrick W . Gilmore (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) Crist Clark (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) Dan Hollis (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) Rodney Joffe (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) Iljitsch van Beijnum (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) Crist Clark (Apr 20)
  - Re: TCP RST attack (the cause of all that MD5-o-rama) Simon Lockhart (Apr 21)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Dan Hollis (Apr 20)
  - Re: TCP RST attack (the cause of all that MD5-o-rama) Paul Vixie (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Patrick W . Gilmore (Apr 20)
  - Re: TCP RST attack (the cause of all that MD5-o-rama) Valdis . Kletnieks (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) Patrick W . Gilmore (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) E.B. Dreger (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) Peter Galbavy (Apr 20)
    - Re: TCP RST attack (the cause of all that MD5-o-rama) E.B. Dreger (Apr 21)

(Thread continues...)