nanog mailing list archives

RE: Winstar says there is no TCP/BGP vulnerability

From: "Christopher L. Morrow" <christopher.morrow () mci com>
Date: Wed, 21 Apr 2004 04:26:38 +0000 (GMT)



On Tue, 20 Apr 2004, Michel Py wrote:


Please forgive me if I'm naive and/or ask a stupid question, but is
there any reason (besides your platform not supporting it) _not_ to MD5
your BGP sessions? Geez, on my _home_ router all my v4 BGP sessions are
MD5ed (v6 not there yet).

Michel.


there is the issue of changing the keys during operations without
impacting the network, eh? Having to bounce every bgp session in your
network can be pretty darned painful... if you change the key(s) of
course. If you don't you might as well not have keys, since adding the
3 lines of C code required to Paul Watsons' program making it do
the hashing certainly won't be a big deal, eh?

Current thread:

Re: Winstar says there is no TCP/BGP vulnerability, (continued)
- - - Re: Winstar says there is no TCP/BGP vulnerability Daniel Senie (Apr 22)
    - Re: Winstar says there is no TCP/BGP vulnerability Christopher L. Morrow (Apr 22)
    - Re: Winstar says there is no TCP/BGP vulnerability Patrick W . Gilmore (Apr 22)
- RE: Winstar says there is no TCP/BGP vulnerability McBurnett, Jim (Apr 20)
- RE: Winstar says there is no TCP/BGP vulnerability Michel Py (Apr 20)
  - Re: Winstar says there is no TCP/BGP vulnerability Patrick W . Gilmore (Apr 20)
    - Re: Winstar says there is no TCP/BGP vulnerability Rob Thomas (Apr 20)
    - Re: Winstar says there is no TCP/BGP vulnerability Patrick W . Gilmore (Apr 20)
    - Re: Winstar says there is no TCP/BGP vulnerability E.B. Dreger (Apr 22)
    - Re: Winstar says there is no TCP/BGP vulnerability Alexei Roudnev (Apr 22)
  - RE: Winstar says there is no TCP/BGP vulnerability Christopher L. Morrow (Apr 20)
    - Re: Winstar says there is no TCP/BGP vulnerability Robert E. Seastrom (Apr 21)
    - Re: Winstar says there is no TCP/BGP vulnerability Christopher L. Morrow (Apr 21)
  - Re: Winstar says there is no TCP/BGP vulnerability Joe Rhett (Apr 20)
- RE: Winstar says there is no TCP/BGP vulnerability Michel Py (Apr 20)
- RE: Winstar says there is no TCP/BGP vulnerability Michel Py (Apr 20)
  - RE: Winstar says there is no TCP/BGP vulnerability Christopher L. Morrow (Apr 20)
  - Re: Winstar says there is no TCP/BGP vulnerability Patrick W . Gilmore (Apr 20)
- RE: Winstar says there is no TCP/BGP vulnerability Michel Py (Apr 20)
  - RE: Winstar says there is no TCP/BGP vulnerability Christopher L. Morrow (Apr 20)
  - RE: Winstar says there is no TCP/BGP vulnerability David Luyer (Apr 21)

(Thread continues...)