nanog mailing list archives
Re: TCP/BGP vulnerability - easier than you think
From: Simon Leinen <simon () limmat switch ch>
Date: Wed, 28 Apr 2004 13:29:28 +0200
Priscilla,
Questions arose while trying to explain proposed TCP fixes to my students. Can y'all help me with these?
We were going over the "Transmission Control Protocol security considerations draft-ietf-tcpm-tcpsecure-00.txt" document here when the questions arose:
http://www.ietf.org/internet-drafts/draft-ietf-tcpm-tcpsecure-00.txt
Meta-response: look at the discussion over at the IETF, in the tcpm Working Group. There's a nice summary as well as some interesting discussion on possible issues with these fixes. Unfortunately, the tcpm mailing list archive seems to be accessible via FTP as large monthly mailbox files only, so I cannot point you to the relevant individual messages. The threads are called "new work item: TCP security issue" and "draft-ietf-tcpm-tcpsecure". (There's also a lot of process discussion in there, about the way this issue was initially handled by a closed group and then presented as a work item for the working group. This is interesting but only marginally helpful to understand the technical content of the changes.) Oh no, wait, there's another mail archive for tcpm (not listed on the "official" WG page (http://www.ietf.org/html.charters/tcpm-charter.html): The threads start in https://www1.ietf.org/mail-archive/working-groups/tcpm/current/msg00086.html https://www1.ietf.org/mail-archive/working-groups/tcpm/current/msg00095.html A nice summary of the changes by David Borman: https://www1.ietf.org/mail-archive/working-groups/tcpm/current/msg00130.html Hope this helps, -- Simon.
Current thread:
- Re: TCP/BGP vulnerability - easier than you think, (continued)
- Re: TCP/BGP vulnerability - easier than you think Paul Jakma (Apr 23)
- Re: TCP/BGP vulnerability - easier than you think E.B. Dreger (Apr 21)
- Message not available
- Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 23)
- Message not available
- Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 23)
- Re: TCP/BGP vulnerability - easier than you think Leo Bicknell (Apr 23)
- Re: TCP/BGP vulnerability - easier than you think Petri Helenius (Apr 23)
- Re: TCP/BGP vulnerability - easier than you think Todd Vierling (Apr 23)
- Re: TCP/BGP vulnerability - easier than you think Priscilla Oppenheimer (Apr 26)
- Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 27)
- Re: TCP/BGP vulnerability - easier than you think Priscilla Oppenheimer (Apr 27)
- Re: TCP/BGP vulnerability - easier than you think Simon Leinen (Apr 28)
- Re: TCP/BGP vulnerability - easier than you think Todd Vierling (Apr 21)
- Re: TCP/BGP vulnerability - easier than you think Pete Kruckenberg (Apr 21)
- Vendor TCP oops-es (was Re: TCP/BGP vulnerability) Todd Vierling (Apr 21)
- Re: Vendor TCP oops-es (was Re: TCP/BGP vulnerability) Iljitsch van Beijnum (Apr 21)
- Re: Massive stupidity (Was: Re: TCP vulnerability) Alexei Roudnev (Apr 22)