nanog mailing list archives
Re: community real-time BGP hijack notification service
From: Nathan Ward <nanog () daork net>
Date: Sat, 13 Sep 2008 19:58:21 +1200
On 13/09/2008, at 7:21 PM, Randy Bush wrote:
i am occasionally asked if there have been real bgp attacks (not slips).the answer is, of course yes, but there are none which can be publiclydescribed. when bucks and embarrassment are involved, security throughobscurity seems to rule. but tony and alex did us an enormous favor by publicly conducting such an attack, see http://www.merit.edu/mail.archives/nanog/msg10357.htmlso, what i want to know is which, if any of the tools being discussed on this thread *actually* did or could detect and/or mitigate the tony/ alexdefcon attack. i appreciate the dozens of tools that detect and mitigate finger or brain fumbles. but those are not where the black hats are gonna go to make the big bucks.
Yep, that was my point before.My concern is that unless there is big bold text saying that it's not a solution, and then reference to longer optional text for those that care about why, people will get a false sense of security.
-- Nathan Ward
Current thread:
- Re: community real-time BGP hijack notification service, (continued)
- Re: community real-time BGP hijack notification service Nathan Ward (Sep 12)
- Re: community real-time BGP hijack notification service Christian Koch (Sep 12)
- Re: community real-time BGP hijack notification service Gadi Evron (Sep 12)
- Re: community real-time BGP hijack notification service Gadi Evron (Sep 12)
- Re: community real-time BGP hijack notification service Andy Davidson (Sep 12)
- Re: community real-time BGP hijack notification service Arnaud de Prelle (Sep 12)
- Re: community real-time BGP hijack notification service Matthew Moyle-Croft (Sep 12)
- Re: community real-time BGP hijack notification service Nathan Ward (Sep 12)
- Re: community real-time BGP hijack notification service Matthew Moyle-Croft (Sep 13)
- Re: community real-time BGP hijack notification service Randy Bush (Sep 13)
- Re: community real-time BGP hijack notification service Nathan Ward (Sep 13)
- Re: community real-time BGP hijack notification service Hank Nussbacher (Sep 14)
- Message not available
- Message not available
- RE: community real-time BGP hijack notification service Hank Nussbacher (Sep 14)
- Re: community real-time BGP hijack notification service Pekka Savola (Sep 14)
- Re: community real-time BGP hijack notification service Gadi Evron (Sep 12)
- RE: community real-time BGP hijack notification service Skywing (Sep 12)
- Re: community real-time BGP hijack notification service Andrew Fried (Sep 12)
- Re: community real-time BGP hijack notification service Gadi Evron (Sep 12)
- RE: community real-time BGP hijack notification service Skywing (Sep 12)