nanog mailing list archives
Re: OSPF Vulnerability - Owning the Routing Table
From: Jimmy Hess <mysidia () gmail com>
Date: Sun, 4 Aug 2013 05:01:00 -0500
On 8/4/13, Saku Ytti <saku () ytti fi> wrote:
On (2013-08-03 18:38 -0500), Jimmy Hess wrote:That's not news to me, but fully expected. Do the vendors /really/ have a code fix to what would seem to be an inherent problem; if you failed to properly secure your OSPF implementation (via MD5 authentication)?It is news to me. It's design flaw in the protocol itself which has gone unnoticed for two decades and I would have naively fully expected that this flaw does not exist in standard.
I would say the risk score of the advisory is overstated. And if you think "ospf is secure" against LAN activity after any patch, that would be wishful thinking. Someone just rediscovered one of the countless innumerable holes in the back of the cardboard box and tried covering it with duck tape... What is the rationale for overlooking or ignoring the possibility that an attacker can introduce a device with /faithful/ correct implementation of the protocol with bad/malicious data intentionally advertised by the "Rogue speaker" ? This could be as simple as inserting a real router (which can be just a piece of software) on a broadcast LAN with a proper OSPF implementation but malicious configuration -- in that routes configured for advertisement are bogus ones, or a router ID is intentionally chosen to conflict with the router ID of another device. In addition, the rogue router, can be configured such that it forces an election and becomes the DR. Just a few examples -- -JH
Current thread:
- OSPF Vulnerability - Owning the Routing Table Glen Kent (Aug 02)
- Re: OSPF Vulnerability - Owning the Routing Table Adam Atkinson (Aug 02)
- Re: OSPF Vulnerability - Owning the Routing Table Aled Morris (Aug 02)
- Re: OSPF Vulnerability - Owning the Routing Table Jimmy Hess (Aug 03)
- Re: OSPF Vulnerability - Owning the Routing Table Saku Ytti (Aug 04)
- Re: OSPF Vulnerability - Owning the Routing Table Jimmy Hess (Aug 04)
- Re: OSPF Vulnerability - Owning the Routing Table Saku Ytti (Aug 04)
- Re: OSPF Vulnerability - Owning the Routing Table Jeff Tantsura (Aug 04)
- Re: OSPF Vulnerability - Owning the Routing Table Jimmy Hess (Aug 03)
- Message not available
- Re: Returned mail: see transcript for details Jimmy Hess (Aug 04)
- Re: Returned mail: see transcript for details Warren Bailey (Aug 04)
- Message not available
- Re: Returned mail: see transcript for details Larry Sheldon (Aug 04)
- Re: Returned mail: see transcript for details Valdis . Kletnieks (Aug 04)
- Re: Returned mail: see transcript for details Andrew Koch (Aug 05)
- Re: Returned mail: see transcript for details Valdis . Kletnieks (Aug 05)
- Re: Returned mail: see transcript for details Jay Ashworth (Aug 05)
- Re: Returned mail: see transcript for details ryanL (Aug 06)