Re: tubes clogged

[Jess Kitchen <jess.kitchen () adjacentnetworks net>]

On Tue, 30 Dec 2008, Fyodor wrote:

> Also, somehow the "abusing the Internet" thing  became synonymical to
> "abusing internet routing protocols" (otherwise why everyone is
> bringing up the BGP issue). Can't there be other things to be abused?
> like authentication certs, PKI infrastructures, authentication
> mechanisms to control domain naming, RIPE or other registrar databases
> ... ?

Indeed.

A recursive delete of at least child route: objects of a maintainer for 
which you had gained the correct plaintext would be fairly brutal if 
executed say 30 minutes before Level(3) and co updated their filters in 
Europe.

As I recall due to the hierarchy in RIPE and other derived IRR databases 
you cannot delete the maintainer itself, though it would I think be 
trivial to reverse the damage with cooperation from the IRR.

Also due to the lack of appropriate filtering outside of the European 
space you would only garner partial or localised outages.

Still though it's enough to piss on someones fire in the holiday season.

That said rich text search for CRYPT-PW may still be fun for 500 results 
or so.  Audit trail and limited footprint have stopped this from surfacing 
thus far I'd wager.
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave