nanog mailing list archives
Re: S-BGP (some operational content)
From: Dave McKay <dave () sneakerz org>
Date: Tue, 19 Sep 2000 15:03:53 -0500
Have you every noticed there aren't a whole lot of major IRC servers on cw.net? (I said not a whole lot, not none.) There is a reason for this, cw.net's filtering leaves something to be desired, you can advertise almost any AS to them and they will accept it. This could be used for DoS quiet easily and has been for sometime now. Blackhole attacks. But who wants to advertise an entire AS? If you peer with cw.net or most anyone for that matter you can advertise a nice little /25 on their network creating a blackhole for the amount of time you need it. This is one of the most common attacks there are. Major backbones will give major customers full routing and advertisements across their networks. (I've seen it happen, and still have it happen.)
On Sat, 16 Sep 2000, Timothy Brown wrote: : :a) Has there ever been a published man-in-the-middle attack of someone using : BGP to affect someone else's network? :b) Does anyone know of other groups that are focusing on developing new ways : of combating the vulnerabilities?
-- Dave McKay dave () sneakerz org Network Engineer - Google Inc.
Current thread:
- S-BGP (some operational content) Timothy Brown (Sep 16)
- Re: S-BGP (some operational content) batz (Sep 19)
- Re: S-BGP (some operational content) Dave McKay (Sep 19)
- Re: S-BGP (some operational content) Majdi S. Abbas (Sep 19)
- Re: S-BGP (some operational content) Dave McKay (Sep 19)
- <Possible follow-ups>
- Re: S-BGP (some operational content) Sean Donelan (Sep 16)
- Re: S-BGP (some operational content) batz (Sep 19)