nanog mailing list archives

Re: Using unallocated address space - for DoS?

From: "Steven M. Bellovin" <smb () research att com>
Date: Wed, 14 Feb 2001 09:21:32 -0500


In message <20010214215512.A19817 () mail q-linux com>, "Miguel A.L. Paraz" writes
:


On Tue, Feb 13, 2001 at 09:47:15PM -0800, Sean Donelan wrote:

Unfortunately this is not a unique occurance.  Cable&Wireless, Sprint,
AT&T and UUNET have all had portions of their service knocked off the
Internet for various periods of time due to bogus announcements.  Until
other ISPs fix their policies, I can knock your network off most of the
Internet, and there is nothing you can do to prevent it.



I hope this is a remote possibility, but what are the chances of someone
malicious breaking into the "right" router and blackholing the worst possible
networks?  If this is done, how long till it can be remedied?


You don't have to break into the "right" router; you just have to start 
announcing the networks in a way that your peers don't -- can't -- 
detect is improper.

                --Steve Bellovin, http://www.research.att.com/~smb

Current thread:

Re: Using unallocated address space - for DoS? Steven M. Bellovin (Feb 24)
- Re: Using unallocated address space - for DoS? Miguel A.L. Paraz (Feb 24)
- <Possible follow-ups>
- Re: Using unallocated address space - for DoS? Sean Donelan (Feb 24)