nanog mailing list archives
Re: TCP RST attack (the cause of all that MD5-o-rama)
From: Patrick W.Gilmore <patrick () ianai net>
Date: Tue, 20 Apr 2004 15:38:28 -0400
On Apr 20, 2004, at 3:24 PM, Stephen J. Wilcox wrote:
On Tue, 20 Apr 2004, James wrote:i can see this 'attack' operational against a multihop bgp session that'snot md5'd. now the question is... would this also affect single-hop bgp sessions? my understanding would be no, as single-hops require ttl set to 1.you can engineer packets to make sure they have the right ttl when they arrive,ie if your 10 hops away, set ttl to 10 and it will be 1 on arrival :)
Not if you use the TTL hack.Seems like that would be much more useful, and less CPU intensive, and less prone to user error, etc., etc. than MD5
-- TTFN, patrick
Current thread:
- TCP RST attack (the cause of all that MD5-o-rama) Mike Tancsa (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) James (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Owen DeLong (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Stephen J. Wilcox (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) James (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Patrick W . Gilmore (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Crist Clark (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Dan Hollis (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Rodney Joffe (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Iljitsch van Beijnum (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) James (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Crist Clark (Apr 20)