nanog mailing list archives

Re: TCP/BGP vulnerability - easier than you think

From: Paul Jakma <paul () clubi ie>
Date: Wed, 21 Apr 2004 20:17:09 +0100 (IST)


On Wed, 21 Apr 2004, Iljitsch van Beijnum wrote:

I'm not recommending this for "small" peers as the crypto DoS risk
is worse than what happens when the attack is executed
successfully.


Why would MD5 be more of a crypto DoS risk with IPSec AH headers than
with bgp tcp-md5?

regards,
-- 
Paul Jakma      paul () clubi ie        paul () jakma org       Key ID: 64A2FF6A
        warning: do not ever send email to spam () dishone st
Fortune:
"Lead us in a few words of silent prayer."
-- Bill Peterson, former Houston Oiler football coach

Current thread:

Re: TCP/BGP vulnerability - easier than you think, (continued)
- - - Re: TCP/BGP vulnerability - easier than you think E.B. Dreger (Apr 22)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Daniel Roesen (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Daniel Roesen (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Daniel Roesen (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Daniel Roesen (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Paul Jakma (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Paul Jakma (Apr 21)
    - RE: TCP/BGP vulnerability - easier than you think David Luyer (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Crist Clark (Apr 22)
    - Re: TCP/BGP vulnerability - easier than you think John Kristoff (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think E.B. Dreger (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 22)
    - Re: TCP/BGP vulnerability - easier than you think Paul Jakma (Apr 23)
    - Re: TCP/BGP vulnerability - easier than you think E.B. Dreger (Apr 21)
    - Message not available
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 23)

(Thread continues...)