nanog mailing list archives
RE: key change for TCP-MD5
From: "Bora Akyol" <bora () broadcom com>
Date: Fri, 23 Jun 2006 13:35:20 -0700
-----Original Message----- From: Barry Greene (bgreene) [mailto:bgreene () cisco com] Sent: Friday, June 23, 2006 11:50 AM To: Bora Akyol; Ross Callon; nanog () merit edu Subject: RE: key change for TCP-MD5If DOS is such a large concern, IPSEC to an extent can be used to mitigate against it. And IKEv1/v2 with IPSEC is not the horribly inefficient mechanism it is made out to be. In practice, itis quiteeasy to use.IPSEC does nothing to protect a network device from a DOS attack. You know that.
Barry The validity of your statement depends tremendously on how IPSEC is implemented. Bora
Current thread:
- Re: key change for TCP-MD5, (continued)
- Re: key change for TCP-MD5 Richard A Steenbergen (Jun 21)
- backbone threats [Re: key change for TCP-MD5] Pekka Savola (Jun 26)
- RE: key change for TCP-MD5 Barry Greene (bgreene) (Jun 23)
- Re: key change for TCP-MD5 Todd Underwood (Jun 23)
- Re: key change for TCP-MD5 Richard A Steenbergen (Jun 23)
- Re: key change for TCP-MD5 Richard A Steenbergen (Jun 23)
- Re: key change for TCP-MD5 Todd Underwood (Jun 23)
- RE: key change for TCP-MD5 Owen DeLong (Jun 23)
- Re: key change for TCP-MD5 Iljitsch van Beijnum (Jun 23)
- Re: key change for TCP-MD5 Patrick W. Gilmore (Jun 23)
- Re: key change for TCP-MD5 Iljitsch van Beijnum (Jun 24)
- Re: key change for TCP-MD5 Valdis . Kletnieks (Jun 23)
- Re: key change for TCP-MD5 Roland Dobbins (Jun 23)
- Re: key change for TCP-MD5 Richard A Steenbergen (Jun 24)