nanog mailing list archives
Re: Bellovin sez...
From: rja () corp home net (Ran Atkinson)
Date: Fri, 20 Feb 1998 13:40:16 -0800
Forgive my directness, but there was no _new_ data at all in what the referenced URL quoted Steve/Matt as saying. Much of this goes (in the public literature) at least back to Steve's paper in ACM CCR in the late 80s. Others of it has been documented elsewhere in the public literature since then. Also note that clever operators _are_ taking steps like: - pushing vendors towards SNMPv3 with real security - deploying OSPF MD5 authentication/RIP MD5 authentication - deploying the TCP MD5 option to protect BGP sessions - using route servers - deploying Kerberos/SSH/IPsec to secure login connections to servers & disallowing unprotected connections - deploying IETF OTP or Bellcore S/Key on routers - ... Ran rja () home net
Current thread:
- Bellovin sez... Michael Dillon (Feb 20)
- Re: Bellovin sez... Friskies (Feb 20)
- <Possible follow-ups>
- Re: Bellovin sez... Eric Sobocinski (Feb 20)
- Re: Bellovin sez... Abha Ahuja (Feb 20)
- Message not available
- Re: Bellovin sez... Ran Atkinson (Feb 20)
- Re: Bellovin sez... Sean M. Doran (Feb 20)
- Re: Bellovin sez... Sean Donelan (Feb 22)
- Re: Bellovin sez... William S. Duncanson (Feb 23)