nanog mailing list archives
Re: Using unallocated address space - for DoS?
From: "Steven M. Bellovin" <smb () research att com>
Date: Wed, 14 Feb 2001 09:21:32 -0500
In message <20010214215512.A19817 () mail q-linux com>, "Miguel A.L. Paraz" writes :
On Tue, Feb 13, 2001 at 09:47:15PM -0800, Sean Donelan wrote:Unfortunately this is not a unique occurance. Cable&Wireless, Sprint, AT&T and UUNET have all had portions of their service knocked off the Internet for various periods of time due to bogus announcements. Until other ISPs fix their policies, I can knock your network off most of the Internet, and there is nothing you can do to prevent it.I hope this is a remote possibility, but what are the chances of someone malicious breaking into the "right" router and blackholing the worst possible networks? If this is done, how long till it can be remedied?
You don't have to break into the "right" router; you just have to start announcing the networks in a way that your peers don't -- can't -- detect is improper. --Steve Bellovin, http://www.research.att.com/~smb
Current thread:
- Re: Using unallocated address space - for DoS? Steven M. Bellovin (Feb 24)
- Re: Using unallocated address space - for DoS? Miguel A.L. Paraz (Feb 24)
- <Possible follow-ups>
- Re: Using unallocated address space - for DoS? Sean Donelan (Feb 24)