nanog mailing list archives
Re: TCP RST attack (the cause of all that MD5-o-rama)
From: vijay gill <vgill () vijaygill com>
Date: Tue, 20 Apr 2004 21:37:52 +0000
On Tue, Apr 20, 2004 at 02:11:02PM -0700, Dan Hollis wrote:
On Tue, 20 Apr 2004, Crist Clark wrote:But it has limited effectiveness for multi-hop sessions. There is the appeal of a solution that does not depend of the physical layout of the BGP peers.Does MD5 open the door to cpu DOS attacks on routers though? Eg can someone craft a DOS attack to take out the CPU on a router by forcing it to MD5 authenticate torrents of junk packets, using less bandwidth than it would take to DOS the links themselves?
Yes it does. About 5 mbit of md5 should peg a juniper at 100% according to my friend alex. I have not verified this in the lab. I suggest you try it out. Also, this is why the GTSM (ttl hack) was written up ;) /vijay
Current thread:
- TCP RST attack (the cause of all that MD5-o-rama) Mike Tancsa (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) James (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Owen DeLong (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Stephen J. Wilcox (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) James (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Patrick W . Gilmore (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Crist Clark (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Dan Hollis (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Rodney Joffe (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) vijay gill (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Iljitsch van Beijnum (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) James (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Crist Clark (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Paul Vixie (Apr 20)
- Re: TCP RST attack (the cause of all that MD5-o-rama) Valdis . Kletnieks (Apr 20)