nanog mailing list archives

Re: TCP/BGP vulnerability - easier than you think

From: Joe Abley <jabley () isc org>
Date: Wed, 21 Apr 2004 00:19:44 -0400



On 20 Apr 2004, at 23:40, Patrick W.Gilmore wrote:

And how do you track a thousand passwords? Okay, maybe that is nottoo hard.


Right :-)

But how do you guarantee a thousand peers will never screw up andforget, lose, fat-finger, etc. a single one of them? This one I wouldreally like to know, 'cause I sure as hell can't figure it out.

If someone forgets a password, you talk on the phone and agree a newone, and apply it to both sides. It's the same kind of procedure that Iguess we would follow if peers spontaneously forgot our IP addresses orAS numbers. Or you could just tell them what their password is, sinceyou have all the details in your peering database (see above).

(If the reaction to this is "hey, not everybody has a peering databaseyou know" then people should let me know; we can tidy up and publishthe postgres schema that we use if there is interest).

Joe

Current thread:

Re: TCP vulnerability, (continued)
- - - Re: TCP vulnerability Joe Abley (Apr 20)
    - Re: TCP vulnerability Stephen Stuart (Apr 20)
    - Re: TCP vulnerability Tom (UnitedLayer) (Apr 20)
- Massive stupidity (Was: Re: TCP vulnerability) Richard A Steenbergen (Apr 20)
  - Re: Massive stupidity (Was: Re: TCP vulnerability) Sean Donelan (Apr 20)
  - Re: Massive stupidity (Was: Re: TCP vulnerability) Mike Tancsa (Apr 20)
    - Re: Massive stupidity (Was: Re: TCP vulnerability) Patrick W . Gilmore (Apr 20)
    - TCP/BGP vulnerability - easier than you think David Luyer (Apr 20)
    - Re: TCP/BGP vulnerability - easier than you think Patrick W . Gilmore (Apr 20)
    - Re: TCP/BGP vulnerability - easier than you think Rob Thomas (Apr 20)
    - Re: TCP/BGP vulnerability - easier than you think Joe Abley (Apr 20)
    - RE: TCP/BGP vulnerability - easier than you think David Luyer (Apr 20)
    - Re: TCP/BGP vulnerability - easier than you think Adam Rothschild (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think E.B. Dreger (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think E.B. Dreger (Apr 22)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Daniel Roesen (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Daniel Roesen (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Daniel Roesen (Apr 21)

(Thread continues...)