nanog mailing list archives

Re: key change for TCP-MD5

From: Valdis.Kletnieks () vt edu
Date: Fri, 23 Jun 2006 16:45:33 -0400

On Fri, 23 Jun 2006 13:35:20 PDT, Bora Akyol said:

The validity of your statement depends tremendously on how IPSEC is
implemented.


If 113 million packets all show up at once, you're going to get DoS'ed,
whether or not you have IPSEC enabled.

Attachment: _bin
Description:

Current thread:

backbone threats [Re: key change for TCP-MD5], (continued)
- - - backbone threats [Re: key change for TCP-MD5] Pekka Savola (Jun 26)
- RE: key change for TCP-MD5 Barry Greene (bgreene) (Jun 23)
  - Re: key change for TCP-MD5 Todd Underwood (Jun 23)
    - Re: key change for TCP-MD5 Richard A Steenbergen (Jun 23)
    - Re: key change for TCP-MD5 Richard A Steenbergen (Jun 23)
  - RE: key change for TCP-MD5 Owen DeLong (Jun 23)
    - Re: key change for TCP-MD5 Iljitsch van Beijnum (Jun 23)
    - Re: key change for TCP-MD5 Patrick W. Gilmore (Jun 23)
    - Re: key change for TCP-MD5 Iljitsch van Beijnum (Jun 24)
- RE: key change for TCP-MD5 Bora Akyol (Jun 23)
  - Re: key change for TCP-MD5 Valdis . Kletnieks (Jun 23)
- RE: key change for TCP-MD5 Bora Akyol (Jun 23)
  - Re: key change for TCP-MD5 Roland Dobbins (Jun 23)
- RE: key change for TCP-MD5 Barry Greene (bgreene) (Jun 24)
- RE: key change for TCP-MD5 Barry Greene (bgreene) (Jun 24)
- RE: key change for TCP-MD5 Barry Greene (bgreene) (Jun 24)
  - Re: key change for TCP-MD5 Richard A Steenbergen (Jun 24)
- RE: key change for TCP-MD5 Barry Greene (bgreene) (Jun 24)