North American Network Operators Group|
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Re: Using unallocated address space - for DoS?
- From: Steven M. Bellovin
- Date: Wed Feb 14 09:29:35 2001
In message <20010214215512.A19817@mail.q-linux.com>, "Miguel A.L. Paraz" writes
>On Tue, Feb 13, 2001 at 09:47:15PM -0800, Sean Donelan wrote:
>> Unfortunately this is not a unique occurance. Cable&Wireless, Sprint,
>> AT&T and UUNET have all had portions of their service knocked off the
>> Internet for various periods of time due to bogus announcements. Until
>> other ISPs fix their policies, I can knock your network off most of the
>> Internet, and there is nothing you can do to prevent it.
>I hope this is a remote possibility, but what are the chances of someone
>malicious breaking into the "right" router and blackholing the worst possible
>networks? If this is done, how long till it can be remedied?
You don't have to break into the "right" router; you just have to start
announcing the networks in a way that your peers don't -- can't --
detect is improper.
--Steve Bellovin, http://www.research.att.com/~smb