Merit Network
 Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives
North American Network Operators Group
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: TCP RST attack (the cause of all that MD5-o-rama)

  • From: James
  • Date: Tue Apr 20 15:32:31 2004 
ah yes.. forgot about that :)

Thanks,
-J

On Tue, Apr 20, 2004 at 08:24:02PM +0100, Stephen J. Wilcox wrote:
> On Tue, 20 Apr 2004, James wrote:
> 
> > i can see this 'attack' operational against a multihop bgp session that's
> > not md5'd.
> > 
> > now the question is... would this also affect single-hop bgp sessions?
> > my understanding would be no, as single-hops require ttl set to 1.
> 
> you can engineer packets to make sure they have the right ttl when they arrive, 
> ie if your 10 hops away, set ttl to 10 and it will be 1 on arrival :)
> 
> Steve
> 
> > 
> > -J
> > 
> > 
> > On Tue, Apr 20, 2004 at 01:36:09PM -0400, Mike Tancsa wrote:
> > > 
> > > 
> > > 
> > > http://www.uniras.gov.uk/vuls/2004/236929/index.htm
> > > 
> > > --------------------------------------------------------------------
> > > Mike Tancsa,                          	          tel +1 519 651 3400
> > > Sentex Communications,     			  mike@sentex.net
> > > Providing Internet since 1994                    www.sentex.net
> > > Cambridge, Ontario Canada			  www.sentex.net/mike
> > 
> > 

-- 
James Jun                                            TowardEX Technologies, Inc.
Technical Lead                        Network Design, Consulting, IT Outsourcing
james@towardex.com                  Boston-based Colocation & Bandwidth Services
cell: 1(978)-394-2867           web: http://www.towardex.com , noc: www.twdx.net


Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.