[102755] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [admin] [summary] RE: YouTube IP Hijacking

daemon@ATHENA.MIT.EDU (Arnd Vehling)
Tue Feb 26 06:20:16 2008

Date: Tue, 26 Feb 2008 12:06:10 +0100
From: Arnd Vehling <av@nethead.de>
To: Alex Pilosov <alex@pilosoft.com>
CC: Danny McPherson <danny@tcb.net>, nanog@merit.edu
In-Reply-To: <Pine.LNX.4.44.0802251514540.16526-100000@bawx.pilosoft.com>
Errors-To: owner-nanog@merit.edu


Alex Pilosov wrote:
> Oh yeah, d'oh! Thanks for correction. But that is also an important point
> against PHAS and IRRPT filtering - they are powerless against truly
> malicious hijacker (one that would register route in IRR, add the
> right origin-as to AS-SET, and use correct origin).

With a decent LIR DB (like the RIPE DB) this is only possible if an
hijacker breaks the authentication of the according database objects
which is a pain in the a** _if_ the objects use a proper authentication
scheme like PGP.

-- Arnd


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[102755] in North American Network Operators' Group

Re: [admin] [summary] RE: YouTube IP Hijacking

daemon@ATHENA.MIT.EDU (Arnd Vehling)Tue Feb 26 06:20:16 2008

daemon@ATHENA.MIT.EDU (Arnd Vehling)
Tue Feb 26 06:20:16 2008