[106605] in North American Network Operators' Group
RE: Is it time to abandon bogon prefix filters?
daemon@ATHENA.MIT.EDU (Darden, Patrick S.)
Wed Aug 6 13:32:54 2008
Date: Wed, 6 Aug 2008 13:32:42 -0400
In-Reply-To: <982D8D05B6407A49AD506E6C3AC8E7D66150B1D4DC@caralain.haven.nynaeve.net>
From: "Darden, Patrick S." <darden@armc.org>
To: "Skywing" <Skywing@valhallalegends.com>,
"Patrick W. Gilmore" <patrick@ianai.net>, "NANOG list" <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
1. DOS of Cymru (as noted below).
2. False Positives. Your network is suddenly stranded. Maybe on =
purpose. (DOS of a network, e.g. China or Youtube).
3. False Negatives. A bogus network is suddenly centrally =
rubber-stamped. Could happen. We've seen a lot of shenanigans with the =
domain registrars--similar issues could happen here.
.
.
I guess I am just trying to say that a centralized trusted repository =
brings with it a chance for a single point of failure. Could be the =
pros outweigh the cons. There are issues with a de-centralized system =
as well (which is what brought this conversation about.) Nothing =
specific to Cymru.
--Patrick Darden
-----Original Message-----
From: Skywing [mailto:Skywing@valhallalegends.com]
Sent: Wednesday, August 06, 2008 1:25 PM
To: Patrick W. Gilmore; NANOG list
Subject: RE: Is it time to abandon bogon prefix filters?
Then again, it does make Team Cymru an attractive target for DoS or even =
compromise if they can control routing policy to a degree for a large =
number of disparate networks. Especially if it gets in the way of =
for-profit spammers.
(Not trying to knock them, just providing a for consideration. I would =
certainly hope and expect that Team Cymru would do their due dilligance =
in that respect, but it seems like an attractive central point of =
failure to attack to me.)
- S
