[139234] in North American Network Operators' Group
Re: HIJACKED: 148.163.0.0/16 -- WTF? Level3 is now doing IP
daemon@ATHENA.MIT.EDU (Ross Harvey)
Thu Mar 31 00:50:19 2011
In-Reply-To: <Pine.OSX.4.64.1103302329100.312@cevin-2.local>
From: Ross Harvey <ross.harvey@appfolio.com>
Date: Wed, 30 Mar 2011 21:49:52 -0700
To: Brandon Ross <bross@pobox.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Wait a second, I'm pretty sure that in most contexts, a signature or
letterhead means not so much "this is real because it's so obviously
genuine", but rather:
"This is real or I am willing to take a forgery rap".
As it happens, that's good enough for many if not most non-cash
transactions. Now, there are societies where that doesn't work, but
they don't usually have a lot of networks.
On Wed, Mar 30, 2011 at 9:00 PM, Brandon Ross <bross@pobox.com> wrote:
>
> On Wed, 30 Mar 2011, Ronald F. Guilmette wrote:
>
>> So that _really_ begs the question... Why did Circle Internet and (appar=
ently)
>> Level3's customer, BANDCON, blindly accept _any_ sort of assertion that =
the
>> crook who hijacked these two /16s had the right to use them?
>
> What makes you think it was blind? =A0The standard industry practice is t=
o ask someone requesting to announce a route for a letter on the owner's le=
tter head authorizing the announcement. =A0Is it really that hard to invent=
some letterhead and sign a letter?
>
> It's probably one of the easiest to circumvent "security" procedures ever=
.
>
> Frankly it's a giant waste of time and does nothing other than frustrate =
legitimate work.
>
> --
> Brandon Ross =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =
=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0AIM: =A0BrandonNRoss
> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =
=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 ICQ: =A02269442
> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 Skype=
: =A0brandonross =A0Yahoo: =A0BrandonNRoss
>
