[150442] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: do not filter your customers

daemon@ATHENA.MIT.EDU (Randy Bush)
Thu Feb 23 22:43:18 2012

Date: Fri, 24 Feb 2012 09:12:19 +0530
From: Randy Bush <randy@psg.com>
To: Danny McPherson <danny@tcb.net>
In-Reply-To: <0BE25545-3192-464A-A5FE-612D7FBBEE79@tcb.net>
Cc: North American Network Operators' Group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org

>> a customer leaked a full table to smellstra, and they had not filtered.
>> hence the $subject.
> 
> Ahh, this is I think the customer "leak" problem I'm trying to illustrate 
> that an RPKI/BGPSEC-enabled world alone (as currently prescribed) 
> does NOT protect against.  

the problem is that you have yet to rigorously define it and how to
unambiguously and rigorously detect it.  lack of that will prevent
anyone from helping you prevent it.

randy


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[150442] in North American Network Operators' Group

Re: do not filter your customers

daemon@ATHENA.MIT.EDU (Randy Bush)Thu Feb 23 22:43:18 2012

daemon@ATHENA.MIT.EDU (Randy Bush)
Thu Feb 23 22:43:18 2012