[158875] in North American Network Operators' Group
=?utf-8?Q?Re:_Advisory_=E2=80=94_D-root_is_changing_it?=
daemon@ATHENA.MIT.EDU (Jay Ashworth)
Fri Dec 14 12:58:39 2012
Date: Fri, 14 Dec 2012 12:56:55 -0500 (EST)
From: Jay Ashworth <jra@baylink.com>
To: NANOG <nanog@nanog.org>
In-Reply-To: <50CB5F67.5040108@foobar.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
----- Original Message -----
> From: "Nick Hilliard" <nick@foobar.org>
> It would be really good to have a formal public statement of intent from
> UMD about their long term plans for 128.8.10.90 after retirement so that we
> don't have a repeat of the L root hijacking debacle in 2008.
Quite so: UMD: Where will the old IP route after the 6 month period is
complete? Somewhere safe?
In point of fact, ISTM that there *is no way* to make this completely safe;
granted that it's a low percentage attack, and thus probably not useful
to actual attackers, but the possibility exists that someone could hijack
that block at a provider level, and provide their own replacement for that
old server IP.
But of course, they can do it *now*, too, so I guess it doesn't matter
anymore.
Cheers,
-- jra
--
Jay R. Ashworth Baylink jra@baylink.com
Designer The Things I Think RFC 2100
Ashworth & Associates http://baylink.pitas.com 2000 Land Rover DII
St Petersburg FL USA #natog +1 727 647 1274
