[164867] in North American Network Operators' Group
Re: questions regarding prefix hijacking
daemon@ATHENA.MIT.EDU (Massimiliano Stucchi)
Wed Aug 7 05:31:48 2013
Date: Wed, 07 Aug 2013 11:31:04 +0200
From: Massimiliano Stucchi <stucchi-lists@glevia.com>
To: nanog@nanog.org
In-Reply-To: <CAJx5YvF0K_aM3Kb46RLWU3g9BKXgqCyrq_atG+WRkJLcKoshhQ@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 8/7/13 11:13 AM, Martin T wrote:
> Ok. And such attacks have happened in the past? For example one could
> do a pretty widespread damage for at least short period of time if it
> announces for example some of the root DNS server prefixes(as long
> prefixes as possible) to it's upstream provider and as upstream
> provider probably prefers client traffic over it's peerings or
> upstreams, it will prefer those routes by malicious ISP for all the
> traffic to root DNS servers?
Of course similar problems have occurred in the past. Just take a look
at this video: http://www.youtube.com/watch?v=IzLPKuAOe50
Some minor occurrences have happened recently as well.
Ciao!
--
Massimiliano Stucchi
