[168164] in North American Network Operators' Group
Re: OpenNTPProject.org
daemon@ATHENA.MIT.EDU (Paul Ferguson)
Tue Jan 14 10:37:04 2014
Date: Tue, 14 Jan 2014 07:36:26 -0800
From: Paul Ferguson <fergdawgster@mykolab.com>
To: Saku Ytti <saku@ytti.fi>
In-Reply-To: <20140114071830.GA18152@pob.ytti.fi>
Cc: nanog@nanog.org
Reply-To: fergdawgster@mykolab.com
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 1/13/2014 11:18 PM, Saku Ytti wrote:
> On (2014-01-13 21:33 +0000), Bjoern A. Zeeb wrote:
>
>>> BCP38! I am always surprised when people need crypto if they
>>> fail the simple things.
> Saying that BCP38 is solution to the reflection attacks is not
> unlike 5 year old wishing nothing but world peace for christmas,
> endearing, but it's not going to change anything. BCP38 is
> completely unrealistic, many access networks are on autopilot,
> many don't have HW support for BCP38, one port configured has
> low-benefit, only that machine can stop attacking (but whole
> world).
That does *not* make it an unworthy goal, nor should it stop people
from encouraging it's implementation.
- - ferg (co-author of BCP38)
- --
Paul Ferguson
PGP Public Key ID: 0x54DC85B2
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iF4EAREIAAYFAlLVWXoACgkQKJasdVTchbIrtAD/T2bNNAgZOnnlniBPd6sEquxJ
v01mmrhJxFTIDFq7EIkA/3vQbiwtEwBeVyCtc3coEkz50zSDh3j9QQjT+TQWCNVs
=Al3Y
-----END PGP SIGNATURE-----
