[34610] in North American Network Operators' Group
Re: Using unallocated address space - for DoS?
daemon@ATHENA.MIT.EDU (Steven M. Bellovin)
Wed Feb 14 09:27:57 2001
From: "Steven M. Bellovin" <smb@research.att.com>
To: "Miguel A.L. Paraz" <map@internet.org.ph>
Cc: nanog@merit.edu
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Wed, 14 Feb 2001 09:21:32 -0500
Message-Id: <20010214142140.616D535C42@berkshire.research.att.com>
Errors-To: owner-nanog-outgoing@merit.edu
In message <20010214215512.A19817@mail.q-linux.com>, "Miguel A.L. Paraz" writes
:
>
>On Tue, Feb 13, 2001 at 09:47:15PM -0800, Sean Donelan wrote:
>> Unfortunately this is not a unique occurance. Cable&Wireless, Sprint,
>> AT&T and UUNET have all had portions of their service knocked off the
>> Internet for various periods of time due to bogus announcements. Until
>> other ISPs fix their policies, I can knock your network off most of the
>> Internet, and there is nothing you can do to prevent it.
>
>
>I hope this is a remote possibility, but what are the chances of someone
>malicious breaking into the "right" router and blackholing the worst possible
>networks? If this is done, how long till it can be remedied?
You don't have to break into the "right" router; you just have to start
announcing the networks in a way that your peers don't -- can't --
detect is improper.
--Steve Bellovin, http://www.research.att.com/~smb
