[56257] in North American Network Operators' Group
Re: BGP to doom us all
daemon@ATHENA.MIT.EDU (Rob Thomas)
Fri Feb 28 22:37:08 2003
Date: Fri, 28 Feb 2003 21:33:12 -0600 (CST)
From: Rob Thomas <robt@cymru.com>
To: NANOG <nanog@merit.edu>
In-Reply-To: <Pine.LNX.4.10.10302282225140.25516-100000@s1.yuriev.com>
Errors-To: owner-nanog-outgoing@merit.edu
Hi, Alex.
] RCS of your router config is your friend.
Yep, agreed. Sanity checking router configurations is a very wise move.
Just so everyone knows, the miscreants generally disable all logging
capability and enact ACLs to block all ICMP, UDP, and selectively permit
telnet from their hacked hosts. These are some of the warning signs.
] Who cares? If the other routers are configured correctly, they wont take
] tainted advertisements. If they are not configured correctly, any Super
] Secure BGP wont help.
Yep, thus my constant raving about prefix filtering. :)
Thanks,
Rob.
--
Rob Thomas
http://www.cymru.com
ASSERT(coffee != empty);
