[56258] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: BGP to doom us all

daemon@ATHENA.MIT.EDU (Rob Thomas)
Fri Feb 28 22:41:46 2003

Date: Fri, 28 Feb 2003 21:41:17 -0600 (CST)
From: Rob Thomas <robt@cymru.com>
To: NANOG <nanog@merit.edu>
In-Reply-To: <Pine.LNX.4.44.0302282232020.13108-100000@commander.av8.net>
Errors-To: owner-nanog-outgoing@merit.edu

Hi, Dean.

] Assuming the router is compromised, so is the MD5 key.  And presumably,
] the acls and anything else can be changed as well.

Agreed.  My point was to take a few steps to avoid the compromise.  :)
It isn't difficult to make things just a *bit* more difficult, and thus
avoid the pain caused by the average scan and sploit crowd.  Pick good
passwords, limit access, keep routing tables clean, etc.

Thanks,
Rob.
-- 
Rob Thomas
http://www.cymru.com
ASSERT(coffee != empty);


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[56258] in North American Network Operators' Group

Re: BGP to doom us all

daemon@ATHENA.MIT.EDU (Rob Thomas)Fri Feb 28 22:41:46 2003

daemon@ATHENA.MIT.EDU (Rob Thomas)
Fri Feb 28 22:41:46 2003