[69833] in North American Network Operators' Group
Re: TCP RST attack (the cause of all that MD5-o-rama)
daemon@ATHENA.MIT.EDU (vijay gill)
Tue Apr 20 18:08:49 2004
Date: Tue, 20 Apr 2004 21:55:20 +0000
From: vijay gill <vgill@vijaygill.com>
To: Rodney Joffe <rjoffe@centergate.com>
Cc: nanog@merit.edu
In-Reply-To: <20040420214501.GF17921@vijaygill.com>
Errors-To: owner-nanog-outgoing@merit.edu
On Tue, Apr 20, 2004 at 09:45:01PM +0000, vijay gill wrote:
> infrastructure today - a large amount of PPS at the _router_ (with or
> without md5 or tcpsecure) will blow it out of the water. A 10mbits/s
> of packets at the juniper without md5 will also destroy it.
To be clear, I was just using jnx as an example. There are very few
currently shipping boxes that will survive a large PPS attack.
(also to be fair, been a while since I verified the above numbers)
/vijay
