[70401] in North American Network Operators' Group
Re: Cisco's Statement about IPR Claimed in draft-ietf-tcpm-tcpsecure
daemon@ATHENA.MIT.EDU (Iljitsch van Beijnum)
Thu May 13 14:12:14 2004
In-Reply-To: <20040513174827.7CDA07B46@berkshire.research.att.com>
Cc: North American Noise and Off-topic Gripes <nanog@merit.edu>
From: Iljitsch van Beijnum <iljitsch@muada.com>
Date: Thu, 13 May 2004 20:11:36 +0200
To: "Steven M. Bellovin" <smb@research.att.com>
Errors-To: owner-nanog-outgoing@merit.edu
On 13-mei-04, at 19:48, Steven M. Bellovin wrote:
>> The same document that fully ignores that port number randomness will
>> severely limit the risk of susceptibility to such an attack?
> How many zombies would it take to search the port number space
> exhaustively?
How many route processors does it take to look at the packets from all
those zombies? This very quickly becomes a DoS against the route
processor rather than a TCP exploit.
