[c-nsp] Securing OSPFv3 on 6500/7600 Routers?
Dobbins, Roland
rdobbins at arbor.net
Wed Jan 5 23:02:24 EST 2011
On Jan 6, 2011, at 10:54 AM, Pete Lumbis wrote:
> I would see the benefit more from authentication than from encryption.
I'll buy that - but since I've yet to see/posit a practical attack on MD5-based IGP authentication, and since if an attacker has enough access to one's network infrastructure to play games with one's IGP, IGP authentication ought to be the least of one's worries, I somehow doubt it's worth the added complexity.
;>
------------------------------------------------------------------------
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>
Most software today is very much like an Egyptian pyramid, with millions
of bricks piled on top of each other, with no structural integrity, but
just done by brute force and thousands of slaves.
-- Alan Kay
More information about the cisco-nsp
mailing list