[c-nsp] BGP MD5 DDOS ?

Nick Hilliard nick at foobar.org
Wed Sep 19 05:01:23 EDT 2012


On 19/09/2012 02:42, Robert E. Seastrom wrote:
> You forgot the consequences of getting some other element of the
> config wrong because you were preoccupied with the MD5 key.
> 
> I'll take simplicity every time.

One good use for MD5 is to stop people at Internet Exchanges from hijacking
old bgp sessions after IXP address re-use.

Nick




More information about the cisco-nsp mailing list