[j-nsp] stealth bgp vulnerability?
Randy Bush
randy at psg.com
Thu Apr 15 12:35:04 EDT 2004
> I think the question we would all like answered is what is so special
> about this that hasn't already been known about for ages. If this is
> someone spouting off about ISN guessing or sending 2^32 packets to try and
> reset a session and for some reason it just touched off a wave of paranoia
> and md5 deployment simply because other people were doing it, I am going
> to be very very disappointed.
actually, i'm quite happy. a decade of security conscious net folk
saying "please deploy md5" did not work. so if a week of clueless
paranoid guessing on a couple of mailing lists achieves the goal, i
guess that is a good thing.
randy
More information about the juniper-nsp
mailing list