[nsp-sec] ARIN-REACHABILITY-TESTING

Chris Morrow morrowc at ops-netman.net
Sun Jan 11 13:39:26 EST 2009 

it's possible that ths isn't happening under ARIN's auspices... I did know 
of the reachability testing, this though sounds more like some bgp 
observations experiments he described at IETF in Dublin.

Essentially seeing where prefixes leak between peers, customers, other... 
and where they don't show up on things like route-views. Probably it's 
best to get randy to explain better what's going on here though.

-Chris

On Sun, 11 Jan 2009, David Freedman wrote:

> ----------- nsp-security Confidential --------
>
> Reply from randy (not to me, to a colleague):
>
> "good catch!  in 48 hours of running, you are the second person to notice.
> this is an intentional experiment.  your asn is in the path so the announcement does not
> reach you. they're not your prefixes, but ours. so no prefixes are harmed in this experiment. :)"
>
> Seems he may be trying to prove a point here.
>
>
> ------------------------------------------------
> David Freedman
> Group Network Engineering
> Claranet Limited
> http://www.clara.net
>
>
>
> -----Original Message-----
> From: nsp-security-bounces at puck.nether.net on behalf of Bill Owens
> Sent: Sun 1/11/2009 15:01
> To: Hank Nussbacher
> Cc: nsp-security at puck.nether.net
> Subject: Re: [nsp-sec] ARIN-REACHABILITY-TESTING
>
> ----------- nsp-security Confidential --------
>
> On Sun, Jan 11, 2009 at 09:14:40AM +0200, Hank Nussbacher wrote:
>> ----------- nsp-security Confidential --------
>>
>> I had sent to Randy:
>> "I don't know who is trying to hijack this block or why."
>>
>> His reply was:
>> "no one is.  new experiment."
>
> Hmm. Unannounced advertisements using faked AS numbers in the origin strikes me as the sort of 'experiment' that Randy would decry if he just heard about it on NANOG, and certainly I have one customer who isn't particularly happy with this behavior. I can't say that I am either, on principle.
>
> But given that Randy isn't exactly my drinking buddy I don't know that he would react well to me complaining about it. I can try, but is anybody with more influence over him willing to try to explain the reasons why this might be seen as alarming and unwelcome in the community?
>
> Bill.
> - - -
> Bill Owens
> Director, Advanced Technology and Networks
> NYSERNet, Inc.
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security counter-measures.
> _______________________________________________
>
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security counter-measures.
> _______________________________________________
>

More information about the nsp-security mailing list