[isp-bgp] Re: CERT advisory pertaining to BGP

RG> Date: Wed, 21 Apr 2004 11:54:47 -0700 RG> From: Rob Genovesi RG> Just in case anyone out there didn't hear, there is a recent RG> CERT advisory about a recently discovered weakness in the tcp If you consider a few years ago to be recent. RG> protocol that puts certain types of traffic (ie BGP) at risk. RG> If you are running BGP it is highly recommended that you put RG> passwords on your BGP sessions. RG> RG> For more details: http://www.cert.org/advisories/CA-2001-09.html Maybe, maybe not. See also: TTL 255 hack for protecting eBGP, and ingress spoof filtering for protecting iBGP. I'm seeing reports of sloppy MD5 checksum implementations that compute the checksum _before_ other validity checks. That can cause trouble in routers lacking in CPU power. Eddy -- EverQuick Internet - http://www.everquick.net/ A division of Brotsman & Dreger, Inc. - http://www.brotsman.com/ Bandwidth, consulting, e-commerce, hosting, and network building Phone: +1 785 865 5885 Lawrence and [inter]national Phone: +1 316 794 8922 Wichita _________________________________________________________________ DO NOT send mail to the following addresses : blacklist@... -or- alfra@intc.net -or- curbjmp@intc.net Sending mail to spambait addresses is a great way to get blocked. To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with.

Solutions

Whitepapers and eBooks
IBM eBook: Planning a Service Oriented Architecture IBM eBook: Choosing the Right Architecture--What It Means for You and Your Business Microsoft Article: Will Hyper-V Make VMware This Decade's Netscape? Avaya Article: Using Intelligent Presence to Create Smarter Business Applications Intel Go Parallel Article: Getting Started with TBB on Windows Microsoft Article: 7.0, Microsoft's Lucky Version? Avaya Article: How to Feed Data into the Avaya Event Processor		IBM Article: Developing a Software Policy for Your Organization Microsoft Article: Managing Virtual Machines with Microsoft System Center Intel Go Parallel Article: Intel Threading Tools and OpenMP HP eBook: Storage Networking , Part 1 Microsoft Article: Solving Data Center Complexity with Microsoft System Center Configuration Manager 2007 MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts
HP Video: StorageWorks EVA4400 and Oracle HP Webcast: Storage Is Changing Fast - Be Ready or Be Left Behind		Microsoft Silverlight Video: Creating Fading Controls with Expression Design and Expression Blend 2 MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits
Red Gate Download: SQL Toolbelt and free High-Performance SQL Code eBook Iron Speed Designer Application Generator		MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos
Silverlight 2 App and Walkthrough: Leverage Silverlight 2 with SQL Server and XML IBM Article: Enterprise Search--Do You Know What's Out There? HP Demo: StorageWorks EVA4400		Microsoft Article: The Progress and Promise of Deep Zoom Microsoft How-to Article: Get Going with Silverlight and Windows Live MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES