nanog mailing list archives

Re: Winstar says there is no TCP/BGP vulnerability

From: Pekka Savola <pekkas () netcore fi>
Date: Wed, 21 Apr 2004 14:23:38 +0300 (EEST)


On Wed, 21 Apr 2004, E.B. Dreger wrote:

DH> Date: Wed, 21 Apr 2004 02:01:56 -0700 (PDT)
DH> From: Dan Hollis

DH> Wouldnt anti-spoofing filters largely eliminate the need for
DH> all this panic about MD5?

But that doesn't push the short-term cost onto other networks.


Not sure what you're saying.  You don't need to deploy anti-spoofing 
filters everywhere.  It needs to be done by those parties which are 
the ones setting up MD5 passwords.  No more than that. (See my thread 
"Alternatives to MD5" for more.)

-- 
Pekka Savola                 "You each name yourselves king, yet the
Netcore Oy                    kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings

Current thread:

Xspedius / E.Spire as wellRe: Winstar says there is no TCP/BGP vulnerability, (continued)
- Xspedius / E.Spire as wellRe: Winstar says there is no TCP/BGP vulnerability John Brown (CV) (Apr 20)
  - Re: Xspedius / E.Spire as wellRe: Winstar says there is no TCP/BGP vulnerability Andy Dills (Apr 20)
  - Re: Xspedius / E.Spire as wellRe: Winstar says there is no TCP/BGP vulnerability Richard A Steenbergen (Apr 20)
    - Re: Xspedius / E.Spire as wellRe: Winstar says there is no TCP/BGP vulnerability babylon (Apr 20)
  - Re: Xspedius / E.Spire as wellRe: Winstar says there is no TCP/BGP vulnerability Charles Sprickman (Apr 21)
- Re: Winstar says there is no TCP/BGP vulnerability Joe Rhett (Apr 20)
  - Re: Winstar says there is no TCP/BGP vulnerability Rodney Joffe (Apr 20)
    - Re: Winstar says there is no TCP/BGP vulnerability Dan Hollis (Apr 21)
    - Re: Winstar says there is no TCP/BGP vulnerability James (Apr 21)
    - Re: Winstar says there is no TCP/BGP vulnerability E.B. Dreger (Apr 21)
    - Re: Winstar says there is no TCP/BGP vulnerability Pekka Savola (Apr 21)
    - Re: Winstar says there is no TCP/BGP vulnerability E.B. Dreger (Apr 21)
    - Re: Winstar says there is no TCP/BGP vulnerability Joe Rhett (Apr 28)
    - Re: Winstar says there is no TCP/BGP vulnerability Rodney Joffe (Apr 28)
    - Re: Winstar says there is no TCP/BGP vulnerability Kevin Oberman (Apr 28)
    - Re: Winstar says there is no TCP/BGP vulnerability Rodney Joffe (Apr 28)
- Alternatives to MD5 [Re: Winstar says there is no TCP/BGP vulnerability] Pekka Savola (Apr 20)
- Re: Winstar says there is no TCP/BGP vulnerability Alexei Roudnev (Apr 22)
  - Re: Winstar says there is no TCP/BGP vulnerability James (Apr 22)
    - Re: Winstar says there is no TCP/BGP vulnerability Deepak Jain (Apr 22)
    - Re: Winstar says there is no TCP/BGP vulnerability James (Apr 22)

(Thread continues...)