North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Re: md5 for bgp tcp sessions
On Jun 23, 2005, at 12:14 AM, Richard A Steenbergen wrote:
Just please realize that this is a trivial layer of security, an extraIt's not just trivial, it's nearly useless.
Would someone please raise their hand if they have ever seen this attack in the wild? Anyone?
Seems the TTL hack is much more effective at guarding against this sort of thing, doesn't require "secrets", far less CPU intensive, easier to configure, etc., etc., etc.
Want security? I suggest you use something that has more benefit than cost.