[EMAIL PROTECTED] wrote:
Bruce S. (the security guy) claims he knows half dozen ways
to take down the Internet. I'm wondering if he's full of crap.
The only one I can think of is to target the root DNS servers.
I'm not sure Internet has FIVE more weak spots than *that*.
Here's one. In networking we often peer with other core routers using
BGPv4 (border gateway protocol), OSPF (open shortest path first), and
IGRP (interior gateway routing protocol), to distribute routing tables
back and forth. All it takes is one malicious (or unsecured) customer to
inject some "bad" routes into those tables and have them propagate out
to the rest of the internet (it only takes a few minutes) and you could
effectively bring the internet to its knees. I have the power to do it
from work -- not that I'd actually do it (can you imagine the
lawsuits?), but it wouldn't be that difficult. all it'd take is to find
the subnets a few of the most core routers are on, and advertize that as
a push route through BGP. boom, you've just taken down your ISP.
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
