begin quoting Gabriel Sechan as of Fri, Jun 23, 2006 at 03:20:59PM -0500: > >From: [EMAIL PROTECTED] > >Do malicious BGP tables mess up just *your* domains or all domains/routers > >on 'Net? If just *your* router then BGP is *not* a threat to *entire* > >Net. > > > >I'm skeptical malicious BGP tables could mess up all domains cuz by > >now someone would have done this & it hasn't happened! > > Yes it can. BGP works simply- you broadcast to youyr neighbors the length > of the route from you to all the nets you can touch. If you broadcast you > can reach everything in 1 hop, your neighbors will route all traffic to you > in their next update.
"But, but, but, that would be *lying*!" > THen that will get propoagted out a level. And so > on. Eventually it'll get caught, but it can take out a good portion of the > net before its found. IIRC, the propagation out would be fast, and the fix would be comparatively slow. I wonder where _those_ notes are? Hm. I may have lent 'em out and not gotten 'em back, dammit. -- _ |\_ \| -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
