Cisco vulnerability and dangerous filtering techniques
Scott McGrath
mcgrath at fas.harvard.edu
Wed Jul 23 16:32:25 UTC 2003
Another argument for OSPF authentication it seems. However we are
still out of luck in the STP announcements
unless you configure all the neat little *guard features (bpdu,root
etc) from Cisco et al.
On Wednesday, July 23, 2003, at 12:34 PM, alex at yuriev.com wrote:
>
>> Like I said, it's not going to be perfect, but it is better than
>> blindly
>> spewing out evil packets.
>
> Between me and you, ospf packets or bad stp packets are a lot more
> dangerous
> than the whack a cisco router. Just try it.
>
> Alex
More information about the NANOG
mailing list