Revealed: The Internet's Biggest Security Hole

Joel Jaeggli joelja at bogus.com
Thu Aug 28 17:41:10 UTC 2008


Hank Nussbacher wrote:
> At 09:40 PM 27-08-08 -0400, marcus.sachs at verizon.com wrote:
> 
> I beg to differ.  What will change is a serious uptick in the number of
> prefixes (279K) in the routing tables as everyone rushes to deaggregate
> to /24 size.  A year ago we were at 230K, how much you wanna bet we
> don't just add 40K routes over the next 12 months.

if you're only seeing 2k new prefixes a week then everything is normal.

a change in the slope of the curve would be cause for alarm (say 8k a week)

joelja

> -Hank
> 
>> Nothing will change. You think DNSSEC is hard?  Try getting support
>> for the deployment of S-BGP or soBGP. Without a trust anchor and lots
>> of community support it will remain largely an academic interest area.
>>
>> Marc
>>
>> ------Original Message------
>> From: Gadi Evron
>> To: Frank
>> Cc: NANOG list
>> Sent: Aug 27, 2008 20:54
>> Subject: Re: Revealed: The Internet's Biggest Security Hole
>>
>> hehe
>> "new". hehe
>>
>> Maybe something will change now' though, it was a great and impressive
>> presentation, hijacking the defcon network and tweaking TTL to hide it.
> 
> 





More information about the NANOG mailing list