AS path question.

Nick Hilliard nick at foobar.org
Wed Nov 10 20:03:35 CST 2010


On 11/11/2010 01:25, Scott Weeks wrote:
> Why did that make you feel safe?  Other than a bug, and ignorance of
> BGP, what is unsafe about a lotta prepends?

In theory, nothing.  In practice:

http://www.cisco.com/en/US/products/products_security_advisory09186a0080af150f.shtml
https://bugzilla.quagga.net/show_bug.cgi?id=396
http://tools.cisco.com/security/center/viewAlert.x?alertId=17670

It's one of those belt+braces things that's now considered good practice.

Nick





More information about the NANOG mailing list