tcp md5 bgp attacks?

Niels Bakker niels=nanog at
Sun Aug 19 20:32:51 UTC 2018

* randy at (Randy Bush) [Wed 15 Aug 2018, 04:27 CEST]:
>my memory is that seq num guessing and sending rst was the core 
>problem motivating tcp/md5 for bgp, and btsh came some years later. 
>but no big deal.

And a few looking glasses exposed detailed TCP window information when 
run against certain hardware vendors' routers, making that very easy.

	-- Niels.

More information about the NANOG mailing list