tcp md5 bgp attacks?

Niels Bakker niels=nanog at bakker.net
Sun Aug 19 20:32:51 UTC 2018


* randy at psg.com (Randy Bush) [Wed 15 Aug 2018, 04:27 CEST]:
>my memory is that seq num guessing and sending rst was the core 
>problem motivating tcp/md5 for bgp, and btsh came some years later. 
>but no big deal.

And a few looking glasses exposed detailed TCP window information when 
run against certain hardware vendors' routers, making that very easy.


	-- Niels.


More information about the NANOG mailing list