24 May
2022
24 May
'22
4:30 a.m.
On Tue, 24 May 2022 at 11:23, Max Tulyev <maxtul@netassist.ua> wrote:
To make a working hijack of the routed prefix (for sniffing traffic, DDoS or something similar), you have to announce a more specific prefix(es). It can be denied by RPKI.
If you signed RPKI prefix is still unannounced - yes, somebody can hijack it by forging the origin ASN - that's quite easy.
This axiomatically assumes first come, first serve, which is obviously not complete understanding of BGP best path algorithm. -- ++ytti