Re: Revealed: The Internet's Biggest Security Hole
At 09:40 PM 27-08-08 -0400, marcus.sachs@verizon.com wrote: I beg to differ. What will change is a serious uptick in the number of prefixes (279K) in the routing tables as everyone rushes to deaggregate to /24 size. A year ago we were at 230K, how much you wanna bet we don't just add 40K routes over the next 12 months. -Hank
Nothing will change. You think DNSSEC is hard? Try getting support for the deployment of S-BGP or soBGP. Without a trust anchor and lots of community support it will remain largely an academic interest area.
Marc
------Original Message------ From: Gadi Evron To: Frank Cc: NANOG list Sent: Aug 27, 2008 20:54 Subject: Re: Revealed: The Internet's Biggest Security Hole
hehe "new". hehe
Maybe something will change now' though, it was a great and impressive presentation, hijacking the defcon network and tweaking TTL to hide it.
Hank Nussbacher wrote:
At 09:40 PM 27-08-08 -0400, marcus.sachs@verizon.com wrote:
I beg to differ. What will change is a serious uptick in the number of prefixes (279K) in the routing tables as everyone rushes to deaggregate to /24 size. A year ago we were at 230K, how much you wanna bet we don't just add 40K routes over the next 12 months.
if you're only seeing 2k new prefixes a week then everything is normal. a change in the slope of the curve would be cause for alarm (say 8k a week) joelja
-Hank
Nothing will change. You think DNSSEC is hard? Try getting support for the deployment of S-BGP or soBGP. Without a trust anchor and lots of community support it will remain largely an academic interest area.
Marc
------Original Message------ From: Gadi Evron To: Frank Cc: NANOG list Sent: Aug 27, 2008 20:54 Subject: Re: Revealed: The Internet's Biggest Security Hole
hehe "new". hehe
Maybe something will change now' though, it was a great and impressive presentation, hijacking the defcon network and tweaking TTL to hide it.
participants (2)
-
Hank Nussbacher
-
Joel Jaeggli