[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Core Internet Vulnerable - News at 11:00

To: "Full-Disclosure" <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] Core Internet Vulnerable - News at 11:00
From: "Alerta Redsegura" <alerta@xxxxxxxxxxxxx>
Date: Tue, 20 Apr 2004 16:20:32 -0500

If I recall well, a BGP speaker only sends/receives updates to route tables,
since the whole routing table is stored when the connection is initiated.
Therefore, closing a connection would only prevent further route updates
between the two attacked devices.

I don´t understand why this is considered as a "serious threat", or does it
have to do with the "de-sync" that would occur within the AS?


Thanks for any lights.

Regards,




Iñigo Koch
Red Segura

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] Core Internet Vulnerable - News at 11:00
  - From: Jade E. Deane

References:
- Re: [Full-Disclosure] Core Internet Vulnerable - News at 11:00
  - From: Michal Zalewski

Prev by Date: Re: [Full-Disclosure] Core Internet Vulnerable - News at 11:00
Next by Date: Re: [Full-Disclosure] Core Internet Vulnerable - News at 11:00
Previous by thread: Re: [Full-Disclosure] Core Internet Vulnerable - News at 11:00
Next by thread: RE: [Full-Disclosure] Core Internet Vulnerable - News at 11:00
Index(es):
- Date
- Thread