Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denialof Service Attack
From: Paul Jakma
Date: Sun Sep 12 2004 - 22:20:02 EST
On Sun, 12 Sep 2004, Toon van der Pas wrote:
knowing to a resonable degree what arrived. TCP does not proide a
security service.
(The core of this problem arises because certain people treat TCP
connection down on the peering session as link down)
Alan, could you please elaborate on this last statement?
I don't understand what you mean, and am very interested.
I think he means that BGP treating TCP connections as if they could
reliably and securely indicate link/path status (ie connection
reset/timeout == link down) status was, in retrospect, a very dumb
idea on the part of BGP.
Thanks,
Toon.
regards,
--
Paul Jakma paul@xxxxxxxx paul@xxxxxxxxx Key ID: 64A2FF6A
Fortune:
This restaurant was advertising breakfast any time. So I ordered
french toast in the renaissance.
- Steven Wright, comedian
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/