TCP RST attack
Mike Tancsa
mike at sentex.net
Tue Apr 20 17:09:39 PDT 2004
At 08:02 PM 20/04/2004, Bruce M Simpson wrote:
>On Tue, Apr 20, 2004 at 01:45:20PM -0700, Matthew Dillon wrote:
> > 99.9% of all BGP links are direct connections (meaning that they
> > terminate at a router rather then pass through one). No packet to
> > or from port 179 has any business being routed from one network to
> > another in virtually all BGP link setups so the fix is utterly trivial.
>
>This isn't necessarily the case with eBGP multihop or route-server based
>setups.
Cogent and 360/GT both like to do ebgp multihop by default.
---Mike
More information about the freebsd-security
mailing list