republican-creole
Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Huge Internet Security Hole Demonstrated » Old news?
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Post a:
Post a:
The DNS exploit is bigger... »
« So encrypt your traffic  
AuthorAll Replies


Ignite
Premium,VIP
join:2004-03-18
UK
clubs:		reply to wentlanc
Re: Old news?

Perhaps nothing more interesting than ensuring all your BGP peers are using MD5 authentication would mitigate this.
to forum · permalink · · 2008-08-27 10:44:35 · Reply to this

keyboard5684

join:2001-08-01
Youngsville, PA
·Teliax VOIP
·WestPAnet Inc.
·WestPAnet Inc. CA..

1 edit		 This is true, MD5 which many carriers no longer seem to care about because you can just set 1 or 2 hop BGP.

MD5 should always be setup but it is a longer call with the carrier and sometimes a pain. You usually have to email or send the password to them because you cannot read 7j8j$8e%wVG&6G6Ky6jI#8o!LMt over the phone. So it is a little pain so carriers, or more there techs, just try not to encourage it. You have to specifically request it so it is the ISP fault as well.

But these little tricks are usually just bad configuration/setup. The ISPs and carriers can set up a very secure exchange. DNS exploits too, a lot of this just goes to security, do it right the first time.

Laziness and lack of caring, just people doing there job. Tell you what, pay techs what they deserve and get the right ones in there to do the job. It has to do with undercutting by the ISPs and by the carriers.

EDIT: What about we start using a newer version of BGP? We have been stuck on 4 for a long time. Maybe we all move up to BGP6 or something? Developed yet?
to forum · permalink · · 2008-08-27 15:25:38 · Reply to this


sporkme
drop the crantini and move it, sister
Premium,MVM
join:2000-07-01
Morristown, NJ
·Optimum Online

reply to Ignite
said by Ignite See Profile :

Perhaps nothing more interesting than ensuring all your BGP peers are using MD5 authentication would mitigate this.
That would do nothing to solve this...
to forum · permalink · · 2008-08-28 01:50:28 · Reply to this
-
Forums » Huge Internet Security Hole DemonstratedThe DNS exploit is bigger... »
« So encrypt your traffic  

Wednesday, 25-Nov 03:32:56 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [103] New AT&T Ad Campaign Hits Back At Verizon
· [85] New Bill Takes Aim At Higher Verizon ETFs
· [84] Apple Joins AT&T Verizon Snark Fest
· [39] In-Flight Internet Headed For Bumpy Landing?
· [32] Senators Want ACTA Made Public
· [30] Earthlink Suffers From Major E-mail Outage
· [30] AT&T Offers New Prepaid Wireless plans
· [28] Frontier Increases Modem Rental Fee
· [20] Despite Billions In USF Fees, U.S. Libraries Lack Bandwidth
· [16] Vivendi In Way Of Comcast's NBC Desires
Most people now reading
· Windows 7 boot manager editing questions [Microsoft Help]
· Mysterious $800 Cash Deposit? [General Questions]
· [Rant] Damn Sermons through my speakers! [Rants, Raves, and Praise]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Is Gear Score now the new requirement to get pug invite? [World of Warcraft]
· Several MS Updates today (11/24/2009). [Security]
· [ Classes] Druid tanking: rotation and glyphs [World of Warcraft]
· [WIN7] Outlook express under Windows 7? [Microsoft Help]
· What to use while demonoid is down? [Filesharing Software]
· HOW-TO: QoS and Tomato (fixes "choppy voice") [MagicJack]