[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: survey of isp security practices
- To: "Howard C. Berkowitz" <hcb@gettcomm.com>, opsec@ops.ietf.org
- Subject: Re: survey of isp security practices
- From: David Barak <thegameiam@yahoo.com>
- Date: Tue, 9 Nov 2004 06:16:45 -0800 (PST)
- Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; b=0+nyHnPtyLfR/pbj4wAOYVMbujC85LnV9wQpih2MZSG/AyJShQjZttmvh9EyZBKNpG10VQPzFD2s3t7oiiBL8mv0SqjHkKqmkF6PS5FwuWXvAMIKLAhhWPcMLVMuvCK8S/rWU3mu9y/ctGCt8hNoCi1QC1Wjsq9t3ak069F3AIo= ;
- In-reply-to: <p06110404bdb67c2ad0c3@[192.168.0.4]>
--- "Howard C. Berkowitz" <hcb@gettcomm.com> wrote:
> I need to think some more about exactly where it
> would go and what
> would be in it, but my initial reaction is that
> there needs to be a
> section on "routing". I'd move blackholes/sinkholes
> out of
> filtering, as well as uRPF, and add the issues of
> routing protocol
> security, sanity checks on routing (correlation with
> routing
> registries, prefix limits, etc.), and
> information-gathering from such
> things as flaps and generic changes-from-baseline of
> routing protocol
> specifics.
I agree with Howard that "routing" should be a major
heading, but I think that it has two major categories:
source validation, and information validation.
=====
David Barak
-fully RFC 1925 compliant-
__________________________________
Do you Yahoo!?
Check out the new Yahoo! Front Page.
www.yahoo.com