Re: [Sidr] [OPSEC] pccw as17557 leak...

Curtis Villamizar <curtis@occnc.com> Thu, 06 March 2008 05:19 UTC

Return-Path: <sidr-bounces@ietf.org>
X-Original-To: ietfarch-sidr-archive@core3.amsl.com
Delivered-To: ietfarch-sidr-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 341B13A6CEF; Wed, 5 Mar 2008 21:19:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -100.409
X-Spam-Level:
X-Spam-Status: No, score=-100.409 tagged_above=-999 required=5 tests=[AWL=0.028, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_ORG=0.611, RDNS_NONE=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FKyu2fB0qW7y; Wed, 5 Mar 2008 21:19:32 -0800 (PST)
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B75093A6889; Wed, 5 Mar 2008 21:19:31 -0800 (PST)
X-Original-To: sidr@core3.amsl.com
Delivered-To: sidr@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 302273A6BB4; Wed, 5 Mar 2008 21:19:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ffOxhHrMkHg2; Wed, 5 Mar 2008 21:19:28 -0800 (PST)
Received: from harbor.brookfield.occnc.com (unknown [69.37.59.172]) by core3.amsl.com (Postfix) with ESMTP id 1C2633A6889; Wed, 5 Mar 2008 21:18:37 -0800 (PST)
Received: from harbor.brookfield.occnc.com (harbor.brookfield.occnc.com [69.37.59.172]) by harbor.brookfield.occnc.com (8.13.6/8.13.6) with ESMTP id m265IwVd002532; Thu, 6 Mar 2008 00:18:58 -0500 (EST) (envelope-from curtis@harbor.brookfield.occnc.com)
Message-Id: <200803060518.m265IwVd002532@harbor.brookfield.occnc.com>
To: Joe Abley <jabley@ca.afilias.info>
From: Curtis Villamizar <curtis@occnc.com>
In-reply-to: Your message of "Tue, 04 Mar 2008 10:22:39 EST." <5B7F4259-8CAB-4895-8F26-8BFD0CE7C56B@ca.afilias.info>
Date: Thu, 06 Mar 2008 00:18:58 -0500
Cc: opsec wg mailing list <opsec@ietf.org>, sidr@ietf.org
Subject: Re: [Sidr] [OPSEC] pccw as17557 leak...
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: curtis@occnc.com
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/sidr>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: sidr-bounces@ietf.org
Errors-To: sidr-bounces@ietf.org

In message <5B7F4259-8CAB-4895-8F26-8BFD0CE7C56B@ca.afilias.info>
Joe Abley writes:
>  
>  
> On 4-Mar-2008, at 10:14, Vishwas Manral wrote:
>  
> > I was talking about the RIPE whois and other related tools that RIPE
> > provides, when I looked at the link given below:
> > http://www.ripe.net/news/study-youtube-hijacking.html
> >
> > As the tools cannot be accessed using https but using http, the tools
> > cannot be used in a guaranteed fashion. We cannot build scripts over
> > the tools and feel the information.
>  
> I had no idea they were available over http. Everybody I know who uses  
> them uses whois.
>  
> As to "cannot build", that doesn't seem to be an opinion shared by the  
> many ISPs who "have built".
>  
>  
> Joe
> _______________________________________________
> Sidr mailing list
> Sidr@ietf.org
> https://www.ietf.org/mailman/listinfo/sidr



http://www.ripe.net/db/support/update-reference-manual.pdf

Read the abstract and you'll find out what is used for security.  Its
a bit old but it works.

The query or update is in the clear (not encrypted) but can be
authenticated with a signature over the contents.

Curtis

_______________________________________________
Sidr mailing list
Sidr@ietf.org
https://www.ietf.org/mailman/listinfo/sidr