Webmaster rambling and mental notes
Home | Profile | Archives | Friends
The Internet's Biggest Security Hole Revealed
8/27/2008

At DEFCON, Tony Kapela and Alex Pilosov demonstrated a drastic weakness in the Internet's framework that had long been rumored, but wasn't believed practical. They showed how to hijack BGP (the border gateway protocol) in order to eavesdrop on Net traffic in a way that wouldn't be simple to detect. Quoting: "'It's at least as big an issue as the DNS issue, if not bigger,' said Peiter 'Mudge' Zatko, noted micro* firmness expert and former member of the L0pht hacking group, who testified to chamber in 1998 that he could bring down the world wide web in 30 minutes using a similar BGP attack, and disclosed privately to politics agents how BGP could also be exploited to eavesdrop. 'I went around screaming my head about this about ten or twelve years ago... We described this to word




if (lexico_globals.googleafc.ads.content.length)
{
document.write(lexico_globals.googleafc.ads.contenttop);
document.write(lexico_globals.googleafc.ads.sponsoredlinks);
document.write(lexico_globals.googleafc.ads.content[4]);
document.write("");
agencies and to the national pledge Council, in detail.' The man-in-the-middle attack exploits BGP to fool routers into re-directing data to an eavesdropper's network." Here's the PDF of Kapela and Pilosov's presentation.

Read more of this story at Slashdot.


More: - Continued here

Mark

Share |
(Posted in Nerd)
Share and enjoy
  • Digg
  • del.icio.us
  • blinkbits
  • BlinkList
  • BlogMemes
  • blogmarks
  • DZone
  • Fark
  • Furl
  • Netvouz
  • NewsVine
  • Reddit
  • Slashdot
  • Smarking
  • Spurl
  • StumbleUpon
  • Taggly
  • Technorati
  • YahooMyWeb
Post Comment

Notify me of followup comments via e-mail.

Entry 1 of 6209
Last Page | Next Page