Re: RFC2385 (MD5 signature in TCP packets) support

Alan Cox (alan@lxorguk.ukuu.org.uk)
Fri, 15 Mar 2002 23:19:23 +0000 (GMT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Gordon J Lee: "IBM x360 2.2.x boot failure, 2.4.9 works fine"
Previous message: Greg KH: "Re: IP Autoconfig doesn't work for USB network devices"

> My interest for this is mostly for Zebra to be able to make secure BGP
> connections, so I would also contribute a patch for Zebra to support this
> feature on Linux.

For minimal versions of secure ?

Since this memo was first issued (under a different title), the MD5
algorithm has been found to be vulnerable to collision search attacks
[Dobb], and is considered by some to be insufficiently strong for
this type of application.

You'll also find that with SACK it doesn't fit in the tcp header..

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Gordon J Lee: "IBM x360 2.2.x boot failure, 2.4.9 works fine"
Previous message: Greg KH: "Re: IP Autoconfig doesn't work for USB network devices"