[AfrIPv6-Discuss] CVE-2016-10142 / RFC8021: A Tale of Bad Decisions, Weird Packets, and DoS Attacks

Fernando Gont fernando at gont.com.ar
Mon Jan 23 08:00:44 UTC 2017


Thanks!

FWIW, so far the BCP would be "Drop ICMPv6 PTB messages that advertise
an MTU<1280 bytes".

Thanks!

Best regards,
Fernando




On 01/22/2017 06:29 AM, Musa Stephen Honlue wrote:
> Thanks for sharing, this is very interesting. I think you should try to
> push for a BCP about this.
> Regards.
> 
> On 21 Jan 2017 6:59 pm, "Fernando Gont" <fgont at si6networks.com
> <mailto:fgont at si6networks.com>> wrote:
> 
>     Folks,
> 
>     FYI:
>     <http://blog.si6networks.com/2017/01/a-tale-of-bad-decisions-weird-packets.html
>     <http://blog.si6networks.com/2017/01/a-tale-of-bad-decisions-weird-packets.html>>
> 
>     It is a blog post about a DoS attack based on ICMPv6 PTB messages
>     (involving IPv6 atomic fragments).
> 
>     Thanks!
> 
>     Cheers,
>     --
>     Fernando Gont
>     SI6 Networks
>     e-mail: fgont at si6networks.com <mailto:fgont at si6networks.com>
>     PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
> 
> 
> 
> 
> 
>     _______________________________________________
>     AfrIPv6-Discuss mailing list
>     AfrIPv6-Discuss at afrinic.net <mailto:AfrIPv6-Discuss at afrinic.net>
>     https://lists.afrinic.net/mailman/listinfo/afripv6-discuss
>     <https://lists.afrinic.net/mailman/listinfo/afripv6-discuss>
> 
> 
> 
> 
> _______________________________________________
> AfrIPv6-Discuss mailing list
> AfrIPv6-Discuss at afrinic.net
> https://lists.afrinic.net/mailman/listinfo/afripv6-discuss
> 


-- 
Fernando Gont
e-mail: fernando at gont.com.ar || fgont at si6networks.com
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1






More information about the AfrIPv6-Discuss mailing list