Skip to Content.
Sympa Menu

netsec-sig - Re: [Security-WG] Is BGP safe for your ISP?

Subject: Internet2 Network Security SIG

List archive

Re: [Security-WG] Is BGP safe for your ISP?


Chronological Thread 
  • From: Jesse Bowling <>
  • To: "" <>
  • Subject: Re: [Security-WG] Is BGP safe for your ISP?
  • Date: Mon, 20 Apr 2020 13:55:53 +0000
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=duke.edu; dmarc=pass action=none header.from=duke.edu; dkim=pass header.d=duke.edu; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0ZG2AWW4HaHvLFrWS96zhO9P2BUawZqmIWnCD7tajKs=; b=FmmNE2DFThwxhIu9V4xTnCnE9EHHt0z7Nbnuu+XEQItuaZuqGlmyLbEJanSjAro8siS5VmxVqeZjZsqaqE7K6d2Sy5QswRlJyrRpOxcERk6SiFa404sfESDCU9QR1mrOFj7hhOYgxytvKA6U912c275ZXvl33fEbB+u2j9bV/dMu06VXbxWl0nYFguq6YirTYY6m1ymtyo+5bGOiCfBeIyEAhIgXq+7Ne38Abvis9+hfDZLLo1Hg/TZGr0T/hG3HmUttYy3/SjdgYIjs3zWD3DkJQPV+M4cMqtyN4NTpRCCmFtVwxWH8o3QFg2hBmeuvr7/90f787cOXOXnl3zGTBA==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=T+jt1zcmITAwZ24VX/R6KwZ3jVB66OZ4ZcdqcCemvepTUuFc+kvzKUB0EOiXgsN2sCm+c4q2kuEv9dVrOAKqg7n+GqU8Z8EUX0BEBQ02VSiO4Prg4Z9uXMr/EI8ffDfgGSyAPT8LxCPMyNjJd6ZJ6OSvopr2oBiqyA6jRz33bYBEb7tEOUzFvFEVJLpyPWxPONIMUVfJQPVhwLzYHnKx/hgH9rIgHskWIOq6wQgDf3ACV1su84+hYikwoqSF6hWRzG7FIEq+ipEqNMjIsJWR7JDe59Q4prpbk0l1Tmg54GDmmaYJwjkD98LnMGr7fTY7sOhBvb075/gwCdhDzmDcDQ==

I should be clear that I'm trying to start a conversation about this tool, as
others in your org may find this tool and run it, then start questioning why
the results. I don't want anyone to be blind-sided by it.

Routing security is complex, and these soundbite tests are often more pain
than they are benefit. They typically cannot account for complexity and
subtlety, and cause issues of communication and perception. :)

Cheers,

Jesse

> On Apr 20, 2020, at 9:43 AM, Jesse Bowling <> wrote:
>
> Looks like this got put out (Cloudflare I think), and I just ran across:
>
> https://isbgpsafeyet.com/
>
> Curious how others appear...My ISP (Duke, while on VPN) shows up as not
> secure.
>
> <Screen Shot 2020-04-20 at 9.38.07 AM.png>
>
> Cheers,
>
> Jesse
> --
> Jesse Bowling
> ITSO::Security Architect & CSIRT Program Manager
> jesse.bowling[AT]duke.edu::919-660-1073
> 334 Blackwell St::Durham, NC::27701
>

--
Jesse Bowling
ITSO::Security Architect & CSIRT Program Manager
jesse.bowling[AT]duke.edu::919-660-1073
334 Blackwell St::Durham, NC::27701

Attachment: signature.asc
Description: Message signed with OpenPGP




Archive powered by MHonArc 2.6.19.

Top of Page